xref: /linux/crypto/Kconfig (revision 54ccb36776eb7e03b592bfab60393c7800851a0b)
11da177e4SLinus Torvalds#
2685784aaSDan Williams# Generic algorithms support
3685784aaSDan Williams#
4685784aaSDan Williamsconfig XOR_BLOCKS
5685784aaSDan Williams	tristate
6685784aaSDan Williams
7685784aaSDan Williams#
89bc89cd8SDan Williams# async_tx api: hardware offloaded memory transfer/transform support
99bc89cd8SDan Williams#
109bc89cd8SDan Williamssource "crypto/async_tx/Kconfig"
119bc89cd8SDan Williams
129bc89cd8SDan Williams#
131da177e4SLinus Torvalds# Cryptographic API Configuration
141da177e4SLinus Torvalds#
152e290f43SJan Engelhardtmenuconfig CRYPTO
16c3715cb9SSebastian Siewior	tristate "Cryptographic API"
171da177e4SLinus Torvalds	help
181da177e4SLinus Torvalds	  This option provides the core Cryptographic API.
191da177e4SLinus Torvalds
20cce9e06dSHerbert Xuif CRYPTO
21cce9e06dSHerbert Xu
22584fffc8SSebastian Siewiorcomment "Crypto core or helper"
23584fffc8SSebastian Siewior
24ccb778e1SNeil Hormanconfig CRYPTO_FIPS
25ccb778e1SNeil Horman	bool "FIPS 200 compliance"
26ccb778e1SNeil Horman	help
27ccb778e1SNeil Horman	  This options enables the fips boot option which is
28ccb778e1SNeil Horman	  required if you want to system to operate in a FIPS 200
29ccb778e1SNeil Horman	  certification.  You should say no unless you know what
30ccb778e1SNeil Horman	  this is.
31ccb778e1SNeil Horman
32cce9e06dSHerbert Xuconfig CRYPTO_ALGAPI
33cce9e06dSHerbert Xu	tristate
346a0fcbb4SHerbert Xu	select CRYPTO_ALGAPI2
35cce9e06dSHerbert Xu	help
36cce9e06dSHerbert Xu	  This option provides the API for cryptographic algorithms.
37cce9e06dSHerbert Xu
386a0fcbb4SHerbert Xuconfig CRYPTO_ALGAPI2
396a0fcbb4SHerbert Xu	tristate
406a0fcbb4SHerbert Xu
411ae97820SHerbert Xuconfig CRYPTO_AEAD
421ae97820SHerbert Xu	tristate
436a0fcbb4SHerbert Xu	select CRYPTO_AEAD2
441ae97820SHerbert Xu	select CRYPTO_ALGAPI
451ae97820SHerbert Xu
466a0fcbb4SHerbert Xuconfig CRYPTO_AEAD2
476a0fcbb4SHerbert Xu	tristate
486a0fcbb4SHerbert Xu	select CRYPTO_ALGAPI2
496a0fcbb4SHerbert Xu
505cde0af2SHerbert Xuconfig CRYPTO_BLKCIPHER
515cde0af2SHerbert Xu	tristate
526a0fcbb4SHerbert Xu	select CRYPTO_BLKCIPHER2
535cde0af2SHerbert Xu	select CRYPTO_ALGAPI
546a0fcbb4SHerbert Xu
556a0fcbb4SHerbert Xuconfig CRYPTO_BLKCIPHER2
566a0fcbb4SHerbert Xu	tristate
576a0fcbb4SHerbert Xu	select CRYPTO_ALGAPI2
586a0fcbb4SHerbert Xu	select CRYPTO_RNG2
595cde0af2SHerbert Xu
60055bcee3SHerbert Xuconfig CRYPTO_HASH
61055bcee3SHerbert Xu	tristate
626a0fcbb4SHerbert Xu	select CRYPTO_HASH2
63055bcee3SHerbert Xu	select CRYPTO_ALGAPI
64055bcee3SHerbert Xu
656a0fcbb4SHerbert Xuconfig CRYPTO_HASH2
666a0fcbb4SHerbert Xu	tristate
676a0fcbb4SHerbert Xu	select CRYPTO_ALGAPI2
686a0fcbb4SHerbert Xu
6917f0f4a4SNeil Hormanconfig CRYPTO_RNG
7017f0f4a4SNeil Horman	tristate
716a0fcbb4SHerbert Xu	select CRYPTO_RNG2
7217f0f4a4SNeil Horman	select CRYPTO_ALGAPI
7317f0f4a4SNeil Horman
746a0fcbb4SHerbert Xuconfig CRYPTO_RNG2
756a0fcbb4SHerbert Xu	tristate
766a0fcbb4SHerbert Xu	select CRYPTO_ALGAPI2
776a0fcbb4SHerbert Xu
782b8c19dbSHerbert Xuconfig CRYPTO_MANAGER
792b8c19dbSHerbert Xu	tristate "Cryptographic algorithm manager"
806a0fcbb4SHerbert Xu	select CRYPTO_MANAGER2
812b8c19dbSHerbert Xu	help
822b8c19dbSHerbert Xu	  Create default cryptographic template instantiations such as
832b8c19dbSHerbert Xu	  cbc(aes).
842b8c19dbSHerbert Xu
856a0fcbb4SHerbert Xuconfig CRYPTO_MANAGER2
866a0fcbb4SHerbert Xu	def_tristate CRYPTO_MANAGER || (CRYPTO_MANAGER!=n && CRYPTO_ALGAPI=y)
876a0fcbb4SHerbert Xu	select CRYPTO_AEAD2
886a0fcbb4SHerbert Xu	select CRYPTO_HASH2
896a0fcbb4SHerbert Xu	select CRYPTO_BLKCIPHER2
906a0fcbb4SHerbert Xu
91584fffc8SSebastian Siewiorconfig CRYPTO_GF128MUL
92584fffc8SSebastian Siewior	tristate "GF(2^128) multiplication functions (EXPERIMENTAL)"
93584fffc8SSebastian Siewior	depends on EXPERIMENTAL
94584fffc8SSebastian Siewior	help
95584fffc8SSebastian Siewior	  Efficient table driven implementation of multiplications in the
96584fffc8SSebastian Siewior	  field GF(2^128).  This is needed by some cypher modes. This
97584fffc8SSebastian Siewior	  option will be selected automatically if you select such a
98584fffc8SSebastian Siewior	  cipher mode.  Only select this option by hand if you expect to load
99584fffc8SSebastian Siewior	  an external module that requires these functions.
