2 # Generic algorithms support
8 # async_tx api: hardware offloaded memory transfer/transform support
10 source "crypto/async_tx/Kconfig"
13 # Cryptographic API Configuration
16 tristate "Cryptographic API"
18 This option provides the core Cryptographic API.
22 comment "Crypto core or helper"
25 bool "FIPS 200 compliance"
26 depends on CRYPTO_ANSI_CPRNG && !CRYPTO_MANAGER_DISABLE_TESTS
28 This options enables the fips boot option which is
29 required if you want to system to operate in a FIPS 200
30 certification. You should say no unless you know what
37 This option provides the API for cryptographic algorithms.
51 config CRYPTO_BLKCIPHER
53 select CRYPTO_BLKCIPHER2
56 config CRYPTO_BLKCIPHER2
60 select CRYPTO_WORKQUEUE
90 tristate "Cryptographic algorithm manager"
91 select CRYPTO_MANAGER2
93 Create default cryptographic template instantiations such as
96 config CRYPTO_MANAGER2
97 def_tristate CRYPTO_MANAGER || (CRYPTO_MANAGER!=n && CRYPTO_ALGAPI=y)
100 select CRYPTO_BLKCIPHER2
104 tristate "Userspace cryptographic algorithm configuration"
106 select CRYPTO_MANAGER
108 Userspace configuration for cryptographic instantiations such as
111 config CRYPTO_MANAGER_DISABLE_TESTS
112 bool "Disable run-time self tests"
114 depends on CRYPTO_MANAGER2
116 Disable run-time self tests that normally take place at
117 algorithm registration.
119 config CRYPTO_GF128MUL
120 tristate "GF(2^128) multiplication functions"
122 Efficient table driven implementation of multiplications in the
123 field GF(2^128). This is needed by some cypher modes. This
124 option will be selected automatically if you select such a
125 cipher mode. Only select this option by hand if you expect to load
126 an external module that requires these functions.
129 tristate "Null algorithms"
131 select CRYPTO_BLKCIPHER
134 These are 'Null' algorithms, used by IPsec, which do nothing.
137 tristate "Parallel crypto engine (EXPERIMENTAL)"
138 depends on SMP && EXPERIMENTAL
140 select CRYPTO_MANAGER
143 This converts an arbitrary crypto algorithm into a parallel
144 algorithm that executes in kernel threads.
146 config CRYPTO_WORKQUEUE
150 tristate "Software async crypto daemon"
151 select CRYPTO_BLKCIPHER
153 select CRYPTO_MANAGER
154 select CRYPTO_WORKQUEUE
156 This is a generic software asynchronous crypto daemon that
157 converts an arbitrary synchronous software crypto algorithm
158 into an asynchronous algorithm that executes in a kernel thread.
160 config CRYPTO_AUTHENC
161 tristate "Authenc support"
163 select CRYPTO_BLKCIPHER
164 select CRYPTO_MANAGER
167 Authenc: Combined mode wrapper for IPsec.
168 This is required for IPSec.
171 tristate "Testing module"
173 select CRYPTO_MANAGER
175 Quick & dirty crypto test module.
177 config CRYPTO_ABLK_HELPER_X86
182 comment "Authenticated Encryption with Associated Data"
185 tristate "CCM support"
189 Support for Counter with CBC MAC. Required for IPsec.
192 tristate "GCM/GMAC support"
197 Support for Galois/Counter Mode (GCM) and Galois Message
198 Authentication Code (GMAC). Required for IPSec.
201 tristate "Sequence Number IV Generator"
203 select CRYPTO_BLKCIPHER
206 This IV generator generates an IV based on a sequence number by
207 xoring it with a salt. This algorithm is mainly useful for CTR
209 comment "Block modes"
212 tristate "CBC support"
