blob: 9cf63dd84364d7c32ec9b15e54c5fd300d47ed82 [file] [log] [blame]
Linus Torvalds1da177e2005-04-16 15:20:36 -07001#
Dan Williams685784a2007-07-09 11:56:42 -07002# Generic algorithms support
3#
4config XOR_BLOCKS
5 tristate
6
7#
Dan Williams9bc89cd2007-01-02 11:10:44 -07008# async_tx api: hardware offloaded memory transfer/transform support
9#
10source "crypto/async_tx/Kconfig"
11
12#
Linus Torvalds1da177e2005-04-16 15:20:36 -070013# Cryptographic API Configuration
14#
Jan Engelhardt2e290f42007-05-18 15:11:01 +100015menuconfig CRYPTO
Sebastian Siewiorc3715cb92008-03-30 16:36:09 +080016 tristate "Cryptographic API"
Linus Torvalds1da177e2005-04-16 15:20:36 -070017 help
18 This option provides the core Cryptographic API.
19
Herbert Xucce9e062006-08-21 21:08:13 +100020if CRYPTO
21
Sebastian Siewior584fffc2008-04-05 21:04:48 +080022comment "Crypto core or helper"
23
Neil Hormanccb778e2008-08-05 14:13:08 +080024config CRYPTO_FIPS
25 bool "FIPS 200 compliance"
Herbert Xuf2c89a12014-07-04 22:15:08 +080026 depends on (CRYPTO_ANSI_CPRNG || CRYPTO_DRBG) && !CRYPTO_MANAGER_DISABLE_TESTS
Alec Ari1f696092016-10-04 19:34:30 -030027 depends on (MODULE_SIG || !MODULES)
Neil Hormanccb778e2008-08-05 14:13:08 +080028 help
29 This options enables the fips boot option which is
30 required if you want to system to operate in a FIPS 200
31 certification. You should say no unless you know what
Chuck Ebberte84c5482010-09-03 19:17:49 +080032 this is.
Neil Hormanccb778e2008-08-05 14:13:08 +080033
Herbert Xucce9e062006-08-21 21:08:13 +100034config CRYPTO_ALGAPI
35 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110036 select CRYPTO_ALGAPI2
Herbert Xucce9e062006-08-21 21:08:13 +100037 help
38 This option provides the API for cryptographic algorithms.
39
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110040config CRYPTO_ALGAPI2
41 tristate
42
Herbert Xu1ae97822007-08-30 15:36:14 +080043config CRYPTO_AEAD
44 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110045 select CRYPTO_AEAD2
Herbert Xu1ae97822007-08-30 15:36:14 +080046 select CRYPTO_ALGAPI
47
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110048config CRYPTO_AEAD2
49 tristate
50 select CRYPTO_ALGAPI2
Herbert Xu149a3972015-08-13 17:28:58 +080051 select CRYPTO_NULL2
52 select CRYPTO_RNG2
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110053
Herbert Xu5cde0af2006-08-22 00:07:53 +100054config CRYPTO_BLKCIPHER
55 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110056 select CRYPTO_BLKCIPHER2
Herbert Xu5cde0af2006-08-22 00:07:53 +100057 select CRYPTO_ALGAPI
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110058
59config CRYPTO_BLKCIPHER2
60 tristate
61 select CRYPTO_ALGAPI2
62 select CRYPTO_RNG2
Huang Ying0a2e8212009-02-19 14:44:02 +080063 select CRYPTO_WORKQUEUE
Herbert Xu5cde0af2006-08-22 00:07:53 +100064
Herbert Xu055bcee2006-08-19 22:24:23 +100065config CRYPTO_HASH
66 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110067 select CRYPTO_HASH2
Herbert Xu055bcee2006-08-19 22:24:23 +100068 select CRYPTO_ALGAPI
69
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110070config CRYPTO_HASH2
71 tristate
72 select CRYPTO_ALGAPI2
73
Neil Horman17f0f4a2008-08-14 22:15:52 +100074config CRYPTO_RNG
75 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110076 select CRYPTO_RNG2
Neil Horman17f0f4a2008-08-14 22:15:52 +100077 select CRYPTO_ALGAPI
78
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110079config CRYPTO_RNG2
80 tristate
81 select CRYPTO_ALGAPI2
82
Herbert Xu401e4232015-06-03 14:49:31 +080083config CRYPTO_RNG_DEFAULT
84 tristate
85 select CRYPTO_DRBG_MENU
86
Tadeusz Struk3c339ab2015-06-16 10:30:55 -070087config CRYPTO_AKCIPHER2
88 tristate
89 select CRYPTO_ALGAPI2
90
91config CRYPTO_AKCIPHER
92 tristate
93 select CRYPTO_AKCIPHER2
94 select CRYPTO_ALGAPI
95
Salvatore Benedetto4e5f2c42016-06-22 17:49:13 +010096config CRYPTO_KPP2
97 tristate
98 select CRYPTO_ALGAPI2
99
100config CRYPTO_KPP
101 tristate
102 select CRYPTO_ALGAPI
103 select CRYPTO_KPP2
104
Giovanni Cabiddu2ebda742016-10-21 13:19:47 +0100105config CRYPTO_ACOMP2
106 tristate
107 select CRYPTO_ALGAPI2
108
109config CRYPTO_ACOMP
110 tristate
111 select CRYPTO_ALGAPI
112 select CRYPTO_ACOMP2
113
Tadeusz Strukcfc2bb32015-06-16 10:31:01 -0700114config CRYPTO_RSA
115 tristate "RSA algorithm"
Tadeusz Struk425e0172015-06-19 10:27:39 -0700116 select CRYPTO_AKCIPHER
Tadeusz Struk58446fe2016-05-04 06:38:46 -0700117 select CRYPTO_MANAGER
Tadeusz Strukcfc2bb32015-06-16 10:31:01 -0700118 select MPILIB
119 select ASN1
120 help
121 Generic implementation of the RSA public key algorithm.
122
Salvatore Benedetto802c7f12016-06-22 17:49:14 +0100123config CRYPTO_DH
124 tristate "Diffie-Hellman algorithm"
125 select CRYPTO_KPP
126 select MPILIB
127 help
128 Generic implementation of the Diffie-Hellman algorithm.
129
Salvatore Benedetto3c4b2392016-06-22 17:49:15 +0100130config CRYPTO_ECDH
131 tristate "ECDH algorithm"
132 select CRYTPO_KPP
133 help
134 Generic implementation of the ECDH algorithm
Salvatore Benedetto802c7f12016-06-22 17:49:14 +0100135
Herbert Xu2b8c19d2006-09-21 11:31:44 +1000136config CRYPTO_MANAGER
137 tristate "Cryptographic algorithm manager"
Herbert Xu6a0fcbb2008-12-10 23:29:44 +1100138 select CRYPTO_MANAGER2
Herbert Xu2b8c19d2006-09-21 11:31:44 +1000139 help
140 Create default cryptographic template instantiations such as
141 cbc(aes).
142
Herbert Xu6a0fcbb2008-12-10 23:29:44 +1100143config CRYPTO_MANAGER2
144 def_tristate CRYPTO_MANAGER || (CRYPTO_MANAGER!=n && CRYPTO_ALGAPI=y)
145 select CRYPTO_AEAD2
146 select CRYPTO_HASH2
147 select CRYPTO_BLKCIPHER2
Tadeusz Struk946cc462015-06-16 10:31:06 -0700148 select CRYPTO_AKCIPHER2
Salvatore Benedetto4e5f2c42016-06-22 17:49:13 +0100149 select CRYPTO_KPP2
Giovanni Cabiddu2ebda742016-10-21 13:19:47 +0100150 select CRYPTO_ACOMP2
Herbert Xu6a0fcbb2008-12-10 23:29:44 +1100151
Steffen Klasserta38f7902011-09-27 07:23:50 +0200152config CRYPTO_USER
153 tristate "Userspace cryptographic algorithm configuration"
Herbert Xu5db017a2011-11-01 12:12:43 +1100154 depends on NET
Steffen Klasserta38f7902011-09-27 07:23:50 +0200155 select CRYPTO_MANAGER
156 help
Valdis.Kletnieks@vt.edud19978f2011-11-09 01:29:20 -0500157 Userspace configuration for cryptographic instantiations such as
Steffen Klasserta38f7902011-09-27 07:23:50 +0200158 cbc(aes).
159
Herbert Xu326a6342010-08-06 09:40:28 +0800160config CRYPTO_MANAGER_DISABLE_TESTS
161 bool "Disable run-time self tests"
Herbert Xu00ca28a2010-08-06 10:34:00 +0800162 default y
163 depends on CRYPTO_MANAGER2
Alexander Shishkin0b767f92010-06-03 20:53:43 +1000164 help
Herbert Xu326a6342010-08-06 09:40:28 +0800165 Disable run-time self tests that normally take place at
166 algorithm registration.
Alexander Shishkin0b767f92010-06-03 20:53:43 +1000167
Rik Snelc494e072006-11-29 18:59:44 +1100168config CRYPTO_GF128MUL
Jussi Kivilinna08c70fc2011-12-13 12:53:22 +0200169 tristate "GF(2^128) multiplication functions"
Rik Snelc494e072006-11-29 18:59:44 +1100170 help
171 Efficient table driven implementation of multiplications in the
172 field GF(2^128). This is needed by some cypher modes. This
173 option will be selected automatically if you select such a
174 cipher mode. Only select this option by hand if you expect to load
175 an external module that requires these functions.
176
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800177config CRYPTO_NULL
178 tristate "Null algorithms"
Herbert Xu149a3972015-08-13 17:28:58 +0800179 select CRYPTO_NULL2
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800180 help
181 These are 'Null' algorithms, used by IPsec, which do nothing.
182
Herbert Xu149a3972015-08-13 17:28:58 +0800183config CRYPTO_NULL2
Herbert Xudd43c4e2015-08-17 20:39:40 +0800184 tristate
Herbert Xu149a3972015-08-13 17:28:58 +0800185 select CRYPTO_ALGAPI2
186 select CRYPTO_BLKCIPHER2
187 select CRYPTO_HASH2
188
Steffen Klassert5068c7a2010-01-07 15:57:19 +1100189config CRYPTO_PCRYPT
Kees Cook3b4afaf2012-10-02 11:16:49 -0700190 tristate "Parallel crypto engine"
191 depends on SMP
Steffen Klassert5068c7a2010-01-07 15:57:19 +1100192 select PADATA
193 select CRYPTO_MANAGER
194 select CRYPTO_AEAD
195 help
196 This converts an arbitrary crypto algorithm into a parallel
197 algorithm that executes in kernel threads.
198
Huang Ying25c38d32009-02-19 14:33:40 +0800199config CRYPTO_WORKQUEUE
200 tristate
201
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800202config CRYPTO_CRYPTD
203 tristate "Software async crypto daemon"
Herbert Xudb131ef2006-09-21 11:44:08 +1000204 select CRYPTO_BLKCIPHER
Loc Hob8a28252008-05-14 21:23:00 +0800205 select CRYPTO_HASH
Herbert Xu43518402006-10-16 21:28:58 +1000206 select CRYPTO_MANAGER
Huang Ying254eff72009-02-19 14:42:19 +0800207 select CRYPTO_WORKQUEUE
Herbert Xudb131ef2006-09-21 11:44:08 +1000208 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800209 This is a generic software asynchronous crypto daemon that
210 converts an arbitrary synchronous software crypto algorithm
211 into an asynchronous algorithm that executes in a kernel thread.