100584fffc8SSebastian Siewior
101584fffc8SSebastian Siewiorconfig CRYPTO_NULL
102584fffc8SSebastian Siewior	tristate "Null algorithms"
103584fffc8SSebastian Siewior	select CRYPTO_ALGAPI
104584fffc8SSebastian Siewior	select CRYPTO_BLKCIPHER
105d35d2454SHerbert Xu	select CRYPTO_HASH
106584fffc8SSebastian Siewior	help
107584fffc8SSebastian Siewior	  These are 'Null' algorithms, used by IPsec, which do nothing.
108584fffc8SSebastian Siewior
109584fffc8SSebastian Siewiorconfig CRYPTO_CRYPTD
110584fffc8SSebastian Siewior	tristate "Software async crypto daemon"
111584fffc8SSebastian Siewior	select CRYPTO_BLKCIPHER
112b8a28251SLoc Ho	select CRYPTO_HASH
113584fffc8SSebastian Siewior	select CRYPTO_MANAGER
114584fffc8SSebastian Siewior	help
115584fffc8SSebastian Siewior	  This is a generic software asynchronous crypto daemon that
116584fffc8SSebastian Siewior	  converts an arbitrary synchronous software crypto algorithm
117584fffc8SSebastian Siewior	  into an asynchronous algorithm that executes in a kernel thread.
118584fffc8SSebastian Siewior
119584fffc8SSebastian Siewiorconfig CRYPTO_AUTHENC
120584fffc8SSebastian Siewior	tristate "Authenc support"
121584fffc8SSebastian Siewior	select CRYPTO_AEAD
122584fffc8SSebastian Siewior	select CRYPTO_BLKCIPHER
123584fffc8SSebastian Siewior	select CRYPTO_MANAGER
124584fffc8SSebastian Siewior	select CRYPTO_HASH
125584fffc8SSebastian Siewior	help
126584fffc8SSebastian Siewior	  Authenc: Combined mode wrapper for IPsec.
127584fffc8SSebastian Siewior	  This is required for IPSec.
128584fffc8SSebastian Siewior
129584fffc8SSebastian Siewiorconfig CRYPTO_TEST
130584fffc8SSebastian Siewior	tristate "Testing module"
131584fffc8SSebastian Siewior	depends on m
132da7f033dSHerbert Xu	select CRYPTO_MANAGER
133584fffc8SSebastian Siewior	help
134584fffc8SSebastian Siewior	  Quick & dirty crypto test module.
135584fffc8SSebastian Siewior
136584fffc8SSebastian Siewiorcomment "Authenticated Encryption with Associated Data"
137584fffc8SSebastian Siewior
138584fffc8SSebastian Siewiorconfig CRYPTO_CCM
139584fffc8SSebastian Siewior	tristate "CCM support"
140584fffc8SSebastian Siewior	select CRYPTO_CTR
141584fffc8SSebastian Siewior	select CRYPTO_AEAD
142584fffc8SSebastian Siewior	help
143584fffc8SSebastian Siewior	  Support for Counter with CBC MAC. Required for IPsec.
144584fffc8SSebastian Siewior
145584fffc8SSebastian Siewiorconfig CRYPTO_GCM
146584fffc8SSebastian Siewior	tristate "GCM/GMAC support"
147584fffc8SSebastian Siewior	select CRYPTO_CTR
148584fffc8SSebastian Siewior	select CRYPTO_AEAD
149584fffc8SSebastian Siewior	select CRYPTO_GF128MUL
150584fffc8SSebastian Siewior	help
151584fffc8SSebastian Siewior	  Support for Galois/Counter Mode (GCM) and Galois Message
152584fffc8SSebastian Siewior	  Authentication Code (GMAC). Required for IPSec.
153584fffc8SSebastian Siewior
154584fffc8SSebastian Siewiorconfig CRYPTO_SEQIV
155584fffc8SSebastian Siewior	tristate "Sequence Number IV Generator"
156584fffc8SSebastian Siewior	select CRYPTO_AEAD
157584fffc8SSebastian Siewior	select CRYPTO_BLKCIPHER
158a0f000ecSHerbert Xu	select CRYPTO_RNG
159584fffc8SSebastian Siewior	help
160584fffc8SSebastian Siewior	  This IV generator generates an IV based on a sequence number by
161584fffc8SSebastian Siewior	  xoring it with a salt.  This algorithm is mainly useful for CTR
162584fffc8SSebastian Siewior
163584fffc8SSebastian Siewiorcomment "Block modes"
164584fffc8SSebastian Siewior
165584fffc8SSebastian Siewiorconfig CRYPTO_CBC
166584fffc8SSebastian Siewior	tristate "CBC support"
167584fffc8SSebastian Siewior	select CRYPTO_BLKCIPHER
168584fffc8SSebastian Siewior	select CRYPTO_MANAGER
169584fffc8SSebastian Siewior	help
170584fffc8SSebastian Siewior	  CBC: Cipher Block Chaining mode
171584fffc8SSebastian Siewior	  This block cipher algorithm is required for IPSec.
172584fffc8SSebastian Siewior
173584fffc8SSebastian Siewiorconfig CRYPTO_CTR
174584fffc8SSebastian Siewior	tristate "CTR support"
175584fffc8SSebastian Siewior	select CRYPTO_BLKCIPHER
176584fffc8SSebastian Siewior	select CRYPTO_SEQIV
177584fffc8SSebastian Siewior	select CRYPTO_MANAGER
178584fffc8SSebastian Siewior	help
179584fffc8SSebastian Siewior	  CTR: Counter mode
180584fffc8SSebastian Siewior	  This block cipher algorithm is required for IPSec.
181584fffc8SSebastian Siewior
182584fffc8SSebastian Siewiorconfig CRYPTO_CTS
183584fffc8SSebastian Siewior	tristate "CTS support"
184584fffc8SSebastian Siewior	select CRYPTO_BLKCIPHER
185584fffc8SSebastian Siewior	help
186584fffc8SSebastian Siewior	  CTS: Cipher Text Stealing
187584fffc8SSebastian Siewior	  This is the Cipher Text Stealing mode as described by
188584fffc8SSebastian Siewior	  Section 8 of rfc2040 and referenced by rfc3962.
189584fffc8SSebastian Siewior	  (rfc3962 includes errata information in its Appendix A)
190584fffc8SSebastian Siewior	  This mode is required for Kerberos gss mechanism support
191584fffc8SSebastian Siewior	  for AES encryption.
192584fffc8SSebastian Siewior
193584fffc8SSebastian Siewiorconfig CRYPTO_ECB
194584fffc8SSebastian Siewior	tristate "ECB support"
195584fffc8SSebastian Siewior	select CRYPTO_BLKCIPHER
196584fffc8SSebastian Siewior	select CRYPTO_MANAGER
197584fffc8SSebastian Siewior	help
198584fffc8SSebastian Siewior	  ECB: Electronic CodeBook mode
199584fffc8SSebastian Siewior	  This is the simplest block cipher algorithm.  It simply encrypts
200584fffc8SSebastian Siewior	  the input block by block.
