mirror of
https://github.com/Fishwaldo/Star64_linux.git
synced 2025-03-17 20:54:10 +00:00
[CRYPTO] kconfig: Ordering cleanup
Ciphers, block modes, name it, are grouped together and sorted. Signed-off-by: Sebastian Siewior <sebastian@breakpoint.cc> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
This commit is contained in:
parent
3af5b90bde
commit
584fffc8b1
1 changed files with 384 additions and 371 deletions
755
crypto/Kconfig
755
crypto/Kconfig
|
@ -19,6 +19,8 @@ menuconfig CRYPTO
|
||||||
|
|
||||||
if CRYPTO
|
if CRYPTO
|
||||||
|
|
||||||
|
comment "Crypto core or helper"
|
||||||
|
|
||||||
config CRYPTO_ALGAPI
|
config CRYPTO_ALGAPI
|
||||||
tristate
|
tristate
|
||||||
help
|
help
|
||||||
|
@ -32,15 +34,6 @@ config CRYPTO_BLKCIPHER
|
||||||
tristate
|
tristate
|
||||||
select CRYPTO_ALGAPI
|
select CRYPTO_ALGAPI
|
||||||
|
|
||||||
config CRYPTO_SEQIV
|
|
||||||
tristate "Sequence Number IV Generator"
|
|
||||||
select CRYPTO_AEAD
|
|
||||||
select CRYPTO_BLKCIPHER
|
|
||||||
help
|
|
||||||
This IV generator generates an IV based on a sequence number by
|
|
||||||
xoring it with a salt. This algorithm is mainly useful for CTR
|
|
||||||
and similar modes.
|
|
||||||
|
|
||||||
config CRYPTO_HASH
|
config CRYPTO_HASH
|
||||||
tristate
|
tristate
|
||||||
select CRYPTO_ALGAPI
|
select CRYPTO_ALGAPI
|
||||||
|
@ -52,99 +45,6 @@ config CRYPTO_MANAGER
|
||||||
Create default cryptographic template instantiations such as
|
Create default cryptographic template instantiations such as
|
||||||
cbc(aes).
|
cbc(aes).
|
||||||
|
|
||||||
config CRYPTO_HMAC
|
|
||||||
tristate "HMAC support"
|
|
||||||
select CRYPTO_HASH
|
|
||||||
select CRYPTO_MANAGER
|
|
||||||
help
|
|
||||||
HMAC: Keyed-Hashing for Message Authentication (RFC2104).
|
|
||||||
This is required for IPSec.
|
|
||||||
|
|
||||||
config CRYPTO_XCBC
|
|
||||||
tristate "XCBC support"
|
|
||||||
depends on EXPERIMENTAL
|
|
||||||
select CRYPTO_HASH
|
|
||||||
select CRYPTO_MANAGER
|
|
||||||
help
|
|
||||||
XCBC: Keyed-Hashing with encryption algorithm
|
|
||||||
http://www.ietf.org/rfc/rfc3566.txt
|
|
||||||
http://csrc.nist.gov/encryption/modes/proposedmodes/
|
|
||||||
xcbc-mac/xcbc-mac-spec.pdf
|
|
||||||
|
|
||||||
config CRYPTO_NULL
|
|
||||||
tristate "Null algorithms"
|
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
select CRYPTO_BLKCIPHER
|
|
||||||
help
|
|
||||||
These are 'Null' algorithms, used by IPsec, which do nothing.
|
|
||||||
|
|
||||||
config CRYPTO_MD4
|
|
||||||
tristate "MD4 digest algorithm"
|
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
help
|
|
||||||
MD4 message digest algorithm (RFC1320).
|
|
||||||
|
|
||||||
config CRYPTO_MD5
|
|
||||||
tristate "MD5 digest algorithm"
|
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
help
|
|
||||||
MD5 message digest algorithm (RFC1321).
|
|
||||||
|
|
||||||
config CRYPTO_SHA1
|
|
||||||
tristate "SHA1 digest algorithm"
|
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
help
|
|
||||||
SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2).
|
|
||||||
|
|
||||||
config CRYPTO_SHA256
|
|
||||||
tristate "SHA224 and SHA256 digest algorithm"
|
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
help
|
|
||||||
SHA256 secure hash standard (DFIPS 180-2).
|
|
||||||
|
|
||||||
This version of SHA implements a 256 bit hash with 128 bits of
|
|
||||||
security against collision attacks.
|
|
||||||
|
|
||||||
This code also includes SHA-224, a 224 bit hash with 112 bits
|
|
||||||
of security against collision attacks.
|
|
||||||
|
|
||||||
config CRYPTO_SHA512
|
|
||||||
tristate "SHA384 and SHA512 digest algorithms"
|
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
help
|
|
||||||
SHA512 secure hash standard (DFIPS 180-2).
|
|
||||||
|
|
||||||
This version of SHA implements a 512 bit hash with 256 bits of
|
|
||||||
security against collision attacks.
|
|
||||||
|
|
||||||
This code also includes SHA-384, a 384 bit hash with 192 bits
|
|
||||||
of security against collision attacks.
|
|
||||||
|
|
||||||
config CRYPTO_WP512
|
|
||||||
tristate "Whirlpool digest algorithms"
|
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
help
|
|
||||||
Whirlpool hash algorithm 512, 384 and 256-bit hashes
|
|
||||||
|
|
||||||
Whirlpool-512 is part of the NESSIE cryptographic primitives.
|
|
||||||
Whirlpool will be part of the ISO/IEC 10118-3:2003(E) standard
|
|
||||||
|
|
||||||
See also:
|
|
||||||
<http://planeta.terra.com.br/informatica/paulobarreto/WhirlpoolPage.html>
|
|
||||||
|
|
||||||
config CRYPTO_TGR192
|
|
||||||
tristate "Tiger digest algorithms"
|
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
help
|
|
||||||
Tiger hash algorithm 192, 160 and 128-bit hashes
|
|
||||||
|
|
||||||
Tiger is a hash function optimized for 64-bit processors while
|
|
||||||
still having decent performance on 32-bit processors.
