Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | Return default values when env vars are not present | Bjørn Christian Seime | 2019-01-15 | 1 | -5/+4 | |
| | ||||||
* | more robust testing | Håvard Pettersen | 2019-01-10 | 2 | -15/+15 | |
| | | | | | | - add volatile to ensure visibility - try for longer to ensure wanted state is reached also when load is high - sleep for shorter to make test run faster and also protect against interruptions | |||||
* | Add metrics for jrt transport | Bjørn Christian Seime | 2019-01-08 | 11 | -65/+218 | |
| | ||||||
* | Store authorization result in TlsCryptoSocket | Bjørn Christian Seime | 2019-01-08 | 1 | -1/+10 | |
| | ||||||
* | ThreadLocalRandom is recommended over Random in multithreaded environments, ↵ | Håkon Hallingstad | 2018-12-20 | 1 | -3/+2 | |
| | | | | try 2 | |||||
* | Nonfunctional changes only | Jon Bratseth | 2018-12-13 | 1 | -3/+5 | |
| | ||||||
* | Use AuthorizationMode to configure behaviour of PeerAuthorizerTrustManager | Bjørn Christian Seime | 2018-12-05 | 2 | -4/+5 | |
| | ||||||
* | Move MixedMode to separate class | Bjørn Christian Seime | 2018-12-05 | 1 | -1/+1 | |
| | ||||||
* | Use DefaultTlsContext in jrt unit tests | Bjørn Christian Seime | 2018-12-05 | 1 | -53/+17 | |
| | ||||||
* | Split ConfigFileManagedTlsContext into ReloadingTlsContext and DefaultTlsContext | Bjørn Christian Seime | 2018-12-05 | 1 | -2/+2 | |
| | ||||||
* | Update TODO comment | Bjørn Christian Seime | 2018-12-05 | 1 | -1/+1 | |
| | ||||||
* | Close the cryptoengine in order to get to close the tls context. | Henning Baldersheim | 2018-12-03 | 4 | -3/+18 | |
| | ||||||
* | Add TODO | Bjørn Christian Seime | 2018-11-28 | 1 | -0/+1 | |
| | ||||||
* | Use TlsContext to construct TlsCryptoEngine | Bjørn Christian Seime | 2018-11-28 | 5 | -30/+39 | |
| | ||||||
* | Enable PeerAuthorizer in dry-run mode in TlsCryptoSocket | Bjørn Christian Seime | 2018-11-27 | 1 | -0/+5 | |
| | ||||||
* | Use PeerAuthorizer in TLS unit tests of jrt | Bjørn Christian Seime | 2018-11-27 | 2 | -0/+29 | |
| | ||||||
* | Use TransportSecurityOptions.Builder | Bjørn Christian Seime | 2018-11-19 | 1 | -10/+5 | |
| | ||||||
* | detect eof during tls handshake detection | Håvard Pettersen | 2018-11-09 | 1 | -1/+3 | |
| | ||||||
* | Revert "Bjorncs/accepted ciphers" | Harald Musum | 2018-11-07 | 1 | -16/+6 | |
| | ||||||
* | Allow configuration of accepted ciphers | Bjørn Christian Seime | 2018-11-06 | 1 | -6/+16 | |
| | ||||||
* | No * import | Henning Baldersheim | 2018-11-06 | 1 | -2/+15 | |
| | ||||||
* | Verify handshake is complete in write() + flush() | Bjørn Christian Seime | 2018-11-05 | 1 | -0/+2 | |
| | ||||||
* | Add more debug logging to TlsCryptoSocket | Bjørn Christian Seime | 2018-11-05 | 1 | -0/+4 | |
| | ||||||
* | Move classes in com.yahoo.security to security-utils | Bjørn Christian Seime | 2018-10-19 | 1 | -5/+6 | |
| | ||||||
* | Revert "Move classes in com.yahoo.security to security-utils" | Harald Musum | 2018-10-19 | 1 | -6/+5 | |
| | ||||||
* | Move classes in com.yahoo.security to security-utils | Bjørn Christian Seime | 2018-10-17 | 1 | -5/+6 | |
| | ||||||
* | Minor fixes | Jon Bratseth | 2018-10-14 | 1 | -4/+5 | |
| | ||||||
