2014-07-03 15:42:44 +02:00
|
|
|
#
|
|
|
|
|
# For a description of the syntax of this configuration file,
|
2015-06-28 16:08:57 +02:00
|
|
|
# see the file kconfig-language.txt in the NuttX tools repository.
|
2014-07-03 15:42:44 +02:00
|
|
|
#
|
|
|
|
|
|
|
|
|
|
config CRYPTO
|
2014-11-30 16:35:07 +01:00
|
|
|
bool "Crypto API support"
|
|
|
|
|
default n
|
|
|
|
|
---help---
|
|
|
|
|
Enable or disable Crypto API features
|
2014-07-03 15:42:44 +02:00
|
|
|
|
|
|
|
|
if CRYPTO
|
|
|
|
|
|
|
|
|
|
config CRYPTO_AES
|
2014-11-30 16:35:07 +01:00
|
|
|
bool "AES cypher support"
|
|
|
|
|
default n
|
2014-07-03 15:42:44 +02:00
|
|
|
|
|
|
|
|
config CRYPTO_ALGTEST
|
2014-11-30 16:35:07 +01:00
|
|
|
bool "Perform automatic crypto algorithms test on startup"
|
|
|
|
|
default n
|
2014-07-03 15:42:44 +02:00
|
|
|
|
2015-02-04 14:28:43 +01:00
|
|
|
if CRYPTO_ALGTEST
|
|
|
|
|
|
|
|
|
|
config CRYPTO_AES128_DISABLE
|
|
|
|
|
bool "Omit 128-bit AES tests"
|
|
|
|
|
default n
|
|
|
|
|
|
|
|
|
|
config CRYPTO_AES192_DISABLE
|
|
|
|
|
bool "Omit 192-bit AES tests"
|
|
|
|
|
default n
|
|
|
|
|
|
|
|
|
|
config CRYPTO_AES256_DISABLE
|
|
|
|
|
bool "Omit 256-bit AES tests"
|
|
|
|
|
default n
|
|
|
|
|
|
|
|
|
|
endif # CRYPTO_ALGTEST
|
|
|
|
|
|
2014-07-03 15:42:44 +02:00
|
|
|
config CRYPTO_CRYPTODEV
|
2014-11-30 16:35:07 +01:00
|
|
|
bool "cryptodev support"
|
2022-07-28 11:52:21 +02:00
|
|
|
depends on ALLOW_BSD_COMPONENTS
|
2014-11-30 16:35:07 +01:00
|
|
|
default n
|
2014-07-03 15:42:44 +02:00
|
|
|
|
2023-06-26 13:54:41 +02:00
|
|
|
config CRYPTO_CRYPTODEV_SOFTWARE
|
|
|
|
|
bool "cryptodev software support"
|
2023-09-10 21:15:29 +02:00
|
|
|
depends on CRYPTO_CRYPTODEV && CRYPTO_SW_AES
|
2023-06-26 13:54:41 +02:00
|
|
|
default n
|
|
|
|
|
|
2022-09-08 08:13:08 +02:00
|
|
|
config CRYPTO_CRYPTODEV_HARDWARE
|
|
|
|
|
bool "cryptodev hardware support"
|
|
|
|
|
depends on CRYPTO_CRYPTODEV
|
|
|
|
|
default n
|
|
|
|
|
|
2015-11-16 20:31:02 +01:00
|
|
|
config CRYPTO_SW_AES
|
|
|
|
|
bool "Software AES library"
|
2022-01-13 14:10:16 +01:00
|
|
|
depends on ALLOW_BSD_COMPONENTS
|
2015-11-16 20:31:02 +01:00
|
|
|
default n
|
|
|
|
|
---help---
|
|
|
|
|
Enable the software AES library as described in
|
|
|
|
|
include/nuttx/crypto/aes.h
|
|
|
|
|
|
2015-11-16 23:10:01 +01:00
|
|
|
TODO: Adapt interfaces so that they are consistent with H/W AES
|
2019-09-17 18:46:23 +02:00
|
|
|
implementations. This needs to support up_aesinitialize() and
|
2015-11-16 23:10:01 +01:00
|
|
|
aes_cypher() per include/nuttx/crypto/crypto.h.
|
|
|
|
|
|
2017-03-30 15:38:37 +02:00
|
|
|
config CRYPTO_RANDOM_POOL
|
2024-06-14 10:55:34 +02:00
|
|
|
bool "Entropy pool and strong random number generator"
|
2017-03-30 15:38:37 +02:00
|
|
|
default n
|
|
|
|
|
---help---
|
|
|
|
|
Entropy pool gathers environmental noise from device drivers,
|
|
|
|
|
user-space, etc., and returns good random numbers, suitable
|
|
|
|
|
for cryptographic use. Based on entropy pool design from
|
|
|
|
|
*BSDs and uses BLAKE2Xs algorithm for CSPRNG output.
|
|
|
|
|
|
|
|
|
|
NOTE: May not actually be cyptographically secure, if
|
|
|
|
|
not enough entropy is made available to the entropy pool.
|
|
|
|
|
|
|
|
|
|
if CRYPTO_RANDOM_POOL
|
|
|
|
|
|
|
|
|
|
config CRYPTO_RANDOM_POOL_COLLECT_IRQ_RANDOMNESS
|
|
|
|
|
bool "Use interrupts to feed timing randomness to entropy pool"
|
|
|
|
|
default y
|
|
|
|
|
---help---
|
|
|
|
|
Feed entropy pool with interrupt randomness from interrupt
|
|
|
|
|
dispatch function 'irq_dispatch'. This adds some overhead
|
|
|
|
|
for every interrupt handled.
|
|
|
|
|
|
|
|
|
|
endif # CRYPTO_RANDOM_POOL
|
|
|
|
|
|
2015-11-16 20:31:02 +01:00
|
|
|
endif # CRYPTO
|
