Initial import

1 files changed, 536 insertions, 0 deletions

diff --git a/target/linux/config/Config.in.crypto b/target/linux/config/Config.in.crypto
new file mode 100644
index 000000000..a2d88655d
--- /dev/null
+++ b/target/linux/config/Config.in.crypto
@@ -0,0 +1,536 @@
+menu "Crypto kernel modules"
+config ADK_KERNEL_CRYPTO
+	boolean
+	default n
+
+config ADK_KERNEL_CRYPTO_HW
+	boolean
+	default n
+
+config ADK_KERNEL_OCF_FIPS
+	boolean
+	default n
+
+config ADK_KERNEL_OCF_CRYPTODEV
+	boolean
+	default n
+
+config ADK_KERNEL_OCF_OCF
+	boolean
+	default n
+	select ADK_KERNEL_CRYPTO
+	select ADK_KERNEL_OCF_FIPS
+	select ADK_KERNEL_OCF_CRYPTODEV
+
+comment "Hardware cryptography"
+
+menu "Hardware crypto devices"
+
+config ADK_KPACKAGE_KMOD_CRYPTO_DEV_GEODE
+	prompt "Support for the Geode LX/GX AES engine"
+	tristate
+	select ADK_KERNEL_CRYPTO_HW
+	select ADK_KERNEL_CRYPTO
+	depends on ADK_LINUX_X86_ALIX1C
+	help
+	  Say 'Y' here to use the AMD Geode LX processor on-board AES
+	  engine for the CryptoAPI AES algorithm.
+
+config ADK_KPACKAGE_KMOD_CRYPTO_DEV_HIFN_795X
+	prompt "Driver HIFN 795x crypto accelerator chips"
+	tristate
+	select ADK_KERNEL_CRYPTO_HW
+	select ADK_KERNEL_CRYPTO
+	select ADK_KPACKAGE_KMOD_CRYPTO_BLKCIPHER
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	select ADK_KPACKAGE_KMOD_CRYPTO_DES
+	help
+	  This option allows you to have support for HIFN 795x crypto adapters.
+
+endmenu
+
+menu "OpenBSD Cryptographic framework"
+depends on !ADK_LINUX_CRIS_FOXBOARD
+
+config ADK_KPACKAGE_KMOD_OCF_HIFN
+	prompt "kmod-cryptodev-hifn................ hifn engine"
+	tristate
+	default n
+	select ADK_KERNEL_OCF_OCF
+	help
+	  Engine for cryptodev that uses Hifn based accelerators
+	  such as the 7951, 7955, 7956, 7751, 7811.
+
+config ADK_KPACKAGE_KMOD_OCF_SAFE
+	prompt "kmod-cryptodev-safe................ safenet engine"
+	tristate
+	default n
+	select ADK_KERNEL_OCF_OCF
+	help
+	  Engine for cryptodev that uses a number of the safenet Excel
+	  crypto accelerators. Currently for the 1141 and 1741.
+
+config ADK_KPACKAGE_KMOD_OCF_IXP4XX
+	prompt "kmod-cryptodev-ixp4xx.............. IXP4xx engine"
+	tristate
+	default n
+	select ADK_KERNEL_OCF_OCF
+	depends on ADK_arm
+	help
+	  Engine for cryptodev that uses XScale IXP4xx.
+	  Requires the Intel Access library.
+
+config ADK_KPACKAGE_KMOD_OCF_TALITOS
+	prompt "kmod-cryptodev-talitos............. talitos engine"
+	tristate
+	default n
+	select ADK_KERNEL_OCF_OCF
+	depends on ADK_powerpc || ADK_m68k || ADK_ppc
+	help
+	  Engine for cryptodev that uses Freescale's security engine (SEC/talitos).
