11da177e4SLinus Torvalds# 2685784aaSDan Williams# Generic algorithms support 3685784aaSDan Williams# 4685784aaSDan Williamsconfig XOR_BLOCKS 5685784aaSDan Williams tristate 6685784aaSDan Williams 7685784aaSDan Williams# 89bc89cd8SDan Williams# async_tx api: hardware offloaded memory transfer/transform support 99bc89cd8SDan Williams# 109bc89cd8SDan Williamssource "crypto/async_tx/Kconfig" 119bc89cd8SDan Williams 129bc89cd8SDan Williams# 131da177e4SLinus Torvalds# Cryptographic API Configuration 141da177e4SLinus Torvalds# 152e290f43SJan Engelhardtmenuconfig CRYPTO 16c3715cb9SSebastian Siewior tristate "Cryptographic API" 171da177e4SLinus Torvalds help 181da177e4SLinus Torvalds This option provides the core Cryptographic API. 191da177e4SLinus Torvalds 20cce9e06dSHerbert Xuif CRYPTO 21cce9e06dSHerbert Xu 22584fffc8SSebastian Siewiorcomment "Crypto core or helper" 23584fffc8SSebastian Siewior 24ccb778e1SNeil Hormanconfig CRYPTO_FIPS 25ccb778e1SNeil Horman bool "FIPS 200 compliance" 26ccb778e1SNeil Horman help 27ccb778e1SNeil Horman This options enables the fips boot option which is 28ccb778e1SNeil Horman required if you want to system to operate in a FIPS 200 29ccb778e1SNeil Horman certification. You should say no unless you know what 30ccb778e1SNeil Horman this is. 31ccb778e1SNeil Horman 32cce9e06dSHerbert Xuconfig CRYPTO_ALGAPI 33cce9e06dSHerbert Xu tristate 346a0fcbb4SHerbert Xu select CRYPTO_ALGAPI2 35cce9e06dSHerbert Xu help 36cce9e06dSHerbert Xu This option provides the API for cryptographic algorithms. 37cce9e06dSHerbert Xu 386a0fcbb4SHerbert Xuconfig CRYPTO_ALGAPI2 396a0fcbb4SHerbert Xu tristate 406a0fcbb4SHerbert Xu 411ae97820SHerbert Xuconfig CRYPTO_AEAD 421ae97820SHerbert Xu tristate 436a0fcbb4SHerbert Xu select CRYPTO_AEAD2 441ae97820SHerbert Xu select CRYPTO_ALGAPI 451ae97820SHerbert Xu 466a0fcbb4SHerbert Xuconfig CRYPTO_AEAD2 476a0fcbb4SHerbert Xu tristate 486a0fcbb4SHerbert Xu select CRYPTO_ALGAPI2 496a0fcbb4SHerbert Xu 505cde0af2SHerbert Xuconfig CRYPTO_BLKCIPHER 515cde0af2SHerbert Xu tristate 526a0fcbb4SHerbert Xu select CRYPTO_BLKCIPHER2 535cde0af2SHerbert Xu select CRYPTO_ALGAPI 546a0fcbb4SHerbert Xu 556a0fcbb4SHerbert Xuconfig CRYPTO_BLKCIPHER2 566a0fcbb4SHerbert Xu tristate 576a0fcbb4SHerbert Xu select CRYPTO_ALGAPI2 586a0fcbb4SHerbert Xu select CRYPTO_RNG2 595cde0af2SHerbert Xu 60055bcee3SHerbert Xuconfig CRYPTO_HASH 61055bcee3SHerbert Xu tristate 626a0fcbb4SHerbert Xu select CRYPTO_HASH2 63055bcee3SHerbert Xu select CRYPTO_ALGAPI 64055bcee3SHerbert Xu 656a0fcbb4SHerbert Xuconfig CRYPTO_HASH2 666a0fcbb4SHerbert Xu tristate 676a0fcbb4SHerbert Xu select CRYPTO_ALGAPI2 686a0fcbb4SHerbert Xu 6917f0f4a4SNeil Hormanconfig CRYPTO_RNG 7017f0f4a4SNeil Horman tristate 716a0fcbb4SHerbert Xu select CRYPTO_RNG2 7217f0f4a4SNeil Horman select CRYPTO_ALGAPI 7317f0f4a4SNeil Horman 746a0fcbb4SHerbert Xuconfig CRYPTO_RNG2 756a0fcbb4SHerbert Xu tristate 766a0fcbb4SHerbert Xu select CRYPTO_ALGAPI2 776a0fcbb4SHerbert Xu 782b8c19dbSHerbert Xuconfig CRYPTO_MANAGER 792b8c19dbSHerbert Xu tristate "Cryptographic algorithm manager" 806a0fcbb4SHerbert Xu select CRYPTO_MANAGER2 812b8c19dbSHerbert Xu help 822b8c19dbSHerbert Xu Create default cryptographic template instantiations such as 832b8c19dbSHerbert Xu cbc(aes). 842b8c19dbSHerbert Xu 856a0fcbb4SHerbert Xuconfig CRYPTO_MANAGER2 866a0fcbb4SHerbert Xu def_tristate CRYPTO_MANAGER || (CRYPTO_MANAGER!=n && CRYPTO_ALGAPI=y) 876a0fcbb4SHerbert Xu select CRYPTO_AEAD2 886a0fcbb4SHerbert Xu select CRYPTO_HASH2 896a0fcbb4SHerbert Xu select CRYPTO_BLKCIPHER2 906a0fcbb4SHerbert Xu 91584fffc8SSebastian Siewiorconfig CRYPTO_GF128MUL 92584fffc8SSebastian Siewior tristate "GF(2^128) multiplication functions (EXPERIMENTAL)" 93584fffc8SSebastian Siewior depends on EXPERIMENTAL 94584fffc8SSebastian Siewior help 95584fffc8SSebastian Siewior Efficient table driven implementation of multiplications in the 96584fffc8SSebastian Siewior field GF(2^128). This is needed by some cypher modes. This 97584fffc8SSebastian Siewior option will be selected automatically if you select such a 98584fffc8SSebastian Siewior cipher mode. Only select this option by hand if you expect to load 99584fffc8SSebastian Siewior an external module that requires these functions. 100584fffc8SSebastian Siewior 101584fffc8SSebastian Siewiorconfig CRYPTO_NULL 102584fffc8SSebastian Siewior tristate "Null algorithms" 103584fffc8SSebastian Siewior select CRYPTO_ALGAPI 104584fffc8SSebastian Siewior select CRYPTO_BLKCIPHER 105d35d2454SHerbert Xu select CRYPTO_HASH 106584fffc8SSebastian Siewior help 107584fffc8SSebastian Siewior These are 'Null' algorithms, used by IPsec, which do nothing. 108584fffc8SSebastian Siewior 109584fffc8SSebastian Siewiorconfig CRYPTO_CRYPTD 110584fffc8SSebastian Siewior tristate "Software async crypto daemon" 111584fffc8SSebastian Siewior select CRYPTO_BLKCIPHER 112b8a28251SLoc Ho select CRYPTO_HASH 113584fffc8SSebastian Siewior select CRYPTO_MANAGER 114584fffc8SSebastian Siewior help 115584fffc8SSebastian Siewior This is a generic software asynchronous crypto daemon that 116584fffc8SSebastian Siewior converts an arbitrary synchronous software crypto algorithm 117584fffc8SSebastian Siewior into an asynchronous algorithm that executes in a kernel thread. 