aboutsummaryrefslogtreecommitdiffstats
path: root/jrt/src
Commit message (Collapse)AuthorAgeFilesLines
* Nonfunctional changes onlyJon Bratseth2018-12-131-3/+5
|
* Use AuthorizationMode to configure behaviour of PeerAuthorizerTrustManagerBjørn Christian Seime2018-12-051-2/+3
|
* Move MixedMode to separate classBjørn Christian Seime2018-12-051-1/+1
|
* Split ConfigFileManagedTlsContext into ReloadingTlsContext and DefaultTlsContextBjørn Christian Seime2018-12-051-2/+2
|
* Close the cryptoengine in order to get to close the tls context.Henning Baldersheim2018-12-034-3/+18
|
* Use TlsContext to construct TlsCryptoEngineBjørn Christian Seime2018-11-282-24/+10
|
* Enable PeerAuthorizer in dry-run mode in TlsCryptoSocketBjørn Christian Seime2018-11-271-0/+5
|
* Use TransportSecurityOptions.BuilderBjørn Christian Seime2018-11-191-10/+5
|
* detect eof during tls handshake detectionHåvard Pettersen2018-11-091-1/+3
|
* Revert "Bjorncs/accepted ciphers"Harald Musum2018-11-071-16/+6
|
* Allow configuration of accepted ciphersBjørn Christian Seime2018-11-061-6/+16
|
* No * importHenning Baldersheim2018-11-061-2/+15
|
* Verify handshake is complete in write() + flush()Bjørn Christian Seime2018-11-051-0/+2
|
* Add more debug logging to TlsCryptoSocketBjørn Christian Seime2018-11-051-0/+4
|
* Minor fixesJon Bratseth2018-10-141-4/+5
|
* Introduce insecure mixed mode + move env var logic to separate classBjørn Christian Seime2018-09-261-7/+17
|
* address naming concernsHåvard Pettersen2018-09-262-12/+12
|
* added support for auto-detecting tls for incoming connectionsHåvard Pettersen2018-09-253-0/+165
|
* Use TlsCryptoEngine if VESPA_TLS_CONFIG_FILE is setBjørn Christian Seime2018-09-102-1/+31
|
* Use drain() to unwrap multiple frames before reading from networkBjørn Christian Seime2018-09-041-1/+1
|
* Use com.yahoo.jrt.Buffer to simplify buffer managementBjørn Christian Seime2018-09-041-31/+25
|
* Rewrite wrap+unwrap to remove use of magic return valuesBjørn Christian Seime2018-09-041-47/+71
| | | | | | | - Wrap/unwrap for handshake returns true for success, false otherwise - Wrap/unwrap for application data returns bytes consumed/produced - Do not throw exception on overflow for unwrap - Misc changes to reduce code duplication
* Rename SslEngine/SslSocket -> TlsCryptoEngine/TlsCryptoSocketBjørn Christian Seime2018-09-032-10/+8
|
* Various fixes to SslSocketBjørn Christian Seime2018-09-031-5/+8
| | | | | | | | - Clear reference to handshake dummy buffer after completed handshake. - Make return value consistent between sslEngineAppDataWrap and sslEngineAppDataUnwrap. - Throw SSLException in sslEngineUnwrap when destination buffer capacity is too low. - SocketChannel.write() never returns -1 - Call flush() from write()
* Add ssl socket implementation based on SSLEngineBjørn Christian Seime2018-09-032-0/+262
|
* Perform post-handshake drain after setting connection stateHåvard Pettersen2018-08-301-1/+1
| | | | | This is to make sure that session live events will be delivered before any incoming requests.
* handshake data flushing should be handled by crypto socket handshakeHåvard Pettersen2018-08-291-5/+0
|
* integrate crypto concepts into jrtHåvard Pettersen2018-08-298-62/+429
|
* Fix author tag for SimonBjørn Christian Seime2018-07-051-1/+1
|
* Update javadocHåkon Hallingstad2017-10-121-2/+2
|
* Clear Slobrok entries after shutdownHåkon Hallingstad2017-10-081-0/+1
|
* Add the timeout in the message too.Henning Baldersheim2017-09-051-1/+1
|
* Keep acceptor thread alive until shutdown has been completedBjørn Christian Seime2017-06-201-11/+28
| | | | | | This is a workaround for a bug that is most likely in sun.nio.ch.ServerSocketChannelImpl, where the JVM tries to interrupt a thread that no longer exist, resulting in a SIGSEGV on MacOS.
* Update copyright headersJon Bratseth2017-06-1467-67/+67
|
* Revert "Update copyright headers"Jon Bratseth2017-06-1467-67/+67
|
* Update copyright headersJon Bratseth2017-06-1467-67/+67
|
* Revert "Copyright header"Jon Bratseth2017-06-1367-67/+67
|
* Copyright headerJon Bratseth2017-06-1367-67/+67
|
* use standard formatting for Override annotationArne H Juul2017-05-3019-20/+40
|
* Log successful registration when connecting to a new Slobrok serverHåkon Hallingstad2017-03-171-0/+1
|
* Make loss of slobrok INFOHåkon Hallingstad2017-03-171-1/+1
|
* More Slobrok logging when registering in JavaHåkon Hallingstad2017-03-171-31/+81
|
* Restore port docHåkon Hallingstad2017-02-221-1/+1
|
* Remove listeningHåkon Hallingstad2017-02-221-1/+1
|
* Properly revert most changes to SpecHåkon Hallingstad2017-02-221-10/+7
|
* Improve Spec APIHåkon Hallingstad2017-02-223-38/+16
| | | | | | - Removes Spec.getLocalHostName - Removes distinction between listening- and connect- address for Spec - Makes all usage of connect w/Spec specify hostname
* Makes clustercontroller-core work on WiFiHåkon Hallingstad2017-02-203-9/+37
|
* Yahoo sets up mac wireless networks such that the local hostname points to anJon Bratseth2016-09-2910-320/+294
| | | | | | ip which does not resolve. This works around that problem by finding a resolvable address (while still falling back to localhost if we only get ipv6 addresses, as that causes other problems in docker containers).
* Use github name in @authorJon Bratseth2016-06-161-1/+1
|
* PublishJon Bratseth2016-06-1567-0/+6265