+
+endmenu
+
+comment "Software cryptography"
+
+menu "Crypto core / Block and Hash modes"
+config ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	prompt "kmod-crypto-algapi.................. Crypto algorithm API"
+	tristate
+	default n
+	select ADK_KERNEL_CRYPTO
+	help
+
+config ADK_KPACKAGE_KMOD_CRYPTO_AEAD
+	prompt "kmod-crypto-aead.................... Crypto algorithm AEAD"
+	tristate
+	default n
+	select ADK_KERNEL_CRYPTO
+	help
+
+config ADK_KPACKAGE_KMOD_CRYPTO_MANAGER
+	prompt "kmod-crypto-manager.................. Crypto algorithm manager"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_HASH
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	select ADK_KPACKAGE_KMOD_CRYPTO_AEAD
+	help
+
+config ADK_KPACKAGE_KMOD_CRYPTO_HASH
+	prompt "kmod-crypto-hash..................... Crypto hash support"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	help
+
+config ADK_KPACKAGE_KMOD_CRYPTO_BLKCIPHER
+	prompt "kmod-crypto-blkcipher................ Crypto block cipher support"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	help
+
+config ADK_KPACKAGE_KMOD_CRYPTO_CBC
+	prompt "kmod-crypto-cbc...................... CBC support"
+	tristate
+	select ADK_KPACKAGE_KMOD_CRYPTO_BLKCIPHER
+	select ADK_KPACKAGE_KMOD_CRYPTO_MANAGER
+	default n
+	help
+	  CBC: Cipher Block Chaining mode
+	  This block cipher algorithm is required for IPSec.
+
+config ADK_KPACKAGE_KMOD_CRYPTO_ECB
+	prompt "kmod-crypto-ecb...................... ECB support"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_BLKCIPHER
+	select ADK_KPACKAGE_KMOD_CRYPTO_MANAGER
+	help
+	  ECB: Electronic CodeBook mode
+	  This is the simplest block cipher algorithm.  It simply encrypts
+	  the input block by block.
+
+config ADK_KPACKAGE_KMOD_CRYPTO_HMAC
+	prompt "kmod-crypto-hmac..................... HMAC support"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_HASH
+	select ADK_KPACKAGE_KMOD_CRYPTO_MANAGER
+	help
+	  HMAC: Keyed-Hashing for Message Authentication (RFC2104).
+	  This is required for IPSec.
+
+endmenu
+
+menu "Digest algorithms"
+
+config ADK_KPACKAGE_KMOD_CRYPTO_MD4
+	prompt "kmod-crypto-md4...................... MD4 digest algorithm"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	select ADK_KPACKAGE_KMOD_CRYPTO_HASH
+	help
+	  MD4 message digest algorithm (RFC1320).
+
+config ADK_KPACKAGE_KMOD_CRYPTO_MD5
+	prompt "kmod-crypto-md5...................... MD5 digest algorithm"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	select ADK_KPACKAGE_KMOD_CRYPTO_HASH
+	help
+	  MD5 message digest algorithm (RFC1321).
+
+config ADK_KPACKAGE_KMOD_CRYPTO_SHA1
+	prompt "kmod-crypto-sha1..................... SHA1 digest algorithm"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	select ADK_KPACKAGE_KMOD_CRYPTO_HASH
+	help
+	  SHA-1 secure hash standard (FIPS 180-1/DFIPS 180-2).
+
+config ADK_KPACKAGE_KMOD_CRYPTO_SHA256
+	prompt "kmod-crypto-sha256................... SHA256 digest algorithm"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	select ADK_KPACKAGE_KMOD_CRYPTO_HASH
+	help
+	  SHA256 secure hash standard (DFIPS 180-2).
+	  
+	  This version of SHA implements a 256 bit hash with 128 bits of
+	  security against collision attacks.
+
+config ADK_KPACKAGE_KMOD_CRYPTO_SHA512
+	prompt "kmod-crypto-sha512................... SHA512 digest algorithm"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	select ADK_KPACKAGE_KMOD_CRYPTO_HASH
+	help
+	  SHA512 secure hash standard (DFIPS 180-2).
