From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <linux-arm-kernel-bounces+linux-arm-kernel=archiver.kernel.org@lists.infradead.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from bombadil.infradead.org (bombadil.infradead.org [198.137.202.133])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.lore.kernel.org (Postfix) with ESMTPS id 26F48C5475B
	for <linux-arm-kernel@archiver.kernel.org>; Thu, 14 Mar 2024 12:23:06 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;
	d=lists.infradead.org; s=bombadil.20210309; h=Sender:
	Content-Transfer-Encoding:Content-Type:List-Subscribe:List-Help:List-Post:
	List-Archive:List-Unsubscribe:List-Id:MIME-Version:References:In-Reply-To:
	Date:Cc:To:From:Subject:Message-ID:Reply-To:Content-ID:Content-Description:
	Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:
	List-Owner; bh=XFCawaDYjyyY++AwW3WGgp5bYwYDBylmuAbdt6a+skw=; b=B9qSuqzhuURUkb
	1VLuEzwa2Xe6PAOrr+4eIzpj/4uGR/8nV3vIFQtdEnHZFxnJzA0B0clHJNc0WJAs0k92+XTFv5Nh/
	PTWSWM47Fia2bx+IF5pL0B2mtdGxRiPau8XEcltHn8sZbjEZdjOFXKDfSrdNAfnixvsHwTS2NA3zk
	db0L1A9y5o17AZWB/DOzfQaBAKHP1TiDvhrT2uLck2lk2by9pn51j75/cqtQsUoOgBXidGehoAW1Q
	A66u4KtkVw2PjTr4lPGziU0mR0ahwvCPZH9bfxyJ7lB73PUksAQM9FvRxNN/mvBk9wnYnUzGnDomz
	CMF/GJGNgmjuid6neVwQ==;
Received: from localhost ([::1] helo=bombadil.infradead.org)
	by bombadil.infradead.org with esmtp (Exim 4.97.1 #2 (Red Hat Linux))
	id 1rkk6i-0000000EE0o-1xH3;
	Thu, 14 Mar 2024 12:22:48 +0000
Received: from bedivere.hansenpartnership.com ([2607:fcd0:100:8a00::2])
	by bombadil.infradead.org with esmtps (Exim 4.97.1 #2 (Red Hat Linux))
	id 1rkk6g-0000000EDzw-0PFA
	for linux-arm-kernel@lists.infradead.org;
	Thu, 14 Mar 2024 12:22:47 +0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple;
	d=hansenpartnership.com; s=20151216; t=1710418963;
	bh=uF11DoSFt961i+nkF6vLB5AG08D98tmA/0JbyoEeduA=;
	h=Message-ID:Subject:From:To:Date:In-Reply-To:References:From;
	b=UvBUPVuafM8nwhbmf+1Hg6nBV1/IyeoZtHbq1z8RHiZHxhwNuxkEsyH4HDtoxhgrg
	 Y9nheLFZYYlBQlrR83z/myUdmiIr3pC+Iqvt9YLvosJx1bkdYh/ehBZGXqQJNwRrBD
	 GlY+t+sdgsvvgIVhMOt0QDcmxgiDicffdr3iRrK8=
Received: from localhost (localhost [127.0.0.1])
	by bedivere.hansenpartnership.com (Postfix) with ESMTP id 96A7312861A8;
	Thu, 14 Mar 2024 08:22:43 -0400 (EDT)
Received: from bedivere.hansenpartnership.com ([127.0.0.1])
 by localhost (bedivere.hansenpartnership.com [127.0.0.1]) (amavis, port 10024)
 with ESMTP id GuyOpsDknp7T; Thu, 14 Mar 2024 08:22:43 -0400 (EDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple;
	d=hansenpartnership.com; s=20151216; t=1710418963;
	bh=uF11DoSFt961i+nkF6vLB5AG08D98tmA/0JbyoEeduA=;
	h=Message-ID:Subject:From:To:Date:In-Reply-To:References:From;
	b=UvBUPVuafM8nwhbmf+1Hg6nBV1/IyeoZtHbq1z8RHiZHxhwNuxkEsyH4HDtoxhgrg
	 Y9nheLFZYYlBQlrR83z/myUdmiIr3pC+Iqvt9YLvosJx1bkdYh/ehBZGXqQJNwRrBD
	 GlY+t+sdgsvvgIVhMOt0QDcmxgiDicffdr3iRrK8=
Received: from lingrow.int.hansenpartnership.com (unknown [IPv6:2601:5c4:4302:c21::a774])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange ECDHE (prime256v1) server-signature RSA-PSS (2048 bits) server-digest SHA256)
	(Client did not present a certificate)
	by bedivere.hansenpartnership.com (Postfix) with ESMTPSA id 9F5BE12860BE;
	Thu, 14 Mar 2024 08:22:41 -0400 (EDT)
Message-ID: <7133628a2f45ad63e90c481387ed5b44906df54f.camel@HansenPartnership.com>
Subject: Re: [REGRESSION] Re: [PATCH] crypto: pkcs7: remove sha1 support
From: James Bottomley <James.Bottomley@HansenPartnership.com>
To: James Prestwood <prestwoj@gmail.com>, Eric Biggers
 <ebiggers@kernel.org>,  Jeff Johnson <quic_jjohnson@quicinc.com>
Cc: Johannes Berg <johannes@sipsolutions.net>, Karel Balej
 <balejk@matfyz.cz>,  dimitri.ledkov@canonical.com,
 alexandre.torgue@foss.st.com, davem@davemloft.net,  dhowells@redhat.com,
 herbert@gondor.apana.org.au, keyrings@vger.kernel.org, 
 linux-arm-kernel@lists.infradead.org, linux-crypto@vger.kernel.org, 
 linux-kernel@vger.kernel.org, linux-modules@vger.kernel.org, 
 linux-stm32@st-md-mailman.stormreply.com, mcgrof@kernel.org, 
 mcoquelin.stm32@gmail.com, linux-wireless@vger.kernel.org, 
 netdev@vger.kernel.org, iwd@lists.linux.dev
Date: Thu, 14 Mar 2024 08:22:38 -0400
In-Reply-To: <a4d24b2c-7dbf-4354-9514-f8a253aac14b@gmail.com>
References: <CZSHRUIJ4RKL.34T4EASV5DNJM@matfyz.cz>
	 <005f998ec59e27633b1b99fdf929e40ccfd401c1.camel@sipsolutions.net>
	 <f2dcbe55-0f0e-4173-8e21-f899c6fc802a@gmail.com>
	 <20240313194423.GA1111@sol.localdomain>
	 <b838e729-dc30-4e18-b928-c34c16b08606@gmail.com>
	 <20240313202223.GB1111@sol.localdomain>
	 <db86cba4-0e61-441d-8e66-405a13b61a3c@gmail.com>
	 <20240313221043.GC1111@sol.localdomain>
	 <f0492c92-1015-48e3-bfce-598c7a4843d1@quicinc.com>
	 <20240313230611.GD1111@sol.localdomain>
	 <a4d24b2c-7dbf-4354-9514-f8a253aac14b@gmail.com>
User-Agent: Evolution 3.42.4 
MIME-Version: 1.0
X-CRM114-Version: 20100106-BlameMichelson ( TRE 0.8.0 (BSD) ) MR-646709E3 
X-CRM114-CacheID: sfid-20240314_052246_198545_5FA5594F 
X-CRM114-Status: GOOD (  13.17  )
X-BeenThere: linux-arm-kernel@lists.infradead.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: <linux-arm-kernel.lists.infradead.org>
List-Unsubscribe: <http://lists.infradead.org/mailman/options/linux-arm-kernel>,
 <mailto:linux-arm-kernel-request@lists.infradead.org?subject=unsubscribe>
List-Archive: <http://lists.infradead.org/pipermail/linux-arm-kernel/>
List-Post: <mailto:linux-arm-kernel@lists.infradead.org>
List-Help: <mailto:linux-arm-kernel-request@lists.infradead.org?subject=help>
List-Subscribe: <http://lists.infradead.org/mailman/listinfo/linux-arm-kernel>,
 <mailto:linux-arm-kernel-request@lists.infradead.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: "linux-arm-kernel" <linux-arm-kernel-bounces@lists.infradead.org>
Errors-To: linux-arm-kernel-bounces+linux-arm-kernel=archiver.kernel.org@lists.infradead.org

