Received: by 2002:ac0:a5a7:0:0:0:0:0 with SMTP id m36-v6csp4257283imm; Mon, 6 Aug 2018 21:06:16 -0700 (PDT) X-Google-Smtp-Source: AAOMgpeOsIse4g+fxPre6RRc77Hz9oLj5OamizNfcIjxoi1ZIJds5OEmYb6o2ykTu/qx2O6pUsEU X-Received: by 2002:a62:ea05:: with SMTP id t5-v6mr19755493pfh.228.1533614776368; Mon, 06 Aug 2018 21:06:16 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1533614776; cv=none; d=google.com; s=arc-20160816; b=Hp2OqWv4mSIGXCH+QwlZiFMQu6eNdioOWXmjlTHKh3+5nLsZTV2VXbX8JnEXR+3lJI ZfMtTPVtaYgijd0YG1GF2+mukCXZjlF+RjPHeBmFQT3lJIERFAf2vQM21f3xUZIAr3LG JzMHMoTbwmJPpcJFI86hTbO0Y7BSEFkNIPkxvSFeKuD8cVs5TCMHf1MiF4cR109jbQrP iMpTIIPqNxi0KgN3J+qNanKVnah/CpcSItLzBOcky0ced5VZwqlEP1uqTkZIqZiUg3nJ XhwAMEgIOfJysKf8cPz2dZzqPLpxbwPW79PyeCt4rhhKYI+5j8HxzT+c2DscBeDWbaaR VFoQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:cc :to:from:date:dkim-signature:arc-authentication-results; bh=tzKWy8mSQii10z37UOJao0BY/NlXaTjM2vo/0PMlPSw=; b=I7CqShqJI2tpVrqAhHbaRDMqD9UCwYhTklehVaaGAwIWBp4egLNxCPL2hhOKp0CPzv Ck6uJS3r84MAF7kGsCXihcpjadUchqeiVvuwGSAddCbBwRkaAY+CQfMtL3n5DrvTMhmT qtakJi1NPdqtNFvIJnveiRSWhV9TA7g1m2zbQindBcHkgxYhkAi79yD8kjinae33Aohm eG+xqW9cldUR1TWX+k2BZ6ElMphsOxZjIsqE1LjivZ48Wf/WUX1GY2ybmtcKC22YZSYf gv/4VeOPKsCwLCbr9HGUF+Om4+G9lHPKwr8tNSkIVblqdMtlVHXHQnnA/G5WOPMGQk+P 9xFg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=uAZQ7VyU; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id m15-v6si237058pls.439.2018.08.06.21.06.01; Mon, 06 Aug 2018 21:06:16 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=uAZQ7VyU; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1729302AbeHGFYv (ORCPT + 99 others); Tue, 7 Aug 2018 01:24:51 -0400 Received: from mail.kernel.org ([198.145.29.99]:40500 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1725936AbeHGFYv (ORCPT ); Tue, 7 Aug 2018 01:24:51 -0400 Received: from sol.localdomain (c-67-185-97-198.hsd1.wa.comcast.net [67.185.97.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPSA id 0444921A12; Tue, 7 Aug 2018 03:12:39 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=default; t=1533611560; bh=2BdmmLKi3KfEeausvCatgJDvKatadRAb3+e4a+A2J+Y=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=uAZQ7VyUdohaGM6i9pCa/F5zmx/CMUho1FaSXmFE55tj7/GBuefy2hG35O9mYbnNf uVZKTuFjp/8CIpKyHPW8cEr0+m6Vteo9Ov+UA8bIrKsEaaQGw/SEfHc9B2PWA2olho vIl469bNpK9OkF63FxkC4+T3l/eA6pJOhf422m/k= Date: Mon, 6 Aug 2018 20:12:38 -0700 From: Eric Biggers To: "Jason A. Donenfeld" Cc: linux-crypto@vger.kernel.org, linux-fscrypt@vger.kernel.org, linux-arm-kernel@lists.infradead.org, linux-kernel@vger.kernel.org, Herbert Xu , Paul Crowley , Greg Kaiser , Michael Halcrow , Samuel Neves , Tomer Ashur , stable@vger.kernel.org Subject: Re: [PATCH] crypto: remove speck Message-ID: <20180807031237.GA779@sol.localdomain> References: <20180806223300.113891-1-ebiggers@kernel.org> <20180806230437.21431-1-Jason@zx2c4.com> <20180807011937.GA133621@gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.10.1 (2018-07-13) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, Aug 06, 2018 at 10:38:23PM -0400, Jason A. Donenfeld wrote: > On 8/6/18, Eric Biggers wrote: > > > > For context, in your commit message can you include a link to my email > > mentioning Android's Speck decision > > (https://marc.info/?l=linux-crypto-vger&m=153359499015659)? > > Sure. > > > > > Also: "speck" => "Speck". > > Ack. > > > > > Also I think the fscrypt code points should be reserved so they don't > > get reused for something else: > > > > #define FS_ENCRYPTION_MODE_SPECK128_256_XTS 7 /* removed */ > > #define FS_ENCRYPTION_MODE_SPECK128_256_CTS 8 /* removed */ > > I thought about this too, but it occurred to me it's highly improbable > these were ever used, and I thought it shinier not to leave scars. But > if you feel strongly about it, no problem, I'll fix that up and send > in a v2 shortly. > > > > > For the record, I think the statements Paul and I have made evaluating > > Speck from a technical perspective remain substantially accurate. > > It wasn't my intention to relitigate this, hence the rather short > commit message. You said your thing, Tomer said his, and now I'm just > trying to clear out the leftover soda cans. > Sure, neither do I. My intention is more to make it clear that we still don't know of any "backdoor" in Speck, or any weakness that would compromise its use in practice. I mention this because people are naturally going to be curious about that, e.g. speculating that Google found a "backdoor" -- remember that we do have some good cryptographers! I'm just stating what we know, out of honesty and openness; I don't really intend to be arguing for Speck with this statement, and in any case we already made the decision to not use Speck. Thanks, - Eric