Index (security-utils 8.571.14 API)

A B C D E F G H I J K L M N O P R S T U V W X Y
All Classes and Interfaces|All Packages|Constant Field Values|Serialized Form

A

addSubjectAlternativeName(SubjectAlternativeName) - Method in class com.yahoo.security.Pkcs10CsrBuilder
addSubjectAlternativeName(SubjectAlternativeName) - Method in class com.yahoo.security.X509CertificateBuilder
addSubjectAlternativeName(SubjectAlternativeName.Type, String) - Method in class com.yahoo.security.Pkcs10CsrBuilder
addSubjectAlternativeName(SubjectAlternativeName.Type, String) - Method in class com.yahoo.security.X509CertificateBuilder
addSubjectAlternativeName(String) - Method in class com.yahoo.security.Pkcs10CsrBuilder
addSubjectAlternativeName(String) - Method in class com.yahoo.security.X509CertificateBuilder
aead() - Method in record class com.yahoo.security.hpke.Ciphersuite: Returns the value of the aead record component.
Aead - Interface in com.yahoo.security.hpke: Authenticated encryption with associated data (AEAD)
AeadCipher - Class in com.yahoo.security: AEAD cipher wrapper to hide the underlying crypto provider used.
aeadId() - Method in interface com.yahoo.security.hpke.Aead: Predefined AEAD ID, as given in RFC 9180 section 7.3
aes128Gcm() - Static method in interface com.yahoo.security.hpke.Aead
all() - Static method in class com.yahoo.security.tls.CapabilitySet
ALL - Static variable in class com.yahoo.security.tls.CapabilitySet
ALLOWED_CIPHER_SUITES - Static variable in interface com.yahoo.security.tls.TlsContext: Handpicked subset of supported ciphers from https://www.openssl.org/docs/manmaster/man1/ciphers.html based on Modern spec from https://wiki.mozilla.org/Security/Server_Side_TLS For TLSv1.2 we only allow RSA and ECDSA with ephemeral key exchange and GCM.
ALLOWED_PROTOCOLS - Static variable in interface com.yahoo.security.tls.TlsContext
allZeros(byte[]) - Static method in class com.yahoo.security.SideChannelSafe
arraysEqual(byte[], byte[]) - Static method in class com.yahoo.security.SideChannelSafe: Compare two byte arrays without the use of data-dependent branching that may leak information about the contents of either of the arrays.
ArrayUtils - Class in com.yahoo.security: A small collection of utils for working on arrays of bytes.
ArrayUtils() - Constructor for class com.yahoo.security.ArrayUtils
asBytes() - Method in class com.yahoo.security.KeyId
asSet() - Method in class com.yahoo.security.tls.CapabilitySet
asString() - Method in class com.yahoo.security.KeyId
asString() - Method in enum class com.yahoo.security.tls.Capability
asString() - Method in interface com.yahoo.security.tls.RequiredPeerCredential.Pattern
authDecap(byte[], XECPrivateKey, XECPublicKey) - Method in interface com.yahoo.security.hpke.Kem: Section 4 Cryptographic Dependencies: "Same as Decap(), and the recipient is assured that the KEM shared secret was generated by the holder of the private key skS."
authEncap(XECPublicKey, XECPrivateKey) - Method in interface com.yahoo.security.hpke.Kem: Section 4: Cryptographic Dependencies: "Same as Encap(), and the outputs encode an assurance that the KEM shared secret was generated by the holder of the private key skS."
AuthorizationMode - Enum Class in com.yahoo.security.tls
authorized() - Method in record class com.yahoo.security.tls.ConnectionAuthContext
AuthorizedPeers - Record Class in com.yahoo.security.tls
AuthorizedPeers(Set<PeerPolicy>) - Constructor for record class com.yahoo.security.tls.AuthorizedPeers: Creates an instance of a AuthorizedPeers record class.
authorizePeer(X509Certificate) - Method in class com.yahoo.security.tls.PeerAuthorizer
authorizePeer(List<X509Certificate>) - Method in class com.yahoo.security.tls.PeerAuthorizer
AutoReloadingX509KeyManager - Class in com.yahoo.security: A X509ExtendedKeyManager that reloads the certificate and private key from file regularly.

B

base() - Method in class com.yahoo.security.BaseNCodec
Base58 - Class in com.yahoo.security: Base58 encoding using the alphabet standardized by Bitcoin et al., which avoids the use of characters [0OIl] to avoid visual ambiguity.
Base58() - Constructor for class com.yahoo.security.Base58
Base62 - Class in com.yahoo.security: Base62 encoding which has the nice property that it does not feature any potential word/line-breaking characters, which means encoded strings can usually be selected in one go on web pages or in the terminal.
Base62() - Constructor for class com.yahoo.security.Base62
BaseNCodec - Class in com.yahoo.security: Codec that enables easy conversion from an array of bytes to any numeric base in [2, 256) and back again, using a supplied custom alphabet.
BASIC_CONSTRAINTS - Enum constant in enum class com.yahoo.security.Extension
build() - Method in class com.yahoo.security.KeyStoreBuilder
build() - Method in class com.yahoo.security.Pkcs10CsrBuilder
build() - Method in class com.yahoo.security.SslContextBuilder
build() - Method in class com.yahoo.security.tls.TransportSecurityOptions.Builder
build() - Method in class com.yahoo.security.X509CertificateBuilder
buildContext() - Method in class com.yahoo.security.SslContextBuilder
Builder() - Constructor for class com.yahoo.security.tls.TransportSecurityOptions.Builder

