1# SPDX-License-Identifier: GPL-2.0-only 2# 3# TLS configuration 4# 5config TLS 6 tristate "Transport Layer Security support" 7 depends on INET 8 select CRYPTO 9 select CRYPTO_AES 10 select CRYPTO_GCM 11 select STREAM_PARSER 12 select NET_SOCK_MSG 13 default n 14 help 15 Enable kernel support for TLS protocol. This allows symmetric 16 encryption handling of the TLS protocol to be done in-kernel. 17 18 If unsure, say N. 19 20config TLS_DEVICE 21 bool "Transport Layer Security HW offload" 22 depends on TLS 23 select SKB_DECRYPTED 24 select SOCK_VALIDATE_XMIT 25 select SOCK_RX_QUEUE_MAPPING 26 default n 27 help 28 Enable kernel support for HW offload of the TLS protocol. 29 30 If unsure, say N. 31 32config TLS_TOE 33 bool "Transport Layer Security TCP stack bypass" 34 depends on TLS 35 default n 36 help 37 Enable kernel support for legacy HW offload of the TLS protocol, 38 which is incompatible with the Linux networking stack semantics. 39 40 If unsure, say N. 41