+	  
+	  This version of SHA implements a 512 bit hash with 256 bits of
+	  security against collision attacks.
+
+	  This code also includes SHA-384, a 384 bit hash with 192 bits
+	  of security against collision attacks.
+
+config ADK_KPACKAGE_KMOD_CRYPTO_WP512
+	prompt "kmod-crypto-whirlpool................ Whirlpool digest algorithms"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	select ADK_KPACKAGE_KMOD_CRYPTO_HASH
+	help
+	  Whirlpool hash algorithm 512, 384 and 256-bit hashes
+
+	  Whirlpool-512 is part of the NESSIE cryptographic primitives.
+	  Whirlpool will be part of the ISO/IEC 10118-3:2003(E) standard
+
+	  See also:
+	  <http://planeta.terra.com.br/informatica/paulobarreto/WhirlpoolPage.html>
+
+config ADK_KPACKAGE_KMOD_CRYPTO_TGR192
+	prompt "kmod-crypto-tiger.................... Tiger digest algorithms"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	select ADK_KPACKAGE_KMOD_CRYPTO_HASH
+	help
+	  Tiger hash algorithm 192, 160 and 128-bit hashes
+
+	  Tiger is a hash function optimized for 64-bit processors while
+	  still having decent performance on 32-bit processors.
+	  Tiger was developed by Ross Anderson and Eli Biham.
+
+	  See also:
+	  <http://www.cs.technion.ac.il/~biham/Reports/Tiger/>.
+
+endmenu
+
+menu "Cipher algoritms"
+
+config ADK_KPACKAGE_KMOD_CRYPTO_AES
+	prompt "kmod-crypto-aes...................... AES cipher algorithms"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	help
+	  AES cipher algorithms (FIPS-197). AES uses the Rijndael 
+	  algorithm.
+
+	  Rijndael appears to be consistently a very good performer in
+	  both hardware and software across a wide range of computing 
+	  environments regardless of its use in feedback or non-feedback 
+	  modes. Its key setup time is excellent, and its key agility is 
+	  good. Rijndael's very low memory requirements make it very well 
+	  suited for restricted-space environments, in which it also 
+	  demonstrates excellent performance. Rijndael's operations are 
+	  among the easiest to defend against power and timing attacks.	
+
+	  The AES specifies three key sizes: 128, 192 and 256 bits	  
+
+	  See <http://csrc.nist.gov/CryptoToolkit/aes/> for more information.
+
+config ADK_KPACKAGE_KMOD_CRYPTO_AES_586
+	prompt "kmod-crypto-aes-i586................. AES cipher algorithms (i586)"
+	tristate
+	default n
+	depends on ADK_x86
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	help
+	  AES cipher algorithms (FIPS-197). AES uses the Rijndael 
+	  algorithm.
+
+	  Rijndael appears to be consistently a very good performer in
+	  both hardware and software across a wide range of computing 
+	  environments regardless of its use in feedback or non-feedback 
+	  modes. Its key setup time is excellent, and its key agility is 
+	  good. Rijndael's very low memory requirements make it very well 
+	  suited for restricted-space environments, in which it also 
+	  demonstrates excellent performance. Rijndael's operations are 
+	  among the easiest to defend against power and timing attacks.	
+
+	  The AES specifies three key sizes: 128, 192 and 256 bits	  
+
+	  See <http://csrc.nist.gov/CryptoToolkit/aes/> for more information.
+
+config ADK_KPACKAGE_KMOD_CRYPTO_ANUBIS
+	prompt "kmod-crypto-anubis................... Anubis cipher algorithm"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	help
+	  Anubis cipher algorithm.
+
+	  Anubis is a variable key length cipher which can use keys from 
+	  128 bits to 320 bits in length.  It was evaluated as a entrant
+	  in the NESSIE competition.
