xref: /OK3568_Linux_fs/kernel/net/tls/Kconfig (revision 4882a59341e53eb6f0b4789bf948001014eff981) 
1*4882a593Smuzhiyun# SPDX-License-Identifier: GPL-2.0-only
2*4882a593Smuzhiyun#
3*4882a593Smuzhiyun# TLS configuration
4*4882a593Smuzhiyun#
5*4882a593Smuzhiyunconfig TLS
6*4882a593Smuzhiyun	tristate "Transport Layer Security support"
7*4882a593Smuzhiyun	depends on INET
8*4882a593Smuzhiyun	select CRYPTO
9*4882a593Smuzhiyun	select CRYPTO_AES
10*4882a593Smuzhiyun	select CRYPTO_GCM
11*4882a593Smuzhiyun	select STREAM_PARSER
12*4882a593Smuzhiyun	select NET_SOCK_MSG
13*4882a593Smuzhiyun	default n
14*4882a593Smuzhiyun	help
15*4882a593Smuzhiyun	Enable kernel support for TLS protocol. This allows symmetric
16*4882a593Smuzhiyun	encryption handling of the TLS protocol to be done in-kernel.
17*4882a593Smuzhiyun
18*4882a593Smuzhiyun	If unsure, say N.
19*4882a593Smuzhiyun
20*4882a593Smuzhiyunconfig TLS_DEVICE
21*4882a593Smuzhiyun	bool "Transport Layer Security HW offload"
22*4882a593Smuzhiyun	depends on TLS
23*4882a593Smuzhiyun	select SOCK_VALIDATE_XMIT
24*4882a593Smuzhiyun	default n
25*4882a593Smuzhiyun	help
26*4882a593Smuzhiyun	Enable kernel support for HW offload of the TLS protocol.
27*4882a593Smuzhiyun
28*4882a593Smuzhiyun	If unsure, say N.
29*4882a593Smuzhiyun
30*4882a593Smuzhiyunconfig TLS_TOE
31*4882a593Smuzhiyun	bool "Transport Layer Security TCP stack bypass"
32*4882a593Smuzhiyun	depends on TLS
33*4882a593Smuzhiyun	default n
34*4882a593Smuzhiyun	help
35*4882a593Smuzhiyun	Enable kernel support for legacy HW offload of the TLS protocol,
36*4882a593Smuzhiyun	which is incompatible with the Linux networking stack semantics.
37*4882a593Smuzhiyun
38*4882a593Smuzhiyun	If unsure, say N.
39