213 select CRYPTO_BLKCIPHER
214 select CRYPTO_MANAGER
216 CBC: Cipher Block Chaining mode
217 This block cipher algorithm is required for IPSec.
220 tristate "CTR support"
221 select CRYPTO_BLKCIPHER
223 select CRYPTO_MANAGER
226 This block cipher algorithm is required for IPSec.
229 tristate "CTS support"
230 select CRYPTO_BLKCIPHER
232 CTS: Cipher Text Stealing
233 This is the Cipher Text Stealing mode as described by
234 Section 8 of rfc2040 and referenced by rfc3962.
235 (rfc3962 includes errata information in its Appendix A)
236 This mode is required for Kerberos gss mechanism support
240 tristate "ECB support"
241 select CRYPTO_BLKCIPHER
242 select CRYPTO_MANAGER
244 ECB: Electronic CodeBook mode
245 This is the simplest block cipher algorithm. It simply encrypts
246 the input block by block.
249 tristate "LRW support"
250 select CRYPTO_BLKCIPHER
251 select CRYPTO_MANAGER
252 select CRYPTO_GF128MUL
254 LRW: Liskov Rivest Wagner, a tweakable, non malleable, non movable
255 narrow block cipher mode for dm-crypt. Use it with cipher
256 specification string aes-lrw-benbi, the key must be 256, 320 or 384.
257 The first 128, 192 or 256 bits in the key are used for AES and the
258 rest is used to tie each cipher block to its logical position.
261 tristate "PCBC support"
262 select CRYPTO_BLKCIPHER
263 select CRYPTO_MANAGER
265 PCBC: Propagating Cipher Block Chaining mode
266 This block cipher algorithm is required for RxRPC.
269 tristate "XTS support"
270 select CRYPTO_BLKCIPHER
271 select CRYPTO_MANAGER
272 select CRYPTO_GF128MUL
274 XTS: IEEE1619/D16 narrow block cipher use with aes-xts-plain,
275 key size 256, 384 or 512 bits. This implementation currently
276 can't handle a sectorsize which is not a multiple of 16 bytes.
281 tristate "HMAC support"
283 select CRYPTO_MANAGER
285 HMAC: Keyed-Hashing for Message Authentication (RFC2104).
286 This is required for IPSec.
289 tristate "XCBC support"
290 depends on EXPERIMENTAL
292 select CRYPTO_MANAGER
294 XCBC: Keyed-Hashing with encryption algorithm
295 http://www.ietf.org/rfc/rfc3566.txt
296 http://csrc.nist.gov/encryption/modes/proposedmodes/
297 xcbc-mac/xcbc-mac-spec.pdf
300 tristate "VMAC support"
301 depends on EXPERIMENTAL
303 select CRYPTO_MANAGER
305 VMAC is a message authentication algorithm designed for
306 very high speed on 64-bit architectures.
309 <http://fastcrypto.org/vmac>
314 tristate "CRC32c CRC algorithm"
318 Castagnoli, et al Cyclic Redundancy-Check Algorithm. Used
319 by iSCSI for header and data digests and by others.
320 See Castagnoli93. Module will be crc32c.
322 config CRYPTO_CRC32C_INTEL
323 tristate "CRC32c INTEL hardware acceleration"
327 In Intel processor with SSE4.2 supported, the processor will
328 support CRC32C implementation using hardware accelerated CRC32
329 instruction. This option will create 'crc32c-intel' module,
330 which will enable any routine to use the CRC32 instruction to
331 gain performance compared with software implementation.