212
Tim Chen1e65b812014-07-31 10:29:51 -0700213config CRYPTO_MCRYPTD
214 tristate "Software async multi-buffer crypto daemon"
215 select CRYPTO_BLKCIPHER
216 select CRYPTO_HASH
217 select CRYPTO_MANAGER
218 select CRYPTO_WORKQUEUE
219 help
220 This is a generic software asynchronous crypto daemon that
221 provides the kernel thread to assist multi-buffer crypto
222 algorithms for submitting jobs and flushing jobs in multi-buffer
223 crypto algorithms. Multi-buffer crypto algorithms are executed
224 in the context of this kernel thread and drivers can post
Ted Percival0e566732014-09-04 15:18:21 +0800225 their crypto request asynchronously to be processed by this daemon.
Tim Chen1e65b812014-07-31 10:29:51 -0700226
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800227config CRYPTO_AUTHENC
228 tristate "Authenc support"
229 select CRYPTO_AEAD
230 select CRYPTO_BLKCIPHER
231 select CRYPTO_MANAGER
232 select CRYPTO_HASH
Herbert Xue94c6a72015-08-04 21:23:14 +0800233 select CRYPTO_NULL
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800234 help
235 Authenc: Combined mode wrapper for IPsec.
236 This is required for IPSec.
237
238config CRYPTO_TEST
239 tristate "Testing module"
240 depends on m
Herbert Xuda7f0332008-07-31 17:08:25 +0800241 select CRYPTO_MANAGER
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800242 help
243 Quick & dirty crypto test module.
244
Ard Biesheuvela62b01c2013-09-20 09:55:40 +0200245config CRYPTO_ABLK_HELPER
Jussi Kivilinnaffaf9152012-06-18 14:06:58 +0300246 tristate
Jussi Kivilinnaffaf9152012-06-18 14:06:58 +0300247 select CRYPTO_CRYPTD
248
Herbert Xu266d0512016-11-22 20:08:25 +0800249config CRYPTO_SIMD
250 tristate
251 select CRYPTO_CRYPTD
252
Jussi Kivilinna596d8752012-06-18 14:07:19 +0300253config CRYPTO_GLUE_HELPER_X86
254 tristate
255 depends on X86
Herbert Xu065ce322016-11-22 20:08:29 +0800256 select CRYPTO_BLKCIPHER
Jussi Kivilinna596d8752012-06-18 14:07:19 +0300257
Baolin Wang735d37b2016-01-26 20:25:39 +0800258config CRYPTO_ENGINE
259 tristate
260
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800261comment "Authenticated Encryption with Associated Data"
262
263config CRYPTO_CCM
264 tristate "CCM support"
265 select CRYPTO_CTR
Ard Biesheuvelf15f05b2017-02-03 14:49:36 +0000266 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800267 select CRYPTO_AEAD
268 help
269 Support for Counter with CBC MAC. Required for IPsec.
270
271config CRYPTO_GCM
272 tristate "GCM/GMAC support"
273 select CRYPTO_CTR
274 select CRYPTO_AEAD
Huang Ying9382d972009-08-06 15:34:26 +1000275 select CRYPTO_GHASH
Jussi Kivilinna9489667d2013-04-07 16:43:41 +0300276 select CRYPTO_NULL
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800277 help
278 Support for Galois/Counter Mode (GCM) and Galois Message
279 Authentication Code (GMAC). Required for IPSec.
280
Martin Willi71ebc4d2015-06-01 13:44:00 +0200281config CRYPTO_CHACHA20POLY1305
282 tristate "ChaCha20-Poly1305 AEAD support"
283 select CRYPTO_CHACHA20
284 select CRYPTO_POLY1305
285 select CRYPTO_AEAD
286 help
287 ChaCha20-Poly1305 AEAD support, RFC7539.
288
289 Support for the AEAD wrapper using the ChaCha20 stream cipher combined
290 with the Poly1305 authenticator. It is defined in RFC7539 for use in
291 IETF protocols.
292
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800293config CRYPTO_SEQIV
294 tristate "Sequence Number IV Generator"
295 select CRYPTO_AEAD
296 select CRYPTO_BLKCIPHER
Herbert Xu856e3f402015-05-21 15:11:13 +0800297 select CRYPTO_NULL
Herbert Xu401e4232015-06-03 14:49:31 +0800298 select CRYPTO_RNG_DEFAULT
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800299 help
300 This IV generator generates an IV based on a sequence number by
301 xoring it with a salt. This algorithm is mainly useful for CTR
302
Herbert Xua10f5542015-05-21 15:11:15 +0800303config CRYPTO_ECHAINIV
304 tristate "Encrypted Chain IV Generator"
305 select CRYPTO_AEAD
306 select CRYPTO_NULL
Herbert Xu401e4232015-06-03 14:49:31 +0800307 select CRYPTO_RNG_DEFAULT
Herbert Xu34912442015-06-03 14:49:29 +0800308 default m
Herbert Xua10f5542015-05-21 15:11:15 +0800309 help
310 This IV generator generates an IV based on the encryption of
311 a sequence number xored with a salt. This is the default
312 algorithm for CBC.
313
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800314comment "Block modes"
Herbert Xudb131ef2006-09-21 11:44:08 +1000315
316config CRYPTO_CBC
317 tristate "CBC support"
318 select CRYPTO_BLKCIPHER
Herbert Xu43518402006-10-16 21:28:58 +1000319 select CRYPTO_MANAGER
Herbert Xudb131ef2006-09-21 11:44:08 +1000320 help
321 CBC: Cipher Block Chaining mode
322 This block cipher algorithm is required for IPSec.
323
Joy Latten23e353c2007-10-23 08:50:32 +0800324config CRYPTO_CTR
325 tristate "CTR support"
326 select CRYPTO_BLKCIPHER
Herbert Xu0a270322007-11-30 21:38:37 +1100327 select CRYPTO_SEQIV
Joy Latten23e353c2007-10-23 08:50:32 +0800328 select CRYPTO_MANAGER
Joy Latten23e353c2007-10-23 08:50:32 +0800329 help
330 CTR: Counter mode
331 This block cipher algorithm is required for IPSec.
332
Kevin Coffman76cb9522008-03-24 21:26:16 +0800333config CRYPTO_CTS
334 tristate "CTS support"
335 select CRYPTO_BLKCIPHER
336 help
337 CTS: Cipher Text Stealing
338 This is the Cipher Text Stealing mode as described by
339 Section 8 of rfc2040 and referenced by rfc3962.
340 (rfc3962 includes errata information in its Appendix A)
341 This mode is required for Kerberos gss mechanism support
342 for AES encryption.
343
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800344config CRYPTO_ECB
345 tristate "ECB support"
Herbert Xu653ebd9c2007-11-27 19:48:27 +0800346 select CRYPTO_BLKCIPHER
Herbert Xu124b53d2007-04-16 20:49:20 +1000347 select CRYPTO_MANAGER
348 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800349 ECB: Electronic CodeBook mode
350 This is the simplest block cipher algorithm. It simply encrypts
351 the input block by block.
Herbert Xu124b53d2007-04-16 20:49:20 +1000352
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800353config CRYPTO_LRW
Jussi Kivilinna2470a2b2011-12-13 12:52:51 +0200354 tristate "LRW support"
David Howells90831632006-12-16 12:13:14 +1100355 select CRYPTO_BLKCIPHER
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800356 select CRYPTO_MANAGER
357 select CRYPTO_GF128MUL
David Howells90831632006-12-16 12:13:14 +1100358 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800359 LRW: Liskov Rivest Wagner, a tweakable, non malleable, non movable
360 narrow block cipher mode for dm-crypt. Use it with cipher
361 specification string aes-lrw-benbi, the key must be 256, 320 or 384.
362 The first 128, 192 or 256 bits in the key are used for AES and the
363 rest is used to tie each cipher block to its logical position.
David Howells90831632006-12-16 12:13:14 +1100364
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800365config CRYPTO_PCBC
366 tristate "PCBC support"
367 select CRYPTO_BLKCIPHER
368 select CRYPTO_MANAGER
369 help
370 PCBC: Propagating Cipher Block Chaining mode
371 This block cipher algorithm is required for RxRPC.
372
373config CRYPTO_XTS
Jussi Kivilinna5bcf8e62011-12-13 12:52:56 +0200374 tristate "XTS support"
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800375 select CRYPTO_BLKCIPHER
376 select CRYPTO_MANAGER
377 select CRYPTO_GF128MUL
Milan Broz12cb3a12017-02-23 08:38:26 +0100378 select CRYPTO_ECB
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800379 help
380 XTS: IEEE1619/D16 narrow block cipher use with aes-xts-plain,
381 key size 256, 384 or 512 bits. This implementation currently
382 can't handle a sectorsize which is not a multiple of 16 bytes.
383
Stephan Mueller1c49678e2015-09-21 20:58:56 +0200384config CRYPTO_KEYWRAP
385 tristate "Key wrapping support"
386 select CRYPTO_BLKCIPHER
387 help
388 Support for key wrapping (NIST SP800-38F / RFC3394) without
389 padding.
390
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800391comment "Hash modes"
392
Jussi Kivilinna93b5e862013-04-08 10:48:44 +0300393config CRYPTO_CMAC
394 tristate "CMAC support"
395 select CRYPTO_HASH
396 select CRYPTO_MANAGER
397 help
398 Cipher-based Message Authentication Code (CMAC) specified by
399 The National Institute of Standards and Technology (NIST).
400
401 https://tools.ietf.org/html/rfc4493
402 http://csrc.nist.gov/publications/nistpubs/800-38B/SP_800-38B.pdf
403
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800404config CRYPTO_HMAC
405 tristate "HMAC support"
406 select CRYPTO_HASH
407 select CRYPTO_MANAGER
408 help
409 HMAC: Keyed-Hashing for Message Authentication (RFC2104).
410 This is required for IPSec.
411
412config CRYPTO_XCBC
413 tristate "XCBC support"
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800414 select CRYPTO_HASH
415 select CRYPTO_MANAGER
416 help
417 XCBC: Keyed-Hashing with encryption algorithm
418 http://www.ietf.org/rfc/rfc3566.txt
419 http://csrc.nist.gov/encryption/modes/proposedmodes/
420 xcbc-mac/xcbc-mac-spec.pdf
421
Shane Wangf1939f72009-09-02 20:05:22 +1000422config CRYPTO_VMAC
423 tristate "VMAC support"
Shane Wangf1939f72009-09-02 20:05:22 +1000424 select CRYPTO_HASH
425 select CRYPTO_MANAGER
426 help
427 VMAC is a message authentication algorithm designed for
428 very high speed on 64-bit architectures.
429
430 See also:
431 <http://fastcrypto.org/vmac>
432
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800433comment "Digest"
434
435config CRYPTO_CRC32C
436 tristate "CRC32c CRC algorithm"
Herbert Xu5773a3e2008-07-08 20:54:28 +0800437 select CRYPTO_HASH
Darrick J. Wong6a0962b2012-03-23 15:02:25 -0700438 select CRC32
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800439 help
440 Castagnoli, et al Cyclic Redundancy-Check Algorithm. Used
441 by iSCSI for header and data digests and by others.
