blob: bb794246432666e4370c318095beef5e0d7bd39a [file] [log] [blame]
Linus Torvalds1da177e2005-04-16 15:20:36 -07001#
Dan Williams685784a2007-07-09 11:56:42 -07002# Generic algorithms support
3#
4config XOR_BLOCKS
5 tristate
6
7#
Dan Williams9bc89cd2007-01-02 11:10:44 -07008# async_tx api: hardware offloaded memory transfer/transform support
9#
10source "crypto/async_tx/Kconfig"
11
12#
Linus Torvalds1da177e2005-04-16 15:20:36 -070013# Cryptographic API Configuration
14#
Jan Engelhardt2e290f42007-05-18 15:11:01 +100015menuconfig CRYPTO
Sebastian Siewiorc3715cb92008-03-30 16:36:09 +080016 tristate "Cryptographic API"
Linus Torvalds1da177e2005-04-16 15:20:36 -070017 help
18 This option provides the core Cryptographic API.
19
Herbert Xucce9e062006-08-21 21:08:13 +100020if CRYPTO
21
Sebastian Siewior584fffc2008-04-05 21:04:48 +080022comment "Crypto core or helper"
23
Neil Hormanccb778e2008-08-05 14:13:08 +080024config CRYPTO_FIPS
25 bool "FIPS 200 compliance"
Herbert Xuf2c89a12014-07-04 22:15:08 +080026 depends on (CRYPTO_ANSI_CPRNG || CRYPTO_DRBG) && !CRYPTO_MANAGER_DISABLE_TESTS
Alec Ari1f696092016-10-04 19:34:30 -030027 depends on (MODULE_SIG || !MODULES)
Neil Hormanccb778e2008-08-05 14:13:08 +080028 help
29 This options enables the fips boot option which is
30 required if you want to system to operate in a FIPS 200
31 certification. You should say no unless you know what
Chuck Ebberte84c5482010-09-03 19:17:49 +080032 this is.
Neil Hormanccb778e2008-08-05 14:13:08 +080033
Herbert Xucce9e062006-08-21 21:08:13 +100034config CRYPTO_ALGAPI
35 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110036 select CRYPTO_ALGAPI2
Herbert Xucce9e062006-08-21 21:08:13 +100037 help
38 This option provides the API for cryptographic algorithms.
39
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110040config CRYPTO_ALGAPI2
41 tristate
42
Herbert Xu1ae97822007-08-30 15:36:14 +080043config CRYPTO_AEAD
44 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110045 select CRYPTO_AEAD2
Herbert Xu1ae97822007-08-30 15:36:14 +080046 select CRYPTO_ALGAPI
47
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110048config CRYPTO_AEAD2
49 tristate
50 select CRYPTO_ALGAPI2
Herbert Xu149a3972015-08-13 17:28:58 +080051 select CRYPTO_NULL2
52 select CRYPTO_RNG2
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110053
Herbert Xu5cde0af2006-08-22 00:07:53 +100054config CRYPTO_BLKCIPHER
55 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110056 select CRYPTO_BLKCIPHER2
Herbert Xu5cde0af2006-08-22 00:07:53 +100057 select CRYPTO_ALGAPI
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110058
59config CRYPTO_BLKCIPHER2
60 tristate
61 select CRYPTO_ALGAPI2
62 select CRYPTO_RNG2
Huang Ying0a2e8212009-02-19 14:44:02 +080063 select CRYPTO_WORKQUEUE
Herbert Xu5cde0af2006-08-22 00:07:53 +100064
Herbert Xu055bcee2006-08-19 22:24:23 +100065config CRYPTO_HASH
66 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110067 select CRYPTO_HASH2
Herbert Xu055bcee2006-08-19 22:24:23 +100068 select CRYPTO_ALGAPI
69
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110070config CRYPTO_HASH2
71 tristate
72 select CRYPTO_ALGAPI2
73
Neil Horman17f0f4a2008-08-14 22:15:52 +100074config CRYPTO_RNG
75 tristate
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110076 select CRYPTO_RNG2
Neil Horman17f0f4a2008-08-14 22:15:52 +100077 select CRYPTO_ALGAPI
78
Herbert Xu6a0fcbb2008-12-10 23:29:44 +110079config CRYPTO_RNG2
80 tristate
81 select CRYPTO_ALGAPI2
82
Herbert Xu401e4232015-06-03 14:49:31 +080083config CRYPTO_RNG_DEFAULT
84 tristate
85 select CRYPTO_DRBG_MENU
86
Tadeusz Struk3c339ab2015-06-16 10:30:55 -070087config CRYPTO_AKCIPHER2
88 tristate
89 select CRYPTO_ALGAPI2
90
91config CRYPTO_AKCIPHER
92 tristate
93 select CRYPTO_AKCIPHER2
94 select CRYPTO_ALGAPI
95
Salvatore Benedetto4e5f2c42016-06-22 17:49:13 +010096config CRYPTO_KPP2
97 tristate
98 select CRYPTO_ALGAPI2
99
100config CRYPTO_KPP
101 tristate
102 select CRYPTO_ALGAPI
103 select CRYPTO_KPP2
104
Giovanni Cabiddu2ebda742016-10-21 13:19:47 +0100105config CRYPTO_ACOMP2
106 tristate
107 select CRYPTO_ALGAPI2
108
109config CRYPTO_ACOMP
110 tristate
111 select CRYPTO_ALGAPI
112 select CRYPTO_ACOMP2
113
Tadeusz Strukcfc2bb32015-06-16 10:31:01 -0700114config CRYPTO_RSA
115 tristate "RSA algorithm"
Tadeusz Struk425e0172015-06-19 10:27:39 -0700116 select CRYPTO_AKCIPHER
Tadeusz Struk58446fe2016-05-04 06:38:46 -0700117 select CRYPTO_MANAGER
Tadeusz Strukcfc2bb32015-06-16 10:31:01 -0700118 select MPILIB
119 select ASN1
120 help
121 Generic implementation of the RSA public key algorithm.
122
Salvatore Benedetto802c7f12016-06-22 17:49:14 +0100123config CRYPTO_DH
124 tristate "Diffie-Hellman algorithm"
125 select CRYPTO_KPP
126 select MPILIB
127 help
128 Generic implementation of the Diffie-Hellman algorithm.
129
Salvatore Benedetto3c4b2392016-06-22 17:49:15 +0100130config CRYPTO_ECDH
131 tristate "ECDH algorithm"
132 select CRYTPO_KPP
133 help
134 Generic implementation of the ECDH algorithm
Salvatore Benedetto802c7f12016-06-22 17:49:14 +0100135
Herbert Xu2b8c19d2006-09-21 11:31:44 +1000136config CRYPTO_MANAGER
137 tristate "Cryptographic algorithm manager"
Herbert Xu6a0fcbb2008-12-10 23:29:44 +1100138 select CRYPTO_MANAGER2
Herbert Xu2b8c19d2006-09-21 11:31:44 +1000139 help
140 Create default cryptographic template instantiations such as
141 cbc(aes).
142
Herbert Xu6a0fcbb2008-12-10 23:29:44 +1100143config CRYPTO_MANAGER2
144 def_tristate CRYPTO_MANAGER || (CRYPTO_MANAGER!=n && CRYPTO_ALGAPI=y)
145 select CRYPTO_AEAD2
146 select CRYPTO_HASH2
147 select CRYPTO_BLKCIPHER2
Tadeusz Struk946cc462015-06-16 10:31:06 -0700148 select CRYPTO_AKCIPHER2
Salvatore Benedetto4e5f2c42016-06-22 17:49:13 +0100149 select CRYPTO_KPP2
Giovanni Cabiddu2ebda742016-10-21 13:19:47 +0100150 select CRYPTO_ACOMP2
Herbert Xu6a0fcbb2008-12-10 23:29:44 +1100151
Steffen Klasserta38f7902011-09-27 07:23:50 +0200152config CRYPTO_USER
153 tristate "Userspace cryptographic algorithm configuration"
Herbert Xu5db017a2011-11-01 12:12:43 +1100154 depends on NET
Steffen Klasserta38f7902011-09-27 07:23:50 +0200155 select CRYPTO_MANAGER
156 help
Valdis.Kletnieks@vt.edud19978f2011-11-09 01:29:20 -0500157 Userspace configuration for cryptographic instantiations such as
Steffen Klasserta38f7902011-09-27 07:23:50 +0200158 cbc(aes).
159
Herbert Xu326a6342010-08-06 09:40:28 +0800160config CRYPTO_MANAGER_DISABLE_TESTS
161 bool "Disable run-time self tests"
Herbert Xu00ca28a2010-08-06 10:34:00 +0800162 default y
163 depends on CRYPTO_MANAGER2
Alexander Shishkin0b767f92010-06-03 20:53:43 +1000164 help
Herbert Xu326a6342010-08-06 09:40:28 +0800165 Disable run-time self tests that normally take place at
166 algorithm registration.
Alexander Shishkin0b767f92010-06-03 20:53:43 +1000167
Rik Snelc494e072006-11-29 18:59:44 +1100168config CRYPTO_GF128MUL
Jussi Kivilinna08c70fc2011-12-13 12:53:22 +0200169 tristate "GF(2^128) multiplication functions"
Rik Snelc494e072006-11-29 18:59:44 +1100170 help
171 Efficient table driven implementation of multiplications in the
172 field GF(2^128). This is needed by some cypher modes. This
173 option will be selected automatically if you select such a
174 cipher mode. Only select this option by hand if you expect to load
175 an external module that requires these functions.
176
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800177config CRYPTO_NULL
178 tristate "Null algorithms"
Herbert Xu149a3972015-08-13 17:28:58 +0800179 select CRYPTO_NULL2
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800180 help
181 These are 'Null' algorithms, used by IPsec, which do nothing.
182
Herbert Xu149a3972015-08-13 17:28:58 +0800183config CRYPTO_NULL2
Herbert Xudd43c4e2015-08-17 20:39:40 +0800184 tristate
Herbert Xu149a3972015-08-13 17:28:58 +0800185 select CRYPTO_ALGAPI2
186 select CRYPTO_BLKCIPHER2
187 select CRYPTO_HASH2
188
Steffen Klassert5068c7a2010-01-07 15:57:19 +1100189config CRYPTO_PCRYPT
Kees Cook3b4afaf2012-10-02 11:16:49 -0700190 tristate "Parallel crypto engine"
191 depends on SMP
Steffen Klassert5068c7a2010-01-07 15:57:19 +1100192 select PADATA
193 select CRYPTO_MANAGER
194 select CRYPTO_AEAD
195 help
196 This converts an arbitrary crypto algorithm into a parallel
197 algorithm that executes in kernel threads.
198
Huang Ying25c38d32009-02-19 14:33:40 +0800199config CRYPTO_WORKQUEUE
200 tristate
201
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800202config CRYPTO_CRYPTD
203 tristate "Software async crypto daemon"
Herbert Xudb131ef2006-09-21 11:44:08 +1000204 select CRYPTO_BLKCIPHER
Loc Hob8a28252008-05-14 21:23:00 +0800205 select CRYPTO_HASH
Herbert Xu43518402006-10-16 21:28:58 +1000206 select CRYPTO_MANAGER
Huang Ying254eff72009-02-19 14:42:19 +0800207 select CRYPTO_WORKQUEUE
Herbert Xudb131ef2006-09-21 11:44:08 +1000208 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800209 This is a generic software asynchronous crypto daemon that
210 converts an arbitrary synchronous software crypto algorithm
211 into an asynchronous algorithm that executes in a kernel thread.
