From 17b1c63ba51e1c8f58ef89ffe4953e3a7a8144ed Mon Sep 17 00:00:00 2001 From: Mike Belopuhov Date: Wed, 6 Oct 2010 22:19:21 +0000 Subject: Retire Skipjack There's not much use for the declassified cipher from the 80's with a questionable license these days. According to the FIPS drafts, Skipjack reaches its EOL in December 2010. The libc portion will be removed after the ports hackathon. djm and thib agree, no objections from deraadt Thanks to jsg for digging up FIPS drafts. --- sbin/ipsecctl/pfkey.c | 5 +---- 1 file changed, 1 insertion(+), 4 deletions(-) (limited to 'sbin/ipsecctl/pfkey.c') diff --git a/sbin/ipsecctl/pfkey.c b/sbin/ipsecctl/pfkey.c index ad8dc2c14ad..0c134162419 100644 --- a/sbin/ipsecctl/pfkey.c +++ b/sbin/ipsecctl/pfkey.c @@ -1,4 +1,4 @@ -/* $OpenBSD: pfkey.c,v 1.50 2010/09/22 14:04:09 mikeb Exp $ */ +/* $OpenBSD: pfkey.c,v 1.51 2010/10/06 22:19:20 mikeb Exp $ */ /* * Copyright (c) 2003, 2004 Henning Brauer * Copyright (c) 2003, 2004 Markus Friedl @@ -515,9 +515,6 @@ pfkey_sa(int sd, u_int8_t satype, u_int8_t action, u_int32_t spi, case ENCXF_NULL: sa.sadb_sa_encrypt = SADB_EALG_NULL; break; - case ENCXF_SKIPJACK: - sa.sadb_sa_encrypt = SADB_X_EALG_SKIPJACK; - break; default: warnx("unsupported encryption algorithm %d", xfs->encxf->id); -- cgit v1.2.3