Herbert Xu69c35ef2008-11-07 15:11:47 +0800442 See Castagnoli93. Module will be crc32c.
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800443
Austin Zhang8cb51ba2008-08-07 09:57:03 +0800444config CRYPTO_CRC32C_INTEL
445 tristate "CRC32c INTEL hardware acceleration"
446 depends on X86
447 select CRYPTO_HASH
448 help
449 In Intel processor with SSE4.2 supported, the processor will
450 support CRC32C implementation using hardware accelerated CRC32
451 instruction. This option will create 'crc32c-intel' module,
452 which will enable any routine to use the CRC32 instruction to
453 gain performance compared with software implementation.
454 Module will be crc32c-intel.
455
Jean Delvare7cf31862016-11-22 10:32:44 +0100456config CRYPTO_CRC32C_VPMSUM
Anton Blanchard6dd7a822016-07-01 08:19:45 +1000457 tristate "CRC32c CRC algorithm (powerpc64)"
Michael Ellermanc12abf32016-08-09 08:46:15 +1000458 depends on PPC64 && ALTIVEC
Anton Blanchard6dd7a822016-07-01 08:19:45 +1000459 select CRYPTO_HASH
460 select CRC32
461 help
462 CRC32c algorithm implemented using vector polynomial multiply-sum
463 (vpmsum) instructions, introduced in POWER8. Enable on POWER8
464 and newer processors for improved performance.
465
466
David S. Miller442a7c42012-08-22 20:47:36 -0700467config CRYPTO_CRC32C_SPARC64
468 tristate "CRC32c CRC algorithm (SPARC64)"
469 depends on SPARC64
470 select CRYPTO_HASH
471 select CRC32
472 help
473 CRC32c CRC algorithm implemented using sparc64 crypto instructions,
474 when available.
475
Alexander Boyko78c37d12013-01-10 18:54:59 +0400476config CRYPTO_CRC32
477 tristate "CRC32 CRC algorithm"
478 select CRYPTO_HASH
479 select CRC32
480 help
481 CRC-32-IEEE 802.3 cyclic redundancy-check algorithm.
482 Shash crypto api wrappers to crc32_le function.
483
484config CRYPTO_CRC32_PCLMUL
485 tristate "CRC32 PCLMULQDQ hardware acceleration"
486 depends on X86
487 select CRYPTO_HASH
488 select CRC32
489 help
490 From Intel Westmere and AMD Bulldozer processor with SSE4.2
491 and PCLMULQDQ supported, the processor will support
492 CRC32 PCLMULQDQ implementation using hardware accelerated PCLMULQDQ
493 instruction. This option will create 'crc32-plcmul' module,
494 which will enable any routine to use the CRC-32-IEEE 802.3 checksum
495 and gain better performance as compared with the table implementation.
496
Herbert Xu684115212013-09-07 12:56:26 +1000497config CRYPTO_CRCT10DIF
498 tristate "CRCT10DIF algorithm"
499 select CRYPTO_HASH
500 help
501 CRC T10 Data Integrity Field computation is being cast as
502 a crypto transform. This allows for faster crc t10 diff
503 transforms to be used if they are available.
504
505config CRYPTO_CRCT10DIF_PCLMUL
506 tristate "CRCT10DIF PCLMULQDQ hardware acceleration"
507 depends on X86 && 64BIT && CRC_T10DIF
508 select CRYPTO_HASH
509 help
510 For x86_64 processors with SSE4.2 and PCLMULQDQ supported,
511 CRC T10 DIF PCLMULQDQ computation can be hardware
512 accelerated PCLMULQDQ instruction. This option will create
513 'crct10dif-plcmul' module, which is faster when computing the
514 crct10dif checksum as compared with the generic table implementation.
515
Daniel Axtensb01df1c2017-03-15 23:37:36 +1100516config CRYPTO_CRCT10DIF_VPMSUM
517 tristate "CRC32T10DIF powerpc64 hardware acceleration"
518 depends on PPC64 && ALTIVEC && CRC_T10DIF
519 select CRYPTO_HASH
520 help
521 CRC10T10DIF algorithm implemented using vector polynomial
522 multiply-sum (vpmsum) instructions, introduced in POWER8. Enable on
523 POWER8 and newer processors for improved performance.
524
Huang Ying2cdc6892009-08-06 15:32:38 +1000525config CRYPTO_GHASH
526 tristate "GHASH digest algorithm"
Huang Ying2cdc6892009-08-06 15:32:38 +1000527 select CRYPTO_GF128MUL
Arnd Bergmann578c60f2016-01-25 17:51:21 +0100528 select CRYPTO_HASH
Huang Ying2cdc6892009-08-06 15:32:38 +1000529 help
530 GHASH is message digest algorithm for GCM (Galois/Counter Mode).
531
Martin Willif979e012015-06-01 13:43:58 +0200532config CRYPTO_POLY1305
533 tristate "Poly1305 authenticator algorithm"
Arnd Bergmann578c60f2016-01-25 17:51:21 +0100534 select CRYPTO_HASH
Martin Willif979e012015-06-01 13:43:58 +0200535 help
536 Poly1305 authenticator algorithm, RFC7539.
537
538 Poly1305 is an authenticator algorithm designed by Daniel J. Bernstein.
539 It is used for the ChaCha20-Poly1305 AEAD, specified in RFC7539 for use
540 in IETF protocols. This is the portable C implementation of Poly1305.
541
Martin Willic70f4ab2015-07-16 19:14:06 +0200542config CRYPTO_POLY1305_X86_64
Martin Willib1ccc8f2015-07-16 19:14:08 +0200543 tristate "Poly1305 authenticator algorithm (x86_64/SSE2/AVX2)"
Martin Willic70f4ab2015-07-16 19:14:06 +0200544 depends on X86 && 64BIT
545 select CRYPTO_POLY1305
546 help
547 Poly1305 authenticator algorithm, RFC7539.
548
549 Poly1305 is an authenticator algorithm designed by Daniel J. Bernstein.
550 It is used for the ChaCha20-Poly1305 AEAD, specified in RFC7539 for use
551 in IETF protocols. This is the x86_64 assembler implementation using SIMD
552 instructions.
553
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800554config CRYPTO_MD4
555 tristate "MD4 digest algorithm"
Adrian-Ken Rueegsegger808a1762008-12-03 19:55:27 +0800556 select CRYPTO_HASH
Linus Torvalds1da177e2005-04-16 15:20:36 -0700557 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800558 MD4 message digest algorithm (RFC1320).
Linus Torvalds1da177e2005-04-16 15:20:36 -0700559
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800560config CRYPTO_MD5
561 tristate "MD5 digest algorithm"
Adrian-Ken Rueegsegger14b75ba2008-12-03 19:57:12 +0800562 select CRYPTO_HASH
Linus Torvalds1da177e2005-04-16 15:20:36 -0700563 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800564 MD5 message digest algorithm (RFC1321).
Linus Torvalds1da177e2005-04-16 15:20:36 -0700565
Aaro Koskinend69e75d2014-12-21 22:54:02 +0200566config CRYPTO_MD5_OCTEON
567 tristate "MD5 digest algorithm (OCTEON)"
568 depends on CPU_CAVIUM_OCTEON
569 select CRYPTO_MD5
570 select CRYPTO_HASH
571 help
572 MD5 message digest algorithm (RFC1321) implemented
573 using OCTEON crypto instructions, when available.
574
Markus Stockhausene8e59952015-03-01 19:30:46 +0100575config CRYPTO_MD5_PPC
576 tristate "MD5 digest algorithm (PPC)"
577 depends on PPC
578 select CRYPTO_HASH
579 help
580 MD5 message digest algorithm (RFC1321) implemented
581 in PPC assembler.
582
David S. Millerfa4dfed2012-08-19 21:51:26 -0700583config CRYPTO_MD5_SPARC64
584 tristate "MD5 digest algorithm (SPARC64)"
585 depends on SPARC64
586 select CRYPTO_MD5
587 select CRYPTO_HASH
588 help
589 MD5 message digest algorithm (RFC1321) implemented
590 using sparc64 crypto instructions, when available.
591
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800592config CRYPTO_MICHAEL_MIC
593 tristate "Michael MIC keyed digest algorithm"
Adrian-Ken Rueegsegger19e2bf12008-12-07 19:35:38 +0800594 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800595 help
596 Michael MIC is used for message integrity protection in TKIP
597 (IEEE 802.11i). This algorithm is required for TKIP, but it
598 should not be used for other purposes because of the weakness
599 of the algorithm.
600
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800601config CRYPTO_RMD128
Adrian Bunkb6d44342008-07-16 19:28:00 +0800602 tristate "RIPEMD-128 digest algorithm"
Herbert Xu7c4468b2008-11-08 09:10:40 +0800603 select CRYPTO_HASH
Adrian Bunkb6d44342008-07-16 19:28:00 +0800604 help
605 RIPEMD-128 (ISO/IEC 10118-3:2004).
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800606
Adrian Bunkb6d44342008-07-16 19:28:00 +0800607 RIPEMD-128 is a 128-bit cryptographic hash function. It should only
Michael Witten35ed4b32011-07-09 04:02:31 +0000608 be used as a secure replacement for RIPEMD. For other use cases,
Adrian Bunkb6d44342008-07-16 19:28:00 +0800609 RIPEMD-160 should be used.
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800610
Adrian Bunkb6d44342008-07-16 19:28:00 +0800611 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800612 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800613
614config CRYPTO_RMD160
Adrian Bunkb6d44342008-07-16 19:28:00 +0800615 tristate "RIPEMD-160 digest algorithm"
Herbert Xue5835fb2008-11-08 09:18:51 +0800616 select CRYPTO_HASH
Adrian Bunkb6d44342008-07-16 19:28:00 +0800617 help
618 RIPEMD-160 (ISO/IEC 10118-3:2004).
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800619
Adrian Bunkb6d44342008-07-16 19:28:00 +0800620 RIPEMD-160 is a 160-bit cryptographic hash function. It is intended
621 to be used as a secure replacement for the 128-bit hash functions
622 MD4, MD5 and it's predecessor RIPEMD
623 (not to be confused with RIPEMD-128).
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800624
Adrian Bunkb6d44342008-07-16 19:28:00 +0800625 It's speed is comparable to SHA1 and there are no known attacks
626 against RIPEMD-160.
Adrian-Ken Rueegsegger534fe2c2008-05-09 21:30:27 +0800627
Adrian Bunkb6d44342008-07-16 19:28:00 +0800628 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800629 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
Adrian-Ken Rueegsegger534fe2c2008-05-09 21:30:27 +0800630
631config CRYPTO_RMD256
Adrian Bunkb6d44342008-07-16 19:28:00 +0800632 tristate "RIPEMD-256 digest algorithm"
Herbert Xud8a5e2e2008-11-08 09:58:10 +0800633 select CRYPTO_HASH
Adrian Bunkb6d44342008-07-16 19:28:00 +0800634 help
635 RIPEMD-256 is an optional extension of RIPEMD-128 with a
636 256 bit hash. It is intended for applications that require
637 longer hash-results, without needing a larger security level
638 (than RIPEMD-128).
