Tags: kinzer1/msl
Tags
Release of 1.1198.0 - b4920fe: Merge pull request Netflix#48 from Netflix/ecc-x509 - ff66265: Fix X.509 path length checks. - aa3ebb4: Pull in EccCryptoContext. - 6bb483f: Remove Netflix-specific X.509 authentication code, which is incomplete. - 478288c: Merge branch 'master' of https://stash.corp.netflix.com/scm/se/msl - 75350ff: Merge pull request Netflix#5 in SE/msl from ~PPISSANETZKY/msl:nrdjs-changes to master - 1e70885: Add MessageOutputStream, MessageStreamFactory to public Javadoc classes. - 520f9b6: Use scheme.name - 4828044: Missing 'this' - f3b9f0c: Added support for cert chain to X509AuthenticationData - 9958ef7: Added EccCryptoContext - e5babb9: Guard against platforms that don't have a global window - 5b76033: Whitespace and copyright notices
Release of 1.1197.0 - ae95543: Merge branch 'master' of https://stash.corp.netflix.com/scm/se/msl - 5536c37: Merge pull request Netflix#47 from Netflix/message-factory - a2fa878: Move MessageStreamFactory from MslContext to one of the MslControl ctor parameters. - 6c17bd9: Rename MessageFactory to MessageStreamFactory. - 1898ff3: Move main test files into main directory to match Java Gradle directory structure. - 89c6587: Define MessageFactory, found off MslContext, that can be used to abstract creation of MessageInputStream and MessageOutputStream. - db2de54: Merge branch 'master' of https://stash.corp.netflix.com/scm/se/msl - 461bbba: added support for isending multiple messages at once and their timing
Release of 1.1196.0 - dcf4ad6: Suppress warnings on parameter map type. - dbf3ff3: Move mock classes into main so the grade build includes them when the msl-tests project is referenced externally. - 231d4a5: Merge pull request Netflix#46 from Netflix/factory-tokendata - b029465: Change TokenFactory.createMasterToken() so its input parameter is the entity authentication data instead of the identity string. This allows a token factory to use the entity authentication data when generating issuer data. - 9bcf8b2: Move mock and test classes into msl-tests where they belong. - ea729c9: Merge pull request Netflix#44 from Netflix/proxy - 0934407: Add MSL command line client and proxy to IDEA project files. - 76f932f: Example proxy that attempts to process MSL messages locally, then via an external service, and finally in a failover mode.
Release of 1.1196.0-rc.1 - dcf4ad6: Suppress warnings on parameter map type. - dbf3ff3: Move mock classes into main so the grade build includes them when the msl-tests project is referenced externally. - 231d4a5: Merge pull request Netflix#46 from Netflix/factory-tokendata - b029465: Change TokenFactory.createMasterToken() so its input parameter is the entity authentication data instead of the identity string. This allows a token factory to use the entity authentication data when generating issuer data. - 9bcf8b2: Move mock and test classes into msl-tests where they belong. - ea729c9: Merge pull request Netflix#44 from Netflix/proxy - 0934407: Add MSL command line client and proxy to IDEA project files. - 76f932f: Example proxy that attempts to process MSL messages locally, then via an external service, and finally in a failover mode.
Release of 1.1195.0 - a79eccd: Merge pull request Netflix#45 from dawsonbotsford/master - 4462f63: Spelling correction automated from Dawson's Spelling Bee - 7110dd9: Merge pull request Netflix#43 from Netflix/mt-protected-entityauth - 4b6cf4a: Change to only ignore the compiled classes in the /bin directory. - cf85ba3: Add .gitignore to command line client directory. - 9c5df32: Do not automatically ignore all bin directories. The binary directories provided by some projects may be important. - f169b7e: Merge pull request Netflix#4 in SE/msl from example-cli to master - d8e54d3: made display of user manual available at mslcli run time - 7fc262d: mslcli client and server scripts are running readme.txt up to date - 4879676: enabling *.sh scripts launching - 6b4105d: added mslcli project - 2497d9d: source + build restructuring - incremental checkin - f39c2c9: converting to the new source / build structure - incremental checkin - d0f20fd: a) ixed typo in exception message b) cosmetic changes - 6590728: cosmetic changes - e4d77d1: refactoring - 4cfeec4: refactoring - ffbff0b: more useful debug printouts for wrapping keys store - aefd57f: cleanup - f891bca: updated to the latest msl core jar - there were some breaking API changes - 3b0ff4c: more cosmetic changes - 92e63c5: cosmetic changes in the way debug info is printed - 07f5aa3: added validation of entity auth, user auth, and key exchange args before their actual use - 402032a: Implemented consistent toString() functions to assist in debugging and make logging info more informative - 3caeb09: cleanup - 406aff0: Cleanup Finalized support of SwitchProfile user authentication scheme - 9cb78d0: cleanup - f86ae0f: added MslStore argument to UserAuthentication.getUserAuthenticationData() to support certain Netflix-specific user auth schemes - 508ab25: updated developers guide - d799a77: updated developers guide - 3dac511: Added developers guide. - 9270084: cleanup - f4907c2: Moved all AuthenticationUtils functionality into a common class - 777736e: simplified code - ada8070: javadoc changes - 7f5771f: refactoring - 762a211: Cleaned up naming convention for entity authentication handles - ce74d10: improved error reporting - eefe753: Changed AuthenticationDataHandle to abstract class for consistency with other handles - 8ba10f1: enabled ad-hock command line arguments for functionality extension - 6152fde: Internal refactoring - 351c75e: Internal improvements - dd52ff1: Added support for UNAUTHENTICATED and UNAUTHENTICATED_SUFFIXED entity authentication schemes Added support for ad-hock property families - set of properties with common key name prefix. - 8657c20: updated manual - 38e5c5f: added support for pluggable user authentication - 76b7cbb: made configurable max number of skipped master token sequence numbers acceptable for renewal - 81aef9b: refactoring - 491b373: usability improvements - 71a5a0d: cleanup - 631114c: added debugging info - 1a0364a: added support for separate PSK and MGK files - 7da40c9: added MGK support - 8b70176: simplified adding new property types - 6fc5a34: typo - c6d2670: added printout of valid key exchange schemes, in case the user enters an invalid one - 1694c2d: significant refactoring to simplify adding Netflix extensions in plug-in fasion, without changing MSL core code - e0139e2: made entity authentication data configurable - 3164050: added tons of javadoc - 060c0f1: cleanup to eliminate warnings after adding -Xlint:all javac option - a8503b3: Move example CLI files to match all examples source code organization. - 06edc96: small optimization - ada27b8: More Javadoc added - 08272bb: added printout of next non-replayable id from MslStore - 6b309fd: Refactoring to make command-line parameters parsing apply to both client and server, for consistency Removed some config properties that belong to the command line - 6068934: Refactoring to manage separate msl stores for different client entity ids Refactoring to manage separate wrap key repositories for different { entity, key_exchange_scheme } tuples. Refactoring to push all MSL configuration into MslConfig.java and its sub-classes. - a0974f8: fix: MslStore serialization: added serialization of non-replayable IDs - 00cc646: refactoring for adding Netflix MSL extensions support: all client-specific configurations moved into ClientMslConfig.java - b25c4c9: Updated MSL core jar with the latest fixes - 56501af: implemented persistence of MSL store, so that client can keep state accross multiple runs - 5374b49: cleanup - 5c5f5a8: refactoring - ca8d2e1: refactoring in preparation to adding support of Netflix MSL extensions - 701eb84: refactoring to move more configuration stuff to ClientApp.java, to make the rest of the code more universal, in preparation to adding support for Netflix-specific extensions. - ab30d3f: Convenience feature - no need to specify entity ID via -eid if preshared key file is specified with -psk - 3d642da: small optimization to make gradle happy - d781bd8: added support for id files with {esn, encKey, hmacKey } lines - cb240f9: Improved invalid configuration detection. Improved invalid command arguments detection. - 09e9e05: made ServerTokenrFactory more robust to allow for lost renewed MasterToken's - 0302ad6: Added support of key exchange with WRAP and SESSION keys, not only PSK - c77955d: added wildchar support fro specifying DH parameters ID for multiple entities - 9a50c66: small changes - 82620e2: Formatted client_manual.txt for each line not to exceed 80 characters. Removed "-" prefix from "help", "list", and "quit" commands in interactive mode. - 51a39d2: added stack trace for unhandled exceptions - 8e9275d: added support for deriving wrapping key from encryption and hmac ones, as used at Netflix - 0c57b63: Convenience feature - support of base64 encoding of preshared keys in configuration files - 4544916: final configuration changes to enable talking to Netflix servers - 819c7e7: Optimized random serial number generation - aa2af54: made renewal and expiration offsets for master and user id tokens separately confugurable - efbc459: Cleaned up the code for stricter compilation options - 20cebf0: added service tokens generation on the server - 77cab44: removed server cfg parameters that are not actually being used - 25ebe3f: added propagation of Java client program's exit status from client bash scripts to the command shell - a0d7320: config files cleanup - a65abb9: small fix - 768f10f: updated MSL CLI client manual - e2aa0ab: added console email/password entry on the client side - 134f473: split configuration files for client and