332 Module will be crc32c-intel.
335 tristate "GHASH digest algorithm"
336 select CRYPTO_GF128MUL
338 GHASH is message digest algorithm for GCM (Galois/Counter Mode).
341 tristate "MD4 digest algorithm"
344 MD4 message digest algorithm (RFC1320).
347 tristate "MD5 digest algorithm"
350 MD5 message digest algorithm (RFC1321).
352 config CRYPTO_MICHAEL_MIC
353 tristate "Michael MIC keyed digest algorithm"
356 Michael MIC is used for message integrity protection in TKIP
357 (IEEE 802.11i). This algorithm is required for TKIP, but it
358 should not be used for other purposes because of the weakness
362 tristate "RIPEMD-128 digest algorithm"
365 RIPEMD-128 (ISO/IEC 10118-3:2004).
367 RIPEMD-128 is a 128-bit cryptographic hash function. It should only
368 be used as a secure replacement for RIPEMD. For other use cases,
369 RIPEMD-160 should be used.
371 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
372 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
375 tristate "RIPEMD-160 digest algorithm"
378 RIPEMD-160 (ISO/IEC 10118-3:2004).
380 RIPEMD-160 is a 160-bit cryptographic hash function. It is intended
381 to be used as a secure replacement for the 128-bit hash functions
382 MD4, MD5 and it's predecessor RIPEMD
383 (not to be confused with RIPEMD-128).
385 It's speed is comparable to SHA1 and there are no known attacks
388 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
389 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
392 tristate "RIPEMD-256 digest algorithm"
395 RIPEMD-256 is an optional extension of RIPEMD-128 with a
396 256 bit hash. It is intended for applications that require
397 longer hash-results, without needing a larger security level
400 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
401 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
404 tristate "RIPEMD-320 digest algorithm"
407 RIPEMD-320 is an optional extension of RIPEMD-160 with a
408 320 bit hash. It is intended for applications that require
409 longer hash-results, without needing a larger security level
412 Developed by Hans Dobbertin, Antoon Bosselaers and Bart Preneel.
413 See <http://homes.esat.kuleuven.be/~bosselae/ripemd160.html>
416 tristate "SHA1 digest algorithm"
419 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2).
421 config CRYPTO_SHA1_SSSE3
422 tristate "SHA1 digest algorithm (SSSE3/AVX)"
423 depends on X86 && 64BIT
427 SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2) implemented
428 using Supplemental SSE3 (SSSE3) instructions or Advanced Vector
429 Extensions (AVX), when available.
432 tristate "SHA224 and SHA256 digest algorithm"
435 SHA256 secure hash standard (DFIPS 180-2).
437 This version of SHA implements a 256 bit hash with 128 bits of
438 security against collision attacks.
440 This code also includes SHA-224, a 224 bit hash with 112 bits
441 of security against collision attacks.
444 tristate "SHA384 and SHA512 digest algorithms"
447 SHA512 secure hash standard (DFIPS 180-2).
449 This version of SHA implements a 512 bit hash with 256 bits of
450 security against collision attacks.
452 This code also includes SHA-384, a 384 bit hash with 192 bits
453 of security against collision attacks.
456 tristate "Tiger digest algorithms"
459 Tiger hash algorithm 192, 160 and 128-bit hashes
461 Tiger is a hash function optimized for 64-bit processors while
462 still having decent performance on 32-bit processors.
463 Tiger was developed by Ross Anderson and Eli Biham.
466 <http://www.cs.technion.ac.il/~biham/Reports/Tiger/>.
469 tristate "Whirlpool digest algorithms"
472 Whirlpool hash algorithm 512, 384 and 256-bit hashes
474 Whirlpool-512 is part of the NESSIE cryptographic primitives.
475 Whirlpool will be part of the ISO/IEC 10118-3:2003(E) standard
478 <http://www.larc.usp.br/~pbarreto/WhirlpoolPage.html>
480 config CRYPTO_GHASH_CLMUL_NI_INTEL
481 tristate "GHASH digest algorithm (CLMUL-NI accelerated)"
482 depends on X86 && 64BIT
485 GHASH is message digest algorithm for GCM (Galois/Counter Mode).
486 The implementation is accelerated by CLMUL-NI of Intel.
491 tristate "AES cipher algorithms"
494 AES cipher algorithms (FIPS-197). AES uses the Rijndael
497 Rijndael appears to be consistently a very good performer in
498 both hardware and software across a wide range of computing
499 environments regardless of its use in feedback or non-feedback
500 modes. Its key setup time is excellent, and its key agility is
501 good. Rijndael's very low memory requirements make it very well
502 suited for restricted-space environments, in which it also
503 demonstrates excellent performance. Rijndael's operations are
504 among the easiest to defend against power and timing attacks.
