index
:
vespa
6
7
andreer/permanent-enclave-flag
aressem/test-dummy
aressem/test-pr-bk
aressem/test-pr-build-3
aressem/test-valgrind
arnej/add-folding-flag
arnej/cosmetic-message-fix
arnej/golang-slime-port-1
arnej/remove-convert-in-calculator
arnej/use-our-shell-quote
arnej/wip-sand-fixups
balder/apply-termwise-filters-on-match-phase-2
balder/cpu-specific-compiles-for-bit-operations
balder/deinline
balder/hosted-always-convert-percentages-in-config-model
balder/no-longer-need-commit-and-wait
balder/prepare-for-hw-specialized-hamming-distance
balder/thread-local-jetty-bytebuffer-pool
balder/update-defaults-for-use-xxx-fetch-postings
balder/zncurve
bjormel/aws-main-controller
bjormel/aws-main-controller-take2
bratseth/grouping-trace
bratseth/linguistics-context-rebased
bratseth/more-exclusive-take-2
bratseth/stem-prefixes
bratseth/streamed-fill
hakonhall/enumerate-all-prod-regions
hakonhall/fix-remembertoupdatesystemflagsdataarchive-javadoc
havardpe/enable-nested-ctf-meta-data
havardpe/extract-default-query-feature-values
havardpe/protoc-gen-csi
interns/languageserver
interns/theodorkl/congocc
jdk21-preparations
jonmv/allow-private-endpoints-in-dev-perf
jonmv/dependency-inversion-for-mbus-config
jvenstad/utils
kkraune/ci-warning
ldalves/querybuilder
leandroalves/prod-controller
lesters/bert-testing
lesters/external-llms
lesters/stateless-onnx-eval-once
master
mortent/calypso
mortent/new-public-cd-endpoint
mpolden/update-abi
olaa/delete-flags
olaa/otel-config-model
renovate/junit5-monorepo
renovate/major-protobuf.vespa.version
renovate/maven-shade-plugin.vespa.version
revert-26576-revert-26567-bjorncs/cloud-app-validation
revert-26584-revert-26578-bjorncs/tlsv13
revert-27857-bjorncs/tls13
revert-28660-revert-28656-hmusum/fix-onnx-model-cost
revert-30559-toregge/require-vespa-build-dependencies-for-vespa-devel
toregge/rewrite-featureoverride-and-rank-program-unit-tests-to-gtest
vekterli/change-test-and-set-update-not-found-semantics
yngveaasheim/skeleton-for-component-in-metrics-enum
An engine for low-latency computation over large data sets
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
security-utils
/
src
/
test
Commit message (
Expand
)
Author
Age
Files
Lines
*
Revert "Revert "Store original capability (set) names from JSON config in Pee...
Bjørn Christian Seime
2023-02-23
1
-5
/
+3
*
Revert "Store original capability (set) names from JSON config in PeerPolicy"
Bjørn Christian Seime
2023-02-23
1
-3
/
+5
*
Store original capability (set) names from JSON config in PeerPolicy
Bjørn Christian Seime
2023-02-22
1
-5
/
+3
*
Use explicit `equals` and `hashCode` to use contents of arrays, not just refs
Tor Brede Vekterli
2023-02-14
1
-0
/
+20
*
Revert "Revert "Bjorncs/capabilities""
Henning Baldersheim
2023-02-14
3
-7
/
+6
*
Revert "Bjorncs/capabilities"
Henning Baldersheim
2023-02-14
3
-6
/
+7
*
Add new capabilities in node specific capability sets
Bjørn Christian Seime
2023-02-13
1
-3
/
+2
*
Rename 'from()' to 'of()'
Bjørn Christian Seime
2023-02-13
3
-4
/
+4
*
Move definition of predefined capability set to parent class
Bjørn Christian Seime
2023-02-09
1
-1
/
+1
*
Add an "interactive" token resealing protocol and basic tooling support
Tor Brede Vekterli
2023-01-31
1
-1
/
+24
*
Add y64 encoder
Bjørn Christian Seime
2023-01-30
1
-0
/
+27
*
Use ChaCha20-Poly1305 instead of AES-GCM for shared key-based crypto
Tor Brede Vekterli
2023-01-05
1
-7
/
+61
*
Correct class name to reflect actual cipher name order
Tor Brede Vekterli
2022-12-01
1
-1
/
+1
*
Use correct encoding base in test
Tor Brede Vekterli