118584fffc8SSebastian Siewior 119584fffc8SSebastian Siewiorconfig CRYPTO_AUTHENC 120584fffc8SSebastian Siewior tristate "Authenc support" 121584fffc8SSebastian Siewior select CRYPTO_AEAD 122584fffc8SSebastian Siewior select CRYPTO_BLKCIPHER 123584fffc8SSebastian Siewior select CRYPTO_MANAGER 124584fffc8SSebastian Siewior select CRYPTO_HASH 125584fffc8SSebastian Siewior help 126584fffc8SSebastian Siewior Authenc: Combined mode wrapper for IPsec. 127584fffc8SSebastian Siewior This is required for IPSec. 128584fffc8SSebastian Siewior 129584fffc8SSebastian Siewiorconfig CRYPTO_TEST 130584fffc8SSebastian Siewior tristate "Testing module" 131584fffc8SSebastian Siewior depends on m 132da7f033dSHerbert Xu select CRYPTO_MANAGER 133584fffc8SSebastian Siewior help 134584fffc8SSebastian Siewior Quick & dirty crypto test module. 135584fffc8SSebastian Siewior 136584fffc8SSebastian Siewiorcomment "Authenticated Encryption with Associated Data" 137584fffc8SSebastian Siewior 138584fffc8SSebastian Siewiorconfig CRYPTO_CCM 139584fffc8SSebastian Siewior tristate "CCM support" 140584fffc8SSebastian Siewior select CRYPTO_CTR 141584fffc8SSebastian Siewior select CRYPTO_AEAD 142584fffc8SSebastian Siewior help 143584fffc8SSebastian Siewior Support for Counter with CBC MAC. Required for IPsec. 144584fffc8SSebastian Siewior 145584fffc8SSebastian Siewiorconfig CRYPTO_GCM 146584fffc8SSebastian Siewior tristate "GCM/GMAC support" 147584fffc8SSebastian Siewior select CRYPTO_CTR 148584fffc8SSebastian Siewior select CRYPTO_AEAD 149584fffc8SSebastian Siewior select CRYPTO_GF128MUL 150584fffc8SSebastian Siewior help 151584fffc8SSebastian Siewior Support for Galois/Counter Mode (GCM) and Galois Message 152584fffc8SSebastian Siewior Authentication Code (GMAC). Required for IPSec. 153584fffc8SSebastian Siewior 154584fffc8SSebastian Siewiorconfig CRYPTO_SEQIV 155584fffc8SSebastian Siewior tristate "Sequence Number IV Generator" 156584fffc8SSebastian Siewior select CRYPTO_AEAD 157584fffc8SSebastian Siewior select CRYPTO_BLKCIPHER 158a0f000ecSHerbert Xu select CRYPTO_RNG 159584fffc8SSebastian Siewior help 160584fffc8SSebastian Siewior This IV generator generates an IV based on a sequence number by 161584fffc8SSebastian Siewior xoring it with a salt. This algorithm is mainly useful for CTR 162584fffc8SSebastian Siewior 163584fffc8SSebastian Siewiorcomment "Block modes" 164584fffc8SSebastian Siewior 165584fffc8SSebastian Siewiorconfig CRYPTO_CBC 166584fffc8SSebastian Siewior tristate "CBC support" 167584fffc8SSebastian Siewior select CRYPTO_BLKCIPHER 168584fffc8SSebastian Siewior select CRYPTO_MANAGER 169584fffc8SSebastian Siewior help 170584fffc8SSebastian Siewior CBC: Cipher Block Chaining mode 171584fffc8SSebastian Siewior This block cipher algorithm is required for IPSec. 172584fffc8SSebastian Siewior 173584fffc8SSebastian Siewiorconfig CRYPTO_CTR 174584fffc8SSebastian Siewior tristate "CTR support" 175584fffc8SSebastian Siewior select CRYPTO_BLKCIPHER 176584fffc8SSebastian Siewior select CRYPTO_SEQIV 177584fffc8SSebastian Siewior select CRYPTO_MANAGER 178584fffc8SSebastian Siewior help 179584fffc8SSebastian Siewior CTR: Counter mode 180584fffc8SSebastian Siewior This block cipher algorithm is required for IPSec. 181584fffc8SSebastian Siewior 182584fffc8SSebastian Siewiorconfig CRYPTO_CTS 183584fffc8SSebastian Siewior tristate "CTS support" 184584fffc8SSebastian Siewior select CRYPTO_BLKCIPHER 185584fffc8SSebastian Siewior help 186584fffc8SSebastian Siewior CTS: Cipher Text Stealing 187584fffc8SSebastian Siewior This is the Cipher Text Stealing mode as described by 188584fffc8SSebastian Siewior Section 8 of rfc2040 and referenced by rfc3962. 189584fffc8SSebastian Siewior (rfc3962 includes errata information in its Appendix A) 190584fffc8SSebastian Siewior This mode is required for Kerberos gss mechanism support 191584fffc8SSebastian Siewior for AES encryption. 192584fffc8SSebastian Siewior 193584fffc8SSebastian Siewiorconfig CRYPTO_ECB 194584fffc8SSebastian Siewior tristate "ECB support" 195584fffc8SSebastian Siewior select CRYPTO_BLKCIPHER 196584fffc8SSebastian Siewior select CRYPTO_MANAGER 197584fffc8SSebastian Siewior help 198584fffc8SSebastian Siewior ECB: Electronic CodeBook mode 199584fffc8SSebastian Siewior This is the simplest block cipher algorithm. It simply encrypts 200584fffc8SSebastian Siewior the input block by block. 201584fffc8SSebastian Siewior 202584fffc8SSebastian Siewiorconfig CRYPTO_LRW 203584fffc8SSebastian Siewior tristate "LRW support (EXPERIMENTAL)" 204584fffc8SSebastian Siewior depends on EXPERIMENTAL 205584fffc8SSebastian Siewior select CRYPTO_BLKCIPHER 206584fffc8SSebastian Siewior select CRYPTO_MANAGER 207584fffc8SSebastian Siewior select CRYPTO_GF128MUL 208584fffc8SSebastian Siewior help 209584fffc8SSebastian Siewior LRW: Liskov Rivest Wagner, a tweakable, non malleable, non movable 210584fffc8SSebastian Siewior narrow block cipher mode for dm-crypt. Use it with cipher 211584fffc8SSebastian Siewior specification string aes-lrw-benbi, the key must be 256, 320 or 384. 