Linux/crypto/asymmetric

Version: ~ [ linux-6.12-rc7 ] ~ [ linux-6.11.7 ] ~ [ linux-6.10.14 ] ~ [ linux-6.9.12 ] ~ [ linux-6.8.12 ] ~ [ linux-6.7.12 ] ~ [ linux-6.6.60 ] ~ [ linux-6.5.13 ] ~ [ linux-6.4.16 ] ~ [ linux-6.3.13 ] ~ [ linux-6.2.16 ] ~ [ linux-6.1.116 ] ~ [ linux-6.0.19 ] ~ [ linux-5.19.17 ] ~ [ linux-5.18.19 ] ~ [ linux-5.17.15 ] ~ [ linux-5.16.20 ] ~ [ linux-5.15.171 ] ~ [ linux-5.14.21 ] ~ [ linux-5.13.19 ] ~ [ linux-5.12.19 ] ~ [ linux-5.11.22 ] ~ [ linux-5.10.229 ] ~ [ linux-5.9.16 ] ~ [ linux-5.8.18 ] ~ [ linux-5.7.19 ] ~ [ linux-5.6.19 ] ~ [ linux-5.5.19 ] ~ [ linux-5.4.285 ] ~ [ linux-5.3.18 ] ~ [ linux-5.2.21 ] ~ [ linux-5.1.21 ] ~ [ linux-5.0.21 ] ~ [ linux-4.20.17 ] ~ [ linux-4.19.323 ] ~ [ linux-4.18.20 ] ~ [ linux-4.17.19 ] ~ [ linux-4.16.18 ] ~ [ linux-4.15.18 ] ~ [ linux-4.14.336 ] ~ [ linux-4.13.16 ] ~ [ linux-4.12.14 ] ~ [ linux-4.11.12 ] ~ [ linux-4.10.17 ] ~ [ linux-4.9.337 ] ~ [ linux-4.4.302 ] ~ [ linux-3.10.108 ] ~ [ linux-2.6.32.71 ] ~ [ linux-2.6.0 ] ~ [ linux-2.4.37.11 ] ~ [ unix-v6-master ] ~ [ ccs-tools-1.8.12 ] ~ [ policy-sample ] ~
Architecture: ~ [ i386 ] ~ [ alpha ] ~ [ m68k ] ~ [ mips ] ~ [ ppc ] ~ [ sparc ] ~ [ sparc64 ] ~