212
Tim Chen1e65b812014-07-31 10:29:51 -0700213config CRYPTO_MCRYPTD
214 tristate "Software async multi-buffer crypto daemon"
215 select CRYPTO_BLKCIPHER
216 select CRYPTO_HASH
217 select CRYPTO_MANAGER
218 select CRYPTO_WORKQUEUE
219 help
220 This is a generic software asynchronous crypto daemon that
221 provides the kernel thread to assist multi-buffer crypto
222 algorithms for submitting jobs and flushing jobs in multi-buffer
223 crypto algorithms. Multi-buffer crypto algorithms are executed
224 in the context of this kernel thread and drivers can post
Ted Percival0e566732014-09-04 15:18:21 +0800225 their crypto request asynchronously to be processed by this daemon.
Tim Chen1e65b812014-07-31 10:29:51 -0700226
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800227config CRYPTO_AUTHENC
228 tristate "Authenc support"
229 select CRYPTO_AEAD
230 select CRYPTO_BLKCIPHER
231 select CRYPTO_MANAGER
232 select CRYPTO_HASH
Herbert Xue94c6a72015-08-04 21:23:14 +0800233 select CRYPTO_NULL
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800234 help
235 Authenc: Combined mode wrapper for IPsec.
236 This is required for IPSec.
237
238config CRYPTO_TEST
239 tristate "Testing module"
240 depends on m
Herbert Xuda7f0332008-07-31 17:08:25 +0800241 select CRYPTO_MANAGER
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800242 help
243 Quick & dirty crypto test module.
244
Ard Biesheuvela62b01c2013-09-20 09:55:40 +0200245config CRYPTO_ABLK_HELPER
Jussi Kivilinnaffaf9152012-06-18 14:06:58 +0300246 tristate
Jussi Kivilinnaffaf9152012-06-18 14:06:58 +0300247 select CRYPTO_CRYPTD
248
Herbert Xu266d0512016-11-22 20:08:25 +0800249config CRYPTO_SIMD
250 tristate
251 select CRYPTO_CRYPTD
252
Jussi Kivilinna596d8752012-06-18 14:07:19 +0300253config CRYPTO_GLUE_HELPER_X86
254 tristate
255 depends on X86
Herbert Xu065ce322016-11-22 20:08:29 +0800256 select CRYPTO_BLKCIPHER
Jussi Kivilinna596d8752012-06-18 14:07:19 +0300257
Baolin Wang735d37b2016-01-26 20:25:39 +0800258config CRYPTO_ENGINE
259 tristate
260
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800261comment "Authenticated Encryption with Associated Data"
262
263config CRYPTO_CCM
264 tristate "CCM support"
265 select CRYPTO_CTR
266 select CRYPTO_AEAD
267 help
268 Support for Counter with CBC MAC. Required for IPsec.
269
270config CRYPTO_GCM
271 tristate "GCM/GMAC support"
272 select CRYPTO_CTR
273 select CRYPTO_AEAD
Huang Ying9382d972009-08-06 15:34:26 +1000274 select CRYPTO_GHASH
Jussi Kivilinna9489667d2013-04-07 16:43:41 +0300275 select CRYPTO_NULL
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800276 help
277 Support for Galois/Counter Mode (GCM) and Galois Message
278 Authentication Code (GMAC). Required for IPSec.
279
Martin Willi71ebc4d2015-06-01 13:44:00 +0200280config CRYPTO_CHACHA20POLY1305
281 tristate "ChaCha20-Poly1305 AEAD support"
282 select CRYPTO_CHACHA20
283 select CRYPTO_POLY1305
284 select CRYPTO_AEAD
285 help
286 ChaCha20-Poly1305 AEAD support, RFC7539.
287
288 Support for the AEAD wrapper using the ChaCha20 stream cipher combined
289 with the Poly1305 authenticator. It is defined in RFC7539 for use in
290 IETF protocols.
291
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800292config CRYPTO_SEQIV
293 tristate "Sequence Number IV Generator"
294 select CRYPTO_AEAD
295 select CRYPTO_BLKCIPHER
Herbert Xu856e3f402015-05-21 15:11:13 +0800296 select CRYPTO_NULL
Herbert Xu401e4232015-06-03 14:49:31 +0800297 select CRYPTO_RNG_DEFAULT
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800298 help
299 This IV generator generates an IV based on a sequence number by
300 xoring it with a salt. This algorithm is mainly useful for CTR
301
Herbert Xua10f5542015-05-21 15:11:15 +0800302config CRYPTO_ECHAINIV
303 tristate "Encrypted Chain IV Generator"
304 select CRYPTO_AEAD
305 select CRYPTO_NULL
Herbert Xu401e4232015-06-03 14:49:31 +0800306 select CRYPTO_RNG_DEFAULT
Herbert Xu34912442015-06-03 14:49:29 +0800307 default m
Herbert Xua10f5542015-05-21 15:11:15 +0800308 help
309 This IV generator generates an IV based on the encryption of
310 a sequence number xored with a salt. This is the default
311 algorithm for CBC.
312
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800313comment "Block modes"
Herbert Xudb131ef2006-09-21 11:44:08 +1000314
315config CRYPTO_CBC
316 tristate "CBC support"
317 select CRYPTO_BLKCIPHER
Herbert Xu43518402006-10-16 21:28:58 +1000318 select CRYPTO_MANAGER
Herbert Xudb131ef2006-09-21 11:44:08 +1000319 help
320 CBC: Cipher Block Chaining mode
321 This block cipher algorithm is required for IPSec.
322
Joy Latten23e353c2007-10-23 08:50:32 +0800323config CRYPTO_CTR
324 tristate "CTR support"
325 select CRYPTO_BLKCIPHER
Herbert Xu0a270322007-11-30 21:38:37 +1100326 select CRYPTO_SEQIV
Joy Latten23e353c2007-10-23 08:50:32 +0800327 select CRYPTO_MANAGER
Joy Latten23e353c2007-10-23 08:50:32 +0800328 help
329 CTR: Counter mode
330 This block cipher algorithm is required for IPSec.
331
Kevin Coffman76cb9522008-03-24 21:26:16 +0800332config CRYPTO_CTS
333 tristate "CTS support"
334 select CRYPTO_BLKCIPHER
335 help
336 CTS: Cipher Text Stealing
337 This is the Cipher Text Stealing mode as described by
338 Section 8 of rfc2040 and referenced by rfc3962.
339 (rfc3962 includes errata information in its Appendix A)
340 This mode is required for Kerberos gss mechanism support
341 for AES encryption.
342
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800343config CRYPTO_ECB
344 tristate "ECB support"
Herbert Xu653ebd9c2007-11-27 19:48:27 +0800345 select CRYPTO_BLKCIPHER
Herbert Xu124b53d2007-04-16 20:49:20 +1000346 select CRYPTO_MANAGER
347 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800348 ECB: Electronic CodeBook mode
349 This is the simplest block cipher algorithm. It simply encrypts
350 the input block by block.
Herbert Xu124b53d2007-04-16 20:49:20 +1000351
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800352config CRYPTO_LRW
Jussi Kivilinna2470a2b2011-12-13 12:52:51 +0200353 tristate "LRW support"
David Howells90831632006-12-16 12:13:14 +1100354 select CRYPTO_BLKCIPHER
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800355 select CRYPTO_MANAGER
356 select CRYPTO_GF128MUL
David Howells90831632006-12-16 12:13:14 +1100357 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800358 LRW: Liskov Rivest Wagner, a tweakable, non malleable, non movable
359 narrow block cipher mode for dm-crypt. Use it with cipher
360 specification string aes-lrw-benbi, the key must be 256, 320 or 384.
361 The first 128, 192 or 256 bits in the key are used for AES and the
362 rest is used to tie each cipher block to its logical position.
David Howells90831632006-12-16 12:13:14 +1100363
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800364config CRYPTO_PCBC
365 tristate "PCBC support"
366 select CRYPTO_BLKCIPHER
367 select CRYPTO_MANAGER
368 help
369 PCBC: Propagating Cipher Block Chaining mode
370 This block cipher algorithm is required for RxRPC.
371
372config CRYPTO_XTS
Jussi Kivilinna5bcf8e62011-12-13 12:52:56 +0200373 tristate "XTS support"
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800374 select CRYPTO_BLKCIPHER
375 select CRYPTO_MANAGER
376 select CRYPTO_GF128MUL
377 help
378 XTS: IEEE1619/D16 narrow block cipher use with aes-xts-plain,
379 key size 256, 384 or 512 bits. This implementation currently
380 can't handle a sectorsize which is not a multiple of 16 bytes.
381
Stephan Mueller1c49678e2015-09-21 20:58:56 +0200382config CRYPTO_KEYWRAP
383 tristate "Key wrapping support"
384 select CRYPTO_BLKCIPHER
385 help
386 Support for key wrapping (NIST SP800-38F / RFC3394) without
387 padding.
388
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800389comment "Hash modes"
390
Jussi Kivilinna93b5e862013-04-08 10:48:44 +0300391config CRYPTO_CMAC
392 tristate "CMAC support"
393 select CRYPTO_HASH
394 select CRYPTO_MANAGER
395 help
396 Cipher-based Message Authentication Code (CMAC) specified by
397 The National Institute of Standards and Technology (NIST).
398
399 https://tools.ietf.org/html/rfc4493
400 http://csrc.nist.gov/publications/nistpubs/800-38B/SP_800-38B.pdf
401
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800402config CRYPTO_HMAC
403 tristate "HMAC support"
404 select CRYPTO_HASH
405 select CRYPTO_MANAGER
406 help
407 HMAC: Keyed-Hashing for Message Authentication (RFC2104).
408 This is required for IPSec.
409
410config CRYPTO_XCBC
411 tristate "XCBC support"
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800412 select CRYPTO_HASH
413 select CRYPTO_MANAGER
414 help
415 XCBC: Keyed-Hashing with encryption algorithm
416 http://www.ietf.org/rfc/rfc3566.txt
417 http://csrc.nist.gov/encryption/modes/proposedmodes/
418 xcbc-mac/xcbc-mac-spec.pdf
419
Shane Wangf1939f72009-09-02 20:05:22 +1000420config CRYPTO_VMAC
421 tristate "VMAC support"
Shane Wangf1939f72009-09-02 20:05:22 +1000422 select CRYPTO_HASH
423 select CRYPTO_MANAGER
424 help
425 VMAC is a message authentication algorithm designed for
426 very high speed on 64-bit architectures.
427
428 See also:
429 <http://fastcrypto.org/vmac>
430
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800431comment "Digest"
432
433config CRYPTO_CRC32C
434 tristate "CRC32c CRC algorithm"
Herbert Xu5773a3e2008-07-08 20:54:28 +0800435 select CRYPTO_HASH
Darrick J. Wong6a0962b2012-03-23 15:02:25 -0700436 select CRC32
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800437 help
438 Castagnoli, et al Cyclic Redundancy-Check Algorithm. Used
439 by iSCSI for header and data digests and by others.
