Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit a8d51aac authored by Yan Yan's avatar Yan Yan Committed by Gerrit Code Review
Browse files

Merge changes from topic "ike-params" 

* changes:
  Support converting VcnControlPlaneIkeConfig to/from PersistableBundle
  Support converting IKE Options to/from PersistableBundle
  Support converting IkeConfigRequest to/from PersistableBundle
  Support converting IkeAuthEapConfig to/from PersistableBundle
  Support converting IkeAuthDigitalSignConfig to/from PersistableBundle
  Support converting IkeAuthConfig to/from PersistableBundle
  Support converting IkeSessionParams to/from PersistableBundle
parents dd010bff f8bce7ed

core/java/android/net/vcn/VcnControlPlaneIkeConfig.java

+25 −17
Original line number Diff line number Diff line
@@ -19,11 +19,13 @@ package android.net.vcn; 
import static android.net.vcn.VcnControlPlaneConfig.CONFIG_TYPE_IKE;



import android.annotation.NonNull;

import android.annotation.Nullable;

import android.net.ipsec.ike.IkeSessionParams;

import android.net.ipsec.ike.TunnelModeChildSessionParams;

import android.net.vcn.persistablebundleutils.IkeSessionParamsUtils;

import android.net.vcn.persistablebundleutils.TunnelModeChildSessionParamsUtils;

import android.os.PersistableBundle;

import android.util.ArraySet;

import android.util.Log;



import java.util.Objects;
@@ -38,14 +40,11 @@ import java.util.Objects; 
public final class VcnControlPlaneIkeConfig extends VcnControlPlaneConfig {

    private static final String TAG = VcnControlPlaneIkeConfig.class.getSimpleName();



    // STOPSHIP: b/163604823 Make mIkeParams and mChildParams @NonNull when it is supported to

    // construct mIkeParams and mChildParams from PersistableBundles.



    private static final String IKE_PARAMS_KEY = "mIkeParams";

    @Nullable private final IkeSessionParams mIkeParams;

    @NonNull private final IkeSessionParams mIkeParams;



    private static final String CHILD_PARAMS_KEY = "mChildParams";

    @Nullable private final TunnelModeChildSessionParams mChildParams;

    @NonNull private final TunnelModeChildSessionParams mChildParams;



    private static final ArraySet<String> BUNDLE_KEY_SET = new ArraySet<>();
@@ -80,11 +79,19 @@ public final class VcnControlPlaneIkeConfig extends VcnControlPlaneConfig { 
        final PersistableBundle ikeParamsBundle = in.getPersistableBundle(IKE_PARAMS_KEY);

        final PersistableBundle childParamsBundle = in.getPersistableBundle(CHILD_PARAMS_KEY);



        // STOPSHIP: b/163604823 Support constructing mIkeParams and mChildParams from

        // PersistableBundles.

        Objects.requireNonNull(ikeParamsBundle, "IKE Session Params was null");

        Objects.requireNonNull(childParamsBundle, "Child Session Params was null");



        mIkeParams = IkeSessionParamsUtils.fromPersistableBundle(ikeParamsBundle);

        mChildParams = TunnelModeChildSessionParamsUtils.fromPersistableBundle(childParamsBundle);



        mIkeParams = null;

        mChildParams = null;

        for (String key : in.keySet()) {

            if (!BUNDLE_KEY_SET.contains(key)) {

                Log.w(TAG, "Found an unexpected key in the PersistableBundle: " + key);

            }

        }



        validate();

    }



    private void validate() {
@@ -101,9 +108,11 @@ public final class VcnControlPlaneIkeConfig extends VcnControlPlaneConfig { 
    @NonNull

    public PersistableBundle toPersistableBundle() {

        final PersistableBundle result = super.toPersistableBundle();



        // STOPSHIP: b/163604823 Support converting mIkeParams and mChildParams to

        // PersistableBundles.

        result.putPersistableBundle(

                IKE_PARAMS_KEY, IkeSessionParamsUtils.toPersistableBundle(mIkeParams));

        result.putPersistableBundle(

                CHILD_PARAMS_KEY,

                TunnelModeChildSessionParamsUtils.toPersistableBundle(mChildParams));

        return result;

    }
@@ -134,10 +143,9 @@ public final class VcnControlPlaneIkeConfig extends VcnControlPlaneConfig { 


        VcnControlPlaneIkeConfig other = (VcnControlPlaneIkeConfig) o;



        // STOPSHIP: b/163604823 Also check mIkeParams and mChildParams when it is supported to

        // construct mIkeParams and mChildParams from PersistableBundles. They are not checked

        // now so that VcnGatewayConnectionConfigTest and VcnConfigTest can pass.

        return super.equals(o);

        return super.equals(o)