201584fffc8SSebastian Siewior
202584fffc8SSebastian Siewiorconfig CRYPTO_LRW
203584fffc8SSebastian Siewior	tristate "LRW support (EXPERIMENTAL)"
204584fffc8SSebastian Siewior	depends on EXPERIMENTAL
205584fffc8SSebastian Siewior	select CRYPTO_BLKCIPHER
206584fffc8SSebastian Siewior	select CRYPTO_MANAGER
207584fffc8SSebastian Siewior	select CRYPTO_GF128MUL
208584fffc8SSebastian Siewior	help
209584fffc8SSebastian Siewior	  LRW: Liskov Rivest Wagner, a tweakable, non malleable, non movable
210584fffc8SSebastian Siewior	  narrow block cipher mode for dm-crypt.  Use it with cipher
211584fffc8SSebastian Siewior	  specification string aes-lrw-benbi, the key must be 256, 320 or 384.
212584fffc8SSebastian Siewior	  The first 128, 192 or 256 bits in the key are used for AES and the
213584fffc8SSebastian Siewior	  rest is used to tie each cipher block to its logical position.
214584fffc8SSebastian Siewior
215584fffc8SSebastian Siewiorconfig CRYPTO_PCBC
216584fffc8SSebastian Siewior	tristate "PCBC support"
217584fffc8SSebastian Siewior	select CRYPTO_BLKCIPHER
218584fffc8SSebastian Siewior	select CRYPTO_MANAGER
219584fffc8SSebastian Siewior	help
220584fffc8SSebastian Siewior	  PCBC: Propagating Cipher Block Chaining mode
221584fffc8SSebastian Siewior	  This block cipher algorithm is required for RxRPC.
222584fffc8SSebastian Siewior
223584fffc8SSebastian Siewiorconfig CRYPTO_XTS
224584fffc8SSebastian Siewior	tristate "XTS support (EXPERIMENTAL)"
225584fffc8SSebastian Siewior	depends on EXPERIMENTAL
226584fffc8SSebastian Siewior	select CRYPTO_BLKCIPHER
227584fffc8SSebastian Siewior	select CRYPTO_MANAGER
228584fffc8SSebastian Siewior	select CRYPTO_GF128MUL
229584fffc8SSebastian Siewior	help
230584fffc8SSebastian Siewior	  XTS: IEEE1619/D16 narrow block cipher use with aes-xts-plain,
231584fffc8SSebastian Siewior	  key size 256, 384 or 512 bits. This implementation currently
232584fffc8SSebastian Siewior	  can't handle a sectorsize which is not a multiple of 16 bytes.
233584fffc8SSebastian Siewior
234584fffc8SSebastian Siewiorcomment "Hash modes"
235584fffc8SSebastian Siewior
2361da177e4SLinus Torvaldsconfig CRYPTO_HMAC
2378425165dSHerbert Xu	tristate "HMAC support"
2380796ae06SHerbert Xu	select CRYPTO_HASH
23943518407SHerbert Xu	select CRYPTO_MANAGER
2401da177e4SLinus Torvalds	help
2411da177e4SLinus Torvalds	  HMAC: Keyed-Hashing for Message Authentication (RFC2104).
2421da177e4SLinus Torvalds	  This is required for IPSec.
2431da177e4SLinus Torvalds
244333b0d7eSKazunori MIYAZAWAconfig CRYPTO_XCBC
245333b0d7eSKazunori MIYAZAWA	tristate "XCBC support"
246333b0d7eSKazunori MIYAZAWA	depends on EXPERIMENTAL
247333b0d7eSKazunori MIYAZAWA	select CRYPTO_HASH
248333b0d7eSKazunori MIYAZAWA	select CRYPTO_MANAGER
249333b0d7eSKazunori MIYAZAWA	help
250333b0d7eSKazunori MIYAZAWA	  XCBC: Keyed-Hashing with encryption algorithm
251333b0d7eSKazunori MIYAZAWA		http://www.ietf.org/rfc/rfc3566.txt
252333b0d7eSKazunori MIYAZAWA		http://csrc.nist.gov/encryption/modes/proposedmodes/
253333b0d7eSKazunori MIYAZAWA		 xcbc-mac/xcbc-mac-spec.pdf
254333b0d7eSKazunori MIYAZAWA
255584fffc8SSebastian Siewiorcomment "Digest"
256584fffc8SSebastian Siewior
257584fffc8SSebastian Siewiorconfig CRYPTO_CRC32C
258584fffc8SSebastian Siewior	tristate "CRC32c CRC algorithm"
2595773a3e6SHerbert Xu	select CRYPTO_HASH
2601da177e4SLinus Torvalds	help
261584fffc8SSebastian Siewior	  Castagnoli, et al Cyclic Redundancy-Check Algorithm.  Used
262584fffc8SSebastian Siewior	  by iSCSI for header and data digests and by others.
26369c35efcSHerbert Xu	  See Castagnoli93.  Module will be crc32c.
2641da177e4SLinus Torvalds
2658cb51ba8SAustin Zhangconfig CRYPTO_CRC32C_INTEL
2668cb51ba8SAustin Zhang	tristate "CRC32c INTEL hardware acceleration"
2678cb51ba8SAustin Zhang	depends on X86
2688cb51ba8SAustin Zhang	select CRYPTO_HASH
2698cb51ba8SAustin Zhang	help
2708cb51ba8SAustin Zhang	  In Intel processor with SSE4.2 supported, the processor will
2718cb51ba8SAustin Zhang	  support CRC32C implementation using hardware accelerated CRC32
2728cb51ba8SAustin Zhang	  instruction. This option will create 'crc32c-intel' module,
2738cb51ba8SAustin Zhang	  which will enable any routine to use the CRC32 instruction to
2748cb51ba8SAustin Zhang	  gain performance compared with software implementation.
2758cb51ba8SAustin Zhang	  Module will be crc32c-intel.
2768cb51ba8SAustin Zhang
2771da177e4SLinus Torvaldsconfig CRYPTO_MD4
2781da177e4SLinus Torvalds	tristate "MD4 digest algorithm"
279cce9e06dSHerbert Xu	select CRYPTO_ALGAPI
2801da177e4SLinus Torvalds	help
2811da177e4SLinus Torvalds	  MD4 message digest algorithm (RFC1320).
2821da177e4SLinus Torvalds
2831da177e4SLinus Torvaldsconfig CRYPTO_MD5
2841da177e4SLinus Torvalds	tristate "MD5 digest algorithm"
285cce9e06dSHerbert Xu	select CRYPTO_ALGAPI
2861da177e4SLinus Torvalds	help
2871da177e4SLinus Torvalds	  MD5 message digest algorithm (RFC1321).
