~ [ source navigation ] ~ [ diff markup ] ~ [ identifier search ] ~

TOMOYO Linux Cross Reference
Linux/crypto/asymmetric_keys/Kconfig

Version: ~ [ linux-6.12-rc7 ] ~ [ linux-6.11.7 ] ~ [ linux-6.10.14 ] ~ [ linux-6.9.12 ] ~ [ linux-6.8.12 ] ~ [ linux-6.7.12 ] ~ [ linux-6.6.60 ] ~ [ linux-6.5.13 ] ~ [ linux-6.4.16 ] ~ [ linux-6.3.13 ] ~ [ linux-6.2.16 ] ~ [ linux-6.1.116 ] ~ [ linux-6.0.19 ] ~ [ linux-5.19.17 ] ~ [ linux-5.18.19 ] ~ [ linux-5.17.15 ] ~ [ linux-5.16.20 ] ~ [ linux-5.15.171 ] ~ [ linux-5.14.21 ] ~ [ linux-5.13.19 ] ~ [ linux-5.12.19 ] ~ [ linux-5.11.22 ] ~ [ linux-5.10.229 ] ~ [ linux-5.9.16 ] ~ [ linux-5.8.18 ] ~ [ linux-5.7.19 ] ~ [ linux-5.6.19 ] ~ [ linux-5.5.19 ] ~ [ linux-5.4.285 ] ~ [ linux-5.3.18 ] ~ [ linux-5.2.21 ] ~ [ linux-5.1.21 ] ~ [ linux-5.0.21 ] ~ [ linux-4.20.17 ] ~ [ linux-4.19.323 ] ~ [ linux-4.18.20 ] ~ [ linux-4.17.19 ] ~ [ linux-4.16.18 ] ~ [ linux-4.15.18 ] ~ [ linux-4.14.336 ] ~ [ linux-4.13.16 ] ~ [ linux-4.12.14 ] ~ [ linux-4.11.12 ] ~ [ linux-4.10.17 ] ~ [ linux-4.9.337 ] ~ [ linux-4.4.302 ] ~ [ linux-3.10.108 ] ~ [ linux-2.6.32.71 ] ~ [ linux-2.6.0 ] ~ [ linux-2.4.37.11 ] ~ [ unix-v6-master ] ~ [ ccs-tools-1.8.12 ] ~ [ policy-sample ] ~
Architecture: ~ [ i386 ] ~ [ alpha ] ~ [ m68k ] ~ [ mips ] ~ [ ppc ] ~ [ sparc ] ~ [ sparc64 ] ~

Diff markup

Differences between /crypto/asymmetric_keys/Kconfig (Version linux-6.12-rc7) and /crypto/asymmetric_keys/Kconfig (Version linux-4.16.18)