Herbert Xu69c35ef2008-11-07 15:11:47 +0800440 See Castagnoli93. Module will be crc32c.
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800441
Austin Zhang8cb51ba2008-08-07 09:57:03 +0800442config CRYPTO_CRC32C_INTEL
443 tristate "CRC32c INTEL hardware acceleration"
444 depends on X86
445 select CRYPTO_HASH
446 help
447 In Intel processor with SSE4.2 supported, the processor will
448 support CRC32C implementation using hardware accelerated CRC32
449 instruction. This option will create 'crc32c-intel' module,
450 which will enable any routine to use the CRC32 instruction to
451 gain performance compared with software implementation.
452 Module will be crc32c-intel.
453
Jean Delvare7cf31862016-11-22 10:32:44 +0100454config CRYPTO_CRC32C_VPMSUM
Anton Blanchard6dd7a822016-07-01 08:19:45 +1000455 tristate "CRC32c CRC algorithm (powerpc64)"
Michael Ellermanc12abf32016-08-09 08:46:15 +1000456 depends on PPC64 && ALTIVEC
Anton Blanchard6dd7a822016-07-01 08:19:45 +1000457 select CRYPTO_HASH
458 select CRC32
459 help
460 CRC32c algorithm implemented using vector polynomial multiply-sum
461 (vpmsum) instructions, introduced in POWER8. Enable on POWER8
462 and newer processors for improved performance.
463
464
David S. Miller442a7c42012-08-22 20:47:36 -0700465config CRYPTO_CRC32C_SPARC64
466 tristate "CRC32c CRC algorithm (SPARC64)"
467 depends on SPARC64
468 select CRYPTO_HASH
469 select CRC32
470 help
471 CRC32c CRC algorithm implemented using sparc64 crypto instructions,
472 when available.
473
Alexander Boyko78c37d12013-01-10 18:54:59 +0400474config CRYPTO_CRC32
475 tristate "CRC32 CRC algorithm"
476 select CRYPTO_HASH
477 select CRC32
478 help
479 CRC-32-IEEE 802.3 cyclic redundancy-check algorithm.
480 Shash crypto api wrappers to crc32_le function.
481
482config CRYPTO_CRC32_PCLMUL
483 tristate "CRC32 PCLMULQDQ hardware acceleration"
484 depends on X86
485 select CRYPTO_HASH
486 select CRC32
487 help
488 From Intel Westmere and AMD Bulldozer processor with SSE4.2
489 and PCLMULQDQ supported, the processor will support
490 CRC32 PCLMULQDQ implementation using hardware accelerated PCLMULQDQ
491 instruction. This option will create 'crc32-plcmul' module,
492 which will enable any routine to use the CRC-32-IEEE 802.3 checksum
493 and gain better performance as compared with the table implementation.
494
Herbert Xu684115212013-09-07 12:56:26 +1000495config CRYPTO_CRCT10DIF
496 tristate "CRCT10DIF algorithm"
497 select CRYPTO_HASH
498 help
499 CRC T10 Data Integrity Field computation is being cast as
500 a crypto transform. This allows for faster crc t10 diff
501 transforms to be used if they are available.
502
503config CRYPTO_CRCT10DIF_PCLMUL
504 tristate "CRCT10DIF PCLMULQDQ hardware acceleration"
505 depends on X86 && 64BIT && CRC_T10DIF
506 select CRYPTO_HASH
507 help
508 For x86_64 processors with SSE4.2 and PCLMULQDQ supported,
509 CRC T10 DIF PCLMULQDQ computation can be hardware
510 accelerated PCLMULQDQ instruction. This option will create
511 'crct10dif-plcmul' module, which is faster when computing the
512 crct10dif checksum as compared with the generic table implementation.
513
Huang Ying2cdc6892009-08-06 15:32:38 +1000514config CRYPTO_GHASH
515 tristate "GHASH digest algorithm"
Huang Ying2cdc6892009-08-06 15:32:38 +1000516 select CRYPTO_GF128MUL
Arnd Bergmann578c60f2016-01-25 17:51:21 +0100517 select CRYPTO_HASH
Huang Ying2cdc6892009-08-06 15:32:38 +1000518 help
519 GHASH is message digest algorithm for GCM (Galois/Counter Mode).
520
Martin Willif979e012015-06-01 13:43:58 +0200521config CRYPTO_POLY1305
522 tristate "Poly1305 authenticator algorithm"
Arnd Bergmann578c60f2016-01-25 17:51:21 +0100523 select CRYPTO_HASH
Martin Willif979e012015-06-01 13:43:58 +0200524 help
525 Poly1305 authenticator algorithm, RFC7539.
526
527 Poly1305 is an authenticator algorithm designed by Daniel J. Bernstein.
528 It is used for the ChaCha20-Poly1305 AEAD, specified in RFC7539 for use
529 in IETF protocols. This is the portable C implementation of Poly1305.
530
Martin Willic70f4ab2015-07-16 19:14:06 +0200531config CRYPTO_POLY1305_X86_64
Martin Willib1ccc8f2015-07-16 19:14:08 +0200532 tristate "Poly1305 authenticator algorithm (x86_64/SSE2/AVX2)"
Martin Willic70f4ab2015-07-16 19:14:06 +0200533 depends on X86 && 64BIT
534 select CRYPTO_POLY1305
535 help
536 Poly1305 authenticator algorithm, RFC7539.
537
538 Poly1305 is an authenticator algorithm designed by Daniel J. Bernstein.
539 It is used for the ChaCha20-Poly1305 AEAD, specified in RFC7539 for use
540 in IETF protocols. This is the x86_64 assembler implementation using SIMD
541 instructions.
542
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800543config CRYPTO_MD4
544 tristate "MD4 digest algorithm"
Adrian-Ken Rueegsegger808a1762008-12-03 19:55:27 +0800545 select CRYPTO_HASH
Linus Torvalds1da177e2005-04-16 15:20:36 -0700546 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800547 MD4 message digest algorithm (RFC1320).
Linus Torvalds1da177e2005-04-16 15:20:36 -0700548
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800549config CRYPTO_MD5
550 tristate "MD5 digest algorithm"
Adrian-Ken Rueegsegger14b75ba2008-12-03 19:57:12 +0800551 select CRYPTO_HASH
Linus Torvalds1da177e2005-04-16 15:20:36 -0700552 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800553 MD5 message digest algorithm (RFC1321).
Linus Torvalds1da177e2005-04-16 15:20:36 -0700554
Aaro Koskinend69e75d2014-12-21 22:54:02 +0200555config CRYPTO_MD5_OCTEON
556 tristate "MD5 digest algorithm (OCTEON)"
557 depends on CPU_CAVIUM_OCTEON
558 select CRYPTO_MD5
559 select CRYPTO_HASH
560 help
561 MD5 message digest algorithm (RFC1321) implemented
562 using OCTEON crypto instructions, when available.
563
Markus Stockhausene8e59952015-03-01 19:30:46 +0100564config CRYPTO_MD5_PPC
565 tristate "MD5 digest algorithm (PPC)"
566 depends on PPC
567 select CRYPTO_HASH
568 help
569 MD5 message digest algorithm (RFC1321) implemented
570 in PPC assembler.
571
David S. Millerfa4dfed2012-08-19 21:51:26 -0700572config CRYPTO_MD5_SPARC64
573 tristate "MD5 digest algorithm (SPARC64)"
574 depends on SPARC64
575 select CRYPTO_MD5
576 select CRYPTO_HASH
577 help
578 MD5 message digest algorithm (RFC1321) implemented
579 using sparc64 crypto instructions, when available.
580
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800581config CRYPTO_MICHAEL_MIC
582 tristate "Michael MIC keyed digest algorithm"
Adrian-Ken Rueegsegger19e2bf12008-12-07 19:35:38 +0800583 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800584 help
585 Michael MIC is used for message integrity protection in TKIP
586 (IEEE 802.11i). This algorithm is required for TKIP, but it
587 should not be used for other purposes because of the weakness
588 of the algorithm.
589
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800590config CRYPTO_RMD128
Adrian Bunkb6d44342008-07-16 19:28:00 +0800591 tristate "RIPEMD-128 digest algorithm"
Herbert Xu7c4468b2008-11-08 09:10:40 +0800592 select CRYPTO_HASH
Adrian Bunkb6d44342008-07-16 19:28:00 +0800593 help
594 RIPEMD-128 (ISO/IEC 10118-3:2004).
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800595
Adrian Bunkb6d44342008-07-16 19:28:00 +0800596 RIPEMD-128 is a 128-bit cryptographic hash function. It should only
Michael Witten35ed4b32011-07-09 04:02:31 +0000597 be used as a secure replacement for RIPEMD. For other use cases,
Adrian Bunkb6d44342008-07-16 19:28:00 +0800598 RIPEMD-160 should be used.
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800599
Adrian Bunkb6d44342008-07-16 19:28:00 +0800600 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800601 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800602
603config CRYPTO_RMD160
Adrian Bunkb6d44342008-07-16 19:28:00 +0800604 tristate "RIPEMD-160 digest algorithm"
Herbert Xue5835fb2008-11-08 09:18:51 +0800605 select CRYPTO_HASH
Adrian Bunkb6d44342008-07-16 19:28:00 +0800606 help
607 RIPEMD-160 (ISO/IEC 10118-3:2004).
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800608
Adrian Bunkb6d44342008-07-16 19:28:00 +0800609 RIPEMD-160 is a 160-bit cryptographic hash function. It is intended
610 to be used as a secure replacement for the 128-bit hash functions
611 MD4, MD5 and it's predecessor RIPEMD
612 (not to be confused with RIPEMD-128).
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800613
Adrian Bunkb6d44342008-07-16 19:28:00 +0800614 It's speed is comparable to SHA1 and there are no known attacks
615 against RIPEMD-160.
Adrian-Ken Rueegsegger534fe2c12008-05-09 21:30:27 +0800616
Adrian Bunkb6d44342008-07-16 19:28:00 +0800617 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800618 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
Adrian-Ken Rueegsegger534fe2c12008-05-09 21:30:27 +0800619
620config CRYPTO_RMD256
Adrian Bunkb6d44342008-07-16 19:28:00 +0800621 tristate "RIPEMD-256 digest algorithm"
Herbert Xud8a5e2e2008-11-08 09:58:10 +0800622 select CRYPTO_HASH
Adrian Bunkb6d44342008-07-16 19:28:00 +0800623 help
624 RIPEMD-256 is an optional extension of RIPEMD-128 with a
625 256 bit hash. It is intended for applications that require
626 longer hash-results, without needing a larger security level
627 (than RIPEMD-128).
Adrian-Ken Rueegsegger534fe2c12008-05-09 21:30:27 +0800628
Adrian Bunkb6d44342008-07-16 19:28:00 +0800629 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800630 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
Adrian-Ken Rueegsegger534fe2c12008-05-09 21:30:27 +0800631
632config CRYPTO_RMD320
Adrian Bunkb6d44342008-07-16 19:28:00 +0800633 tristate "RIPEMD-320 digest algorithm"
Herbert Xu3b8efb42008-11-08 10:11:09 +0800634 select CRYPTO_HASH
Adrian Bunkb6d44342008-07-16 19:28:00 +0800635 help
636 RIPEMD-320 is an optional extension of RIPEMD-160 with a
637 320 bit hash. It is intended for applications that require
638 longer hash-results, without needing a larger security level
639 (than RIPEMD-160).