506 The AES specifies three key sizes: 128, 192 and 256 bits
508 See <http://csrc.nist.gov/CryptoToolkit/aes/> for more information.
510 config CRYPTO_AES_586
511 tristate "AES cipher algorithms (i586)"
512 depends on (X86 || UML_X86) && !64BIT
516 AES cipher algorithms (FIPS-197). AES uses the Rijndael
519 Rijndael appears to be consistently a very good performer in
520 both hardware and software across a wide range of computing
521 environments regardless of its use in feedback or non-feedback
522 modes. Its key setup time is excellent, and its key agility is
523 good. Rijndael's very low memory requirements make it very well
524 suited for restricted-space environments, in which it also
525 demonstrates excellent performance. Rijndael's operations are
526 among the easiest to defend against power and timing attacks.
528 The AES specifies three key sizes: 128, 192 and 256 bits
530 See <http://csrc.nist.gov/encryption/aes/> for more information.
532 config CRYPTO_AES_X86_64
533 tristate "AES cipher algorithms (x86_64)"
534 depends on (X86 || UML_X86) && 64BIT
538 AES cipher algorithms (FIPS-197). AES uses the Rijndael
541 Rijndael appears to be consistently a very good performer in
542 both hardware and software across a wide range of computing
543 environments regardless of its use in feedback or non-feedback
544 modes. Its key setup time is excellent, and its key agility is
545 good. Rijndael's very low memory requirements make it very well
546 suited for restricted-space environments, in which it also
547 demonstrates excellent performance. Rijndael's operations are
548 among the easiest to defend against power and timing attacks.
550 The AES specifies three key sizes: 128, 192 and 256 bits
552 See <http://csrc.nist.gov/encryption/aes/> for more information.
554 config CRYPTO_AES_NI_INTEL
555 tristate "AES cipher algorithms (AES-NI)"
557 select CRYPTO_AES_X86_64 if 64BIT
558 select CRYPTO_AES_586 if !64BIT
560 select CRYPTO_ABLK_HELPER_X86
563 Use Intel AES-NI instructions for AES algorithm.
565 AES cipher algorithms (FIPS-197). AES uses the Rijndael
568 Rijndael appears to be consistently a very good performer in
569 both hardware and software across a wide range of computing
570 environments regardless of its use in feedback or non-feedback
571 modes. Its key setup time is excellent, and its key agility is
572 good. Rijndael's very low memory requirements make it very well
573 suited for restricted-space environments, in which it also
574 demonstrates excellent performance. Rijndael's operations are
575 among the easiest to defend against power and timing attacks.
577 The AES specifies three key sizes: 128, 192 and 256 bits
579 See <http://csrc.nist.gov/encryption/aes/> for more information.
581 In addition to AES cipher algorithm support, the acceleration
582 for some popular block cipher mode is supported too, including
583 ECB, CBC, LRW, PCBC, XTS. The 64 bit version has additional
584 acceleration for CTR.
587 tristate "Anubis cipher algorithm"
590 Anubis cipher algorithm.
592 Anubis is a variable key length cipher which can use keys from
593 128 bits to 320 bits in length. It was evaluated as a entrant
594 in the NESSIE competition.
597 <https://www.cosic.esat.kuleuven.be/nessie/reports/>
598 <http://www.larc.usp.br/~pbarreto/AnubisPage.html>
601 tristate "ARC4 cipher algorithm"
604 ARC4 cipher algorithm.
606 ARC4 is a stream cipher using keys ranging from 8 bits to 2048
607 bits in length. This algorithm is required for driver-based
608 WEP, but it should not be for other purposes because of the
609 weakness of the algorithm.
