Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Merge pull request #8218 from vespa-engine/bjorncs/tls | Tor Brede Vekterli | 2019-01-24 | 16 | -37/+80 |
|\ | | | | | bjorncs/tls | ||||
| * | Prefix names of jrt threads with 'jrt' | Bjørn Christian Seime | 2019-01-24 | 4 | -4/+4 |
| | | |||||
| * | Use 'prime256v1' curve for EC keys | Bjørn Christian Seime | 2019-01-23 | 4 | -14/+23 |
| | | | | | | | | | | This allows the TLS test in jrt to use elliptic curves crypto in unit tests (fixes issue where JSSE cannot find matching cipher). | ||||
| * | Allow configuration of accepted ciphers | Bjørn Christian Seime | 2019-01-23 | 9 | -13/+51 |
| | | |||||
| * | Use Jetty's recommendations for ciphers | Bjørn Christian Seime | 2019-01-23 | 1 | -7/+0 |
| | | |||||
| * | Add TLSv1.3 cipher suites to whitelist | Bjørn Christian Seime | 2019-01-23 | 1 | -1/+4 |
| | | |||||
* | | Merge pull request #8224 from vespa-engine/bjorncs/config-loadtester | Bjørn Christian Seime | 2019-01-24 | 1 | -2/+4 |
|\ \ | | | | | | | Print JRT transport metrics as comment in output | ||||
| * | | Print jrt transport metrics as comment in output | Bjørn Christian Seime | 2019-01-24 | 1 | -2/+4 |
| | | | |||||
* | | | Merge pull request #8215 from ↵ | Tor Brede Vekterli | 2019-01-24 | 9 | -17/+193 |
|\ \ \ | | | | | | | | | | | | | | | | | vespa-engine/vekterli/add-cipher-suite-support-to-cpp Add support for default cipher suites and `accepted-ciphers` config in C++ | ||||
| * | | | More explicit constness | Tor Brede Vekterli | 2019-01-24 | 1 | -1/+1 |
| | | | | |||||
| * | | | Make naming more consistent and avoid const deduction | Tor Brede Vekterli | 2019-01-24 | 7 | -33/+33 |
| | | | | |||||
| * | | | Erase private key data after use | Tor Brede Vekterli | 2019-01-24 | 3 | -3/+17 |
| | | | | |||||
| * | | | Add support for default cipher suite and `accepted-ciphers` config in C++ | Tor Brede Vekterli | 2019-01-24 | 9 | -6/+168 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Since the TLS config file uses IANA cipher names but OpenSSL uses its own cipher spec format internally, we explicitly remap the provided names. We only support a modern subset of ciphers. The default cipher suite contains ciphers that work across both TLSv1.2 and TLSv1.3. | ||||
* | | | | Merge pull request #8214 from ↵ | Tor Brede Vekterli | 2019-01-24 | 3 | -78/+115 |
|\ \ \ \ | |_|/ / |/| | | | | | | | | | | | vespa-engine/vekterli/return-http-400-on-bad-request-parameters Return HTTP 400 status code on bad request parameters | ||||
| * | | | Further simplify some status code-checking unit tests | Tor Brede Vekterli | 2019-01-23 | 1 | -38/+31 |
| | | | | |||||
| * | | | Return HTTP 400 instead of 403 on bad requests | Tor Brede Vekterli | 2019-01-23 | 3 | -75/+119 |
| | | | | | | | | | | | | | | | | | | | | Add explicit checking of HTTP response status codes to many REST API unit tests. | ||||
* | | | | Merge pull request #8211 from ↵ | Tor Brede Vekterli | 2019-01-24 | 2 | -6/+9 |
|\ \ \ \ | | | | | | | | | | | | | | | | | | | | | vespa-engine/toregge/reduce-use-of-system-in-storage-unit-tests Reduce use of system() in storage unit tests. [recheck merge] | ||||
| * | | | | Reduce use of system() in storage unit tests. | Tor Egge | 2019-01-23 | 2 | -6/+9 |
| | | | | | |||||
* | | | | | Merge pull request #8201 from ↵ | Tor Brede Vekterli | 2019-01-24 | 1 | -11/+37 |