Adrian-Ken Rueegsegger534fe2c12008-05-09 21:30:27 +0800640
Adrian Bunkb6d44342008-07-16 19:28:00 +0800641 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800642 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
Adrian-Ken Rueegsegger82798f92008-05-07 22:17:37 +0800643
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800644config CRYPTO_SHA1
645 tristate "SHA1 digest algorithm"
Adrian-Ken Rueegsegger54ccb362008-12-02 21:08:20 +0800646 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800647 help
648 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2).
649
Mathias Krause66be8952011-08-04 20:19:25 +0200650config CRYPTO_SHA1_SSSE3
time38b6b7f2015-09-10 15:27:26 -0700651 tristate "SHA1 digest algorithm (SSSE3/AVX/AVX2/SHA-NI)"
Mathias Krause66be8952011-08-04 20:19:25 +0200652 depends on X86 && 64BIT
653 select CRYPTO_SHA1
654 select CRYPTO_HASH
655 help
656 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
657 using Supplemental SSE3 (SSSE3) instructions or Advanced Vector
time38b6b7f2015-09-10 15:27:26 -0700658 Extensions (AVX/AVX2) or SHA-NI(SHA Extensions New Instructions),
659 when available.
Mathias Krause66be8952011-08-04 20:19:25 +0200660
Tim Chen8275d1a2013-03-26 13:59:17 -0700661config CRYPTO_SHA256_SSSE3
time38b6b7f2015-09-10 15:27:26 -0700662 tristate "SHA256 digest algorithm (SSSE3/AVX/AVX2/SHA-NI)"
Tim Chen8275d1a2013-03-26 13:59:17 -0700663 depends on X86 && 64BIT
664 select CRYPTO_SHA256
665 select CRYPTO_HASH
666 help
667 SHA-256 secure hash standard (DFIPS 180-2) implemented
668 using Supplemental SSE3 (SSSE3) instructions, or Advanced Vector
669 Extensions version 1 (AVX1), or Advanced Vector Extensions
time38b6b7f2015-09-10 15:27:26 -0700670 version 2 (AVX2) instructions, or SHA-NI (SHA Extensions New
671 Instructions) when available.
Tim Chen8275d1a2013-03-26 13:59:17 -0700672
Tim Chen87de4572013-03-26 14:00:02 -0700673config CRYPTO_SHA512_SSSE3
674 tristate "SHA512 digest algorithm (SSSE3/AVX/AVX2)"
675 depends on X86 && 64BIT
676 select CRYPTO_SHA512
677 select CRYPTO_HASH
678 help
679 SHA-512 secure hash standard (DFIPS 180-2) implemented
680 using Supplemental SSE3 (SSSE3) instructions, or Advanced Vector
681 Extensions version 1 (AVX1), or Advanced Vector Extensions
682 version 2 (AVX2) instructions, when available.
683
Aaro Koskinenefdb6f62015-03-08 22:07:47 +0200684config CRYPTO_SHA1_OCTEON
685 tristate "SHA1 digest algorithm (OCTEON)"
686 depends on CPU_CAVIUM_OCTEON
687 select CRYPTO_SHA1
688 select CRYPTO_HASH
689 help
690 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
691 using OCTEON crypto instructions, when available.
692
David S. Miller4ff28d42012-08-19 15:41:53 -0700693config CRYPTO_SHA1_SPARC64
694 tristate "SHA1 digest algorithm (SPARC64)"
695 depends on SPARC64
696 select CRYPTO_SHA1
697 select CRYPTO_HASH
698 help
699 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
700 using sparc64 crypto instructions, when available.
701
Michael Ellerman323a6bf2012-09-13 23:00:49 +0000702config CRYPTO_SHA1_PPC
703 tristate "SHA1 digest algorithm (powerpc)"
704 depends on PPC
705 help
706 This is the powerpc hardware accelerated implementation of the
707 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2).
708
Markus Stockhausend9850fc2015-02-24 20:36:50 +0100709config CRYPTO_SHA1_PPC_SPE
710 tristate "SHA1 digest algorithm (PPC SPE)"
711 depends on PPC && SPE
712 help
713 SHA-1 secure hash standard (DFIPS 180-4) implemented
714 using powerpc SPE SIMD instruction set.
715
Tim Chen1e65b812014-07-31 10:29:51 -0700716config CRYPTO_SHA1_MB
717 tristate "SHA1 digest algorithm (x86_64 Multi-Buffer, Experimental)"
718 depends on X86 && 64BIT
719 select CRYPTO_SHA1
720 select CRYPTO_HASH
721 select CRYPTO_MCRYPTD
722 help
723 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
724 using multi-buffer technique. This algorithm computes on
725 multiple data lanes concurrently with SIMD instructions for
726 better throughput. It should not be enabled by default but
727 used when there is significant amount of work to keep the keep
728 the data lanes filled to get performance benefit. If the data
729 lanes remain unfilled, a flush operation will be initiated to
730 process the crypto jobs, adding a slight latency.
731
Megha Dey9be7e242016-06-23 18:40:43 -0700732config CRYPTO_SHA256_MB
733 tristate "SHA256 digest algorithm (x86_64 Multi-Buffer, Experimental)"
734 depends on X86 && 64BIT
735 select CRYPTO_SHA256
736 select CRYPTO_HASH
737 select CRYPTO_MCRYPTD
738 help
739 SHA-256 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
740 using multi-buffer technique. This algorithm computes on
741 multiple data lanes concurrently with SIMD instructions for
742 better throughput. It should not be enabled by default but
743 used when there is significant amount of work to keep the keep
744 the data lanes filled to get performance benefit. If the data
745 lanes remain unfilled, a flush operation will be initiated to
746 process the crypto jobs, adding a slight latency.
747
Megha Dey026bb8a2016-06-27 10:20:05 -0700748config CRYPTO_SHA512_MB
749 tristate "SHA512 digest algorithm (x86_64 Multi-Buffer, Experimental)"
750 depends on X86 && 64BIT
751 select CRYPTO_SHA512
752 select CRYPTO_HASH
753 select CRYPTO_MCRYPTD
754 help
755 SHA-512 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
756 using multi-buffer technique. This algorithm computes on
757 multiple data lanes concurrently with SIMD instructions for
758 better throughput. It should not be enabled by default but
759 used when there is significant amount of work to keep the keep
760 the data lanes filled to get performance benefit. If the data
761 lanes remain unfilled, a flush operation will be initiated to
762 process the crypto jobs, adding a slight latency.
763
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800764config CRYPTO_SHA256
765 tristate "SHA224 and SHA256 digest algorithm"
Adrian-Ken Rueegsegger50e109b52008-12-03 19:57:49 +0800766 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800767 help
768 SHA256 secure hash standard (DFIPS 180-2).
769
770 This version of SHA implements a 256 bit hash with 128 bits of
771 security against collision attacks.
772
Adrian Bunkb6d44342008-07-16 19:28:00 +0800773 This code also includes SHA-224, a 224 bit hash with 112 bits
774 of security against collision attacks.
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800775
Markus Stockhausen2ecc1e92015-01-30 15:39:34 +0100776config CRYPTO_SHA256_PPC_SPE
777 tristate "SHA224 and SHA256 digest algorithm (PPC SPE)"
778 depends on PPC && SPE
779 select CRYPTO_SHA256
780 select CRYPTO_HASH
781 help
782 SHA224 and SHA256 secure hash standard (DFIPS 180-2)
783 implemented using powerpc SPE SIMD instruction set.
784
Aaro Koskinenefdb6f62015-03-08 22:07:47 +0200785config CRYPTO_SHA256_OCTEON
786 tristate "SHA224 and SHA256 digest algorithm (OCTEON)"
787 depends on CPU_CAVIUM_OCTEON
788 select CRYPTO_SHA256
789 select CRYPTO_HASH
790 help
791 SHA-256 secure hash standard (DFIPS 180-2) implemented
792 using OCTEON crypto instructions, when available.
793
David S. Miller86c93b22012-08-19 17:11:37 -0700794config CRYPTO_SHA256_SPARC64
795 tristate "SHA224 and SHA256 digest algorithm (SPARC64)"
796 depends on SPARC64
797 select CRYPTO_SHA256
798 select CRYPTO_HASH
799 help
800 SHA-256 secure hash standard (DFIPS 180-2) implemented
801 using sparc64 crypto instructions, when available.
802
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800803config CRYPTO_SHA512
804 tristate "SHA384 and SHA512 digest algorithms"
Adrian-Ken Rueegseggerbd9d20d2008-12-17 16:49:02 +1100805 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800806 help
807 SHA512 secure hash standard (DFIPS 180-2).
808
809 This version of SHA implements a 512 bit hash with 256 bits of
810 security against collision attacks.
811
812 This code also includes SHA-384, a 384 bit hash with 192 bits
813 of security against collision attacks.
814
Aaro Koskinenefdb6f62015-03-08 22:07:47 +0200815config CRYPTO_SHA512_OCTEON
816 tristate "SHA384 and SHA512 digest algorithms (OCTEON)"
817 depends on CPU_CAVIUM_OCTEON
818 select CRYPTO_SHA512
819 select CRYPTO_HASH
820 help
821 SHA-512 secure hash standard (DFIPS 180-2) implemented
822 using OCTEON crypto instructions, when available.
823
David S. Miller775e0c62012-08-19 17:37:56 -0700824config CRYPTO_SHA512_SPARC64
825 tristate "SHA384 and SHA512 digest algorithm (SPARC64)"
826 depends on SPARC64
827 select CRYPTO_SHA512
828 select CRYPTO_HASH
829 help
830 SHA-512 secure hash standard (DFIPS 180-2) implemented
831 using sparc64 crypto instructions, when available.
832
Jeff Garzik53964b92016-06-17 10:30:35 +0530833config CRYPTO_SHA3
834 tristate "SHA3 digest algorithm"
835 select CRYPTO_HASH
836 help
837 SHA-3 secure hash standard (DFIPS 202). It's based on
838 cryptographic sponge function family called Keccak.
839
840 References:
841 http://keccak.noekeon.org/
842
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800843config CRYPTO_TGR192
844 tristate "Tiger digest algorithms"
Adrian-Ken Rueegseggerf63fbd32008-12-03 19:58:32 +0800845 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800846 help
847 Tiger hash algorithm 192, 160 and 128-bit hashes
848
849 Tiger is a hash function optimized for 64-bit processors while
850 still having decent performance on 32-bit processors.
851 Tiger was developed by Ross Anderson and Eli Biham.
Linus Torvalds1da177e2005-04-16 15:20:36 -0700852
853 See also:
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800854 <http://www.cs.technion.ac.il/~biham/Reports/Tiger/>.