C

capabilities() - Method in record class com.yahoo.security.tls.ConnectionAuthContext: Returns the value of the capabilities record component.
capabilities() - Method in record class com.yahoo.security.tls.PeerPolicy: Returns the value of the capabilities record component.
CAPABILITIES_ENV_VAR - Static variable in class com.yahoo.security.tls.TransportSecurityUtils
Capability - Enum Class in com.yahoo.security.tls
capabilityChecksFailed() - Method in record class com.yahoo.security.tls.TlsMetrics.Diff: Returns the value of the capabilityChecksFailed record component.
capabilityChecksFailed() - Method in record class com.yahoo.security.tls.TlsMetrics.Snapshot: Returns the value of the capabilityChecksFailed record component.
capabilityChecksSucceeded() - Method in record class com.yahoo.security.tls.TlsMetrics.Diff: Returns the value of the capabilityChecksSucceeded record component.
capabilityChecksSucceeded() - Method in record class com.yahoo.security.tls.TlsMetrics.Snapshot: Returns the value of the capabilityChecksSucceeded record component.
capabilityMode() - Method in record class com.yahoo.security.tls.ConnectionAuthContext: Returns the value of the capabilityMode record component.
CapabilityMode - Enum Class in com.yahoo.security.tls
capabilityNames() - Method in record class com.yahoo.security.tls.PeerPolicy: Returns the value of the capabilityNames record component.
CapabilitySet - Class in com.yahoo.security.tls
certificate() - Method in class com.yahoo.security.X509CertificateWithKey
CERTIFICATE_ALIAS - Static variable in class com.yahoo.security.AutoReloadingX509KeyManager
certificateListFromPem(String) - Static method in class com.yahoo.security.X509CertificateUtils
certificateWithIntermediates() - Method in class com.yahoo.security.X509CertificateWithKey
changesSince(TlsMetrics.Snapshot) - Method in record class com.yahoo.security.tls.TlsMetrics.Snapshot
checkClientTrusted(X509Certificate[], String) - Method in class com.yahoo.security.MutableX509TrustManager
checkClientTrusted(X509Certificate[], String) - Method in class com.yahoo.security.TrustAllX509TrustManager
checkClientTrusted(X509Certificate[], String, Socket) - Method in class com.yahoo.security.MutableX509TrustManager
checkClientTrusted(X509Certificate[], String, Socket) - Method in class com.yahoo.security.TrustAllX509TrustManager
checkClientTrusted(X509Certificate[], String, SSLEngine) - Method in class com.yahoo.security.MutableX509TrustManager
checkClientTrusted(X509Certificate[], String, SSLEngine) - Method in class com.yahoo.security.TrustAllX509TrustManager
checkHashContext() - Method in record class com.yahoo.security.token.TokenDomain: Returns the value of the checkHashContext record component.
checkServerTrusted(X509Certificate[], String) - Method in class com.yahoo.security.MutableX509TrustManager
checkServerTrusted(X509Certificate[], String) - Method in class com.yahoo.security.TrustAllX509TrustManager
checkServerTrusted(X509Certificate[], String, Socket) - Method in class com.yahoo.security.MutableX509TrustManager
checkServerTrusted(X509Certificate[], String, Socket) - Method in class com.yahoo.security.TrustAllX509TrustManager
checkServerTrusted(X509Certificate[], String, SSLEngine) - Method in class com.yahoo.security.MutableX509TrustManager
checkServerTrusted(X509Certificate[], String, SSLEngine) - Method in class com.yahoo.security.TrustAllX509TrustManager
chooseClientAlias(String[], Principal[], Socket) - Method in class com.yahoo.security.AutoReloadingX509KeyManager
chooseClientAlias(String[], Principal[], Socket) - Method in class com.yahoo.security.MutableX509KeyManager
chooseEngineClientAlias(String[], Principal[], SSLEngine) - Method in class com.yahoo.security.AutoReloadingX509KeyManager
chooseEngineClientAlias(String[], Principal[], SSLEngine) - Method in class com.yahoo.security.MutableX509KeyManager
chooseEngineServerAlias(String, Principal[], SSLEngine) - Method in class com.yahoo.security.AutoReloadingX509KeyManager
chooseEngineServerAlias(String, Principal[], SSLEngine) - Method in class com.yahoo.security.MutableX509KeyManager
chooseServerAlias(String, Principal[], Socket) - Method in class com.yahoo.security.AutoReloadingX509KeyManager
chooseServerAlias(String, Principal[], Socket) - Method in class com.yahoo.security.MutableX509KeyManager
Ciphersuite - Record Class in com.yahoo.security.hpke: A Ciphersuite is a 3-tuple that encapsulates the necessary primitives to use HKDF: A key encapsulation mechanism (KEM) A key derivation function (KDF) An "authenticated encryption with associated data" (AEAD) algorithm
Ciphersuite(Kem, Kdf, Aead) - Constructor for record class com.yahoo.security.hpke.Ciphersuite: Creates an instance of a Ciphersuite record class.
ciphertext() - Method in record class com.yahoo.security.hpke.Hpke.Sealed: Returns the value of the ciphertext record component.
ciphertext() - Method in record class com.yahoo.security.SealedSharedKey: Returns the value of the ciphertext record component.
CLIENT__FILERECEIVER_API - Enum constant in enum class com.yahoo.security.tls.Capability
CLIENT__SLOBROK_API - Enum constant in enum class com.yahoo.security.tls.Capability
close() - Method in class com.yahoo.security.AutoReloadingX509KeyManager
close() - Method in class com.yahoo.security.tls.ConfigFileBasedTlsContext
close() - Method in interface com.yahoo.security.tls.TlsContext
CLUSTER_CONTROLLER__REINDEXING - Enum constant in enum class com.yahoo.security.tls.Capability
CLUSTER_CONTROLLER__STATE - Enum constant in enum class com.yahoo.security.tls.Capability
CLUSTER_CONTROLLER__STATUS - Enum constant in enum class com.yahoo.security.tls.Capability
CLUSTER_CONTROLLER_NODE - Static variable in class com.yahoo.security.tls.CapabilitySet
CN - Enum constant in enum class com.yahoo.security.tls.RequiredPeerCredential.Field
codec() - Static method in class com.yahoo.security.Base58
codec() - Static method in class com.yahoo.security.Base62
com.yahoo.security - package com.yahoo.security
com.yahoo.security.hpke - package com.yahoo.security.hpke
com.yahoo.security.tls - package com.yahoo.security.tls
com.yahoo.security.token - package com.yahoo.security.token
concat(byte[]...) - Static method in class com.yahoo.security.ArrayUtils: Returns a new byte array that is the concatenation of all input byte arrays in input order.
CONFIG_FILE_ENVIRONMENT_VARIABLE - Static variable in class com.yahoo.security.tls.TransportSecurityUtils
ConfigFileBasedTlsContext - Class in com.yahoo.security.tls: A TlsContext that uses the tls configuration specified in the transport security options file.
ConfigFileBasedTlsContext(Path, AuthorizationMode) - Constructor for class com.yahoo.security.tls.ConfigFileBasedTlsContext
ConfigFileBasedTlsContext(Path, AuthorizationMode, PeerAuthentication) - Constructor for class com.yahoo.security.tls.ConfigFileBasedTlsContext: Allows the caller to override the default peer authentication mode.
CONFIGPROXY__CONFIG_API - Enum constant in enum class com.yahoo.security.tls.Capability
CONFIGPROXY__FILEDISTRIBUTION_API - Enum constant in enum class com.yahoo.security.tls.Capability
CONFIGPROXY__MANAGEMENT_API - Enum constant in enum class com.yahoo.security.tls.Capability
CONFIGSERVER__CONFIG_API - Enum constant in enum class com.yahoo.security.tls.Capability
CONFIGSERVER__FILEDISTRIBUTION_API - Enum constant in enum class com.yahoo.security.tls.Capability
CONFIGSERVER_NODE - Static variable in class com.yahoo.security.tls.CapabilitySet
configValue() - Method in enum class com.yahoo.security.tls.AuthorizationMode
configValue() - Method in enum class com.yahoo.security.tls.CapabilityMode
configValue() - Method in enum class com.yahoo.security.tls.MixedMode
ConnectionAuthContext - Record Class in com.yahoo.security.tls
ConnectionAuthContext(List<X509Certificate>, CapabilitySet, Set<String>, CapabilityMode) - Constructor for record class com.yahoo.security.tls.ConnectionAuthContext: Creates an instance of a ConnectionAuthContext record class.
CONTAINER__DOCUMENT_API - Enum constant in enum class com.yahoo.security.tls.Capability
CONTAINER__MANAGEMENT_API - Enum constant in enum class com.yahoo.security.tls.Capability
CONTAINER__STATE_API - Enum constant in enum class com.yahoo.security.tls.Capability
CONTAINER_NODE - Static variable in class com.yahoo.security.tls.CapabilitySet
CONTENT__CLUSTER_CONTROLLER__INTERNAL_STATE_API - Enum constant in enum class com.yahoo.security.tls.Capability
CONTENT__DOCUMENT_API - Enum constant in enum class com.yahoo.security.tls.Capability
CONTENT__METRICS_API - Enum constant in enum class com.yahoo.security.tls.Capability
CONTENT__PROTON_ADMIN_API - Enum constant in enum class com.yahoo.security.tls.Capability
CONTENT__SEARCH_API - Enum constant in enum class com.yahoo.security.tls.Capability
CONTENT__STATE_API - Enum constant in enum class com.yahoo.security.tls.Capability
CONTENT__STATUS_PAGES - Enum constant in enum class com.yahoo.security.tls.Capability
CONTENT__STORAGE_API - Enum constant in enum class com.yahoo.security.tls.Capability
CONTENT_NODE - Static variable in class com.yahoo.security.tls.CapabilitySet
context() - Method in record class com.yahoo.security.X509SslContext: Returns the value of the context record component.
createClientSslSocket() - Method in interface com.yahoo.security.tls.TlsContext
createDefaultX509KeyManager() - Static method in class com.yahoo.security.KeyManagerUtils
createDefaultX509KeyManager(KeyStore, char[]) - Static method in class com.yahoo.security.KeyManagerUtils
createDefaultX509KeyManager(PrivateKey, List<X509Certificate>) - Static method in class com.yahoo.security.KeyManagerUtils
createDefaultX509TrustManager() - Static method in class com.yahoo.security.TrustManagerUtils
createDefaultX509TrustManager(KeyStore) - Static method in class com.yahoo.security.TrustManagerUtils
createDefaultX509TrustManager(List<X509Certificate>) - Static method in class com.yahoo.security.TrustManagerUtils
createKeyManager(KeyStore, char[]) - Method in interface com.yahoo.security.SslContextBuilder.KeyManagerFactory
createSelfSigned(String, Duration) - Static method in class com.yahoo.security.X509CertificateUtils
createServerSslSocket() - Method in interface com.yahoo.security.tls.TlsContext
createSigner(PrivateKey) - Static method in class com.yahoo.security.SignatureUtils: Returns a signature instance which computes a hash of its content, before signing with the given private key.
createSigner(PrivateKey, SignatureAlgorithm) - Static method in class com.yahoo.security.SignatureUtils: Returns a signature instance which computes a hash of its content, before signing with the given private key.
createSslEngine() - Method in interface com.yahoo.security.tls.TlsContext
createSslEngine(String, int) - Method in interface com.yahoo.security.tls.TlsContext
createTrustManager(KeyStore) - Method in interface com.yahoo.security.SslContextBuilder.TrustManagerFactory
createVerifier(PublicKey) - Static method in class com.yahoo.security.SignatureUtils: Returns a signature instance which computes a hash of its content, before verifying with the given public key.
createVerifier(PublicKey, SignatureAlgorithm) - Static method in class com.yahoo.security.SignatureUtils: Returns a signature instance which computes a hash of its content, before verifying with the given public key.
CURRENT_TOKEN_VERSION - Static variable in record class com.yahoo.security.SealedSharedKey: Current encoding version of opaque sealed key tokens.
currentManager() - Method in class com.yahoo.security.MutableX509KeyManager

D

decap(byte[], XECPrivateKey) - Method in interface com.yahoo.security.hpke.Kem: Section 4 Cryptographic Dependencies: "Deterministic algorithm using the private key skR to recover the ephemeral symmetric key (the KEM shared secret) from its encapsulated representation enc."
decode() - Method in class com.yahoo.security.SubjectAlternativeName
decode(byte[]) - Static method in class com.yahoo.security.YBase64
decode(String) - Method in class com.yahoo.security.BaseNCodec
defaultAllCapabilities() - Static method in record class com.yahoo.security.tls.ConnectionAuthContext: Construct instance with all capabilities
defaultAllCapabilities(List<X509Certificate>) - Static method in record class com.yahoo.security.tls.ConnectionAuthContext: Construct instance with all capabilities
defaultSslContext() - Static method in interface com.yahoo.security.tls.TlsContext
defaultSuite() - Static method in record class com.yahoo.security.hpke.Ciphersuite: Returns a Ciphersuite of DHKEM(X25519, HKDF-SHA256), HKDF-SHA256, AES-128-GCM
DefaultTlsContext - Class in com.yahoo.security.tls: A static TlsContext
defaultValue() - Static method in enum class com.yahoo.security.tls.AuthorizationMode
defaultValue() - Static method in enum class com.yahoo.security.tls.CapabilityMode
defaultValue() - Static method in enum class com.yahoo.security.tls.MixedMode
description() - Method in record class com.yahoo.security.tls.PeerPolicy: Returns the value of the description record component.
dHKemX25519HkdfSha256() - Static method in interface com.yahoo.security.hpke.Kem
dHKemX25519HkdfSha256(Kem.UnsafeDeterminsticKeyPairOnlyUsedByTesting) - Static method in interface com.yahoo.security.hpke.Kem: Returns an unsafe test KEM that returns a single fixed, deterministic key pair.
Diff(long, long) - Constructor for record class com.yahoo.security.tls.TlsMetrics.Diff: Creates an instance of a Diff record class.
DIRECTORY - Enum constant in enum class com.yahoo.security.SubjectAlternativeName.Type
DISABLE - Enum constant in enum class com.yahoo.security.tls.AuthorizationMode
DISABLE - Enum constant in enum class com.yahoo.security.tls.CapabilityMode
DISABLED - Enum constant in enum class com.yahoo.security.tls.HostnameVerification
DISABLED - Enum constant in enum class com.yahoo.security.tls.MixedMode
DISABLED - Enum constant in enum class com.yahoo.security.tls.PeerAuthentication
DNS - Enum constant in enum class com.yahoo.security.SubjectAlternativeName.Type
dnsNames(Pkcs10Csr) - Static method in class com.yahoo.security.Pkcs10CsrUtils: Returns all DNS names contained in given CSR (CN + subject alternative names)
domain() - Method in class com.yahoo.security.token.Token

