Clone Tools
  • last updated a few seconds ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Remove synthetic accessors for internal private symbol references

  1. … 897 more files in changeset.
Add missing @Override to all modules

Signed-off-by: Paul Merlin <paul@gradle.com>

  1. … 995 more files in changeset.
Add missing @Override to all modules

Signed-off-by: Paul Merlin <paul@gradle.com>

  1. … 989 more files in changeset.
Deprecate download of resources over HTTP; Require opt-in

Signed-off-by: Jonathan Leitschuh <Jonathan.Leitschuh@gmail.com>

  1. … 51 more files in changeset.
Add support for http2

  1. … 7 more files in changeset.
Synchronize access to System Properties when creating SSLContexts

  1. … 2 more files in changeset.
Synchronize access to System Properties when creating SSLContexts

  1. … 2 more files in changeset.
Remove synchronization around all system property getters

  1. … 5 more files in changeset.
Remove unused import

Remove SystemProperties.asMap

This allowed you to unsafely access System.getProperties elsewhere.

  1. … 3 more files in changeset.
Hold a lock on System Properties while reading them in DefaultSslContextFactory

  1. … 3 more files in changeset.
Make script source hashing faster

Do not calcualte the hash for the same script multiple times.

The hash is now stored in the text resource itself so we don't need

an externall managed cache. The UriTextResource implementation has

been thoroughly optimized for local file URIs. Previously reading

those in was a major bottleneck due to copying every byte into 4(!)

different buffers.

Adding the HashCode to the TextResource made me aware of the fact

that the tooling API depended on these interfaces, although it should

never be reading scripts. It turns out that the script was attached to

the BuildLayout, where it didn't really belong. It is now only created

once the build is running and we are actually trying to load the settings

file. There were a few changes to types marked with @UsedByScanPlugin.

These were all checked against the scan plugin code base to ensure they

are safe. The reported data is now more accurate as it returns a `null`

value for a non-existing settings file instead of reporting a dummy path.

  1. … 24 more files in changeset.
Update NTLM auth flags with the latest example code from HttpClient Issue: #8011

Signed-off-by: Sam Holmes <sbholmes@gmail.com>

Restrict cases where to do HTTP retries

This commit restricts the number of cases where we're going to perform HTTP retries. Instead of any error,

we will now retry when:

- a connection timeout occurs (client or server)

- the server responds an error code between 500 and 600

- response code is a too many requests error

Fixes #7850

  1. … 4 more files in changeset.
Use last redirect location for HTTP failures

Instead of including the original HTTP request URI, the bottommost

exception for failed HTTP requests now includes the URI of the last

redirect location, if any.

    • -0
    • +85
    ./internal/resource/transport/http/HttpClientResponse.java
  1. … 8 more files in changeset.
De-incubate 3.x package-info files

And files we missed due to moving things to coreApi.

    • -1
    • +0
    ./authentication/http/package-info.java
  1. … 32 more files in changeset.
De-incubate 2.x authentication API

    • -2
    • +0
    ./authentication/http/BasicAuthentication.java
    • -2
    • +0
    ./authentication/http/DigestAuthentication.java
  1. … 3 more files in changeset.
Replace deprectated `IOUtils.closeQuietly` uses with `IoActions.closeQuietly`

  1. … 20 more files in changeset.
Enable TLSv1.2 for HTTPS on IBM JDK 8

By default, IBM JDK 8 doesn't enable TLSv1.2, which results in

`fatal alert: protocol_version` when communicating with maven central.

This commit enables TLSv1.2 for HTTPS on IBM JDK 8.

Enable TLSv1.2 for HTTPS on IBM JDK 8

By default, IBM JDK 8 doesn't enable TLSv1.2, which results in

`fatal alert: protocol_version` when communicating with maven central.

This commit enables TLSv1.2 for HTTPS on IBM JDK 8.

Fix handling of InterruptedExceptions

These exceptions were handled incorrectly throughout the whole

codebase, usually rethrown without restoring the interrupt status

or discarded entirely. This means that the system would not stop

executing even though the user wanted it to. In some cases this

also left the system in an inconsistent state, leading to deadlocks.

The most notable changes include:

- UncheckedException.rethrow automatically restores the interrupt status

- AsyncDispatch is guaranteed to deliver its messages, even when interrupted

- ExecHandle cancels the started process if it is interrupted while waiting

- ExecHandle disconnects from the process' output before killing it

- The worker API cancels the started work items if it is interrupted

- ManagedExecutors shut down immediately if they are interrupted while stopping

- We no longer log exceptions caused by interruption to the console

- Interrupting our caches no longer leaks file locks

  1. … 38 more files in changeset.
Use TCP keep-alive for http connections

So that a proxy or MITM doesn't terminate the connections so easily.

Issue #6461

  1. … 1 more file in changeset.
Modified the changes to conform with pull request changes request

Signed-off-by: Jakub Strzyżewski <github@jeikobu.net>

  1. … 1 more file in changeset.
Added a nullcheck for username and an appropriate exception to avoid a NullPointerException when username is null

Signed-off-by: Jakub Strzyżewski <github@jeikobu.net>

  1. … 1 more file in changeset.
Evict expired connections in HTTP client

Signed-off-by: Lukasz Sanek <lukasz.sanek@workday.com>

Support HTTP header based authentication for Maven repositories

Now it's possible to use a custom HTTP header to authorize access to

Maven repositories. This enables Gradle to access private GitLab and TFS

repositories used as Maven repositories or any OAuth2 protected Maven

repository.

Resolves #5571.

    • -0
    • +29
    ./authentication/http/HttpHeaderAuthentication.java
    • -0
    • +31
    ./internal/authentication/DefaultHttpHeaderAuthentication.java
    • -0
    • +73
    ./internal/resource/transport/http/HttpHeaderAuthScheme.java
  1. … 22 more files in changeset.
Support TLSv1.2 by default under Java 7

Following changes in Maven Central, only TLSv1.2 is accepted.

This change turns on TLSv1, TLSv1.1 and TLSv1.2 for all connections from

Gradle when the Java version is 7.

As documented in https://docs.oracle.com/javase/7/docs/technotes/guides/security/SunProviders.html

in the Protocols section, this is safe, except for versions before 7u75

that were relying on SSLv3.

However that last protocol is really broken and no one should be using

it. And we definitely cannot turn it on here.

It also adds that property to tests that do interact with Maven Central.

Fixes #5740

  1. … 3 more files in changeset.
Build cache should not follow HTTP redirects (#3517)

  1. … 5 more files in changeset.
Gradle should fail resolution from subsequent repositories on critical errors (#3412)

  1. … 15 more files in changeset.
Increase timeout for HTTP timeouts and assign system properties to internal namespace (#3371)