Kconfig 20 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686
  1. #
  2. # Generic algorithms support
  3. #
  4. config XOR_BLOCKS
  5. tristate
  6. #
  7. # async_tx api: hardware offloaded memory transfer/transform support
  8. #
  9. source "crypto/async_tx/Kconfig"
  10. #
  11. # Cryptographic API Configuration
  12. #
  13. menuconfig CRYPTO
  14. tristate "Cryptographic API"
  15. help
  16. This option provides the core Cryptographic API.
  17. if CRYPTO
  18. comment "Crypto core or helper"
  19. config CRYPTO_ALGAPI
  20. tristate
  21. help
  22. This option provides the API for cryptographic algorithms.
  23. config CRYPTO_AEAD
  24. tristate
  25. select CRYPTO_ALGAPI
  26. config CRYPTO_BLKCIPHER
  27. tristate
  28. select CRYPTO_ALGAPI
  29. config CRYPTO_HASH
  30. tristate
  31. select CRYPTO_ALGAPI
  32. config CRYPTO_MANAGER
  33. tristate "Cryptographic algorithm manager"
  34. select CRYPTO_AEAD
  35. select CRYPTO_HASH
  36. select CRYPTO_BLKCIPHER
  37. help
  38. Create default cryptographic template instantiations such as
  39. cbc(aes).
  40. config CRYPTO_GF128MUL
  41. tristate "GF(2^128) multiplication functions (EXPERIMENTAL)"
  42. depends on EXPERIMENTAL
  43. help
  44. Efficient table driven implementation of multiplications in the
  45. field GF(2^128). This is needed by some cypher modes. This
  46. option will be selected automatically if you select such a
  47. cipher mode. Only select this option by hand if you expect to load
  48. an external module that requires these functions.
  49. config CRYPTO_NULL
  50. tristate "Null algorithms"
  51. select CRYPTO_ALGAPI
  52. select CRYPTO_BLKCIPHER
  53. help
  54. These are 'Null' algorithms, used by IPsec, which do nothing.
  55. config CRYPTO_CRYPTD
  56. tristate "Software async crypto daemon"
  57. select CRYPTO_BLKCIPHER
  58. select CRYPTO_HASH
  59. select CRYPTO_MANAGER
  60. help
  61. This is a generic software asynchronous crypto daemon that
  62. converts an arbitrary synchronous software crypto algorithm
  63. into an asynchronous algorithm that executes in a kernel thread.
  64. config CRYPTO_AUTHENC
  65. tristate "Authenc support"
  66. select CRYPTO_AEAD
  67. select CRYPTO_BLKCIPHER
  68. select CRYPTO_MANAGER
  69. select CRYPTO_HASH
  70. help
  71. Authenc: Combined mode wrapper for IPsec.
  72. This is required for IPSec.
  73. config CRYPTO_TEST
  74. tristate "Testing module"
  75. depends on m
  76. select CRYPTO_MANAGER
  77. help
  78. Quick & dirty crypto test module.
  79. comment "Authenticated Encryption with Associated Data"
  80. config CRYPTO_CCM
  81. tristate "CCM support"
  82. select CRYPTO_CTR
  83. select CRYPTO_AEAD
  84. help
  85. Support for Counter with CBC MAC. Required for IPsec.
  86. config CRYPTO_GCM
  87. tristate "GCM/GMAC support"
  88. select CRYPTO_CTR
  89. select CRYPTO_AEAD
  90. select CRYPTO_GF128MUL
  91. help
  92. Support for Galois/Counter Mode (GCM) and Galois Message
  93. Authentication Code (GMAC). Required for IPSec.
  94. config CRYPTO_SEQIV
  95. tristate "Sequence Number IV Generator"
  96. select CRYPTO_AEAD
  97. select CRYPTO_BLKCIPHER
  98. help
  99. This IV generator generates an IV based on a sequence number by
  100. xoring it with a salt. This algorithm is mainly useful for CTR
  101. comment "Block modes"
  102. config CRYPTO_CBC
  103. tristate "CBC support"