|
|
||||||
Tiger was developed by Ross Anderson and Eli Biham.
|
|
||||||
|
|
||||||
See also:
|
|
||||||
<http://www.cs.technion.ac.il/~biham/Reports/Tiger/>.
|
|
||||||
|
|
||||||
config CRYPTO_GF128MUL
|
config CRYPTO_GF128MUL
|
||||||
tristate "GF(2^128) multiplication functions (EXPERIMENTAL)"
|
tristate "GF(2^128) multiplication functions (EXPERIMENTAL)"
|
||||||
depends on EXPERIMENTAL
|
depends on EXPERIMENTAL
|
||||||
|
@ -155,14 +55,68 @@ config CRYPTO_GF128MUL
|
||||||
cipher mode. Only select this option by hand if you expect to load
|
cipher mode. Only select this option by hand if you expect to load
|
||||||
an external module that requires these functions.
|
an external module that requires these functions.
|
||||||
|
|
||||||
config CRYPTO_ECB
|
config CRYPTO_NULL
|
||||||
tristate "ECB support"
|
tristate "Null algorithms"
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
select CRYPTO_BLKCIPHER
|
||||||
|
help
|
||||||
|
These are 'Null' algorithms, used by IPsec, which do nothing.
|
||||||
|
|
||||||
|
config CRYPTO_CRYPTD
|
||||||
|
tristate "Software async crypto daemon"
|
||||||
select CRYPTO_BLKCIPHER
|
select CRYPTO_BLKCIPHER
|
||||||
select CRYPTO_MANAGER
|
select CRYPTO_MANAGER
|
||||||
help
|
help
|
||||||
ECB: Electronic CodeBook mode
|
This is a generic software asynchronous crypto daemon that
|
||||||
This is the simplest block cipher algorithm. It simply encrypts
|
converts an arbitrary synchronous software crypto algorithm
|
||||||
the input block by block.
|
into an asynchronous algorithm that executes in a kernel thread.
|
||||||
|
|
||||||
|
config CRYPTO_AUTHENC
|
||||||
|
tristate "Authenc support"
|
||||||
|
select CRYPTO_AEAD
|
||||||
|
select CRYPTO_BLKCIPHER
|
||||||
|
select CRYPTO_MANAGER
|
||||||
|
select CRYPTO_HASH
|
||||||
|
help
|
||||||
|
Authenc: Combined mode wrapper for IPsec.
|
||||||
|
This is required for IPSec.
|
||||||
|
|
||||||
|
config CRYPTO_TEST
|
||||||
|
tristate "Testing module"
|
||||||
|
depends on m
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
select CRYPTO_AEAD
|
||||||
|
select CRYPTO_BLKCIPHER
|
||||||
|
help
|
||||||
|
Quick & dirty crypto test module.
|
||||||
|
|
||||||
|
comment "Authenticated Encryption with Associated Data"
|
||||||
|
|
||||||
|
config CRYPTO_CCM
|
||||||
|
tristate "CCM support"
|
||||||
|
select CRYPTO_CTR
|
||||||
|
select CRYPTO_AEAD
|
||||||
|
help
|
||||||
|
Support for Counter with CBC MAC. Required for IPsec.
|
||||||
|
|
||||||
|
config CRYPTO_GCM
|
||||||
|
tristate "GCM/GMAC support"
|
||||||
|
select CRYPTO_CTR
|
||||||
|
select CRYPTO_AEAD
|
||||||
|
select CRYPTO_GF128MUL
|
||||||
|
help
|
||||||
|
Support for Galois/Counter Mode (GCM) and Galois Message
|
||||||
|
Authentication Code (GMAC). Required for IPSec.
|
||||||
|
|
||||||
|
config CRYPTO_SEQIV
|
||||||
|
tristate "Sequence Number IV Generator"
|
||||||
|
select CRYPTO_AEAD
|
||||||
|
select CRYPTO_BLKCIPHER
|
||||||
|
help
|
||||||
|
This IV generator generates an IV based on a sequence number by
|
||||||
|
xoring it with a salt. This algorithm is mainly useful for CTR
|
||||||
|
|
||||||
|
comment "Block modes"
|
||||||
|
|
||||||
config CRYPTO_CBC
|
config CRYPTO_CBC
|
||||||
tristate "CBC support"
|
tristate "CBC support"
|
||||||
|
@ -172,38 +126,6 @@ config CRYPTO_CBC
|
||||||
CBC: Cipher Block Chaining mode
|
CBC: Cipher Block Chaining mode
|
||||||
This block cipher algorithm is required for IPSec.
|
This block cipher algorithm is required for IPSec.
|
||||||
|
|
||||||
config CRYPTO_PCBC
|
|
||||||
tristate "PCBC support"
|
|
||||||
select CRYPTO_BLKCIPHER
|
|
||||||
select CRYPTO_MANAGER
|
|
||||||
help
|
|
||||||
PCBC: Propagating Cipher Block Chaining mode
|
|
||||||
This block cipher algorithm is required for RxRPC.
|
|
||||||
|
|
||||||
config CRYPTO_LRW
|
|
||||||
tristate "LRW support (EXPERIMENTAL)"
|
|
||||||
depends on EXPERIMENTAL
|
|
||||||
select CRYPTO_BLKCIPHER
|
|
||||||
select CRYPTO_MANAGER
|
|
||||||
select CRYPTO_GF128MUL
|
|
||||||
help
|
|
||||||
LRW: Liskov Rivest Wagner, a tweakable, non malleable, non movable
|
|
||||||
narrow block cipher mode for dm-crypt. Use it with cipher
|
|
||||||
specification string aes-lrw-benbi, the key must be 256, 320 or 384.