Adrian-Ken Rueegsegger534fe2c2008-05-09 21:30:27 +0800639
Adrian Bunkb6d44342008-07-16 19:28:00 +0800640 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800641 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
Adrian-Ken Rueegsegger534fe2c2008-05-09 21:30:27 +0800642
643config CRYPTO_RMD320
Adrian Bunkb6d44342008-07-16 19:28:00 +0800644 tristate "RIPEMD-320 digest algorithm"
Herbert Xu3b8efb42008-11-08 10:11:09 +0800645 select CRYPTO_HASH
Adrian Bunkb6d44342008-07-16 19:28:00 +0800646 help
647 RIPEMD-320 is an optional extension of RIPEMD-160 with a
648 320 bit hash. It is intended for applications that require
649 longer hash-results, without needing a larger security level
650 (than RIPEMD-160).
Adrian-Ken Rueegsegger534fe2c2008-05-09 21:30:27 +0800651
Adrian Bunkb6d44342008-07-16 19:28:00 +0800652 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800653 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800654
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800655config CRYPTO_SHA1
656 tristate "SHA1 digest algorithm"
Adrian-Ken Rueegsegger54ccb362008-12-02 21:08:20 +0800657 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800658 help
659 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2).
660
Mathias Krause66be8952011-08-04 20:19:25 +0200661config CRYPTO_SHA1_SSSE3
time38b6b72015-09-10 15:27:26 -0700662 tristate "SHA1 digest algorithm (SSSE3/AVX/AVX2/SHA-NI)"
Mathias Krause66be8952011-08-04 20:19:25 +0200663 depends on X86 && 64BIT
664 select CRYPTO_SHA1
665 select CRYPTO_HASH
666 help
667 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
668 using Supplemental SSE3 (SSSE3) instructions or Advanced Vector
time38b6b72015-09-10 15:27:26 -0700669 Extensions (AVX/AVX2) or SHA-NI(SHA Extensions New Instructions),
670 when available.
Mathias Krause66be8952011-08-04 20:19:25 +0200671
Tim Chen8275d1a2013-03-26 13:59:17 -0700672config CRYPTO_SHA256_SSSE3
time38b6b72015-09-10 15:27:26 -0700673 tristate "SHA256 digest algorithm (SSSE3/AVX/AVX2/SHA-NI)"
Tim Chen8275d1a2013-03-26 13:59:17 -0700674 depends on X86 && 64BIT
675 select CRYPTO_SHA256
676 select CRYPTO_HASH
677 help
678 SHA-256 secure hash standard (DFIPS 180-2) implemented
679 using Supplemental SSE3 (SSSE3) instructions, or Advanced Vector
680 Extensions version 1 (AVX1), or Advanced Vector Extensions
time38b6b72015-09-10 15:27:26 -0700681 version 2 (AVX2) instructions, or SHA-NI (SHA Extensions New
682 Instructions) when available.
Tim Chen8275d1a2013-03-26 13:59:17 -0700683
Tim Chen87de4572013-03-26 14:00:02 -0700684config CRYPTO_SHA512_SSSE3
685 tristate "SHA512 digest algorithm (SSSE3/AVX/AVX2)"
686 depends on X86 && 64BIT
687 select CRYPTO_SHA512
688 select CRYPTO_HASH
689 help
690 SHA-512 secure hash standard (DFIPS 180-2) implemented
691 using Supplemental SSE3 (SSSE3) instructions, or Advanced Vector
692 Extensions version 1 (AVX1), or Advanced Vector Extensions
693 version 2 (AVX2) instructions, when available.
694
Aaro Koskinenefdb6f62015-03-08 22:07:47 +0200695config CRYPTO_SHA1_OCTEON
696 tristate "SHA1 digest algorithm (OCTEON)"
697 depends on CPU_CAVIUM_OCTEON
698 select CRYPTO_SHA1
699 select CRYPTO_HASH
700 help
701 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
702 using OCTEON crypto instructions, when available.
703
David S. Miller4ff28d42012-08-19 15:41:53 -0700704config CRYPTO_SHA1_SPARC64
705 tristate "SHA1 digest algorithm (SPARC64)"
706 depends on SPARC64
707 select CRYPTO_SHA1
708 select CRYPTO_HASH
709 help
710 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
711 using sparc64 crypto instructions, when available.
712
Michael Ellerman323a6bf2012-09-13 23:00:49 +0000713config CRYPTO_SHA1_PPC
714 tristate "SHA1 digest algorithm (powerpc)"
715 depends on PPC
716 help
717 This is the powerpc hardware accelerated implementation of the
718 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2).
719
Markus Stockhausend9850fc2015-02-24 20:36:50 +0100720config CRYPTO_SHA1_PPC_SPE
721 tristate "SHA1 digest algorithm (PPC SPE)"
722 depends on PPC && SPE
723 help
724 SHA-1 secure hash standard (DFIPS 180-4) implemented
725 using powerpc SPE SIMD instruction set.
726
Tim Chen1e65b812014-07-31 10:29:51 -0700727config CRYPTO_SHA1_MB
728 tristate "SHA1 digest algorithm (x86_64 Multi-Buffer, Experimental)"
729 depends on X86 && 64BIT
730 select CRYPTO_SHA1
731 select CRYPTO_HASH
732 select CRYPTO_MCRYPTD
733 help
734 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
735 using multi-buffer technique. This algorithm computes on
736 multiple data lanes concurrently with SIMD instructions for
737 better throughput. It should not be enabled by default but
738 used when there is significant amount of work to keep the keep
739 the data lanes filled to get performance benefit. If the data
740 lanes remain unfilled, a flush operation will be initiated to
741 process the crypto jobs, adding a slight latency.
742
Megha Dey9be7e242016-06-23 18:40:43 -0700743config CRYPTO_SHA256_MB
744 tristate "SHA256 digest algorithm (x86_64 Multi-Buffer, Experimental)"
745 depends on X86 && 64BIT
746 select CRYPTO_SHA256
747 select CRYPTO_HASH
748 select CRYPTO_MCRYPTD
749 help
750 SHA-256 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
751 using multi-buffer technique. This algorithm computes on
752 multiple data lanes concurrently with SIMD instructions for
753 better throughput. It should not be enabled by default but
754 used when there is significant amount of work to keep the keep
755 the data lanes filled to get performance benefit. If the data
756 lanes remain unfilled, a flush operation will be initiated to
757 process the crypto jobs, adding a slight latency.
758
Megha Dey026bb8a2016-06-27 10:20:05 -0700759config CRYPTO_SHA512_MB
760 tristate "SHA512 digest algorithm (x86_64 Multi-Buffer, Experimental)"
761 depends on X86 && 64BIT
762 select CRYPTO_SHA512
763 select CRYPTO_HASH
764 select CRYPTO_MCRYPTD
765 help
766 SHA-512 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
767 using multi-buffer technique. This algorithm computes on
768 multiple data lanes concurrently with SIMD instructions for
769 better throughput. It should not be enabled by default but
770 used when there is significant amount of work to keep the keep
771 the data lanes filled to get performance benefit. If the data
772 lanes remain unfilled, a flush operation will be initiated to
773 process the crypto jobs, adding a slight latency.
774
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800775config CRYPTO_SHA256
776 tristate "SHA224 and SHA256 digest algorithm"
Adrian-Ken Rueegsegger50e109b52008-12-03 19:57:49 +0800777 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800778 help
779 SHA256 secure hash standard (DFIPS 180-2).
780
781 This version of SHA implements a 256 bit hash with 128 bits of
782 security against collision attacks.
783
Adrian Bunkb6d44342008-07-16 19:28:00 +0800784 This code also includes SHA-224, a 224 bit hash with 112 bits
785 of security against collision attacks.
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800786
Markus Stockhausen2ecc1e92015-01-30 15:39:34 +0100787config CRYPTO_SHA256_PPC_SPE
788 tristate "SHA224 and SHA256 digest algorithm (PPC SPE)"
789 depends on PPC && SPE
790 select CRYPTO_SHA256
791 select CRYPTO_HASH
792 help
793 SHA224 and SHA256 secure hash standard (DFIPS 180-2)
794 implemented using powerpc SPE SIMD instruction set.
795
Aaro Koskinenefdb6f62015-03-08 22:07:47 +0200796config CRYPTO_SHA256_OCTEON
797 tristate "SHA224 and SHA256 digest algorithm (OCTEON)"
798 depends on CPU_CAVIUM_OCTEON
799 select CRYPTO_SHA256
800 select CRYPTO_HASH
801 help
802 SHA-256 secure hash standard (DFIPS 180-2) implemented
803 using OCTEON crypto instructions, when available.
804
David S. Miller86c93b22012-08-19 17:11:37 -0700805config CRYPTO_SHA256_SPARC64
806 tristate "SHA224 and SHA256 digest algorithm (SPARC64)"
807 depends on SPARC64
808 select CRYPTO_SHA256
809 select CRYPTO_HASH
810 help
811 SHA-256 secure hash standard (DFIPS 180-2) implemented
812 using sparc64 crypto instructions, when available.
813
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800814config CRYPTO_SHA512
815 tristate "SHA384 and SHA512 digest algorithms"
Adrian-Ken Rueegseggerbd9d20d2008-12-17 16:49:02 +1100816 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800817 help
818 SHA512 secure hash standard (DFIPS 180-2).
819
820 This version of SHA implements a 512 bit hash with 256 bits of
821 security against collision attacks.
822
823 This code also includes SHA-384, a 384 bit hash with 192 bits
824 of security against collision attacks.
825
Aaro Koskinenefdb6f62015-03-08 22:07:47 +0200826config CRYPTO_SHA512_OCTEON
827 tristate "SHA384 and SHA512 digest algorithms (OCTEON)"
828 depends on CPU_CAVIUM_OCTEON
829 select CRYPTO_SHA512
830 select CRYPTO_HASH
831 help
832 SHA-512 secure hash standard (DFIPS 180-2) implemented
833 using OCTEON crypto instructions, when available.
834
David S. Miller775e0c62012-08-19 17:37:56 -0700835config CRYPTO_SHA512_SPARC64
836 tristate "SHA384 and SHA512 digest algorithm (SPARC64)"
837 depends on SPARC64
838 select CRYPTO_SHA512
839 select CRYPTO_HASH
840 help
841 SHA-512 secure hash standard (DFIPS 180-2) implemented
842 using sparc64 crypto instructions, when available.
843
Jeff Garzik53964b92016-06-17 10:30:35 +0530844config CRYPTO_SHA3
845 tristate "SHA3 digest algorithm"
846 select CRYPTO_HASH
847 help
848 SHA-3 secure hash standard (DFIPS 202). It's based on
849 cryptographic sponge function family called Keccak.
850
851 References:
852 http://keccak.noekeon.org/
853
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800854config CRYPTO_TGR192
855 tristate "Tiger digest algorithms"
Adrian-Ken Rueegseggerf63fbd32008-12-03 19:58:32 +0800856 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800857 help
858 Tiger hash algorithm 192, 160 and 128-bit hashes
859
860 Tiger is a hash function optimized for 64-bit processors while
861 still having decent performance on 32-bit processors.
862 Tiger was developed by Ross Anderson and Eli Biham.
Linus Torvalds1da177e2005-04-16 15:20:36 -0700863
864 See also:
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800865 <http://www.cs.technion.ac.il/~biham/Reports/Tiger/>.
