Blame view
crypto/Kconfig
14.4 KB
1da177e4c Linux-2.6.12-rc2 |
1 |
# |
685784aaf xor: make 'xor_bl... |
2 3 4 5 6 7 |
# Generic algorithms support # config XOR_BLOCKS tristate # |
9bc89cd82 async_tx: add the... |
8 |
# async_tx api: hardware offloaded memory transfer/transform support |
1da177e4c Linux-2.6.12-rc2 |
9 |
# |
9bc89cd82 async_tx: add the... |
10 |
source "crypto/async_tx/Kconfig" |
1da177e4c Linux-2.6.12-rc2 |
11 |
|
9bc89cd82 async_tx: add the... |
12 13 14 |
# # Cryptographic API Configuration # |
2e290f43d [CRYPTO] Kconfig:... |
15 |
menuconfig CRYPTO |
1da177e4c Linux-2.6.12-rc2 |
16 17 18 |
bool "Cryptographic API" help This option provides the core Cryptographic API. |
cce9e06d1 [CRYPTO] api: Spl... |
19 20 21 22 23 24 |
if CRYPTO config CRYPTO_ALGAPI tristate help This option provides the API for cryptographic algorithms. |
b5b7f0886 [CRYPTO] api: Add... |
25 26 27 |
config CRYPTO_ABLKCIPHER tristate select CRYPTO_BLKCIPHER |
1ae978208 [CRYPTO] api: Add... |
28 29 30 |
config CRYPTO_AEAD tristate select CRYPTO_ALGAPI |
5cde0af2a [CRYPTO] cipher: ... |
31 32 33 |
config CRYPTO_BLKCIPHER tristate select CRYPTO_ALGAPI |
055bcee31 [CRYPTO] digest: ... |
34 35 36 |
config CRYPTO_HASH tristate select CRYPTO_ALGAPI |
2b8c19dbd [CRYPTO] api: Add... |
37 38 39 |
config CRYPTO_MANAGER tristate "Cryptographic algorithm manager" select CRYPTO_ALGAPI |
2b8c19dbd [CRYPTO] api: Add... |
40 41 42 |
help Create default cryptographic template instantiations such as cbc(aes). |
1da177e4c Linux-2.6.12-rc2 |
43 |
config CRYPTO_HMAC |
8425165df [CRYPTO] digest: ... |
44 |
tristate "HMAC support" |
0796ae061 [CRYPTO] hmac: Ad... |
45 |
select CRYPTO_HASH |
43518407d [CRYPTO] api: Sel... |
46 |
select CRYPTO_MANAGER |
1da177e4c Linux-2.6.12-rc2 |
47 48 49 |
help HMAC: Keyed-Hashing for Message Authentication (RFC2104). This is required for IPSec. |
333b0d7ee [CRYPTO] xcbc: Ne... |
50 51 52 53 54 55 56 57 58 59 |
config CRYPTO_XCBC tristate "XCBC support" depends on EXPERIMENTAL select CRYPTO_HASH select CRYPTO_MANAGER help XCBC: Keyed-Hashing with encryption algorithm http://www.ietf.org/rfc/rfc3566.txt http://csrc.nist.gov/encryption/modes/proposedmodes/ xcbc-mac/xcbc-mac-spec.pdf |
1da177e4c Linux-2.6.12-rc2 |
60 61 |
config CRYPTO_NULL tristate "Null algorithms" |
cce9e06d1 [CRYPTO] api: Spl... |
62 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
63 64 65 66 67 |
help These are 'Null' algorithms, used by IPsec, which do nothing. config CRYPTO_MD4 tristate "MD4 digest algorithm" |
cce9e06d1 [CRYPTO] api: Spl... |
68 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
69 70 71 72 73 |
help MD4 message digest algorithm (RFC1320). config CRYPTO_MD5 tristate "MD5 digest algorithm" |
cce9e06d1 [CRYPTO] api: Spl... |
74 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
75 76 77 78 79 |
help MD5 message digest algorithm (RFC1321). config CRYPTO_SHA1 tristate "SHA1 digest algorithm" |
cce9e06d1 [CRYPTO] api: Spl... |
80 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
81 82 |
help SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2). |
1da177e4c Linux-2.6.12-rc2 |
83 84 |
config CRYPTO_SHA256 tristate "SHA256 digest algorithm" |
cce9e06d1 [CRYPTO] api: Spl... |
85 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
86 87 88 89 90 91 92 93 |
help SHA256 secure hash standard (DFIPS 180-2). This version of SHA implements a 256 bit hash with 128 bits of security against collision attacks. config CRYPTO_SHA512 tristate "SHA384 and SHA512 digest algorithms" |
cce9e06d1 [CRYPTO] api: Spl... |
94 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
95 96 97 98 99 100 101 102 103 104 105 |
help SHA512 secure hash standard (DFIPS 180-2). This version of SHA implements a 512 bit hash with 256 bits of security against collision attacks. This code also includes SHA-384, a 384 bit hash with 192 bits of security against collision attacks. config CRYPTO_WP512 tristate "Whirlpool digest algorithms" |
