Re: [PATCH 0/3] crypto: Remove arch-optimized des and des3_ede code

Next message: Charles Perry: "[PATCH net-next] net: phy: fix a return path in get_phy_c45_ids()"
Previous message: Dmitry Ilvokhin: "[RESEND PATCH v2 0/8] mm: use spinlock guards for zone lock"
Next in thread: John Paul Adrian Glaubitz: "Re: [PATCH 0/3] crypto: Remove arch-optimized des and des3_ede code"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Harald Freudenberger

Date: Wed Apr 08 2026 - 09:35:39 EST

On 2026-03-26 21:20, John Paul Adrian Glaubitz wrote:

On Thu, 2026-03-26 at 13:12 -0700, Eric Biggers wrote:

DES and 3DES are cryptographically obsolete and insecure by modern
standards. Continuing to maintain highly specific, complex assembly and
glue code for them, especially when the code isn't testable in QEMU
(s390 and sparc), is unnecessary and risky.

We're working on getting crypto instructions added to QEMU though.

Adrian

Hi Adrian

I am about to implement some of the cpacf instructions for qemu.
Eric and others complained about being unable to test the s390 in-kernel crypto
implementations and thus I am about to improve this. As soon as my patch series
is in a good shape I'll forward it to you. As of now my main focus is on AES (ECB,
CTR, CBC, XTS) with and without protected key support.
Please let us not do this work twice - so get in contact with me and Holger
about possible s390 specific crypto implementations for qemu.

Harald Freudenberger