212584fffc8SSebastian Siewior The first 128, 192 or 256 bits in the key are used for AES and the 213584fffc8SSebastian Siewior rest is used to tie each cipher block to its logical position. 214584fffc8SSebastian Siewior 215584fffc8SSebastian Siewiorconfig CRYPTO_PCBC 216584fffc8SSebastian Siewior tristate "PCBC support" 217584fffc8SSebastian Siewior select CRYPTO_BLKCIPHER 218584fffc8SSebastian Siewior select CRYPTO_MANAGER 219584fffc8SSebastian Siewior help 220584fffc8SSebastian Siewior PCBC: Propagating Cipher Block Chaining mode 221584fffc8SSebastian Siewior This block cipher algorithm is required for RxRPC. 222584fffc8SSebastian Siewior 223584fffc8SSebastian Siewiorconfig CRYPTO_XTS 224584fffc8SSebastian Siewior tristate "XTS support (EXPERIMENTAL)" 225584fffc8SSebastian Siewior depends on EXPERIMENTAL 226584fffc8SSebastian Siewior select CRYPTO_BLKCIPHER 227584fffc8SSebastian Siewior select CRYPTO_MANAGER 228584fffc8SSebastian Siewior select CRYPTO_GF128MUL 229584fffc8SSebastian Siewior help 230584fffc8SSebastian Siewior XTS: IEEE1619/D16 narrow block cipher use with aes-xts-plain, 231584fffc8SSebastian Siewior key size 256, 384 or 512 bits. This implementation currently 232584fffc8SSebastian Siewior can't handle a sectorsize which is not a multiple of 16 bytes. 233584fffc8SSebastian Siewior 234584fffc8SSebastian Siewiorcomment "Hash modes" 235584fffc8SSebastian Siewior 2361da177e4SLinus Torvaldsconfig CRYPTO_HMAC 2378425165dSHerbert Xu tristate "HMAC support" 2380796ae06SHerbert Xu select CRYPTO_HASH 23943518407SHerbert Xu select CRYPTO_MANAGER 2401da177e4SLinus Torvalds help 2411da177e4SLinus Torvalds HMAC: Keyed-Hashing for Message Authentication (RFC2104). 2421da177e4SLinus Torvalds This is required for IPSec. 2431da177e4SLinus Torvalds 244333b0d7eSKazunori MIYAZAWAconfig CRYPTO_XCBC 245333b0d7eSKazunori MIYAZAWA tristate "XCBC support" 246333b0d7eSKazunori MIYAZAWA depends on EXPERIMENTAL 247333b0d7eSKazunori MIYAZAWA select CRYPTO_HASH 248333b0d7eSKazunori MIYAZAWA select CRYPTO_MANAGER 249333b0d7eSKazunori MIYAZAWA help 250333b0d7eSKazunori MIYAZAWA XCBC: Keyed-Hashing with encryption algorithm 251333b0d7eSKazunori MIYAZAWA http://www.ietf.org/rfc/rfc3566.txt 252333b0d7eSKazunori MIYAZAWA http://csrc.nist.gov/encryption/modes/proposedmodes/ 253333b0d7eSKazunori MIYAZAWA xcbc-mac/xcbc-mac-spec.pdf 254333b0d7eSKazunori MIYAZAWA 255584fffc8SSebastian Siewiorcomment "Digest" 256584fffc8SSebastian Siewior 257584fffc8SSebastian Siewiorconfig CRYPTO_CRC32C 258584fffc8SSebastian Siewior tristate "CRC32c CRC algorithm" 2595773a3e6SHerbert Xu select CRYPTO_HASH 2601da177e4SLinus Torvalds help 261584fffc8SSebastian Siewior Castagnoli, et al Cyclic Redundancy-Check Algorithm. Used 262584fffc8SSebastian Siewior by iSCSI for header and data digests and by others. 26369c35efcSHerbert Xu See Castagnoli93. Module will be crc32c. 2641da177e4SLinus Torvalds 2658cb51ba8SAustin Zhangconfig CRYPTO_CRC32C_INTEL 2668cb51ba8SAustin Zhang tristate "CRC32c INTEL hardware acceleration" 2678cb51ba8SAustin Zhang depends on X86 2688cb51ba8SAustin Zhang select CRYPTO_HASH 2698cb51ba8SAustin Zhang help 2708cb51ba8SAustin Zhang In Intel processor with SSE4.2 supported, the processor will 2718cb51ba8SAustin Zhang support CRC32C implementation using hardware accelerated CRC32 2728cb51ba8SAustin Zhang instruction. This option will create 'crc32c-intel' module, 2738cb51ba8SAustin Zhang which will enable any routine to use the CRC32 instruction to 2748cb51ba8SAustin Zhang gain performance compared with software implementation. 2758cb51ba8SAustin Zhang Module will be crc32c-intel. 2768cb51ba8SAustin Zhang 2771da177e4SLinus Torvaldsconfig CRYPTO_MD4 2781da177e4SLinus Torvalds tristate "MD4 digest algorithm" 279cce9e06dSHerbert Xu select CRYPTO_ALGAPI 2801da177e4SLinus Torvalds help 2811da177e4SLinus Torvalds MD4 message digest algorithm (RFC1320). 2821da177e4SLinus Torvalds 2831da177e4SLinus Torvaldsconfig CRYPTO_MD5 2841da177e4SLinus Torvalds tristate "MD5 digest algorithm" 285cce9e06dSHerbert Xu select CRYPTO_ALGAPI 2861da177e4SLinus Torvalds help 2871da177e4SLinus Torvalds MD5 message digest algorithm (RFC1321). 2881da177e4SLinus Torvalds 289584fffc8SSebastian Siewiorconfig CRYPTO_MICHAEL_MIC 290584fffc8SSebastian Siewior tristate "Michael MIC keyed digest algorithm" 291584fffc8SSebastian Siewior select CRYPTO_ALGAPI 292584fffc8SSebastian Siewior help 293584fffc8SSebastian Siewior Michael MIC is used for message integrity protection in TKIP 294584fffc8SSebastian Siewior (IEEE 802.11i). This algorithm is required for TKIP, but it 295584fffc8SSebastian Siewior should not be used for other purposes because of the weakness 296584fffc8SSebastian Siewior of the algorithm. 297584fffc8SSebastian Siewior 29882798f90SAdrian-Ken Rueegseggerconfig CRYPTO_RMD128 29982798f90SAdrian-Ken Rueegsegger tristate "RIPEMD-128 digest algorithm" 3007c4468bcSHerbert Xu select CRYPTO_HASH 30182798f90SAdrian-Ken Rueegsegger help 30282798f90SAdrian-Ken Rueegsegger RIPEMD-128 (ISO/IEC 10118-3:2004). 