mirror of
https://github.com/torvalds/linux.git
synced 2026-05-12 16:18:45 +02:00
da89f2e312
ktls was converted to its own stream parser in commit
84c61fe1a7 ("tls: rx: do not use the standard strparser"), but the
Kconfig dependency was left. The only part of the original strparser
that's shared with ktls are a few structs (strp_msg, sk_skb_cb) and
the strp_msg helper, those don't require building the net/strparser
code.
Signed-off-by: Sabrina Dubroca <sd@queasysnail.net>
Link: https://patch.msgid.link/cb41e513a30eeaac0b419284cc87433f049b2ee0.1771871995.git.sd@queasysnail.net
Signed-off-by: Jakub Kicinski <kuba@kernel.org>
40 lines
879 B
Plaintext
40 lines
879 B
Plaintext
# SPDX-License-Identifier: GPL-2.0-only
|
|
#
|
|
# TLS configuration
|
|
#
|
|
config TLS
|
|
tristate "Transport Layer Security support"
|
|
depends on INET
|
|
select CRYPTO
|
|
select CRYPTO_AES
|
|
select CRYPTO_GCM
|
|
select NET_SOCK_MSG
|
|
default n
|
|
help
|
|
Enable kernel support for TLS protocol. This allows symmetric
|
|
encryption handling of the TLS protocol to be done in-kernel.
|
|
|
|
If unsure, say N.
|
|
|
|
config TLS_DEVICE
|
|
bool "Transport Layer Security HW offload"
|
|
depends on TLS
|
|
select SKB_DECRYPTED
|
|
select SOCK_VALIDATE_XMIT
|
|
select SOCK_RX_QUEUE_MAPPING
|
|
default n
|
|
help
|
|
Enable kernel support for HW offload of the TLS protocol.
|
|
|
|
If unsure, say N.
|
|
|
|
config TLS_TOE
|
|
bool "Transport Layer Security TCP stack bypass"
|
|
depends on TLS
|
|
default n
|
|
help
|
|
Enable kernel support for legacy HW offload of the TLS protocol,
|
|
which is incompatible with the Linux networking stack semantics.
|
|
|
|
If unsure, say N.
|