2022-11-28
1
-2
/
+2
*
Use BouncyCastle AES GCM cipher and I/O streams instead of JCA
Tor Brede Vekterli
2022-11-16
1
-4
/
+30
*
Add support for token resealing
Tor Brede Vekterli
2022-11-11
1
-0
/
+16
*
Use Base62 for tokens and Base58 for keys
Tor Brede Vekterli
2022-11-09
2
-4
/
+15
*
Add a codec that enables conversion to and from a base N representation
Tor Brede Vekterli
2022-11-08
1
-0
/
+122
*
Array clone() -> Arrays.copyOf()
Tor Brede Vekterli
2022-11-02
1
-1
/
+1
*
Encapsulate key identifier in own object
Tor Brede Vekterli
2022-11-02
2
-35
/
+105
*
Let token key IDs be UTF-8 byte strings instead of just an integer
Tor Brede Vekterli
2022-11-01
1
-10
/
+71
*
Add basic tooling for public key encryption and decryption
Tor Brede Vekterli
2022-10-27
1
-0
/
+1
*
Use JDK17's own hex utilities instead of BouncyCastle's
Tor Brede Vekterli
2022-10-25
3
-69
/
+63
*
Use HPKE instead of ECIES for shared single-use keys
Tor Brede Vekterli
2022-10-20
1
-32
/
+14
*
Add X25519 private to public key extraction and use for HPKE opening
Tor Brede Vekterli
2022-10-19
2
-9
/
+31
*
Minimal implementation of RFC 9180 Hybrid Public Key Encryption (HPKE)
Tor Brede Vekterli
2022-10-18
2
-0
/
+197
*
Add some utilities for comparing arrays without data-dependent branches
Tor Brede Vekterli
2022-10-17
1
-0
/
+38
*
Test some specific HKDF vectors from Google's Wycheproof crypto test suite
Tor Brede Vekterli
2022-10-14
1
-22
/
+106
*
Implement RFC-5869 HMAC-based Extract-and-Expand Key Derivation Function (HKDF)
Tor Brede Vekterli
2022-10-13
1
-0
/
+214
*
Enforce SHA-256 and AES-CBC for ECIES key wrapping
Tor Brede Vekterli
2022-10-13
1
-5
/
+6
*
Address PR comments
Tor Brede Vekterli
2022-10-12
1
-3
/
+3
*
Add utilities for secure one-way single-use key exchange tokens using ECIES
Tor Brede Vekterli
2022-10-11
1
-0
/
+135
*
Convert security-utils to junit5
Bjørn Christian Seime
2022-07-27
18
-143
/
+153
*
Force caller to handle failed capability verification check
Bjørn Christian Seime
2022-07-21
1
-4
/
+7
*
Improve error message
Bjørn Christian Seime
2022-07-21
1
-1
/
+1
*
Move logic for capability checking/logging to ConnectionAuthContext
Bjørn Christian Seime
2022-07-21
1
-0
/
+59
*
Simplify type definition for subject alternative names
Bjørn Christian Seime
2022-07-20
3
-7
/
+7
*
Move generic crypto helpers from 'c.y.s.tls' to 'c.y.s'
Bjørn Christian Seime
2022-07-20
3
-10
/
+6
*
Merge Java package 'c.y.s.tls.{auth,json,policy}' into 'c.y.s.tls'
Bjørn Christian Seime
2022-07-20
8
-29
/
+17
*
Rename 'toCapabilityNames()' to 'toNames()'
Bjørn Christian Seime
2022-07-15
1
-1
/
+1
*
Rename 'succeeded' => 'authorized'
Bjørn Christian Seime
2022-07-15
1
-2
/
+2
*
Return granted capabilities from PeerAuthorizer
Bjørn Christian Seime
2022-07-15
1
-6
/
+33
*
Add Capability and CapabilitySet including JSON serialization
Bjørn Christian Seime
2022-07-13
3
-2
/
+35
*
Remove 'role' concept from 'authorized-peers'
Bjørn Christian Seime
2022-07-11
5
-36
/
+16
*
Avoid hamcrest/deprecated assertThat.
Henning Baldersheim
2021-12-20
3
-20
/
+15
*
Disable '?' as single char wildcard for URI matching
Bjørn Christian Seime
2021-12-09
2
-1
/
+3
*
Fix copyright and trailing new line
Bjørn Christian Seime
2021-12-03
2
-4
/
+5
*
Support glob pattern for URIs with '/' as boundary
Bjørn Christian Seime
2021-12-02
2
-4
/
+38
*
Add glob pattern helper that handles multiple alternative boundaries
Bjørn Christian Seime
2021-12-02
1
-0
/
+106
*
Ensure consistent iteration ordering
Bjørn Christian Seime
2021-12-02
1
-2
/
+2
[next]