30382798f90SAdrian-Ken Rueegsegger 30482798f90SAdrian-Ken Rueegsegger RIPEMD-128 is a 128-bit cryptographic hash function. It should only 30582798f90SAdrian-Ken Rueegsegger to be used as a secure replacement for RIPEMD. For other use cases 30682798f90SAdrian-Ken Rueegsegger RIPEMD-160 should be used. 30782798f90SAdrian-Ken Rueegsegger 30882798f90SAdrian-Ken Rueegsegger Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel. 30982798f90SAdrian-Ken Rueegsegger See <http://home.esat.kuleuven.be/~bosselae/ripemd160.html> 31082798f90SAdrian-Ken Rueegsegger 31182798f90SAdrian-Ken Rueegseggerconfig CRYPTO_RMD160 31282798f90SAdrian-Ken Rueegsegger tristate "RIPEMD-160 digest algorithm" 313e5835fbaSHerbert Xu select CRYPTO_HASH 31482798f90SAdrian-Ken Rueegsegger help 31582798f90SAdrian-Ken Rueegsegger RIPEMD-160 (ISO/IEC 10118-3:2004). 31682798f90SAdrian-Ken Rueegsegger 31782798f90SAdrian-Ken Rueegsegger RIPEMD-160 is a 160-bit cryptographic hash function. It is intended 31882798f90SAdrian-Ken Rueegsegger to be used as a secure replacement for the 128-bit hash functions 319b6d44341SAdrian Bunk MD4, MD5 and it's predecessor RIPEMD 320b6d44341SAdrian Bunk (not to be confused with RIPEMD-128). 32182798f90SAdrian-Ken Rueegsegger 322b6d44341SAdrian Bunk It's speed is comparable to SHA1 and there are no known attacks 323b6d44341SAdrian Bunk against RIPEMD-160. 324534fe2c1SAdrian-Ken Rueegsegger 325534fe2c1SAdrian-Ken Rueegsegger Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel. 326534fe2c1SAdrian-Ken Rueegsegger See <http://home.esat.kuleuven.be/~bosselae/ripemd160.html> 327534fe2c1SAdrian-Ken Rueegsegger 328534fe2c1SAdrian-Ken Rueegseggerconfig CRYPTO_RMD256 329534fe2c1SAdrian-Ken Rueegsegger tristate "RIPEMD-256 digest algorithm" 330d8a5e2e9SHerbert Xu select CRYPTO_HASH 331534fe2c1SAdrian-Ken Rueegsegger help 332b6d44341SAdrian Bunk RIPEMD-256 is an optional extension of RIPEMD-128 with a 333b6d44341SAdrian Bunk 256 bit hash. It is intended for applications that require 334b6d44341SAdrian Bunk longer hash-results, without needing a larger security level 335b6d44341SAdrian Bunk (than RIPEMD-128). 336534fe2c1SAdrian-Ken Rueegsegger 337534fe2c1SAdrian-Ken Rueegsegger Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel. 338534fe2c1SAdrian-Ken Rueegsegger See <http://home.esat.kuleuven.be/~bosselae/ripemd160.html> 339534fe2c1SAdrian-Ken Rueegsegger 340534fe2c1SAdrian-Ken Rueegseggerconfig CRYPTO_RMD320 341534fe2c1SAdrian-Ken Rueegsegger tristate "RIPEMD-320 digest algorithm" 3423b8efb4cSHerbert Xu select CRYPTO_HASH 343534fe2c1SAdrian-Ken Rueegsegger help 344b6d44341SAdrian Bunk RIPEMD-320 is an optional extension of RIPEMD-160 with a 345b6d44341SAdrian Bunk 320 bit hash. It is intended for applications that require 346b6d44341SAdrian Bunk longer hash-results, without needing a larger security level 347b6d44341SAdrian Bunk (than RIPEMD-160). 348534fe2c1SAdrian-Ken Rueegsegger 34982798f90SAdrian-Ken Rueegsegger Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel. 35082798f90SAdrian-Ken Rueegsegger See <http://home.esat.kuleuven.be/~bosselae/ripemd160.html> 35182798f90SAdrian-Ken Rueegsegger 3521da177e4SLinus Torvaldsconfig CRYPTO_SHA1 3531da177e4SLinus Torvalds tristate "SHA1 digest algorithm" 354*54ccb367SAdrian-Ken Rueegsegger select CRYPTO_HASH 3551da177e4SLinus Torvalds help 3561da177e4SLinus Torvalds SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2). 3571da177e4SLinus Torvalds 3581da177e4SLinus Torvaldsconfig CRYPTO_SHA256 359cd12fb90SJonathan Lynch tristate "SHA224 and SHA256 digest algorithm" 360cce9e06dSHerbert Xu select CRYPTO_ALGAPI 3611da177e4SLinus Torvalds help 3621da177e4SLinus Torvalds SHA256 secure hash standard (DFIPS 180-2). 3631da177e4SLinus Torvalds 3641da177e4SLinus Torvalds This version of SHA implements a 256 bit hash with 128 bits of 3651da177e4SLinus Torvalds security against collision attacks. 3661da177e4SLinus Torvalds 367cd12fb90SJonathan Lynch This code also includes SHA-224, a 224 bit hash with 112 bits 368cd12fb90SJonathan Lynch of security against collision attacks. 369cd12fb90SJonathan Lynch 3701da177e4SLinus Torvaldsconfig CRYPTO_SHA512 3711da177e4SLinus Torvalds tristate "SHA384 and SHA512 digest algorithms" 372cce9e06dSHerbert Xu select CRYPTO_ALGAPI 3731da177e4SLinus Torvalds help 3741da177e4SLinus Torvalds SHA512 secure hash standard (DFIPS 180-2). 3751da177e4SLinus Torvalds 3761da177e4SLinus Torvalds This version of SHA implements a 512 bit hash with 256 bits of 3771da177e4SLinus Torvalds security against collision attacks. 3781da177e4SLinus Torvalds 3791da177e4SLinus Torvalds This code also includes SHA-384, a 384 bit hash with 192 bits 3801da177e4SLinus Torvalds of security against collision attacks. 