  104. select CRYPTO_BLKCIPHER
  105. select CRYPTO_MANAGER
  106. help
  107. CBC: Cipher Block Chaining mode
  108. This block cipher algorithm is required for IPSec.
  109. config CRYPTO_CTR
  110. tristate "CTR support"
  111. select CRYPTO_BLKCIPHER
  112. select CRYPTO_SEQIV
  113. select CRYPTO_MANAGER
  114. help
  115. CTR: Counter mode
  116. This block cipher algorithm is required for IPSec.
  117. config CRYPTO_CTS
  118. tristate "CTS support"
  119. select CRYPTO_BLKCIPHER
  120. help
  121. CTS: Cipher Text Stealing
  122. This is the Cipher Text Stealing mode as described by
  123. Section 8 of rfc2040 and referenced by rfc3962.
  124. (rfc3962 includes errata information in its Appendix A)
  125. This mode is required for Kerberos gss mechanism support
  126. for AES encryption.
  127. config CRYPTO_ECB
  128. tristate "ECB support"
  129. select CRYPTO_BLKCIPHER
  130. select CRYPTO_MANAGER
  131. help
  132. ECB: Electronic CodeBook mode
  133. This is the simplest block cipher algorithm. It simply encrypts
  134. the input block by block.
  135. config CRYPTO_LRW
  136. tristate "LRW support (EXPERIMENTAL)"
  137. depends on EXPERIMENTAL
  138. select CRYPTO_BLKCIPHER
  139. select CRYPTO_MANAGER
  140. select CRYPTO_GF128MUL
  141. help
  142. LRW: Liskov Rivest Wagner, a tweakable, non malleable, non movable
  143. narrow block cipher mode for dm-crypt. Use it with cipher
  144. specification string aes-lrw-benbi, the key must be 256, 320 or 384.
  145. The first 128, 192 or 256 bits in the key are used for AES and the
  146. rest is used to tie each cipher block to its logical position.
  147. config CRYPTO_PCBC
  148. tristate "PCBC support"
  149. select CRYPTO_BLKCIPHER
  150. select CRYPTO_MANAGER
  151. help
  152. PCBC: Propagating Cipher Block Chaining mode
  153. This block cipher algorithm is required for RxRPC.
  154. config CRYPTO_XTS
  155. tristate "XTS support (EXPERIMENTAL)"
  156. depends on EXPERIMENTAL
  157. select CRYPTO_BLKCIPHER
  158. select CRYPTO_MANAGER
  159. select CRYPTO_GF128MUL
  160. help
  161. XTS: IEEE1619/D16 narrow block cipher use with aes-xts-plain,
  162. key size 256, 384 or 512 bits. This implementation currently
  163. can't handle a sectorsize which is not a multiple of 16 bytes.
  164. comment "Hash modes"
  165. config CRYPTO_HMAC
  166. tristate "HMAC support"
  167. select CRYPTO_HASH
  168. select CRYPTO_MANAGER
  169. help
  170. HMAC: Keyed-Hashing for Message Authentication (RFC2104).
  171. This is required for IPSec.
  172. config CRYPTO_XCBC
  173. tristate "XCBC support"
  174. depends on EXPERIMENTAL
  175. select CRYPTO_HASH
  176. select CRYPTO_MANAGER
  177. help
  178. XCBC: Keyed-Hashing with encryption algorithm
  179. http://www.ietf.org/rfc/rfc3566.txt
  180. http://csrc.nist.gov/encryption/modes/proposedmodes/
  181. xcbc-mac/xcbc-mac-spec.pdf
  182. comment "Digest"
  183. config CRYPTO_CRC32C
  184. tristate "CRC32c CRC algorithm"
  185. select CRYPTO_HASH
  186. select LIBCRC32C
  187. help
  188. Castagnoli, et al Cyclic Redundancy-Check Algorithm. Used
  189. by iSCSI for header and data digests and by others.
  190. See Castagnoli93. This implementation uses lib/libcrc32c.
  191. Module will be crc32c.
  192. config CRYPTO_CRC32C_INTEL
  193. tristate "CRC32c INTEL hardware acceleration"
  194. depends on X86
  195. select CRYPTO_HASH
  196. help
  197. In Intel processor with SSE4.2 supported, the processor will
  198. support CRC32C implementation using hardware accelerated CRC32
  199. instruction. This option will create 'crc32c-intel' module,
  200. which will enable any routine to use the CRC32 instruction to
  201. gain performance compared with software implementation.