E

EC - Enum constant in enum class com.yahoo.security.KeyAlgorithm
ecdh(XECPrivateKey, XECPublicKey) - Static method in class com.yahoo.security.KeyUtils: Computes a shared secret using the Elliptic Curve Diffie-Hellman (ECDH) protocol for X25519 curves.
EDI_PARITY - Enum constant in enum class com.yahoo.security.SubjectAlternativeName.Type
EMAIL - Enum constant in enum class com.yahoo.security.SubjectAlternativeName.Type
empty() - Static method in record class com.yahoo.security.tls.AuthorizedPeers
EMPTY - Static variable in record class com.yahoo.security.tls.TlsMetrics.Snapshot
ENABLED - Enum constant in enum class com.yahoo.security.tls.HostnameVerification
enc() - Method in record class com.yahoo.security.hpke.Hpke.Sealed: Returns the value of the enc record component.
enc() - Method in record class com.yahoo.security.hpke.Kem.EncapResult: Returns the value of the enc record component.
enc() - Method in record class com.yahoo.security.SealedSharedKey: Returns the value of the enc record component.
encap(XECPublicKey) - Method in interface com.yahoo.security.hpke.Kem: Section 4 Cryptographic Dependencies: "Randomized algorithm to generate an ephemeral, fixed-length symmetric key (the KEM shared secret) and a fixed-length encapsulation of that key that can be decapsulated by the holder of the private key corresponding to pkR"
EncapResult(byte[], byte[]) - Constructor for record class com.yahoo.security.hpke.Kem.EncapResult: Creates an instance of a EncapResult record class.
encode(byte[]) - Method in class com.yahoo.security.BaseNCodec
encode(byte[]) - Static method in class com.yahoo.security.YBase64
ENFORCE - Enum constant in enum class com.yahoo.security.tls.AuthorizationMode
ENFORCE - Enum constant in enum class com.yahoo.security.tls.CapabilityMode
ephemeralPubKey() - Method in record class com.yahoo.security.SharedKeyResealingSession.ResealingRequest: Returns the value of the ephemeralPubKey record component.
equals(Object) - Method in record class com.yahoo.security.hpke.Ciphersuite: Indicates whether some other object is "equal to" this one.
equals(Object) - Method in record class com.yahoo.security.hpke.Hpke.Sealed: Indicates whether some other object is "equal to" this one.
equals(Object) - Method in record class com.yahoo.security.hpke.Kem.EncapResult: Indicates whether some other object is "equal to" this one.
equals(Object) - Method in record class com.yahoo.security.hpke.Kem.UnsafeDeterminsticKeyPairOnlyUsedByTesting: Indicates whether some other object is "equal to" this one.
equals(Object) - Method in class com.yahoo.security.KeyId
equals(Object) - Method in class com.yahoo.security.Pkcs10Csr
equals(Object) - Method in record class com.yahoo.security.SealedSharedKey: Indicates whether some other object is "equal to" this one.
equals(Object) - Method in record class com.yahoo.security.SecretSharedKey: Indicates whether some other object is "equal to" this one.
equals(Object) - Method in record class com.yahoo.security.SharedKeyResealingSession.ResealingRequest: Indicates whether some other object is "equal to" this one.
equals(Object) - Method in record class com.yahoo.security.SharedKeyResealingSession.ResealingResponse: Indicates whether some other object is "equal to" this one.
equals(Object) - Method in class com.yahoo.security.SubjectAlternativeName
equals(Object) - Method in record class com.yahoo.security.tls.AuthorizedPeers: Indicates whether some other object is "equal to" this one.
equals(Object) - Method in class com.yahoo.security.tls.CapabilitySet
equals(Object) - Method in record class com.yahoo.security.tls.ConnectionAuthContext: Indicates whether some other object is "equal to" this one.
equals(Object) - Method in record class com.yahoo.security.tls.PeerPolicy: Indicates whether some other object is "equal to" this one.
equals(Object) - Method in class com.yahoo.security.tls.RequiredPeerCredential
equals(Object) - Method in record class com.yahoo.security.tls.TlsMetrics.Diff: Indicates whether some other object is "equal to" this one.
equals(Object) - Method in record class com.yahoo.security.tls.TlsMetrics.Snapshot: Indicates whether some other object is "equal to" this one.
equals(Object) - Method in class com.yahoo.security.tls.TransportSecurityOptions
equals(Object) - Method in class com.yahoo.security.token.Token
equals(Object) - Method in record class com.yahoo.security.token.TokenCheckHash: Indicates whether some other object is "equal to" this one.
equals(Object) - Method in record class com.yahoo.security.token.TokenDomain: Indicates whether some other object is "equal to" this one.
equals(Object) - Method in record class com.yahoo.security.token.TokenFingerprint: Indicates whether some other object is "equal to" this one.
equals(Object) - Method in record class com.yahoo.security.X509SslContext: Indicates whether some other object is "equal to" this one.
expand(byte[], byte[], int) - Method in interface com.yahoo.security.hpke.Kdf: Expand a pseudorandom key prk using optional string info into nBytesToExpand bytes of output keying material.
expand(int) - Method in class com.yahoo.security.HKDF: Derives a key with a given number of bytes.
expand(int, byte[]) - Method in class com.yahoo.security.HKDF: Derives a key with a given number of bytes for a particular context.
Extension - Enum Class in com.yahoo.security
extract(byte[], byte[]) - Method in interface com.yahoo.security.hpke.Kdf: Extract a pseudorandom key of fixed length Kdf.nH() bytes from input keying material ikm and an optional byte string salt.
extractedFrom(byte[], byte[]) - Static method in class com.yahoo.security.HKDF: Creates and returns a new HKDF instance extracted from the given salt and key.
extractPublicKey(PrivateKey) - Static method in class com.yahoo.security.KeyUtils
extractX25519PublicKey(XECPrivateKey) - Static method in class com.yahoo.security.KeyUtils

F

field() - Method in class com.yahoo.security.tls.RequiredPeerCredential
fingerprint() - Method in class com.yahoo.security.token.Token
FINGERPRINT_BITS - Static variable in record class com.yahoo.security.token.TokenFingerprint
FINGERPRINT_BYTES - Static variable in record class com.yahoo.security.token.TokenFingerprint
FINGERPRINT_CONTEXT - Static variable in record class com.yahoo.security.token.TokenFingerprint
from(String) - Static method in enum class com.yahoo.security.KeyAlgorithm
fromBase58EncodedX25519PrivateKey(String) - Static method in class com.yahoo.security.KeyUtils
fromBase58EncodedX25519PublicKey(String) - Static method in class com.yahoo.security.KeyUtils
fromBase64EncodedX25519PrivateKey(String) - Static method in class com.yahoo.security.KeyUtils
fromBase64EncodedX25519PublicKey(String) - Static method in class com.yahoo.security.KeyUtils
fromConfigValue(String) - Static method in enum class com.yahoo.security.tls.AuthorizationMode
fromConfigValue(String) - Static method in enum class com.yahoo.security.tls.CapabilityMode
fromConfigValue(String) - Static method in enum class com.yahoo.security.tls.MixedMode
fromCsr(Pkcs10Csr, X500Principal, Instant, Instant, PrivateKey, SignatureAlgorithm, BigInteger) - Static method in class com.yahoo.security.X509CertificateBuilder
fromFile(Path) - Method in class com.yahoo.security.KeyStoreBuilder
fromFile(Path, char[]) - Method in class com.yahoo.security.KeyStoreBuilder
fromJson(String) - Static method in class com.yahoo.security.tls.TransportSecurityOptions
fromJsonFile(Path) - Static method in class com.yahoo.security.tls.TransportSecurityOptions
fromKeypair(KeyPair, X500Principal, Instant, Instant, SignatureAlgorithm, BigInteger) - Static method in class com.yahoo.security.X509CertificateBuilder
fromKeypair(X500Principal, KeyPair, SignatureAlgorithm) - Static method in class com.yahoo.security.Pkcs10CsrBuilder
fromName(String) - Static method in enum class com.yahoo.security.tls.Capability
fromNames(Collection<String>) - Static method in class com.yahoo.security.tls.CapabilitySet
fromPem(String) - Static method in class com.yahoo.security.Pkcs10CsrUtils
fromPem(String) - Static method in class com.yahoo.security.X509CertificateUtils
fromPemEncodedPrivateKey(String) - Static method in class com.yahoo.security.KeyUtils
fromPemEncodedPublicKey(String) - Static method in class com.yahoo.security.KeyUtils
fromPemFiles(Path, Path) - Static method in class com.yahoo.security.AutoReloadingX509KeyManager
fromRawX25519PrivateKey(byte[]) - Static method in class com.yahoo.security.KeyUtils
fromRawX25519PublicKey(byte[]) - Static method in class com.yahoo.security.KeyUtils
fromSealedKey(SealedSharedKey, PrivateKey) - Static method in class com.yahoo.security.SharedKeyGenerator
fromSerializedString(String) - Static method in record class com.yahoo.security.SharedKeyResealingSession.ResealingRequest
fromSerializedString(String) - Static method in record class com.yahoo.security.SharedKeyResealingSession.ResealingResponse
fromTag(int) - Static method in enum class com.yahoo.security.SubjectAlternativeName.Type
fromTokenString(String) - Static method in record class com.yahoo.security.SealedSharedKey: Attempts to unwrap a SealedSharedKey opaque token representation that was previously created by a call to toTokenString().
fromUtf8Bytes(byte[]) - Static method in class com.yahoo.security.ArrayUtils