cce9e06d1 [CRYPTO] api: Spl... |
106 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
107 108 109 110 111 112 113 114 115 116 117 |
help Whirlpool hash algorithm 512, 384 and 256-bit hashes Whirlpool-512 is part of the NESSIE cryptographic primitives. Whirlpool will be part of the ISO/IEC 10118-3:2003(E) standard See also: <http://planeta.terra.com.br/informatica/paulobarreto/WhirlpoolPage.html> config CRYPTO_TGR192 tristate "Tiger digest algorithms" |
cce9e06d1 [CRYPTO] api: Spl... |
118 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
119 120 121 122 123 124 125 126 127 |
help Tiger hash algorithm 192, 160 and 128-bit hashes Tiger is a hash function optimized for 64-bit processors while still having decent performance on 32-bit processors. Tiger was developed by Ross Anderson and Eli Biham. See also: <http://www.cs.technion.ac.il/~biham/Reports/Tiger/>. |
c494e0705 [CRYPTO] lib: tab... |
128 129 130 131 132 133 134 135 136 |
config CRYPTO_GF128MUL tristate "GF(2^128) multiplication functions (EXPERIMENTAL)" depends on EXPERIMENTAL help Efficient table driven implementation of multiplications in the field GF(2^128). This is needed by some cypher modes. This option will be selected automatically if you select such a cipher mode. Only select this option by hand if you expect to load an external module that requires these functions. |
db131ef90 [CRYPTO] cipher: ... |
137 138 139 |
config CRYPTO_ECB tristate "ECB support" select CRYPTO_BLKCIPHER |
43518407d [CRYPTO] api: Sel... |
140 |
select CRYPTO_MANAGER |
db131ef90 [CRYPTO] cipher: ... |
141 142 143 144 145 146 147 148 |
help ECB: Electronic CodeBook mode This is the simplest block cipher algorithm. It simply encrypts the input block by block. config CRYPTO_CBC tristate "CBC support" select CRYPTO_BLKCIPHER |
43518407d [CRYPTO] api: Sel... |
149 |
select CRYPTO_MANAGER |
db131ef90 [CRYPTO] cipher: ... |
150 151 152 |
help CBC: Cipher Block Chaining mode This block cipher algorithm is required for IPSec. |
91652be5d [CRYPTO] pcbc: Ad... |
153 154 155 156 |
config CRYPTO_PCBC tristate "PCBC support" select CRYPTO_BLKCIPHER select CRYPTO_MANAGER |
91652be5d [CRYPTO] pcbc: Ad... |
157 158 159 |
help PCBC: Propagating Cipher Block Chaining mode This block cipher algorithm is required for RxRPC. |
64470f1b8 [CRYPTO] lrw: Lis... |
160 161 162 163 164 165 166 167 168 169 170 171 |
config CRYPTO_LRW tristate "LRW support (EXPERIMENTAL)" depends on EXPERIMENTAL select CRYPTO_BLKCIPHER select CRYPTO_MANAGER select CRYPTO_GF128MUL help LRW: Liskov Rivest Wagner, a tweakable, non malleable, non movable narrow block cipher mode for dm-crypt. Use it with cipher specification string aes-lrw-benbi, the key must be 256, 320 or 384. The first 128, 192 or 256 bits in the key are used for AES and the rest is used to tie each cipher block to its logical position. |
f19f5111c [CRYPTO] xts: XTS... |
172 173 174 175 176 177 178 179 180 181 |
config CRYPTO_XTS tristate "XTS support (EXPERIMENTAL)" depends on EXPERIMENTAL select CRYPTO_BLKCIPHER select CRYPTO_MANAGER select CRYPTO_GF128MUL help XTS: IEEE1619/D16 narrow block cipher use with aes-xts-plain, key size 256, 384 or 512 bits. This implementation currently can't handle a sectorsize which is not a multiple of 16 bytes. |
124b53d02 [CRYPTO] cryptd: ... |
182 183 184 185 186 187 188 189 |
config CRYPTO_CRYPTD tristate "Software async crypto daemon" select CRYPTO_ABLKCIPHER select CRYPTO_MANAGER help This is a generic software asynchronous crypto daemon that converts an arbitrary synchronous software crypto algorithm into an asynchronous algorithm that executes in a kernel thread. |
1da177e4c Linux-2.6.12-rc2 |
190 191 |
config CRYPTO_DES tristate "DES and Triple DES EDE cipher algorithms" |
cce9e06d1 [CRYPTO] api: Spl... |
192 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
193 194 |
help DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3). |
90831639a [CRYPTO] fcrypt: ... |
195 196 197 198 199 200 |
config CRYPTO_FCRYPT tristate "FCrypt cipher algorithm" select CRYPTO_ALGAPI select CRYPTO_BLKCIPHER help FCrypt algorithm used by RxRPC. |
1da177e4c Linux-2.6.12-rc2 |
201 202 |
config CRYPTO_BLOWFISH tristate "Blowfish cipher algorithm" |
cce9e06d1 [CRYPTO] api: Spl... |
203 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
204 205 206 207 208 209 210 211 212 213 214 215 |
help Blowfish cipher algorithm, by Bruce Schneier. This is a variable key length cipher which can use keys from 32 bits to 448 bits in length. It's fast, simple and specifically designed for use on "large microprocessors". See also: <http://www.schneier.com/blowfish.html> config CRYPTO_TWOFISH tristate "Twofish cipher algorithm" |
cce9e06d1 [CRYPTO] api: Spl... |
216 |
select CRYPTO_ALGAPI |
2729bb427 [CRYPTO] twofish:... |
217 |
select CRYPTO_TWOFISH_COMMON |
1da177e4c Linux-2.6.12-rc2 |
218 219 220 221 222 223 224 225 226 227 |
help Twofish cipher algorithm. Twofish was submitted as an AES (Advanced Encryption Standard) candidate cipher by researchers at CounterPane Systems. It is a 16 round block cipher supporting key sizes of 128, 192, and 256 bits. See also: <http://www.schneier.com/twofish.html> |
2729bb427 [CRYPTO] twofish:... |
228 229 |
config CRYPTO_TWOFISH_COMMON tristate |
2729bb427 [CRYPTO] twofish:... |
230 231 232 |
help Common parts of the Twofish cipher algorithm shared by the generic c and the assembler implementations. |
b9f535ffe [CRYPTO] twofish:... |
233 234 |
config CRYPTO_TWOFISH_586 tristate "Twofish cipher algorithms (i586)" |
cce9e06d1 [CRYPTO] api: Spl... |
235 236 |
depends on (X86 || UML_X86) && !64BIT select CRYPTO_ALGAPI |
b9f535ffe [CRYPTO] twofish:... |
237 238 239 240 241 242 243 244 245 246 247 |
select CRYPTO_TWOFISH_COMMON help Twofish cipher algorithm. Twofish was submitted as an AES (Advanced Encryption Standard) candidate cipher by researchers at CounterPane Systems. It is a 16 round block cipher supporting key sizes of 128, 192, and 256 bits. See also: <http://www.schneier.com/twofish.html> |
eaf44088f [CRYPTO] twofish:... |
248 249 |
config CRYPTO_TWOFISH_X86_64 tristate "Twofish cipher algorithm (x86_64)" |
cce9e06d1 [CRYPTO] api: Spl... |
250 251 |
depends on (X86 || UML_X86) && 64BIT select CRYPTO_ALGAPI |
eaf44088f [CRYPTO] twofish:... |
252 253 254 255 256 257 258 259 260 261 262 |
select CRYPTO_TWOFISH_COMMON help Twofish cipher algorithm (x86_64). Twofish was submitted as an AES (Advanced Encryption Standard) candidate cipher by researchers at CounterPane Systems. It is a 16 round block cipher supporting key sizes of 128, 192, and 256 bits. See also: <http://www.schneier.com/twofish.html> |
1da177e4c Linux-2.6.12-rc2 |
263 264 |
config CRYPTO_SERPENT tristate "Serpent cipher algorithm" |
cce9e06d1 [CRYPTO] api: Spl... |
265 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
266 267 268 269 270 |
help Serpent cipher algorithm, by Anderson, Biham & Knudsen. Keys are allowed to be from 0 to 256 bits in length, in steps of 8 bits. Also includes the 'Tnepres' algorithm, a reversed |
3dde6ad8f Fix trivial typos... |
271 |
variant of Serpent for compatibility with old kerneli.org code. |
1da177e4c Linux-2.6.12-rc2 |
272 273 274 275 276 277 |
See also: <http://www.cl.cam.ac.uk/~rja14/serpent.html> config CRYPTO_AES tristate "AES cipher algorithms" |
cce9e06d1 [CRYPTO] api: Spl... |
278 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 |
help AES cipher algorithms (FIPS-197). AES uses the Rijndael algorithm. Rijndael appears to be consistently a very good performer in both hardware and software across a wide range of computing environments regardless of its use in feedback or non-feedback modes. Its key setup time is excellent, and its key agility is good. Rijndael's very low memory requirements make it very well suited for restricted-space environments, in which it also demonstrates excellent performance. Rijndael's operations are among the easiest to defend against power and timing attacks. The AES specifies three key sizes: 128, 192 and 256 bits See <http://csrc.nist.gov/CryptoToolkit/aes/> for more information. config CRYPTO_AES_586 tristate "AES cipher algorithms (i586)" |