  202. Module will be crc32c-intel.
  203. config CRYPTO_MD4
  204. tristate "MD4 digest algorithm"
  205. select CRYPTO_ALGAPI
  206. help
  207. MD4 message digest algorithm (RFC1320).
  208. config CRYPTO_MD5
  209. tristate "MD5 digest algorithm"
  210. select CRYPTO_ALGAPI
  211. help
  212. MD5 message digest algorithm (RFC1321).
  213. config CRYPTO_MICHAEL_MIC
  214. tristate "Michael MIC keyed digest algorithm"
  215. select CRYPTO_ALGAPI
  216. help
  217. Michael MIC is used for message integrity protection in TKIP
  218. (IEEE 802.11i). This algorithm is required for TKIP, but it
  219. should not be used for other purposes because of the weakness
  220. of the algorithm.
  221. config CRYPTO_RMD128
  222. tristate "RIPEMD-128 digest algorithm"
  223. select CRYPTO_ALGAPI
  224. help
  225. RIPEMD-128 (ISO/IEC 10118-3:2004).
  226. RIPEMD-128 is a 128-bit cryptographic hash function. It should only
  227. to be used as a secure replacement for RIPEMD. For other use cases
  228. RIPEMD-160 should be used.
  229. Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
  230. See <http://home.esat.kuleuven.be/~bosselae/ripemd160.html>
  231. config CRYPTO_RMD160
  232. tristate "RIPEMD-160 digest algorithm"
  233. select CRYPTO_ALGAPI
  234. help
  235. RIPEMD-160 (ISO/IEC 10118-3:2004).
  236. RIPEMD-160 is a 160-bit cryptographic hash function. It is intended
  237. to be used as a secure replacement for the 128-bit hash functions
  238. MD4, MD5 and it's predecessor RIPEMD
  239. (not to be confused with RIPEMD-128).
  240. It's speed is comparable to SHA1 and there are no known attacks
  241. against RIPEMD-160.
  242. Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
  243. See <http://home.esat.kuleuven.be/~bosselae/ripemd160.html>
  244. config CRYPTO_RMD256
  245. tristate "RIPEMD-256 digest algorithm"
  246. select CRYPTO_ALGAPI
  247. help
  248. RIPEMD-256 is an optional extension of RIPEMD-128 with a
  249. 256 bit hash. It is intended for applications that require
  250. longer hash-results, without needing a larger security level
  251. (than RIPEMD-128).
  252. Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
  253. See <http://home.esat.kuleuven.be/~bosselae/ripemd160.html>
  254. config CRYPTO_RMD320
  255. tristate "RIPEMD-320 digest algorithm"
  256. select CRYPTO_ALGAPI
  257. help
  258. RIPEMD-320 is an optional extension of RIPEMD-160 with a
  259. 320 bit hash. It is intended for applications that require
  260. longer hash-results, without needing a larger security level
  261. (than RIPEMD-160).
  262. Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
  263. See <http://home.esat.kuleuven.be/~bosselae/ripemd160.html>
  264. config CRYPTO_SHA1
  265. tristate "SHA1 digest algorithm"
  266. select CRYPTO_ALGAPI
  267. help
  268. SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2).
  269. config CRYPTO_SHA256
  270. tristate "SHA224 and SHA256 digest algorithm"
  271. select CRYPTO_ALGAPI
  272. help
  273. SHA256 secure hash standard (DFIPS 180-2).
  274. This version of SHA implements a 256 bit hash with 128 bits of
  275. security against collision attacks.
  276. This code also includes SHA-224, a 224 bit hash with 112 bits
  277. of security against collision attacks.
  278. config CRYPTO_SHA512
  279. tristate "SHA384 and SHA512 digest algorithms"
  280. select CRYPTO_ALGAPI
  281. help
  282. SHA512 secure hash standard (DFIPS 180-2).
  283. This version of SHA implements a 512 bit hash with 256 bits of
  284. security against collision attacks.
  285. This code also includes SHA-384, a 384 bit hash with 192 bits
  286. of security against collision attacks.
  287. config CRYPTO_TGR192
  288. tristate "Tiger digest algorithms"
  289. select CRYPTO_ALGAPI
  290. help
  291. Tiger hash algorithm 192, 160 and 128-bit hashes
  292. Tiger is a hash function optimized for 64-bit processors while
  293. still having decent performance on 32-bit processors.