G

generateForReceiverPublicKey(PublicKey, KeyId) - Static method in class com.yahoo.security.SharedKeyGenerator
generateKeypair(KeyAlgorithm) - Static method in class com.yahoo.security.KeyUtils
generateKeypair(KeyAlgorithm, int) - Static method in class com.yahoo.security.KeyUtils
generateRandomSerialNumber() - Static method in class com.yahoo.security.X509CertificateBuilder
generateToken(TokenDomain, String, int) - Static method in class com.yahoo.security.token.TokenGenerator
generateX25519KeyPair() - Static method in class com.yahoo.security.KeyUtils
getAcceptedCiphers() - Method in class com.yahoo.security.tls.TransportSecurityOptions
getAcceptedIssuers() - Method in class com.yahoo.security.MutableX509TrustManager
getAcceptedIssuers() - Method in class com.yahoo.security.TrustAllX509TrustManager
getAcceptedProtocols() - Method in class com.yahoo.security.tls.TransportSecurityOptions
getAlgorithmName() - Method in enum class com.yahoo.security.SignatureAlgorithm
getAllowedCipherSuites() - Static method in interface com.yahoo.security.tls.TlsContext
getAllowedCipherSuites(SSLContext) - Static method in interface com.yahoo.security.tls.TlsContext
getAllowedProtocols() - Static method in interface com.yahoo.security.tls.TlsContext
getAllowedProtocols(SSLContext) - Static method in interface com.yahoo.security.tls.TlsContext
getAuthorizedPeers() - Method in class com.yahoo.security.tls.TransportSecurityOptions
getBasicConstraints() - Method in class com.yahoo.security.Pkcs10Csr
getCaCertificatesFile() - Method in class com.yahoo.security.tls.TransportSecurityOptions
getCapabilityMode() - Static method in class com.yahoo.security.tls.TransportSecurityUtils
getCertificateChain(String) - Method in class com.yahoo.security.AutoReloadingX509KeyManager
getCertificateChain(String) - Method in class com.yahoo.security.MutableX509KeyManager
getCertificatesFile() - Method in class com.yahoo.security.tls.TransportSecurityOptions
getClientAliases(String, Principal[]) - Method in class com.yahoo.security.AutoReloadingX509KeyManager
getClientAliases(String, Principal[]) - Method in class com.yahoo.security.MutableX509KeyManager
getCommonNames(X500Principal) - Static method in class com.yahoo.security.X509CertificateUtils
getConfigFile() - Static method in class com.yahoo.security.tls.TransportSecurityUtils
getConfigFile(Map<String, String>) - Static method in class com.yahoo.security.tls.TransportSecurityUtils
getConnectionAuthContext(SSLEngine) - Static method in class com.yahoo.security.tls.TransportSecurityUtils
getConnectionAuthContext(SSLSession) - Static method in class com.yahoo.security.tls.TransportSecurityUtils
getConnectionAuthContext(SSLSocket) - Static method in class com.yahoo.security.tls.TransportSecurityUtils
getCurrentCertificateWithKey() - Method in class com.yahoo.security.AutoReloadingX509KeyManager
getDefault() - Static method in record class com.yahoo.security.X509SslContext
getExtensionOIds() - Method in class com.yahoo.security.Pkcs10Csr
getInsecureAuthorizationMode() - Static method in class com.yahoo.security.tls.TransportSecurityUtils
getInsecureAuthorizationMode(Map<String, String>) - Static method in class com.yahoo.security.tls.TransportSecurityUtils
getInsecureMixedMode() - Static method in class com.yahoo.security.tls.TransportSecurityUtils
getInsecureMixedMode(Map<String, String>) - Static method in class com.yahoo.security.tls.TransportSecurityUtils
getIssuerCommonNames(X509Certificate) - Static method in class com.yahoo.security.X509CertificateUtils
getOId() - Method in enum class com.yahoo.security.Extension
getOptions() - Static method in class com.yahoo.security.tls.TransportSecurityUtils
getOptions(Map<String, String>) - Static method in class com.yahoo.security.tls.TransportSecurityUtils
getPrivateKey(String) - Method in class com.yahoo.security.AutoReloadingX509KeyManager
getPrivateKey(String) - Method in class com.yahoo.security.MutableX509KeyManager
getPrivateKeyFile() - Method in class com.yahoo.security.tls.TransportSecurityOptions
getServerAliases(String, Principal[]) - Method in class com.yahoo.security.AutoReloadingX509KeyManager
getServerAliases(String, Principal[]) - Method in class com.yahoo.security.MutableX509KeyManager
getSubject() - Method in class com.yahoo.security.Pkcs10Csr
getSubjectAlternativeNames() - Method in class com.yahoo.security.Pkcs10Csr
getSubjectAlternativeNames(X509Certificate) - Static method in class com.yahoo.security.X509CertificateUtils
getSubjectCommonName(X509Certificate) - Static method in class com.yahoo.security.X509CertificateUtils
getSubjectCommonNames(X509Certificate) - Static method in class com.yahoo.security.X509CertificateUtils
getSubjectOrganizationalUnits(X509Certificate) - Static method in class com.yahoo.security.X509CertificateUtils
getSystemTlsContext() - Static method in class com.yahoo.security.tls.TransportSecurityUtils
getTag() - Method in enum class com.yahoo.security.SubjectAlternativeName.Type
getType() - Method in class com.yahoo.security.SubjectAlternativeName
getValue() - Method in class com.yahoo.security.SubjectAlternativeName
getX509CertificateFingerPrint(X509Certificate) - Static method in class com.yahoo.security.X509CertificateUtils

H

has(Capability...) - Method in class com.yahoo.security.tls.CapabilitySet
has(CapabilitySet) - Method in class com.yahoo.security.tls.CapabilitySet
has(Collection<Capability>) - Method in class com.yahoo.security.tls.CapabilitySet
hasAll() - Method in class com.yahoo.security.tls.CapabilitySet
hashBytes() - Method in record class com.yahoo.security.token.TokenCheckHash: Returns the value of the hashBytes record component.
hashBytes() - Method in record class com.yahoo.security.token.TokenFingerprint: Returns the value of the hashBytes record component.
hashCode() - Method in record class com.yahoo.security.hpke.Ciphersuite: Returns a hash code value for this object.
hashCode() - Method in record class com.yahoo.security.hpke.Hpke.Sealed: Returns a hash code value for this object.
hashCode() - Method in record class com.yahoo.security.hpke.Kem.EncapResult: Returns a hash code value for this object.
hashCode() - Method in record class com.yahoo.security.hpke.Kem.UnsafeDeterminsticKeyPairOnlyUsedByTesting: Returns a hash code value for this object.
hashCode() - Method in class com.yahoo.security.KeyId
hashCode() - Method in class com.yahoo.security.Pkcs10Csr
hashCode() - Method in record class com.yahoo.security.SealedSharedKey: Returns a hash code value for this object.
hashCode() - Method in record class com.yahoo.security.SecretSharedKey: Returns a hash code value for this object.
hashCode() - Method in record class com.yahoo.security.SharedKeyResealingSession.ResealingRequest: Returns a hash code value for this object.
hashCode() - Method in record class com.yahoo.security.SharedKeyResealingSession.ResealingResponse: Returns a hash code value for this object.
hashCode() - Method in class com.yahoo.security.SubjectAlternativeName
hashCode() - Method in record class com.yahoo.security.tls.AuthorizedPeers: Returns a hash code value for this object.
hashCode() - Method in class com.yahoo.security.tls.CapabilitySet
hashCode() - Method in record class com.yahoo.security.tls.ConnectionAuthContext: Returns a hash code value for this object.
hashCode() - Method in record class com.yahoo.security.tls.PeerPolicy: Returns a hash code value for this object.
hashCode() - Method in class com.yahoo.security.tls.RequiredPeerCredential
hashCode() - Method in record class com.yahoo.security.tls.TlsMetrics.Diff: Returns a hash code value for this object.
hashCode() - Method in record class com.yahoo.security.tls.TlsMetrics.Snapshot: Returns a hash code value for this object.
hashCode() - Method in class com.yahoo.security.tls.TransportSecurityOptions
hashCode() - Method in class com.yahoo.security.token.Token
hashCode() - Method in record class com.yahoo.security.token.TokenCheckHash: Returns a hash code value for this object.
hashCode() - Method in record class com.yahoo.security.token.TokenDomain: Returns a hash code value for this object.
hashCode() - Method in record class com.yahoo.security.token.TokenFingerprint: Returns a hash code value for this object.
hashCode() - Method in record class com.yahoo.security.X509SslContext: Returns a hash code value for this object.
hasNone() - Method in class com.yahoo.security.tls.CapabilitySet
hex(byte[]) - Static method in class com.yahoo.security.ArrayUtils
HKDF - Class in com.yahoo.security: Implementation of RFC-5869 HMAC-based Extract-and-Expand Key Derivation Function (HKDF).
hkdfSha256() - Static method in interface com.yahoo.security.hpke.Kdf
HostnameVerification - Enum Class in com.yahoo.security.tls
Hpke - Class in com.yahoo.security.hpke: Restricted subset implementation of RFC 9180 Hybrid Public Key Encryption (HPKE)
Hpke.Sealed - Record Class in com.yahoo.security.hpke
HTTP_UNCLASSIFIED - Enum constant in enum class com.yahoo.security.tls.Capability

