"Salz, Rich" skrev: (11 februari 2018 14:07:13 CET)
>> Those same systems will probably not have the newest OpenSSL
>either,
>and OpenSSH on those machines will certainly not be linked with a
>newer OpenSSL...
>
>I apologize for not being clear enough.
>
>I do
> So we should tread with some care. Perhaps the software-only Blowfish
is fast enough, but my point is that Blowfish is much less of an obvious
outdated cipher than the others...
That's a different point. I still don't agree. The difference between
hand-tuned assembler and C
> On Feb 11, 2018, at 2:20 AM, Richard Levitte wrote:
>
> Those same systems will probably not have the newest OpenSSL either,
> and OpenSSH on those machines will certainly not be linked with a
> newer OpenSSL...
It is not those systems, but other systems that need to
> Those same systems will probably not have the newest OpenSSL either,
and OpenSSH on those machines will certainly not be linked with a
newer OpenSSL...
I apologize for not being clear enough.
I do not want to remove any of those algorithms. I just want to remove 10,000
lines
In message <0ea60701-6e1a-4fe0-86f8-33b37d016...@dukhovni.org> on Sat, 10 Feb
2018 17:10:42 -0500, Viktor Dukhovni said:
viktor>
viktor>
viktor> > On Feb 10, 2018, at 4:58 PM, Viktor Dukhovni
wrote:
viktor> >
viktor> >
viktor> > Is blowfish
I am not suggesting we remove blowfish or any of those algorithms. I am
suggesting we remove the assembler versions of them.
On 2/10/18, 5:33 PM, "Viktor Dukhovni" wrote:
On Sat, Feb 10, 2018 at 10:19:20PM +, Salz, Rich wrote:
> > Is blowfish
On Sat, Feb 10, 2018 at 10:19:20PM +, Salz, Rich wrote:
> > Is blowfish actually outdated? I thought it had some significant use,
> > and don't recall any major weakness...
>
> In particular, IIRC OpenSSH uses blowfish, and links to OpenSSL for
> the underlying cipher...
> Is blowfish actually outdated? I thought it had some significant use,
> and don't recall any major weakness...
In particular, IIRC OpenSSH uses blowfish, and links to OpenSSL for
the underlying cipher...
PGP use to be a heavy user, but now it only decrypts or does
openssl-project@openssl.org" <openssl-project@openssl.org>
Subject: Re: [openssl-project] Removing assembler for outdated algorithms
There is a maintenance cost. Maybe it is negligible, but there is a cost.
* The build rules are more complicated; we have had errors with .S vs .
> On Feb 10, 2018, at 4:58 PM, Viktor Dukhovni wrote:
>
>
> Is blowfish actually outdated? I thought it had some significant use,
> and don't recall any major weakness...
In particular, IIRC OpenSSH uses blowfish, and links to OpenSSL for
the underlying cipher...
--
urday, February 10, 2018 at 4:29 PM
To: "openssl-project@openssl.org" <openssl-project@openssl.org>
Subject: Re: [openssl-project] Removing assembler for outdated algorithms
Before we look at removing things like this, I think we should look at whether
or not they actually have a
Before we look at removing things like this, I think we should look at
whether or not they actually have a significant maintenance cost.
Tim.
On 11 Feb. 2018 7:08 am, "Salz, Rich" wrote:
This is derived from bureau/libcrypto-proposal that Emilila made in
November 2015.
We
This is derived from bureau/libcrypto-proposal that Emilila made in November
2015.
We should remove the assembler versions of the following
Blowfish, cast, des, rc4, rc5, ripemd, whirlpool, md5
The reason is that they are outdated, not in use very much, and optimization is
not
13 matches
Mail list logo