xref: /linux/arch/arm/crypto/Kconfig (revision d0a3431a7bbdf8f66d2d7a8fbf0233f3b325fcab) 
1652ccae5SArd Biesheuvel
2652ccae5SArd Biesheuvelmenuconfig ARM_CRYPTO
3652ccae5SArd Biesheuvel	bool "ARM Accelerated Cryptographic Algorithms"
4652ccae5SArd Biesheuvel	depends on ARM
5652ccae5SArd Biesheuvel	help
6652ccae5SArd Biesheuvel	  Say Y here to choose from a selection of cryptographic algorithms
7652ccae5SArd Biesheuvel	  implemented using ARM specific CPU features or instructions.
8652ccae5SArd Biesheuvel
9652ccae5SArd Biesheuvelif ARM_CRYPTO
10652ccae5SArd Biesheuvel
11652ccae5SArd Biesheuvelconfig CRYPTO_SHA1_ARM
12652ccae5SArd Biesheuvel	tristate "SHA1 digest algorithm (ARM-asm)"
13652ccae5SArd Biesheuvel	select CRYPTO_SHA1
14652ccae5SArd Biesheuvel	select CRYPTO_HASH
15652ccae5SArd Biesheuvel	help
16652ccae5SArd Biesheuvel	  SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
17652ccae5SArd Biesheuvel	  using optimized ARM assembler.
18652ccae5SArd Biesheuvel
19652ccae5SArd Biesheuvelconfig CRYPTO_SHA1_ARM_NEON
20652ccae5SArd Biesheuvel	tristate "SHA1 digest algorithm (ARM NEON)"
21652ccae5SArd Biesheuvel	depends on KERNEL_MODE_NEON
22652ccae5SArd Biesheuvel	select CRYPTO_SHA1_ARM
23652ccae5SArd Biesheuvel	select CRYPTO_SHA1
24652ccae5SArd Biesheuvel	select CRYPTO_HASH
25652ccae5SArd Biesheuvel	help
26652ccae5SArd Biesheuvel	  SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
27652ccae5SArd Biesheuvel	  using optimized ARM NEON assembly, when NEON instructions are
28652ccae5SArd Biesheuvel	  available.
29652ccae5SArd Biesheuvel
30864cbeedSArd Biesheuvelconfig CRYPTO_SHA1_ARM_CE
31864cbeedSArd Biesheuvel	tristate "SHA1 digest algorithm (ARM v8 Crypto Extensions)"
32864cbeedSArd Biesheuvel	depends on KERNEL_MODE_NEON
33864cbeedSArd Biesheuvel	select CRYPTO_SHA1_ARM
34864cbeedSArd Biesheuvel	select CRYPTO_HASH
35864cbeedSArd Biesheuvel	help
36864cbeedSArd Biesheuvel	  SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
37864cbeedSArd Biesheuvel	  using special ARMv8 Crypto Extensions.
38864cbeedSArd Biesheuvel
39006d0624SArd Biesheuvelconfig CRYPTO_SHA2_ARM_CE
40006d0624SArd Biesheuvel	tristate "SHA-224/256 digest algorithm (ARM v8 Crypto Extensions)"
41006d0624SArd Biesheuvel	depends on KERNEL_MODE_NEON
429205b949SArd Biesheuvel	select CRYPTO_SHA256_ARM
43006d0624SArd Biesheuvel	select CRYPTO_HASH
44006d0624SArd Biesheuvel	help
45006d0624SArd Biesheuvel	  SHA-256 secure hash standard (DFIPS 180-2) implemented
46006d0624SArd Biesheuvel	  using special ARMv8 Crypto Extensions.
47006d0624SArd Biesheuvel
48f2f770d7SSami Tolvanenconfig CRYPTO_SHA256_ARM
49f2f770d7SSami Tolvanen	tristate "SHA-224/256 digest algorithm (ARM-asm and NEON)"
50f2f770d7SSami Tolvanen	select CRYPTO_HASH
51b48321deSArnd Bergmann	depends on !CPU_V7M
52f2f770d7SSami Tolvanen	help
53f2f770d7SSami Tolvanen	  SHA-256 secure hash standard (DFIPS 180-2) implemented
54f2f770d7SSami Tolvanen	  using optimized ARM assembler and NEON, when available.
55f2f770d7SSami Tolvanen
56c80ae7caSArd Biesheuvelconfig CRYPTO_SHA512_ARM
57c80ae7caSArd Biesheuvel	tristate "SHA-384/512 digest algorithm (ARM-asm and NEON)"
58652ccae5SArd Biesheuvel	select CRYPTO_HASH
59c80ae7caSArd Biesheuvel	depends on !CPU_V7M
60652ccae5SArd Biesheuvel	help
61652ccae5SArd Biesheuvel	  SHA-512 secure hash standard (DFIPS 180-2) implemented
62c80ae7caSArd Biesheuvel	  using optimized ARM assembler and NEON, when available.
63652ccae5SArd Biesheuvel
64652ccae5SArd Biesheuvelconfig CRYPTO_AES_ARM
65652ccae5SArd Biesheuvel	tristate "AES cipher algorithms (ARM-asm)"
66652ccae5SArd Biesheuvel	depends on ARM
67652ccae5SArd Biesheuvel	select CRYPTO_ALGAPI
68652ccae5SArd Biesheuvel	select CRYPTO_AES
69652ccae5SArd Biesheuvel	help
70652ccae5SArd Biesheuvel	  Use optimized AES assembler routines for ARM platforms.
