Tags: musketeer925/msl
Tags
Release of 1.1207.0 - 9b897bd: Merge pull request Netflix#141 from Netflix/mslctrl-cancelled - 51095d7: Merge pull request Netflix#140 from Netflix/redact-tostring - 5e85ca5: Exclude SocketTimeoutException from exceptions considered a cancellation or application-induced interruption. Add documentation listing the exceptions or errors considered a cancellation or application-induced interruption. - 1661ea1: Add MslUser to public Javadoc. - 8f61767: Replace encrypted data in MSL token toString() methods with "(redacted)" to prevent data leakage. JavaScript JSON.stringify() of tokens does not include all properties, and default toString() prints "[object X]".
Release of 1.1205.0 - eda907f: Merge pull request Netflix#135 from Netflix/ishandshake-exceptions - 3eef822: Catch MslException when ReceiveService.call() calls request.isHandshake() to return a proper error response. - 916f87c: Fix PublicKey$import() call to specify the key format as SPKI. - 278deb7: Minor corrections. - 716f77e: Make sure to provide a timeout and callback to Url's ByteArrayInputStream and MslControl.receive()'s MessageInputStream. - 3bdefe4: Fix close() function to match interface.
Release of 1.1204.0 - b8996ce: Merge pull request Netflix#131 from Netflix/ecc-entityauth-fixes - 9169806: Add EccAuthenticationDataTest.js; add MockEccAuthenticationFactory to MockMslContext. Fix superclass ctor calls in MockRsaAuthenticationFactory and MockEccAuthenticationFactory. - addb96c: Merge pull request Netflix#130 from Netflix/renewal-timeout - 9525108: Throw a TimeoutException if acquireRenewalLock() times out waiting for the master token. - e39713a: Merge pull request Netflix#127 from Netflix/EccEntityAuth - 3f1ce22: Signal condition variable upon key import / fix js include order. - c1ad306: Merge pull request Netflix#128 from quidryan/streamfactory-on-input - 8d0bb9b: Use message stream factory for message input stream creation - 03db8ce: Add ECC Entity authentication support. - 7766eaf: Merge pull request Netflix#126 from Netflix/PKInputFormats-Issue122 - 26be72f: For JWK import check that input is a pure Javascript object. - 551ff69: Re-order script dependencies, cleanup formatting. - 1a843ed: Add format parameter to Pubkey/Privkey import methods. - 1dc8329: Merge pull request Netflix#124 from aliddeke/EccVerifySupport-Issue123 - 94c14b6: ECC should use PrivateKey/PublicKey classes, not raw values. - 31015e7: Change some code structure to match other files to support easy grep/find/replace. Fix initialized = true statement. Add some comments. - a6687f7: Merge pull request Netflix#120 from aliddeke/EccVerifySupport - ae04f7a: Address fixes for ECC verify support. - abdfd28: Add ECC Verification support.
Release of 1.1203.0 - 6b5e544: Merge pull request Netflix#114 from Netflix/base64-secure - 14dec19: Create secure/strict Base64 implementation that rejects invalid Base64 encodings without using a regex, and also without failing early. This implementation encodes about 2.5% faster and decodes about 90% faster than Base64Jaxb. - 795ef1d: Merge pull request Netflix#113 from Netflix/gzip-cleanup - 3011839: Close GZIP and LZW streams in finally block to ensure resources are released when an IOException is thrown.