I

INSECURE_AUTHORIZATION_MODE_ENVIRONMENT_VARIABLE - Static variable in class com.yahoo.security.tls.TransportSecurityUtils
INSECURE_MIXED_MODE_ENVIRONMENT_VARIABLE - Static variable in class com.yahoo.security.tls.TransportSecurityUtils
instance() - Static method in class com.yahoo.security.tls.TlsMetrics
IP - Enum constant in enum class com.yahoo.security.SubjectAlternativeName.Type
isEmpty() - Method in record class com.yahoo.security.tls.AuthorizedPeers
isHostnameValidationDisabled() - Method in class com.yahoo.security.tls.TransportSecurityOptions
isTransportSecurityEnabled() - Static method in class com.yahoo.security.tls.TransportSecurityUtils
isTransportSecurityEnabled(Map<String, String>) - Static method in class com.yahoo.security.tls.TransportSecurityUtils

J

JKS - Enum constant in enum class com.yahoo.security.KeyStoreType

K

kdf() - Method in record class com.yahoo.security.hpke.Ciphersuite: Returns the value of the kdf record component.
Kdf - Interface in com.yahoo.security.hpke: Key derivation function (KDF)
kdfId() - Method in interface com.yahoo.security.hpke.Kdf: Predefined KDF ID, as given in RFC 9180 section 7.2
kem() - Method in record class com.yahoo.security.hpke.Ciphersuite: Returns the value of the kem record component.
Kem - Interface in com.yahoo.security.hpke: Key encapsulation mechanism (KEM)
Kem.EncapResult - Record Class in com.yahoo.security.hpke
Kem.UnsafeDeterminsticKeyPairOnlyUsedByTesting - Record Class in com.yahoo.security.hpke
kemId() - Method in interface com.yahoo.security.hpke.Kem: Predefined KEM ID, as given in RFC 9180 section 7.1
KeyAlgorithm - Enum Class in com.yahoo.security
KeyFormat - Enum Class in com.yahoo.security: Key format
keyId() - Method in record class com.yahoo.security.SealedSharedKey: Returns the value of the keyId record component.
KeyId - Class in com.yahoo.security: Represents a named key ID comprising an arbitrary (but length-limited) sequence of valid UTF-8 bytes.
keyManager() - Method in record class com.yahoo.security.X509SslContext: Returns the value of the keyManager record component.
KeyManagerUtils - Class in com.yahoo.security: Utility methods for constructing X509ExtendedKeyManager.
KeyManagerUtils() - Constructor for class com.yahoo.security.KeyManagerUtils
keyPair() - Method in record class com.yahoo.security.hpke.Kem.UnsafeDeterminsticKeyPairOnlyUsedByTesting: Returns the value of the keyPair record component.
keyPairFromPemEncodedPrivateKey(String) - Static method in class com.yahoo.security.KeyUtils
KeyStoreBuilder - Class in com.yahoo.security
KeyStoreType - Enum Class in com.yahoo.security
KeyStoreUtils - Class in com.yahoo.security
KeyUtils - Class in com.yahoo.security

L

LOG_ONLY - Enum constant in enum class com.yahoo.security.tls.AuthorizationMode
LOG_ONLY - Enum constant in enum class com.yahoo.security.tls.CapabilityMode
LOGSERVER_API - Enum constant in enum class com.yahoo.security.tls.Capability
LOGSERVER_NODE - Static variable in class com.yahoo.security.tls.CapabilitySet

M

makeDecryptionCipher() - Method in record class com.yahoo.security.SecretSharedKey
makeEncryptionCipher() - Method in record class com.yahoo.security.SecretSharedKey
matchedPolicies() - Method in record class com.yahoo.security.tls.ConnectionAuthContext: Returns the value of the matchedPolicies record component.
matches(String) - Method in interface com.yahoo.security.tls.RequiredPeerCredential.Pattern
MAX_BASE - Static variable in class com.yahoo.security.BaseNCodec
MAX_ENC_CONTEXT_LENGTH - Static variable in record class com.yahoo.security.SealedSharedKey: Encryption context for v{1,2} tokens is always a 32-byte X25519 public key
MAX_KEY_ID_UTF8_LENGTH - Static variable in class com.yahoo.security.KeyId
MAX_OUTPUT_SIZE - Static variable in class com.yahoo.security.HKDF
MAX_TOKEN_STRING_LENGTH - Static variable in record class com.yahoo.security.SealedSharedKey
METRICSPROXY__MANAGEMENT_API - Enum constant in enum class com.yahoo.security.tls.Capability
METRICSPROXY__METRICS_API - Enum constant in enum class com.yahoo.security.tls.Capability
MissingCapabilitiesException - Exception in com.yahoo.security.tls: Intentionally checked to force caller to handle missing permissions at call site.
MissingCapabilitiesException(String) - Constructor for exception com.yahoo.security.tls.MissingCapabilitiesException
MixedMode - Enum Class in com.yahoo.security.tls
MutableX509KeyManager - Class in com.yahoo.security: A X509ExtendedKeyManager which can be updated with new certificate chain and private key while in use.
MutableX509KeyManager() - Constructor for class com.yahoo.security.MutableX509KeyManager
MutableX509KeyManager(KeyStore, char[]) - Constructor for class com.yahoo.security.MutableX509KeyManager
MutableX509TrustManager - Class in com.yahoo.security: A X509ExtendedTrustManager which can be updated with new CA certificates while in use.
MutableX509TrustManager() - Constructor for class com.yahoo.security.MutableX509TrustManager
MutableX509TrustManager(KeyStore) - Constructor for class com.yahoo.security.MutableX509TrustManager

N

NEED - Enum constant in enum class com.yahoo.security.tls.PeerAuthentication
nEnc() - Method in interface com.yahoo.security.hpke.Kem: The length in bytes of an encapsulated key produced by this KEM.
newEphemeralSession() - Static method in class com.yahoo.security.SharedKeyResealingSession
nH() - Method in interface com.yahoo.security.hpke.Kdf: Output size of the extract() function in bytes
nK() - Method in interface com.yahoo.security.hpke.Aead: The length in bytes of a key for this algorithm.
nN() - Method in interface com.yahoo.security.hpke.Aead: The length in bytes of a nonce for this algorithm.
none() - Static method in class com.yahoo.security.tls.CapabilitySet
NONE - Enum constant in enum class com.yahoo.security.tls.Capability
nPk() - Method in interface com.yahoo.security.hpke.Kem: The length in bytes of an encoded public key for this KEM.
nSecret() - Method in interface com.yahoo.security.hpke.Kem: The length in bytes of a KEM shared secret produced by this KEM.
nSk() - Method in interface com.yahoo.security.hpke.Kem: The length in bytes of an encoded private key for this KEM.
nT() - Method in interface com.yahoo.security.hpke.Aead: The length in bytes of the authentication tag for this algorithm.

O

of(Ciphersuite) - Static method in class com.yahoo.security.hpke.Hpke
of(Kem, Kdf, Aead) - Static method in record class com.yahoo.security.hpke.Ciphersuite
of(Capability...) - Static method in class com.yahoo.security.tls.CapabilitySet
of(RequiredPeerCredential.Field, String) - Static method in class com.yahoo.security.tls.RequiredPeerCredential
of(Token) - Static method in record class com.yahoo.security.token.TokenFingerprint
of(TokenDomain, String) - Static method in class com.yahoo.security.token.Token
of(Token, int) - Static method in record class com.yahoo.security.token.TokenCheckHash
of(X509SslContext, PeerAuthentication) - Static method in class com.yahoo.security.tls.DefaultTlsContext
of(X509SslContext, Set<String>, Set<String>, PeerAuthentication) - Static method in class com.yahoo.security.tls.DefaultTlsContext
of(String) - Static method in class com.yahoo.security.BaseNCodec
of(String) - Static method in record class com.yahoo.security.token.TokenDomain
of(Collection<Capability>) - Static method in class com.yahoo.security.tls.CapabilitySet
of(EnumSet<Capability>) - Static method in class com.yahoo.security.tls.CapabilitySet
of(List<X509Certificate>, PrivateKey, List<X509Certificate>, AuthorizedPeers, AuthorizationMode, PeerAuthentication, HostnameVerification) - Static method in class com.yahoo.security.tls.DefaultTlsContext
ofBytes(byte[]) - Static method in class com.yahoo.security.KeyId: Construct a KeyId containing the given sequence of bytes.
ofHex(String) - Static method in record class com.yahoo.security.token.TokenCheckHash
ofHex(String) - Static method in record class com.yahoo.security.token.TokenFingerprint
ofPseudoRandomKey(byte[]) - Static method in class com.yahoo.security.HKDF
ofRawBytes(byte[]) - Static method in record class com.yahoo.security.token.TokenCheckHash
ofRawBytes(byte[]) - Static method in record class com.yahoo.security.token.TokenFingerprint
ofSets(Collection<CapabilitySet>) - Static method in class com.yahoo.security.tls.CapabilitySet
ofString(String) - Static method in class com.yahoo.security.KeyId: Construct a KeyId containing the UTF-8 byte representation of the given string.
open(byte[], byte[], byte[], byte[]) - Method in interface com.yahoo.security.hpke.Aead
openAuth(byte[], XECPrivateKey, byte[], byte[], byte[], XECPublicKey) - Method in class com.yahoo.security.hpke.Hpke
openBase(byte[], XECPrivateKey, byte[], byte[], byte[]) - Method in class com.yahoo.security.hpke.Hpke: Section 6.1 Encryption and Decryption:
openResealingResponse(SharedKeyResealingSession.ResealingResponse) - Method in class com.yahoo.security.SharedKeyResealingSession
OTHER - Enum constant in enum class com.yahoo.security.SubjectAlternativeName.Type