  294. Tiger was developed by Ross Anderson and Eli Biham.
  295. See also:
  296. <http://www.cs.technion.ac.il/~biham/Reports/Tiger/>.
  297. config CRYPTO_WP512
  298. tristate "Whirlpool digest algorithms"
  299. select CRYPTO_ALGAPI
  300. help
  301. Whirlpool hash algorithm 512, 384 and 256-bit hashes
  302. Whirlpool-512 is part of the NESSIE cryptographic primitives.
  303. Whirlpool will be part of the ISO/IEC 10118-3:2003(E) standard
  304. See also:
  305. <http://planeta.terra.com.br/informatica/paulobarreto/WhirlpoolPage.html>
  306. comment "Ciphers"
  307. config CRYPTO_AES
  308. tristate "AES cipher algorithms"
  309. select CRYPTO_ALGAPI
  310. help
  311. AES cipher algorithms (FIPS-197). AES uses the Rijndael
  312. algorithm.
  313. Rijndael appears to be consistently a very good performer in
  314. both hardware and software across a wide range of computing
  315. environments regardless of its use in feedback or non-feedback
  316. modes. Its key setup time is excellent, and its key agility is
  317. good. Rijndael's very low memory requirements make it very well
  318. suited for restricted-space environments, in which it also
  319. demonstrates excellent performance. Rijndael's operations are
  320. among the easiest to defend against power and timing attacks.
  321. The AES specifies three key sizes: 128, 192 and 256 bits
  322. See <http://csrc.nist.gov/CryptoToolkit/aes/> for more information.
  323. config CRYPTO_AES_586
  324. tristate "AES cipher algorithms (i586)"
  325. depends on (X86 || UML_X86) && !64BIT
  326. select CRYPTO_ALGAPI
  327. select CRYPTO_AES
  328. help
  329. AES cipher algorithms (FIPS-197). AES uses the Rijndael
  330. algorithm.
  331. Rijndael appears to be consistently a very good performer in
  332. both hardware and software across a wide range of computing
  333. environments regardless of its use in feedback or non-feedback
  334. modes. Its key setup time is excellent, and its key agility is
  335. good. Rijndael's very low memory requirements make it very well
  336. suited for restricted-space environments, in which it also
  337. demonstrates excellent performance. Rijndael's operations are
  338. among the easiest to defend against power and timing attacks.
  339. The AES specifies three key sizes: 128, 192 and 256 bits
  340. See <http://csrc.nist.gov/encryption/aes/> for more information.
  341. config CRYPTO_AES_X86_64
  342. tristate "AES cipher algorithms (x86_64)"
  343. depends on (X86 || UML_X86) && 64BIT
  344. select CRYPTO_ALGAPI
  345. select CRYPTO_AES
  346. help
  347. AES cipher algorithms (FIPS-197). AES uses the Rijndael
  348. algorithm.
  349. Rijndael appears to be consistently a very good performer in
  350. both hardware and software across a wide range of computing
  351. environments regardless of its use in feedback or non-feedback
  352. modes. Its key setup time is excellent, and its key agility is
  353. good. Rijndael's very low memory requirements make it very well
  354. suited for restricted-space environments, in which it also
  355. demonstrates excellent performance. Rijndael's operations are
  356. among the easiest to defend against power and timing attacks.
  357. The AES specifies three key sizes: 128, 192 and 256 bits
  358. See <http://csrc.nist.gov/encryption/aes/> for more information.
  359. config CRYPTO_ANUBIS
  360. tristate "Anubis cipher algorithm"
  361. select CRYPTO_ALGAPI
  362. help
  363. Anubis cipher algorithm.
  364. Anubis is a variable key length cipher which can use keys from
  365. 128 bits to 320 bits in length. It was evaluated as a entrant
  366. in the NESSIE competition.
  367. See also:
  368. <https://www.cosic.esat.kuleuven.ac.be/nessie/reports/>
  369. <http://planeta.terra.com.br/informatica/paulobarreto/AnubisPage.html>
  370. config CRYPTO_ARC4
  371. tristate "ARC4 cipher algorithm"
  372. select CRYPTO_ALGAPI
  373. help
  374. ARC4 cipher algorithm.
  375. ARC4 is a stream cipher using keys ranging from 8 bits to 2048
  376. bits in length. This algorithm is required for driver-based
  377. WEP, but it should not be for other purposes because of the
  378. weakness of the algorithm.
