Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Nonfunctional changes only | Jon Bratseth | 2018-12-13 | 1 | -3/+5 |
| | |||||
* | Use AuthorizationMode to configure behaviour of PeerAuthorizerTrustManager | Bjørn Christian Seime | 2018-12-05 | 1 | -2/+3 |
| | |||||
* | Move MixedMode to separate class | Bjørn Christian Seime | 2018-12-05 | 1 | -1/+1 |
| | |||||
* | Split ConfigFileManagedTlsContext into ReloadingTlsContext and DefaultTlsContext | Bjørn Christian Seime | 2018-12-05 | 1 | -2/+2 |
| | |||||
* | Close the cryptoengine in order to get to close the tls context. | Henning Baldersheim | 2018-12-03 | 4 | -3/+18 |
| | |||||
* | Use TlsContext to construct TlsCryptoEngine | Bjørn Christian Seime | 2018-11-28 | 2 | -24/+10 |
| | |||||
* | Enable PeerAuthorizer in dry-run mode in TlsCryptoSocket | Bjørn Christian Seime | 2018-11-27 | 1 | -0/+5 |
| | |||||
* | Use TransportSecurityOptions.Builder | Bjørn Christian Seime | 2018-11-19 | 1 | -10/+5 |
| | |||||
* | detect eof during tls handshake detection | Håvard Pettersen | 2018-11-09 | 1 | -1/+3 |
| | |||||
* | Revert "Bjorncs/accepted ciphers" | Harald Musum | 2018-11-07 | 1 | -16/+6 |
| | |||||
* | Allow configuration of accepted ciphers | Bjørn Christian Seime | 2018-11-06 | 1 | -6/+16 |
| | |||||
* | No * import | Henning Baldersheim | 2018-11-06 | 1 | -2/+15 |
| | |||||
* | Verify handshake is complete in write() + flush() | Bjørn Christian Seime | 2018-11-05 | 1 | -0/+2 |
| | |||||
* | Add more debug logging to TlsCryptoSocket | Bjørn Christian Seime | 2018-11-05 | 1 | -0/+4 |
| | |||||
* | Minor fixes | Jon Bratseth | 2018-10-14 | 1 | -4/+5 |
| | |||||
* | Introduce insecure mixed mode + move env var logic to separate class | Bjørn Christian Seime | 2018-09-26 | 1 | -7/+17 |
| | |||||
* | address naming concerns | Håvard Pettersen | 2018-09-26 | 2 | -12/+12 |
| | |||||
* | added support for auto-detecting tls for incoming connections | Håvard Pettersen | 2018-09-25 | 3 | -0/+165 |
| | |||||
* | Use TlsCryptoEngine if VESPA_TLS_CONFIG_FILE is set | Bjørn Christian Seime | 2018-09-10 | 2 | -1/+31 |
| | |||||
* | Use drain() to unwrap multiple frames before reading from network | Bjørn Christian Seime | 2018-09-04 | 1 | -1/+1 |
| | |||||
* | Use com.yahoo.jrt.Buffer to simplify buffer management | Bjørn Christian Seime | 2018-09-04 | 1 | -31/+25 |
| | |||||
* | Rewrite wrap+unwrap to remove use of magic return values | Bjørn Christian Seime | 2018-09-04 | 1 | -47/+71 |
| | | | | | | | - Wrap/unwrap for handshake returns true for success, false otherwise - Wrap/unwrap for application data returns bytes consumed/produced - Do not throw exception on overflow for unwrap - Misc changes to reduce code duplication | ||||
* | Rename SslEngine/SslSocket -> TlsCryptoEngine/TlsCryptoSocket | Bjørn Christian Seime | 2018-09-03 | 2 | -10/+8 |
| | |||||
* | Various fixes to SslSocket | Bjørn Christian Seime | 2018-09-03 | 1 | -5/+8 |
| | | | | | | | | - Clear reference to handshake dummy buffer after completed handshake. - Make return value consistent between sslEngineAppDataWrap and sslEngineAppDataUnwrap. - Throw SSLException in sslEngineUnwrap when destination buffer capacity is too low. - SocketChannel.write() never returns -1 - Call flush() from write() | ||||