|
|
||||||
The first 128, 192 or 256 bits in the key are used for AES and the
|
|
||||||
rest is used to tie each cipher block to its logical position.
|
|
||||||
|
|
||||||
config CRYPTO_XTS
|
|
||||||
tristate "XTS support (EXPERIMENTAL)"
|
|
||||||
depends on EXPERIMENTAL
|
|
||||||
select CRYPTO_BLKCIPHER
|
|
||||||
select CRYPTO_MANAGER
|
|
||||||
select CRYPTO_GF128MUL
|
|
||||||
help
|
|
||||||
XTS: IEEE1619/D16 narrow block cipher use with aes-xts-plain,
|
|
||||||
key size 256, 384 or 512 bits. This implementation currently
|
|
||||||
can't handle a sectorsize which is not a multiple of 16 bytes.
|
|
||||||
|
|
||||||
config CRYPTO_CTR
|
config CRYPTO_CTR
|
||||||
tristate "CTR support"
|
tristate "CTR support"
|
||||||
select CRYPTO_BLKCIPHER
|
select CRYPTO_BLKCIPHER
|
||||||
|
@ -224,140 +146,175 @@ config CRYPTO_CTS
|
||||||
This mode is required for Kerberos gss mechanism support
|
This mode is required for Kerberos gss mechanism support
|
||||||
for AES encryption.
|
for AES encryption.
|
||||||
|
|
||||||
config CRYPTO_GCM
|
config CRYPTO_ECB
|
||||||
tristate "GCM/GMAC support"
|
tristate "ECB support"
|
||||||
select CRYPTO_CTR
|
|
||||||
select CRYPTO_AEAD
|
|
||||||
select CRYPTO_GF128MUL
|
|
||||||
help
|
|
||||||
Support for Galois/Counter Mode (GCM) and Galois Message
|
|
||||||
Authentication Code (GMAC). Required for IPSec.
|
|
||||||
|
|
||||||
config CRYPTO_CCM
|
|
||||||
tristate "CCM support"
|
|
||||||
select CRYPTO_CTR
|
|
||||||
select CRYPTO_AEAD
|
|
||||||
help
|
|
||||||
Support for Counter with CBC MAC. Required for IPsec.
|
|
||||||
|
|
||||||
config CRYPTO_CRYPTD
|
|
||||||
tristate "Software async crypto daemon"
|
|
||||||
select CRYPTO_BLKCIPHER
|
select CRYPTO_BLKCIPHER
|
||||||
select CRYPTO_MANAGER
|
select CRYPTO_MANAGER
|
||||||
help
|
help
|
||||||
This is a generic software asynchronous crypto daemon that
|
ECB: Electronic CodeBook mode
|
||||||
converts an arbitrary synchronous software crypto algorithm
|
This is the simplest block cipher algorithm. It simply encrypts
|
||||||
into an asynchronous algorithm that executes in a kernel thread.
|
the input block by block.
|
||||||
|
|
||||||
config CRYPTO_DES
|
config CRYPTO_LRW
|
||||||
tristate "DES and Triple DES EDE cipher algorithms"
|
tristate "LRW support (EXPERIMENTAL)"
|
||||||
select CRYPTO_ALGAPI
|
depends on EXPERIMENTAL
|
||||||
help
|
|
||||||
DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3).
|
|
||||||
|
|
||||||
config CRYPTO_FCRYPT
|
|
||||||
tristate "FCrypt cipher algorithm"
|
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
select CRYPTO_BLKCIPHER
|
select CRYPTO_BLKCIPHER
|
||||||
|
select CRYPTO_MANAGER
|
||||||
|
select CRYPTO_GF128MUL
|
||||||
help
|
help
|
||||||
FCrypt algorithm used by RxRPC.
|
LRW: Liskov Rivest Wagner, a tweakable, non malleable, non movable
|
||||||
|
narrow block cipher mode for dm-crypt. Use it with cipher
|
||||||
|
specification string aes-lrw-benbi, the key must be 256, 320 or 384.
|
||||||
|
The first 128, 192 or 256 bits in the key are used for AES and the
|
||||||
|
rest is used to tie each cipher block to its logical position.
|
||||||
|
|
||||||
config CRYPTO_BLOWFISH
|
config CRYPTO_PCBC
|
||||||
tristate "Blowfish cipher algorithm"
|
tristate "PCBC support"
|
||||||
|
select CRYPTO_BLKCIPHER
|
||||||
|
select CRYPTO_MANAGER
|
||||||
|
help
|
||||||
|
PCBC: Propagating Cipher Block Chaining mode
|
||||||
|
This block cipher algorithm is required for RxRPC.
|
||||||
|
|
||||||
|
config CRYPTO_XTS
|
||||||
|
tristate "XTS support (EXPERIMENTAL)"
|
||||||
|
depends on EXPERIMENTAL
|
||||||
|
select CRYPTO_BLKCIPHER
|
||||||
|
select CRYPTO_MANAGER
|
||||||
|
select CRYPTO_GF128MUL
|
||||||
|
help
|
||||||
|
XTS: IEEE1619/D16 narrow block cipher use with aes-xts-plain,
|
||||||
|
key size 256, 384 or 512 bits. This implementation currently
|
||||||
|
can't handle a sectorsize which is not a multiple of 16 bytes.
|
||||||
|
|
||||||
|
comment "Hash modes"
|
||||||
|
|
||||||
|
config CRYPTO_HMAC
|
||||||
|
tristate "HMAC support"
|
||||||
|
select CRYPTO_HASH
|
||||||
|
select CRYPTO_MANAGER
|
||||||
|
help
|
||||||
|
HMAC: Keyed-Hashing for Message Authentication (RFC2104).
|
||||||
|
This is required for IPSec.