2881da177e4SLinus Torvalds
289584fffc8SSebastian Siewiorconfig CRYPTO_MICHAEL_MIC
290584fffc8SSebastian Siewior	tristate "Michael MIC keyed digest algorithm"
291584fffc8SSebastian Siewior	select CRYPTO_ALGAPI
292584fffc8SSebastian Siewior	help
293584fffc8SSebastian Siewior	  Michael MIC is used for message integrity protection in TKIP
294584fffc8SSebastian Siewior	  (IEEE 802.11i). This algorithm is required for TKIP, but it
295584fffc8SSebastian Siewior	  should not be used for other purposes because of the weakness
296584fffc8SSebastian Siewior	  of the algorithm.
297584fffc8SSebastian Siewior
29882798f90SAdrian-Ken Rueegseggerconfig CRYPTO_RMD128
29982798f90SAdrian-Ken Rueegsegger	tristate "RIPEMD-128 digest algorithm"
3007c4468bcSHerbert Xu	select CRYPTO_HASH
30182798f90SAdrian-Ken Rueegsegger	help
30282798f90SAdrian-Ken Rueegsegger	  RIPEMD-128 (ISO/IEC 10118-3:2004).
30382798f90SAdrian-Ken Rueegsegger
30482798f90SAdrian-Ken Rueegsegger	  RIPEMD-128 is a 128-bit cryptographic hash function. It should only
30582798f90SAdrian-Ken Rueegsegger	  to be used as a secure replacement for RIPEMD. For other use cases
30682798f90SAdrian-Ken Rueegsegger	  RIPEMD-160 should be used.
30782798f90SAdrian-Ken Rueegsegger
30882798f90SAdrian-Ken Rueegsegger	  Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
30982798f90SAdrian-Ken Rueegsegger	  See <http://home.esat.kuleuven.be/~bosselae/ripemd160.html>
31082798f90SAdrian-Ken Rueegsegger
31182798f90SAdrian-Ken Rueegseggerconfig CRYPTO_RMD160
31282798f90SAdrian-Ken Rueegsegger	tristate "RIPEMD-160 digest algorithm"
313e5835fbaSHerbert Xu	select CRYPTO_HASH
31482798f90SAdrian-Ken Rueegsegger	help
31582798f90SAdrian-Ken Rueegsegger	  RIPEMD-160 (ISO/IEC 10118-3:2004).
31682798f90SAdrian-Ken Rueegsegger
31782798f90SAdrian-Ken Rueegsegger	  RIPEMD-160 is a 160-bit cryptographic hash function. It is intended
31882798f90SAdrian-Ken Rueegsegger	  to be used as a secure replacement for the 128-bit hash functions
319b6d44341SAdrian Bunk	  MD4, MD5 and it's predecessor RIPEMD
320b6d44341SAdrian Bunk	  (not to be confused with RIPEMD-128).
32182798f90SAdrian-Ken Rueegsegger
322b6d44341SAdrian Bunk	  It's speed is comparable to SHA1 and there are no known attacks
323b6d44341SAdrian Bunk	  against RIPEMD-160.
324534fe2c1SAdrian-Ken Rueegsegger
325534fe2c1SAdrian-Ken Rueegsegger	  Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
326534fe2c1SAdrian-Ken Rueegsegger	  See <http://home.esat.kuleuven.be/~bosselae/ripemd160.html>
327534fe2c1SAdrian-Ken Rueegsegger
328534fe2c1SAdrian-Ken Rueegseggerconfig CRYPTO_RMD256
329534fe2c1SAdrian-Ken Rueegsegger	tristate "RIPEMD-256 digest algorithm"
330d8a5e2e9SHerbert Xu	select CRYPTO_HASH
331534fe2c1SAdrian-Ken Rueegsegger	help
332b6d44341SAdrian Bunk	  RIPEMD-256 is an optional extension of RIPEMD-128 with a
333b6d44341SAdrian Bunk	  256 bit hash. It is intended for applications that require
334b6d44341SAdrian Bunk	  longer hash-results, without needing a larger security level
335b6d44341SAdrian Bunk	  (than RIPEMD-128).
336534fe2c1SAdrian-Ken Rueegsegger
337534fe2c1SAdrian-Ken Rueegsegger	  Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
338534fe2c1SAdrian-Ken Rueegsegger	  See <http://home.esat.kuleuven.be/~bosselae/ripemd160.html>
339534fe2c1SAdrian-Ken Rueegsegger
340534fe2c1SAdrian-Ken Rueegseggerconfig CRYPTO_RMD320
341534fe2c1SAdrian-Ken Rueegsegger	tristate "RIPEMD-320 digest algorithm"
3423b8efb4cSHerbert Xu	select CRYPTO_HASH
343534fe2c1SAdrian-Ken Rueegsegger	help
344b6d44341SAdrian Bunk	  RIPEMD-320 is an optional extension of RIPEMD-160 with a
345b6d44341SAdrian Bunk	  320 bit hash. It is intended for applications that require
346b6d44341SAdrian Bunk	  longer hash-results, without needing a larger security level
347b6d44341SAdrian Bunk	  (than RIPEMD-160).
348534fe2c1SAdrian-Ken Rueegsegger
34982798f90SAdrian-Ken Rueegsegger	  Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
35082798f90SAdrian-Ken Rueegsegger	  See <http://home.esat.kuleuven.be/~bosselae/ripemd160.html>
35182798f90SAdrian-Ken Rueegsegger
3521da177e4SLinus Torvaldsconfig CRYPTO_SHA1
3531da177e4SLinus Torvalds	tristate "SHA1 digest algorithm"
354*54ccb367SAdrian-Ken Rueegsegger	select CRYPTO_HASH
3551da177e4SLinus Torvalds	help
3561da177e4SLinus Torvalds	  SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2).
3571da177e4SLinus Torvalds
3581da177e4SLinus Torvaldsconfig CRYPTO_SHA256
359cd12fb90SJonathan Lynch	tristate "SHA224 and SHA256 digest algorithm"
360cce9e06dSHerbert Xu	select CRYPTO_ALGAPI
3611da177e4SLinus Torvalds	help
3621da177e4SLinus Torvalds	  SHA256 secure hash standard (DFIPS 180-2).
3631da177e4SLinus Torvalds
3641da177e4SLinus Torvalds	  This version of SHA implements a 256 bit hash with 128 bits of
3651da177e4SLinus Torvalds	  security against collision attacks.
3661da177e4SLinus Torvalds
367cd12fb90SJonathan Lynch	  This code also includes SHA-224, a 224 bit hash with 112 bits
368cd12fb90SJonathan Lynch	  of security against collision attacks.
