Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | Report values from initial snapshot | Bjørn Christian Seime | 2019-01-29 | 1 | -0/+2 | |
| | | | | | Initialize JrtMetrics with empty snapshot so that the values of the first real snapshot are reported. | |||||
* | Merge pull request #8218 from vespa-engine/bjorncs/tls | Tor Brede Vekterli | 2019-01-24 | 5 | -10/+9 | |
|\ | | | | | bjorncs/tls | |||||
| * | Prefix names of jrt threads with 'jrt' | Bjørn Christian Seime | 2019-01-24 | 4 | -4/+4 | |
| | | ||||||
| * | Use 'prime256v1' curve for EC keys | Bjørn Christian Seime | 2019-01-23 | 1 | -7/+5 | |
| | | | | | | | | | | This allows the TLS test in jrt to use elliptic curves crypto in unit tests (fixes issue where JSSE cannot find matching cipher). | |||||
| * | Allow configuration of accepted ciphers | Bjørn Christian Seime | 2019-01-23 | 1 | -1/+2 | |
| | | ||||||
* | | Add calculation of metrics changes since previous snapshot | Bjørn Christian Seime | 2019-01-22 | 2 | -20/+45 | |
| | | | | | | | | | | | | | | | | - Move metric diff calculation to TransportMetrics.Snapshot. - Remove TransportMetrics.reset() and use changesSince() instead in EchoTest. - Remove unnecessary volatile modifier on JrtMetrics.previousSnapshot. - Initialize JrtMetrics.previousSnapshot in constructor. - Use separate field declarations for fields in TransportMetrics.Snapshot. | |||||
* | | Make TransportMetrics a singleton | Bjørn Christian Seime | 2019-01-22 | 11 | -45/+58 | |
| | | ||||||
* | | Add method to create snapshot of transport metrics | Bjørn Christian Seime | 2019-01-22 | 1 | -0/+35 | |
|/ | ||||||
* | 6-SNAPSHOT -> 7-SNAPSHOT | Arnstein Ressem | 2019-01-21 | 1 | -2/+2 | |
| | ||||||
* | Return default values when env vars are not present | Bjørn Christian Seime | 2019-01-15 | 1 | -5/+4 | |
| | ||||||
* | more robust testing | Håvard Pettersen | 2019-01-10 | 2 | -15/+15 | |
| | | | | | | - add volatile to ensure visibility - try for longer to ensure wanted state is reached also when load is high - sleep for shorter to make test run faster and also protect against interruptions | |||||
* | Add metrics for jrt transport | Bjørn Christian Seime | 2019-01-08 | 11 | -65/+218 | |
| | ||||||
* | Store authorization result in TlsCryptoSocket | Bjørn Christian Seime | 2019-01-08 | 1 | -1/+10 | |
| | ||||||
* | ThreadLocalRandom is recommended over Random in multithreaded environments, ↵ | Håkon Hallingstad | 2018-12-20 | 1 | -3/+2 | |
| | | | | try 2 | |||||
* | Nonfunctional changes only | Jon Bratseth | 2018-12-13 | 1 | -3/+5 | |
| | ||||||
* | Use AuthorizationMode to configure behaviour of PeerAuthorizerTrustManager | Bjørn Christian Seime | 2018-12-05 | 2 | -4/+5 | |
| | ||||||
* | Move MixedMode to separate class | Bjørn Christian Seime | 2018-12-05 | 1 | -1/+1 | |
| | ||||||
* | Use DefaultTlsContext in jrt unit tests | Bjørn Christian Seime | 2018-12-05 | 1 | -53/+17 | |
| | ||||||
* | Split ConfigFileManagedTlsContext into ReloadingTlsContext and DefaultTlsContext | Bjørn Christian Seime | 2018-12-05 | 1 | -2/+2 | |
| | ||||||
* | Update TODO comment | Bjørn Christian Seime | 2018-12-05 | 1 | -1/+1 | |
| | ||||||
* | Close the cryptoengine in order to get to close the tls context. | Henning Baldersheim | 2018-12-03 | 4 | -3/+18 | |
| | ||||||
* | Add TODO | Bjørn Christian Seime | 2018-11-28 | 1 | -0/+1 | |
| | ||||||
* | Use TlsContext to construct TlsCryptoEngine | Bjørn Christian Seime | 2018-11-28 | 5 | -30/+39 | |
| | ||||||
* | Enable PeerAuthorizer in dry-run mode in TlsCryptoSocket | Bjørn Christian Seime | 2018-11-27 | 1 | -0/+5 | |