855
856config CRYPTO_WP512
857 tristate "Whirlpool digest algorithms"
Adrian-Ken Rueegsegger49465102008-12-07 19:34:37 +0800858 select CRYPTO_HASH
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800859 help
860 Whirlpool hash algorithm 512, 384 and 256-bit hashes
861
862 Whirlpool-512 is part of the NESSIE cryptographic primitives.
863 Whirlpool will be part of the ISO/IEC 10118-3:2003(E) standard
864
865 See also:
Justin P. Mattock6d8de742010-09-12 10:42:47 +0800866 <http://www.larc.usp.br/~pbarreto/WhirlpoolPage.html>
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800867
Huang Ying0e1227d2009-10-19 11:53:06 +0900868config CRYPTO_GHASH_CLMUL_NI_INTEL
869 tristate "GHASH digest algorithm (CLMUL-NI accelerated)"
Richard Weinberger8af00862011-06-08 20:56:29 +0800870 depends on X86 && 64BIT
Huang Ying0e1227d2009-10-19 11:53:06 +0900871 select CRYPTO_CRYPTD
872 help
873 GHASH is message digest algorithm for GCM (Galois/Counter Mode).
874 The implementation is accelerated by CLMUL-NI of Intel.
875
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800876comment "Ciphers"
Linus Torvalds1da177e2005-04-16 15:20:36 -0700877
878config CRYPTO_AES
879 tristate "AES cipher algorithms"
Herbert Xucce9e062006-08-21 21:08:13 +1000880 select CRYPTO_ALGAPI
Linus Torvalds1da177e2005-04-16 15:20:36 -0700881 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800882 AES cipher algorithms (FIPS-197). AES uses the Rijndael
Linus Torvalds1da177e2005-04-16 15:20:36 -0700883 algorithm.
884
885 Rijndael appears to be consistently a very good performer in
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800886 both hardware and software across a wide range of computing
887 environments regardless of its use in feedback or non-feedback
888 modes. Its key setup time is excellent, and its key agility is
889 good. Rijndael's very low memory requirements make it very well
890 suited for restricted-space environments, in which it also
891 demonstrates excellent performance. Rijndael's operations are
892 among the easiest to defend against power and timing attacks.
Linus Torvalds1da177e2005-04-16 15:20:36 -0700893
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800894 The AES specifies three key sizes: 128, 192 and 256 bits
Linus Torvalds1da177e2005-04-16 15:20:36 -0700895
896 See <http://csrc.nist.gov/CryptoToolkit/aes/> for more information.
897
898config CRYPTO_AES_586
899 tristate "AES cipher algorithms (i586)"
Herbert Xucce9e062006-08-21 21:08:13 +1000900 depends on (X86 || UML_X86) && !64BIT
901 select CRYPTO_ALGAPI
Sebastian Siewior5157dea2007-11-10 19:07:16 +0800902 select CRYPTO_AES
Linus Torvalds1da177e2005-04-16 15:20:36 -0700903 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800904 AES cipher algorithms (FIPS-197). AES uses the Rijndael
Linus Torvalds1da177e2005-04-16 15:20:36 -0700905 algorithm.
906
907 Rijndael appears to be consistently a very good performer in
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800908 both hardware and software across a wide range of computing
909 environments regardless of its use in feedback or non-feedback
910 modes. Its key setup time is excellent, and its key agility is
911 good. Rijndael's very low memory requirements make it very well
912 suited for restricted-space environments, in which it also
913 demonstrates excellent performance. Rijndael's operations are
914 among the easiest to defend against power and timing attacks.
Linus Torvalds1da177e2005-04-16 15:20:36 -0700915
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800916 The AES specifies three key sizes: 128, 192 and 256 bits
Linus Torvalds1da177e2005-04-16 15:20:36 -0700917
918 See <http://csrc.nist.gov/encryption/aes/> for more information.
919
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700920config CRYPTO_AES_X86_64
921 tristate "AES cipher algorithms (x86_64)"
Herbert Xucce9e062006-08-21 21:08:13 +1000922 depends on (X86 || UML_X86) && 64BIT
923 select CRYPTO_ALGAPI
Sebastian Siewior81190b32007-11-08 21:25:04 +0800924 select CRYPTO_AES
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700925 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800926 AES cipher algorithms (FIPS-197). AES uses the Rijndael
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700927 algorithm.
928
929 Rijndael appears to be consistently a very good performer in
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800930 both hardware and software across a wide range of computing
931 environments regardless of its use in feedback or non-feedback
932 modes. Its key setup time is excellent, and its key agility is
933 good. Rijndael's very low memory requirements make it very well
934 suited for restricted-space environments, in which it also
935 demonstrates excellent performance. Rijndael's operations are
936 among the easiest to defend against power and timing attacks.
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700937
Sebastian Siewior584fffc2008-04-05 21:04:48 +0800938 The AES specifies three key sizes: 128, 192 and 256 bits
Andreas Steinmetza2a892a2005-07-06 13:55:00 -0700939
940 See <http://csrc.nist.gov/encryption/aes/> for more information.
941
Huang Ying54b6a1b2009-01-18 16:28:34 +1100942config CRYPTO_AES_NI_INTEL
943 tristate "AES cipher algorithms (AES-NI)"
Richard Weinberger8af00862011-06-08 20:56:29 +0800944 depends on X86
Mathias Krause0d258ef2010-11-27 16:34:46 +0800945 select CRYPTO_AES_X86_64 if 64BIT
946 select CRYPTO_AES_586 if !64BIT
Huang Ying54b6a1b2009-01-18 16:28:34 +1100947 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +0200948 select CRYPTO_ABLK_HELPER
Huang Ying54b6a1b2009-01-18 16:28:34 +1100949 select CRYPTO_ALGAPI
Jussi Kivilinna7643a112013-04-10 18:39:20 +0300950 select CRYPTO_GLUE_HELPER_X86 if 64BIT
Jussi Kivilinna023af602012-07-22 18:18:37 +0300951 select CRYPTO_LRW
952 select CRYPTO_XTS
Huang Ying54b6a1b2009-01-18 16:28:34 +1100953 help
954 Use Intel AES-NI instructions for AES algorithm.
955
956 AES cipher algorithms (FIPS-197). AES uses the Rijndael
957 algorithm.
958
959 Rijndael appears to be consistently a very good performer in
960 both hardware and software across a wide range of computing
961 environments regardless of its use in feedback or non-feedback
962 modes. Its key setup time is excellent, and its key agility is
963 good. Rijndael's very low memory requirements make it very well
964 suited for restricted-space environments, in which it also
965 demonstrates excellent performance. Rijndael's operations are
966 among the easiest to defend against power and timing attacks.
967
968 The AES specifies three key sizes: 128, 192 and 256 bits
969
970 See <http://csrc.nist.gov/encryption/aes/> for more information.
971
Mathias Krause0d258ef2010-11-27 16:34:46 +0800972 In addition to AES cipher algorithm support, the acceleration
973 for some popular block cipher mode is supported too, including
974 ECB, CBC, LRW, PCBC, XTS. The 64 bit version has additional
975 acceleration for CTR.
Huang Ying2cf4ac82009-03-29 15:41:20 +0800976
David S. Miller9bf48522012-08-21 03:58:13 -0700977config CRYPTO_AES_SPARC64
978 tristate "AES cipher algorithms (SPARC64)"
979 depends on SPARC64
980 select CRYPTO_CRYPTD
981 select CRYPTO_ALGAPI
982 help
983 Use SPARC64 crypto opcodes for AES algorithm.
984
985 AES cipher algorithms (FIPS-197). AES uses the Rijndael
986 algorithm.
987
988 Rijndael appears to be consistently a very good performer in
989 both hardware and software across a wide range of computing
990 environments regardless of its use in feedback or non-feedback
991 modes. Its key setup time is excellent, and its key agility is
992 good. Rijndael's very low memory requirements make it very well
993 suited for restricted-space environments, in which it also
994 demonstrates excellent performance. Rijndael's operations are
995 among the easiest to defend against power and timing attacks.
996
997 The AES specifies three key sizes: 128, 192 and 256 bits
998
999 See <http://csrc.nist.gov/encryption/aes/> for more information.
1000
1001 In addition to AES cipher algorithm support, the acceleration
1002 for some popular block cipher mode is supported too, including
1003 ECB and CBC.
1004
Markus Stockhausen504c6142015-02-22 10:00:10 +01001005config CRYPTO_AES_PPC_SPE
1006 tristate "AES cipher algorithms (PPC SPE)"
1007 depends on PPC && SPE
1008 help
1009 AES cipher algorithms (FIPS-197). Additionally the acceleration
1010 for popular block cipher modes ECB, CBC, CTR and XTS is supported.
1011 This module should only be used for low power (router) devices
1012 without hardware AES acceleration (e.g. caam crypto). It reduces the
1013 size of the AES tables from 16KB to 8KB + 256 bytes and mitigates
1014 timining attacks. Nevertheless it might be not as secure as other
1015 architecture specific assembler implementations that work on 1KB
1016 tables or 256 bytes S-boxes.
1017
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001018config CRYPTO_ANUBIS
1019 tristate "Anubis cipher algorithm"
1020 select CRYPTO_ALGAPI
1021 help
1022 Anubis cipher algorithm.
1023
1024 Anubis is a variable key length cipher which can use keys from
1025 128 bits to 320 bits in length. It was evaluated as a entrant
1026 in the NESSIE competition.
1027
1028 See also:
Justin P. Mattock6d8de742010-09-12 10:42:47 +08001029 <https://www.cosic.esat.kuleuven.be/nessie/reports/>
1030 <http://www.larc.usp.br/~pbarreto/AnubisPage.html>
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001031
1032config CRYPTO_ARC4
1033 tristate "ARC4 cipher algorithm"
Sebastian Andrzej Siewiorb9b0f082012-06-26 18:13:46 +02001034 select CRYPTO_BLKCIPHER
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001035 help
1036 ARC4 cipher algorithm.
1037
1038 ARC4 is a stream cipher using keys ranging from 8 bits to 2048
1039 bits in length. This algorithm is required for driver-based
1040 WEP, but it should not be for other purposes because of the
1041 weakness of the algorithm.
1042
1043config CRYPTO_BLOWFISH
1044 tristate "Blowfish cipher algorithm"
1045 select CRYPTO_ALGAPI
Jussi Kivilinna52ba8672011-09-02 01:45:07 +03001046 select CRYPTO_BLOWFISH_COMMON
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001047 help
1048 Blowfish cipher algorithm, by Bruce Schneier.
1049
1050 This is a variable key length cipher which can use keys from 32
1051 bits to 448 bits in length. It's fast, simple and specifically
1052 designed for use on "large microprocessors".
1053
1054 See also:
1055 <http://www.schneier.com/blowfish.html>
1056
Jussi Kivilinna52ba8672011-09-02 01:45:07 +03001057config CRYPTO_BLOWFISH_COMMON
1058 tristate
1059 help
1060 Common parts of the Blowfish cipher algorithm shared by the
1061 generic c and the assembler implementations.
1062
1063 See also:
1064 <http://www.schneier.com/blowfish.html>
1065
Jussi Kivilinna64b94ce2011-09-02 01:45:22 +03001066config CRYPTO_BLOWFISH_X86_64
1067 tristate "Blowfish cipher algorithm (x86_64)"
Al Virof21a7c12012-04-08 20:31:22 -04001068 depends on X86 && 64BIT
Jussi Kivilinna64b94ce2011-09-02 01:45:22 +03001069 select CRYPTO_ALGAPI
1070 select CRYPTO_BLOWFISH_COMMON
1071 help
1072 Blowfish cipher algorithm (x86_64), by Bruce Schneier.
1073
1074 This is a variable key length cipher which can use keys from 32
1075 bits to 448 bits in length. It's fast, simple and specifically
1076 designed for use on "large microprocessors".