369cd12fb90SJonathan Lynch
3701da177e4SLinus Torvaldsconfig CRYPTO_SHA512
3711da177e4SLinus Torvalds	tristate "SHA384 and SHA512 digest algorithms"
372cce9e06dSHerbert Xu	select CRYPTO_ALGAPI
3731da177e4SLinus Torvalds	help
3741da177e4SLinus Torvalds	  SHA512 secure hash standard (DFIPS 180-2).
3751da177e4SLinus Torvalds
3761da177e4SLinus Torvalds	  This version of SHA implements a 512 bit hash with 256 bits of
3771da177e4SLinus Torvalds	  security against collision attacks.
3781da177e4SLinus Torvalds
3791da177e4SLinus Torvalds	  This code also includes SHA-384, a 384 bit hash with 192 bits
3801da177e4SLinus Torvalds	  of security against collision attacks.
3811da177e4SLinus Torvalds
3821da177e4SLinus Torvaldsconfig CRYPTO_TGR192
3831da177e4SLinus Torvalds	tristate "Tiger digest algorithms"
384cce9e06dSHerbert Xu	select CRYPTO_ALGAPI
3851da177e4SLinus Torvalds	help
3861da177e4SLinus Torvalds	  Tiger hash algorithm 192, 160 and 128-bit hashes
3871da177e4SLinus Torvalds
3881da177e4SLinus Torvalds	  Tiger is a hash function optimized for 64-bit processors while
3891da177e4SLinus Torvalds	  still having decent performance on 32-bit processors.
3901da177e4SLinus Torvalds	  Tiger was developed by Ross Anderson and Eli Biham.
3911da177e4SLinus Torvalds
3921da177e4SLinus Torvalds	  See also:
3931da177e4SLinus Torvalds	  <http://www.cs.technion.ac.il/~biham/Reports/Tiger/>.
3941da177e4SLinus Torvalds
395584fffc8SSebastian Siewiorconfig CRYPTO_WP512
396584fffc8SSebastian Siewior	tristate "Whirlpool digest algorithms"
397cce9e06dSHerbert Xu	select CRYPTO_ALGAPI
3981da177e4SLinus Torvalds	help
399584fffc8SSebastian Siewior	  Whirlpool hash algorithm 512, 384 and 256-bit hashes
4001da177e4SLinus Torvalds
401584fffc8SSebastian Siewior	  Whirlpool-512 is part of the NESSIE cryptographic primitives.
402584fffc8SSebastian Siewior	  Whirlpool will be part of the ISO/IEC 10118-3:2003(E) standard
4031da177e4SLinus Torvalds
4041da177e4SLinus Torvalds	  See also:
405584fffc8SSebastian Siewior	  <http://planeta.terra.com.br/informatica/paulobarreto/WhirlpoolPage.html>
4061da177e4SLinus Torvalds
407584fffc8SSebastian Siewiorcomment "Ciphers"
4081da177e4SLinus Torvalds
4091da177e4SLinus Torvaldsconfig CRYPTO_AES
4101da177e4SLinus Torvalds	tristate "AES cipher algorithms"
411cce9e06dSHerbert Xu	select CRYPTO_ALGAPI
4121da177e4SLinus Torvalds	help
4131da177e4SLinus Torvalds	  AES cipher algorithms (FIPS-197). AES uses the Rijndael
4141da177e4SLinus Torvalds	  algorithm.
4151da177e4SLinus Torvalds
4161da177e4SLinus Torvalds	  Rijndael appears to be consistently a very good performer in
4171da177e4SLinus Torvalds	  both hardware and software across a wide range of computing
4181da177e4SLinus Torvalds	  environments regardless of its use in feedback or non-feedback
4191da177e4SLinus Torvalds	  modes. Its key setup time is excellent, and its key agility is
4201da177e4SLinus Torvalds	  good. Rijndael's very low memory requirements make it very well
4211da177e4SLinus Torvalds	  suited for restricted-space environments, in which it also
4221da177e4SLinus Torvalds	  demonstrates excellent performance. Rijndael's operations are
4231da177e4SLinus Torvalds	  among the easiest to defend against power and timing attacks.
4241da177e4SLinus Torvalds
4251da177e4SLinus Torvalds	  The AES specifies three key sizes: 128, 192 and 256 bits
4261da177e4SLinus Torvalds
4271da177e4SLinus Torvalds	  See <http://csrc.nist.gov/CryptoToolkit/aes/> for more information.
4281da177e4SLinus Torvalds
4291da177e4SLinus Torvaldsconfig CRYPTO_AES_586
4301da177e4SLinus Torvalds	tristate "AES cipher algorithms (i586)"
431cce9e06dSHerbert Xu	depends on (X86 || UML_X86) && !64BIT
432cce9e06dSHerbert Xu	select CRYPTO_ALGAPI
4335157dea8SSebastian Siewior	select CRYPTO_AES
4341da177e4SLinus Torvalds	help
4351da177e4SLinus Torvalds	  AES cipher algorithms (FIPS-197). AES uses the Rijndael
4361da177e4SLinus Torvalds	  algorithm.
4371da177e4SLinus Torvalds
4381da177e4SLinus Torvalds	  Rijndael appears to be consistently a very good performer in
4391da177e4SLinus Torvalds	  both hardware and software across a wide range of computing
4401da177e4SLinus Torvalds	  environments regardless of its use in feedback or non-feedback
4411da177e4SLinus Torvalds	  modes. Its key setup time is excellent, and its key agility is
4421da177e4SLinus Torvalds	  good. Rijndael's very low memory requirements make it very well
4431da177e4SLinus Torvalds	  suited for restricted-space environments, in which it also
4441da177e4SLinus Torvalds	  demonstrates excellent performance. Rijndael's operations are
4451da177e4SLinus Torvalds	  among the easiest to defend against power and timing attacks.
4461da177e4SLinus Torvalds
4471da177e4SLinus Torvalds	  The AES specifies three key sizes: 128, 192 and 256 bits
4481da177e4SLinus Torvalds
4491da177e4SLinus Torvalds	  See <http://csrc.nist.gov/encryption/aes/> for more information.
4501da177e4SLinus Torvalds
451a2a892a2SAndreas Steinmetzconfig CRYPTO_AES_X86_64
452a2a892a2SAndreas Steinmetz	tristate "AES cipher algorithms (x86_64)"
453cce9e06dSHerbert Xu	depends on (X86 || UML_X86) && 64BIT
454cce9e06dSHerbert Xu	select CRYPTO_ALGAPI
45581190b32SSebastian Siewior	select CRYPTO_AES
456a2a892a2SAndreas Steinmetz	help
457a2a892a2SAndreas Steinmetz	  AES cipher algorithms (FIPS-197). AES uses the Rijndael
458a2a892a2SAndreas Steinmetz	  algorithm.