On Thu, 2024-03-14 at 04:52 -0700, James Prestwood wrote:
> I'm also not entirely sure why this stuff continues to be removed
> from the kernel. First MD4, then it got reverted, then this (now
> reverted, thanks). Both cases there was not clear justification of
> why it was  being removed.

I think this is some misunderstanding of the NIST and FIPS requirements
with regards to hashes, ciphers and bits of security.  The bottom line
is that neither NIST nor FIPS requires the removal of the sha1
algorithm at all.  Both of them still support it for HMAC (for now). 
In addition, the FIPS requirement is only that you not *issue* sha1
hashed signatures.  FIPS still allows you to verify legacy signatures
with sha1 as the signing hash (for backwards compatibility reasons). 
Enterprises with no legacy and no HMAC requirements *may* remove the
hash, but it's not mandated.

So *removing* sha1 from the certificate code was the wrong thing to do.
We should have configurably prevented using sha1 as the algorithm for
new signatures but kept it for signature verification.

Can we please get this sorted out before 2025, because next up is the
FIPS requirement to move to at least 128 bits of security which will
see RSA2048 deprecated in a similar way: We should refuse to issue
RSA2048 signatures, but will still be allowed to verify them for legacy
reasons.

James




_______________________________________________
linux-arm-kernel mailing list
linux-arm-kernel@lists.infradead.org
http://lists.infradead.org/mailman/listinfo/linux-arm-kernel