On Mon, Nov 17, 2025 at 07:52:55PM +0000, David Howells wrote: > Eric Biggers <[email protected]> wrote: > > > In comparison, BoringSSL has an entire implementation of ML-DSA, ... > > ... which cannot be used in the kernel due to the licence. > > David
First, BoringSSL's license changed to Apache only recently. An older version of the code is available under a BSD style license. Second, even with the new license I can get permission to relicense it if needed. Third, regardless of license BoringSSL's code can't be reused directly in the kernel anyway, for various reasons. My point is that a smaller, cleaner, and more maintainable implementation of ML-DSA is possible, and your submission misses the mark. - Eric
