1 config TRUSTED_KEYS_TPM
2 bool "TPM-based trusted keys"
3 depends on TCG_TPM >= TRUSTED_KEYS
8 select CRYPTO_HASH_INFO
13 Enable use of the Trusted Platform Module (TPM) as trusted key
14 backend. Trusted keys are random number symmetric keys,
15 which will be generated and RSA-sealed by the TPM.
16 The TPM only unseals the keys, if the boot PCRs and other
19 config TRUSTED_KEYS_TEE
20 bool "TEE-based trusted keys"
21 depends on TEE >= TRUSTED_KEYS
24 Enable use of the Trusted Execution Environment (TEE) as trusted
27 config TRUSTED_KEYS_CAAM
28 bool "CAAM-based trusted keys"
29 depends on CRYPTO_DEV_FSL_CAAM_JR >= TRUSTED_KEYS
30 select CRYPTO_DEV_FSL_CAAM_BLOB_GEN
33 Enable use of NXP's Cryptographic Accelerator and Assurance Module
34 (CAAM) as trusted key backend.
36 if !TRUSTED_KEYS_TPM && !TRUSTED_KEYS_TEE && !TRUSTED_KEYS_CAAM
37 comment "No trust source selected!"