|\ \ \ \ \ | |_|_|/ / |/| | | | | | | | | | | | | | | vespa-engine/toregge/stop-ignoring-return-value-in-fsa-module Stop ignoring return value from ::read and ::write in fsa module. [recheck merge] | ||||
| * | | | | Stop ignoring return value from ::read and ::write in fsa module. | Tor Egge | 2019-01-21 | 1 | -11/+37 |
| |/ / / | | | | | | | | | | | | | Propagate failure upwards. | ||||
* | | | | Merge pull request #8223 from vespa-engine/arnej/repair-word-alternatives | Henning Baldersheim | 2019-01-24 | 1 | -1/+1 |
|\ \ \ \ | | | | | | | | | | | update arity calculation | ||||
| * | | | | update arity calculation | Arne Juul | 2019-01-24 | 1 | -1/+1 |
| | | | | | |||||
* | | | | | Merge pull request #8171 from vespa-engine/jvenstad/firmware-upgrades | Jon Marius Venstad | 2019-01-24 | 14 | -42/+276 |
|\ \ \ \ \ | | | | | | | | | | | | | Forward firmware check requests from controller to zones ಠ_ಠ | ||||
| * | | | | | Support persistent output file for CommandLine | Jon Marius Venstad | 2019-01-24 | 5 | -13/+85 |
| | | | | | | |||||
| * | | | | | Made firmware checks visible to host admin | Jon Marius Venstad | 2019-01-24 | 4 | -29/+89 |
| | | | | | | |||||
| * | | | | | Forward firmware check requests from controller to zones | Jon Marius Venstad | 2019-01-24 | 5 | -0/+102 |
| | | | | | | |||||
* | | | | | | Merge pull request #8195 from ↵ | Tor Brede Vekterli | 2019-01-24 | 1 | -1/+2 |
|\ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | vespa-engine/vekterli/relax-client-tls-connection-stats-test-due-to-tls-13 Allow a client connection to be considered established in test [recheck merge] | ||||
| * | | | | | | Allow a client connection to be considered established in test | Tor Brede Vekterli | 2019-01-21 | 1 | -1/+2 |
| | |_|_|/ / | |/| | | | | | | | | | | | | | | | | | | | | | | TLSv1.3 completes in fewer roundtrips and may therefore seemingly not observe that a server has rejected it as part of the handshake itself. | ||||
* | | | | | | Merge pull request #8191 from ↵ | Tor Brede Vekterli | 2019-01-24 | 1 | -4/+4 |
|\ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | vespa-engine/vekterli/explicit-disable-tls-mixed-mode-enum-support-in-cpp Support explicitly disabling TLS mixed mode via environment in C++ [recheck merge] | ||||
| * | | | | | | Support explicitly disabling TLS mixed mode via environment in C++ | Tor Brede Vekterli | 2019-01-18 | 1 | -4/+4 |
| |/ / / / / | | | | | | | | | | | | | | | | | | | | | | | | | Specifying `tls_client_tls_server` has same effect as not specifying the environment variable at all. Mirrors behavior in Java implementation. | ||||
* | | | | | | Merge pull request #8194 from ↵ | Tor Brede Vekterli | 2019-01-24 | 1 | -2/+2 |
|\ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | vespa-engine/toregge/less-const-in-openssl-tls-context-impl Use less `const`, to allow compilation when using openssl 1.1.0g or 1.1.0i | ||||
| * | | | | | | Use less const, to allow compilation when using openssl 1.1.0g or 1.1.0i. | Tor Egge | 2019-01-21 | 1 | -2/+2 |
| | | | | | | | |||||
* | | | | | | | Merge pull request #8213 from ↵ | Harald Musum | 2019-01-24 | 2 | -37/+86 |
|\ \ \ \ \ \ \ | |_|_|/ / / / |/| | | | | | | | | | | | | | | | | | | | | vespa-engine/hmusum/error-context-for-schema-validation-failures Output context when schema validation fails | ||||