| | ||||||
* | Use PeerAuthorizer in TLS unit tests of jrt | Bjørn Christian Seime | 2018-11-27 | 2 | -0/+29 | |
| | ||||||
* | Use TransportSecurityOptions.Builder | Bjørn Christian Seime | 2018-11-19 | 1 | -10/+5 | |
| | ||||||
* | detect eof during tls handshake detection | Håvard Pettersen | 2018-11-09 | 1 | -1/+3 | |
| | ||||||
* | Revert "Bjorncs/accepted ciphers" | Harald Musum | 2018-11-07 | 1 | -16/+6 | |
| | ||||||
* | Allow configuration of accepted ciphers | Bjørn Christian Seime | 2018-11-06 | 1 | -6/+16 | |
| | ||||||
* | No * import | Henning Baldersheim | 2018-11-06 | 1 | -2/+15 | |
| | ||||||
* | Verify handshake is complete in write() + flush() | Bjørn Christian Seime | 2018-11-05 | 1 | -0/+2 | |
| | ||||||
* | Add more debug logging to TlsCryptoSocket | Bjørn Christian Seime | 2018-11-05 | 1 | -0/+4 | |
| | ||||||
* | Move classes in com.yahoo.security to security-utils | Bjørn Christian Seime | 2018-10-19 | 1 | -5/+6 | |
| | ||||||
* | Revert "Move classes in com.yahoo.security to security-utils" | Harald Musum | 2018-10-19 | 1 | -6/+5 | |
| | ||||||
* | Move classes in com.yahoo.security to security-utils | Bjørn Christian Seime | 2018-10-17 | 1 | -5/+6 | |
| | ||||||
* | Minor fixes | Jon Bratseth | 2018-10-14 | 1 | -4/+5 | |
| | ||||||
* | Merge pull request #7101 from vespa-engine/bjorncs/tls | Bjørn Christian Seime | 2018-09-26 | 1 | -7/+17 | |
|\ | | | | | Introduce insecure mixed mode + move env var logic to separate class | |||||
| * | Introduce insecure mixed mode + move env var logic to separate class | Bjørn Christian Seime | 2018-09-26 | 1 | -7/+17 | |
| | | ||||||
* | | adjust message to work better with assertEquals | Håvard Pettersen | 2018-09-26 | 1 | -9/+4 | |
| | | ||||||
* | | use junit assert | Håvard Pettersen | 2018-09-26 | 1 | -3/+3 | |
|/ | ||||||
* | address naming concerns | Håvard Pettersen | 2018-09-26 | 2 | -12/+12 | |
| | ||||||
* | added support for auto-detecting tls for incoming connections | Håvard Pettersen | 2018-09-25 | 6 | -2/+264 | |
| | ||||||
* | Use TlsCryptoEngine if VESPA_TLS_CONFIG_FILE is set | Bjørn Christian Seime | 2018-09-10 | 2 | -1/+31 | |
| | ||||||
* | Use drain() to unwrap multiple frames before reading from network | Bjørn Christian Seime | 2018-09-04 | 1 | -1/+1 | |
| | ||||||
* | Use com.yahoo.jrt.Buffer to simplify buffer management | Bjørn Christian Seime | 2018-09-04 | 1 | -31/+25 | |
| | ||||||
* | Rewrite wrap+unwrap to remove use of magic return values | Bjørn Christian Seime | 2018-09-04 | 1 | -47/+71 | |
| | | | | | | | - Wrap/unwrap for handshake returns true for success, false otherwise - Wrap/unwrap for application data returns bytes consumed/produced - Do not throw exception on overflow for unwrap - Misc changes to reduce code duplication | |||||
* | Rename SslEngine/SslSocket -> TlsCryptoEngine/TlsCryptoSocket | Bjørn Christian Seime | 2018-09-03 | 4 | -12/+10 | |
| | ||||||
* | Various fixes to SslSocket | Bjørn Christian Seime | 2018-09-03 | 1 | -5/+8 | |
| | | | | | | | | - Clear reference to handshake dummy buffer after completed handshake. - Make return value consistent between sslEngineAppDataWrap and sslEngineAppDataUnwrap. - Throw SSLException in sslEngineUnwrap when destination buffer capacity is too low. - SocketChannel.write() never returns -1 - Call flush() from write() | |||||
* | Test SslEngine in EchoTest and SessionTest | Bjørn Christian Seime | 2018-09-03 | 4 | -7/+56 | |
| | ||||||
* | Add ssl socket implementation based on SSLEngine | Bjørn Christian Seime | 2018-09-03 | 2 | -0/+262 | |
| |