                && Objects.equals(mIkeParams, other.mIkeParams)

                && Objects.equals(mChildParams, other.mChildParams);

    }



    /** @hide */

core/java/android/net/vcn/persistablebundleutils/CertUtils.java

+21 −1
Original line number Diff line number Diff line
@@ -18,18 +18,24 @@ package android.net.vcn.persistablebundleutils; 


import java.io.ByteArrayInputStream;

import java.io.InputStream;

import java.security.KeyFactory;

import java.security.NoSuchAlgorithmException;

import java.security.cert.CertificateException;

import java.security.cert.CertificateFactory;

import java.security.cert.X509Certificate;

import java.security.interfaces.RSAPrivateKey;

import java.security.spec.InvalidKeySpecException;

import java.security.spec.PKCS8EncodedKeySpec;

import java.util.Objects;



/**

 * CertUtils provides utility methods for constructing Certificate.

 * CertUtils provides utility methods for constructing Certificate and PrivateKey.

 *

 * @hide

 */

public class CertUtils {

    private static final String CERT_TYPE_X509 = "X.509";

    private static final String PRIVATE_KEY_TYPE_RSA = "RSA";



    /** Decodes an ASN.1 DER encoded Certificate */

    public static X509Certificate certificateFromByteArray(byte[] derEncoded) {
@@ -43,4 +49,18 @@ public class CertUtils { 
            throw new IllegalArgumentException("Fail to decode certificate", e);

        }

    }



    /** Decodes a PKCS#8 encoded RSA private key */

    public static RSAPrivateKey privateKeyFromByteArray(byte[] pkcs8Encoded) {

        Objects.requireNonNull(pkcs8Encoded, "pkcs8Encoded was null");

        PKCS8EncodedKeySpec privateKeySpec = new PKCS8EncodedKeySpec(pkcs8Encoded);



        try {

            KeyFactory keyFactory = KeyFactory.getInstance(PRIVATE_KEY_TYPE_RSA);



            return (RSAPrivateKey) keyFactory.generatePrivate(privateKeySpec);

        } catch (NoSuchAlgorithmException | InvalidKeySpecException e) {

            throw new IllegalArgumentException("Fail to decode PrivateKey", e);

        }

    }

}

core/java/android/net/vcn/persistablebundleutils/IkeSessionParamsUtils.java

0 → 100644
+513 −0

File added.

Preview size limit exceeded, changes collapsed.

tests/vcn/assets/client-end-cert.pem

0 → 100644
+21 −0
Original line number Diff line number Diff line 
-----BEGIN CERTIFICATE-----