+	  
+	  See also:
+	  <https://www.cosic.esat.kuleuven.ac.be/nessie/reports/>
+	  <http://planeta.terra.com.br/informatica/paulobarreto/AnubisPage.html>
+
+config ADK_KPACKAGE_KMOD_CRYPTO_ARC4
+	prompt "kmod-crypto-arc4..................... ARC4 cipher algorithm"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	help
+	  ARC4 cipher algorithm.
+
+	  ARC4 is a stream cipher using keys ranging from 8 bits to 2048
+	  bits in length.  This algorithm is required for driver-based 
+	  WEP, but it should not be for other purposes because of the
+	  weakness of the algorithm.
+
+
+config ADK_KPACKAGE_KMOD_CRYPTO_BLOWFISH
+	prompt "kmod-crypto-blowfish................. Blowfish cipher algorithm"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	help
+	  Blowfish cipher algorithm, by Bruce Schneier.
+	  
+	  This is a variable key length cipher which can use keys from 32
+	  bits to 448 bits in length.  It's fast, simple and specifically
+	  designed for use on "large microprocessors".
+	  
+	  See also:
+	  <http://www.schneier.com/blowfish.html>
+
+config ADK_KPACKAGE_KMOD_CRYPTO_CAMELLIA
+	prompt "kmod-crypto-camellia................. Camellia cipher algorithms"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	help
+	  Camellia cipher algorithms module.
+
+	  Camellia is a symmetric key block cipher developed jointly
+	  at NTT and Mitsubishi Electric Corporation.
+
+	  The Camellia specifies three key sizes: 128, 192 and 256 bits.
+
+	  See also:
+	  <https://info.isl.ntt.co.jp/crypt/eng/camellia/index_s.html>
+
+config ADK_KPACKAGE_KMOD_CRYPTO_CAST5
+	prompt "kmod-crypto-cast5.................... CAST5 (CAST-128) cipher algorithm"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	help
+	  The CAST5 encryption algorithm (synonymous with CAST-128) is
+	  described in RFC2144.
+
+config ADK_KPACKAGE_KMOD_CRYPTO_CAST6
+	prompt "kmod-crypto-cast6.................... CAST6 (CATS-256) cipher algorithm"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	help
+	  The CAST6 encryption algorithm (synonymous with CAST-256) is
+	  described in RFC2612.
+
+config ADK_KPACKAGE_KMOD_CRYPTO_DES
+	prompt "kmod-crypto-des...................... DES and Triple DES EDE cipher algorithms"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	help
+	  DES cipher algorithm (FIPS 46-2), and Triple DES EDE (FIPS 46-3).
+
+config ADK_KPACKAGE_KMOD_CRYPTO_FCRYPT
+	prompt "kmod-crypto-fcrypt................... FCrypt cipher algorithms"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	help
+	  FCrypt algorithm used by RxRPC.
+
+config ADK_KPACKAGE_KMOD_CRYPTO_KHAZAD
+	prompt "kmod-crypto-khazad................... Khazad cipher algorithm"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	help
+	  Khazad cipher algorithm.
+
+	  Khazad was a finalist in the initial NESSIE competition.  It is
+	  an algorithm optimized for 64-bit processors with good performance
+	  on 32-bit processors.  Khazad uses an 128 bit key size.
+
+	  See also:
+	  <http://planeta.terra.com.br/informatica/paulobarreto/KhazadPage.html>
+
+config ADK_KPACKAGE_KMOD_CRYPTO_SERPENT
+	prompt "kmod-crypto-serpent.................. Serpent cipher algorithm"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	help
+	  Serpent cipher algorithm, by Anderson, Biham & Knudsen.
+
+	  Keys are allowed to be from 0 to 256 bits in length, in steps
+	  of 8 bits.  Also includes the 'Tnepres' algorithm, a reversed
+	  variant of Serpent for compatibility with old kerneli code.
+
+	  See also:
+	  <http://www.cl.cam.ac.uk/~rja14/serpent.html>
+
+config ADK_KPACKAGE_KMOD_CRYPTO_TEA
+	prompt "kmod-crypto-tea...................... TEA, XTEA and XETA cipher algorithms"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	help
+	  TEA cipher algorithm.
