Home | History | Annotate | Download | only in security 
      1 # Licensed to the Apache Software Foundation (ASF) under one or more
      2 # contributor license agreements.  See the NOTICE file distributed with
      3 # this work for additional information regarding copyright ownership.
      4 # The ASF licenses this file to You under the Apache License, Version 2.0
      5 # (the "License"); you may not use this file except in compliance with
      6 # the License.  You may obtain a copy of the License at
      7 # 
      8 #     http://www.apache.org/licenses/LICENSE-2.0
      9 # 
     10 # Unless required by applicable law or agreed to in writing, software
     11 # distributed under the License is distributed on an "AS IS" BASIS,
     12 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
     13 # See the License for the specific language governing permissions and
     14 # limitations under the License.
     15 
     16 
     17 #
     18 # Providers
     19 # See also: J2SE doc. "How to Implement a Provider for the JavaTM Cryptography Architecture"
     20 #
     21 # Android's provider of OpenSSL backed implementations
     22 security.provider.1=org.apache.harmony.xnet.provider.jsse.OpenSSLProvider
     23 # Favor Harmony's CertificateFactory.X509 over BouncyCastle's
     24 security.provider.2=org.apache.harmony.security.provider.cert.DRLCertFactory
     25 # Android's stripped down BouncyCastle provider
     26 security.provider.3=com.android.org.bouncycastle.jce.provider.BouncyCastleProvider
     27 # Remaining Harmony providers
     28 security.provider.4=org.apache.harmony.security.provider.crypto.CryptoProvider
     29 security.provider.5=org.apache.harmony.xnet.provider.jsse.JSSEProvider
     30 
     31 
     32 
     33 
     34 
     35 
     36 
     37 # The default SSLSocketFactory and SSLServerSocketFactory provider implementations.
     38 # See specification for 
     39 # javax/net/ssl/SSLSocketFactory.html#getDefault()
     40 # javax/net/ssl/SSLServerSocketFactory.html#getDefault()
     41 
     42 # For regular SSLSockets, we have two implementations:
     43 ssl.SocketFactory.provider=org.apache.harmony.xnet.provider.jsse.OpenSSLSocketFactoryImpl
     44 #ssl.SocketFactory.provider=org.apache.harmony.xnet.provider.jsse.SSLSocketFactoryImpl
     45 
     46 # For SSLServerSockets, there's only the new, OpenSSL-based implementation:
     47 ssl.ServerSocketFactory.provider=org.apache.harmony.xnet.provider.jsse.OpenSSLServerSocketFactoryImpl
     48 
     49 # Default KeyStore type.
     50 # See specification for java/security/KeyStore.html#getDefaultType()
     51 keystore.type=BKS
     52 
     53 
     54 # Default KeyManagerFactory and TrustManagerFactory algorithms. 
     55 # See specification for
     56 # javax/net/ssl/KeyManagerFactory.html#getDefaultAlgorithm()
     57 # javax/net/ssl/TrustManagerFactory.html#getDefaultAlgorithm()
     58 ssl.KeyManagerFactory.algorithm=X509
     59 ssl.TrustManagerFactory.algorithm=X509
     60 
     61 # system.scope is used to specify implementation class of IdentityScope
     62 system.scope=org.apache.harmony.security.SystemScope
     63 
     64 # The following Android-only property controls peer certificate validation.
     65 ssl.disablePeerCertificateChainVerification=false
     66