Re: [PATCH] crypto: af_alg - Document the deprecation of AF_ALG

Next message: Andy Shevchenko: "Re: [PATCH v2] iio: accel: adxl355: replace usleep_range() with fsleep()"
Previous message: Vyacheslav Yurkov via B4 Relay: "[PATCH v2 1/2] clk: Add gpio-locked clock driver"
In reply to: Eric Biggers: "Re: [PATCH] crypto: af_alg - Document the deprecation of AF_ALG"
Next in thread: Ignat Korchagin: "Re: [PATCH] crypto: af_alg - Document the deprecation of AF_ALG"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Andy Lutomirski

Date: Sun May 10 2026 - 14:08:31 EST

On Sun, May 10, 2026 at 9:33 AM Eric Biggers <ebiggers@xxxxxxxxxx> wrote:

> In any case, any hypothetical security benefit provided by AF_ALG would
> have to be *very high* to outweigh the continuous stream of
> vulnerabilities in it. I understand that people using AF_ALG might not
> be familiar with that continuous stream of vulnerabilities, but it would
> be worth spending some time researching what has been going on.

It would not be completely crazy to have a simple, straightforward
interface by which user code could ask the kernel to do a
cryptographic operation. Think:

int compute_keyed_hash(int key_fd, const void *data, size_t len);

where key_fd encodes both the key and the hash type (HMAC-SHA256 or
whatever), and there is a very, very small menu of hashes to choose
from.

But this is not really obviously worth the hassle. And AF_ALG is
definitely not the right interface.