summaryrefslogtreecommitdiffstats
path: root/security-utils/src/test/java/com
Commit message (Expand)AuthorAgeFilesLines
* Add basic tooling for public key encryption and decryptionTor Brede Vekterli2022-10-271-0/+1
* Use JDK17's own hex utilities instead of BouncyCastle'sTor Brede Vekterli2022-10-253-69/+63
* Use HPKE instead of ECIES for shared single-use keysTor Brede Vekterli2022-10-201-32/+14
* Add X25519 private to public key extraction and use for HPKE openingTor Brede Vekterli2022-10-192-9/+31
* Minimal implementation of RFC 9180 Hybrid Public Key Encryption (HPKE)Tor Brede Vekterli2022-10-182-0/+197
* Add some utilities for comparing arrays without data-dependent branchesTor Brede Vekterli2022-10-171-0/+38
* Test some specific HKDF vectors from Google's Wycheproof crypto test suiteTor Brede Vekterli2022-10-141-22/+106
* Implement RFC-5869 HMAC-based Extract-and-Expand Key Derivation Function (HKDF)Tor Brede Vekterli2022-10-131-0/+214
* Enforce SHA-256 and AES-CBC for ECIES key wrappingTor Brede Vekterli2022-10-131-5/+6
* Address PR commentsTor Brede Vekterli2022-10-121-3/+3
* Add utilities for secure one-way single-use key exchange tokens using ECIESTor Brede Vekterli2022-10-111-0/+135
* Convert security-utils to junit5Bjørn Christian Seime2022-07-2718-143/+153
* Force caller to handle failed capability verification checkBjørn Christian Seime2022-07-211-4/+7
* Improve error messageBjørn Christian Seime2022-07-211-1/+1
* Move logic for capability checking/logging to ConnectionAuthContextBjørn Christian Seime2022-07-211-0/+59
* Simplify type definition for subject alternative namesBjørn Christian Seime2022-07-203-7/+7
* Move generic crypto helpers from 'c.y.s.tls' to 'c.y.s'Bjørn Christian Seime2022-07-203-10/+6
* Merge Java package 'c.y.s.tls.{auth,json,policy}' into 'c.y.s.tls'Bjørn Christian Seime2022-07-208-29/+17
* Rename 'toCapabilityNames()' to 'toNames()'Bjørn Christian Seime2022-07-151-1/+1
* Rename 'succeeded' => 'authorized'Bjørn Christian Seime2022-07-151-2/+2
* Return granted capabilities from PeerAuthorizerBjørn Christian Seime2022-07-151-6/+33
* Add Capability and CapabilitySet including JSON serializationBjørn Christian Seime2022-07-132-1/+33
* Remove 'role' concept from 'authorized-peers'Bjørn Christian Seime2022-07-114-32/+14
* Avoid hamcrest/deprecated assertThat.Henning Baldersheim2021-12-203-20/+15
* Disable '?' as single char wildcard for URI matchingBjørn Christian Seime2021-12-092-1/+3
* Fix copyright and trailing new lineBjørn Christian Seime2021-12-032-4/+5
* Support glob pattern for URIs with '/' as boundaryBjørn Christian Seime2021-12-022-4/+38
* Add glob pattern helper that handles multiple alternative boundariesBjørn Christian Seime2021-12-021-0/+106
* Ensure consistent iteration orderingBjørn Christian Seime2021-12-021-2/+2
* Update 2019 Oath copyrights.gjoranv2021-10-274-4/+4
* Update 2018 copyright notices.gjoranv2021-10-0715-15/+15
* Remove com.yahoo.vespa.jdk8compatBjørn Christian Seime2021-03-104-8/+10
* Make TLS protocol version configurable in TLS config fileBjørn Christian Seime2021-02-242-0/+3
* Test that certificate with non-matching SAN URI is rejectedBjørn Christian Seime2020-11-261-0/+2
* Support SAN URI based rules in authorization policiesBjørn Christian Seime2020-11-262-16/+37
* Encapsulate pattern implementation in RequiredPeerCredentialBjørn Christian Seime2020-11-254-9/+6
* Support construction of PeerPolicy with descriptionBjørn Christian Seime2020-05-131-1/+1
* Override hostname verification in PeerAuthorizerTrustManagerBjørn Christian Seime2020-02-171-1/+3
* Introduce 'disable-hostname-validation' to TLS json formatBjørn Christian Seime2020-02-132-1/+21
* Revert "Revert "accept and store json endpoint cert metadata on deploy""Andreas Eriksen2020-01-211-0/+16
* Revert "accept and store json endpoint cert metadata on deploy"Jon Marius Venstad2020-01-201-16/+0
* verify public key matches private keyandreer2020-01-201-0/+16
* Use JDK8 as build target for security-utilsBjørn Christian Seime2019-12-025-13/+11
* Use mockito-core 3.1.0Håkon Hallingstad2019-10-181-2/+2
* Revert "Bjorncs/jdisc tls13"Bjørn Christian Seime2019-10-042-2/+2
* Enable TLSv1.3 for servers/clients based on TlsContextBjørn Christian Seime2019-10-032-2/+2
* Refactor private key serialization testsBjørn Christian Seime2019-08-231-28/+14
* Allow output of PEM private keys using PKCS#8Bjørn Christian Seime2019-08-231-4/+26
* Fix typo in class nameBjørn Christian Seime2019-07-041-2/+2
* Make peer authentication in TlsContext configurableBjørn Christian Seime2019-07-031-1/+1