git.ipfire.org Git - thirdparty/kernel/linux.git/commit

author	Eric Biggers <ebiggers@kernel.org>
	Thu, 30 Apr 2026 01:15:44 +0000 (18:15 -0700)
committer	Herbert Xu <herbert@gondor.apana.org.au>
	Thu, 7 May 2026 08:10:03 +0000 (16:10 +0800)
commit	a67afb1884ba815079bd43d5c998e155e03b08b6
tree	5f7e1d7319dafa8dd9fc166adccdee4a5aa5ce64	tree \| snapshot
parent	ea5e57cc97185329dcc5ebdcaae7e1500bf0ad0b	commit \| diff

crypto: af_alg - Document the deprecation of AF_ALG

AF_ALG is almost completely unnecessary, and it exposes a massive attack
surface that hasn't been standing up to modern vulnerability discovery
tools.  The latest one even has its own website, providing a small
Python script that reliably roots most Linux distros: https://copy.fail/

This isn't sustainable, especially as LLMs have accelerated the rate the
vulnerabilities are coming in.  The effort that is being put into this
thing is vastly disproportional to the few programs that actually use
it, and those programs would be better served by userspace code anyway.

These issues have been noted in many mailing list discussions already.
But until now they haven't been reflected in the documentation or
kconfig menu itself, and the vulnerabilities are still coming in.

Let's go ahead and document the deprecation.

This isn't intended to change anything overnight.  After all, most Linux
distros won't be able to disable the kconfig options quite yet, mainly
because of iwd.  But this should create a bit more impetus for these
userspace programs to be fixed, and the documentation update should also
help prevent more users from appearing.

Signed-off-by: Eric Biggers <ebiggers@kernel.org>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>

Documentation/crypto/userspace-if.rst		diff \| blob \| blame \| history
crypto/Kconfig		diff \| blob \| blame \| history