611 config CRYPTO_BLOWFISH
612 tristate "Blowfish cipher algorithm"
614 select CRYPTO_BLOWFISH_COMMON
616 Blowfish cipher algorithm, by Bruce Schneier.
618 This is a variable key length cipher which can use keys from 32
619 bits to 448 bits in length. It's fast, simple and specifically
620 designed for use on "large microprocessors".
623 <http://www.schneier.com/blowfish.html>
625 config CRYPTO_BLOWFISH_COMMON
628 Common parts of the Blowfish cipher algorithm shared by the
629 generic c and the assembler implementations.
632 <http://www.schneier.com/blowfish.html>
634 config CRYPTO_BLOWFISH_X86_64
635 tristate "Blowfish cipher algorithm (x86_64)"
636 depends on X86 && 64BIT
638 select CRYPTO_BLOWFISH_COMMON
640 Blowfish cipher algorithm (x86_64), by Bruce Schneier.
642 This is a variable key length cipher which can use keys from 32
643 bits to 448 bits in length. It's fast, simple and specifically
644 designed for use on "large microprocessors".
647 <http://www.schneier.com/blowfish.html>
649 config CRYPTO_CAMELLIA
650 tristate "Camellia cipher algorithms"
654 Camellia cipher algorithms module.
656 Camellia is a symmetric key block cipher developed jointly
657 at NTT and Mitsubishi Electric Corporation.
659 The Camellia specifies three key sizes: 128, 192 and 256 bits.
662 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
664 config CRYPTO_CAMELLIA_X86_64
665 tristate "Camellia cipher algorithm (x86_64)"
666 depends on X86 && 64BIT
672 Camellia cipher algorithm module (x86_64).
674 Camellia is a symmetric key block cipher developed jointly
675 at NTT and Mitsubishi Electric Corporation.
677 The Camellia specifies three key sizes: 128, 192 and 256 bits.
680 <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
683 tristate "CAST5 (CAST-128) cipher algorithm"
686 The CAST5 encryption algorithm (synonymous with CAST-128) is
687 described in RFC2144.
690 tristate "CAST6 (CAST-256) cipher algorithm"
693 The CAST6 encryption algorithm (synonymous with CAST-256) is
694 described in RFC2612.
697 tristate "DES and Triple DES EDE cipher algorithms"
700 DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3).
703 tristate "FCrypt cipher algorithm"
705 select CRYPTO_BLKCIPHER
707 FCrypt algorithm used by RxRPC.
710 tristate "Khazad cipher algorithm"
713 Khazad cipher algorithm.
715 Khazad was a finalist in the initial NESSIE competition. It is
716 an algorithm optimized for 64-bit processors with good performance
717 on 32-bit processors. Khazad uses an 128 bit key size.
720 <http://www.larc.usp.br/~pbarreto/KhazadPage.html>
722 config CRYPTO_SALSA20
723 tristate "Salsa20 stream cipher algorithm (EXPERIMENTAL)"
724 depends on EXPERIMENTAL
725 select CRYPTO_BLKCIPHER
727 Salsa20 stream cipher algorithm.
729 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
730 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
732 The Salsa20 stream cipher algorithm is designed by Daniel J.
733 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
735 config CRYPTO_SALSA20_586
736 tristate "Salsa20 stream cipher algorithm (i586) (EXPERIMENTAL)"
737 depends on (X86 || UML_X86) && !64BIT
738 depends on EXPERIMENTAL
739 select CRYPTO_BLKCIPHER
741 Salsa20 stream cipher algorithm.
743 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
744 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
746 The Salsa20 stream cipher algorithm is designed by Daniel J.
747 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
749 config CRYPTO_SALSA20_X86_64
750 tristate "Salsa20 stream cipher algorithm (x86_64) (EXPERIMENTAL)"