  1 # SPDX-License-Identifier: GPL-2.0                  1 # SPDX-License-Identifier: GPL-2.0
  2 menuconfig ASYMMETRIC_KEY_TYPE                      2 menuconfig ASYMMETRIC_KEY_TYPE
  3         bool "Asymmetric (public-key cryptogra      3         bool "Asymmetric (public-key cryptographic) key type"
  4         depends on KEYS                             4         depends on KEYS
  5         help                                        5         help
  6           This option provides support for a k      6           This option provides support for a key type that holds the data for
  7           the asymmetric keys used for public       7           the asymmetric keys used for public key cryptographic operations such
  8           as encryption, decryption, signature      8           as encryption, decryption, signature generation and signature
  9           verification.                             9           verification.
 10                                                    10 
 11 if ASYMMETRIC_KEY_TYPE                             11 if ASYMMETRIC_KEY_TYPE
 12                                                    12 
 13 config ASYMMETRIC_PUBLIC_KEY_SUBTYPE               13 config ASYMMETRIC_PUBLIC_KEY_SUBTYPE
 14         tristate "Asymmetric public-key crypto     14         tristate "Asymmetric public-key crypto algorithm subtype"
 15         select MPILIB                              15         select MPILIB
 16         select CRYPTO_HASH_INFO                    16         select CRYPTO_HASH_INFO
 17         select CRYPTO_AKCIPHER                     17         select CRYPTO_AKCIPHER
 18         select CRYPTO_SIG                      << 
 19         select CRYPTO_HASH                     << 
 20         help                                       18         help
 21           This option provides support for asy     19           This option provides support for asymmetric public key type handling.
 22           If signature generation and/or verif     20           If signature generation and/or verification are to be used,
 23           appropriate hash algorithms (such as     21           appropriate hash algorithms (such as SHA-1) must be available.
 24           ENOPKG will be reported if the requi     22           ENOPKG will be reported if the requisite algorithm is unavailable.
 25                                                    23 
 26 config X509_CERTIFICATE_PARSER                     24 config X509_CERTIFICATE_PARSER
 27         tristate "X.509 certificate parser"        25         tristate "X.509 certificate parser"
 28         depends on ASYMMETRIC_PUBLIC_KEY_SUBTY     26         depends on ASYMMETRIC_PUBLIC_KEY_SUBTYPE
 29         select ASN1                                27         select ASN1
 30         select OID_REGISTRY                        28         select OID_REGISTRY
 31         help                                       29         help
 32           This option provides support for par     30           This option provides support for parsing X.509 format blobs for key
 33           data and provides the ability to ins     31           data and provides the ability to instantiate a crypto key from a
 34           public key packet found inside the c     32           public key packet found inside the certificate.
 35                                                    33 
 36 config PKCS8_PRIVATE_KEY_PARSER                << 
 37         tristate "PKCS#8 private key parser"   << 
 38         depends on ASYMMETRIC_PUBLIC_KEY_SUBTY << 
 39         select ASN1                            << 
 40         select OID_REGISTRY                    << 
 41         help                                   << 
 42           This option provides support for par << 
 43           private key data and provides the ab << 
 44           from that data.                      << 
 45                                                << 
 46 config PKCS7_MESSAGE_PARSER                        34 config PKCS7_MESSAGE_PARSER
 47         tristate "PKCS#7 message parser"           35         tristate "PKCS#7 message parser"
 48         depends on X509_CERTIFICATE_PARSER         36         depends on X509_CERTIFICATE_PARSER
 49         select CRYPTO_HASH                     << 
 50         select ASN1                                37         select ASN1
 51         select OID_REGISTRY                        38         select OID_REGISTRY
 52         help                                       39         help
 53           This option provides support for par     40           This option provides support for parsing PKCS#7 format messages for
 54           signature data and provides the abil     41           signature data and provides the ability to verify the signature.
 55                                                    42 
 56 config PKCS7_TEST_KEY                              43 config PKCS7_TEST_KEY
 57         tristate "PKCS#7 testing key type"         44         tristate "PKCS#7 testing key type"
 58         depends on SYSTEM_DATA_VERIFICATION        45         depends on SYSTEM_DATA_VERIFICATION
 59         help                                       46         help
 60           This option provides a type of key t     47           This option provides a type of key that can be loaded up from a
 61           PKCS#7 message - provided the messag     48           PKCS#7 message - provided the message is signed by a trusted key.  If
 62           it is, the PKCS#7 wrapper is discard     49           it is, the PKCS#7 wrapper is discarded and reading the key returns
 63           just the payload.  If it isn't, addi     50           just the payload.  If it isn't, adding the key will fail with an
 64           error.                                   51           error.
 65                                                    52 
 66           This is intended for testing the PKC     53           This is intended for testing the PKCS#7 parser.
 67                                                    54 
 68 config SIGNED_PE_FILE_VERIFICATION                 55 config SIGNED_PE_FILE_VERIFICATION
 69         bool "Support for PE file signature ve     56         bool "Support for PE file signature verification"
 70         depends on PKCS7_MESSAGE_PARSER=y          57         depends on PKCS7_MESSAGE_PARSER=y
 71         depends on SYSTEM_DATA_VERIFICATION        58         depends on SYSTEM_DATA_VERIFICATION
 72         select CRYPTO_HASH                     << 
 73         select ASN1                                59         select ASN1
 74         select OID_REGISTRY                        60         select OID_REGISTRY
 75         help                                       61         help
 76           This option provides support for ver     62           This option provides support for verifying the signature(s) on a
 77           signed PE binary.                        63           signed PE binary.
 78                                                << 
 79 config FIPS_SIGNATURE_SELFTEST                 << 
 80         tristate "Run FIPS selftests on the X. << 
 81         help                                   << 
 82           This option causes some selftests to << 
 83           verification code, using some built  << 
 84           for FIPS.                            << 
 85         depends on KEYS                        << 
 86         depends on ASYMMETRIC_KEY_TYPE         << 
 87         depends on PKCS7_MESSAGE_PARSER=X509_C << 
 88         depends on X509_CERTIFICATE_PARSER     << 
 89         depends on CRYPTO_RSA                  << 
 90         depends on CRYPTO_SHA256               << 
 91                                                << 
 92 config FIPS_SIGNATURE_SELFTEST_RSA             << 
 93         bool                                   << 
 94         default y                              << 
 95         depends on FIPS_SIGNATURE_SELFTEST     << 
 96         depends on CRYPTO_SHA256=y || CRYPTO_S << 
 97         depends on CRYPTO_RSA=y || CRYPTO_RSA= << 
 98                                                << 
 99 config FIPS_SIGNATURE_SELFTEST_ECDSA           << 
100         bool                                   << 
101         default y                              << 
102         depends on FIPS_SIGNATURE_SELFTEST     << 
103         depends on CRYPTO_SHA256=y || CRYPTO_S << 
104         depends on CRYPTO_ECDSA=y || CRYPTO_EC << 
105                                                    64 
106 endif # ASYMMETRIC_KEY_TYPE                        65 endif # ASYMMETRIC_KEY_TYPE
                                                      

~ [ source navigation ] ~ [ diff markup ] ~ [ identifier search ] ~

kernel.org | git.kernel.org | LWN.net | Project Home | SVN repository | Mail admin

Linux® is a registered trademark of Linus Torvalds in the United States and other countries.
TOMOYO® is a registered trademark of NTT DATA CORPORATION.

sflogo.php