P

parameters() - Method in class com.yahoo.security.tls.ConfigFileBasedTlsContext
parameters() - Method in class com.yahoo.security.tls.DefaultTlsContext
parameters() - Method in interface com.yahoo.security.tls.TlsContext
pattern() - Method in class com.yahoo.security.tls.RequiredPeerCredential
PeerAuthentication - Enum Class in com.yahoo.security.tls
PeerAuthorizationFailedException - Exception in com.yahoo.security.tls
PeerAuthorizationFailedException(String) - Constructor for exception com.yahoo.security.tls.PeerAuthorizationFailedException
PeerAuthorizationFailedException(String, List<X509Certificate>) - Constructor for exception com.yahoo.security.tls.PeerAuthorizationFailedException
PeerAuthorizer - Class in com.yahoo.security.tls: Uses rules from AuthorizedPeers to evaluate X509 certificates
PeerAuthorizer(AuthorizedPeers) - Constructor for class com.yahoo.security.tls.PeerAuthorizer
peerCertificate() - Method in record class com.yahoo.security.tls.ConnectionAuthContext
peerCertificateChain() - Method in record class com.yahoo.security.tls.ConnectionAuthContext: Returns the value of the peerCertificateChain record component.
peerCertificateChain() - Method in exception com.yahoo.security.tls.PeerAuthorizationFailedException
peerCertificateString() - Method in record class com.yahoo.security.tls.ConnectionAuthContext
peerPolicies() - Method in record class com.yahoo.security.tls.AuthorizedPeers: Returns the value of the peerPolicies record component.
PeerPolicy - Record Class in com.yahoo.security.tls
PeerPolicy(String, String, List<RequiredPeerCredential>) - Constructor for record class com.yahoo.security.tls.PeerPolicy
PeerPolicy(String, List<RequiredPeerCredential>) - Constructor for record class com.yahoo.security.tls.PeerPolicy
PeerPolicy(String, Optional<String>, CapabilitySet, List<RequiredPeerCredential>) - Constructor for record class com.yahoo.security.tls.PeerPolicy
PeerPolicy(String, Optional<String>, Collection<ToCapabilitySet>, List<RequiredPeerCredential>) - Constructor for record class com.yahoo.security.tls.PeerPolicy
PeerPolicy(String, Optional<String>, Set<String>, CapabilitySet, List<RequiredPeerCredential>) - Constructor for record class com.yahoo.security.tls.PeerPolicy: Creates an instance of a PeerPolicy record class.
PeerPolicy(String, Optional<String>, Set<String>, List<RequiredPeerCredential>) - Constructor for record class com.yahoo.security.tls.PeerPolicy
PKCS1 - Enum constant in enum class com.yahoo.security.KeyFormat
Pkcs10Csr - Class in com.yahoo.security
Pkcs10CsrBuilder - Class in com.yahoo.security
Pkcs10CsrUtils - Class in com.yahoo.security
PKCS12 - Enum constant in enum class com.yahoo.security.KeyStoreType
PKCS8 - Enum constant in enum class com.yahoo.security.KeyFormat
PLAINTEXT_CLIENT_MIXED_SERVER - Enum constant in enum class com.yahoo.security.tls.MixedMode
policyName() - Method in record class com.yahoo.security.tls.PeerPolicy: Returns the value of the policyName record component.
privateKey() - Method in class com.yahoo.security.X509CertificateWithKey
privateKeyForId(KeyId) - Method in interface com.yahoo.security.SharedKeyResealingSession.PrivateKeyProvider
privateKeyMatchesPublicKey(PrivateKey, PublicKey) - Static method in class com.yahoo.security.X509CertificateUtils
pseudoRandomKey() - Method in class com.yahoo.security.HKDF

R

REGISTERED - Enum constant in enum class com.yahoo.security.SubjectAlternativeName.Type
requiredCredentials() - Method in record class com.yahoo.security.tls.PeerPolicy: Returns the value of the requiredCredentials record component.
RequiredPeerCredential - Class in com.yahoo.security.tls
RequiredPeerCredential.Field - Enum Class in com.yahoo.security.tls
RequiredPeerCredential.Pattern - Interface in com.yahoo.security.tls
reseal(SecretSharedKey, PublicKey, KeyId) - Static method in class com.yahoo.security.SharedKeyGenerator
reseal(SharedKeyResealingSession.ResealingRequest, SharedKeyResealingSession.PrivateKeyProvider) - Static method in class com.yahoo.security.SharedKeyResealingSession
resealedKey() - Method in record class com.yahoo.security.SharedKeyResealingSession.ResealingResponse: Returns the value of the resealedKey record component.
ResealingRequest(XECPublicKey, SealedSharedKey) - Constructor for record class com.yahoo.security.SharedKeyResealingSession.ResealingRequest: Creates an instance of a ResealingRequest record class.
resealingRequestFor(SealedSharedKey) - Method in class com.yahoo.security.SharedKeyResealingSession
ResealingResponse(SealedSharedKey) - Constructor for record class com.yahoo.security.SharedKeyResealingSession.ResealingResponse: Creates an instance of a ResealingResponse record class.
resolveNames() - Method in class com.yahoo.security.tls.CapabilitySet: return name of the capability set if predefined, otherwise names of the individual capabilities
resolveNames(Collection<ToCapabilitySet>) - Static method in class com.yahoo.security.tls.CapabilitySet
RESTAPI_UNCLASSIFIED - Enum constant in enum class com.yahoo.security.tls.Capability
RPC_UNCLASSIFIED - Enum constant in enum class com.yahoo.security.tls.Capability
RSA - Enum constant in enum class com.yahoo.security.KeyAlgorithm

S

SAN_DNS - Enum constant in enum class com.yahoo.security.tls.RequiredPeerCredential.Field
SAN_URI - Enum constant in enum class com.yahoo.security.tls.RequiredPeerCredential.Field
seal(byte[], byte[], byte[], byte[]) - Method in interface com.yahoo.security.hpke.Aead
sealAuth(XECPublicKey, byte[], byte[], byte[], XECPrivateKey) - Method in class com.yahoo.security.hpke.Hpke
sealBase(XECPublicKey, byte[], byte[], byte[]) - Method in class com.yahoo.security.hpke.Hpke: Section 6.1 Encryption and Decryption:
Sealed(byte[], byte[]) - Constructor for record class com.yahoo.security.hpke.Hpke.Sealed: Creates an instance of a Sealed record class.
sealedKey() - Method in record class com.yahoo.security.SharedKeyResealingSession.ResealingRequest: Returns the value of the sealedKey record component.
sealedSharedKey() - Method in record class com.yahoo.security.SecretSharedKey: Returns the value of the sealedSharedKey record component.
SealedSharedKey - Record Class in com.yahoo.security: A SealedSharedKey represents the public part of a secure one-way ephemeral key exchange.
SealedSharedKey(int, KeyId, byte[], byte[]) - Constructor for record class com.yahoo.security.SealedSharedKey: Creates an instance of a SealedSharedKey record class.
secretKey() - Method in record class com.yahoo.security.SecretSharedKey: Returns the value of the secretKey record component.
SecretSharedKey - Record Class in com.yahoo.security: A SecretSharedKey represents a pairing of both the secret and public parts of a secure one-way ephemeral key exchange.
SecretSharedKey(SecretKey, SealedSharedKey) - Constructor for record class com.yahoo.security.SecretSharedKey: Creates an instance of a SecretSharedKey record class.
secretTokenString() - Method in class com.yahoo.security.token.Token
SENTINEL__CONNECTIVITY_CHECK - Enum constant in enum class com.yahoo.security.tls.Capability
SENTINEL__INSPECT_SERVICES - Enum constant in enum class com.yahoo.security.tls.Capability
SENTINEL__MANAGEMENT_API - Enum constant in enum class com.yahoo.security.tls.Capability
setBasicConstraints(boolean, boolean) - Method in class com.yahoo.security.Pkcs10CsrBuilder
setBasicConstraints(boolean, boolean) - Method in class com.yahoo.security.X509CertificateBuilder
setIsCertAuthority(boolean) - Method in class com.yahoo.security.Pkcs10CsrBuilder
setIsCertAuthority(boolean) - Method in class com.yahoo.security.X509CertificateBuilder
SHA256_WITH_ECDSA - Enum constant in enum class com.yahoo.security.SignatureAlgorithm
SHA256_WITH_RSA - Enum constant in enum class com.yahoo.security.SignatureAlgorithm
SHA512_WITH_ECDSA - Enum constant in enum class com.yahoo.security.SignatureAlgorithm
SHA512_WITH_RSA - Enum constant in enum class com.yahoo.security.SignatureAlgorithm
SharedKeyGenerator - Class in com.yahoo.security: Implements both the sender and receiver sides of a secure, anonymous one-way key generation and exchange protocol implemented using HPKE; a hybrid crypto scheme built around elliptic curves.
SharedKeyGenerator() - Constructor for class com.yahoo.security.SharedKeyGenerator
SharedKeyResealingSession - Class in com.yahoo.security: Delegated resealing protocol for getting access to a shared secret key of a token whose private key we do not possess.
SharedKeyResealingSession.PrivateKeyProvider - Interface in com.yahoo.security
SharedKeyResealingSession.ResealingRequest - Record Class in com.yahoo.security
SharedKeyResealingSession.ResealingResponse - Record Class in com.yahoo.security
sharedSecret() - Method in record class com.yahoo.security.hpke.Kem.EncapResult: Returns the value of the sharedSecret record component.
SideChannelSafe - Class in com.yahoo.security: Utility functions for comparing the contents of arrays without leaking information about the data contained within them via timing side-channels.
SideChannelSafe() - Constructor for class com.yahoo.security.SideChannelSafe
SignatureAlgorithm - Enum Class in com.yahoo.security
SignatureUtils - Class in com.yahoo.security: Misc signature utils
SignatureUtils() - Constructor for class com.yahoo.security.SignatureUtils
SLOBROK__API - Enum constant in enum class com.yahoo.security.tls.Capability
snapshot() - Method in class com.yahoo.security.tls.TlsMetrics
Snapshot(long, long) - Constructor for record class com.yahoo.security.tls.TlsMetrics.Snapshot: Creates an instance of a Snapshot record class.
SSL_CONTEXT_VERSION - Static variable in interface com.yahoo.security.tls.TlsContext: SSLContext protocol name that supports at least oldest protocol listed in TlsContext.ALLOWED_PROTOCOLS
sslContext() - Method in class com.yahoo.security.tls.ConfigFileBasedTlsContext
sslContext() - Method in class com.yahoo.security.tls.DefaultTlsContext
sslContext() - Method in interface com.yahoo.security.tls.TlsContext
SslContextBuilder - Class in com.yahoo.security: A builder for SSLContext.
SslContextBuilder() - Constructor for class com.yahoo.security.SslContextBuilder
SslContextBuilder.KeyManagerFactory - Interface in com.yahoo.security: A factory interface for creating X509ExtendedKeyManager.
SslContextBuilder.TrustManagerFactory - Interface in com.yahoo.security: A factory interface for creating X509ExtendedTrustManager.
SUBJECT_ALTERNATIVE_NAMES - Enum constant in enum class com.yahoo.security.Extension
SubjectAlternativeName - Class in com.yahoo.security
SubjectAlternativeName(SubjectAlternativeName.Type, String) - Constructor for class com.yahoo.security.SubjectAlternativeName
SubjectAlternativeName.Type - Enum Class in com.yahoo.security