71652ccae5SArd Biesheuvel
72652ccae5SArd Biesheuvel	  AES cipher algorithms (FIPS-197). AES uses the Rijndael
73652ccae5SArd Biesheuvel	  algorithm.
74652ccae5SArd Biesheuvel
75652ccae5SArd Biesheuvel	  Rijndael appears to be consistently a very good performer in
76652ccae5SArd Biesheuvel	  both hardware and software across a wide range of computing
77652ccae5SArd Biesheuvel	  environments regardless of its use in feedback or non-feedback
78652ccae5SArd Biesheuvel	  modes. Its key setup time is excellent, and its key agility is
79652ccae5SArd Biesheuvel	  good. Rijndael's very low memory requirements make it very well
80652ccae5SArd Biesheuvel	  suited for restricted-space environments, in which it also
81652ccae5SArd Biesheuvel	  demonstrates excellent performance. Rijndael's operations are
82652ccae5SArd Biesheuvel	  among the easiest to defend against power and timing attacks.
83652ccae5SArd Biesheuvel
84652ccae5SArd Biesheuvel	  The AES specifies three key sizes: 128, 192 and 256 bits
85652ccae5SArd Biesheuvel
86652ccae5SArd Biesheuvel	  See <http://csrc.nist.gov/encryption/aes/> for more information.
87652ccae5SArd Biesheuvel
88652ccae5SArd Biesheuvelconfig CRYPTO_AES_ARM_BS
89652ccae5SArd Biesheuvel	tristate "Bit sliced AES using NEON instructions"
90652ccae5SArd Biesheuvel	depends on KERNEL_MODE_NEON
91652ccae5SArd Biesheuvel	select CRYPTO_AES_ARM
926fdf436fSHerbert Xu	select CRYPTO_BLKCIPHER
936fdf436fSHerbert Xu	select CRYPTO_SIMD
94652ccae5SArd Biesheuvel	help
95652ccae5SArd Biesheuvel	  Use a faster and more secure NEON based implementation of AES in CBC,
96652ccae5SArd Biesheuvel	  CTR and XTS modes
97652ccae5SArd Biesheuvel
98652ccae5SArd Biesheuvel	  Bit sliced AES gives around 45% speedup on Cortex-A15 for CTR mode
99652ccae5SArd Biesheuvel	  and for XTS mode encryption, CBC and XTS mode decryption speedup is
100652ccae5SArd Biesheuvel	  around 25%. (CBC encryption speed is not affected by this driver.)
101652ccae5SArd Biesheuvel	  This implementation does not rely on any lookup tables so it is
102652ccae5SArd Biesheuvel	  believed to be invulnerable to cache timing attacks.
103652ccae5SArd Biesheuvel
10486464859SArd Biesheuvelconfig CRYPTO_AES_ARM_CE
10586464859SArd Biesheuvel	tristate "Accelerated AES using ARMv8 Crypto Extensions"
10686464859SArd Biesheuvel	depends on KERNEL_MODE_NEON
1076fdf436fSHerbert Xu	select CRYPTO_BLKCIPHER
108585b5fa6SHerbert Xu	select CRYPTO_SIMD
10986464859SArd Biesheuvel	help
11086464859SArd Biesheuvel	  Use an implementation of AES in CBC, CTR and XTS modes that uses
11186464859SArd Biesheuvel	  ARMv8 Crypto Extensions
11286464859SArd Biesheuvel
113f1e866b1SArd Biesheuvelconfig CRYPTO_GHASH_ARM_CE
114f1e866b1SArd Biesheuvel	tristate "PMULL-accelerated GHASH using ARMv8 Crypto Extensions"
115f1e866b1SArd Biesheuvel	depends on KERNEL_MODE_NEON
116f1e866b1SArd Biesheuvel	select CRYPTO_HASH
117f1e866b1SArd Biesheuvel	select CRYPTO_CRYPTD
118f1e866b1SArd Biesheuvel	help
119f1e866b1SArd Biesheuvel	  Use an implementation of GHASH (used by the GCM AEAD chaining mode)
120f1e866b1SArd Biesheuvel	  that uses the 64x64 to 128 bit polynomial multiplication (vmull.p64)
121f1e866b1SArd Biesheuvel	  that is part of the ARMv8 Crypto Extensions
122f1e866b1SArd Biesheuvel
1231d481f1cSArd Biesheuvelconfig CRYPTO_CRCT10DIF_ARM_CE
1241d481f1cSArd Biesheuvel	tristate "CRCT10DIF digest algorithm using PMULL instructions"
1251d481f1cSArd Biesheuvel	depends on KERNEL_MODE_NEON && CRC_T10DIF
1261d481f1cSArd Biesheuvel	select CRYPTO_HASH
1271d481f1cSArd Biesheuvel
128*d0a3431aSArd Biesheuvelconfig CRYPTO_CRC32_ARM_CE
129*d0a3431aSArd Biesheuvel	tristate "CRC32(C) digest algorithm using CRC and/or PMULL instructions"
130*d0a3431aSArd Biesheuvel	depends on KERNEL_MODE_NEON && CRC32
131*d0a3431aSArd Biesheuvel	select CRYPTO_HASH
132*d0a3431aSArd Biesheuvel
133652ccae5SArd Biesheuvelendif
134