|
||||||
|
|
||||||
|
config CRYPTO_XCBC
|
||||||
|
tristate "XCBC support"
|
||||||
|
depends on EXPERIMENTAL
|
||||||
|
select CRYPTO_HASH
|
||||||
|
select CRYPTO_MANAGER
|
||||||
|
help
|
||||||
|
XCBC: Keyed-Hashing with encryption algorithm
|
||||||
|
http://www.ietf.org/rfc/rfc3566.txt
|
||||||
|
http://csrc.nist.gov/encryption/modes/proposedmodes/
|
||||||
|
xcbc-mac/xcbc-mac-spec.pdf
|
||||||
|
|
||||||
|
comment "Digest"
|
||||||
|
|
||||||
|
config CRYPTO_CRC32C
|
||||||
|
tristate "CRC32c CRC algorithm"
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
select LIBCRC32C
|
||||||
|
help
|
||||||
|
Castagnoli, et al Cyclic Redundancy-Check Algorithm. Used
|
||||||
|
by iSCSI for header and data digests and by others.
|
||||||
|
See Castagnoli93. This implementation uses lib/libcrc32c.
|
||||||
|
Module will be crc32c.
|
||||||
|
|
||||||
|
config CRYPTO_MD4
|
||||||
|
tristate "MD4 digest algorithm"
|
||||||
select CRYPTO_ALGAPI
|
select CRYPTO_ALGAPI
|
||||||
help
|
help
|
||||||
Blowfish cipher algorithm, by Bruce Schneier.
|
MD4 message digest algorithm (RFC1320).
|
||||||
|
|
||||||
This is a variable key length cipher which can use keys from 32
|
|
||||||
bits to 448 bits in length. It's fast, simple and specifically
|
|
||||||
designed for use on "large microprocessors".
|
|
||||||
|
|
||||||
See also:
|
|
||||||
<http://www.schneier.com/blowfish.html>
|
|
||||||
|
|
||||||
config CRYPTO_TWOFISH
|
config CRYPTO_MD5
|
||||||
tristate "Twofish cipher algorithm"
|
tristate "MD5 digest algorithm"
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
select CRYPTO_TWOFISH_COMMON
|
|
||||||
help
|
|
||||||
Twofish cipher algorithm.
|
|
||||||
|
|
||||||
Twofish was submitted as an AES (Advanced Encryption Standard)
|
|
||||||
candidate cipher by researchers at CounterPane Systems. It is a
|
|
||||||
16 round block cipher supporting key sizes of 128, 192, and 256
|
|
||||||
bits.
|
|
||||||
|
|
||||||
See also:
|
|
||||||
<http://www.schneier.com/twofish.html>
|
|
||||||
|
|
||||||
config CRYPTO_TWOFISH_COMMON
|
|
||||||
tristate
|
|
||||||
help
|
|
||||||
Common parts of the Twofish cipher algorithm shared by the
|
|
||||||
generic c and the assembler implementations.
|
|
||||||
|
|
||||||
config CRYPTO_TWOFISH_586
|
|
||||||
tristate "Twofish cipher algorithms (i586)"
|
|
||||||
depends on (X86 || UML_X86) && !64BIT
|
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
select CRYPTO_TWOFISH_COMMON
|
|
||||||
help
|
|
||||||
Twofish cipher algorithm.
|
|
||||||
|
|
||||||
Twofish was submitted as an AES (Advanced Encryption Standard)
|
|
||||||
candidate cipher by researchers at CounterPane Systems. It is a
|
|
||||||
16 round block cipher supporting key sizes of 128, 192, and 256
|
|
||||||
bits.
|
|
||||||
|
|
||||||
See also:
|
|
||||||
<http://www.schneier.com/twofish.html>
|
|
||||||
|
|
||||||
config CRYPTO_TWOFISH_X86_64
|
|
||||||
tristate "Twofish cipher algorithm (x86_64)"
|
|
||||||
depends on (X86 || UML_X86) && 64BIT
|
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
select CRYPTO_TWOFISH_COMMON
|
|
||||||
help
|
|
||||||
Twofish cipher algorithm (x86_64).
|
|
||||||
|
|
||||||
Twofish was submitted as an AES (Advanced Encryption Standard)
|
|
||||||
candidate cipher by researchers at CounterPane Systems. It is a
|
|
||||||
16 round block cipher supporting key sizes of 128, 192, and 256
|
|
||||||
bits.
|
|
||||||
|
|
||||||
See also:
|
|
||||||
<http://www.schneier.com/twofish.html>
|
|
||||||
|
|
||||||
config CRYPTO_SERPENT
|
|
||||||
tristate "Serpent cipher algorithm"
|
|
||||||
select CRYPTO_ALGAPI
|
select CRYPTO_ALGAPI
|
||||||
help
|
help
|
||||||
Serpent cipher algorithm, by Anderson, Biham & Knudsen.
|
MD5 message digest algorithm (RFC1321).
|
||||||
|
|
||||||
Keys are allowed to be from 0 to 256 bits in length, in steps
|
config CRYPTO_MICHAEL_MIC
|
||||||
of 8 bits. Also includes the 'Tnepres' algorithm, a reversed
|
tristate "Michael MIC keyed digest algorithm"
|
||||||
variant of Serpent for compatibility with old kerneli.org code.
|
select CRYPTO_ALGAPI
|
||||||
|
help
|
||||||
|
Michael MIC is used for message integrity protection in TKIP
|
||||||
|
(IEEE 802.11i). This algorithm is required for TKIP, but it
|
||||||
|
should not be used for other purposes because of the weakness
|
||||||
|
of the algorithm.
|
||||||
|
|
||||||
|
config CRYPTO_SHA1
|
||||||
|
tristate "SHA1 digest algorithm"
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
help
|
||||||
|
SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2).
|
||||||
|
|
||||||
|
config CRYPTO_SHA256
|
||||||
|
tristate "SHA224 and SHA256 digest algorithm"
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
help
|
||||||
|
SHA256 secure hash standard (DFIPS 180-2).