| * | | | | | | Output context when schema validation fails | Harald Musum | 2019-01-24 | 2 | -37/+86 |
| | | | | | | | |||||
* | | | | | | | Merge pull request #8187 from vespa-engine/bjorncs/jrt-transport-metrics | Bjørn Christian Seime | 2019-01-24 | 41 | -294/+204 |
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | bjorncs/jrt transport metrics | ||||
| * | | | | | | | Add calculation of metrics changes since previous snapshot | Bjørn Christian Seime | 2019-01-22 | 3 | -38/+54 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Move metric diff calculation to TransportMetrics.Snapshot. - Remove TransportMetrics.reset() and use changesSince() instead in EchoTest. - Remove unnecessary volatile modifier on JrtMetrics.previousSnapshot. - Initialize JrtMetrics.previousSnapshot in constructor. - Use separate field declarations for fields in TransportMetrics.Snapshot. | ||||
| * | | | | | | | Update copyright header | Bjørn Christian Seime | 2019-01-22 | 1 | -1/+1 |
| | | | | | | | | |||||
| * | | | | | | | Propagate jrt transport metrics to metrics framework | Bjørn Christian Seime | 2019-01-22 | 2 | -0/+47 |
| | | | | | | | | |||||
| * | | | | | | | Make TransportMetrics a singleton | Bjørn Christian Seime | 2019-01-22 | 11 | -45/+58 |
| | | | | | | | | |||||
| * | | | | | | | Add method to create snapshot of transport metrics | Bjørn Christian Seime | 2019-01-22 | 1 | -0/+35 |
| | | | | | | | | |||||
| * | | | | | | | Revert "Add tracking of jrt metrics" | Bjørn Christian Seime | 2019-01-22 | 4 | -128/+0 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This reverts commit 299d205912af1b3ebdb16a1fc037dd0770288be3. | ||||
| * | | | | | | | Revert "Add DefaultJrtFactory as component to container clusters" | Bjørn Christian Seime | 2019-01-22 | 1 | -2/+0 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This reverts commit 8aeee26b882c6aa1e12383502cfa37bb18082b53. | ||||
| * | | | | | | | Revert "Add jrt supervisor as constructor parameter" | Bjørn Christian Seime | 2019-01-22 | 1 | -6/+1 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This reverts commit 64c2d214d0122ba491f78c7298f0bf16ea3455bd. | ||||
| * | | | | | | | Revert "Use JrtFactory to construct jrt supervisors in configserver" | Bjørn Christian Seime | 2019-01-22 | 22 | -113/+47 |
| | |_|_|_|/ / | |/| | | | | | | | | | | | | | | | | | | | This reverts commit 87ca5c6c4159ae5a7e44417e6624bd2d0ecb073d. | ||||
* | | | | | | | Merge pull request #8219 from vespa-engine/bjorncs/travis | Bjørn Christian Seime | 2019-01-24 | 1 | -1/+1 |
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | Pass extra Maven arguments to bootstrap script | ||||
| * | | | | | | | Pass extra Maven arguments to bootstrap script | Bjørn Christian Seime | 2019-01-23 | 1 | -1/+1 |
| | |_|_|_|_|/ | |/| | | | | | |||||
* | | | | | | | Merge pull request #8185 from vespa-engine/mpolden/lb-acl | Martin Polden | 2019-01-24 | 15 | -114/+224 |
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | Add load balancer networks to node ACLs | ||||
| * | | | | | | | Move inactive filter to LoadBalancerList | Martin Polden | 2019-01-17 | 2 | -13/+13 |
| | | | | | | | | |||||
| * | | | | | | | Add load balancer networks to node ACL | Martin Polden | 2019-01-17 | 3 | -25/+63 |
| | | | | | | | | |||||
| * | | | | | | | Simplify | Martin Polden | 2019-01-17 | 1 | -5/+5 |
| | | | | | | | |