459a2a892a2SAndreas Steinmetz
460a2a892a2SAndreas Steinmetz	  Rijndael appears to be consistently a very good performer in
461a2a892a2SAndreas Steinmetz	  both hardware and software across a wide range of computing
462a2a892a2SAndreas Steinmetz	  environments regardless of its use in feedback or non-feedback
463a2a892a2SAndreas Steinmetz	  modes. Its key setup time is excellent, and its key agility is
464a2a892a2SAndreas Steinmetz	  good. Rijndael's very low memory requirements make it very well
465a2a892a2SAndreas Steinmetz	  suited for restricted-space environments, in which it also
466a2a892a2SAndreas Steinmetz	  demonstrates excellent performance. Rijndael's operations are
467a2a892a2SAndreas Steinmetz	  among the easiest to defend against power and timing attacks.
468a2a892a2SAndreas Steinmetz
469a2a892a2SAndreas Steinmetz	  The AES specifies three key sizes: 128, 192 and 256 bits
470a2a892a2SAndreas Steinmetz
471a2a892a2SAndreas Steinmetz	  See <http://csrc.nist.gov/encryption/aes/> for more information.
472a2a892a2SAndreas Steinmetz
4731da177e4SLinus Torvaldsconfig CRYPTO_ANUBIS
4741da177e4SLinus Torvalds	tristate "Anubis cipher algorithm"
475cce9e06dSHerbert Xu	select CRYPTO_ALGAPI
4761da177e4SLinus Torvalds	help
4771da177e4SLinus Torvalds	  Anubis cipher algorithm.
4781da177e4SLinus Torvalds
4791da177e4SLinus Torvalds	  Anubis is a variable key length cipher which can use keys from
4801da177e4SLinus Torvalds	  128 bits to 320 bits in length.  It was evaluated as a entrant
4811da177e4SLinus Torvalds	  in the NESSIE competition.
4821da177e4SLinus Torvalds
4831da177e4SLinus Torvalds	  See also:
4841da177e4SLinus Torvalds	  <https://www.cosic.esat.kuleuven.ac.be/nessie/reports/>
4851da177e4SLinus Torvalds	  <http://planeta.terra.com.br/informatica/paulobarreto/AnubisPage.html>
4861da177e4SLinus Torvalds
487584fffc8SSebastian Siewiorconfig CRYPTO_ARC4
488584fffc8SSebastian Siewior	tristate "ARC4 cipher algorithm"
489e2ee95b8SHye-Shik Chang	select CRYPTO_ALGAPI
490e2ee95b8SHye-Shik Chang	help
491584fffc8SSebastian Siewior	  ARC4 cipher algorithm.
492e2ee95b8SHye-Shik Chang
493584fffc8SSebastian Siewior	  ARC4 is a stream cipher using keys ranging from 8 bits to 2048
494584fffc8SSebastian Siewior	  bits in length.  This algorithm is required for driver-based
495584fffc8SSebastian Siewior	  WEP, but it should not be for other purposes because of the
496584fffc8SSebastian Siewior	  weakness of the algorithm.
497584fffc8SSebastian Siewior
498584fffc8SSebastian Siewiorconfig CRYPTO_BLOWFISH
499584fffc8SSebastian Siewior	tristate "Blowfish cipher algorithm"
500584fffc8SSebastian Siewior	select CRYPTO_ALGAPI
501584fffc8SSebastian Siewior	help
502584fffc8SSebastian Siewior	  Blowfish cipher algorithm, by Bruce Schneier.
503584fffc8SSebastian Siewior
504584fffc8SSebastian Siewior	  This is a variable key length cipher which can use keys from 32
505584fffc8SSebastian Siewior	  bits to 448 bits in length.  It's fast, simple and specifically
506584fffc8SSebastian Siewior	  designed for use on "large microprocessors".
507e2ee95b8SHye-Shik Chang
508e2ee95b8SHye-Shik Chang	  See also:
509584fffc8SSebastian Siewior	  <http://www.schneier.com/blowfish.html>
510584fffc8SSebastian Siewior
511584fffc8SSebastian Siewiorconfig CRYPTO_CAMELLIA
512584fffc8SSebastian Siewior	tristate "Camellia cipher algorithms"
513584fffc8SSebastian Siewior	depends on CRYPTO
514584fffc8SSebastian Siewior	select CRYPTO_ALGAPI
515584fffc8SSebastian Siewior	help
516584fffc8SSebastian Siewior	  Camellia cipher algorithms module.
517584fffc8SSebastian Siewior
518584fffc8SSebastian Siewior	  Camellia is a symmetric key block cipher developed jointly
519584fffc8SSebastian Siewior	  at NTT and Mitsubishi Electric Corporation.
520584fffc8SSebastian Siewior
521584fffc8SSebastian Siewior	  The Camellia specifies three key sizes: 128, 192 and 256 bits.
522584fffc8SSebastian Siewior
523584fffc8SSebastian Siewior	  See also:
524584fffc8SSebastian Siewior	  <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
525584fffc8SSebastian Siewior
526584fffc8SSebastian Siewiorconfig CRYPTO_CAST5
527584fffc8SSebastian Siewior	tristate "CAST5 (CAST-128) cipher algorithm"
528584fffc8SSebastian Siewior	select CRYPTO_ALGAPI
529584fffc8SSebastian Siewior	help
530584fffc8SSebastian Siewior	  The CAST5 encryption algorithm (synonymous with CAST-128) is
531584fffc8SSebastian Siewior	  described in RFC2144.
532584fffc8SSebastian Siewior
533584fffc8SSebastian Siewiorconfig CRYPTO_CAST6
534584fffc8SSebastian Siewior	tristate "CAST6 (CAST-256) cipher algorithm"
535584fffc8SSebastian Siewior	select CRYPTO_ALGAPI
536584fffc8SSebastian Siewior	help
537584fffc8SSebastian Siewior	  The CAST6 encryption algorithm (synonymous with CAST-256) is
538584fffc8SSebastian Siewior	  described in RFC2612.
539584fffc8SSebastian Siewior
540584fffc8SSebastian Siewiorconfig CRYPTO_DES
541584fffc8SSebastian Siewior	tristate "DES and Triple DES EDE cipher algorithms"
542584fffc8SSebastian Siewior	select CRYPTO_ALGAPI
543584fffc8SSebastian Siewior	help
544584fffc8SSebastian Siewior	  DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3).
545584fffc8SSebastian Siewior
546584fffc8SSebastian Siewiorconfig CRYPTO_FCRYPT
547584fffc8SSebastian Siewior	tristate "FCrypt cipher algorithm"
548584fffc8SSebastian Siewior	select CRYPTO_ALGAPI
549584fffc8SSebastian Siewior	select CRYPTO_BLKCIPHER
550584fffc8SSebastian Siewior	help
551584fffc8SSebastian Siewior	  FCrypt algorithm used by RxRPC.