|
||||||
|
|
||||||
|
This version of SHA implements a 256 bit hash with 128 bits of
|
||||||
|
security against collision attacks.
|
||||||
|
|
||||||
|
This code also includes SHA-224, a 224 bit hash with 112 bits
|
||||||
|
of security against collision attacks.
|
||||||
|
|
||||||
|
config CRYPTO_SHA512
|
||||||
|
tristate "SHA384 and SHA512 digest algorithms"
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
help
|
||||||
|
SHA512 secure hash standard (DFIPS 180-2).
|
||||||
|
|
||||||
|
This version of SHA implements a 512 bit hash with 256 bits of
|
||||||
|
security against collision attacks.
|
||||||
|
|
||||||
|
This code also includes SHA-384, a 384 bit hash with 192 bits
|
||||||
|
of security against collision attacks.
|
||||||
|
|
||||||
|
config CRYPTO_TGR192
|
||||||
|
tristate "Tiger digest algorithms"
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
help
|
||||||
|
Tiger hash algorithm 192, 160 and 128-bit hashes
|
||||||
|
|
||||||
|
Tiger is a hash function optimized for 64-bit processors while
|
||||||
|
still having decent performance on 32-bit processors.
|
||||||
|
Tiger was developed by Ross Anderson and Eli Biham.
|
||||||
|
|
||||||
See also:
|
See also:
|
||||||
<http://www.cl.cam.ac.uk/~rja14/serpent.html>
|
<http://www.cs.technion.ac.il/~biham/Reports/Tiger/>.
|
||||||
|
|
||||||
|
config CRYPTO_WP512
|
||||||
|
tristate "Whirlpool digest algorithms"
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
help
|
||||||
|
Whirlpool hash algorithm 512, 384 and 256-bit hashes
|
||||||
|
|
||||||
|
Whirlpool-512 is part of the NESSIE cryptographic primitives.
|
||||||
|
Whirlpool will be part of the ISO/IEC 10118-3:2003(E) standard
|
||||||
|
|
||||||
|
See also:
|
||||||
|
<http://planeta.terra.com.br/informatica/paulobarreto/WhirlpoolPage.html>
|
||||||
|
|
||||||
|
comment "Ciphers"
|
||||||
|
|
||||||
config CRYPTO_AES
|
config CRYPTO_AES
|
||||||
tristate "AES cipher algorithms"
|
tristate "AES cipher algorithms"
|
||||||
select CRYPTO_ALGAPI
|
select CRYPTO_ALGAPI
|
||||||
help
|
help
|
||||||
AES cipher algorithms (FIPS-197). AES uses the Rijndael
|
AES cipher algorithms (FIPS-197). AES uses the Rijndael
|
||||||
algorithm.
|
algorithm.
|
||||||
|
|
||||||
Rijndael appears to be consistently a very good performer in
|
Rijndael appears to be consistently a very good performer in
|
||||||
both hardware and software across a wide range of computing
|
both hardware and software across a wide range of computing
|
||||||
environments regardless of its use in feedback or non-feedback
|
environments regardless of its use in feedback or non-feedback
|
||||||
modes. Its key setup time is excellent, and its key agility is
|
modes. Its key setup time is excellent, and its key agility is
|
||||||
good. Rijndael's very low memory requirements make it very well
|
good. Rijndael's very low memory requirements make it very well
|
||||||
suited for restricted-space environments, in which it also
|
suited for restricted-space environments, in which it also
|
||||||
demonstrates excellent performance. Rijndael's operations are
|
demonstrates excellent performance. Rijndael's operations are
|
||||||
among the easiest to defend against power and timing attacks.
|
among the easiest to defend against power and timing attacks.
|
||||||
|
|
||||||
The AES specifies three key sizes: 128, 192 and 256 bits
|
The AES specifies three key sizes: 128, 192 and 256 bits
|
||||||
|
|
||||||
See <http://csrc.nist.gov/CryptoToolkit/aes/> for more information.
|
See <http://csrc.nist.gov/CryptoToolkit/aes/> for more information.
|
||||||
|
|
||||||
|
@ -367,19 +324,19 @@ config CRYPTO_AES_586
|
||||||
select CRYPTO_ALGAPI
|
select CRYPTO_ALGAPI
|
||||||
select CRYPTO_AES
|
select CRYPTO_AES
|
||||||
help
|
help
|
||||||
AES cipher algorithms (FIPS-197). AES uses the Rijndael
|
AES cipher algorithms (FIPS-197). AES uses the Rijndael
|
||||||
algorithm.
|
algorithm.
|
||||||
|
|
||||||
Rijndael appears to be consistently a very good performer in
|
Rijndael appears to be consistently a very good performer in
|
||||||
both hardware and software across a wide range of computing
|
both hardware and software across a wide range of computing
|
||||||
environments regardless of its use in feedback or non-feedback
|
environments regardless of its use in feedback or non-feedback
|
||||||
modes. Its key setup time is excellent, and its key agility is
|
modes. Its key setup time is excellent, and its key agility is
|
||||||
good. Rijndael's very low memory requirements make it very well
|
good. Rijndael's very low memory requirements make it very well
|
||||||
suited for restricted-space environments, in which it also
|
suited for restricted-space environments, in which it also
|
||||||
demonstrates excellent performance. Rijndael's operations are
|
demonstrates excellent performance. Rijndael's operations are
|
||||||
among the easiest to defend against power and timing attacks.
|
among the easiest to defend against power and timing attacks.
|
||||||
|
|
||||||
The AES specifies three key sizes: 128, 192 and 256 bits
|
The AES specifies three key sizes: 128, 192 and 256 bits
|
||||||
|
|
||||||
See <http://csrc.nist.gov/encryption/aes/> for more information.
|
See <http://csrc.nist.gov/encryption/aes/> for more information.