Diff markup

1 # SPDX-License-Identifier: GPL-2.0 1 # SPDX-License-Identifier: GPL-2.0 2 menuconfig ASYMMETRIC_KEY_TYPE 2 menuconfig ASYMMETRIC_KEY_TYPE 3 bool "Asymmetric (public-key cryptogra 3 bool "Asymmetric (public-key cryptographic) key type" 4 depends on KEYS 4 depends on KEYS 5 help 5 help 6 This option provides support for a k 6 This option provides support for a key type that holds the data for 7 the asymmetric keys used for public 7 the asymmetric keys used for public key cryptographic operations such 8 as encryption, decryption, signature 8 as encryption, decryption, signature generation and signature 9 verification. 9 verification. 10 10 11 if ASYMMETRIC_KEY_TYPE 11 if ASYMMETRIC_KEY_TYPE 12 12 13 config ASYMMETRIC_PUBLIC_KEY_SUBTYPE 13 config ASYMMETRIC_PUBLIC_KEY_SUBTYPE 14 tristate "Asymmetric public-key crypto 14 tristate "Asymmetric public-key crypto algorithm subtype" 15 select MPILIB 15 select MPILIB 16 select CRYPTO_HASH_INFO 16 select CRYPTO_HASH_INFO 17 select CRYPTO_AKCIPHER 17 select CRYPTO_AKCIPHER 18 select CRYPTO_SIG << 19 select CRYPTO_HASH << 20 help 18 help 21 This option provides support for asy 19 This option provides support for asymmetric public key type handling. 22 If signature generation and/or verif 20 If signature generation and/or verification are to be used, 23 appropriate hash algorithms (such as 21 appropriate hash algorithms (such as SHA-1) must be available. 24 ENOPKG will be reported if the requi 22 ENOPKG will be reported if the requisite algorithm is unavailable. 25 23 >> 24 config ASYMMETRIC_TPM_KEY_SUBTYPE >> 25 tristate "Asymmetric TPM backed private key subtype" >> 26 depends on TCG_TPM >> 27 depends on TRUSTED_KEYS >> 28 select CRYPTO_HMAC >> 29 select CRYPTO_SHA1 >> 30 select CRYPTO_HASH_INFO >> 31 help >> 32 This option provides support for TPM backed private key type handling. >> 33 Operations such as sign, verify, encrypt, decrypt are performed by >> 34 the TPM after the private key is loaded. >> 35 26 config X509_CERTIFICATE_PARSER 36 config X509_CERTIFICATE_PARSER 27 tristate "X.509 certificate parser" 37 tristate "X.509 certificate parser" 28 depends on ASYMMETRIC_PUBLIC_KEY_SUBTY 38 depends on ASYMMETRIC_PUBLIC_KEY_SUBTYPE 29 select ASN1 39 select ASN1 30 select OID_REGISTRY 40 select OID_REGISTRY 31 help 41 help 32 This option provides support for par 42 This option provides support for parsing X.509 format blobs for key 33 data and provides the ability to ins 43 data and provides the ability to instantiate a crypto key from a 34 public key packet found inside the c 44 public key packet found inside the certificate. 35 45 36 config PKCS8_PRIVATE_KEY_PARSER 46 config PKCS8_PRIVATE_KEY_PARSER 37 tristate "PKCS#8 private key parser" 47 tristate "PKCS#8 private key parser" 38 depends on ASYMMETRIC_PUBLIC_KEY_SUBTY 48 depends on ASYMMETRIC_PUBLIC_KEY_SUBTYPE 39 select ASN1 49 select ASN1 40 select OID_REGISTRY 50 select OID_REGISTRY 41 help 51 help 42 This option provides support for par 52 This option provides support for parsing PKCS#8 format blobs for 43 private key data and provides the ab 53 private key data and provides the ability to instantiate a crypto key 44 from that data. 54 from that data. 45 55 >> 56 config TPM_KEY_PARSER >> 57 tristate "TPM private key parser" >> 58 depends on ASYMMETRIC_TPM_KEY_SUBTYPE >> 59 select ASN1 >> 60 help >> 61 This option provides support for parsing TPM format blobs for >> 62 private key data and provides the ability to instantiate a crypto key >> 63 from that data. >> 64 46 config PKCS7_MESSAGE_PARSER 65 config PKCS7_MESSAGE_PARSER 47 tristate "PKCS#7 message parser" 66 tristate "PKCS#7 message parser" 48 depends on X509_CERTIFICATE_PARSER 67 depends on X509_CERTIFICATE_PARSER 49 select CRYPTO_HASH << 50 select ASN1 68 select ASN1 51 select OID_REGISTRY 69 select OID_REGISTRY 52 help 70 help 53 This option provides support for par 71 This option provides support for parsing PKCS#7 format messages for 54 signature data and provides the abil 72 signature data and provides the ability to verify the signature. 55 73 56 config PKCS7_TEST_KEY 74 config PKCS7_TEST_KEY 57 tristate "PKCS#7 testing key type" 75 tristate "PKCS#7 testing key type" 58 depends on SYSTEM_DATA_VERIFICATION 76 depends on SYSTEM_DATA_VERIFICATION 59 help 77 help 60 This option provides a type of key t 78 This option provides a type of key that can be loaded up from a 61 PKCS#7 message - provided the messag 79 PKCS#7 message - provided the message is signed by a trusted key. If 62 it is, the PKCS#7 wrapper is discard 80 it is, the PKCS#7 wrapper is discarded and reading the key returns 63 just the payload. If it isn't, addi 81 just the payload. If it isn't, adding the key will fail with an 64 error. 82 error. 65 83 66 This is intended for testing the PKC 84 This is intended for testing the PKCS#7 parser. 67 85 68 config SIGNED_PE_FILE_VERIFICATION 86 config SIGNED_PE_FILE_VERIFICATION 69 bool "Support for PE file signature ve 87 bool "Support for PE file signature verification" 70 depends on PKCS7_MESSAGE_PARSER=y 88 depends on PKCS7_MESSAGE_PARSER=y 71 depends on SYSTEM_DATA_VERIFICATION 89 depends on SYSTEM_DATA_VERIFICATION 72 select CRYPTO_HASH << 73 select ASN1 90 select ASN1 74 select OID_REGISTRY 91 select OID_REGISTRY 75 help 92 help 76 This option provides support for ver 93 This option provides support for verifying the signature(s) on a 77 signed PE binary. 94 signed PE binary. 78 << 79 config FIPS_SIGNATURE_SELFTEST << 80 tristate "Run FIPS selftests on the X. << 81 help << 82 This option causes some selftests to << 83 verification code, using some built << 84 for FIPS. << 85 depends on KEYS << 86 depends on ASYMMETRIC_KEY_TYPE << 87 depends on PKCS7_MESSAGE_PARSER=X509_C << 88 depends on X509_CERTIFICATE_PARSER << 89 depends on CRYPTO_RSA << 90 depends on CRYPTO_SHA256 << 91 << 92 config FIPS_SIGNATURE_SELFTEST_RSA << 93 bool << 94 default y << 95 depends on FIPS_SIGNATURE_SELFTEST << 96 depends on CRYPTO_SHA256=y || CRYPTO_S << 97 depends on CRYPTO_RSA=y || CRYPTO_RSA= << 98 << 99 config FIPS_SIGNATURE_SELFTEST_ECDSA << 100 bool << 101 default y << 102 depends on FIPS_SIGNATURE_SELFTEST << 103 depends on CRYPTO_SHA256=y || CRYPTO_S << 104 depends on CRYPTO_ECDSA=y || CRYPTO_EC << 105 95 106 endif # ASYMMETRIC_KEY_TYPE 96 endif # ASYMMETRIC_KEY_TYPE

Linux® is a registered trademark of Linus Torvalds in the United States and other countries.
TOMOYO® is a registered trademark of NTT DATA CORPORATION.

TOMOYO Linux Cross Reference
Linux/crypto/asymmetric_keys/Kconfig

Diff markup

Differences between /crypto/asymmetric_keys/Kconfig (Version linux-6.12-rc7) and /crypto/asymmetric_keys/Kconfig (Version linux-4.20.17)

TOMOYO Linux Cross Reference Linux/crypto/asymmetric_keys/Kconfig

Diff markup

Differences between /crypto/asymmetric_keys/Kconfig (Version linux-6.12-rc7) and /crypto/asymmetric_keys/Kconfig (Version linux-4.20.17)

TOMOYO Linux Cross Reference
Linux/crypto/asymmetric_keys/Kconfig