1*6801cc49SShubham Chakraborty================= 2*6801cc49SShubham Chakraborty/proc/sys/crypto/ 3*6801cc49SShubham Chakraborty================= 4*6801cc49SShubham Chakraborty 5*6801cc49SShubham ChakrabortyThese files show up in ``/proc/sys/crypto/``, depending on the 6*6801cc49SShubham Chakrabortykernel configuration: 7*6801cc49SShubham Chakraborty 8*6801cc49SShubham Chakraborty.. contents:: :local: 9*6801cc49SShubham Chakraborty 10*6801cc49SShubham Chakrabortyfips_enabled 11*6801cc49SShubham Chakraborty============ 12*6801cc49SShubham Chakraborty 13*6801cc49SShubham ChakrabortyRead-only flag that indicates whether FIPS mode is enabled. 14*6801cc49SShubham Chakraborty 15*6801cc49SShubham Chakraborty- ``0``: FIPS mode is disabled (default). 16*6801cc49SShubham Chakraborty- ``1``: FIPS mode is enabled. 17*6801cc49SShubham Chakraborty 18*6801cc49SShubham ChakrabortyThis value is set at boot time via the ``fips=1`` kernel command line 19*6801cc49SShubham Chakrabortyparameter. When enabled, the cryptographic API will restrict the use 20*6801cc49SShubham Chakrabortyof certain algorithms and perform self-tests to ensure compliance with 21*6801cc49SShubham ChakrabortyFIPS (Federal Information Processing Standards) requirements, such as 22*6801cc49SShubham ChakrabortyFIPS 140-2 and the newer FIPS 140-3, depending on the kernel 23*6801cc49SShubham Chakrabortyconfiguration and the module in use. 24*6801cc49SShubham Chakraborty 25*6801cc49SShubham Chakrabortyfips_name 26*6801cc49SShubham Chakraborty========= 27*6801cc49SShubham Chakraborty 28*6801cc49SShubham ChakrabortyRead-only file that contains the name of the FIPS module currently in use. 29*6801cc49SShubham ChakrabortyThe value is typically configured via the ``CONFIG_CRYPTO_FIPS_NAME`` 30*6801cc49SShubham Chakrabortykernel configuration option. 31*6801cc49SShubham Chakraborty 32*6801cc49SShubham Chakrabortyfips_version 33*6801cc49SShubham Chakraborty============ 34*6801cc49SShubham Chakraborty 35*6801cc49SShubham ChakrabortyRead-only file that contains the version string of the FIPS module. 36*6801cc49SShubham ChakrabortyIf ``CONFIG_CRYPTO_FIPS_CUSTOM_VERSION`` is set, it uses the value from 37*6801cc49SShubham Chakraborty``CONFIG_CRYPTO_FIPS_VERSION``. Otherwise, it defaults to the kernel 38*6801cc49SShubham Chakrabortyrelease version (``UTS_RELEASE``). 39*6801cc49SShubham Chakraborty 40*6801cc49SShubham ChakrabortyCopyright (c) 2026, Shubham Chakraborty <chakrabortyshubham66@gmail.com> 41*6801cc49SShubham Chakraborty 42*6801cc49SShubham ChakrabortyFor general info and legal blurb, please look in 43*6801cc49SShubham ChakrabortyDocumentation/admin-guide/sysctl/index.rst. 44*6801cc49SShubham Chakraborty 45*6801cc49SShubham Chakraborty.. See scripts/check-sysctl-docs to keep this up to date: 46*6801cc49SShubham Chakraborty.. scripts/check-sysctl-docs -vtable="crypto" \ 47*6801cc49SShubham Chakraborty.. $(git grep -l register_sysctl_) 48