  379. config CRYPTO_BLOWFISH
  380. tristate "Blowfish cipher algorithm"
  381. select CRYPTO_ALGAPI
  382. help
  383. Blowfish cipher algorithm, by Bruce Schneier.
  384. This is a variable key length cipher which can use keys from 32
  385. bits to 448 bits in length. It's fast, simple and specifically
  386. designed for use on "large microprocessors".
  387. See also:
  388. <http://www.schneier.com/blowfish.html>
  389. config CRYPTO_CAMELLIA
  390. tristate "Camellia cipher algorithms"
  391. depends on CRYPTO
  392. select CRYPTO_ALGAPI
  393. help
  394. Camellia cipher algorithms module.
  395. Camellia is a symmetric key block cipher developed jointly
  396. at NTT and Mitsubishi Electric Corporation.
  397. The Camellia specifies three key sizes: 128, 192 and 256 bits.
  398. See also:
  399. <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
  400. config CRYPTO_CAST5
  401. tristate "CAST5 (CAST-128) cipher algorithm"
  402. select CRYPTO_ALGAPI
  403. help
  404. The CAST5 encryption algorithm (synonymous with CAST-128) is
  405. described in RFC2144.
  406. config CRYPTO_CAST6
  407. tristate "CAST6 (CAST-256) cipher algorithm"
  408. select CRYPTO_ALGAPI
  409. help
  410. The CAST6 encryption algorithm (synonymous with CAST-256) is
  411. described in RFC2612.
  412. config CRYPTO_DES
  413. tristate "DES and Triple DES EDE cipher algorithms"
  414. select CRYPTO_ALGAPI
  415. help
  416. DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3).
  417. config CRYPTO_FCRYPT
  418. tristate "FCrypt cipher algorithm"
  419. select CRYPTO_ALGAPI
  420. select CRYPTO_BLKCIPHER
  421. help
  422. FCrypt algorithm used by RxRPC.
  423. config CRYPTO_KHAZAD
  424. tristate "Khazad cipher algorithm"
  425. select CRYPTO_ALGAPI
  426. help
  427. Khazad cipher algorithm.
  428. Khazad was a finalist in the initial NESSIE competition. It is
  429. an algorithm optimized for 64-bit processors with good performance
  430. on 32-bit processors. Khazad uses an 128 bit key size.
  431. See also:
  432. <http://planeta.terra.com.br/informatica/paulobarreto/KhazadPage.html>
  433. config CRYPTO_SALSA20
  434. tristate "Salsa20 stream cipher algorithm (EXPERIMENTAL)"
  435. depends on EXPERIMENTAL
  436. select CRYPTO_BLKCIPHER
  437. help
  438. Salsa20 stream cipher algorithm.
  439. Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
  440. Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
  441. The Salsa20 stream cipher algorithm is designed by Daniel J.
  442. Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
  443. config CRYPTO_SALSA20_586
  444. tristate "Salsa20 stream cipher algorithm (i586) (EXPERIMENTAL)"
  445. depends on (X86 || UML_X86) && !64BIT
  446. depends on EXPERIMENTAL
  447. select CRYPTO_BLKCIPHER
  448. help
  449. Salsa20 stream cipher algorithm.
  450. Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
  451. Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
  452. The Salsa20 stream cipher algorithm is designed by Daniel J.
  453. Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
  454. config CRYPTO_SALSA20_X86_64
  455. tristate "Salsa20 stream cipher algorithm (x86_64) (EXPERIMENTAL)"
  456. depends on (X86 || UML_X86) && 64BIT
  457. depends on EXPERIMENTAL
  458. select CRYPTO_BLKCIPHER
  459. help
  460. Salsa20 stream cipher algorithm.
  461. Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
  462. Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
  463. The Salsa20 stream cipher algorithm is designed by Daniel J.
  464. Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
  465. config CRYPTO_SEED
  466. tristate "SEED cipher algorithm"
  467. select CRYPTO_ALGAPI
  468. help
  469. SEED cipher algorithm (RFC4269).
  470. SEED is a 128-bit symmetric key block cipher that has been
  471. developed by KISA (Korea Information Security Agency) as a
  472. national standard encryption algorithm of the Republic of Korea.
