Hi Ard, On 8/18/21 9:46 AM, Ard Biesheuvel wrote:
As discussed on the list [0], MD4 is still being relied upon by the CIFS driver, even though successful attacks on MD4 are as old as Linux itself. So let's move the code into the CIFS driver, and remove it from the crypto API so that it is no longer exposed to other subsystems or to user space via AF_ALG.
Can we please stop removing algorithms from AF_ALG? The previous ARC4 removal already caused some headaches [0]. Please note that iwd does use MD4 for MSCHAP and MSCHAPv2 based 802.1X authentication.
Regards, -Denis [0] https://bugs.launchpad.net/ubuntu/+source/iwd/+bug/1938650