Release of 1.1202.0 - c876f80: Merge pull request Netflix#109 from rspieldenner/travis - aed1bd4: Tweaks to memory settings for travis - 5f6660d: Specify max memory for tests - b7c559e: Switch to jdk7 - 2222c4e: Travis - b97f3a3: Merge pull request Netflix#108 from Netflix/url-interface - d175648: Create MSL com.netflix.msl.io.Url interface to match JavaScript Url interface. This differs from the Java java.net.URL class but provides the same functionality. Interface name is undesirable as potentially confusing with java.net.URL but it's a starting point. - 74f0293: Merge pull request Netflix#107 from Netflix/masked-exceptions - bd07bcf: Catch and discard any IOException thrown during input/output stream cleanup in RequestService.call() exception handlers. This prevents an I/O exception from masking the original exception. - 6079a2a: Remove incorrect 'new' keyword from createData() function body. - 3dd4f63: Merge pull request Netflix#102 from Netflix/sessioncrypto-nullidentity - 27b04e0: Allow session crypto contexts to be created when the identity is not known. The constructors should only be explicitly called with a null entity identity in special cases, as EntityAuthenticationData is prohibited by contract from returning a null value for its identity. - e96b213: Fix some key exchange exceptions that are not properly setting MslException master token and entity authentication data. - c22ea1e: Merge pull request Netflix#101 from Netflix/base64-improvements - ae3de75: Allow whitespace in Base64 encoded strings; whitespace will be stripped before validating the string. Compile the Base64 regex for repeated use. - a9952ad: Restrict core and tests to Java 1.7 for compatibility with Android. - e044843: Merge pull request Netflix#99 from Netflix/provisioned-entityauth - 07a587e: Remove identity value from key response data—it is not needed and will echo the entity identity insecurely. Remove MslContext.setEntityIdentity() since that function was only added to support returning the entity identity in key response data. - f4cf81c: Merge branch 'master' into provisioned-entityauth - 4d88c19: First draft of returning the master token entity identity in key response data, and the provisioned entity authentication scheme. This is currently added as a sibling key/value pair in the top-level key response data. For privacy reasons this needs to change so the data is encrypted and integrity protected by the session keys in the key response data. MslContext.setEntityIdentity() has been defined to provide the entity identity when key response data is received.
Release of 1.1201.0 - 17e5c93: Remove leftover unused imports for DatatypeConverter. - cefe1df: Merge pull request Netflix#98 from Netflix/base64 - 3a6fc00: Create Base64 abstraction in Java code base, with a default implementation based on DatatypeConverter. Restore Base64 encoding validity check, in sync with the JavaScript implementation (which now also has an improved regex). Update unit tests to match Base64 encoding validity checks. - 537aac5: Merge pull request Netflix#97 from Netflix/encrypt-recipient - 145f7e4: Only include the recipient field when the header will be encrypted. - e1d7491: Change private fields to protected for subclass access. - 7332deb: Consolidate .gitignore into a single top-level file. - b0753a7: Merge branch 'master' of github.com:Netflix/msl - c8930c1: Remove .idea files from repository as they are no longer compatible with the newest version of IntelliJ and cannot provide user-independent web project configuration. IntelliJ users must import the project and configure web contexts manually. Add /.idea to .gitignore. - f9cb4af: Change MSL command line server deployment path from /msl to /mslcli-server to avoid conflicts. - 2180e0e: Updates to Java instructions. - 0f91b70: Merge pull request Netflix#95 from Netflix/circular-dependencies - cd61e2f: Move Java Header JSON key names into HeaderKeys class, to match JavaScript. - 082c51f: Completely move Header JSON key names into HeaderKeys file; include documentation. - b06f49b: Update Java MslException.set*() functions to match JavaScript. - fd153cd: Make sure not to set the MslException entity or user if already set. Update documentation. - 7b84a65: Bring back in check to make sure entity authentication data is null. - 36a189e: Fix up some more MslException.set*() references in unit tests. - 1bceba4: add reference to HeaderKeys.js in SimpleClient.html - 04efcaa: remove the dependency on MasterToken and EntityAuthenticationData from MslException - f774547: remove the dependency on UserIdToken and UserAuthenticationData from MslException - 2c39e11: create HeaderKeys file to store the header keys, avoiding a circular dependency - ff62bdd: Merge pull request Netflix#94 from Netflix/useridtoken-docs - 518fd8f: Correct user ID token 'userdata' JTON mandatory field names. - 5714e5e: Merge pull request Netflix#93 from Netflix/future-exception-docs - 0373fdf: Correct documentation to indicate the Future's thrown exceptions will be carried inside an ExecutionException. - 2d84a6f: Merge pull request Netflix#90 from Netflix/oneshot-fixes - 45818f9: Misc example/oneshot fixes - 6bce0f0: Removing 'JWK' from exception description string now that the class is more generically used.