552584fffc8SSebastian Siewior
553584fffc8SSebastian Siewiorconfig CRYPTO_KHAZAD
554584fffc8SSebastian Siewior	tristate "Khazad cipher algorithm"
555584fffc8SSebastian Siewior	select CRYPTO_ALGAPI
556584fffc8SSebastian Siewior	help
557584fffc8SSebastian Siewior	  Khazad cipher algorithm.
558584fffc8SSebastian Siewior
559584fffc8SSebastian Siewior	  Khazad was a finalist in the initial NESSIE competition.  It is
560584fffc8SSebastian Siewior	  an algorithm optimized for 64-bit processors with good performance
561584fffc8SSebastian Siewior	  on 32-bit processors.  Khazad uses an 128 bit key size.
562584fffc8SSebastian Siewior
563584fffc8SSebastian Siewior	  See also:
564584fffc8SSebastian Siewior	  <http://planeta.terra.com.br/informatica/paulobarreto/KhazadPage.html>
565e2ee95b8SHye-Shik Chang
5662407d608STan Swee Hengconfig CRYPTO_SALSA20
5672407d608STan Swee Heng	tristate "Salsa20 stream cipher algorithm (EXPERIMENTAL)"
5682407d608STan Swee Heng	depends on EXPERIMENTAL
5692407d608STan Swee Heng	select CRYPTO_BLKCIPHER
5702407d608STan Swee Heng	help
5712407d608STan Swee Heng	  Salsa20 stream cipher algorithm.
5722407d608STan Swee Heng
5732407d608STan Swee Heng	  Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
5742407d608STan Swee Heng	  Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
5752407d608STan Swee Heng
5762407d608STan Swee Heng	  The Salsa20 stream cipher algorithm is designed by Daniel J.
5772407d608STan Swee Heng	  Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
5781da177e4SLinus Torvalds
579974e4b75STan Swee Hengconfig CRYPTO_SALSA20_586
580974e4b75STan Swee Heng	tristate "Salsa20 stream cipher algorithm (i586) (EXPERIMENTAL)"
581974e4b75STan Swee Heng	depends on (X86 || UML_X86) && !64BIT
582974e4b75STan Swee Heng	depends on EXPERIMENTAL
583974e4b75STan Swee Heng	select CRYPTO_BLKCIPHER
584974e4b75STan Swee Heng	help
585974e4b75STan Swee Heng	  Salsa20 stream cipher algorithm.
586974e4b75STan Swee Heng
587974e4b75STan Swee Heng	  Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
588974e4b75STan Swee Heng	  Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
589974e4b75STan Swee Heng
590974e4b75STan Swee Heng	  The Salsa20 stream cipher algorithm is designed by Daniel J.
591974e4b75STan Swee Heng	  Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
592974e4b75STan Swee Heng
5939a7dafbbSTan Swee Hengconfig CRYPTO_SALSA20_X86_64
5949a7dafbbSTan Swee Heng	tristate "Salsa20 stream cipher algorithm (x86_64) (EXPERIMENTAL)"
5959a7dafbbSTan Swee Heng	depends on (X86 || UML_X86) && 64BIT
5969a7dafbbSTan Swee Heng	depends on EXPERIMENTAL
5979a7dafbbSTan Swee Heng	select CRYPTO_BLKCIPHER
5989a7dafbbSTan Swee Heng	help
5999a7dafbbSTan Swee Heng	  Salsa20 stream cipher algorithm.
6009a7dafbbSTan Swee Heng
6019a7dafbbSTan Swee Heng	  Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
6029a7dafbbSTan Swee Heng	  Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
6039a7dafbbSTan Swee Heng
6049a7dafbbSTan Swee Heng	  The Salsa20 stream cipher algorithm is designed by Daniel J.
6059a7dafbbSTan Swee Heng	  Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
6069a7dafbbSTan Swee Heng
607584fffc8SSebastian Siewiorconfig CRYPTO_SEED
608584fffc8SSebastian Siewior	tristate "SEED cipher algorithm"
609584fffc8SSebastian Siewior	select CRYPTO_ALGAPI
610584fffc8SSebastian Siewior	help
611584fffc8SSebastian Siewior	  SEED cipher algorithm (RFC4269).
612584fffc8SSebastian Siewior
613584fffc8SSebastian Siewior	  SEED is a 128-bit symmetric key block cipher that has been
614584fffc8SSebastian Siewior	  developed by KISA (Korea Information Security Agency) as a
615584fffc8SSebastian Siewior	  national standard encryption algorithm of the Republic of Korea.
616584fffc8SSebastian Siewior	  It is a 16 round block cipher with the key size of 128 bit.
617584fffc8SSebastian Siewior
618584fffc8SSebastian Siewior	  See also:
619584fffc8SSebastian Siewior	  <http://www.kisa.or.kr/kisa/seed/jsp/seed_eng.jsp>
620584fffc8SSebastian Siewior
621584fffc8SSebastian Siewiorconfig CRYPTO_SERPENT
622584fffc8SSebastian Siewior	tristate "Serpent cipher algorithm"
623584fffc8SSebastian Siewior	select CRYPTO_ALGAPI
624584fffc8SSebastian Siewior	help
625584fffc8SSebastian Siewior	  Serpent cipher algorithm, by Anderson, Biham & Knudsen.
626584fffc8SSebastian Siewior
627584fffc8SSebastian Siewior	  Keys are allowed to be from 0 to 256 bits in length, in steps
628584fffc8SSebastian Siewior	  of 8 bits.  Also includes the 'Tnepres' algorithm, a reversed
629584fffc8SSebastian Siewior	  variant of Serpent for compatibility with old kerneli.org code.
630584fffc8SSebastian Siewior
631584fffc8SSebastian Siewior	  See also:
632584fffc8SSebastian Siewior	  <http://www.cl.cam.ac.uk/~rja14/serpent.html>
633584fffc8SSebastian Siewior
634584fffc8SSebastian Siewiorconfig CRYPTO_TEA
635584fffc8SSebastian Siewior	tristate "TEA, XTEA and XETA cipher algorithms"
636584fffc8SSebastian Siewior	select CRYPTO_ALGAPI
637584fffc8SSebastian Siewior	help
638584fffc8SSebastian Siewior	  TEA cipher algorithm.
639584fffc8SSebastian Siewior
640584fffc8SSebastian Siewior	  Tiny Encryption Algorithm is a simple cipher that uses
641584fffc8SSebastian Siewior	  many rounds for security.  It is very fast and uses
642584fffc8SSebastian Siewior	  little memory.
643584fffc8SSebastian Siewior
644584fffc8SSebastian Siewior	  Xtendend Tiny Encryption Algorithm is a modification to
645584fffc8SSebastian Siewior	  the TEA algorithm to address a potential key weakness
646584fffc8SSebastian Siewior	  in the TEA algorithm.