866
867config CRYPTO_WP512
868 tristate "Whirlpool digest algorithms"
Adrian-Ken Rueegsegger49465102008-12-07 19:34:37 +0800869 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800870 help
871 Whirlpool hash algorithm 512, 384 and 256-bit hashes
872
873 Whirlpool-512 is part of the NESSIE cryptographic primitives.
874 Whirlpool will be part of the ISO/IEC 10118-3:2003(E) standard
875
876 See also:
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800877 <http://www.larc.usp.br/~pbarreto/WhirlpoolPage.html>
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800878
Huang Ying0e1227d2009-10-19 11:53:06 +0900879config CRYPTO_GHASH_CLMUL_NI_INTEL
880 tristate "GHASH digest algorithm (CLMUL-NI accelerated)"
Richard Weinberger8af00862011-06-08 20:56:29 +0800881 depends on X86 && 64BIT
Huang Ying0e1227d2009-10-19 11:53:06 +0900882 select CRYPTO_CRYPTD
883 help
884 GHASH is message digest algorithm for GCM (Galois/Counter Mode).
885 The implementation is accelerated by CLMUL-NI of Intel.
886
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800887comment "Ciphers"
Linus Torvalds1da177e2005-04-16 15:20:36 -0700888
889config CRYPTO_AES
890 tristate "AES cipher algorithms"
Herbert Xucce9e062006-08-21 21:08:13 +1000891 select CRYPTO_ALGAPI
Linus Torvalds1da177e2005-04-16 15:20:36 -0700892 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800893 AES cipher algorithms (FIPS-197). AES uses the Rijndael
Linus Torvalds1da177e2005-04-16 15:20:36 -0700894 algorithm.
895
896 Rijndael appears to be consistently a very good performer in
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800897 both hardware and software across a wide range of computing
898 environments regardless of its use in feedback or non-feedback
899 modes. Its key setup time is excellent, and its key agility is
900 good. Rijndael's very low memory requirements make it very well
901 suited for restricted-space environments, in which it also
902 demonstrates excellent performance. Rijndael's operations are
903 among the easiest to defend against power and timing attacks.
Linus Torvalds1da177e2005-04-16 15:20:36 -0700904
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800905 The AES specifies three key sizes: 128, 192 and 256 bits
Linus Torvalds1da177e2005-04-16 15:20:36 -0700906
907 See <http://csrc.nist.gov/CryptoToolkit/aes/> for more information.
908
Ard Biesheuvelb5e0b032017-02-02 16:37:40 +0000909config CRYPTO_AES_TI
910 tristate "Fixed time AES cipher"
911 select CRYPTO_ALGAPI
912 help
913 This is a generic implementation of AES that attempts to eliminate
914 data dependent latencies as much as possible without affecting
915 performance too much. It is intended for use by the generic CCM
916 and GCM drivers, and other CTR or CMAC/XCBC based modes that rely
917 solely on encryption (although decryption is supported as well, but
918 with a more dramatic performance hit)
919
920 Instead of using 16 lookup tables of 1 KB each, (8 for encryption and
921 8 for decryption), this implementation only uses just two S-boxes of
922 256 bytes each, and attempts to eliminate data dependent latencies by
923 prefetching the entire table into the cache at the start of each
924 block.
925
Linus Torvalds1da177e2005-04-16 15:20:36 -0700926config CRYPTO_AES_586
927 tristate "AES cipher algorithms (i586)"
Herbert Xucce9e062006-08-21 21:08:13 +1000928 depends on (X86 || UML_X86) && !64BIT
929 select CRYPTO_ALGAPI
Sebastian Siewior5157dea2007-11-10 19:07:16 +0800930 select CRYPTO_AES
Linus Torvalds1da177e2005-04-16 15:20:36 -0700931 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800932 AES cipher algorithms (FIPS-197). AES uses the Rijndael
Linus Torvalds1da177e2005-04-16 15:20:36 -0700933 algorithm.
934
935 Rijndael appears to be consistently a very good performer in
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800936 both hardware and software across a wide range of computing
937 environments regardless of its use in feedback or non-feedback
938 modes. Its key setup time is excellent, and its key agility is
939 good. Rijndael's very low memory requirements make it very well
940 suited for restricted-space environments, in which it also
941 demonstrates excellent performance. Rijndael's operations are
942 among the easiest to defend against power and timing attacks.
Linus Torvalds1da177e2005-04-16 15:20:36 -0700943
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800944 The AES specifies three key sizes: 128, 192 and 256 bits
Linus Torvalds1da177e2005-04-16 15:20:36 -0700945
946 See <http://csrc.nist.gov/encryption/aes/> for more information.
947
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700948config CRYPTO_AES_X86_64
949 tristate "AES cipher algorithms (x86_64)"
Herbert Xucce9e062006-08-21 21:08:13 +1000950 depends on (X86 || UML_X86) && 64BIT
951 select CRYPTO_ALGAPI
Sebastian Siewior81190b32007-11-08 21:25:04 +0800952 select CRYPTO_AES
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700953 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800954 AES cipher algorithms (FIPS-197). AES uses the Rijndael
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700955 algorithm.
956
957 Rijndael appears to be consistently a very good performer in
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800958 both hardware and software across a wide range of computing
959 environments regardless of its use in feedback or non-feedback
960 modes. Its key setup time is excellent, and its key agility is
961 good. Rijndael's very low memory requirements make it very well
962 suited for restricted-space environments, in which it also
963 demonstrates excellent performance. Rijndael's operations are
964 among the easiest to defend against power and timing attacks.
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700965
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800966 The AES specifies three key sizes: 128, 192 and 256 bits
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700967
968 See <http://csrc.nist.gov/encryption/aes/> for more information.
969
Huang Ying54b6a1b2009-01-18 16:28:34 +1100970config CRYPTO_AES_NI_INTEL
971 tristate "AES cipher algorithms (AES-NI)"
Richard Weinberger8af00862011-06-08 20:56:29 +0800972 depends on X86
Herbert Xu85671862016-11-22 20:08:33 +0800973 select CRYPTO_AEAD
Mathias Krause0d258ef2010-11-27 16:34:46 +0800974 select CRYPTO_AES_X86_64 if 64BIT
975 select CRYPTO_AES_586 if !64BIT
Huang Ying54b6a1b2009-01-18 16:28:34 +1100976 select CRYPTO_ALGAPI
Herbert Xu85671862016-11-22 20:08:33 +0800977 select CRYPTO_BLKCIPHER
Jussi Kivilinna7643a112013-04-10 18:39:20 +0300978 select CRYPTO_GLUE_HELPER_X86 if 64BIT
Herbert Xu85671862016-11-22 20:08:33 +0800979 select CRYPTO_SIMD
Huang Ying54b6a1b2009-01-18 16:28:34 +1100980 help
981 Use Intel AES-NI instructions for AES algorithm.
982
983 AES cipher algorithms (FIPS-197). AES uses the Rijndael
984 algorithm.
985
986 Rijndael appears to be consistently a very good performer in
987 both hardware and software across a wide range of computing
988 environments regardless of its use in feedback or non-feedback
989 modes. Its key setup time is excellent, and its key agility is
990 good. Rijndael's very low memory requirements make it very well
991 suited for restricted-space environments, in which it also
992 demonstrates excellent performance. Rijndael's operations are
993 among the easiest to defend against power and timing attacks.
994
995 The AES specifies three key sizes: 128, 192 and 256 bits
996
997 See <http://csrc.nist.gov/encryption/aes/> for more information.
998
Mathias Krause0d258ef2010-11-27 16:34:46 +0800999 In addition to AES cipher algorithm support, the acceleration
1000 for some popular block cipher mode is supported too, including
1001 ECB, CBC, LRW, PCBC, XTS. The 64 bit version has additional
1002 acceleration for CTR.
Huang Ying2cf4ac82009-03-29 15:41:20 +08001003
David S. Miller9bf48522012-08-21 03:58:13 -07001004config CRYPTO_AES_SPARC64
1005 tristate "AES cipher algorithms (SPARC64)"
1006 depends on SPARC64
1007 select CRYPTO_CRYPTD
1008 select CRYPTO_ALGAPI
1009 help
1010 Use SPARC64 crypto opcodes for AES algorithm.
1011
1012 AES cipher algorithms (FIPS-197). AES uses the Rijndael
1013 algorithm.
1014
1015 Rijndael appears to be consistently a very good performer in
1016 both hardware and software across a wide range of computing
1017 environments regardless of its use in feedback or non-feedback
1018 modes. Its key setup time is excellent, and its key agility is
1019 good. Rijndael's very low memory requirements make it very well
1020 suited for restricted-space environments, in which it also
1021 demonstrates excellent performance. Rijndael's operations are
1022 among the easiest to defend against power and timing attacks.
1023
1024 The AES specifies three key sizes: 128, 192 and 256 bits
1025
1026 See <http://csrc.nist.gov/encryption/aes/> for more information.
1027
1028 In addition to AES cipher algorithm support, the acceleration
1029 for some popular block cipher mode is supported too, including
1030 ECB and CBC.
1031
Markus Stockhausen504c6142015-02-22 10:00:10 +01001032config CRYPTO_AES_PPC_SPE
1033 tristate "AES cipher algorithms (PPC SPE)"
1034 depends on PPC && SPE
1035 help
1036 AES cipher algorithms (FIPS-197). Additionally the acceleration
1037 for popular block cipher modes ECB, CBC, CTR and XTS is supported.
1038 This module should only be used for low power (router) devices
1039 without hardware AES acceleration (e.g. caam crypto). It reduces the
1040 size of the AES tables from 16KB to 8KB + 256 bytes and mitigates
1041 timining attacks. Nevertheless it might be not as secure as other
1042 architecture specific assembler implementations that work on 1KB
1043 tables or 256 bytes S-boxes.
1044
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001045config CRYPTO_ANUBIS
1046 tristate "Anubis cipher algorithm"
1047 select CRYPTO_ALGAPI
1048 help
1049 Anubis cipher algorithm.
1050
1051 Anubis is a variable key length cipher which can use keys from
1052 128 bits to 320 bits in length. It was evaluated as a entrant
1053 in the NESSIE competition.
1054
1055 See also:
Justin P. Mattock6d8de742010-09-12 10:42:47 +08001056 <https://www.cosic.esat.kuleuven.be/nessie/reports/>
1057 <http://www.larc.usp.br/~pbarreto/AnubisPage.html>
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001058
1059config CRYPTO_ARC4
1060 tristate "ARC4 cipher algorithm"
Sebastian Andrzej Siewiorb9b0f082012-06-26 18:13:46 +02001061 select CRYPTO_BLKCIPHER
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001062 help
1063 ARC4 cipher algorithm.
1064
1065 ARC4 is a stream cipher using keys ranging from 8 bits to 2048
1066 bits in length. This algorithm is required for driver-based
1067 WEP, but it should not be for other purposes because of the
1068 weakness of the algorithm.
1069
1070config CRYPTO_BLOWFISH
1071 tristate "Blowfish cipher algorithm"
1072 select CRYPTO_ALGAPI
Jussi Kivilinna52ba8672011-09-02 01:45:07 +03001073 select CRYPTO_BLOWFISH_COMMON
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001074 help
1075 Blowfish cipher algorithm, by Bruce Schneier.
1076
1077 This is a variable key length cipher which can use keys from 32
1078 bits to 448 bits in length. It's fast, simple and specifically
1079 designed for use on "large microprocessors".
1080
1081 See also:
1082 <http://www.schneier.com/blowfish.html>
1083
Jussi Kivilinna52ba8672011-09-02 01:45:07 +03001084config CRYPTO_BLOWFISH_COMMON
1085 tristate
1086 help
1087 Common parts of the Blowfish cipher algorithm shared by the
1088 generic c and the assembler implementations.
