Re: [PATCH 0/3] crypto: Remove arch-optimized des and des3_ede code

Next message: Thomas Gleixner: "Re: [patch v2 09/14] genirq: Expose irq_find_desc_at_or_after() in core code"
Previous message: Harry Wentland: "[PATCH] scripts/checkpatch: add Assisted-by: tag validation"
In reply to: Eric Biggers: "Re: [PATCH 0/3] crypto: Remove arch-optimized des and des3_ede code"
Next in thread: Simon Richter: "Re: [PATCH 0/3] crypto: Remove arch-optimized des and des3_ede code"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Eric Biggers

Date: Thu Mar 26 2026 - 17:07:25 EST

On Thu, Mar 26, 2026 at 01:27:33PM -0700, Eric Biggers wrote:
> On Thu, Mar 26, 2026 at 09:20:51PM +0100, John Paul Adrian Glaubitz wrote:
> > On Thu, 2026-03-26 at 13:12 -0700, Eric Biggers wrote:
> > > DES and 3DES are cryptographically obsolete and insecure by modern
> > > standards. Continuing to maintain highly specific, complex assembly and
> > > glue code for them, especially when the code isn't testable in QEMU
> > > (s390 and sparc), is unnecessary and risky.
> >
> > We're working on getting crypto instructions added to QEMU though.
> >
> > Adrian
>
> In general that's good of course, but DES and 3DES? Really? Why is
> effort going into these obsolete algorithms at all?
>
> - Eric

I would suggest focusing your efforts on more modern algorithms, like
AES (which has its own SPARC instructions and code), and not worrying
about DES and 3DES. It's just not worth it anymore. Note that I'm
proposing dropping the x86 DES and 3DES code as well.

- Eric