index
:
vespa
6
7
andreer/permanent-enclave-flag
aressem/test-dummy
aressem/test-pr-bk
aressem/test-pr-build-3
aressem/test-valgrind
arnej/add-folding-flag
arnej/cosmetic-message-fix
arnej/golang-slime-port-1
arnej/remove-convert-in-calculator
arnej/use-our-shell-quote
arnej/wip-sand-fixups
balder/apply-termwise-filters-on-match-phase-2
balder/cpu-specific-compiles-for-bit-operations
balder/deinline
balder/hosted-always-convert-percentages-in-config-model
balder/no-longer-need-commit-and-wait
balder/prepare-for-hw-specialized-hamming-distance
balder/thread-local-jetty-bytebuffer-pool
balder/update-defaults-for-use-xxx-fetch-postings
balder/zncurve
bjormel/aws-main-controller
bjormel/aws-main-controller-take2
bratseth/grouping-trace
bratseth/linguistics-context-rebased
bratseth/more-exclusive-take-2
bratseth/stem-prefixes
bratseth/streamed-fill
hakonhall/enumerate-all-prod-regions
hakonhall/fix-remembertoupdatesystemflagsdataarchive-javadoc
havardpe/enable-nested-ctf-meta-data
havardpe/extract-default-query-feature-values
havardpe/protoc-gen-csi
interns/languageserver
interns/theodorkl/congocc
jdk21-preparations
jonmv/allow-private-endpoints-in-dev-perf
jonmv/dependency-inversion-for-mbus-config
jvenstad/utils
kkraune/ci-warning
ldalves/querybuilder
leandroalves/prod-controller
lesters/bert-testing
lesters/external-llms
lesters/stateless-onnx-eval-once
master
mortent/calypso
mortent/new-public-cd-endpoint
mpolden/update-abi
olaa/delete-flags
olaa/otel-config-model
renovate/junit5-monorepo
renovate/major-protobuf.vespa.version
renovate/maven-shade-plugin.vespa.version
revert-26576-revert-26567-bjorncs/cloud-app-validation
revert-26584-revert-26578-bjorncs/tlsv13
revert-27857-bjorncs/tls13
revert-28660-revert-28656-hmusum/fix-onnx-model-cost
revert-30559-toregge/require-vespa-build-dependencies-for-vespa-devel
vekterli/change-test-and-set-update-not-found-semantics
yngveaasheim/skeleton-for-component-in-metrics-enum
An engine for low-latency computation over large data sets
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
security-utils
/
src
/
test
/
java
/
com
Commit message (
Expand
)
Author
Age
Files
Lines
*
Add basic tooling for public key encryption and decryption
Tor Brede Vekterli
2022-10-27
1
-0
/
+1
*
Use JDK17's own hex utilities instead of BouncyCastle's
Tor Brede Vekterli
2022-10-25
3
-69
/
+63
*
Use HPKE instead of ECIES for shared single-use keys
Tor Brede Vekterli
2022-10-20
1
-32
/
+14
*
Add X25519 private to public key extraction and use for HPKE opening
Tor Brede Vekterli
2022-10-19
2
-9
/
+31
*
Minimal implementation of RFC 9180 Hybrid Public Key Encryption (HPKE)
Tor Brede Vekterli
2022-10-18
2
-0
/
+197
*
Add some utilities for comparing arrays without data-dependent branches
Tor Brede Vekterli
2022-10-17
1
-0
/
+38
*
Test some specific HKDF vectors from Google's Wycheproof crypto test suite
Tor Brede Vekterli
2022-10-14
1
-22
/
+106
*
Implement RFC-5869 HMAC-based Extract-and-Expand Key Derivation Function (HKDF)
Tor Brede Vekterli
2022-10-13
1
-0
/
+214
*
Enforce SHA-256 and AES-CBC for ECIES key wrapping
Tor Brede Vekterli
2022-10-13
1
-5
/
+6
*
Address PR comments
Tor Brede Vekterli
2022-10-12
1
-3
/
+3
*
Add utilities for secure one-way single-use key exchange tokens using ECIES
Tor Brede Vekterli
2022-10-11
1
-0
/
+135
*
Convert security-utils to junit5
Bjørn Christian Seime
2022-07-27
18
-143
/
+153
*
Force caller to handle failed capability verification check
Bjørn Christian Seime
2022-07-21
1
-4
/
+7
*
Improve error message
Bjørn Christian Seime
2022-07-21
1
-1
/
+1
*
Move logic for capability checking/logging to ConnectionAuthContext
Bjørn Christian Seime
2022-07-21
1
-0
/
+59
*
Simplify type definition for subject alternative names
Bjørn Christian Seime
2022-07-20
3
-7
/
+7
*
Move generic crypto helpers from 'c.y.s.tls' to 'c.y.s'
Bjørn Christian Seime
2022-07-20
3
-10
/
+6
*
Merge Java package 'c.y.s.tls.{auth,json,policy}' into 'c.y.s.tls'
Bjørn Christian Seime
2022-07-20
8
-29
/
+17
*
Rename 'toCapabilityNames()' to 'toNames()'
Bjørn Christian Seime
2022-07-15
1
-1
/
+1
*
Rename 'succeeded' => 'authorized'
Bjørn Christian Seime
2022-07-15
1
-2
/
+2
*
Return granted capabilities from PeerAuthorizer
Bjørn Christian Seime
2022-07-15
1
-6
/
+33
*
Add Capability and CapabilitySet including JSON serialization
Bjørn Christian Seime
2022-07-13
2
-1
/
+33
*
Remove 'role' concept from 'authorized-peers'
Bjørn Christian Seime
2022-07-11
4
-32
/
+14
*
Avoid hamcrest/deprecated assertThat.