1089
1090 See also:
1091 <http://www.schneier.com/blowfish.html>
1092
Jussi Kivilinna64b94ce2011-09-02 01:45:22 +03001093config CRYPTO_BLOWFISH_X86_64
1094 tristate "Blowfish cipher algorithm (x86_64)"
Al Virof21a7c12012-04-08 20:31:22 -04001095 depends on X86 && 64BIT
Jussi Kivilinna64b94ce2011-09-02 01:45:22 +03001096 select CRYPTO_ALGAPI
1097 select CRYPTO_BLOWFISH_COMMON
1098 help
1099 Blowfish cipher algorithm (x86_64), by Bruce Schneier.
1100
1101 This is a variable key length cipher which can use keys from 32
1102 bits to 448 bits in length. It's fast, simple and specifically
1103 designed for use on "large microprocessors".
1104
1105 See also:
1106 <http://www.schneier.com/blowfish.html>
1107
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001108config CRYPTO_CAMELLIA
1109 tristate "Camellia cipher algorithms"
1110 depends on CRYPTO
1111 select CRYPTO_ALGAPI
1112 help
1113 Camellia cipher algorithms module.
1114
1115 Camellia is a symmetric key block cipher developed jointly
1116 at NTT and Mitsubishi Electric Corporation.
1117
1118 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1119
1120 See also:
1121 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1122
Jussi Kivilinna0b95ec52012-03-05 20:26:47 +02001123config CRYPTO_CAMELLIA_X86_64
1124 tristate "Camellia cipher algorithm (x86_64)"
Al Virof21a7c12012-04-08 20:31:22 -04001125 depends on X86 && 64BIT
Jussi Kivilinna0b95ec52012-03-05 20:26:47 +02001126 depends on CRYPTO
1127 select CRYPTO_ALGAPI
Jussi Kivilinna964263a2012-06-18 14:07:29 +03001128 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinna0b95ec52012-03-05 20:26:47 +02001129 select CRYPTO_LRW
1130 select CRYPTO_XTS
1131 help
1132 Camellia cipher algorithm module (x86_64).
1133
1134 Camellia is a symmetric key block cipher developed jointly
1135 at NTT and Mitsubishi Electric Corporation.
1136
1137 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1138
1139 See also:
1140 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1141
Jussi Kivilinnad9b1d2e2012-10-26 14:49:01 +03001142config CRYPTO_CAMELLIA_AESNI_AVX_X86_64
1143 tristate "Camellia cipher algorithm (x86_64/AES-NI/AVX)"
1144 depends on X86 && 64BIT
1145 depends on CRYPTO
1146 select CRYPTO_ALGAPI
1147 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001148 select CRYPTO_ABLK_HELPER
Jussi Kivilinnad9b1d2e2012-10-26 14:49:01 +03001149 select CRYPTO_GLUE_HELPER_X86
1150 select CRYPTO_CAMELLIA_X86_64
1151 select CRYPTO_LRW
1152 select CRYPTO_XTS
1153 help
1154 Camellia cipher algorithm module (x86_64/AES-NI/AVX).
1155
1156 Camellia is a symmetric key block cipher developed jointly
1157 at NTT and Mitsubishi Electric Corporation.
1158
1159 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1160
1161 See also:
1162 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1163
Jussi Kivilinnaf3f935a2013-04-13 13:47:00 +03001164config CRYPTO_CAMELLIA_AESNI_AVX2_X86_64
1165 tristate "Camellia cipher algorithm (x86_64/AES-NI/AVX2)"
1166 depends on X86 && 64BIT
1167 depends on CRYPTO
1168 select CRYPTO_ALGAPI
1169 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001170 select CRYPTO_ABLK_HELPER
Jussi Kivilinnaf3f935a2013-04-13 13:47:00 +03001171 select CRYPTO_GLUE_HELPER_X86
1172 select CRYPTO_CAMELLIA_X86_64
1173 select CRYPTO_CAMELLIA_AESNI_AVX_X86_64
1174 select CRYPTO_LRW
1175 select CRYPTO_XTS
1176 help
1177 Camellia cipher algorithm module (x86_64/AES-NI/AVX2).
1178
1179 Camellia is a symmetric key block cipher developed jointly
1180 at NTT and Mitsubishi Electric Corporation.
1181
1182 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1183
1184 See also:
1185 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1186
David S. Miller81658ad2012-08-28 12:05:54 -07001187config CRYPTO_CAMELLIA_SPARC64
1188 tristate "Camellia cipher algorithm (SPARC64)"
1189 depends on SPARC64
1190 depends on CRYPTO
1191 select CRYPTO_ALGAPI
1192 help
1193 Camellia cipher algorithm module (SPARC64).
1194
1195 Camellia is a symmetric key block cipher developed jointly
1196 at NTT and Mitsubishi Electric Corporation.
1197
1198 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1199
1200 See also:
1201 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1202
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001203config CRYPTO_CAST_COMMON
1204 tristate
1205 help
1206 Common parts of the CAST cipher algorithms shared by the
1207 generic c and the assembler implementations.
1208
Linus Torvalds1da177e2005-04-16 15:20:36 -07001209config CRYPTO_CAST5
1210 tristate "CAST5 (CAST-128) cipher algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001211 select CRYPTO_ALGAPI
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001212 select CRYPTO_CAST_COMMON
Linus Torvalds1da177e2005-04-16 15:20:36 -07001213 help
1214 The CAST5 encryption algorithm (synonymous with CAST-128) is
1215 described in RFC2144.
1216
Johannes Goetzfried4d6d6a22012-07-11 19:37:37 +02001217config CRYPTO_CAST5_AVX_X86_64
1218 tristate "CAST5 (CAST-128) cipher algorithm (x86_64/AVX)"
1219 depends on X86 && 64BIT
1220 select CRYPTO_ALGAPI
1221 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001222 select CRYPTO_ABLK_HELPER
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001223 select CRYPTO_CAST_COMMON
Johannes Goetzfried4d6d6a22012-07-11 19:37:37 +02001224 select CRYPTO_CAST5
1225 help
1226 The CAST5 encryption algorithm (synonymous with CAST-128) is
1227 described in RFC2144.
1228
1229 This module provides the Cast5 cipher algorithm that processes
1230 sixteen blocks parallel using the AVX instruction set.
1231
Linus Torvalds1da177e2005-04-16 15:20:36 -07001232config CRYPTO_CAST6
1233 tristate "CAST6 (CAST-256) cipher algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001234 select CRYPTO_ALGAPI
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001235 select CRYPTO_CAST_COMMON
Linus Torvalds1da177e2005-04-16 15:20:36 -07001236 help
1237 The CAST6 encryption algorithm (synonymous with CAST-256) is
1238 described in RFC2612.
1239
Johannes Goetzfried4ea12772012-07-11 19:38:57 +02001240config CRYPTO_CAST6_AVX_X86_64
1241 tristate "CAST6 (CAST-256) cipher algorithm (x86_64/AVX)"
1242 depends on X86 && 64BIT
1243 select CRYPTO_ALGAPI
1244 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001245 select CRYPTO_ABLK_HELPER
Johannes Goetzfried4ea12772012-07-11 19:38:57 +02001246 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001247 select CRYPTO_CAST_COMMON
Johannes Goetzfried4ea12772012-07-11 19:38:57 +02001248 select CRYPTO_CAST6
1249 select CRYPTO_LRW
1250 select CRYPTO_XTS
1251 help
1252 The CAST6 encryption algorithm (synonymous with CAST-256) is
1253 described in RFC2612.
1254
1255 This module provides the Cast6 cipher algorithm that processes
1256 eight blocks parallel using the AVX instruction set.
1257
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001258config CRYPTO_DES
1259 tristate "DES and Triple DES EDE cipher algorithms"
Herbert Xucce9e062006-08-21 21:08:13 +10001260 select CRYPTO_ALGAPI
Linus Torvalds1da177e2005-04-16 15:20:36 -07001261 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001262 DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3).
Linus Torvalds1da177e2005-04-16 15:20:36 -07001263
David S. Millerc5aac2d2012-08-25 22:37:23 -07001264config CRYPTO_DES_SPARC64
1265 tristate "DES and Triple DES EDE cipher algorithms (SPARC64)"
Dave Jones97da37b2012-10-02 17:13:20 -04001266 depends on SPARC64
David S. Millerc5aac2d2012-08-25 22:37:23 -07001267 select CRYPTO_ALGAPI
1268 select CRYPTO_DES
1269 help
1270 DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3),
1271 optimized using SPARC64 crypto opcodes.
1272
Jussi Kivilinna6574e6c2014-06-09 20:59:54 +03001273config CRYPTO_DES3_EDE_X86_64
1274 tristate "Triple DES EDE cipher algorithm (x86-64)"
1275 depends on X86 && 64BIT
1276 select CRYPTO_ALGAPI
1277 select CRYPTO_DES
1278 help
1279 Triple DES EDE (FIPS 46-3) algorithm.
1280
1281 This module provides implementation of the Triple DES EDE cipher
1282 algorithm that is optimized for x86-64 processors. Two versions of
1283 algorithm are provided; regular processing one input block and
1284 one that processes three blocks parallel.
1285
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001286config CRYPTO_FCRYPT
1287 tristate "FCrypt cipher algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001288 select CRYPTO_ALGAPI
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001289 select CRYPTO_BLKCIPHER
Linus Torvalds1da177e2005-04-16 15:20:36 -07001290 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001291 FCrypt algorithm used by RxRPC.
Linus Torvalds1da177e2005-04-16 15:20:36 -07001292
1293config CRYPTO_KHAZAD
1294 tristate "Khazad cipher algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001295 select CRYPTO_ALGAPI
Linus Torvalds1da177e2005-04-16 15:20:36 -07001296 help
1297 Khazad cipher algorithm.
1298
1299 Khazad was a finalist in the initial NESSIE competition. It is
1300 an algorithm optimized for 64-bit processors with good performance
1301 on 32-bit processors. Khazad uses an 128 bit key size.