* | Add ssl socket implementation based on SSLEngine | Bjørn Christian Seime | 2018-09-03 | 2 | -0/+262 |
| | |||||
* | Perform post-handshake drain after setting connection state | Håvard Pettersen | 2018-08-30 | 1 | -1/+1 |
| | | | | | This is to make sure that session live events will be delivered before any incoming requests. | ||||
* | handshake data flushing should be handled by crypto socket handshake | Håvard Pettersen | 2018-08-29 | 1 | -5/+0 |
| | |||||
* | integrate crypto concepts into jrt | Håvard Pettersen | 2018-08-29 | 8 | -62/+429 |
| | |||||
* | Fix author tag for Simon | Bjørn Christian Seime | 2018-07-05 | 1 | -1/+1 |
| | |||||
* | Update javadoc | Håkon Hallingstad | 2017-10-12 | 1 | -2/+2 |
| | |||||
* | Clear Slobrok entries after shutdown | Håkon Hallingstad | 2017-10-08 | 1 | -0/+1 |
| | |||||
* | Add the timeout in the message too. | Henning Baldersheim | 2017-09-05 | 1 | -1/+1 |
| | |||||
* | Keep acceptor thread alive until shutdown has been completed | Bjørn Christian Seime | 2017-06-20 | 1 | -11/+28 |
| | | | | | | This is a workaround for a bug that is most likely in sun.nio.ch.ServerSocketChannelImpl, where the JVM tries to interrupt a thread that no longer exist, resulting in a SIGSEGV on MacOS. | ||||
* | Update copyright headers | Jon Bratseth | 2017-06-14 | 67 | -67/+67 |
| | |||||
* | Revert "Update copyright headers" | Jon Bratseth | 2017-06-14 | 67 | -67/+67 |
| | |||||
* | Update copyright headers | Jon Bratseth | 2017-06-14 | 67 | -67/+67 |
| | |||||
* | Revert "Copyright header" | Jon Bratseth | 2017-06-13 | 67 | -67/+67 |
| | |||||
* | Copyright header | Jon Bratseth | 2017-06-13 | 67 | -67/+67 |
| | |||||
* | use standard formatting for Override annotation | Arne H Juul | 2017-05-30 | 19 | -20/+40 |
| | |||||
* | Log successful registration when connecting to a new Slobrok server | Håkon Hallingstad | 2017-03-17 | 1 | -0/+1 |
| | |||||
* | Make loss of slobrok INFO | Håkon Hallingstad | 2017-03-17 | 1 | -1/+1 |
| | |||||
* | More Slobrok logging when registering in Java | Håkon Hallingstad | 2017-03-17 | 1 | -31/+81 |
| | |||||
* | Restore port doc | Håkon Hallingstad | 2017-02-22 | 1 | -1/+1 |
| | |||||
* | Remove listening | Håkon Hallingstad | 2017-02-22 | 1 | -1/+1 |
| | |||||
* | Properly revert most changes to Spec | Håkon Hallingstad | 2017-02-22 | 1 | -10/+7 |
| | |||||
* | Improve Spec API | Håkon Hallingstad | 2017-02-22 | 3 | -38/+16 |
| | | | | | | - Removes Spec.getLocalHostName - Removes distinction between listening- and connect- address for Spec - Makes all usage of connect w/Spec specify hostname | ||||
* | Makes clustercontroller-core work on WiFi | Håkon Hallingstad | 2017-02-20 | 3 | -9/+37 |
| | |||||
* | Yahoo sets up mac wireless networks such that the local hostname points to an | Jon Bratseth | 2016-09-29 | 10 | -320/+294 |
| | | | | | | ip which does not resolve. This works around that problem by finding a resolvable address (while still falling back to localhost if we only get ipv6 addresses, as that causes other problems in docker containers). | ||||
* | Use github name in @author | Jon Bratseth | 2016-06-16 | 1 | -1/+1 |
| | |||||
* | Publish | Jon Bratseth | 2016-06-15 | 67 | -0/+6265 |