* | Merge pull request #7101 from vespa-engine/bjorncs/tls | Bjørn Christian Seime | 2018-09-26 | 1 | -7/+17 | |
|\ | | | | | Introduce insecure mixed mode + move env var logic to separate class | |||||
| * | Introduce insecure mixed mode + move env var logic to separate class | Bjørn Christian Seime | 2018-09-26 | 1 | -7/+17 | |
| | | ||||||
* | | adjust message to work better with assertEquals | Håvard Pettersen | 2018-09-26 | 1 | -9/+4 | |
| | | ||||||
* | | use junit assert | Håvard Pettersen | 2018-09-26 | 1 | -3/+3 | |
|/ | ||||||
* | address naming concerns | Håvard Pettersen | 2018-09-26 | 2 | -12/+12 | |
| | ||||||
* | added support for auto-detecting tls for incoming connections | Håvard Pettersen | 2018-09-25 | 6 | -2/+264 | |
| | ||||||
* | Use TlsCryptoEngine if VESPA_TLS_CONFIG_FILE is set | Bjørn Christian Seime | 2018-09-10 | 2 | -1/+31 | |
| | ||||||
* | Use drain() to unwrap multiple frames before reading from network | Bjørn Christian Seime | 2018-09-04 | 1 | -1/+1 | |
| | ||||||
* | Use com.yahoo.jrt.Buffer to simplify buffer management | Bjørn Christian Seime | 2018-09-04 | 1 | -31/+25 | |
| | ||||||
* | Rewrite wrap+unwrap to remove use of magic return values | Bjørn Christian Seime | 2018-09-04 | 1 | -47/+71 | |
| | | | | | | | - Wrap/unwrap for handshake returns true for success, false otherwise - Wrap/unwrap for application data returns bytes consumed/produced - Do not throw exception on overflow for unwrap - Misc changes to reduce code duplication | |||||
* | Rename SslEngine/SslSocket -> TlsCryptoEngine/TlsCryptoSocket | Bjørn Christian Seime | 2018-09-03 | 4 | -12/+10 | |
| | ||||||
* | Various fixes to SslSocket | Bjørn Christian Seime | 2018-09-03 | 1 | -5/+8 | |
| | | | | | | | | - Clear reference to handshake dummy buffer after completed handshake. - Make return value consistent between sslEngineAppDataWrap and sslEngineAppDataUnwrap. - Throw SSLException in sslEngineUnwrap when destination buffer capacity is too low. - SocketChannel.write() never returns -1 - Call flush() from write() | |||||
* | Test SslEngine in EchoTest and SessionTest | Bjørn Christian Seime | 2018-09-03 | 4 | -7/+56 | |
| | ||||||
* | Add ssl socket implementation based on SSLEngine | Bjørn Christian Seime | 2018-09-03 | 2 | -0/+262 | |
| | ||||||
* | also test with xor crypto engine | Håvard Pettersen | 2018-08-30 | 2 | -4/+25 | |
| | ||||||
* | Perform post-handshake drain after setting connection state | Håvard Pettersen | 2018-08-30 | 1 | -1/+1 | |
| | | | | | This is to make sure that session live events will be delivered before any incoming requests. | |||||
* | handshake data flushing should be handled by crypto socket handshake | Håvard Pettersen | 2018-08-29 | 1 | -5/+0 | |
| | ||||||
* | integrate crypto concepts into jrt | Håvard Pettersen | 2018-08-29 | 8 | -62/+429 | |
| | ||||||
* | meaningless change to re-run CLA test, maybe... | Håvard Pettersen | 2018-08-06 | 1 | -1/+0 | |
| | ||||||
* | avoid hardcoded port numbers in jrt tests | Håvard Pettersen | 2018-08-06 | 15 | -73/+50 | |
| | ||||||
* | Fix author tag for Simon | Bjørn Christian Seime | 2018-07-05 | 2 | -2/+2 | |
| | ||||||
* | Revert "Revert "Gjoranv/java9 prep 05"" | gjoranv | 2018-05-02 | 1 | -8/+8 | |
| | ||||||
* | Revert "Gjoranv/java9 prep 05" | gjoranv | 2018-05-02 | 1 | -8/+8 | |
| |