T

TELEMETRY - Static variable in class com.yahoo.security.tls.CapabilitySet
TLS_CLIENT_MIXED_SERVER - Enum constant in enum class com.yahoo.security.tls.MixedMode
TlsContext - Interface in com.yahoo.security.tls: A simplified version of SSLContext modelled as an interface.
TlsMetrics - Class in com.yahoo.security.tls
TlsMetrics.Diff - Record Class in com.yahoo.security.tls
TlsMetrics.Snapshot - Record Class in com.yahoo.security.tls
toBase58EncodedX25519PrivateKey(XECPrivateKey) - Static method in class com.yahoo.security.KeyUtils
toBase58EncodedX25519PublicKey(XECPublicKey) - Static method in class com.yahoo.security.KeyUtils
toBase64EncodedX25519PrivateKey(XECPrivateKey) - Static method in class com.yahoo.security.KeyUtils
toBase64EncodedX25519PublicKey(XECPublicKey) - Static method in class com.yahoo.security.KeyUtils
toCapabilityNames() - Method in class com.yahoo.security.tls.CapabilitySet
toCapabilitySet() - Method in enum class com.yahoo.security.tls.Capability
toCapabilitySet() - Method in class com.yahoo.security.tls.CapabilitySet
toCapabilitySet() - Method in interface com.yahoo.security.tls.ToCapabilitySet
ToCapabilitySet - Interface in com.yahoo.security.tls
toDelimitedHexString() - Method in record class com.yahoo.security.token.TokenFingerprint
toHexString() - Method in record class com.yahoo.security.token.TokenCheckHash
toHexString() - Method in record class com.yahoo.security.token.TokenFingerprint
toJson() - Method in class com.yahoo.security.tls.TransportSecurityOptions
toJsonFile(Path) - Method in class com.yahoo.security.tls.TransportSecurityOptions
Token - Class in com.yahoo.security.token: A token represents an arbitrary, opaque sequence of secret bytes (preferably from a secure random source) whose possession gives the holder the right to some resource(s) or action(s).
TokenCheckHash - Record Class in com.yahoo.security.token: A token check hash represents a hash derived from a token in such a way that distinct "audiences" for the token compute entirely different hashes even for identical token values.
TokenCheckHash(byte[]) - Constructor for record class com.yahoo.security.token.TokenCheckHash: Creates an instance of a TokenCheckHash record class.
TokenDomain - Record Class in com.yahoo.security.token: A token domain controls how token fingerprints and check-hashes are derived from a particular token.
TokenDomain(byte[]) - Constructor for record class com.yahoo.security.token.TokenDomain: Creates an instance of a TokenDomain record class.
TokenFingerprint - Record Class in com.yahoo.security.token: A token fingerprint represents an opaque sequence of bytes that is expected to globally identify any particular token within a particular token domain.
TokenFingerprint(byte[]) - Constructor for record class com.yahoo.security.token.TokenFingerprint: Creates an instance of a TokenFingerprint record class.
TokenGenerator - Class in com.yahoo.security.token: Generates new Token instances that encapsulate a given number of cryptographically secure random bytes and, with a sufficiently high number of bytes (>= 16), can be expected to be globally unique and computationally infeasible to guess or brute force.
TokenGenerator() - Constructor for class com.yahoo.security.token.TokenGenerator
tokenVersion() - Method in record class com.yahoo.security.SealedSharedKey
toKeyPair(PrivateKey) - Static method in class com.yahoo.security.KeyUtils
toPem(Pkcs10Csr) - Static method in class com.yahoo.security.Pkcs10CsrUtils
toPem(X509Certificate) - Static method in class com.yahoo.security.X509CertificateUtils
toPem(PrivateKey) - Static method in class com.yahoo.security.KeyUtils
toPem(PrivateKey, KeyFormat) - Static method in class com.yahoo.security.KeyUtils
toPem(PublicKey) - Static method in class com.yahoo.security.KeyUtils
toPem(List<X509Certificate>) - Static method in class com.yahoo.security.X509CertificateUtils
toPredefinedName() - Method in class com.yahoo.security.tls.CapabilitySet
toRawX25519PrivateKeyBytes(XECPrivateKey) - Static method in class com.yahoo.security.KeyUtils
toRawX25519PublicKeyBytes(XECPublicKey) - Static method in class com.yahoo.security.KeyUtils: Returns the bytes representing the BigInteger of the X25519 public key EC point U coordinate
toSerializedString() - Method in record class com.yahoo.security.SharedKeyResealingSession.ResealingRequest
toSerializedString() - Method in record class com.yahoo.security.SharedKeyResealingSession.ResealingResponse
toString() - Method in record class com.yahoo.security.hpke.Ciphersuite: Returns a string representation of this record class.
toString() - Method in record class com.yahoo.security.hpke.Hpke.Sealed: Returns a string representation of this record class.
toString() - Method in record class com.yahoo.security.hpke.Kem.EncapResult: Returns a string representation of this record class.
toString() - Method in record class com.yahoo.security.hpke.Kem.UnsafeDeterminsticKeyPairOnlyUsedByTesting: Returns a string representation of this record class.
toString() - Method in class com.yahoo.security.KeyId
toString() - Method in record class com.yahoo.security.SealedSharedKey: Returns a string representation of this record class.
toString() - Method in record class com.yahoo.security.SecretSharedKey: Returns a string representation of this record class.
toString() - Method in record class com.yahoo.security.SharedKeyResealingSession.ResealingRequest: Returns a string representation of this record class.
toString() - Method in record class com.yahoo.security.SharedKeyResealingSession.ResealingResponse: Returns a string representation of this record class.
toString() - Method in class com.yahoo.security.SubjectAlternativeName
toString() - Method in record class com.yahoo.security.tls.AuthorizedPeers: Returns a string representation of this record class.
toString() - Method in class com.yahoo.security.tls.CapabilitySet
toString() - Method in record class com.yahoo.security.tls.ConnectionAuthContext: Returns a string representation of this record class.
toString() - Method in record class com.yahoo.security.tls.PeerPolicy: Returns a string representation of this record class.
toString() - Method in class com.yahoo.security.tls.RequiredPeerCredential
toString() - Method in record class com.yahoo.security.tls.TlsMetrics.Diff: Returns a string representation of this record class.
toString() - Method in record class com.yahoo.security.tls.TlsMetrics.Snapshot: Returns a string representation of this record class.
toString() - Method in class com.yahoo.security.tls.TransportSecurityOptions
toString() - Method in class com.yahoo.security.token.Token
toString() - Method in record class com.yahoo.security.token.TokenCheckHash: Returns a string representation of this record class.
toString() - Method in record class com.yahoo.security.token.TokenDomain: Returns a string representation of this record class.
toString() - Method in record class com.yahoo.security.token.TokenFingerprint: Returns a string representation of this record class.
toString() - Method in record class com.yahoo.security.X509SslContext: Returns a string representation of this record class.
toTokenString() - Method in record class com.yahoo.security.SealedSharedKey: Creates an opaque URL-safe string token that contains enough information to losslessly reconstruct the SealedSharedKey instance when passed verbatim to fromTokenString().
toUtf8Bytes(String) - Static method in class com.yahoo.security.ArrayUtils
TransportSecurityOptions - Class in com.yahoo.security.tls: Generic TLS configuration for Vespa
TransportSecurityOptions.Builder - Class in com.yahoo.security.tls
TransportSecurityUtils - Class in com.yahoo.security.tls: Utility class for retrieving TransportSecurityOptions from the system.
TrustAllX509TrustManager - Class in com.yahoo.security: A X509ExtendedTrustManager that accepts all server certificates.
TrustAllX509TrustManager() - Constructor for class com.yahoo.security.TrustAllX509TrustManager
trustManager() - Method in record class com.yahoo.security.X509SslContext: Returns the value of the trustManager record component.
TrustManagerUtils - Class in com.yahoo.security: Utility methods for constructing X509ExtendedTrustManager.
TrustManagerUtils() - Constructor for class com.yahoo.security.TrustManagerUtils

