Re: [openssl-project] Removing assembler for outdated algorithms

2018-02-11 Thread Richard Levitte
"Salz, Rich" skrev: (11 februari 2018 14:07:13 CET) >> Those same systems will probably not have the newest OpenSSL >either, >and OpenSSH on those machines will certainly not be linked with a >newer OpenSSL... > >I apologize for not being clear enough. > >I do

Re: [openssl-project] Removing assembler for outdated algorithms

2018-02-11 Thread Salz, Rich
> So we should tread with some care. Perhaps the software-only Blowfish is fast enough, but my point is that Blowfish is much less of an obvious outdated cipher than the others... That's a different point. I still don't agree. The difference between hand-tuned assembler and C

Re: [openssl-project] Removing assembler for outdated algorithms

2018-02-11 Thread Viktor Dukhovni
> On Feb 11, 2018, at 2:20 AM, Richard Levitte wrote: > > Those same systems will probably not have the newest OpenSSL either, > and OpenSSH on those machines will certainly not be linked with a > newer OpenSSL... It is not those systems, but other systems that need to

Re: [openssl-project] Removing assembler for outdated algorithms

2018-02-11 Thread Salz, Rich
> Those same systems will probably not have the newest OpenSSL either, and OpenSSH on those machines will certainly not be linked with a newer OpenSSL... I apologize for not being clear enough. I do not want to remove any of those algorithms. I just want to remove 10,000 lines

Re: [openssl-project] Removing assembler for outdated algorithms

2018-02-10 Thread Richard Levitte
In message <0ea60701-6e1a-4fe0-86f8-33b37d016...@dukhovni.org> on Sat, 10 Feb 2018 17:10:42 -0500, Viktor Dukhovni said: viktor> viktor> viktor> > On Feb 10, 2018, at 4:58 PM, Viktor Dukhovni wrote: viktor> > viktor> > viktor> > Is blowfish

Re: [openssl-project] Removing assembler for outdated algorithms

2018-02-10 Thread Salz, Rich
I am not suggesting we remove blowfish or any of those algorithms. I am suggesting we remove the assembler versions of them. On 2/10/18, 5:33 PM, "Viktor Dukhovni" wrote: On Sat, Feb 10, 2018 at 10:19:20PM +, Salz, Rich wrote: > > Is blowfish

Re: [openssl-project] Removing assembler for outdated algorithms

2018-02-10 Thread Viktor Dukhovni
On Sat, Feb 10, 2018 at 10:19:20PM +, Salz, Rich wrote: > > Is blowfish actually outdated? I thought it had some significant use, > > and don't recall any major weakness... > > In particular, IIRC OpenSSH uses blowfish, and links to OpenSSL for > the underlying cipher...

Re: [openssl-project] Removing assembler for outdated algorithms

2018-02-10 Thread Salz, Rich
> Is blowfish actually outdated? I thought it had some significant use, > and don't recall any major weakness... In particular, IIRC OpenSSH uses blowfish, and links to OpenSSL for the underlying cipher... PGP use to be a heavy user, but now it only decrypts or does

Re: [openssl-project] Removing assembler for outdated algorithms

2018-02-10 Thread Salz, Rich
openssl-project@openssl.org" <openssl-project@openssl.org> Subject: Re: [openssl-project] Removing assembler for outdated algorithms There is a maintenance cost. Maybe it is negligible, but there is a cost. * The build rules are more complicated; we have had errors with .S vs .

Re: [openssl-project] Removing assembler for outdated algorithms

2018-02-10 Thread Viktor Dukhovni
> On Feb 10, 2018, at 4:58 PM, Viktor Dukhovni wrote: > > > Is blowfish actually outdated? I thought it had some significant use, > and don't recall any major weakness... In particular, IIRC OpenSSH uses blowfish, and links to OpenSSL for the underlying cipher... --

Re: [openssl-project] Removing assembler for outdated algorithms

2018-02-10 Thread Salz, Rich
urday, February 10, 2018 at 4:29 PM To: "openssl-project@openssl.org" <openssl-project@openssl.org> Subject: Re: [openssl-project] Removing assembler for outdated algorithms Before we look at removing things like this, I think we should look at whether or not they actually have a

Re: [openssl-project] Removing assembler for outdated algorithms

2018-02-10 Thread Tim Hudson
Before we look at removing things like this, I think we should look at whether or not they actually have a significant maintenance cost. Tim. On 11 Feb. 2018 7:08 am, "Salz, Rich" wrote: This is derived from bureau/libcrypto-proposal that Emilila made in November 2015. We

[openssl-project] Removing assembler for outdated algorithms

2018-02-10 Thread Salz, Rich
This is derived from bureau/libcrypto-proposal that Emilila made in November 2015. We should remove the assembler versions of the following Blowfish, cast, des, rc4, rc5, ripemd, whirlpool, md5 The reason is that they are outdated, not in use very much, and optimization is not