On Fri, Sep 11, 2020 at 05:11:03PM +0300, Ard Biesheuvel wrote: > We have a few interesting pieces in our cipher museum, which are never > used internally, and were only ever provided as generic C implementations. > > Unfortunately, we cannot simply remove this code, as we cannot be sure > that it is not being used via the AF_ALG socket API, however unlikely. > > So let's mark the Anubis, Khazad, SEED and TEA algorithms as obsolete, > which means they can only be enabled in the build if the socket API is > enabled in the first place. > > Signed-off-by: Ard Biesheuvel <ardb@xxxxxxxxxx> > --- > Hopefully, I will be able to convince the distro kernel maintainers to > disable CRYPTO_USER_API_ENABLE_OBSOLETE in their v5.10+ builds once the > iwd changes for arc4 make it downstream (Debian already has an updated > version in its unstable distro). With the joint coverage of their QA, > we should be able to confirm that these algos are never used, and > actually remove them altogether. > > crypto/Kconfig | 4 ++++ > 1 file changed, 4 insertions(+) Patch applied. Thanks. -- Email: Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt
