Trang chủ Khám phá Trợ giúp
Đăng ký Đăng nhập
dingyu
/
CooCenter-System-kernel
1
0
Fork 0
Các tập tin Các vấn đề 0 Yêu cầu khéo về 0 Wiki
Tree: e68e7644fa
Branches Tags
CooCenter-Sy...
/
net
/
xfrm
/
Kconfig

Kconfig 2.2 KB
Lịch sử Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485 
  1. #
    2. 

  2. # XFRM configuration
    3. 

  3. #
    4. 

  4. config XFRM
    5. 

  5.        bool
    6. 

  6.        depends on NET
    7. 

  7. 

  8. config XFRM_ALGO
    9. 

  9. 	tristate
    10. 

  10. 	select XFRM
    11. 

  11. 	select CRYPTO
    12. 

  12. 

  13. config XFRM_USER
    14. 

  14. 	tristate "Transformation user configuration interface"
    15. 

  15. 	depends on INET
    16. 

  16. 	select XFRM_ALGO
    17. 

  17. 	---help---
    18. 

  18. 	  Support for Transformation(XFRM) user configuration interface
    19. 

  19. 	  like IPsec used by native Linux tools.
    20. 

  20. 

  21. 	  If unsure, say Y.
    22. 

  22. 

  23. config XFRM_SUB_POLICY
    24. 

  24. 	bool "Transformation sub policy support"
    25. 

  25. 	depends on XFRM
    26. 

  26. 	---help---
    27. 

  27. 	  Support sub policy for developers. By using sub policy with main
    28. 

  28. 	  one, two policies can be applied to the same packet at once.
    29. 

  29. 	  Policy which lives shorter time in kernel should be a sub.
    30. 

  30. 

  31. 	  If unsure, say N.
    32. 

  32. 

  33. config XFRM_MIGRATE
    34. 

  34. 	bool "Transformation migrate database"
    35. 

  35. 	depends on XFRM
    36. 

  36. 	---help---
    37. 

  37. 	  A feature to update locator(s) of a given IPsec security
    38. 

  38. 	  association dynamically.  This feature is required, for
    39. 

  39. 	  instance, in a Mobile IPv6 environment with IPsec configuration
    40. 

  40. 	  where mobile nodes change their attachment point to the Internet.
    41. 

  41. 

  42. 	  If unsure, say N.
    43. 

  43. 

  44. config XFRM_STATISTICS
    45. 

  45. 	bool "Transformation statistics"
    46. 

  46. 	depends on INET && XFRM && PROC_FS
    47. 

  47. 	---help---
    48. 

  48. 	  This statistics is not a SNMP/MIB specification but shows
    49. 

  49. 	  statistics about transformation error (or almost error) factor
    50. 

  50. 	  at packet processing for developer.
    51. 

  51. 

  52. 	  If unsure, say N.
    53. 

  53. 

  54. config XFRM_IPCOMP
    55. 

  55. 	tristate
    56. 

  56. 	select XFRM_ALGO
    57. 

  57. 	select CRYPTO
    58. 

  58. 	select CRYPTO_DEFLATE
    59. 

  59. 

  60. config NET_KEY
    61. 

  61. 	tristate "PF_KEY sockets"
    62. 

  62. 	select XFRM_ALGO
    63. 

  63. 	---help---
    64. 

  64. 	  PF_KEYv2 socket family, compatible to KAME ones.
    65. 

  65. 	  They are required if you are going to use IPsec tools ported
    66. 

  66. 	  from KAME.
    67. 

  67. 

  68. 	  Say Y unless you know what you are doing.
    69. 

  69. 

  70. config NET_KEY_MIGRATE
    71. 

  71. 	bool "PF_KEY MIGRATE"
    72. 

  72. 	depends on NET_KEY
    73. 

  73. 	select XFRM_MIGRATE
    74. 

  74. 	---help---
    75. 

  75. 	  Add a PF_KEY MIGRATE message to PF_KEYv2 socket family.
    76. 

  76. 	  The PF_KEY MIGRATE message is used to dynamically update
    77. 

  77. 	  locator(s) of a given IPsec security association.
    78. 

  78. 	  This feature is required, for instance, in a Mobile IPv6
    79. 

  79. 	  environment with IPsec configuration where mobile nodes
    80. 

  80. 	  change their attachment point to the Internet.  Detail
    81. 

  81. 	  information can be found in the internet-draft
    82. 

  82. 	  <draft-sugimoto-mip6-pfkey-migrate>.
    83. 

  83. 

  84. 	  If unsure, say N.
    85. 

  85.