Code Review / vpp.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 138f65c) | patch
ikev2: accept key exchange on CREATE_CHILD_SA 79/36879/4
authorAtzm Watanabe <atzmism@gmail.com>
Fri, 12 Aug 2022 05:29:31 +0000 (14:29 +0900)
committerBeno�t Ganne <bganne@cisco.com>
Thu, 18 Aug 2022 08:03:13 +0000 (08:03 +0000)
commitc65921f7744a0da09ede876b6588628e3a188529
treefb004fb74260e71a18d245d691c78cc81bb37889tree | snapshot
parent138f65c5b7796c6401cde6ff92edc85f02c367a4commit | diff
ikev2: accept key exchange on CREATE_CHILD_SA

In RFC 7296, CREATE_CHILD_SA Exchange may contain the KE payload
to enable stronger guarantees of forward secrecy.
When the KEi payload is included in the CREATE_CHILD_SA request,
responder should reply with the KEr payload and complete the key
exchange, in accordance with the RFC.

Type: improvement
Signed-off-by: Atzm Watanabe <atzmism@gmail.com>
Change-Id: I13cf6cf24359c11c3366757e585195bb7e999638
src/plugins/ikev2/ikev2.c diff | blob | history
src/plugins/ikev2/ikev2_priv.h diff | blob | history
test/test_ikev2.py diff | blob | history
Vector Packet Processing