Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | Merge pull request #15240 from yihuazhang/google_default_creds | 2018-05-04 | |
|\ | | | | | Incorporate alts to google default creds | ||
| * | incorporate alts to google default creds | 2018-05-03 | |
| | | |||
* | | Fix bad_ping end2end test flakiness | 2018-05-03 | |
|/ | |||
* | Merge pull request #15156 from AspirinSJL/resolution_timer_fix | 2018-04-30 | |
|\ | | | | | Check retry timer before starting resolving | ||
| * | Don't resolve if there is a resolution timer | 2018-04-30 | |
| | | |||
* | | fix namespace of security_connector test functions | 2018-04-27 | |
| | | |||
* | | gRPC core: strip zone-id from IPv6 hosts before TLS verification | 2018-04-26 | |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When initiating a connection to an IPv6 peer using an address that is not globally scoped, there may be ambiguity regarding which zone the destination address applies to when multiple links of the same scope are present. The scoped address architecture and zone-id syntax are described in rfc4007 and rfc 6874, respectively: * https://tools.ietf.org/html/rfc4007#section-6 * https://tools.ietf.org/html/rfc6874 This patch allows host name verification performed during TLS session establishment, and on a per-call basis, to work correctly when the peer presents a certificate with a non-global IPv6 address listed as one of its alternate names. Whether arbitrary certificate authorities choose issue certificates of this nature, or not, is outside the scope of gRPC. The zone-id is separated from the address using a percent (%) character. It is considered a system implementation detail and guidance suggests it be stripped from any paths or addresses egressing a host because it is irrelevant and meaningless otherwise. It would not make sense for a server to present a certificate containing non-global IPv6 addresses with zone-ids present nor would it work unless two hosts happened to be using the same zone-id. ssl_host_matches_name is prefixed with grpc_ because it has been promoted to the global namespace for testing. Resolves #14371 | ||
* | | Merge pull request #15047 from davidben/ssl-session-access | 2018-04-25 | |
|\ \ | | | | | | | Do not reach into BoringSSL internals. | ||
* \ \ | Merge pull request #15155 from grpc/revert-15150-revert-15130-fake_handshaker | 2018-04-24 | |
|\ \ \ | | | | | | | | | Revert "Revert "Add fake ALTS handshaker server (bazel only)"" | ||
* | | | | [openssl] Use 80-bytes STEK for OpenSSL-1.1 | 2018-04-23 | |
| | | | | |||
| * | | | Fix BUILD to allow successful import | 2018-04-23 | |
| | | | | |||
| * | | | Revert "Revert "Add fake ALTS handshaker server (bazel only)"" | 2018-04-23 | |
|/ / / | |||
* | | | Revert "Add fake ALTS handshaker server (bazel only)" | 2018-04-23 | |
| | | | |||
* | | | Merge pull request #15130 from jiangtaoli2016/fake_handshaker | 2018-04-20 | |
|\ \ \ | | | | | | | | | Add fake ALTS handshaker server (bazel only) | ||
| * | | | Add fake ALTS handshaker server (bazel only) | 2018-04-20 | |
| | | | | |||
* | | | | Merge pull request #14954 from markdroth/retry_fix | 2018-04-20 | |
|\ \ \ \ | | | | | | | | | | | Fix retry code handling of internally triggered recv_trailing_metadata. | ||
* \ \ \ \ | Merge pull request #15117 from markdroth/dns_resolver_test_fix | 2018-04-19 | |
|\ \ \ \ \ | |_|_|_|/ |/| | | | | Clean up test cases in dns_resolver_test. | ||
* | | | | | Merge pull request #15090 from markdroth/handshaker_trace | 2018-04-19 | |
|\ \ \ \ \ | | | | | | | | | | | | | Add tracer for handshakers. | ||