1302
1303 See also:
Justin P. Mattock6d8de742010-09-12 10:42:47 +08001304 <http://www.larc.usp.br/~pbarreto/KhazadPage.html>
Linus Torvalds1da177e2005-04-16 15:20:36 -07001305
Tan Swee Heng2407d602007-11-23 19:45:00 +08001306config CRYPTO_SALSA20
Kees Cook3b4afaf2012-10-02 11:16:49 -07001307 tristate "Salsa20 stream cipher algorithm"
Tan Swee Heng2407d602007-11-23 19:45:00 +08001308 select CRYPTO_BLKCIPHER
1309 help
1310 Salsa20 stream cipher algorithm.
1311
1312 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
1313 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
1314
1315 The Salsa20 stream cipher algorithm is designed by Daniel J.
1316 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
Linus Torvalds1da177e2005-04-16 15:20:36 -07001317
Tan Swee Heng974e4b72007-12-10 15:52:56 +08001318config CRYPTO_SALSA20_586
Kees Cook3b4afaf2012-10-02 11:16:49 -07001319 tristate "Salsa20 stream cipher algorithm (i586)"
Tan Swee Heng974e4b72007-12-10 15:52:56 +08001320 depends on (X86 || UML_X86) && !64BIT
Tan Swee Heng974e4b72007-12-10 15:52:56 +08001321 select CRYPTO_BLKCIPHER
Tan Swee Heng974e4b72007-12-10 15:52:56 +08001322 help
1323 Salsa20 stream cipher algorithm.
1324
1325 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
1326 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
1327
1328 The Salsa20 stream cipher algorithm is designed by Daniel J.
1329 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
1330
Tan Swee Heng9a7dafb2007-12-18 00:04:40 +08001331config CRYPTO_SALSA20_X86_64
Kees Cook3b4afaf2012-10-02 11:16:49 -07001332 tristate "Salsa20 stream cipher algorithm (x86_64)"
Tan Swee Heng9a7dafb2007-12-18 00:04:40 +08001333 depends on (X86 || UML_X86) && 64BIT
Tan Swee Heng9a7dafb2007-12-18 00:04:40 +08001334 select CRYPTO_BLKCIPHER
Tan Swee Heng9a7dafb2007-12-18 00:04:40 +08001335 help
1336 Salsa20 stream cipher algorithm.
1337
1338 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
1339 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
1340
1341 The Salsa20 stream cipher algorithm is designed by Daniel J.
1342 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
1343
Martin Willic08d0e62015-06-01 13:43:56 +02001344config CRYPTO_CHACHA20
1345 tristate "ChaCha20 cipher algorithm"
1346 select CRYPTO_BLKCIPHER
1347 help
1348 ChaCha20 cipher algorithm, RFC7539.
1349
1350 ChaCha20 is a 256-bit high-speed stream cipher designed by Daniel J.
1351 Bernstein and further specified in RFC7539 for use in IETF protocols.
1352 This is the portable C implementation of ChaCha20.
1353
1354 See also:
1355 <http://cr.yp.to/chacha/chacha-20080128.pdf>
1356
Martin Willic9320b62015-07-16 19:14:01 +02001357config CRYPTO_CHACHA20_X86_64
Martin Willi3d1e93c2015-07-16 19:14:03 +02001358 tristate "ChaCha20 cipher algorithm (x86_64/SSSE3/AVX2)"
Martin Willic9320b62015-07-16 19:14:01 +02001359 depends on X86 && 64BIT
1360 select CRYPTO_BLKCIPHER
1361 select CRYPTO_CHACHA20
1362 help
1363 ChaCha20 cipher algorithm, RFC7539.
1364
1365 ChaCha20 is a 256-bit high-speed stream cipher designed by Daniel J.
1366 Bernstein and further specified in RFC7539 for use in IETF protocols.
1367 This is the x86_64 assembler implementation using SIMD instructions.
1368
1369 See also:
1370 <http://cr.yp.to/chacha/chacha-20080128.pdf>
1371
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001372config CRYPTO_SEED
1373 tristate "SEED cipher algorithm"
1374 select CRYPTO_ALGAPI
1375 help
1376 SEED cipher algorithm (RFC4269).
1377
1378 SEED is a 128-bit symmetric key block cipher that has been
1379 developed by KISA (Korea Information Security Agency) as a
1380 national standard encryption algorithm of the Republic of Korea.
1381 It is a 16 round block cipher with the key size of 128 bit.
1382
1383 See also:
1384 <http://www.kisa.or.kr/kisa/seed/jsp/seed_eng.jsp>
1385
1386config CRYPTO_SERPENT
1387 tristate "Serpent cipher algorithm"
1388 select CRYPTO_ALGAPI
1389 help
1390 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1391
1392 Keys are allowed to be from 0 to 256 bits in length, in steps
1393 of 8 bits. Also includes the 'Tnepres' algorithm, a reversed
1394 variant of Serpent for compatibility with old kerneli.org code.
1395
1396 See also:
1397 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1398
Jussi Kivilinna937c30d2011-11-09 16:26:25 +02001399config CRYPTO_SERPENT_SSE2_X86_64
1400 tristate "Serpent cipher algorithm (x86_64/SSE2)"
1401 depends on X86 && 64BIT
1402 select CRYPTO_ALGAPI
Jussi Kivilinna341975b2011-11-24 08:37:41 +02001403 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001404 select CRYPTO_ABLK_HELPER
Jussi Kivilinna596d8752012-06-18 14:07:19 +03001405 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinna937c30d2011-11-09 16:26:25 +02001406 select CRYPTO_SERPENT
Jussi Kivilinnafeaf0cf2011-12-13 12:53:12 +02001407 select CRYPTO_LRW
1408 select CRYPTO_XTS
Jussi Kivilinna937c30d2011-11-09 16:26:25 +02001409 help
1410 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1411
1412 Keys are allowed to be from 0 to 256 bits in length, in steps
1413 of 8 bits.
1414
Masanari Iida1e6232f2015-04-04 00:20:30 +09001415 This module provides Serpent cipher algorithm that processes eight
Jussi Kivilinna937c30d2011-11-09 16:26:25 +02001416 blocks parallel using SSE2 instruction set.
1417
1418 See also:
1419 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1420
Jussi Kivilinna251496d2011-11-09 16:26:31 +02001421config CRYPTO_SERPENT_SSE2_586
1422 tristate "Serpent cipher algorithm (i586/SSE2)"
1423 depends on X86 && !64BIT
1424 select CRYPTO_ALGAPI
Jussi Kivilinna341975b2011-11-24 08:37:41 +02001425 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001426 select CRYPTO_ABLK_HELPER
Jussi Kivilinna596d8752012-06-18 14:07:19 +03001427 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinna251496d2011-11-09 16:26:31 +02001428 select CRYPTO_SERPENT
Jussi Kivilinnafeaf0cf2011-12-13 12:53:12 +02001429 select CRYPTO_LRW
1430 select CRYPTO_XTS
Jussi Kivilinna251496d2011-11-09 16:26:31 +02001431 help
1432 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1433
1434 Keys are allowed to be from 0 to 256 bits in length, in steps
1435 of 8 bits.
1436
1437 This module provides Serpent cipher algorithm that processes four
1438 blocks parallel using SSE2 instruction set.
1439
1440 See also:
1441 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1442
Johannes Goetzfried7efe4072012-06-12 16:47:43 +08001443config CRYPTO_SERPENT_AVX_X86_64
1444 tristate "Serpent cipher algorithm (x86_64/AVX)"
1445 depends on X86 && 64BIT
1446 select CRYPTO_ALGAPI
1447 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001448 select CRYPTO_ABLK_HELPER
Jussi Kivilinna1d0debb2012-06-18 14:07:24 +03001449 select CRYPTO_GLUE_HELPER_X86
Johannes Goetzfried7efe4072012-06-12 16:47:43 +08001450 select CRYPTO_SERPENT
1451 select CRYPTO_LRW
1452 select CRYPTO_XTS
1453 help
1454 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1455
1456 Keys are allowed to be from 0 to 256 bits in length, in steps
1457 of 8 bits.
1458
1459 This module provides the Serpent cipher algorithm that processes
1460 eight blocks parallel using the AVX instruction set.
1461
1462 See also:
1463 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1464
Jussi Kivilinna56d76c92013-04-13 13:46:55 +03001465config CRYPTO_SERPENT_AVX2_X86_64
1466 tristate "Serpent cipher algorithm (x86_64/AVX2)"
1467 depends on X86 && 64BIT
1468 select CRYPTO_ALGAPI
1469 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001470 select CRYPTO_ABLK_HELPER
Jussi Kivilinna56d76c92013-04-13 13:46:55 +03001471 select CRYPTO_GLUE_HELPER_X86
1472 select CRYPTO_SERPENT
1473 select CRYPTO_SERPENT_AVX_X86_64
1474 select CRYPTO_LRW
1475 select CRYPTO_XTS
1476 help
1477 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1478
1479 Keys are allowed to be from 0 to 256 bits in length, in steps
1480 of 8 bits.
1481
1482 This module provides Serpent cipher algorithm that processes 16
1483 blocks parallel using AVX2 instruction set.
1484
1485 See also:
1486 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1487
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001488config CRYPTO_TEA
1489 tristate "TEA, XTEA and XETA cipher algorithms"
1490 select CRYPTO_ALGAPI
1491 help
1492 TEA cipher algorithm.
1493
1494 Tiny Encryption Algorithm is a simple cipher that uses
1495 many rounds for security. It is very fast and uses
1496 little memory.
1497
1498 Xtendend Tiny Encryption Algorithm is a modification to
1499 the TEA algorithm to address a potential key weakness
1500 in the TEA algorithm.
1501
1502 Xtendend Encryption Tiny Algorithm is a mis-implementation
1503 of the XTEA algorithm for compatibility purposes.
1504
1505config CRYPTO_TWOFISH
1506 tristate "Twofish cipher algorithm"
1507 select CRYPTO_ALGAPI
1508 select CRYPTO_TWOFISH_COMMON
1509 help
1510 Twofish cipher algorithm.
1511
1512 Twofish was submitted as an AES (Advanced Encryption Standard)
1513 candidate cipher by researchers at CounterPane Systems. It is a
1514 16 round block cipher supporting key sizes of 128, 192, and 256
1515 bits.
1516
1517 See also:
1518 <http://www.schneier.com/twofish.html>
1519
1520config CRYPTO_TWOFISH_COMMON
1521 tristate
1522 help
1523 Common parts of the Twofish cipher algorithm shared by the
1524 generic c and the assembler implementations.
1525
1526config CRYPTO_TWOFISH_586
1527 tristate "Twofish cipher algorithms (i586)"
1528 depends on (X86 || UML_X86) && !64BIT
1529 select CRYPTO_ALGAPI
1530 select CRYPTO_TWOFISH_COMMON
1531 help
1532 Twofish cipher algorithm.
1533
1534 Twofish was submitted as an AES (Advanced Encryption Standard)
1535 candidate cipher by researchers at CounterPane Systems. It is a
1536 16 round block cipher supporting key sizes of 128, 192, and 256
1537 bits.
1538
1539 See also:
1540 <http://www.schneier.com/twofish.html>
1541
1542config CRYPTO_TWOFISH_X86_64
1543 tristate "Twofish cipher algorithm (x86_64)"
1544 depends on (X86 || UML_X86) && 64BIT
1545 select CRYPTO_ALGAPI
1546 select CRYPTO_TWOFISH_COMMON
1547 help
1548 Twofish cipher algorithm (x86_64).
1549
1550 Twofish was submitted as an AES (Advanced Encryption Standard)
1551 candidate cipher by researchers at CounterPane Systems. It is a
1552 16 round block cipher supporting key sizes of 128, 192, and 256
1553 bits.
1554
1555 See also:
1556 <http://www.schneier.com/twofish.html>
1557
Jussi Kivilinna8280daa2011-09-26 16:47:25 +03001558config CRYPTO_TWOFISH_X86_64_3WAY
1559 tristate "Twofish cipher algorithm (x86_64, 3-way parallel)"
Al Virof21a7c12012-04-08 20:31:22 -04001560 depends on X86 && 64BIT
Jussi Kivilinna8280daa2011-09-26 16:47:25 +03001561 select CRYPTO_ALGAPI
1562 select CRYPTO_TWOFISH_COMMON
1563 select CRYPTO_TWOFISH_X86_64
Jussi Kivilinna414cb5e2012-06-18 14:07:34 +03001564 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinnae7cda5d2011-12-13 12:53:01 +02001565 select CRYPTO_LRW
1566 select CRYPTO_XTS
Jussi Kivilinna8280daa2011-09-26 16:47:25 +03001567 help
1568 Twofish cipher algorithm (x86_64, 3-way parallel).
1569
1570 Twofish was submitted as an AES (Advanced Encryption Standard)
1571 candidate cipher by researchers at CounterPane Systems. It is a
1572 16 round block cipher supporting key sizes of 128, 192, and 256
1573 bits.
