Re: [REGRESSION] Re: [PATCH] crypto: pkcs7: remove sha1 support

From: James Prestwood
Date: Wed Mar 13 2024 - 14:39:07 EST

Next message: Neeraj Upadhyay: "Re: [PATCH] rcu: Reduce synchronize_rcu() delays when all wait heads are in use"
Previous message: Sean Christopherson: "Re: [PATCH v11 0/8] KVM: allow mapping non-refcounted pages"
In reply to: Johannes Berg: "Re: [REGRESSION] Re: [PATCH] crypto: pkcs7: remove sha1 support"
Next in thread: Eric Biggers: "Re: [REGRESSION] Re: [PATCH] crypto: pkcs7: remove sha1 support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

On 3/13/24 1:56 AM, Johannes Berg wrote:

Not sure why you're CC'ing the world, but I guess adding a few more
doesn't hurt ...

On Wed, 2024-03-13 at 09:50 +0100, Karel Balej wrote:

and I use iwd

This is your problem, the wireless stack in the kernel doesn't use any
kernel crypto code for 802.1X.

Yes, the wireless stack has zero bearing on the issue. I think that's what you meant by "problem".

IWD has used the kernel crypto API forever which was abruptly broken, that is the problem.

The original commit says it was to remove support for sha1 signed kernel modules, but it did more than that and broke the keyctl API.

I suppose iwd wants to use the kernel infrastructure but has no
fallbacks to other implementations.
johannes

Next message: Neeraj Upadhyay: "Re: [PATCH] rcu: Reduce synchronize_rcu() delays when all wait heads are in use"
Previous message: Sean Christopherson: "Re: [PATCH v11 0/8] KVM: allow mapping non-refcounted pages"
In reply to: Johannes Berg: "Re: [REGRESSION] Re: [PATCH] crypto: pkcs7: remove sha1 support"
Next in thread: Eric Biggers: "Re: [REGRESSION] Re: [PATCH] crypto: pkcs7: remove sha1 support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]