Code Review / vpp.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 7c922dc) | patch
Add SHA2 support to IKEv2 implementation 77/14577/2
authorBerenger Foucher <berenger.foucher@stagiaires.ssi.gouv.fr>
Thu, 30 Aug 2018 14:33:53 +0000 (16:33 +0200)
committerDamjan Marion <dmarion@me.com>
Thu, 30 Aug 2018 17:13:10 +0000 (17:13 +0000)
commit2ce8bd9621902b8078fdcd9a95fd366f24d56ab3
treef809fda434b104d37f0756e3424cb477543d5925tree | snapshot
parent7c922dc404c2c0a2d67d53ca05db1c1ae1598f44commit | diff
Add SHA2 support to IKEv2 implementation

The following patch adds a stronger cryptographic suite to IKEv2 implementation.

The following algorithms can now be used for integrity checking in IKEv2 implementation (responder and initiator):
    - hmac-sha2-256-128
    - hmac-sha2-384-192
    - hmac-sha2-512-256

The default integrity checking method was set to hmac-sha2-256-128.

The default PRF function was set sha2-256.

Change-Id: Ia82b4cbbf3067b19b8487040dbefbaf4c9319548
Signed-off-by: Berenger Foucher <berenger.foucher@stagiaires.ssi.gouv.fr>
src/vnet/ipsec/ikev2.c diff | blob | history
src/vnet/ipsec/ikev2_crypto.c diff | blob | history
Vector Packet Processing