Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
| * | async tls handshake in jrt | Håvard Pettersen | 2019-02-26 | 5 | -65/+164 | |
| | | ||||||
* | | Log when slobrok request fails | Harald Musum | 2019-02-26 | 1 | -0/+2 | |
| | | ||||||
* | | Revert "Add some debug logging for trying to track down Slobrok issue" | Harald Musum | 2019-02-26 | 2 | -6/+0 | |
| | | ||||||
* | | Add some debug logging for trying to track down an issue | Harald Musum | 2019-02-25 | 2 | -0/+6 | |
|/ | ||||||
* | Require client auth for ssl engines constructed by DefaultTlsContext | Bjørn Christian Seime | 2019-02-19 | 1 | -1/+0 | |
| | ||||||
* | Revert "Bjorncs/jdisc mixed mode preparations" | Arnstein Ressem | 2019-02-18 | 1 | -0/+1 | |
| | ||||||
* | Merge pull request #8511 from vespa-engine/bjorncs/jdisc-misc-mode-preparations | Bjørn Christian Seime | 2019-02-18 | 1 | -1/+0 | |
|\ | | | | | Bjorncs/jdisc mixed mode preparations | |||||
| * | Require client auth for ssl engines constructed by DefaultTlsContext | Bjørn Christian Seime | 2019-02-14 | 1 | -1/+0 | |
| | | ||||||
* | | Fix bug where authorization result was never assigned | Bjørn Christian Seime | 2019-02-18 | 1 | -1/+1 | |
| | | ||||||
* | | Do heavy computation work as an explicit handshake step | Bjørn Christian Seime | 2019-02-18 | 6 | -16/+43 | |
|/ | | | | | | Move execution of SSLEngine's delegated tasks to a separate method doHandshakeWork(). This is a preparation for performing computation heavy handshake work in a separate thread. | |||||
* | Report values from initial snapshot | Bjørn Christian Seime | 2019-01-29 | 1 | -0/+2 | |
| | | | | | Initialize JrtMetrics with empty snapshot so that the values of the first real snapshot are reported. | |||||
* | Merge pull request #8218 from vespa-engine/bjorncs/tls | Tor Brede Vekterli | 2019-01-24 | 4 | -4/+4 | |
|\ | | | | | bjorncs/tls | |||||
| * | Prefix names of jrt threads with 'jrt' | Bjørn Christian Seime | 2019-01-24 | 4 | -4/+4 | |
| | | ||||||
* | | Add calculation of metrics changes since previous snapshot | Bjørn Christian Seime | 2019-01-22 | 1 | -17/+41 | |
| | | | | | | | | | | | | | | | | - Move metric diff calculation to TransportMetrics.Snapshot. - Remove TransportMetrics.reset() and use changesSince() instead in EchoTest. - Remove unnecessary volatile modifier on JrtMetrics.previousSnapshot. - Initialize JrtMetrics.previousSnapshot in constructor. - Use separate field declarations for fields in TransportMetrics.Snapshot. | |||||
* | | Make TransportMetrics a singleton | Bjørn Christian Seime | 2019-01-22 | 10 | -31/+41 | |
| | | ||||||
* | | Add method to create snapshot of transport metrics | Bjørn Christian Seime | 2019-01-22 | 1 | -0/+35 | |
|/ | ||||||
* | Return default values when env vars are not present | Bjørn Christian Seime | 2019-01-15 | 1 | -5/+4 | |
| | ||||||
* | Add metrics for jrt transport | Bjørn Christian Seime | 2019-01-08 | 10 | -60/+180 | |
| | ||||||
* | Store authorization result in TlsCryptoSocket | Bjørn Christian Seime | 2019-01-08 | 1 | -1/+10 | |
| | ||||||
* | ThreadLocalRandom is recommended over Random in multithreaded environments, ↵ | Håkon Hallingstad | 2018-12-20 | 1 | -3/+2 | |
| | | | | try 2 | |||||
* | Nonfunctional changes only | Jon Bratseth | 2018-12-13 | 1 | -3/+5 | |
| | ||||||
* | Use AuthorizationMode to configure behaviour of PeerAuthorizerTrustManager | Bjørn Christian Seime | 2018-12-05 | 1 | -2/+3 | |
| | ||||||
* | Move MixedMode to separate class | Bjørn Christian Seime | 2018-12-05 | 1 | -1/+1 | |
| | ||||||
* | Split ConfigFileManagedTlsContext into ReloadingTlsContext and DefaultTlsContext | Bjørn Christian Seime | 2018-12-05 | 1 | -2/+2 | |