1574
1575 This module provides Twofish cipher algorithm that processes three
1576 blocks parallel, utilizing resources of out-of-order CPUs better.
1577
1578 See also:
1579 <http://www.schneier.com/twofish.html>
1580
Johannes Goetzfried107778b52012-05-28 15:54:24 +02001581config CRYPTO_TWOFISH_AVX_X86_64
1582 tristate "Twofish cipher algorithm (x86_64/AVX)"
1583 depends on X86 && 64BIT
1584 select CRYPTO_ALGAPI
1585 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001586 select CRYPTO_ABLK_HELPER
Jussi Kivilinnaa7378d42012-06-18 14:07:39 +03001587 select CRYPTO_GLUE_HELPER_X86
Johannes Goetzfried107778b52012-05-28 15:54:24 +02001588 select CRYPTO_TWOFISH_COMMON
1589 select CRYPTO_TWOFISH_X86_64
1590 select CRYPTO_TWOFISH_X86_64_3WAY
1591 select CRYPTO_LRW
1592 select CRYPTO_XTS
1593 help
1594 Twofish cipher algorithm (x86_64/AVX).
1595
1596 Twofish was submitted as an AES (Advanced Encryption Standard)
1597 candidate cipher by researchers at CounterPane Systems. It is a
1598 16 round block cipher supporting key sizes of 128, 192, and 256
1599 bits.
1600
1601 This module provides the Twofish cipher algorithm that processes
1602 eight blocks parallel using the AVX Instruction Set.
1603
1604 See also:
1605 <http://www.schneier.com/twofish.html>
1606
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001607comment "Compression"
1608
Linus Torvalds1da177e2005-04-16 15:20:36 -07001609config CRYPTO_DEFLATE
1610 tristate "Deflate compression algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001611 select CRYPTO_ALGAPI
Giovanni Cabidduf6ded092016-10-21 13:19:53 +01001612 select CRYPTO_ACOMP2
Linus Torvalds1da177e2005-04-16 15:20:36 -07001613 select ZLIB_INFLATE
1614 select ZLIB_DEFLATE
1615 help
1616 This is the Deflate algorithm (RFC1951), specified for use in
1617 IPSec with the IPCOMP protocol (RFC3173, RFC2394).
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001618
Linus Torvalds1da177e2005-04-16 15:20:36 -07001619 You will most probably want this if using IPSec.
1620
Zoltan Sogor0b77abb2007-12-07 16:53:23 +08001621config CRYPTO_LZO
1622 tristate "LZO compression algorithm"
1623 select CRYPTO_ALGAPI
Giovanni Cabidduac9d2c42016-10-21 13:19:49 +01001624 select CRYPTO_ACOMP2
Zoltan Sogor0b77abb2007-12-07 16:53:23 +08001625 select LZO_COMPRESS
1626 select LZO_DECOMPRESS
1627 help
1628 This is the LZO algorithm.
1629
Seth Jennings35a1fc12012-07-19 09:42:41 -05001630config CRYPTO_842
1631 tristate "842 compression algorithm"
Dan Streetman2062c5b2015-05-07 13:49:15 -04001632 select CRYPTO_ALGAPI
Giovanni Cabiddu6a8de3a2016-10-21 13:19:52 +01001633 select CRYPTO_ACOMP2
Dan Streetman2062c5b2015-05-07 13:49:15 -04001634 select 842_COMPRESS
1635 select 842_DECOMPRESS
Seth Jennings35a1fc12012-07-19 09:42:41 -05001636 help
1637 This is the 842 algorithm.
1638
Chanho Min0ea85302013-07-08 16:01:51 -07001639config CRYPTO_LZ4
1640 tristate "LZ4 compression algorithm"
1641 select CRYPTO_ALGAPI
Giovanni Cabiddu8cd93302016-10-21 13:19:50 +01001642 select CRYPTO_ACOMP2
Chanho Min0ea85302013-07-08 16:01:51 -07001643 select LZ4_COMPRESS
1644 select LZ4_DECOMPRESS
1645 help
1646 This is the LZ4 algorithm.
1647
1648config CRYPTO_LZ4HC
1649 tristate "LZ4HC compression algorithm"
1650 select CRYPTO_ALGAPI
Giovanni Cabiddu91d53d92016-10-21 13:19:51 +01001651 select CRYPTO_ACOMP2
Chanho Min0ea85302013-07-08 16:01:51 -07001652 select LZ4HC_COMPRESS
1653 select LZ4_DECOMPRESS
1654 help
1655 This is the LZ4 high compression mode algorithm.
1656
Neil Horman17f0f4a2008-08-14 22:15:52 +10001657comment "Random Number Generation"
1658
1659config CRYPTO_ANSI_CPRNG
1660 tristate "Pseudo Random Number Generation for Cryptographic modules"
1661 select CRYPTO_AES
1662 select CRYPTO_RNG
Neil Horman17f0f4a2008-08-14 22:15:52 +10001663 help
1664 This option enables the generic pseudo random number generator
1665 for cryptographic modules. Uses the Algorithm specified in
Jiri Kosina7dd607e2010-01-27 01:00:10 +01001666 ANSI X9.31 A.2.4. Note that this option must be enabled if
1667 CRYPTO_FIPS is selected
Neil Horman17f0f4a2008-08-14 22:15:52 +10001668
Herbert Xuf2c89a12014-07-04 22:15:08 +08001669menuconfig CRYPTO_DRBG_MENU
Stephan Mueller419090c2014-05-31 17:22:31 +02001670 tristate "NIST SP800-90A DRBG"
Stephan Mueller419090c2014-05-31 17:22:31 +02001671 help
1672 NIST SP800-90A compliant DRBG. In the following submenu, one or
1673 more of the DRBG types must be selected.
1674
Herbert Xuf2c89a12014-07-04 22:15:08 +08001675if CRYPTO_DRBG_MENU
Stephan Mueller419090c2014-05-31 17:22:31 +02001676
1677config CRYPTO_DRBG_HMAC
Herbert Xu401e4232015-06-03 14:49:31 +08001678 bool
Stephan Mueller419090c2014-05-31 17:22:31 +02001679 default y
Stephan Mueller419090c2014-05-31 17:22:31 +02001680 select CRYPTO_HMAC
Herbert Xu826775b2015-06-11 08:55:10 +08001681 select CRYPTO_SHA256
Stephan Mueller419090c2014-05-31 17:22:31 +02001682
1683config CRYPTO_DRBG_HASH
1684 bool "Enable Hash DRBG"
Herbert Xu826775b2015-06-11 08:55:10 +08001685 select CRYPTO_SHA256
Stephan Mueller419090c2014-05-31 17:22:31 +02001686 help
1687 Enable the Hash DRBG variant as defined in NIST SP800-90A.
1688
1689config CRYPTO_DRBG_CTR
1690 bool "Enable CTR DRBG"
Stephan Mueller419090c2014-05-31 17:22:31 +02001691 select CRYPTO_AES
Stephan Mueller35591282016-06-14 07:34:13 +02001692 depends on CRYPTO_CTR
Stephan Mueller419090c2014-05-31 17:22:31 +02001693 help
1694 Enable the CTR DRBG variant as defined in NIST SP800-90A.
1695
Herbert Xuf2c89a12014-07-04 22:15:08 +08001696config CRYPTO_DRBG
1697 tristate
Herbert Xu401e4232015-06-03 14:49:31 +08001698 default CRYPTO_DRBG_MENU
Herbert Xuf2c89a12014-07-04 22:15:08 +08001699 select CRYPTO_RNG
Stephan Muellerbb5530e2015-05-25 15:10:20 +02001700 select CRYPTO_JITTERENTROPY
Herbert Xuf2c89a12014-07-04 22:15:08 +08001701
1702endif # if CRYPTO_DRBG_MENU
Stephan Mueller419090c2014-05-31 17:22:31 +02001703
Stephan Muellerbb5530e2015-05-25 15:10:20 +02001704config CRYPTO_JITTERENTROPY
1705 tristate "Jitterentropy Non-Deterministic Random Number Generator"
Arnd Bergmann2f313e02016-01-26 14:47:10 +01001706 select CRYPTO_RNG
Stephan Muellerbb5530e2015-05-25 15:10:20 +02001707 help
1708 The Jitterentropy RNG is a noise that is intended
1709 to provide seed to another RNG. The RNG does not
1710 perform any cryptographic whitening of the generated
1711 random numbers. This Jitterentropy RNG registers with
1712 the kernel crypto API and can be used by any caller.
1713
Herbert Xu03c8efc2010-10-19 21:12:39 +08001714config CRYPTO_USER_API
1715 tristate
1716
Herbert Xufe869cd2010-10-19 21:23:00 +08001717config CRYPTO_USER_API_HASH
1718 tristate "User-space interface for hash algorithms"
Herbert Xu74517082010-11-29 22:56:03 +08001719 depends on NET
Herbert Xufe869cd2010-10-19 21:23:00 +08001720 select CRYPTO_HASH
1721 select CRYPTO_USER_API
1722 help
1723 This option enables the user-spaces interface for hash
1724 algorithms.
1725
Herbert Xu8ff59092010-10-19 21:31:55 +08001726config CRYPTO_USER_API_SKCIPHER
1727 tristate "User-space interface for symmetric key cipher algorithms"
Herbert Xu74517082010-11-29 22:56:03 +08001728 depends on NET
Herbert Xu8ff59092010-10-19 21:31:55 +08001729 select CRYPTO_BLKCIPHER
1730 select CRYPTO_USER_API
1731 help
1732 This option enables the user-spaces interface for symmetric
1733 key cipher algorithms.
1734
Stephan Mueller2f3755382014-12-25 23:00:39 +01001735config CRYPTO_USER_API_RNG
1736 tristate "User-space interface for random number generator algorithms"
1737 depends on NET
1738 select CRYPTO_RNG
1739 select CRYPTO_USER_API
1740 help
1741 This option enables the user-spaces interface for random
1742 number generator algorithms.
1743
Herbert Xub64a2d92015-05-28 11:30:35 +08001744config CRYPTO_USER_API_AEAD
1745 tristate "User-space interface for AEAD cipher algorithms"
1746 depends on NET
1747 select CRYPTO_AEAD
1748 select CRYPTO_USER_API
1749 help
1750 This option enables the user-spaces interface for AEAD
1751 cipher algorithms.
1752
Dmitry Kasatkinee089972013-05-06 15:40:01 +03001753config CRYPTO_HASH_INFO
1754 bool
1755
Linus Torvalds1da177e2005-04-16 15:20:36 -07001756source "drivers/crypto/Kconfig"
David Howells964f3b32012-09-13 15:17:21 +01001757source crypto/asymmetric_keys/Kconfig
David Howellscfc411e2015-08-14 15:20:41 +01001758source certs/Kconfig
Linus Torvalds1da177e2005-04-16 15:20:36 -07001759
Herbert Xucce9e062006-08-21 21:08:13 +10001760endif # if CRYPTO