3811da177e4SLinus Torvalds 3821da177e4SLinus Torvaldsconfig CRYPTO_TGR192 3831da177e4SLinus Torvalds tristate "Tiger digest algorithms" 384cce9e06dSHerbert Xu select CRYPTO_ALGAPI 3851da177e4SLinus Torvalds help 3861da177e4SLinus Torvalds Tiger hash algorithm 192, 160 and 128-bit hashes 3871da177e4SLinus Torvalds 3881da177e4SLinus Torvalds Tiger is a hash function optimized for 64-bit processors while 3891da177e4SLinus Torvalds still having decent performance on 32-bit processors. 3901da177e4SLinus Torvalds Tiger was developed by Ross Anderson and Eli Biham. 3911da177e4SLinus Torvalds 3921da177e4SLinus Torvalds See also: 3931da177e4SLinus Torvalds <http://www.cs.technion.ac.il/~biham/Reports/Tiger/>. 3941da177e4SLinus Torvalds 395584fffc8SSebastian Siewiorconfig CRYPTO_WP512 396584fffc8SSebastian Siewior tristate "Whirlpool digest algorithms" 397cce9e06dSHerbert Xu select CRYPTO_ALGAPI 3981da177e4SLinus Torvalds help 399584fffc8SSebastian Siewior Whirlpool hash algorithm 512, 384 and 256-bit hashes 4001da177e4SLinus Torvalds 401584fffc8SSebastian Siewior Whirlpool-512 is part of the NESSIE cryptographic primitives. 402584fffc8SSebastian Siewior Whirlpool will be part of the ISO/IEC 10118-3:2003(E) standard 4031da177e4SLinus Torvalds 4041da177e4SLinus Torvalds See also: 405584fffc8SSebastian Siewior <http://planeta.terra.com.br/informatica/paulobarreto/WhirlpoolPage.html> 4061da177e4SLinus Torvalds 407584fffc8SSebastian Siewiorcomment "Ciphers" 4081da177e4SLinus Torvalds 4091da177e4SLinus Torvaldsconfig CRYPTO_AES 4101da177e4SLinus Torvalds tristate "AES cipher algorithms" 411cce9e06dSHerbert Xu select CRYPTO_ALGAPI 4121da177e4SLinus Torvalds help 4131da177e4SLinus Torvalds AES cipher algorithms (FIPS-197). AES uses the Rijndael 4141da177e4SLinus Torvalds algorithm. 4151da177e4SLinus Torvalds 4161da177e4SLinus Torvalds Rijndael appears to be consistently a very good performer in 4171da177e4SLinus Torvalds both hardware and software across a wide range of computing 4181da177e4SLinus Torvalds environments regardless of its use in feedback or non-feedback 4191da177e4SLinus Torvalds modes. Its key setup time is excellent, and its key agility is 4201da177e4SLinus Torvalds good. Rijndael's very low memory requirements make it very well 4211da177e4SLinus Torvalds suited for restricted-space environments, in which it also 4221da177e4SLinus Torvalds demonstrates excellent performance. Rijndael's operations are 4231da177e4SLinus Torvalds among the easiest to defend against power and timing attacks. 4241da177e4SLinus Torvalds 4251da177e4SLinus Torvalds The AES specifies three key sizes: 128, 192 and 256 bits 4261da177e4SLinus Torvalds 4271da177e4SLinus Torvalds See <http://csrc.nist.gov/CryptoToolkit/aes/> for more information. 4281da177e4SLinus Torvalds 4291da177e4SLinus Torvaldsconfig CRYPTO_AES_586 4301da177e4SLinus Torvalds tristate "AES cipher algorithms (i586)" 431cce9e06dSHerbert Xu depends on (X86 || UML_X86) && !64BIT 432cce9e06dSHerbert Xu select CRYPTO_ALGAPI 4335157dea8SSebastian Siewior select CRYPTO_AES 4341da177e4SLinus Torvalds help 4351da177e4SLinus Torvalds AES cipher algorithms (FIPS-197). AES uses the Rijndael 4361da177e4SLinus Torvalds algorithm. 4371da177e4SLinus Torvalds 4381da177e4SLinus Torvalds Rijndael appears to be consistently a very good performer in 4391da177e4SLinus Torvalds both hardware and software across a wide range of computing 4401da177e4SLinus Torvalds environments regardless of its use in feedback or non-feedback 4411da177e4SLinus Torvalds modes. Its key setup time is excellent, and its key agility is 4421da177e4SLinus Torvalds good. Rijndael's very low memory requirements make it very well 4431da177e4SLinus Torvalds suited for restricted-space environments, in which it also 4441da177e4SLinus Torvalds demonstrates excellent performance. Rijndael's operations are 4451da177e4SLinus Torvalds among the easiest to defend against power and timing attacks. 4461da177e4SLinus Torvalds 4471da177e4SLinus Torvalds The AES specifies three key sizes: 128, 192 and 256 bits 4481da177e4SLinus Torvalds 4491da177e4SLinus Torvalds See <http://csrc.nist.gov/encryption/aes/> for more information. 4501da177e4SLinus Torvalds 451a2a892a2SAndreas Steinmetzconfig CRYPTO_AES_X86_64 452a2a892a2SAndreas Steinmetz tristate "AES cipher algorithms (x86_64)" 453cce9e06dSHerbert Xu depends on (X86 || UML_X86) && 64BIT 454cce9e06dSHerbert Xu select CRYPTO_ALGAPI 45581190b32SSebastian Siewior select CRYPTO_AES 456a2a892a2SAndreas Steinmetz help 457a2a892a2SAndreas Steinmetz AES cipher algorithms (FIPS-197). AES uses the Rijndael 458a2a892a2SAndreas Steinmetz algorithm. 459a2a892a2SAndreas Steinmetz 460a2a892a2SAndreas Steinmetz Rijndael appears to be consistently a very good performer in 461a2a892a2SAndreas Steinmetz both hardware and software across a wide range of computing 462a2a892a2SAndreas Steinmetz environments regardless of its use in feedback or non-feedback 463a2a892a2SAndreas Steinmetz modes. Its key setup time is excellent, and its key agility is 464a2a892a2SAndreas Steinmetz good. Rijndael's very low memory requirements make it very well 465a2a892a2SAndreas Steinmetz suited for restricted-space environments, in which it also 466a2a892a2SAndreas Steinmetz demonstrates excellent performance. Rijndael's operations are 467a2a892a2SAndreas Steinmetz among the easiest to defend against power and timing attacks. 