Release of 1.1200.0 - ba00b26: Merge pull request Netflix#83 from Netflix/aw-rsa-keyx - e089189: Enable support of RSA-OAEP encrypt/decrypt-based asymmetric wrapped key exchange. - c0b5f73: Fix bug in JsonUtilsTest merge with overwriting unit test. - 8812ec5: Fix Java MessageHeader and ErrorHeader .equals() and .hashCode()—this backs out pull request Netflix#77. - b56947a: Merge pull request Netflix#81 from Netflix/issuerdata - 9237276: Add unit tests for JsonUtils; move MockTokenFactory.merge() into new JsonUtils.js. Fix minor typos in existing Java JsonUtilsTest logic. - 30919a0: Handle null issuer data arguments to TokenFactory.renewMasterToken(). Create merge functions to shallow merge two JSON objects, when the two objects may either or both be null. - 09e700b: Add issuer data parameter to TokenFactory.createMasterToken() and .renewMasterToken(). This can be used by a key exchange factory to provide data that will be carried in the master token issuer data. The Javadoc description on renewMasterToken() indicates the issuer data argument may be merged into or overwrite the existing master token issuer data. - e98eaae: Fix MSL crypto context by switching to ClientMslCryptoContext. - 3187c82: Change default keyx scheme+mechanism from AsymmetricWrapped RSA to AsymmetricWrapped JWK_RSA. - ab3f845: Merge pull request Netflix#80 from Netflix/oneshot - ae0c23c: Remove extraneous error println. - e2124c0: Initial commit of oneshot example program. - 38132c5: Merge pull request Netflix#79 from semmypurewal/refactor-example - 30d008d: Merge branch 'master' into refactor-example - 1f4f22b: Merge pull request Netflix#77 from quidryan/string-equals - 4d62384: Avoid bracket on single line if statements - 211c6ee: Use same variable names as javascript - d7e56c9: Merge pull request Netflix#78 from quidryan/make-proxy-build - 10a31df: Use instanceof instead of getClass() checks - 3e4bcf5: Put proxy source into a valid source directory Add dependencies to build.grade Make changes to keep up with changed interfaces - 0ae76b5: setup other onclick handlers in App.js instead of SimpleClient.html - 4855664: Increase readability of equals/hashCode for MessageHeader and ErrorHeader. Also avoid == on strings, even if its to check if both are null.
