Home | History | Annotate | Download | only in security 
      1 # Licensed to the Apache Software Foundation (ASF) under one or more
      2 # contributor license agreements.  See the NOTICE file distributed with
      3 # this work for additional information regarding copyright ownership.
      4 # The ASF licenses this file to You under the Apache License, Version 2.0
      5 # (the "License"); you may not use this file except in compliance with
      6 # the License.  You may obtain a copy of the License at
      7 # 
      8 #     http://www.apache.org/licenses/LICENSE-2.0
      9 # 
     10 # Unless required by applicable law or agreed to in writing, software
     11 # distributed under the License is distributed on an "AS IS" BASIS,
     12 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
     13 # See the License for the specific language governing permissions and
     14 # limitations under the License.
     15 
     16 
     17 #
     18 # Providers
     19 # See also: J2SE doc. "How to Implement a Provider for the JavaTM Cryptography Architecture"
     20 #
     21 # Android's provider of OpenSSL backed implementations
     22 security.provider.1=com.android.org.conscrypt.OpenSSLProvider
     23 # Android's stripped down BouncyCastle provider
     24 security.provider.2=com.android.org.bouncycastle.jce.provider.BouncyCastleProvider
     25 # Remaining Harmony providers
     26 security.provider.3=org.apache.harmony.security.provider.crypto.CryptoProvider
     27 security.provider.4=com.android.org.conscrypt.JSSEProvider
     28 
     29 
     30 
     31 
     32 
     33 
     34 
     35 # The default SSLSocketFactory and SSLServerSocketFactory provider implementations.
     36 # See specification for 
     37 # javax/net/ssl/SSLSocketFactory.html#getDefault()
     38 # javax/net/ssl/SSLServerSocketFactory.html#getDefault()
     39 
     40 # For regular SSLSockets, we have two implementations:
     41 ssl.SocketFactory.provider=com.android.org.conscrypt.OpenSSLSocketFactoryImpl
     42 #ssl.SocketFactory.provider=com.android.org.conscrypt.SSLSocketFactoryImpl
     43 
     44 # For SSLServerSockets, there's only the new, OpenSSL-based implementation:
     45 ssl.ServerSocketFactory.provider=com.android.org.conscrypt.OpenSSLSocketFactoryImpl
     46 
     47 # Default KeyStore type.
     48 # See specification for java/security/KeyStore.html#getDefaultType()
     49 keystore.type=BKS
     50 
     51 
     52 # Default KeyManagerFactory and TrustManagerFactory algorithms. 
     53 # See specification for
     54 # javax/net/ssl/KeyManagerFactory.html#getDefaultAlgorithm()
     55 # javax/net/ssl/TrustManagerFactory.html#getDefaultAlgorithm()
     56 ssl.KeyManagerFactory.algorithm=PKIX
     57 ssl.TrustManagerFactory.algorithm=PKIX
     58 
     59 # system.scope is used to specify implementation class of IdentityScope
     60 system.scope=org.apache.harmony.security.SystemScope
     61 
     62 # The following Android-only property controls peer certificate validation.
     63 ssl.disablePeerCertificateChainVerification=false
     64