647584fffc8SSebastian Siewior
648584fffc8SSebastian Siewior	  Xtendend Encryption Tiny Algorithm is a mis-implementation
649584fffc8SSebastian Siewior	  of the XTEA algorithm for compatibility purposes.
650584fffc8SSebastian Siewior
651584fffc8SSebastian Siewiorconfig CRYPTO_TWOFISH
652584fffc8SSebastian Siewior	tristate "Twofish cipher algorithm"
653584fffc8SSebastian Siewior	select CRYPTO_ALGAPI
654584fffc8SSebastian Siewior	select CRYPTO_TWOFISH_COMMON
655584fffc8SSebastian Siewior	help
656584fffc8SSebastian Siewior	  Twofish cipher algorithm.
657584fffc8SSebastian Siewior
658584fffc8SSebastian Siewior	  Twofish was submitted as an AES (Advanced Encryption Standard)
659584fffc8SSebastian Siewior	  candidate cipher by researchers at CounterPane Systems.  It is a
660584fffc8SSebastian Siewior	  16 round block cipher supporting key sizes of 128, 192, and 256
661584fffc8SSebastian Siewior	  bits.
662584fffc8SSebastian Siewior
663584fffc8SSebastian Siewior	  See also:
664584fffc8SSebastian Siewior	  <http://www.schneier.com/twofish.html>
665584fffc8SSebastian Siewior
666584fffc8SSebastian Siewiorconfig CRYPTO_TWOFISH_COMMON
667584fffc8SSebastian Siewior	tristate
668584fffc8SSebastian Siewior	help
669584fffc8SSebastian Siewior	  Common parts of the Twofish cipher algorithm shared by the
670584fffc8SSebastian Siewior	  generic c and the assembler implementations.
671584fffc8SSebastian Siewior
672584fffc8SSebastian Siewiorconfig CRYPTO_TWOFISH_586
673584fffc8SSebastian Siewior	tristate "Twofish cipher algorithms (i586)"
674584fffc8SSebastian Siewior	depends on (X86 || UML_X86) && !64BIT
675584fffc8SSebastian Siewior	select CRYPTO_ALGAPI
676584fffc8SSebastian Siewior	select CRYPTO_TWOFISH_COMMON
677584fffc8SSebastian Siewior	help
678584fffc8SSebastian Siewior	  Twofish cipher algorithm.
679584fffc8SSebastian Siewior
680584fffc8SSebastian Siewior	  Twofish was submitted as an AES (Advanced Encryption Standard)
681584fffc8SSebastian Siewior	  candidate cipher by researchers at CounterPane Systems.  It is a
682584fffc8SSebastian Siewior	  16 round block cipher supporting key sizes of 128, 192, and 256
683584fffc8SSebastian Siewior	  bits.
684584fffc8SSebastian Siewior
685584fffc8SSebastian Siewior	  See also:
686584fffc8SSebastian Siewior	  <http://www.schneier.com/twofish.html>
687584fffc8SSebastian Siewior
688584fffc8SSebastian Siewiorconfig CRYPTO_TWOFISH_X86_64
689584fffc8SSebastian Siewior	tristate "Twofish cipher algorithm (x86_64)"
690584fffc8SSebastian Siewior	depends on (X86 || UML_X86) && 64BIT
691584fffc8SSebastian Siewior	select CRYPTO_ALGAPI
692584fffc8SSebastian Siewior	select CRYPTO_TWOFISH_COMMON
693584fffc8SSebastian Siewior	help
694584fffc8SSebastian Siewior	  Twofish cipher algorithm (x86_64).
695584fffc8SSebastian Siewior
696584fffc8SSebastian Siewior	  Twofish was submitted as an AES (Advanced Encryption Standard)
697584fffc8SSebastian Siewior	  candidate cipher by researchers at CounterPane Systems.  It is a
698584fffc8SSebastian Siewior	  16 round block cipher supporting key sizes of 128, 192, and 256
699584fffc8SSebastian Siewior	  bits.
700584fffc8SSebastian Siewior
701584fffc8SSebastian Siewior	  See also:
702584fffc8SSebastian Siewior	  <http://www.schneier.com/twofish.html>
703584fffc8SSebastian Siewior
704584fffc8SSebastian Siewiorcomment "Compression"
705584fffc8SSebastian Siewior
7061da177e4SLinus Torvaldsconfig CRYPTO_DEFLATE
7071da177e4SLinus Torvalds	tristate "Deflate compression algorithm"
708cce9e06dSHerbert Xu	select CRYPTO_ALGAPI
7091da177e4SLinus Torvalds	select ZLIB_INFLATE
7101da177e4SLinus Torvalds	select ZLIB_DEFLATE
7111da177e4SLinus Torvalds	help
7121da177e4SLinus Torvalds	  This is the Deflate algorithm (RFC1951), specified for use in
7131da177e4SLinus Torvalds	  IPSec with the IPCOMP protocol (RFC3173, RFC2394).
7141da177e4SLinus Torvalds
7151da177e4SLinus Torvalds	  You will most probably want this if using IPSec.
7161da177e4SLinus Torvalds
7170b77abb3SZoltan Sogorconfig CRYPTO_LZO
7180b77abb3SZoltan Sogor	tristate "LZO compression algorithm"
7190b77abb3SZoltan Sogor	select CRYPTO_ALGAPI
7200b77abb3SZoltan Sogor	select LZO_COMPRESS
7210b77abb3SZoltan Sogor	select LZO_DECOMPRESS
7220b77abb3SZoltan Sogor	help
7230b77abb3SZoltan Sogor	  This is the LZO algorithm.
7240b77abb3SZoltan Sogor
72517f0f4a4SNeil Hormancomment "Random Number Generation"
72617f0f4a4SNeil Horman
72717f0f4a4SNeil Hormanconfig CRYPTO_ANSI_CPRNG
72817f0f4a4SNeil Horman	tristate "Pseudo Random Number Generation for Cryptographic modules"
72917f0f4a4SNeil Horman	select CRYPTO_AES
73017f0f4a4SNeil Horman	select CRYPTO_RNG
73117f0f4a4SNeil Horman	select CRYPTO_FIPS
73217f0f4a4SNeil Horman	help
73317f0f4a4SNeil Horman	  This option enables the generic pseudo random number generator
73417f0f4a4SNeil Horman	  for cryptographic modules.  Uses the Algorithm specified in
73517f0f4a4SNeil Horman	  ANSI X9.31 A.2.4
73617f0f4a4SNeil Horman
7371da177e4SLinus Torvaldssource "drivers/crypto/Kconfig"
7381da177e4SLinus Torvalds
739cce9e06dSHerbert Xuendif	# if CRYPTO
740