1077
1078 See also:
1079 <http://www.schneier.com/blowfish.html>
1080
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001081config CRYPTO_CAMELLIA
1082 tristate "Camellia cipher algorithms"
1083 depends on CRYPTO
1084 select CRYPTO_ALGAPI
1085 help
1086 Camellia cipher algorithms module.
1087
1088 Camellia is a symmetric key block cipher developed jointly
1089 at NTT and Mitsubishi Electric Corporation.
1090
1091 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1092
1093 See also:
1094 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1095
Jussi Kivilinna0b95ec52012-03-05 20:26:47 +02001096config CRYPTO_CAMELLIA_X86_64
1097 tristate "Camellia cipher algorithm (x86_64)"
Al Virof21a7c12012-04-08 20:31:22 -04001098 depends on X86 && 64BIT
Jussi Kivilinna0b95ec52012-03-05 20:26:47 +02001099 depends on CRYPTO
1100 select CRYPTO_ALGAPI
Jussi Kivilinna964263a2012-06-18 14:07:29 +03001101 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinna0b95ec52012-03-05 20:26:47 +02001102 select CRYPTO_LRW
1103 select CRYPTO_XTS
1104 help
1105 Camellia cipher algorithm module (x86_64).
1106
1107 Camellia is a symmetric key block cipher developed jointly
1108 at NTT and Mitsubishi Electric Corporation.
1109
1110 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1111
1112 See also:
1113 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1114
Jussi Kivilinnad9b1d2e2012-10-26 14:49:01 +03001115config CRYPTO_CAMELLIA_AESNI_AVX_X86_64
1116 tristate "Camellia cipher algorithm (x86_64/AES-NI/AVX)"
1117 depends on X86 && 64BIT
1118 depends on CRYPTO
1119 select CRYPTO_ALGAPI
1120 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001121 select CRYPTO_ABLK_HELPER
Jussi Kivilinnad9b1d2e2012-10-26 14:49:01 +03001122 select CRYPTO_GLUE_HELPER_X86
1123 select CRYPTO_CAMELLIA_X86_64
1124 select CRYPTO_LRW
1125 select CRYPTO_XTS
1126 help
1127 Camellia cipher algorithm module (x86_64/AES-NI/AVX).
1128
1129 Camellia is a symmetric key block cipher developed jointly
1130 at NTT and Mitsubishi Electric Corporation.
1131
1132 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1133
1134 See also:
1135 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1136
Jussi Kivilinnaf3f935a2013-04-13 13:47:00 +03001137config CRYPTO_CAMELLIA_AESNI_AVX2_X86_64
1138 tristate "Camellia cipher algorithm (x86_64/AES-NI/AVX2)"
1139 depends on X86 && 64BIT
1140 depends on CRYPTO
1141 select CRYPTO_ALGAPI
1142 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001143 select CRYPTO_ABLK_HELPER
Jussi Kivilinnaf3f935a2013-04-13 13:47:00 +03001144 select CRYPTO_GLUE_HELPER_X86
1145 select CRYPTO_CAMELLIA_X86_64
1146 select CRYPTO_CAMELLIA_AESNI_AVX_X86_64
1147 select CRYPTO_LRW
1148 select CRYPTO_XTS
1149 help
1150 Camellia cipher algorithm module (x86_64/AES-NI/AVX2).
1151
1152 Camellia is a symmetric key block cipher developed jointly
1153 at NTT and Mitsubishi Electric Corporation.
1154
1155 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1156
1157 See also:
1158 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1159
David S. Miller81658ad2012-08-28 12:05:54 -07001160config CRYPTO_CAMELLIA_SPARC64
1161 tristate "Camellia cipher algorithm (SPARC64)"
1162 depends on SPARC64
1163 depends on CRYPTO
1164 select CRYPTO_ALGAPI
1165 help
1166 Camellia cipher algorithm module (SPARC64).
1167
1168 Camellia is a symmetric key block cipher developed jointly
1169 at NTT and Mitsubishi Electric Corporation.
1170
1171 The Camellia specifies three key sizes: 128, 192 and 256 bits.
1172
1173 See also:
1174 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
1175
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001176config CRYPTO_CAST_COMMON
1177 tristate
1178 help
1179 Common parts of the CAST cipher algorithms shared by the
1180 generic c and the assembler implementations.
1181
Linus Torvalds1da177e2005-04-16 15:20:36 -07001182config CRYPTO_CAST5
1183 tristate "CAST5 (CAST-128) cipher algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001184 select CRYPTO_ALGAPI
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001185 select CRYPTO_CAST_COMMON
Linus Torvalds1da177e2005-04-16 15:20:36 -07001186 help
1187 The CAST5 encryption algorithm (synonymous with CAST-128) is
1188 described in RFC2144.
1189
Johannes Goetzfried4d6d6a22012-07-11 19:37:37 +02001190config CRYPTO_CAST5_AVX_X86_64
1191 tristate "CAST5 (CAST-128) cipher algorithm (x86_64/AVX)"
1192 depends on X86 && 64BIT
1193 select CRYPTO_ALGAPI
1194 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001195 select CRYPTO_ABLK_HELPER
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001196 select CRYPTO_CAST_COMMON
Johannes Goetzfried4d6d6a22012-07-11 19:37:37 +02001197 select CRYPTO_CAST5
1198 help
1199 The CAST5 encryption algorithm (synonymous with CAST-128) is
1200 described in RFC2144.
1201
1202 This module provides the Cast5 cipher algorithm that processes
1203 sixteen blocks parallel using the AVX instruction set.
1204
Linus Torvalds1da177e2005-04-16 15:20:36 -07001205config CRYPTO_CAST6
1206 tristate "CAST6 (CAST-256) cipher algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001207 select CRYPTO_ALGAPI
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001208 select CRYPTO_CAST_COMMON
Linus Torvalds1da177e2005-04-16 15:20:36 -07001209 help
1210 The CAST6 encryption algorithm (synonymous with CAST-256) is
1211 described in RFC2612.
1212
Johannes Goetzfried4ea12772012-07-11 19:38:57 +02001213config CRYPTO_CAST6_AVX_X86_64
1214 tristate "CAST6 (CAST-256) cipher algorithm (x86_64/AVX)"
1215 depends on X86 && 64BIT
1216 select CRYPTO_ALGAPI
1217 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001218 select CRYPTO_ABLK_HELPER
Johannes Goetzfried4ea12772012-07-11 19:38:57 +02001219 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinna044ab522012-11-13 11:43:14 +02001220 select CRYPTO_CAST_COMMON
Johannes Goetzfried4ea12772012-07-11 19:38:57 +02001221 select CRYPTO_CAST6
1222 select CRYPTO_LRW
1223 select CRYPTO_XTS
1224 help
1225 The CAST6 encryption algorithm (synonymous with CAST-256) is
1226 described in RFC2612.
1227
1228 This module provides the Cast6 cipher algorithm that processes
1229 eight blocks parallel using the AVX instruction set.
1230
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001231config CRYPTO_DES
1232 tristate "DES and Triple DES EDE cipher algorithms"
Herbert Xucce9e062006-08-21 21:08:13 +10001233 select CRYPTO_ALGAPI
Linus Torvalds1da177e2005-04-16 15:20:36 -07001234 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001235 DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3).
Linus Torvalds1da177e2005-04-16 15:20:36 -07001236
David S. Millerc5aac2d2012-08-25 22:37:23 -07001237config CRYPTO_DES_SPARC64
1238 tristate "DES and Triple DES EDE cipher algorithms (SPARC64)"
Dave Jones97da37b2012-10-02 17:13:20 -04001239 depends on SPARC64
David S. Millerc5aac2d2012-08-25 22:37:23 -07001240 select CRYPTO_ALGAPI
1241 select CRYPTO_DES
1242 help
1243 DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3),
1244 optimized using SPARC64 crypto opcodes.
1245
Jussi Kivilinna6574e6c2014-06-09 20:59:54 +03001246config CRYPTO_DES3_EDE_X86_64
1247 tristate "Triple DES EDE cipher algorithm (x86-64)"
1248 depends on X86 && 64BIT
1249 select CRYPTO_ALGAPI
1250 select CRYPTO_DES
1251 help
1252 Triple DES EDE (FIPS 46-3) algorithm.
1253
1254 This module provides implementation of the Triple DES EDE cipher
1255 algorithm that is optimized for x86-64 processors. Two versions of
1256 algorithm are provided; regular processing one input block and
1257 one that processes three blocks parallel.
1258
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001259config CRYPTO_FCRYPT
1260 tristate "FCrypt cipher algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001261 select CRYPTO_ALGAPI
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001262 select CRYPTO_BLKCIPHER
Linus Torvalds1da177e2005-04-16 15:20:36 -07001263 help
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001264 FCrypt algorithm used by RxRPC.
Linus Torvalds1da177e2005-04-16 15:20:36 -07001265
1266config CRYPTO_KHAZAD
1267 tristate "Khazad cipher algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001268 select CRYPTO_ALGAPI
Linus Torvalds1da177e2005-04-16 15:20:36 -07001269 help
1270 Khazad cipher algorithm.
1271
1272 Khazad was a finalist in the initial NESSIE competition. It is
1273 an algorithm optimized for 64-bit processors with good performance
1274 on 32-bit processors. Khazad uses an 128 bit key size.
1275
1276 See also:
Justin P. Mattock6d8de742010-09-12 10:42:47 +08001277 <http://www.larc.usp.br/~pbarreto/KhazadPage.html>
Linus Torvalds1da177e2005-04-16 15:20:36 -07001278
Tan Swee Heng2407d602007-11-23 19:45:00 +08001279config CRYPTO_SALSA20
Kees Cook3b4afaf2012-10-02 11:16:49 -07001280 tristate "Salsa20 stream cipher algorithm"
Tan Swee Heng2407d602007-11-23 19:45:00 +08001281 select CRYPTO_BLKCIPHER
1282 help
1283 Salsa20 stream cipher algorithm.
1284
1285 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
1286 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
1287
1288 The Salsa20 stream cipher algorithm is designed by Daniel J.
1289 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
Linus Torvalds1da177e2005-04-16 15:20:36 -07001290
Tan Swee Heng974e4b72007-12-10 15:52:56 +08001291config CRYPTO_SALSA20_586
Kees Cook3b4afaf2012-10-02 11:16:49 -07001292 tristate "Salsa20 stream cipher algorithm (i586)"
Tan Swee Heng974e4b72007-12-10 15:52:56 +08001293 depends on (X86 || UML_X86) && !64BIT