Henning Baldersheim
2021-12-20
3
-20
/
+15
*
Disable '?' as single char wildcard for URI matching
Bjørn Christian Seime
2021-12-09
2
-1
/
+3
*
Fix copyright and trailing new line
Bjørn Christian Seime
2021-12-03
2
-4
/
+5
*
Support glob pattern for URIs with '/' as boundary
Bjørn Christian Seime
2021-12-02
2
-4
/
+38
*
Add glob pattern helper that handles multiple alternative boundaries
Bjørn Christian Seime
2021-12-02
1
-0
/
+106
*
Ensure consistent iteration ordering
Bjørn Christian Seime
2021-12-02
1
-2
/
+2
*
Update 2019 Oath copyrights.
gjoranv
2021-10-27
4
-4
/
+4
*
Update 2018 copyright notices.
gjoranv
2021-10-07
15
-15
/
+15
*
Remove com.yahoo.vespa.jdk8compat
Bjørn Christian Seime
2021-03-10
4
-8
/
+10
*
Make TLS protocol version configurable in TLS config file
Bjørn Christian Seime
2021-02-24
2
-0
/
+3
*
Test that certificate with non-matching SAN URI is rejected
Bjørn Christian Seime
2020-11-26
1
-0
/
+2
*
Support SAN URI based rules in authorization policies
Bjørn Christian Seime
2020-11-26
2
-16
/
+37
*
Encapsulate pattern implementation in RequiredPeerCredential
Bjørn Christian Seime
2020-11-25
4
-9
/
+6
*
Support construction of PeerPolicy with description
Bjørn Christian Seime
2020-05-13
1
-1
/
+1
*
Override hostname verification in PeerAuthorizerTrustManager
Bjørn Christian Seime
2020-02-17
1
-1
/
+3
*
Introduce 'disable-hostname-validation' to TLS json format
Bjørn Christian Seime
2020-02-13
2
-1
/
+21
*
Revert "Revert "accept and store json endpoint cert metadata on deploy""
Andreas Eriksen
2020-01-21
1
-0
/
+16
*
Revert "accept and store json endpoint cert metadata on deploy"
Jon Marius Venstad
2020-01-20
1
-16
/
+0
*
verify public key matches private key
andreer
2020-01-20
1
-0
/
+16
*
Use JDK8 as build target for security-utils
Bjørn Christian Seime
2019-12-02
5
-13
/
+11
*
Use mockito-core 3.1.0
Håkon Hallingstad
2019-10-18
1
-2
/
+2
*
Revert "Bjorncs/jdisc tls13"
Bjørn Christian Seime
2019-10-04
2
-2
/
+2
*
Enable TLSv1.3 for servers/clients based on TlsContext
Bjørn Christian Seime
2019-10-03
2
-2
/
+2
*
Refactor private key serialization tests
Bjørn Christian Seime
2019-08-23
1
-28
/
+14
*
Allow output of PEM private keys using PKCS#8
Bjørn Christian Seime
2019-08-23
1
-4
/
+26
*
Fix typo in class name
Bjørn Christian Seime
2019-07-04
1
-2
/
+2
*
Make peer authentication in TlsContext configurable
Bjørn Christian Seime
2019-07-03
1
-1
/
+1
[next]