U

unhex(String) - Static method in class com.yahoo.security.ArrayUtils
unionOf(Collection<ToCapabilitySet>) - Static method in class com.yahoo.security.tls.CapabilitySet
UnsafeDeterminsticKeyPairOnlyUsedByTesting(KeyPair) - Constructor for record class com.yahoo.security.hpke.Kem.UnsafeDeterminsticKeyPairOnlyUsedByTesting: Creates an instance of a UnsafeDeterminsticKeyPairOnlyUsedByTesting record class.
unsaltedExtractedFrom(byte[]) - Static method in class com.yahoo.security.HKDF: Creates and returns a new unsalted HKDF instance extracted from the given key.
updateKeystore(KeyStore, char[]) - Method in class com.yahoo.security.MutableX509KeyManager
updateTruststore(KeyStore) - Method in class com.yahoo.security.MutableX509TrustManager
URI - Enum constant in enum class com.yahoo.security.SubjectAlternativeName.Type
useDefaultKeystore() - Method in class com.yahoo.security.MutableX509KeyManager
useDefaultTruststore() - Method in class com.yahoo.security.MutableX509TrustManager

V

valueOf(String) - Static method in enum class com.yahoo.security.Extension: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class com.yahoo.security.KeyAlgorithm: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class com.yahoo.security.KeyFormat: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class com.yahoo.security.KeyStoreType: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class com.yahoo.security.SignatureAlgorithm: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class com.yahoo.security.SubjectAlternativeName.Type: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class com.yahoo.security.tls.AuthorizationMode: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class com.yahoo.security.tls.Capability: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class com.yahoo.security.tls.CapabilityMode: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class com.yahoo.security.tls.HostnameVerification: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class com.yahoo.security.tls.MixedMode: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class com.yahoo.security.tls.PeerAuthentication: Returns the enum constant of this class with the specified name.
valueOf(String) - Static method in enum class com.yahoo.security.tls.RequiredPeerCredential.Field: Returns the enum constant of this class with the specified name.
values() - Static method in enum class com.yahoo.security.Extension: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class com.yahoo.security.KeyAlgorithm: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class com.yahoo.security.KeyFormat: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class com.yahoo.security.KeyStoreType: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class com.yahoo.security.SignatureAlgorithm: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class com.yahoo.security.SubjectAlternativeName.Type: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class com.yahoo.security.tls.AuthorizationMode: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class com.yahoo.security.tls.Capability: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class com.yahoo.security.tls.CapabilityMode: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class com.yahoo.security.tls.HostnameVerification: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class com.yahoo.security.tls.MixedMode: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class com.yahoo.security.tls.PeerAuthentication: Returns an array containing the constants of this enum class, in the order they are declared.
values() - Static method in enum class com.yahoo.security.tls.RequiredPeerCredential.Field: Returns an array containing the constants of this enum class, in the order they are declared.
verifyCapabilities(CapabilitySet) - Method in record class com.yahoo.security.tls.ConnectionAuthContext: Throws checked exception to force caller to handle verification failed.
verifyCapabilities(CapabilitySet, String, String, String) - Method in record class com.yahoo.security.tls.ConnectionAuthContext: Throws checked exception to force caller to handle verification failed.
version() - Method in record class com.yahoo.security.SealedSharedKey: Returns the value of the version record component.

W

WANT - Enum constant in enum class com.yahoo.security.tls.PeerAuthentication
withAcceptedCiphers(List<String>) - Method in class com.yahoo.security.tls.TransportSecurityOptions.Builder
withAcceptedProtocols(List<String>) - Method in class com.yahoo.security.tls.TransportSecurityOptions.Builder
withAuthorizedPeers(AuthorizedPeers) - Method in class com.yahoo.security.tls.TransportSecurityOptions.Builder
withCaCertificates(Path) - Method in class com.yahoo.security.tls.TransportSecurityOptions.Builder
withCertificateEntries(String, List<X509Certificate>) - Method in class com.yahoo.security.KeyStoreBuilder
withCertificateEntry(String, X509Certificate) - Method in class com.yahoo.security.KeyStoreBuilder
withCertificates(Path, Path) - Method in class com.yahoo.security.tls.TransportSecurityOptions.Builder
withHostnameValidationDisabled(boolean) - Method in class com.yahoo.security.tls.TransportSecurityOptions.Builder
withKeyEntry(String, PrivateKey, char[], X509Certificate) - Method in class com.yahoo.security.KeyStoreBuilder
withKeyEntry(String, PrivateKey, char[], List<X509Certificate>) - Method in class com.yahoo.security.KeyStoreBuilder
withKeyEntry(String, PrivateKey, X509Certificate) - Method in class com.yahoo.security.KeyStoreBuilder
withKeyEntry(String, PrivateKey, List<X509Certificate>) - Method in class com.yahoo.security.KeyStoreBuilder
withKeyManager(X509ExtendedKeyManager) - Method in class com.yahoo.security.SslContextBuilder: Note: Callee is responsible for configuring the key manager.
withKeyManagerFactory(SslContextBuilder.KeyManagerFactory) - Method in class com.yahoo.security.SslContextBuilder
withKeyStore(Path, char[], KeyStoreType) - Method in class com.yahoo.security.SslContextBuilder
withKeyStore(Path, Path) - Method in class com.yahoo.security.SslContextBuilder
withKeyStore(KeyStore, char[]) - Method in class com.yahoo.security.SslContextBuilder
withKeyStore(PrivateKey, X509Certificate) - Method in class com.yahoo.security.SslContextBuilder
withKeyStore(PrivateKey, List<X509Certificate>) - Method in class com.yahoo.security.SslContextBuilder
withKeyStore(List<X509CertificateWithKey>) - Method in class com.yahoo.security.SslContextBuilder
withTrustManager(X509ExtendedTrustManager) - Method in class com.yahoo.security.SslContextBuilder: Note: Callee is responsible for configuring the trust manager.
withTrustManagerFactory(SslContextBuilder.TrustManagerFactory) - Method in class com.yahoo.security.SslContextBuilder
withTrustStore(Path) - Method in class com.yahoo.security.SslContextBuilder
withTrustStore(Path, KeyStoreType) - Method in class com.yahoo.security.SslContextBuilder
withTrustStore(X509Certificate) - Method in class com.yahoo.security.SslContextBuilder
withTrustStore(KeyStore) - Method in class com.yahoo.security.SslContextBuilder
withTrustStore(List<X509Certificate>) - Method in class com.yahoo.security.SslContextBuilder
withType(KeyStoreType) - Static method in class com.yahoo.security.KeyStoreBuilder
wrapInputStream(InputStream) - Method in class com.yahoo.security.AeadCipher: Returns a wrapping InputStream that, depending on the cipher mode, either encrypts or decrypts all data that is read from the underlying input stream.
wrapOutputStream(OutputStream) - Method in class com.yahoo.security.AeadCipher: Returns a wrapping OutputStream that, depending on the cipher mode, either encrypts or decrypts all data that is written to it before passing it on to out.
writeKeyStoreToFile(KeyStore, Path) - Static method in class com.yahoo.security.KeyStoreUtils
writeKeyStoreToFile(KeyStore, Path, char[]) - Static method in class com.yahoo.security.KeyStoreUtils

X

X400 - Enum constant in enum class com.yahoo.security.SubjectAlternativeName.Type
X509CertificateBuilder - Class in com.yahoo.security
X509CertificateUtils - Class in com.yahoo.security
X509CertificateWithKey - Class in com.yahoo.security: Wraps a X509Certificate with its PrivateKey.
X509CertificateWithKey(X509Certificate, PrivateKey) - Constructor for class com.yahoo.security.X509CertificateWithKey
X509CertificateWithKey(List<X509Certificate>, PrivateKey) - Constructor for class com.yahoo.security.X509CertificateWithKey
X509SslContext - Record Class in com.yahoo.security: An SSLContext with its associated X509ExtendedTrustManager and X509ExtendedKeyManager.
X509SslContext(SSLContext, X509ExtendedTrustManager, X509ExtendedKeyManager) - Constructor for record class com.yahoo.security.X509SslContext: Creates an instance of a X509SslContext record class.
XDH - Enum constant in enum class com.yahoo.security.KeyAlgorithm

Y

YBase64 - Class in com.yahoo.security: Variant of Base64 with the following modifications: - + is replaced by . - / is replaced by {code _} - = is replaced by {code -}

A B C D E F G H I J K L M N O P R S T U V W X Y
All Classes and Interfaces|All Packages|Constant Field Values|Serialized Form