|
||||||
|
|
||||||
|
@ -389,22 +346,75 @@ config CRYPTO_AES_X86_64
|
||||||
select CRYPTO_ALGAPI
|
select CRYPTO_ALGAPI
|
||||||
select CRYPTO_AES
|
select CRYPTO_AES
|
||||||
help
|
help
|
||||||
AES cipher algorithms (FIPS-197). AES uses the Rijndael
|
AES cipher algorithms (FIPS-197). AES uses the Rijndael
|
||||||
algorithm.
|
algorithm.
|
||||||
|
|
||||||
Rijndael appears to be consistently a very good performer in
|
Rijndael appears to be consistently a very good performer in
|
||||||
both hardware and software across a wide range of computing
|
both hardware and software across a wide range of computing
|
||||||
environments regardless of its use in feedback or non-feedback
|
environments regardless of its use in feedback or non-feedback
|
||||||
modes. Its key setup time is excellent, and its key agility is
|
modes. Its key setup time is excellent, and its key agility is
|
||||||
good. Rijndael's very low memory requirements make it very well
|
good. Rijndael's very low memory requirements make it very well
|
||||||
suited for restricted-space environments, in which it also
|
suited for restricted-space environments, in which it also
|
||||||
demonstrates excellent performance. Rijndael's operations are
|
demonstrates excellent performance. Rijndael's operations are
|
||||||
among the easiest to defend against power and timing attacks.
|
among the easiest to defend against power and timing attacks.
|
||||||
|
|
||||||
The AES specifies three key sizes: 128, 192 and 256 bits
|
The AES specifies three key sizes: 128, 192 and 256 bits
|
||||||
|
|
||||||
See <http://csrc.nist.gov/encryption/aes/> for more information.
|
See <http://csrc.nist.gov/encryption/aes/> for more information.
|
||||||
|
|
||||||
|
config CRYPTO_ANUBIS
|
||||||
|
tristate "Anubis cipher algorithm"
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
help
|
||||||
|
Anubis cipher algorithm.
|
||||||
|
|
||||||
|
Anubis is a variable key length cipher which can use keys from
|
||||||
|
128 bits to 320 bits in length. It was evaluated as a entrant
|
||||||
|
in the NESSIE competition.
|
||||||
|
|
||||||
|
See also:
|
||||||
|
<https://www.cosic.esat.kuleuven.ac.be/nessie/reports/>
|
||||||
|
<http://planeta.terra.com.br/informatica/paulobarreto/AnubisPage.html>
|
||||||
|
|
||||||
|
config CRYPTO_ARC4
|
||||||
|
tristate "ARC4 cipher algorithm"
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
help
|
||||||
|
ARC4 cipher algorithm.
|
||||||
|
|
||||||
|
ARC4 is a stream cipher using keys ranging from 8 bits to 2048
|
||||||
|
bits in length. This algorithm is required for driver-based
|
||||||
|
WEP, but it should not be for other purposes because of the
|
||||||
|
weakness of the algorithm.
|
||||||
|
|
||||||
|
config CRYPTO_BLOWFISH
|
||||||
|
tristate "Blowfish cipher algorithm"
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
help
|
||||||
|
Blowfish cipher algorithm, by Bruce Schneier.
|
||||||
|
|
||||||
|
This is a variable key length cipher which can use keys from 32
|
||||||
|
bits to 448 bits in length. It's fast, simple and specifically
|
||||||
|
designed for use on "large microprocessors".
|
||||||
|
|
||||||
|
See also:
|
||||||
|
<http://www.schneier.com/blowfish.html>
|
||||||
|
|
||||||
|
config CRYPTO_CAMELLIA
|
||||||
|
tristate "Camellia cipher algorithms"
|
||||||
|
depends on CRYPTO
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
help
|
||||||
|
Camellia cipher algorithms module.
|
||||||
|
|
||||||
|
Camellia is a symmetric key block cipher developed jointly
|
||||||
|
at NTT and Mitsubishi Electric Corporation.
|
||||||
|
|
||||||
|
The Camellia specifies three key sizes: 128, 192 and 256 bits.
|
||||||
|
|
||||||
|
See also:
|
||||||
|
<https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
|
||||||
|
|
||||||
config CRYPTO_CAST5
|
config CRYPTO_CAST5
|
||||||
tristate "CAST5 (CAST-128) cipher algorithm"
|
tristate "CAST5 (CAST-128) cipher algorithm"
|
||||||
select CRYPTO_ALGAPI
|
select CRYPTO_ALGAPI
|
||||||
|
@ -419,33 +429,18 @@ config CRYPTO_CAST6
|
||||||
The CAST6 encryption algorithm (synonymous with CAST-256) is
|
The CAST6 encryption algorithm (synonymous with CAST-256) is
|
||||||
described in RFC2612.
|
described in RFC2612.
|
||||||
|
|
||||||
config CRYPTO_TEA
|
config CRYPTO_DES
|
||||||
tristate "TEA, XTEA and XETA cipher algorithms"
|
tristate "DES and Triple DES EDE cipher algorithms"
|
||||||
select CRYPTO_ALGAPI
|
select CRYPTO_ALGAPI
|
||||||
help
|
help
|
||||||
TEA cipher algorithm.
|
DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3).
|
||||||
|
|
||||||
Tiny Encryption Algorithm is a simple cipher that uses
|
config CRYPTO_FCRYPT
|
||||||
many rounds for security. It is very fast and uses
|
tristate "FCrypt cipher algorithm"
|
||||||
little memory.
|
|
||||||
|
|
||||||
Xtendend Tiny Encryption Algorithm is a modification to
|
|
||||||
the TEA algorithm to address a potential key weakness
|
|
||||||
in the TEA algorithm.
|
|
||||||
|
|
||||||
Xtendend Encryption Tiny Algorithm is a mis-implementation
|
|
||||||
of the XTEA algorithm for compatibility purposes.