751 depends on (X86 || UML_X86) && 64BIT
752 depends on EXPERIMENTAL
753 select CRYPTO_BLKCIPHER
755 Salsa20 stream cipher algorithm.
757 Salsa20 is a stream cipher submitted to eSTREAM, the ECRYPT
758 Stream Cipher Project. See <http://www.ecrypt.eu.org/stream/>
760 The Salsa20 stream cipher algorithm is designed by Daniel J.
761 Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
764 tristate "SEED cipher algorithm"
767 SEED cipher algorithm (RFC4269).
769 SEED is a 128-bit symmetric key block cipher that has been
770 developed by KISA (Korea Information Security Agency) as a
771 national standard encryption algorithm of the Republic of Korea.
772 It is a 16 round block cipher with the key size of 128 bit.
775 <http://www.kisa.or.kr/kisa/seed/jsp/seed_eng.jsp>
777 config CRYPTO_SERPENT
778 tristate "Serpent cipher algorithm"
781 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
783 Keys are allowed to be from 0 to 256 bits in length, in steps
784 of 8 bits. Also includes the 'Tnepres' algorithm, a reversed
785 variant of Serpent for compatibility with old kerneli.org code.
788 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
790 config CRYPTO_SERPENT_SSE2_X86_64
791 tristate "Serpent cipher algorithm (x86_64/SSE2)"
792 depends on X86 && 64BIT
795 select CRYPTO_ABLK_HELPER_X86
796 select CRYPTO_SERPENT
800 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
802 Keys are allowed to be from 0 to 256 bits in length, in steps
805 This module provides Serpent cipher algorithm that processes eigth
806 blocks parallel using SSE2 instruction set.
809 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
811 config CRYPTO_SERPENT_SSE2_586
812 tristate "Serpent cipher algorithm (i586/SSE2)"
813 depends on X86 && !64BIT
816 select CRYPTO_ABLK_HELPER_X86
817 select CRYPTO_SERPENT
821 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
823 Keys are allowed to be from 0 to 256 bits in length, in steps
826 This module provides Serpent cipher algorithm that processes four
827 blocks parallel using SSE2 instruction set.
830 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
832 config CRYPTO_SERPENT_AVX_X86_64
833 tristate "Serpent cipher algorithm (x86_64/AVX)"
834 depends on X86 && 64BIT
837 select CRYPTO_ABLK_HELPER_X86
838 select CRYPTO_SERPENT
842 Serpent cipher algorithm, by Anderson, Biham & Knudsen.
844 Keys are allowed to be from 0 to 256 bits in length, in steps
847 This module provides the Serpent cipher algorithm that processes
848 eight blocks parallel using the AVX instruction set.
851 <http://www.cl.cam.ac.uk/~rja14/serpent.html>
854 tristate "TEA, XTEA and XETA cipher algorithms"
857 TEA cipher algorithm.
859 Tiny Encryption Algorithm is a simple cipher that uses
860 many rounds for security. It is very fast and uses
863 Xtendend Tiny Encryption Algorithm is a modification to
864 the TEA algorithm to address a potential key weakness
865 in the TEA algorithm.
867 Xtendend Encryption Tiny Algorithm is a mis-implementation
868 of the XTEA algorithm for compatibility purposes.
870 config CRYPTO_TWOFISH
871 tristate "Twofish cipher algorithm"
873 select CRYPTO_TWOFISH_COMMON
875 Twofish cipher algorithm.
877 Twofish was submitted as an AES (Advanced Encryption Standard)
878 candidate cipher by researchers at CounterPane Systems. It is a
879 16 round block cipher supporting key sizes of 128, 192, and 256
883 <http://www.schneier.com/twofish.html>
885 config CRYPTO_TWOFISH_COMMON
888 Common parts of the Twofish cipher algorithm shared by the
889 generic c and the assembler implementations.