468a2a892a2SAndreas Steinmetz 469a2a892a2SAndreas Steinmetz The AES specifies three key sizes: 128, 192 and 256 bits 470a2a892a2SAndreas Steinmetz 471a2a892a2SAndreas Steinmetz See <http://csrc.nist.gov/encryption/aes/> for more information. 472a2a892a2SAndreas Steinmetz 4731da177e4SLinus Torvaldsconfig CRYPTO_ANUBIS 4741da177e4SLinus Torvalds tristate "Anubis cipher algorithm" 475cce9e06dSHerbert Xu select CRYPTO_ALGAPI 4761da177e4SLinus Torvalds help 4771da177e4SLinus Torvalds Anubis cipher algorithm. 4781da177e4SLinus Torvalds 4791da177e4SLinus Torvalds Anubis is a variable key length cipher which can use keys from 4801da177e4SLinus Torvalds 128 bits to 320 bits in length. It was evaluated as a entrant 4811da177e4SLinus Torvalds in the NESSIE competition. 4821da177e4SLinus Torvalds 4831da177e4SLinus Torvalds See also: 4841da177e4SLinus Torvalds <https://www.cosic.esat.kuleuven.ac.be/nessie/reports/> 4851da177e4SLinus Torvalds <http://planeta.terra.com.br/informatica/paulobarreto/AnubisPage.html> 4861da177e4SLinus Torvalds 487584fffc8SSebastian Siewiorconfig CRYPTO_ARC4 488584fffc8SSebastian Siewior tristate "ARC4 cipher algorithm" 489e2ee95b8SHye-Shik Chang select CRYPTO_ALGAPI 490e2ee95b8SHye-Shik Chang help 491584fffc8SSebastian Siewior ARC4 cipher algorithm. 492e2ee95b8SHye-Shik Chang 493584fffc8SSebastian Siewior ARC4 is a stream cipher using keys ranging from 8 bits to 2048 494584fffc8SSebastian Siewior bits in length. This algorithm is required for driver-based 495584fffc8SSebastian Siewior WEP, but it should not be for other purposes because of the 496584fffc8SSebastian Siewior weakness of the algorithm. 497584fffc8SSebastian Siewior 498584fffc8SSebastian Siewiorconfig CRYPTO_BLOWFISH 499584fffc8SSebastian Siewior tristate "Blowfish cipher algorithm" 500584fffc8SSebastian Siewior select CRYPTO_ALGAPI 501584fffc8SSebastian Siewior help 502584fffc8SSebastian Siewior Blowfish cipher algorithm, by Bruce Schneier. 503584fffc8SSebastian Siewior 504584fffc8SSebastian Siewior This is a variable key length cipher which can use keys from 32 505584fffc8SSebastian Siewior bits to 448 bits in length. It's fast, simple and specifically 506584fffc8SSebastian Siewior designed for use on "large microprocessors". 507e2ee95b8SHye-Shik Chang 508e2ee95b8SHye-Shik Chang See also: 509584fffc8SSebastian Siewior <http://www.schneier.com/blowfish.html> 510584fffc8SSebastian Siewior 511584fffc8SSebastian Siewiorconfig CRYPTO_CAMELLIA 512584fffc8SSebastian Siewior tristate "Camellia cipher algorithms" 513584fffc8SSebastian Siewior depends on CRYPTO 514584fffc8SSebastian Siewior select CRYPTO_ALGAPI 515584fffc8SSebastian Siewior help 516584fffc8SSebastian Siewior Camellia cipher algorithms module. 517584fffc8SSebastian Siewior 518584fffc8SSebastian Siewior Camellia is a symmetric key block cipher developed jointly 519584fffc8SSebastian Siewior at NTT and Mitsubishi Electric Corporation. 520584fffc8SSebastian Siewior 521584fffc8SSebastian Siewior The Camellia specifies three key sizes: 128, 192 and 256 bits. 522584fffc8SSebastian Siewior 523584fffc8SSebastian Siewior See also: 524584fffc8SSebastian Siewior <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html> 525584fffc8SSebastian Siewior 526584fffc8SSebastian Siewiorconfig CRYPTO_CAST5 527584fffc8SSebastian Siewior tristate "CAST5 (CAST-128) cipher algorithm" 528584fffc8SSebastian Siewior select CRYPTO_ALGAPI 529584fffc8SSebastian Siewior help 530584fffc8SSebastian Siewior The CAST5 encryption algorithm (synonymous with CAST-128) is 531584fffc8SSebastian Siewior described in RFC2144. 532584fffc8SSebastian Siewior 533584fffc8SSebastian Siewiorconfig CRYPTO_CAST6 534584fffc8SSebastian Siewior tristate "CAST6 (CAST-256) cipher algorithm" 535584fffc8SSebastian Siewior select CRYPTO_ALGAPI 536584fffc8SSebastian Siewior help 537584fffc8SSebastian Siewior The CAST6 encryption algorithm (synonymous with CAST-256) is 538584fffc8SSebastian Siewior described in RFC2612. 539584fffc8SSebastian Siewior 540584fffc8SSebastian Siewiorconfig CRYPTO_DES 541584fffc8SSebastian Siewior tristate "DES and Triple DES EDE cipher algorithms" 542584fffc8SSebastian Siewior select CRYPTO_ALGAPI 543584fffc8SSebastian Siewior help 544584fffc8SSebastian Siewior DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3). 545584fffc8SSebastian Siewior 546584fffc8SSebastian Siewiorconfig CRYPTO_FCRYPT 547584fffc8SSebastian Siewior tristate "FCrypt cipher algorithm" 548584fffc8SSebastian Siewior select CRYPTO_ALGAPI 549584fffc8SSebastian Siewior select CRYPTO_BLKCIPHER 550584fffc8SSebastian Siewior help 551584fffc8SSebastian Siewior FCrypt algorithm used by RxRPC. 552584fffc8SSebastian Siewior 553584fffc8SSebastian Siewiorconfig CRYPTO_KHAZAD 554584fffc8SSebastian Siewior tristate "Khazad cipher algorithm" 555584fffc8SSebastian Siewior select CRYPTO_ALGAPI 556584fffc8SSebastian Siewior help 557584fffc8SSebastian Siewior Khazad cipher algorithm. 