|
|
||||||
|
|
||||||
config CRYPTO_ARC4
|
|
||||||
tristate "ARC4 cipher algorithm"
|
|
||||||
select CRYPTO_ALGAPI
|
select CRYPTO_ALGAPI
|
||||||
|
select CRYPTO_BLKCIPHER
|
||||||
help
|
help
|
||||||
ARC4 cipher algorithm.
|
FCrypt algorithm used by RxRPC.
|
||||||
|
|
||||||
ARC4 is a stream cipher using keys ranging from 8 bits to 2048
|
|
||||||
bits in length. This algorithm is required for driver-based
|
|
||||||
WEP, but it should not be for other purposes because of the
|
|
||||||
weakness of the algorithm.
|
|
||||||
|
|
||||||
config CRYPTO_KHAZAD
|
config CRYPTO_KHAZAD
|
||||||
tristate "Khazad cipher algorithm"
|
tristate "Khazad cipher algorithm"
|
||||||
|
@ -460,34 +455,6 @@ config CRYPTO_KHAZAD
|
||||||
See also:
|
See also:
|
||||||
<http://planeta.terra.com.br/informatica/paulobarreto/KhazadPage.html>
|
<http://planeta.terra.com.br/informatica/paulobarreto/KhazadPage.html>
|
||||||
|
|
||||||
config CRYPTO_ANUBIS
|
|
||||||
tristate "Anubis cipher algorithm"
|
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
help
|
|
||||||
Anubis cipher algorithm.
|
|
||||||
|
|
||||||
Anubis is a variable key length cipher which can use keys from
|
|
||||||
128 bits to 320 bits in length. It was evaluated as a entrant
|
|
||||||
in the NESSIE competition.
|
|
||||||
|
|
||||||
See also:
|
|
||||||
<https://www.cosic.esat.kuleuven.ac.be/nessie/reports/>
|
|
||||||
<http://planeta.terra.com.br/informatica/paulobarreto/AnubisPage.html>
|
|
||||||
|
|
||||||
config CRYPTO_SEED
|
|
||||||
tristate "SEED cipher algorithm"
|
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
help
|
|
||||||
SEED cipher algorithm (RFC4269).
|
|
||||||
|
|
||||||
SEED is a 128-bit symmetric key block cipher that has been
|
|
||||||
developed by KISA (Korea Information Security Agency) as a
|
|
||||||
national standard encryption algorithm of the Republic of Korea.
|
|
||||||
It is a 16 round block cipher with the key size of 128 bit.
|
|
||||||
|
|
||||||
See also:
|
|
||||||
<http://www.kisa.or.kr/kisa/seed/jsp/seed_eng.jsp>
|
|
||||||
|
|
||||||
config CRYPTO_SALSA20
|
config CRYPTO_SALSA20
|
||||||
tristate "Salsa20 stream cipher algorithm (EXPERIMENTAL)"
|
tristate "Salsa20 stream cipher algorithm (EXPERIMENTAL)"
|
||||||
depends on EXPERIMENTAL
|
depends on EXPERIMENTAL
|
||||||
|
@ -529,6 +496,105 @@ config CRYPTO_SALSA20_X86_64
|
||||||
The Salsa20 stream cipher algorithm is designed by Daniel J.
|
The Salsa20 stream cipher algorithm is designed by Daniel J.
|
||||||
Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
|
Bernstein <djb@cr.yp.to>. See <http://cr.yp.to/snuffle.html>
|
||||||
|
|
||||||
|
config CRYPTO_SEED
|
||||||
|
tristate "SEED cipher algorithm"
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
help
|
||||||
|
SEED cipher algorithm (RFC4269).
|
||||||
|
|
||||||
|
SEED is a 128-bit symmetric key block cipher that has been
|
||||||
|
developed by KISA (Korea Information Security Agency) as a
|
||||||
|
national standard encryption algorithm of the Republic of Korea.
|
||||||
|
It is a 16 round block cipher with the key size of 128 bit.
|
||||||
|
|
||||||
|
See also:
|
||||||
|
<http://www.kisa.or.kr/kisa/seed/jsp/seed_eng.jsp>
|
||||||
|
|
||||||
|
config CRYPTO_SERPENT
|
||||||
|
tristate "Serpent cipher algorithm"
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
help
|
||||||
|
Serpent cipher algorithm, by Anderson, Biham & Knudsen.
|
||||||
|
|
||||||
|
Keys are allowed to be from 0 to 256 bits in length, in steps
|
||||||
|
of 8 bits. Also includes the 'Tnepres' algorithm, a reversed
|
||||||
|
variant of Serpent for compatibility with old kerneli.org code.
|
||||||
|
|
||||||
|
See also:
|
||||||
|
<http://www.cl.cam.ac.uk/~rja14/serpent.html>
|
||||||
|
|
||||||
|
config CRYPTO_TEA
|
||||||
|
tristate "TEA, XTEA and XETA cipher algorithms"
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
help
|
||||||
|
TEA cipher algorithm.
|
||||||
|
|
||||||
|
Tiny Encryption Algorithm is a simple cipher that uses
|
||||||
|
many rounds for security. It is very fast and uses
|
||||||
|
little memory.
|
||||||
|
|
||||||
|
Xtendend Tiny Encryption Algorithm is a modification to
|
||||||
|
the TEA algorithm to address a potential key weakness
|
||||||
|
in the TEA algorithm.
|
||||||
|
|
||||||
|
Xtendend Encryption Tiny Algorithm is a mis-implementation
|
||||||
|
of the XTEA algorithm for compatibility purposes.
|
||||||
|
|
||||||
|
config CRYPTO_TWOFISH
|
||||||
|
tristate "Twofish cipher algorithm"
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
select CRYPTO_TWOFISH_COMMON
|
||||||
|
help
|
||||||
|
Twofish cipher algorithm.