cce9e06d1 [CRYPTO] api: Spl... |
298 299 |
depends on (X86 || UML_X86) && !64BIT select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
300 301 302 303 304 305 306 307 308 309 310 311 312 313 |
help AES cipher algorithms (FIPS-197). AES uses the Rijndael algorithm. Rijndael appears to be consistently a very good performer in both hardware and software across a wide range of computing environments regardless of its use in feedback or non-feedback modes. Its key setup time is excellent, and its key agility is good. Rijndael's very low memory requirements make it very well suited for restricted-space environments, in which it also demonstrates excellent performance. Rijndael's operations are among the easiest to defend against power and timing attacks. The AES specifies three key sizes: 128, 192 and 256 bits |
a2a892a23 [CRYPTO] Add x86_... |
314 315 316 317 318 |
See <http://csrc.nist.gov/encryption/aes/> for more information. config CRYPTO_AES_X86_64 tristate "AES cipher algorithms (x86_64)" |
cce9e06d1 [CRYPTO] api: Spl... |
319 320 |
depends on (X86 || UML_X86) && 64BIT select CRYPTO_ALGAPI |
a2a892a23 [CRYPTO] Add x86_... |
321 322 323 324 325 326 327 328 329 330 331 332 333 334 |
help AES cipher algorithms (FIPS-197). AES uses the Rijndael algorithm. Rijndael appears to be consistently a very good performer in both hardware and software across a wide range of computing environments regardless of its use in feedback or non-feedback modes. Its key setup time is excellent, and its key agility is good. Rijndael's very low memory requirements make it very well suited for restricted-space environments, in which it also demonstrates excellent performance. Rijndael's operations are among the easiest to defend against power and timing attacks. The AES specifies three key sizes: 128, 192 and 256 bits |
1da177e4c Linux-2.6.12-rc2 |
335 336 337 338 339 |
See <http://csrc.nist.gov/encryption/aes/> for more information. config CRYPTO_CAST5 tristate "CAST5 (CAST-128) cipher algorithm" |
cce9e06d1 [CRYPTO] api: Spl... |
340 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
341 342 343 344 345 346 |
help The CAST5 encryption algorithm (synonymous with CAST-128) is described in RFC2144. config CRYPTO_CAST6 tristate "CAST6 (CAST-256) cipher algorithm" |
cce9e06d1 [CRYPTO] api: Spl... |
347 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
348 349 350 351 352 |
help The CAST6 encryption algorithm (synonymous with CAST-256) is described in RFC2612. config CRYPTO_TEA |
fb4f10ed5 [CRYPTO]: Fix XTE... |
353 |
tristate "TEA, XTEA and XETA cipher algorithms" |
cce9e06d1 [CRYPTO] api: Spl... |
354 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
355 356 357 358 359 360 361 362 363 364 |
help TEA cipher algorithm. Tiny Encryption Algorithm is a simple cipher that uses many rounds for security. It is very fast and uses little memory. Xtendend Tiny Encryption Algorithm is a modification to the TEA algorithm to address a potential key weakness in the TEA algorithm. |
fb4f10ed5 [CRYPTO]: Fix XTE... |
365 366 |
Xtendend Encryption Tiny Algorithm is a mis-implementation of the XTEA algorithm for compatibility purposes. |
1da177e4c Linux-2.6.12-rc2 |
367 368 |
config CRYPTO_ARC4 tristate "ARC4 cipher algorithm" |
cce9e06d1 [CRYPTO] api: Spl... |
369 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
370 371 372 373 374 375 376 377 378 379 |
help ARC4 cipher algorithm. ARC4 is a stream cipher using keys ranging from 8 bits to 2048 bits in length. This algorithm is required for driver-based WEP, but it should not be for other purposes because of the weakness of the algorithm. config CRYPTO_KHAZAD tristate "Khazad cipher algorithm" |