558584fffc8SSebastian Siewior 559584fffc8SSebastian Siewior Khazad was a finalist in the initial NESSIE competition. It is 560584fffc8SSebastian Siewior an algorithm optimized for 64-bit processors with good performance 561584fffc8SSebastian Siewior on 32-bit processors. Khazad uses an 128 bit key size. 562584fffc8SSebastian Siewior 563584fffc8SSebastian Siewior See also: 564584fffc8SSebastian Siewior <http://planeta.terra.com.br/informatica/paulobarreto/KhazadPage.html> 565e2ee95b8SHye-Shik Chang 5662407d608STan Swee Hengconfig CRYPTO_SALSA20 5672407d608STan Swee Heng tristate "Salsa20 stream cipher algorithm (EXPERIMENTAL)" 5682407d608STan Swee Heng depends on EXPERIMENTAL 5692407d608STan Swee Heng select CRYPTO_BLKCIPHER 5702407d608STan Swee Heng help 5712407d608STan Swee Heng Salsa20 stream cipher algorithm. 5722407d608STan Swee Heng 5732407d608STan Swee Heng Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT 5742407d608STan Swee Heng Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/> 5752407d608STan Swee Heng 5762407d608STan Swee Heng The Salsa20 stream cipher algorithm is designed by Daniel J. 5772407d608STan Swee Heng Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html> 5781da177e4SLinus Torvalds 579974e4b75STan Swee Hengconfig CRYPTO_SALSA20_586 580974e4b75STan Swee Heng tristate "Salsa20 stream cipher algorithm (i586) (EXPERIMENTAL)" 581974e4b75STan Swee Heng depends on (X86 || UML_X86) && !64BIT 582974e4b75STan Swee Heng depends on EXPERIMENTAL 583974e4b75STan Swee Heng select CRYPTO_BLKCIPHER 584974e4b75STan Swee Heng help 585974e4b75STan Swee Heng Salsa20 stream cipher algorithm. 586974e4b75STan Swee Heng 587974e4b75STan Swee Heng Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT 588974e4b75STan Swee Heng Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/> 589974e4b75STan Swee Heng 590974e4b75STan Swee Heng The Salsa20 stream cipher algorithm is designed by Daniel J. 591974e4b75STan Swee Heng Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html> 592974e4b75STan Swee Heng 5939a7dafbbSTan Swee Hengconfig CRYPTO_SALSA20_X86_64 5949a7dafbbSTan Swee Heng tristate "Salsa20 stream cipher algorithm (x86_64) (EXPERIMENTAL)" 5959a7dafbbSTan Swee Heng depends on (X86 || UML_X86) && 64BIT 5969a7dafbbSTan Swee Heng depends on EXPERIMENTAL 5979a7dafbbSTan Swee Heng select CRYPTO_BLKCIPHER 5989a7dafbbSTan Swee Heng help 5999a7dafbbSTan Swee Heng Salsa20 stream cipher algorithm. 6009a7dafbbSTan Swee Heng 6019a7dafbbSTan Swee Heng Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT 6029a7dafbbSTan Swee Heng Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/> 6039a7dafbbSTan Swee Heng 6049a7dafbbSTan Swee Heng The Salsa20 stream cipher algorithm is designed by Daniel J. 6059a7dafbbSTan Swee Heng Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html> 6069a7dafbbSTan Swee Heng 607584fffc8SSebastian Siewiorconfig CRYPTO_SEED 608584fffc8SSebastian Siewior tristate "SEED cipher algorithm" 609584fffc8SSebastian Siewior select CRYPTO_ALGAPI 610584fffc8SSebastian Siewior help 611584fffc8SSebastian Siewior SEED cipher algorithm (RFC4269). 612584fffc8SSebastian Siewior 613584fffc8SSebastian Siewior SEED is a 128-bit symmetric key block cipher that has been 614584fffc8SSebastian Siewior developed by KISA (Korea Information Security Agency) as a 615584fffc8SSebastian Siewior national standard encryption algorithm of the Republic of Korea. 616584fffc8SSebastian Siewior It is a 16 round block cipher with the key size of 128 bit. 617584fffc8SSebastian Siewior 618584fffc8SSebastian Siewior See also: 619584fffc8SSebastian Siewior <http://www.kisa.or.kr/kisa/seed/jsp/seed_eng.jsp> 620584fffc8SSebastian Siewior 621584fffc8SSebastian Siewiorconfig CRYPTO_SERPENT 622584fffc8SSebastian Siewior tristate "Serpent cipher algorithm" 623584fffc8SSebastian Siewior select CRYPTO_ALGAPI 624584fffc8SSebastian Siewior help 625584fffc8SSebastian Siewior Serpent cipher algorithm, by Anderson, Biham & Knudsen. 626584fffc8SSebastian Siewior 627584fffc8SSebastian Siewior Keys are allowed to be from 0 to 256 bits in length, in steps 628584fffc8SSebastian Siewior of 8 bits. Also includes the 'Tnepres' algorithm, a reversed 629584fffc8SSebastian Siewior variant of Serpent for compatibility with old kerneli.org code. 630584fffc8SSebastian Siewior 631584fffc8SSebastian Siewior See also: 632584fffc8SSebastian Siewior <http://www.cl.cam.ac.uk/~rja14/serpent.html> 633584fffc8SSebastian Siewior 634584fffc8SSebastian Siewiorconfig CRYPTO_TEA 635584fffc8SSebastian Siewior tristate "TEA, XTEA and XETA cipher algorithms" 636584fffc8SSebastian Siewior select CRYPTO_ALGAPI 637584fffc8SSebastian Siewior help 638584fffc8SSebastian Siewior TEA cipher algorithm. 639584fffc8SSebastian Siewior 640584fffc8SSebastian Siewior Tiny Encryption Algorithm is a simple cipher that uses 641584fffc8SSebastian Siewior many rounds for security. It is very fast and uses 642584fffc8SSebastian Siewior little memory. 643584fffc8SSebastian Siewior 644584fffc8SSebastian Siewior Xtendend Tiny Encryption Algorithm is a modification to 645584fffc8SSebastian Siewior the TEA algorithm to address a potential key weakness 646584fffc8SSebastian Siewior in the TEA algorithm. 