  473. It is a 16 round block cipher with the key size of 128 bit.
  474. See also:
  475. <http://www.kisa.or.kr/kisa/seed/jsp/seed_eng.jsp>
  476. config CRYPTO_SERPENT
  477. tristate "Serpent cipher algorithm"
  478. select CRYPTO_ALGAPI
  479. help
  480. Serpent cipher algorithm, by Anderson, Biham & Knudsen.
  481. Keys are allowed to be from 0 to 256 bits in length, in steps
  482. of 8 bits. Also includes the 'Tnepres' algorithm, a reversed
  483. variant of Serpent for compatibility with old kerneli.org code.
  484. See also:
  485. <http://www.cl.cam.ac.uk/~rja14/serpent.html>
  486. config CRYPTO_TEA
  487. tristate "TEA, XTEA and XETA cipher algorithms"
  488. select CRYPTO_ALGAPI
  489. help
  490. TEA cipher algorithm.
  491. Tiny Encryption Algorithm is a simple cipher that uses
  492. many rounds for security. It is very fast and uses
  493. little memory.
  494. Xtendend Tiny Encryption Algorithm is a modification to
  495. the TEA algorithm to address a potential key weakness
  496. in the TEA algorithm.
  497. Xtendend Encryption Tiny Algorithm is a mis-implementation
  498. of the XTEA algorithm for compatibility purposes.
  499. config CRYPTO_TWOFISH
  500. tristate "Twofish cipher algorithm"
  501. select CRYPTO_ALGAPI
  502. select CRYPTO_TWOFISH_COMMON
  503. help
  504. Twofish cipher algorithm.
  505. Twofish was submitted as an AES (Advanced Encryption Standard)
  506. candidate cipher by researchers at CounterPane Systems. It is a
  507. 16 round block cipher supporting key sizes of 128, 192, and 256
  508. bits.
  509. See also:
  510. <http://www.schneier.com/twofish.html>
  511. config CRYPTO_TWOFISH_COMMON
  512. tristate
  513. help
  514. Common parts of the Twofish cipher algorithm shared by the
  515. generic c and the assembler implementations.
  516. config CRYPTO_TWOFISH_586
  517. tristate "Twofish cipher algorithms (i586)"
  518. depends on (X86 || UML_X86) && !64BIT
  519. select CRYPTO_ALGAPI
  520. select CRYPTO_TWOFISH_COMMON
  521. help
  522. Twofish cipher algorithm.
  523. Twofish was submitted as an AES (Advanced Encryption Standard)
  524. candidate cipher by researchers at CounterPane Systems. It is a
  525. 16 round block cipher supporting key sizes of 128, 192, and 256
  526. bits.
  527. See also:
  528. <http://www.schneier.com/twofish.html>
  529. config CRYPTO_TWOFISH_X86_64
  530. tristate "Twofish cipher algorithm (x86_64)"
  531. depends on (X86 || UML_X86) && 64BIT
  532. select CRYPTO_ALGAPI
  533. select CRYPTO_TWOFISH_COMMON
  534. help
  535. Twofish cipher algorithm (x86_64).
  536. Twofish was submitted as an AES (Advanced Encryption Standard)
  537. candidate cipher by researchers at CounterPane Systems. It is a
  538. 16 round block cipher supporting key sizes of 128, 192, and 256
  539. bits.
  540. See also:
  541. <http://www.schneier.com/twofish.html>
  542. comment "Compression"
  543. config CRYPTO_DEFLATE
  544. tristate "Deflate compression algorithm"
  545. select CRYPTO_ALGAPI
  546. select ZLIB_INFLATE
  547. select ZLIB_DEFLATE
  548. help
  549. This is the Deflate algorithm (RFC1951), specified for use in
  550. IPSec with the IPCOMP protocol (RFC3173, RFC2394).
  551. You will most probably want this if using IPSec.
  552. config CRYPTO_LZO
  553. tristate "LZO compression algorithm"
  554. select CRYPTO_ALGAPI
  555. select LZO_COMPRESS
  556. select LZO_DECOMPRESS
  557. help
  558. This is the LZO algorithm.
  559. source "drivers/crypto/Kconfig"
  560. endif # if CRYPTO