server - d19dfcc: improved server-side exceptions handling - 6339568: Improved exception handling on server side - 717a525: more exception handling improvements - 86d8596: doc fix - 173345c: Significant changes to improve exceptions handling - eceee4f: usability improvements - 77a44fd: improved exception handling - 2b5388d: Implemented non-interactive run of MSL client. Added manual for running MSL client. Implemented exit status codes for mslclient executable. - 6818514: enabled non-interactive run of ClientApp for sending a single message - 9d479d8: preparing for MSL store persistence - 5f83b7d: moved some classes under client - 680bf49: lots of javadoc added - f889729: 1. more configurability 2. code improvements - 3a032f3: removed unnecessary "synchronized" keyword - 66d918d: made service token keys configurable - 1c571f5: Simplified properties naming conventions. Reduced number of classes by introducing generic Pair and Triplet classes - e3c5250: More configurability - fbaa9c4: more javadoc - 9fbd5b7: completed making MSL CLI configuration-driven - f2846d5: completed making MSL CLI configuration-driven - c2ced06: Made DH parameters configurable - 97d18fb: More configuration added - f2e5711: more configuration - dbfd2ca: made diffie-hellman algorithm parameters configurable - fca0d74: adding support for configurable client and server - 43b90d7: Cosmetic changes - fea7a6a: Added flexibility in configuring MSL CLI client - 6bd6db3: typo fixes in help messages - 5a0f845: Added printing help to MSL client app. - c04b86e: Added Javadoc - b263604: cosmetic changes - d0abed0: Code refactoring. Made MslControl's debug messages optional. - cb4ecb0: code refactoring - b926c04: Added more client-side configuration options - 06b9efe: Small formatting change - 9df07ad: Implemented error header handling - 7fd984b: Modified Client.java to ptocess error headers - 428b9de: modified readme.txt - fdc0e6f: Deleted unused code. Improved the documentation in readme.txt file. - 7356373: Code cleanup - daaa179: modified build.sh to automatically create the build directory - 41f784c: Added support of all remaining key exchange schemes defined in core MSL - 44386e7: Small typo in a method name - 730585e: Added support of Asymmetric Wrapped Key Exchange - db5f732: Added support of Diffie-Hellman key exchange - 5a7d729: MSL CLI - more code cleanup - 8b02515: MSL CLI code cleanup - made code more self-documented - 7737cac: Modified readme - 1c35471: Updated readme - fb926d5: Initial implementation of MSL CLI - 0c82aa9: Implement master token-protected entity authentication scheme. This scheme can be used to authenticate as a different entity without exposing the new entity authentication data to third-party observers by using an existing master token and its session keys. Application data encryption and integrity cannot be promised because the message must be protected using the encapsulated entity authentication scheme (otherwise no authentication actually occurs) which has unknown crypto properties. - cf7bf85: Increase RSA key generation timeouts to increase success probability of unit tests. - 1c079eb: Remove extraneous 'return' keyword after change to make EntityAuthenticationFactory.createData() asynchronous. - 4b7bbf4: Merge branch 'master' into mt-protected-entityauth - db9cf4c: Increase RSA key generation timeout to 900ms. - cea90c2: Change JavaScript EntityAuthenticationFactory.createData() and EntityAuthenticationData$parse() to use a callback for asynchronous processing.
Release of 1.1194.0 - d067c6e: Merge pull request Netflix#42 from Netflix/copyright-headers - 0a68f10: Adding copyright to a UserAuthenticationData - 8d9cd89: Merge pull request Netflix#41 from Netflix/isolate-group - 22a2fb0: Using a group just for MSL - 00ab4a7: Merge pull request Netflix#40 from Netflix/apply-netflixoss-to-all-projects - 7fed7e8: Add in Required files per internal "OSS Build and Publish" page. Apply netflixoss plugin to subprojects
Release of 1.1194.0-rc.3 - d067c6e: Merge pull request Netflix#42 from Netflix/copyright-headers - 0a68f10: Adding copyright to a UserAuthenticationData - 8d9cd89: Merge pull request Netflix#41 from Netflix/isolate-group - 22a2fb0: Using a group just for MSL - 00ab4a7: Merge pull request Netflix#40 from Netflix/apply-netflixoss-to-all-projects - 7fed7e8: Add in Required files per internal "OSS Build and Publish" page. Apply netflixoss plugin to subprojects
Release of 1.1194.0-rc.2 - d067c6e: Merge pull request Netflix#42 from Netflix/copyright-headers - 0a68f10: Adding copyright to a UserAuthenticationData - 8d9cd89: Merge pull request Netflix#41 from Netflix/isolate-group - 22a2fb0: Using a group just for MSL - 00ab4a7: Merge pull request Netflix#40 from Netflix/apply-netflixoss-to-all-projects - 7fed7e8: Add in Required files per internal "OSS Build and Publish" page. Apply netflixoss plugin to subprojects