647584fffc8SSebastian Siewior 648584fffc8SSebastian Siewior Xtendend Encryption Tiny Algorithm is a mis-implementation 649584fffc8SSebastian Siewior of the XTEA algorithm for compatibility purposes. 650584fffc8SSebastian Siewior 651584fffc8SSebastian Siewiorconfig CRYPTO_TWOFISH 652584fffc8SSebastian Siewior tristate "Twofish cipher algorithm" 653584fffc8SSebastian Siewior select CRYPTO_ALGAPI 654584fffc8SSebastian Siewior select CRYPTO_TWOFISH_COMMON 655584fffc8SSebastian Siewior help 656584fffc8SSebastian Siewior Twofish cipher algorithm. 657584fffc8SSebastian Siewior 658584fffc8SSebastian Siewior Twofish was submitted as an AES (Advanced Encryption Standard) 659584fffc8SSebastian Siewior candidate cipher by researchers at CounterPane Systems. It is a 660584fffc8SSebastian Siewior 16 round block cipher supporting key sizes of 128, 192, and 256 661584fffc8SSebastian Siewior bits. 662584fffc8SSebastian Siewior 663584fffc8SSebastian Siewior See also: 664584fffc8SSebastian Siewior <http://www.schneier.com/twofish.html> 665584fffc8SSebastian Siewior 666584fffc8SSebastian Siewiorconfig CRYPTO_TWOFISH_COMMON 667584fffc8SSebastian Siewior tristate 668584fffc8SSebastian Siewior help 669584fffc8SSebastian Siewior Common parts of the Twofish cipher algorithm shared by the 670584fffc8SSebastian Siewior generic c and the assembler implementations. 671584fffc8SSebastian Siewior 672584fffc8SSebastian Siewiorconfig CRYPTO_TWOFISH_586 673584fffc8SSebastian Siewior tristate "Twofish cipher algorithms (i586)" 674584fffc8SSebastian Siewior depends on (X86 || UML_X86) && !64BIT 675584fffc8SSebastian Siewior select CRYPTO_ALGAPI 676584fffc8SSebastian Siewior select CRYPTO_TWOFISH_COMMON 677584fffc8SSebastian Siewior help 678584fffc8SSebastian Siewior Twofish cipher algorithm. 679584fffc8SSebastian Siewior 680584fffc8SSebastian Siewior Twofish was submitted as an AES (Advanced Encryption Standard) 681584fffc8SSebastian Siewior candidate cipher by researchers at CounterPane Systems. It is a 682584fffc8SSebastian Siewior 16 round block cipher supporting key sizes of 128, 192, and 256 683584fffc8SSebastian Siewior bits. 684584fffc8SSebastian Siewior 685584fffc8SSebastian Siewior See also: 686584fffc8SSebastian Siewior <http://www.schneier.com/twofish.html> 687584fffc8SSebastian Siewior 688584fffc8SSebastian Siewiorconfig CRYPTO_TWOFISH_X86_64 689584fffc8SSebastian Siewior tristate "Twofish cipher algorithm (x86_64)" 690584fffc8SSebastian Siewior depends on (X86 || UML_X86) && 64BIT 691584fffc8SSebastian Siewior select CRYPTO_ALGAPI 692584fffc8SSebastian Siewior select CRYPTO_TWOFISH_COMMON 693584fffc8SSebastian Siewior help 694584fffc8SSebastian Siewior Twofish cipher algorithm (x86_64). 695584fffc8SSebastian Siewior 696584fffc8SSebastian Siewior Twofish was submitted as an AES (Advanced Encryption Standard) 697584fffc8SSebastian Siewior candidate cipher by researchers at CounterPane Systems. It is a 698584fffc8SSebastian Siewior 16 round block cipher supporting key sizes of 128, 192, and 256 699584fffc8SSebastian Siewior bits. 700584fffc8SSebastian Siewior 701584fffc8SSebastian Siewior See also: 702584fffc8SSebastian Siewior <http://www.schneier.com/twofish.html> 703584fffc8SSebastian Siewior 704584fffc8SSebastian Siewiorcomment "Compression" 705584fffc8SSebastian Siewior 7061da177e4SLinus Torvaldsconfig CRYPTO_DEFLATE 7071da177e4SLinus Torvalds tristate "Deflate compression algorithm" 708cce9e06dSHerbert Xu select CRYPTO_ALGAPI 7091da177e4SLinus Torvalds select ZLIB_INFLATE 7101da177e4SLinus Torvalds select ZLIB_DEFLATE 7111da177e4SLinus Torvalds help 7121da177e4SLinus Torvalds This is the Deflate algorithm (RFC1951), specified for use in 7131da177e4SLinus Torvalds IPSec with the IPCOMP protocol (RFC3173, RFC2394). 7141da177e4SLinus Torvalds 7151da177e4SLinus Torvalds You will most probably want this if using IPSec. 7161da177e4SLinus Torvalds 7170b77abb3SZoltan Sogorconfig CRYPTO_LZO 7180b77abb3SZoltan Sogor tristate "LZO compression algorithm" 7190b77abb3SZoltan Sogor select CRYPTO_ALGAPI 7200b77abb3SZoltan Sogor select LZO_COMPRESS 7210b77abb3SZoltan Sogor select LZO_DECOMPRESS 7220b77abb3SZoltan Sogor help 7230b77abb3SZoltan Sogor This is the LZO algorithm. 7240b77abb3SZoltan Sogor 72517f0f4a4SNeil Hormancomment "Random Number Generation" 72617f0f4a4SNeil Horman 72717f0f4a4SNeil Hormanconfig CRYPTO_ANSI_CPRNG 72817f0f4a4SNeil Horman tristate "Pseudo Random Number Generation for Cryptographic modules" 72917f0f4a4SNeil Horman select CRYPTO_AES 73017f0f4a4SNeil Horman select CRYPTO_RNG 73117f0f4a4SNeil Horman select CRYPTO_FIPS 73217f0f4a4SNeil Horman help 73317f0f4a4SNeil Horman This option enables the generic pseudo random number generator 73417f0f4a4SNeil Horman for cryptographic modules. Uses the Algorithm specified in 73517f0f4a4SNeil Horman ANSI X9.31 A.2.4 73617f0f4a4SNeil Horman 7371da177e4SLinus Torvaldssource "drivers/crypto/Kconfig" 7381da177e4SLinus Torvalds 739cce9e06dSHerbert Xuendif # if CRYPTO 740