|
||||||
|
|
||||||
|
Twofish was submitted as an AES (Advanced Encryption Standard)
|
||||||
|
candidate cipher by researchers at CounterPane Systems. It is a
|
||||||
|
16 round block cipher supporting key sizes of 128, 192, and 256
|
||||||
|
bits.
|
||||||
|
|
||||||
|
See also:
|
||||||
|
<http://www.schneier.com/twofish.html>
|
||||||
|
|
||||||
|
config CRYPTO_TWOFISH_COMMON
|
||||||
|
tristate
|
||||||
|
help
|
||||||
|
Common parts of the Twofish cipher algorithm shared by the
|
||||||
|
generic c and the assembler implementations.
|
||||||
|
|
||||||
|
config CRYPTO_TWOFISH_586
|
||||||
|
tristate "Twofish cipher algorithms (i586)"
|
||||||
|
depends on (X86 || UML_X86) && !64BIT
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
select CRYPTO_TWOFISH_COMMON
|
||||||
|
help
|
||||||
|
Twofish cipher algorithm.
|
||||||
|
|
||||||
|
Twofish was submitted as an AES (Advanced Encryption Standard)
|
||||||
|
candidate cipher by researchers at CounterPane Systems. It is a
|
||||||
|
16 round block cipher supporting key sizes of 128, 192, and 256
|
||||||
|
bits.
|
||||||
|
|
||||||
|
See also:
|
||||||
|
<http://www.schneier.com/twofish.html>
|
||||||
|
|
||||||
|
config CRYPTO_TWOFISH_X86_64
|
||||||
|
tristate "Twofish cipher algorithm (x86_64)"
|
||||||
|
depends on (X86 || UML_X86) && 64BIT
|
||||||
|
select CRYPTO_ALGAPI
|
||||||
|
select CRYPTO_TWOFISH_COMMON
|
||||||
|
help
|
||||||
|
Twofish cipher algorithm (x86_64).
|
||||||
|
|
||||||
|
Twofish was submitted as an AES (Advanced Encryption Standard)
|
||||||
|
candidate cipher by researchers at CounterPane Systems. It is a
|
||||||
|
16 round block cipher supporting key sizes of 128, 192, and 256
|
||||||
|
bits.
|
||||||
|
|
||||||
|
See also:
|
||||||
|
<http://www.schneier.com/twofish.html>
|
||||||
|
|
||||||
|
comment "Compression"
|
||||||
|
|
||||||
config CRYPTO_DEFLATE
|
config CRYPTO_DEFLATE
|
||||||
tristate "Deflate compression algorithm"
|
tristate "Deflate compression algorithm"
|
||||||
select CRYPTO_ALGAPI
|
select CRYPTO_ALGAPI
|
||||||
|
@ -537,62 +603,9 @@ config CRYPTO_DEFLATE
|
||||||
help
|
help
|
||||||
This is the Deflate algorithm (RFC1951), specified for use in
|
This is the Deflate algorithm (RFC1951), specified for use in
|
||||||
IPSec with the IPCOMP protocol (RFC3173, RFC2394).
|
IPSec with the IPCOMP protocol (RFC3173, RFC2394).
|
||||||
|
|
||||||
You will most probably want this if using IPSec.
|
You will most probably want this if using IPSec.
|
||||||
|
|
||||||
config CRYPTO_MICHAEL_MIC
|
|
||||||
tristate "Michael MIC keyed digest algorithm"
|
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
help
|
|
||||||
Michael MIC is used for message integrity protection in TKIP
|
|
||||||
(IEEE 802.11i). This algorithm is required for TKIP, but it
|
|
||||||
should not be used for other purposes because of the weakness
|
|
||||||
of the algorithm.
|
|
||||||
|
|
||||||
config CRYPTO_CRC32C
|
|
||||||
tristate "CRC32c CRC algorithm"
|
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
select LIBCRC32C
|
|
||||||
help
|
|
||||||
Castagnoli, et al Cyclic Redundancy-Check Algorithm. Used
|
|
||||||
by iSCSI for header and data digests and by others.
|
|
||||||
See Castagnoli93. This implementation uses lib/libcrc32c.
|
|
||||||
Module will be crc32c.
|
|
||||||
|
|
||||||
config CRYPTO_CAMELLIA
|
|
||||||
tristate "Camellia cipher algorithms"
|
|
||||||
depends on CRYPTO
|
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
help
|
|
||||||
Camellia cipher algorithms module.
|
|
||||||
|
|
||||||
Camellia is a symmetric key block cipher developed jointly
|
|
||||||
at NTT and Mitsubishi Electric Corporation.
|
|
||||||
|
|
||||||
The Camellia specifies three key sizes: 128, 192 and 256 bits.
|
|
||||||
|
|
||||||
See also:
|
|
||||||
<https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
|
|
||||||
|
|
||||||
config CRYPTO_TEST
|
|
||||||
tristate "Testing module"
|
|
||||||
depends on m
|
|
||||||
select CRYPTO_ALGAPI
|
|
||||||
select CRYPTO_AEAD
|
|
||||||
select CRYPTO_BLKCIPHER
|
|
||||||
help
|
|
||||||
Quick & dirty crypto test module.
|
|
||||||
|
|
||||||
config CRYPTO_AUTHENC
|
|
||||||
tristate "Authenc support"
|
|
||||||
select CRYPTO_AEAD
|
|
||||||
select CRYPTO_BLKCIPHER
|
|
||||||
select CRYPTO_MANAGER
|
|
||||||
select CRYPTO_HASH
|
|
||||||
help
|
|
||||||
Authenc: Combined mode wrapper for IPsec.
|
|
||||||
This is required for IPSec.
|
|
||||||
|
|
||||||
config CRYPTO_LZO
|
config CRYPTO_LZO
|
||||||
tristate "LZO compression algorithm"
|
tristate "LZO compression algorithm"
|
||||||
select CRYPTO_ALGAPI
|
select CRYPTO_ALGAPI
|
||||||
|
|
Loading…
Add table
Reference in a new issue