MIIDaDCCAlCgAwIBAgIIcorRI3n29E4wDQYJKoZIhvcNAQELBQAwQTELMAkGA1UE

BhMCVVMxEDAOBgNVBAoTB0FuZHJvaWQxIDAeBgNVBAMTF3R3by5jYS50ZXN0LmFu

ZHJvaWQubmV0MB4XDTIwMDQxNDA1MDM0OVoXDTIzMDQxNDA1MDM0OVowRTELMAkG

A1UEBhMCVVMxEDAOBgNVBAoTB0FuZHJvaWQxJDAiBgNVBAMTG2NsaWVudC50ZXN0

LmlrZS5hbmRyb2lkLm5ldDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB

AK/cK+sIaiQlJYvy5+Dq70sJbgR7PO1uS2qkLRP7Wb3z5SNvz94nQvZRrFn1AFIE

CpfESh5kUF6gJe7t7NR3mpQ98iEosCRBMDJT8qB+EeHiL4wkrmCE9sYMTyvaApRc

6Qzozn/9kKma7Qpj/25AvoPluTERqhZ6AQ77BJeb6FNOAoO1Aoe9GJuB1xmRxjRw

D0mwusL+ciQ/7uKlsFP5VO5XqACcohXSerzO8jcD9necBvka3SDepqqzn1K0NPRC

25fMmS5kSjddKtKOif7w2NI3OpVsmP3kHv66If73VURsy0lgXPYyKkq8lAMrtmXG

R7svFGPbEl+Swkpr3b+dzF8CAwEAAaNgMF4wHwYDVR0jBBgwFoAUcqSu1uRYT/DL

bLoDNUz38nGvCKQwJgYDVR0RBB8wHYIbY2xpZW50LnRlc3QuaWtlLmFuZHJvaWQu

bmV0MBMGA1UdJQQMMAoGCCsGAQUFBwMCMA0GCSqGSIb3DQEBCwUAA4IBAQCa53tK

I9RM9/MutZ5KNG2Gfs2cqaPyv8ZRhs90HDWZhkFVu7prywJAxOd2hxxHPsvgurio

4bKAxnT4EXevgz5YoCbj2TPIL9TdFYh59zZ97XXMxk+SRdypgF70M6ETqKPs3hDP

ZRMMoHvvYaqaPvp4StSBX9A44gSyjHxVYJkrjDZ0uffKg5lFL5IPvqfdmSRSpGab

SyGTP4OLTy0QiNV3pBsJGdl0h5BzuTPR9OTl4xgeqqBQy2bDjmfJBuiYyCSCkPi7

T3ohDYCymhuSkuktHPNG1aKllUJaw0tuZuNydlgdAveXPYfM36uvK0sfd9qr9pAy

rmkYV2MAWguFeckh

-----END CERTIFICATE-----
 
 No newline at end of file

tests/vcn/assets/client-private-key.key

0 → 100644
+28 −0
Original line number Diff line number Diff line 
-----BEGIN PRIVATE KEY-----

MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQCv3CvrCGokJSWL

8ufg6u9LCW4EezztbktqpC0T+1m98+Ujb8/eJ0L2UaxZ9QBSBAqXxEoeZFBeoCXu

7ezUd5qUPfIhKLAkQTAyU/KgfhHh4i+MJK5ghPbGDE8r2gKUXOkM6M5//ZCpmu0K

Y/9uQL6D5bkxEaoWegEO+wSXm+hTTgKDtQKHvRibgdcZkcY0cA9JsLrC/nIkP+7i

pbBT+VTuV6gAnKIV0nq8zvI3A/Z3nAb5Gt0g3qaqs59StDT0QtuXzJkuZEo3XSrS

jon+8NjSNzqVbJj95B7+uiH+91VEbMtJYFz2MipKvJQDK7Zlxke7LxRj2xJfksJK

a92/ncxfAgMBAAECggEAQztaMvW5lm35J8LKsWs/5qEJRX9T8LWs8W0oqq36Riub

G2wgvR6ndAIPcSjAYZqX7iOl7m6NZ0+0kN63HxdGqovwKIskpAekBGmhpYftED1n

zh0r6UyMB3UnQ22KdOv8UOokIDxxdNX8728BdUYdT9Ggdkj5jLRB+VcwD0IUlNvo

zzTpURV9HEd87uiLqd4AAHXSI0lIHI5U43z24HI/J6/YbYHT3Rlh6CIa/LuwO6vL

gFkgqg0/oy6yJtjrHtzNVA67F0UaH62hR4YFgbC0d955SJnDidWOv/0j2DMpfdCc

9kFAcPwUSyykvUSLnGIKWSG4D+6gzIeAeUx4oO7kMQKBgQDVNRkX8AGTHyLg+NXf

spUWWcodwVioXl30Q7h6+4bt8OI61UbhQ7wX61wvJ1cySpa2KOYa2UdagQVhGhhL

ADu363R77uXF/jZgzVfmjjyJ2nfDqRgHWRTlSkuq/jCOQCz7VIPHRZg5WL/9D4ms

TAqMjpzqeMfFZI+w4/+xpcJIuQKBgQDTKBy+ZuerWrVT9icWKvLU58o5EVj/2yFy

GJvKm+wRAAX2WzjNnR4HVd4DmMREVz1BPYby0j5gqjvtDsxYYu39+NT7JvMioLLK

QPj+7k5geYgNqVgCxB1vP89RhY2X1RLrN9sTXOodgFPeXOQWNYITkGp3eQpx4nTJ

+K/al3oB1wKBgAjnc8nVIyuyxDEjE0OJYMKTM2a0uXAmqMPXxC+Wq5bqVXhhidlE

i+lv0eTCPtkB1nN7F8kNQ/aaps/cWCFhvBy9P5shagUvzbOTP9WIIS0cq53HRRKh

fMbqqGhWv05hjb9dUzeSR341n6cA7B3++v3Nwu3j52vt/DZF/1q68nc5AoGAS0SU

ImbKE/GsizZGLoe2sZ/CHN+LKwCwhlwxRGKaHmE0vuE7eUeVSaYZEo0lAPtb8WJ+

NRYueASWgeTxgFwbW5mUScZTirdfo+rPFwhZVdhcYApKPgosN9i2DOgfVcz1BnWN

mPRY25U/0BaqkyQVruWeneG+kGPZn5kPDktKiVcCgYEAkzwU9vCGhm7ZVALvx/zR

wARz2zsL9ImBc0P4DK1ld8g90FEnHrEgeI9JEwz0zFHOCMLwlk7kG0Xev7vfjZ7G

xSqtQYOH33Qp6rtBOgdt8hSyDFvakvDl6bqhAw52gelO3MTpAB1+ZsfZ5gFx13Jf

idNFcaIrC52PtZIH7QCzdDY=

-----END PRIVATE KEY-----
 
 No newline at end of file