Tan Swee Heng974e4b72007-12-10 15:52:56 +08001294 select CRYPTO_BLKCIPHER
Tan Swee Heng974e4b72007-12-10 15:52:56 +08001295 help
1296 Salsa20 stream cipher algorithm.
1297
1298 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
1299 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
1300
1301 The Salsa20 stream cipher algorithm is designed by Daniel J.
1302 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
1303
Tan Swee Heng9a7dafb2007-12-18 00:04:40 +08001304config CRYPTO_SALSA20_X86_64
Kees Cook3b4afaf2012-10-02 11:16:49 -07001305 tristate "Salsa20 stream cipher algorithm (x86_64)"
Tan Swee Heng9a7dafb2007-12-18 00:04:40 +08001306 depends on (X86 || UML_X86) && 64BIT
Tan Swee Heng9a7dafb2007-12-18 00:04:40 +08001307 select CRYPTO_BLKCIPHER
Tan Swee Heng9a7dafb2007-12-18 00:04:40 +08001308 help
1309 Salsa20 stream cipher algorithm.
1310
1311 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
1312 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
1313
1314 The Salsa20 stream cipher algorithm is designed by Daniel J.
1315 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
1316
Martin Willic08d0e62015-06-01 13:43:56 +02001317config CRYPTO_CHACHA20
1318 tristate "ChaCha20 cipher algorithm"
1319 select CRYPTO_BLKCIPHER
1320 help
1321 ChaCha20 cipher algorithm, RFC7539.
1322
1323 ChaCha20 is a 256-bit high-speed stream cipher designed by Daniel J.
1324 Bernstein and further specified in RFC7539 for use in IETF protocols.
1325 This is the portable C implementation of ChaCha20.
1326
1327 See also:
1328 <http://cr.yp.to/chacha/chacha-20080128.pdf>
1329
Martin Willic9320b62015-07-16 19:14:01 +02001330config CRYPTO_CHACHA20_X86_64
Martin Willi3d1e93c2015-07-16 19:14:03 +02001331 tristate "ChaCha20 cipher algorithm (x86_64/SSSE3/AVX2)"
Martin Willic9320b62015-07-16 19:14:01 +02001332 depends on X86 && 64BIT
1333 select CRYPTO_BLKCIPHER
1334 select CRYPTO_CHACHA20
1335 help
1336 ChaCha20 cipher algorithm, RFC7539.
1337
1338 ChaCha20 is a 256-bit high-speed stream cipher designed by Daniel J.
1339 Bernstein and further specified in RFC7539 for use in IETF protocols.
1340 This is the x86_64 assembler implementation using SIMD instructions.
1341
1342 See also:
1343 <http://cr.yp.to/chacha/chacha-20080128.pdf>
1344
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001345config CRYPTO_SEED
1346 tristate "SEED cipher algorithm"
1347 select CRYPTO_ALGAPI
1348 help
1349 SEED cipher algorithm (RFC4269).
1350
1351 SEED is a 128-bit symmetric key block cipher that has been
1352 developed by KISA (Korea Information Security Agency) as a
1353 national standard encryption algorithm of the Republic of Korea.
1354 It is a 16 round block cipher with the key size of 128 bit.
1355
1356 See also:
1357 <http://www.kisa.or.kr/kisa/seed/jsp/seed_eng.jsp>
1358
1359config CRYPTO_SERPENT
1360 tristate "Serpent cipher algorithm"
1361 select CRYPTO_ALGAPI
1362 help
1363 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1364
1365 Keys are allowed to be from 0 to 256 bits in length, in steps
1366 of 8 bits. Also includes the 'Tnepres' algorithm, a reversed
1367 variant of Serpent for compatibility with old kerneli.org code.
1368
1369 See also:
1370 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1371
Jussi Kivilinna937c30d2011-11-09 16:26:25 +02001372config CRYPTO_SERPENT_SSE2_X86_64
1373 tristate "Serpent cipher algorithm (x86_64/SSE2)"
1374 depends on X86 && 64BIT
1375 select CRYPTO_ALGAPI
Jussi Kivilinna341975b2011-11-24 08:37:41 +02001376 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001377 select CRYPTO_ABLK_HELPER
Jussi Kivilinna596d8752012-06-18 14:07:19 +03001378 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinna937c30d2011-11-09 16:26:25 +02001379 select CRYPTO_SERPENT
Jussi Kivilinnafeaf0cf2011-12-13 12:53:12 +02001380 select CRYPTO_LRW
1381 select CRYPTO_XTS
Jussi Kivilinna937c30d2011-11-09 16:26:25 +02001382 help
1383 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1384
1385 Keys are allowed to be from 0 to 256 bits in length, in steps
1386 of 8 bits.
1387
Masanari Iida1e6232f2015-04-04 00:20:30 +09001388 This module provides Serpent cipher algorithm that processes eight
Jussi Kivilinna937c30d2011-11-09 16:26:25 +02001389 blocks parallel using SSE2 instruction set.
1390
1391 See also:
1392 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1393
Jussi Kivilinna251496d2011-11-09 16:26:31 +02001394config CRYPTO_SERPENT_SSE2_586
1395 tristate "Serpent cipher algorithm (i586/SSE2)"
1396 depends on X86 && !64BIT
1397 select CRYPTO_ALGAPI
Jussi Kivilinna341975b2011-11-24 08:37:41 +02001398 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001399 select CRYPTO_ABLK_HELPER
Jussi Kivilinna596d8752012-06-18 14:07:19 +03001400 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinna251496d2011-11-09 16:26:31 +02001401 select CRYPTO_SERPENT
Jussi Kivilinnafeaf0cf2011-12-13 12:53:12 +02001402 select CRYPTO_LRW
1403 select CRYPTO_XTS
Jussi Kivilinna251496d2011-11-09 16:26:31 +02001404 help
1405 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1406
1407 Keys are allowed to be from 0 to 256 bits in length, in steps
1408 of 8 bits.
1409
1410 This module provides Serpent cipher algorithm that processes four
1411 blocks parallel using SSE2 instruction set.
1412
1413 See also:
1414 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1415
Johannes Goetzfried7efe4072012-06-12 16:47:43 +08001416config CRYPTO_SERPENT_AVX_X86_64
1417 tristate "Serpent cipher algorithm (x86_64/AVX)"
1418 depends on X86 && 64BIT
1419 select CRYPTO_ALGAPI
1420 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001421 select CRYPTO_ABLK_HELPER
Jussi Kivilinna1d0debb2012-06-18 14:07:24 +03001422 select CRYPTO_GLUE_HELPER_X86
Johannes Goetzfried7efe4072012-06-12 16:47:43 +08001423 select CRYPTO_SERPENT
1424 select CRYPTO_LRW
1425 select CRYPTO_XTS
1426 help
1427 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1428
1429 Keys are allowed to be from 0 to 256 bits in length, in steps
1430 of 8 bits.
1431
1432 This module provides the Serpent cipher algorithm that processes
1433 eight blocks parallel using the AVX instruction set.
1434
1435 See also:
1436 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1437
Jussi Kivilinna56d76c92013-04-13 13:46:55 +03001438config CRYPTO_SERPENT_AVX2_X86_64
1439 tristate "Serpent cipher algorithm (x86_64/AVX2)"
1440 depends on X86 && 64BIT
1441 select CRYPTO_ALGAPI
1442 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001443 select CRYPTO_ABLK_HELPER
Jussi Kivilinna56d76c92013-04-13 13:46:55 +03001444 select CRYPTO_GLUE_HELPER_X86
1445 select CRYPTO_SERPENT
1446 select CRYPTO_SERPENT_AVX_X86_64
1447 select CRYPTO_LRW
1448 select CRYPTO_XTS
1449 help
1450 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
1451
1452 Keys are allowed to be from 0 to 256 bits in length, in steps
1453 of 8 bits.
1454
1455 This module provides Serpent cipher algorithm that processes 16
1456 blocks parallel using AVX2 instruction set.
1457
1458 See also:
1459 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
1460
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001461config CRYPTO_TEA
1462 tristate "TEA, XTEA and XETA cipher algorithms"
1463 select CRYPTO_ALGAPI
1464 help
1465 TEA cipher algorithm.
1466
1467 Tiny Encryption Algorithm is a simple cipher that uses
1468 many rounds for security. It is very fast and uses
1469 little memory.
1470
1471 Xtendend Tiny Encryption Algorithm is a modification to
1472 the TEA algorithm to address a potential key weakness
1473 in the TEA algorithm.
1474
1475 Xtendend Encryption Tiny Algorithm is a mis-implementation
1476 of the XTEA algorithm for compatibility purposes.
1477
1478config CRYPTO_TWOFISH
1479 tristate "Twofish cipher algorithm"
1480 select CRYPTO_ALGAPI
1481 select CRYPTO_TWOFISH_COMMON
1482 help
1483 Twofish cipher algorithm.
1484
1485 Twofish was submitted as an AES (Advanced Encryption Standard)
1486 candidate cipher by researchers at CounterPane Systems. It is a
1487 16 round block cipher supporting key sizes of 128, 192, and 256
1488 bits.
1489
1490 See also:
1491 <http://www.schneier.com/twofish.html>
1492
1493config CRYPTO_TWOFISH_COMMON
1494 tristate
1495 help
1496 Common parts of the Twofish cipher algorithm shared by the
1497 generic c and the assembler implementations.
1498
1499config CRYPTO_TWOFISH_586
1500 tristate "Twofish cipher algorithms (i586)"
1501 depends on (X86 || UML_X86) && !64BIT
1502 select CRYPTO_ALGAPI
1503 select CRYPTO_TWOFISH_COMMON
1504 help
1505 Twofish cipher algorithm.
1506
1507 Twofish was submitted as an AES (Advanced Encryption Standard)
1508 candidate cipher by researchers at CounterPane Systems. It is a
1509 16 round block cipher supporting key sizes of 128, 192, and 256
1510 bits.
1511
1512 See also:
1513 <http://www.schneier.com/twofish.html>
1514
1515config CRYPTO_TWOFISH_X86_64
1516 tristate "Twofish cipher algorithm (x86_64)"
1517 depends on (X86 || UML_X86) && 64BIT
1518 select CRYPTO_ALGAPI
1519 select CRYPTO_TWOFISH_COMMON
1520 help
1521 Twofish cipher algorithm (x86_64).
1522
1523 Twofish was submitted as an AES (Advanced Encryption Standard)
1524 candidate cipher by researchers at CounterPane Systems. It is a
1525 16 round block cipher supporting key sizes of 128, 192, and 256
1526 bits.
1527
1528 See also:
1529 <http://www.schneier.com/twofish.html>
1530
Jussi Kivilinna8280daa2011-09-26 16:47:25 +03001531config CRYPTO_TWOFISH_X86_64_3WAY
1532 tristate "Twofish cipher algorithm (x86_64, 3-way parallel)"
Al Virof21a7c12012-04-08 20:31:22 -04001533 depends on X86 && 64BIT
Jussi Kivilinna8280daa2011-09-26 16:47:25 +03001534 select CRYPTO_ALGAPI
1535 select CRYPTO_TWOFISH_COMMON
1536 select CRYPTO_TWOFISH_X86_64
Jussi Kivilinna414cb5e2012-06-18 14:07:34 +03001537 select CRYPTO_GLUE_HELPER_X86
Jussi Kivilinnae7cda5d2011-12-13 12:53:01 +02001538 select CRYPTO_LRW
1539 select CRYPTO_XTS
Jussi Kivilinna8280daa2011-09-26 16:47:25 +03001540 help
1541 Twofish cipher algorithm (x86_64, 3-way parallel).
1542
1543 Twofish was submitted as an AES (Advanced Encryption Standard)
1544 candidate cipher by researchers at CounterPane Systems. It is a
1545 16 round block cipher supporting key sizes of 128, 192, and 256
1546 bits.
