Google Git
Sign in
android / platform / packages / modules / IPsec / 87fc43cb
commit87fc43cb151e56b2fdf9d6314c744527e8568dad[log] [tgz]
authorYan Yan <evitayan@google.com>Wed Sep 08 11:51:53 2021 -0700
committerYan Yan <evitayan@google.com>Fri Sep 10 12:10:19 2021 -0700
tree1a4b02efd22957617ec498e858008e4cd9834a3f
parente3454cc1a59dfb2afbb680cca12e162ab259584f [diff]
Support sending INVALID_KE_PAYLOAD in Rekey IKE

This commit updates IKE library to support sending
INVALID_KE_PAYLOAD when the DH group in the inbound Rekey IKE
request does not match the negotiated proposal.

By sending an INVALID_KE_PAYLOAD to the server, IKE library can
indicate the expected DH group and the server is able to retry
Rekey IKE with it.

Bug: 197717228
Test: atest FrameworksIkeTests(new tests), CtsIkeTestCases
Change-Id: Ia06d5fec3286c9fc048769a580c24cb3d69987a3
2 files changed
tree: 1a4b02efd22957617ec498e858008e4cd9834a3f
  1. apex/
  2. api/
  3. src/
  4. tests/
  5. Android.bp
  6. jarjar-rules-shared.txt
  7. jarjar-rules-test.txt
  8. OWNERS
  9. PREUPLOAD.cfg
  10. README.md
  11. TEST_MAPPING
README.md

IKEv2 Library for Android

Introduction

This IKEv2 library is an in-process client library implementing the IKEv2 protocol as well as extensions necessary for the support of IWLAN. It is designed to work in a non-privileged fashion on top of the Android IPsec API surface.