+
+	  Tiny Encryption Algorithm is a simple cipher that uses
+	  many rounds for security.  It is very fast and uses
+	  little memory.
+
+	  Xtendend Tiny Encryption Algorithm is a modification to
+	  the TEA algorithm to address a potential key weakness
+	  in the TEA algorithm.
+
+	  Xtendend Encryption Tiny Algorithm is a mis-implementation 
+	  of the XTEA algorithm for compatibility purposes.
+
+config ADK_KPACKAGE_KMOD_CRYPTO_TWOFISH
+	prompt "kmod-crypto-twofish.................. Twofish cipher algorithm"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	help
+	  Twofish cipher algorithm.
+	  
+	  Twofish was submitted as an AES (Advanced Encryption Standard)
+	  candidate cipher by researchers at CounterPane Systems.  It is a
+	  16 round block cipher supporting key sizes of 128, 192, and 256
+	  bits.
+	  
+	  See also:
+	  <http://www.schneier.com/twofish.html>
+
+config ADK_KPACKAGE_KMOD_CRYPTO_TWOFISH_586
+	prompt "kmod-crypto-twofish-586.............. Twofish cipher algorithm (i586)"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	depends on ADK_x86
+	help
+	  Twofish cipher algorithm.
+	  
+	  Twofish was submitted as an AES (Advanced Encryption Standard)
+	  candidate cipher by researchers at CounterPane Systems.  It is a
+	  16 round block cipher supporting key sizes of 128, 192, and 256
+	  bits.
+	  
+	  See also:
+	  <http://www.schneier.com/twofish.html>
+
+config ADK_KPACKAGE_KMOD_CRYPTO_NULL
+	prompt "kmod-crypto-null..................... Null algorithms"
+	tristate
+	select ADK_KPACKAGE_KMOD_CRYPTO_BLKCIPHER
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	default n
+	help
+	  These are 'Null' algorithms, used by IPsec, which do nothing.
+
+endmenu
+
+menu "Compression"
+
+config ADK_KPACKAGE_KMOD_CRYPTO_DEFLATE
+	prompt "kmod-crypto-deflate.................. Deflate compression algorithm"
+	tristate
+	default n
+	select ADK_KERNEL_CRYPTO
+	help
+	  This is the Deflate algorithm (RFC1951), specified for use in
+	  IPSec with the IPCOMP protocol (RFC3173, RFC2394).
+	  
+	  You will most probably want this if using IPSec.
+
+config ADK_KPACKAGE_KMOD_CRYPTO_LZO
+	prompt "kmod-crypto-lzo...................... LZO compression algorithm"
+	tristate
+	default n
+	select ADK_KERNEL_CRYPTO
+	help
+
+config ADK_KPACKAGE_KMOD_CRYPTO_MICHAEL_MIC
+	prompt "kmod-crypto-michael-mic.............. Michael MIC keyed digest algorithm"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_ALGAPI
+	help
+	  Michael MIC is used for message integrity protection in TKIP
+	  (IEEE 802.11i). This algorithm is required for TKIP, but it
+	  should not be used for other purposes because of the weakness
+	  of the algorithm.
+
+config ADK_KPACKAGE_KMOD_CRYPTO_CRC32C
+	prompt "kmod-crypto-crc32c................... CRC32c CRC algorithm"
+	tristate
+	default n
+	select ADK_KPACKAGE_KMOD_CRYPTO_HASH
+	select ADK_KPACKAGE_KMOD_LIBCRC32C
+	help
+	  Castagnoli, et al Cyclic Redundancy-Check Algorithm.  Used
+	  by iSCSI for header and data digests and by others.
+	  See Castagnoli93.  This implementation uses lib/libcrc32c.
+          Module will be crc32c.
+
+endmenu
+
+endmenu