cce9e06d1 [CRYPTO] api: Spl... |
380 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
381 382 383 384 385 386 387 388 389 390 391 392 |
help Khazad cipher algorithm. Khazad was a finalist in the initial NESSIE competition. It is an algorithm optimized for 64-bit processors with good performance on 32-bit processors. Khazad uses an 128 bit key size. See also: <http://planeta.terra.com.br/informatica/paulobarreto/KhazadPage.html> config CRYPTO_ANUBIS tristate "Anubis cipher algorithm" |
cce9e06d1 [CRYPTO] api: Spl... |
393 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
394 395 396 397 398 399 400 401 402 403 |
help Anubis cipher algorithm. Anubis is a variable key length cipher which can use keys from 128 bits to 320 bits in length. It was evaluated as a entrant in the NESSIE competition. See also: <https://www.cosic.esat.kuleuven.ac.be/nessie/reports/> <http://planeta.terra.com.br/informatica/paulobarreto/AnubisPage.html> |
e2ee95b8c [CRYPTO] seed: Ne... |
404 405 406 407 408 409 410 411 412 413 414 415 416 |
config CRYPTO_SEED tristate "SEED cipher algorithm" select CRYPTO_ALGAPI help SEED cipher algorithm (RFC4269). SEED is a 128-bit symmetric key block cipher that has been developed by KISA (Korea Information Security Agency) as a national standard encryption algorithm of the Republic of Korea. It is a 16 round block cipher with the key size of 128 bit. See also: <http://www.kisa.or.kr/kisa/seed/jsp/seed_eng.jsp> |
1da177e4c Linux-2.6.12-rc2 |
417 418 419 |
config CRYPTO_DEFLATE tristate "Deflate compression algorithm" |
cce9e06d1 [CRYPTO] api: Spl... |
420 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
421 422 423 424 425 426 427 428 429 430 |
select ZLIB_INFLATE select ZLIB_DEFLATE help This is the Deflate algorithm (RFC1951), specified for use in IPSec with the IPCOMP protocol (RFC3173, RFC2394). You will most probably want this if using IPSec. config CRYPTO_MICHAEL_MIC tristate "Michael MIC keyed digest algorithm" |
cce9e06d1 [CRYPTO] api: Spl... |
431 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
432 433 434 435 436 437 438 439 |
help Michael MIC is used for message integrity protection in TKIP (IEEE 802.11i). This algorithm is required for TKIP, but it should not be used for other purposes because of the weakness of the algorithm. config CRYPTO_CRC32C tristate "CRC32c CRC algorithm" |
cce9e06d1 [CRYPTO] api: Spl... |
440 |
select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
441 442 443 444 445 446 |
select LIBCRC32C help Castagnoli, et al Cyclic Redundancy-Check Algorithm. Used by iSCSI for header and data digests and by others. See Castagnoli93. This implementation uses lib/libcrc32c. Module will be crc32c. |
04ac7db3f [CRYPTO] camellia... |
447 448 449 450 451 452 453 454 455 456 457 458 459 460 |
config CRYPTO_CAMELLIA tristate "Camellia cipher algorithms" depends on CRYPTO select CRYPTO_ALGAPI help Camellia cipher algorithms module. Camellia is a symmetric key block cipher developed jointly at NTT and Mitsubishi Electric Corporation. The Camellia specifies three key sizes: 128, 192 and 256 bits. See also: <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html> |
1da177e4c Linux-2.6.12-rc2 |
461 462 |
config CRYPTO_TEST tristate "Testing module" |
cce9e06d1 [CRYPTO] api: Spl... |
463 464 |
depends on m select CRYPTO_ALGAPI |
1da177e4c Linux-2.6.12-rc2 |
465 466 |
help Quick & dirty crypto test module. |
3c09f17c3 [CRYPTO] aead: Ad... |
467 468 469 470 471 472 473 |
config CRYPTO_AUTHENC tristate "Authenc support" select CRYPTO_AEAD select CRYPTO_MANAGER help Authenc: Combined mode wrapper for IPsec. This is required for IPSec. |
1da177e4c Linux-2.6.12-rc2 |
474 |
source "drivers/crypto/Kconfig" |
1da177e4c Linux-2.6.12-rc2 |
475 |
|
cce9e06d1 [CRYPTO] api: Spl... |
476 |
endif # if CRYPTO |