| | * | | | | Clean up test cases in dns_resolver_test. | 2018-04-19 | |
| | | |/ / | | |/| | | |||
* | / | | | Avoid warnings from LLVM -Wself-assign. | 2018-04-18 | |
| |/ / / |/| | | | |||
| * | | | Add tracer for handshakers. | 2018-04-17 | |
|/ / / | |||
* | | | Add build path to ALTS test BUILD files | 2018-04-17 | |
| | | | |||
* | | | Add C++ experimental API extensions for ALTS C stack | 2018-04-16 | |
| | | | |||
* | | | Merge pull request #15020 from danzh2010/multisockets | 2018-04-12 | |
|\ \ \ | | | | | | | | | Allow udp_server to create multiple listeners for each port via SO_REUSEPORT | ||
| | | * | Do not reach into BoringSSL internals. | 2018-04-12 | |
| |_|/ |/| | | | | | | | | | | | | | | SSL_SESSION is a private struct and should not be accessed by calling code. There is no need to assert on the reference count in that test; the test already asserts on whether the SSL_SESSION was destroyed. | ||
| * | | use renamed function in test for cheking so_reuseport | 2018-04-12 | |
| | | | |||
| * | | Allow udp_server to create multiple listeners for each port via SO_REUSEPORT | 2018-04-12 | |
| | | | |||
| | * | Fix retry code handling of internally triggered recv_trailing_metadata. | 2018-04-12 | |
| |/ |/| | |||
* | | Merge pull request #14945 from ara-ayvazyan/improve_log_perf | 2018-04-12 | |
|\ \ | |/ |/| | Avoid low severity log message construction | ||
* | | Fix a memory leak | 2018-04-10 | |
| | | |||
* | | Disable SO_REUSEPORT disabled test for uv tests | 2018-04-09 | |
| | | |||
* | | Merge pull request #14845 from markdroth/inlined_vector | 2018-04-09 | |
|\ \ | | | | | | | Change InlinedVector to keep elements stored contiguously. | ||
| | * | regenerate projects using tools/buildgen/generate_projects.sh | 2018-04-05 | |
| |/ |/| | |||
* | | Fix authority fuzzing failures | 2018-03-29 | |
| | | |||
* | | Merge pull request #14734 from markdroth/c++_retry_throttle | 2018-03-29 | |
|\ \ | | | | | | | Convert retry throttle code to C++ and add tests. | ||
* \ \ | Merge pull request #14615 from dgquintas/authority_header | 2018-03-28 | |
|\ \ \ | | | | | | | | | Secure channels: use the right authority | ||
| | | * | Change InlinedVector to keep elements stored contiguously. | 2018-03-28 | |
| |_|/ |/| | | |||
| | * | Convert retry throttle code to C++ and add tests. | 2018-03-28 | |
| |/ |/| | |||
| * | fix generate_tests.bzl | 2018-03-27 | |
| | | |||
* | | Merge pull request #14769 from yashykt/sslcerttestfix | 2018-03-27 | |
|\ \ | | | | | | | Use same queue for batch ops and for shutdown in h2_ssl_cert_test | ||
| | * | Merge branch 'master' of github.com:grpc/grpc into authority_header | 2018-03-27 | |
| | |\ | |_|/ |/| | | |||
| | * | more comments | 2018-03-27 | |
| | | | |||
| | * | added call_host_override test | 2018-03-26 | |
| | | | |||
* | | | Merge pull request #14788 from adelez/foundry_integration | 2018-03-26 | |
|\ \ \ | | | | | | | | | Add timeout param to grpc_cc_test, set it to long for fuzzer tests and eternal for api_fuzzer | ||
| | | * | localhost or 127.0.0.1 | 2018-03-25 | |
| | | | | |||
* | | | | Merge pull request #14722 from jiangtaoli2016/ssl_load_root_certs | 2018-03-25 | |
|\ \ \ \ | | | | | | | | | | | load ssl default root certificates only once | ||
| | | | * | fixed bad_ping test after merge | 2018-03-23 | |
| | | | | | |||
| | | | * | Merge branch 'master' of github.com:grpc/grpc into authority_header | 2018-03-23 | |
| | | | |\ | |_|_|_|/ |/| | | | | |||
| | | | * | Added host override info to test fixture config | 2018-03-23 | |
| | | | | | |||
| | * | | | Also add size | 2018-03-23 | |
| | | | | |