Release of 1.1199.0 - 9056132: Merge pull request Netflix#76 from semmypurewal/refactor-example - 7f46589: Merge pull request Netflix#75 from Netflix/mslcli-runtimeexceptions - 3b76083: Check for null pointer which may be returned by the UserAuthenticationHandle.getUserAuthenticationData(), if there is no data. - 92fee37: Set ClientRequestMessageContext user ID, user auth data, and key request data at context creation. Set CommonMslContext entity auth data at context creation. Change Client to instantiate, and therefore reconfigure with the latest values, the MslContext just prior to calling MslControl.request(). This is OK for now because the MslStore is shared via the appCtx, and we don't really care about having the remote entity clock synchronized. These changes together prevent RuntimeExceptions from being thrown as a result of the MslContext, MessageContext, or MslConfiguration being incomplete or unusable only after calling MslControl.request(). - 3944819: move JS event handlers out of HTML and into App.js - 8a2c4ed: Merge pull request Netflix#72 from semmypurewal/refactor-example - aa20595: remove inline javascript and move UI-related javascript to its own file - cf0c693: move example style.css into its own file - 60caaa0: Merge pull request Netflix#69 from semmypurewal/bug-fixes - 3306a3a: Merge pull request Netflix#70 from Netflix/remove-isnewestmastertoken - 7c0ab9a: Change JUnit grade dependency to latest.release (4.11 is gone and not necessary to hard-code a specific version). - 4c182b1: Remove TokenFactory.isNewestMasterToken(). The master token sequence number will be checked after entering the master token renewal window. If there is reason to suspect a master token should no longer be accepted, .isMasterTokenRevoked() should be used instead. - 0051b85: add some missing 'this' references in the example, remove trailing whitespace and unnecessary commas - e5ed005: Merge pull request Netflix#66 from semmypurewal/bug-fixes - 3bfaa6d: declare MasterTokenProtectedAuthenticationFactory - 909cf4b: Merge pull request Netflix#64 from Netflix/gretty - 84ac12d: Merge pull request Netflix#61 from Netflix/useridtoken-exception - a81e890: Specify context path for gretty deployment. Remove pretty test integration test task (there is no test target for this project). - 6017c1d: Extend Readme with additional details. - 24e4687: Pull in MessageStreamFactory.js. - de67ab8: Fix private variable reference typos. - ae390b4: Add MslUserIdTokenException ctor that accepts a Throwable / Error cause. - 1411204: Merge pull request Netflix#60 from quidryan/update-gradle - 4ee2f43: Merge pull request Netflix#59 from quidryan/example-simple-server - 7683018: Grade 2.10 Netflix OSS 3.2.0 - 41f3615: Using pretty plugin to run the server, similar to how integration tests are run. - a6bf42a: Upgrade grade components. - a491ba7: Merge pull request Netflix#55 from Netflix/extdata-cleanup - 292f14f: Move MSL context remote clock state out of MslControl and into MslContext. This changes MslContext from an interface to an abstract class. Change MslControl master token read-write lock state to include the MslContext in the lookup key; this prevents collisions in the rare case multiple MslContexts have master tokens with the same serial number, sequence number, and expiration (very unlikely). Remove leftover unused definitions of MessageStreamFactory from MslContext derived classes. - e911cac: Ignore integration test output. - dedec69: Merge branch 'master' of github.com:Netflix/msl - e9b10fb: Ignore TestNG output files. - c2d9414: Use the correct URL path for the integration tests. - cdf361f: Merge pull request Netflix#54 from Netflix/extdata-cleanup - 7a778fa: Merge branch 'master' into extdata-cleanup - 343daa5: Only populate the remoteClocks variable for trusted network clients and p2p entities. This avoids useless references to the MslContext in trusted network servers that will prevent garbage collection, which is particularly bad in the event a server is interacting with many clients. This does not fix the situation where a MslContext is no longer viable and has been deleted external to the MslControl instance. - 03fbb01: Merge pull request Netflix#53 from Netflix/delete-tokens - c223886: adding OSSMETADATA for NetflixOSS tracking - 904acf6: Delete the master token or user ID token upon receipt of ENTITYDATA_REAUTH or USERDATA_REAUTH respectively, in case those errors are returned when tokens were included in the outgoing message. This allows the MSL stack to properly recover and prevents use of the tokens again when the next message is constructed. - 7a07cd7: Update readme to match new distribution build structure. - 28b1f97: Move the scripts into src/dist/bin so they are automatically included in the distribution build. Update scripts to use all the JAR files regardless of build version and to correctly locate auxiliary scripts. - 5611f67: Ignore /bin directory since that is the Eclipse build directory. - ea3a32e: Explicitly include common test cases. (Not sure if this JUnit test behavior changed at some point.) - 8263045: Merge pull request Netflix#49 from Netflix/mslcontrol-verbose-error - 3657702: MslControl: more verbose error message
PreviousNext