| | ||||||
* | Close the cryptoengine in order to get to close the tls context. | Henning Baldersheim | 2018-12-03 | 4 | -3/+18 | |
| | ||||||
* | Use TlsContext to construct TlsCryptoEngine | Bjørn Christian Seime | 2018-11-28 | 2 | -24/+10 | |
| | ||||||
* | Enable PeerAuthorizer in dry-run mode in TlsCryptoSocket | Bjørn Christian Seime | 2018-11-27 | 1 | -0/+5 | |
| | ||||||
* | Use TransportSecurityOptions.Builder | Bjørn Christian Seime | 2018-11-19 | 1 | -10/+5 | |
| | ||||||
* | detect eof during tls handshake detection | Håvard Pettersen | 2018-11-09 | 1 | -1/+3 | |
| | ||||||
* | Revert "Bjorncs/accepted ciphers" | Harald Musum | 2018-11-07 | 1 | -16/+6 | |
| | ||||||
* | Allow configuration of accepted ciphers | Bjørn Christian Seime | 2018-11-06 | 1 | -6/+16 | |
| | ||||||
* | No * import | Henning Baldersheim | 2018-11-06 | 1 | -2/+15 | |
| | ||||||
* | Verify handshake is complete in write() + flush() | Bjørn Christian Seime | 2018-11-05 | 1 | -0/+2 | |
| | ||||||
* | Add more debug logging to TlsCryptoSocket | Bjørn Christian Seime | 2018-11-05 | 1 | -0/+4 | |
| | ||||||
* | Minor fixes | Jon Bratseth | 2018-10-14 | 1 | -4/+5 | |
| | ||||||
* | Introduce insecure mixed mode + move env var logic to separate class | Bjørn Christian Seime | 2018-09-26 | 1 | -7/+17 | |
| | ||||||
* | address naming concerns | Håvard Pettersen | 2018-09-26 | 2 | -12/+12 | |
| | ||||||
* | added support for auto-detecting tls for incoming connections | Håvard Pettersen | 2018-09-25 | 3 | -0/+165 | |
| | ||||||
* | Use TlsCryptoEngine if VESPA_TLS_CONFIG_FILE is set | Bjørn Christian Seime | 2018-09-10 | 2 | -1/+31 | |
| | ||||||
* | Use drain() to unwrap multiple frames before reading from network | Bjørn Christian Seime | 2018-09-04 | 1 | -1/+1 | |
| | ||||||
* | Use com.yahoo.jrt.Buffer to simplify buffer management | Bjørn Christian Seime | 2018-09-04 | 1 | -31/+25 | |
| | ||||||
* | Rewrite wrap+unwrap to remove use of magic return values | Bjørn Christian Seime | 2018-09-04 | 1 | -47/+71 | |
| | | | | | | | - Wrap/unwrap for handshake returns true for success, false otherwise - Wrap/unwrap for application data returns bytes consumed/produced - Do not throw exception on overflow for unwrap - Misc changes to reduce code duplication | |||||
* | Rename SslEngine/SslSocket -> TlsCryptoEngine/TlsCryptoSocket | Bjørn Christian Seime | 2018-09-03 | 2 | -10/+8 | |
| | ||||||
* | Various fixes to SslSocket | Bjørn Christian Seime | 2018-09-03 | 1 | -5/+8 | |
| | | | | | | | | - Clear reference to handshake dummy buffer after completed handshake. - Make return value consistent between sslEngineAppDataWrap and sslEngineAppDataUnwrap. - Throw SSLException in sslEngineUnwrap when destination buffer capacity is too low. - SocketChannel.write() never returns -1 - Call flush() from write() | |||||
* | Add ssl socket implementation based on SSLEngine | Bjørn Christian Seime | 2018-09-03 | 2 | -0/+262 | |
| | ||||||
* | Perform post-handshake drain after setting connection state | Håvard Pettersen | 2018-08-30 | 1 | -1/+1 | |
| | | | | | This is to make sure that session live events will be delivered before any incoming requests. | |||||
* | handshake data flushing should be handled by crypto socket handshake | Håvard Pettersen | 2018-08-29 | 1 | -5/+0 | |
| | ||||||
* | integrate crypto concepts into jrt | Håvard Pettersen | 2018-08-29 | 8 | -62/+429 | |
| | ||||||
* | Fix author tag for Simon | Bjørn Christian Seime | 2018-07-05 | 1 | -1/+1 | |
| | ||||||
* | Update javadoc | Håkon Hallingstad | 2017-10-12 | 1 | -2/+2 | |
| |