891 config CRYPTO_TWOFISH_586
892 tristate "Twofish cipher algorithms (i586)"
893 depends on (X86 || UML_X86) && !64BIT
895 select CRYPTO_TWOFISH_COMMON
897 Twofish cipher algorithm.
899 Twofish was submitted as an AES (Advanced Encryption Standard)
900 candidate cipher by researchers at CounterPane Systems. It is a
901 16 round block cipher supporting key sizes of 128, 192, and 256
905 <http://www.schneier.com/twofish.html>
907 config CRYPTO_TWOFISH_X86_64
908 tristate "Twofish cipher algorithm (x86_64)"
909 depends on (X86 || UML_X86) && 64BIT
911 select CRYPTO_TWOFISH_COMMON
913 Twofish cipher algorithm (x86_64).
915 Twofish was submitted as an AES (Advanced Encryption Standard)
916 candidate cipher by researchers at CounterPane Systems. It is a
917 16 round block cipher supporting key sizes of 128, 192, and 256
921 <http://www.schneier.com/twofish.html>
923 config CRYPTO_TWOFISH_X86_64_3WAY
924 tristate "Twofish cipher algorithm (x86_64, 3-way parallel)"
925 depends on X86 && 64BIT
927 select CRYPTO_TWOFISH_COMMON
928 select CRYPTO_TWOFISH_X86_64
932 Twofish cipher algorithm (x86_64, 3-way parallel).
934 Twofish was submitted as an AES (Advanced Encryption Standard)
935 candidate cipher by researchers at CounterPane Systems. It is a
936 16 round block cipher supporting key sizes of 128, 192, and 256
939 This module provides Twofish cipher algorithm that processes three
940 blocks parallel, utilizing resources of out-of-order CPUs better.
943 <http://www.schneier.com/twofish.html>
945 config CRYPTO_TWOFISH_AVX_X86_64
946 tristate "Twofish cipher algorithm (x86_64/AVX)"
947 depends on X86 && 64BIT
950 select CRYPTO_ABLK_HELPER_X86
951 select CRYPTO_TWOFISH_COMMON
952 select CRYPTO_TWOFISH_X86_64
953 select CRYPTO_TWOFISH_X86_64_3WAY
957 Twofish cipher algorithm (x86_64/AVX).
959 Twofish was submitted as an AES (Advanced Encryption Standard)
960 candidate cipher by researchers at CounterPane Systems. It is a
961 16 round block cipher supporting key sizes of 128, 192, and 256
964 This module provides the Twofish cipher algorithm that processes
965 eight blocks parallel using the AVX Instruction Set.
968 <http://www.schneier.com/twofish.html>
970 comment "Compression"
972 config CRYPTO_DEFLATE
973 tristate "Deflate compression algorithm"
978 This is the Deflate algorithm (RFC1951), specified for use in
979 IPSec with the IPCOMP protocol (RFC3173, RFC2394).
981 You will most probably want this if using IPSec.
984 tristate "Zlib compression algorithm"
990 This is the zlib algorithm.
993 tristate "LZO compression algorithm"
996 select LZO_DECOMPRESS
998 This is the LZO algorithm.
1000 comment "Random Number Generation"
1002 config CRYPTO_ANSI_CPRNG
1003 tristate "Pseudo Random Number Generation for Cryptographic modules"
1008 This option enables the generic pseudo random number generator
1009 for cryptographic modules. Uses the Algorithm specified in
1010 ANSI X9.31 A.2.4. Note that this option must be enabled if
1011 CRYPTO_FIPS is selected
1013 config CRYPTO_USER_API
1016 config CRYPTO_USER_API_HASH
1017 tristate "User-space interface for hash algorithms"
1020 select CRYPTO_USER_API
1022 This option enables the user-spaces interface for hash
1025 config CRYPTO_USER_API_SKCIPHER
1026 tristate "User-space interface for symmetric key cipher algorithms"
1028 select CRYPTO_BLKCIPHER
1029 select CRYPTO_USER_API
1031 This option enables the user-spaces interface for symmetric
1032 key cipher algorithms.
1034 source "drivers/crypto/Kconfig"