aboutsummaryrefslogtreecommitdiffstats
path: root/security-utils/src/test
Commit message (Expand)AuthorAgeFilesLines
* Defer side channel-safe array checks to existing BC utilsTor Brede Vekterli2023-07-191-1/+1
* Simplify token API by using fixed context for fingerprintsTor Brede Vekterli2023-06-151-29/+36
* Add factory methods accepting hex stringBjørn Christian Seime2023-06-141-0/+16
* Also include domain when printing tokenTor Brede Vekterli2023-06-061-2/+4
* Emit fingerprints with delimiters by defaultTor Brede Vekterli2023-06-061-1/+8
* Add a simple token primitive to security utilsTor Brede Vekterli2023-06-061-0/+125
* Build with jdk20Jon Bratseth2023-04-171-3/+3
* Implement RFC 9180 HPKE sender asymmetric key authentication modeTor Brede Vekterli2023-03-231-8/+63
* Revert "Revert "Store original capability (set) names from JSON config in Pee...Bjørn Christian Seime2023-02-231-5/+3
* Revert "Store original capability (set) names from JSON config in PeerPolicy"Bjørn Christian Seime2023-02-231-3/+5
* Store original capability (set) names from JSON config in PeerPolicyBjørn Christian Seime2023-02-221-5/+3
* Use explicit `equals` and `hashCode` to use contents of arrays, not just refsTor Brede Vekterli2023-02-141-0/+20
* Revert "Revert "Bjorncs/capabilities""Henning Baldersheim2023-02-143-7/+6
* Revert "Bjorncs/capabilities"Henning Baldersheim2023-02-143-6/+7
* Add new capabilities in node specific capability setsBjørn Christian Seime2023-02-131-3/+2
* Rename 'from()' to 'of()'Bjørn Christian Seime2023-02-133-4/+4
* Move definition of predefined capability set to parent classBjørn Christian Seime2023-02-091-1/+1
* Add an "interactive" token resealing protocol and basic tooling supportTor Brede Vekterli2023-01-311-1/+24
* Add y64 encoderBjørn Christian Seime2023-01-301-0/+27
* Use ChaCha20-Poly1305 instead of AES-GCM for shared key-based cryptoTor Brede Vekterli2023-01-051-7/+61
* Correct class name to reflect actual cipher name orderTor Brede Vekterli2022-12-011-1/+1
* Use correct encoding base in testTor Brede Vekterli2022-11-281-2/+2
* Use BouncyCastle AES GCM cipher and I/O streams instead of JCATor Brede Vekterli2022-11-161-4/+30
* Add support for token resealingTor Brede Vekterli2022-11-111-0/+16
* Use Base62 for tokens and Base58 for keysTor Brede Vekterli2022-11-092-4/+15
* Add a codec that enables conversion to and from a base N representationTor Brede Vekterli2022-11-081-0/+122
* Array clone() -> Arrays.copyOf()Tor Brede Vekterli2022-11-021-1/+1
* Encapsulate key identifier in own objectTor Brede Vekterli2022-11-022-35/+105
* Let token key IDs be UTF-8 byte strings instead of just an integerTor Brede Vekterli2022-11-011-10/+71
* Add basic tooling for public key encryption and decryptionTor Brede Vekterli2022-10-271-0/+1
* Use JDK17's own hex utilities instead of BouncyCastle'sTor Brede Vekterli2022-10-253-69/+63
* Use HPKE instead of ECIES for shared single-use keysTor Brede Vekterli2022-10-201-32/+14
* Add X25519 private to public key extraction and use for HPKE openingTor Brede Vekterli2022-10-192-9/+31
* Minimal implementation of RFC 9180 Hybrid Public Key Encryption (HPKE)Tor Brede Vekterli2022-10-182-0/+197
* Add some utilities for comparing arrays without data-dependent branchesTor Brede Vekterli2022-10-171-0/+38
* Test some specific HKDF vectors from Google's Wycheproof crypto test suiteTor Brede Vekterli2022-10-141-22/+106
* Implement RFC-5869 HMAC-based Extract-and-Expand Key Derivation Function (HKDF)Tor Brede Vekterli2022-10-131-0/+214
* Enforce SHA-256 and AES-CBC for ECIES key wrappingTor Brede Vekterli2022-10-131-5/+6
* Address PR commentsTor Brede Vekterli2022-10-121-3/+3
* Add utilities for secure one-way single-use key exchange tokens using ECIESTor Brede Vekterli2022-10-111-0/+135
* Convert security-utils to junit5Bjørn Christian Seime2022-07-2718-143/+153
* Force caller to handle failed capability verification checkBjørn Christian Seime2022-07-211-4/+7
* Improve error messageBjørn Christian Seime2022-07-211-1/+1
* Move logic for capability checking/logging to ConnectionAuthContextBjørn Christian Seime2022-07-211-0/+59
* Simplify type definition for subject alternative namesBjørn Christian Seime2022-07-203-7/+7
* Move generic crypto helpers from 'c.y.s.tls' to 'c.y.s'Bjørn Christian Seime2022-07-203-10/+6
* Merge Java package 'c.y.s.tls.{auth,json,policy}' into 'c.y.s.tls'Bjørn Christian Seime2022-07-208-29/+17
* Rename 'toCapabilityNames()' to 'toNames()'Bjørn Christian Seime2022-07-151-1/+1
* Rename 'succeeded' => 'authorized'Bjørn Christian Seime2022-07-151-2/+2
* Return granted capabilities from PeerAuthorizerBjørn Christian Seime2022-07-151-6/+33