1# Licensed to the Apache Software Foundation (ASF) under one or more 2# contributor license agreements. See the NOTICE file distributed with 3# this work for additional information regarding copyright ownership. 4# The ASF licenses this file to You under the Apache License, Version 2.0 5# (the "License"); you may not use this file except in compliance with 6# the License. You may obtain a copy of the License at 7# 8# http://www.apache.org/licenses/LICENSE-2.0 9# 10# Unless required by applicable law or agreed to in writing, software 11# distributed under the License is distributed on an "AS IS" BASIS, 12# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13# See the License for the specific language governing permissions and 14# limitations under the License. 15 16 17# 18# Providers 19# See also: J2SE doc. "How to Implement a Provider for the JavaTM Cryptography Architecture" 20# 21# Android's provider of OpenSSL backed implementations 22security.provider.1=com.android.org.conscrypt.OpenSSLProvider 23# Android's stripped down BouncyCastle provider 24security.provider.2=com.android.org.bouncycastle.jce.provider.BouncyCastleProvider 25# Remaining Harmony providers 26security.provider.3=org.apache.harmony.security.provider.crypto.CryptoProvider 27security.provider.4=com.android.org.conscrypt.JSSEProvider 28 29 30 31 32 33 34 35# The default SSLSocketFactory and SSLServerSocketFactory provider implementations. 36# See specification for 37# javax/net/ssl/SSLSocketFactory.html#getDefault() 38# javax/net/ssl/SSLServerSocketFactory.html#getDefault() 39 40# For regular SSLSockets, we have two implementations: 41ssl.SocketFactory.provider=com.android.org.conscrypt.OpenSSLSocketFactoryImpl 42#ssl.SocketFactory.provider=com.android.org.conscrypt.SSLSocketFactoryImpl 43 44# For SSLServerSockets, there's only the new, OpenSSL-based implementation: 45ssl.ServerSocketFactory.provider=com.android.org.conscrypt.OpenSSLSocketFactoryImpl 46 47# Default KeyStore type. 48# See specification for java/security/KeyStore.html#getDefaultType() 49keystore.type=BKS 50 51 52# Default KeyManagerFactory and TrustManagerFactory algorithms. 53# See specification for 54# javax/net/ssl/KeyManagerFactory.html#getDefaultAlgorithm() 55# javax/net/ssl/TrustManagerFactory.html#getDefaultAlgorithm() 56ssl.KeyManagerFactory.algorithm=PKIX 57ssl.TrustManagerFactory.algorithm=PKIX 58 59# system.scope is used to specify implementation class of IdentityScope 60system.scope=org.apache.harmony.security.SystemScope 61 62# The following Android-only property controls peer certificate validation. 63ssl.disablePeerCertificateChainVerification=false 64