1547
1548 This module provides Twofish cipher algorithm that processes three
1549 blocks parallel, utilizing resources of out-of-order CPUs better.
1550
1551 See also:
1552 <http://www.schneier.com/twofish.html>
1553
Johannes Goetzfried107778b52012-05-28 15:54:24 +02001554config CRYPTO_TWOFISH_AVX_X86_64
1555 tristate "Twofish cipher algorithm (x86_64/AVX)"
1556 depends on X86 && 64BIT
1557 select CRYPTO_ALGAPI
1558 select CRYPTO_CRYPTD
Ard Biesheuvel801201a2013-09-20 09:55:41 +02001559 select CRYPTO_ABLK_HELPER
Jussi Kivilinnaa7378d42012-06-18 14:07:39 +03001560 select CRYPTO_GLUE_HELPER_X86
Johannes Goetzfried107778b52012-05-28 15:54:24 +02001561 select CRYPTO_TWOFISH_COMMON
1562 select CRYPTO_TWOFISH_X86_64
1563 select CRYPTO_TWOFISH_X86_64_3WAY
1564 select CRYPTO_LRW
1565 select CRYPTO_XTS
1566 help
1567 Twofish cipher algorithm (x86_64/AVX).
1568
1569 Twofish was submitted as an AES (Advanced Encryption Standard)
1570 candidate cipher by researchers at CounterPane Systems. It is a
1571 16 round block cipher supporting key sizes of 128, 192, and 256
1572 bits.
1573
1574 This module provides the Twofish cipher algorithm that processes
1575 eight blocks parallel using the AVX Instruction Set.
1576
1577 See also:
1578 <http://www.schneier.com/twofish.html>
1579
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001580comment "Compression"
1581
Linus Torvalds1da177e2005-04-16 15:20:36 -07001582config CRYPTO_DEFLATE
1583 tristate "Deflate compression algorithm"
Herbert Xucce9e062006-08-21 21:08:13 +10001584 select CRYPTO_ALGAPI
Giovanni Cabidduf6ded092016-10-21 13:19:53 +01001585 select CRYPTO_ACOMP2
Linus Torvalds1da177e2005-04-16 15:20:36 -07001586 select ZLIB_INFLATE
1587 select ZLIB_DEFLATE
1588 help
1589 This is the Deflate algorithm (RFC1951), specified for use in
1590 IPSec with the IPCOMP protocol (RFC3173, RFC2394).
Sebastian Siewior584fffc2008-04-05 21:04:48 +08001591
Linus Torvalds1da177e2005-04-16 15:20:36 -07001592 You will most probably want this if using IPSec.
1593
Zoltan Sogor0b77abb2007-12-07 16:53:23 +08001594config CRYPTO_LZO
1595 tristate "LZO compression algorithm"
1596 select CRYPTO_ALGAPI
Giovanni Cabidduac9d2c42016-10-21 13:19:49 +01001597 select CRYPTO_ACOMP2
Zoltan Sogor0b77abb2007-12-07 16:53:23 +08001598 select LZO_COMPRESS
1599 select LZO_DECOMPRESS
1600 help
1601 This is the LZO algorithm.
1602
Seth Jennings35a1fc12012-07-19 09:42:41 -05001603config CRYPTO_842
1604 tristate "842 compression algorithm"
Dan Streetman2062c5b2015-05-07 13:49:15 -04001605 select CRYPTO_ALGAPI
Giovanni Cabiddu6a8de3a2016-10-21 13:19:52 +01001606 select CRYPTO_ACOMP2
Dan Streetman2062c5b2015-05-07 13:49:15 -04001607 select 842_COMPRESS
1608 select 842_DECOMPRESS
Seth Jennings35a1fc12012-07-19 09:42:41 -05001609 help
1610 This is the 842 algorithm.
1611
Chanho Min0ea85302013-07-08 16:01:51 -07001612config CRYPTO_LZ4
1613 tristate "LZ4 compression algorithm"
1614 select CRYPTO_ALGAPI
Giovanni Cabiddu8cd93302016-10-21 13:19:50 +01001615 select CRYPTO_ACOMP2
Chanho Min0ea85302013-07-08 16:01:51 -07001616 select LZ4_COMPRESS
1617 select LZ4_DECOMPRESS
1618 help
1619 This is the LZ4 algorithm.
1620
1621config CRYPTO_LZ4HC
1622 tristate "LZ4HC compression algorithm"
1623 select CRYPTO_ALGAPI
Giovanni Cabiddu91d53d92016-10-21 13:19:51 +01001624 select CRYPTO_ACOMP2
Chanho Min0ea85302013-07-08 16:01:51 -07001625 select LZ4HC_COMPRESS
1626 select LZ4_DECOMPRESS
1627 help
1628 This is the LZ4 high compression mode algorithm.
1629
Neil Horman17f0f4a2008-08-14 22:15:52 +10001630comment "Random Number Generation"
1631
1632config CRYPTO_ANSI_CPRNG
1633 tristate "Pseudo Random Number Generation for Cryptographic modules"
1634 select CRYPTO_AES
1635 select CRYPTO_RNG
Neil Horman17f0f4a2008-08-14 22:15:52 +10001636 help
1637 This option enables the generic pseudo random number generator
1638 for cryptographic modules. Uses the Algorithm specified in
Jiri Kosina7dd607e2010-01-27 01:00:10 +01001639 ANSI X9.31 A.2.4. Note that this option must be enabled if
1640 CRYPTO_FIPS is selected
Neil Horman17f0f4a2008-08-14 22:15:52 +10001641
Herbert Xuf2c89a12014-07-04 22:15:08 +08001642menuconfig CRYPTO_DRBG_MENU
Stephan Mueller419090c2014-05-31 17:22:31 +02001643 tristate "NIST SP800-90A DRBG"
Stephan Mueller419090c2014-05-31 17:22:31 +02001644 help
1645 NIST SP800-90A compliant DRBG. In the following submenu, one or
1646 more of the DRBG types must be selected.
1647
Herbert Xuf2c89a12014-07-04 22:15:08 +08001648if CRYPTO_DRBG_MENU
Stephan Mueller419090c2014-05-31 17:22:31 +02001649
1650config CRYPTO_DRBG_HMAC
Herbert Xu401e4232015-06-03 14:49:31 +08001651 bool
Stephan Mueller419090c2014-05-31 17:22:31 +02001652 default y
Stephan Mueller419090c2014-05-31 17:22:31 +02001653 select CRYPTO_HMAC
Herbert Xu826775b2015-06-11 08:55:10 +08001654 select CRYPTO_SHA256
Stephan Mueller419090c2014-05-31 17:22:31 +02001655
1656config CRYPTO_DRBG_HASH
1657 bool "Enable Hash DRBG"
Herbert Xu826775b2015-06-11 08:55:10 +08001658 select CRYPTO_SHA256
Stephan Mueller419090c2014-05-31 17:22:31 +02001659 help
1660 Enable the Hash DRBG variant as defined in NIST SP800-90A.
1661
1662config CRYPTO_DRBG_CTR
1663 bool "Enable CTR DRBG"
Stephan Mueller419090c2014-05-31 17:22:31 +02001664 select CRYPTO_AES
Stephan Mueller35591282016-06-14 07:34:13 +02001665 depends on CRYPTO_CTR
Stephan Mueller419090c2014-05-31 17:22:31 +02001666 help
1667 Enable the CTR DRBG variant as defined in NIST SP800-90A.
1668
Herbert Xuf2c89a12014-07-04 22:15:08 +08001669config CRYPTO_DRBG
1670 tristate
Herbert Xu401e4232015-06-03 14:49:31 +08001671 default CRYPTO_DRBG_MENU
Herbert Xuf2c89a12014-07-04 22:15:08 +08001672 select CRYPTO_RNG
Stephan Muellerbb5530e2015-05-25 15:10:20 +02001673 select CRYPTO_JITTERENTROPY
Herbert Xuf2c89a12014-07-04 22:15:08 +08001674
1675endif # if CRYPTO_DRBG_MENU
Stephan Mueller419090c2014-05-31 17:22:31 +02001676
Stephan Muellerbb5530e2015-05-25 15:10:20 +02001677config CRYPTO_JITTERENTROPY
1678 tristate "Jitterentropy Non-Deterministic Random Number Generator"
Arnd Bergmann2f313e02016-01-26 14:47:10 +01001679 select CRYPTO_RNG
Stephan Muellerbb5530e2015-05-25 15:10:20 +02001680 help
1681 The Jitterentropy RNG is a noise that is intended
1682 to provide seed to another RNG. The RNG does not
1683 perform any cryptographic whitening of the generated
1684 random numbers. This Jitterentropy RNG registers with
1685 the kernel crypto API and can be used by any caller.
1686
Herbert Xu03c8efc2010-10-19 21:12:39 +08001687config CRYPTO_USER_API
1688 tristate
1689
Herbert Xufe869cd2010-10-19 21:23:00 +08001690config CRYPTO_USER_API_HASH
1691 tristate "User-space interface for hash algorithms"
Herbert Xu74517082010-11-29 22:56:03 +08001692 depends on NET
Herbert Xufe869cd2010-10-19 21:23:00 +08001693 select CRYPTO_HASH
1694 select CRYPTO_USER_API
1695 help
1696 This option enables the user-spaces interface for hash
1697 algorithms.
1698
Herbert Xu8ff59092010-10-19 21:31:55 +08001699config CRYPTO_USER_API_SKCIPHER
1700 tristate "User-space interface for symmetric key cipher algorithms"
Herbert Xu74517082010-11-29 22:56:03 +08001701 depends on NET
Herbert Xu8ff59092010-10-19 21:31:55 +08001702 select CRYPTO_BLKCIPHER
1703 select CRYPTO_USER_API
1704 help
1705 This option enables the user-spaces interface for symmetric
1706 key cipher algorithms.
1707
Stephan Mueller2f3755382014-12-25 23:00:39 +01001708config CRYPTO_USER_API_RNG
1709 tristate "User-space interface for random number generator algorithms"
1710 depends on NET
1711 select CRYPTO_RNG
1712 select CRYPTO_USER_API
1713 help
1714 This option enables the user-spaces interface for random
1715 number generator algorithms.
1716
Herbert Xub64a2d92015-05-28 11:30:35 +08001717config CRYPTO_USER_API_AEAD
1718 tristate "User-space interface for AEAD cipher algorithms"
1719 depends on NET
1720 select CRYPTO_AEAD
1721 select CRYPTO_USER_API
1722 help
1723 This option enables the user-spaces interface for AEAD
1724 cipher algorithms.
1725
Dmitry Kasatkinee089972013-05-06 15:40:01 +03001726config CRYPTO_HASH_INFO
1727 bool
1728
Linus Torvalds1da177e2005-04-16 15:20:36 -07001729source "drivers/crypto/Kconfig"
David Howells964f3b32012-09-13 15:17:21 +01001730source crypto/asymmetric_keys/Kconfig
David Howellscfc411e2015-08-14 15:20:41 +01001731source certs/Kconfig
Linus Torvalds1da177e2005-04-16 15:20:36 -07001732
Herbert Xucce9e062006-08-21 21:08:13 +10001733endif # if CRYPTO