luni/src/main/java/java/security/security.properties - platform/libcore2 - Git at Google

 # Licensed to the Apache Software Foundation (ASF) under one or more
 # contributor license agreements.  See the NOTICE file distributed with
 # this work for additional information regarding copyright ownership.
 # The ASF licenses this file to You under the Apache License, Version 2.0
 # (the "License"); you may not use this file except in compliance with
 # the License.  You may obtain a copy of the License at
 #
 #     http://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing, software
 # distributed under the License is distributed on an "AS IS" BASIS,
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.


 #
 # Providers
 # See also: J2SE doc. "How to Implement a Provider for the JavaTM Cryptography Architecture"
 #
 # Android's provider of OpenSSL backed implementations
 security.provider.1=org.apache.harmony.xnet.provider.jsse.OpenSSLProvider
 # Favor Harmony's CertificateFactory.X509 over BouncyCastle's
 security.provider.2=org.apache.harmony.security.provider.cert.DRLCertFactory
 # Android's stripped down BouncyCastle provider
 security.provider.3=com.android.org.bouncycastle.jce.provider.BouncyCastleProvider
 # Remaining Harmony providers
 security.provider.4=org.apache.harmony.security.provider.crypto.CryptoProvider
 security.provider.5=org.apache.harmony.xnet.provider.jsse.JSSEProvider


 # The default SSLSocketFactory and SSLServerSocketFactory provider implementations.
 # See specification for
 # javax/net/ssl/SSLSocketFactory.html#getDefault()
 # javax/net/ssl/SSLServerSocketFactory.html#getDefault()

 # For regular SSLSockets, we have two implementations:
 ssl.SocketFactory.provider=org.apache.harmony.xnet.provider.jsse.OpenSSLSocketFactoryImpl
 #ssl.SocketFactory.provider=org.apache.harmony.xnet.provider.jsse.SSLSocketFactoryImpl

 # For SSLServerSockets, there's only the new, OpenSSL-based implementation:
 ssl.ServerSocketFactory.provider=org.apache.harmony.xnet.provider.jsse.OpenSSLServerSocketFactoryImpl

 # Default KeyStore type.
 # See specification for java/security/KeyStore.html#getDefaultType()
 keystore.type=BKS


 # Default KeyManagerFactory and TrustManagerFactory algorithms.
 # See specification for
 # javax/net/ssl/KeyManagerFactory.html#getDefaultAlgorithm()
 # javax/net/ssl/TrustManagerFactory.html#getDefaultAlgorithm()
 ssl.KeyManagerFactory.algorithm=PKIX
 ssl.TrustManagerFactory.algorithm=PKIX

 # system.scope is used to specify implementation class of IdentityScope
 system.scope=org.apache.harmony.security.SystemScope

 # The following Android-only property controls peer certificate validation.
 ssl.disablePeerCertificateChainVerification=false
	# Licensed to the Apache Software Foundation (ASF) under one or more
	# contributor license agreements. See the NOTICE file distributed with
	# this work for additional information regarding copyright ownership.
	# The ASF licenses this file to You under the Apache License, Version 2.0
	# (the "License"); you may not use this file except in compliance with
	# the License. You may obtain a copy of the License at
	#
	# http://www.apache.org/licenses/LICENSE-2.0
	#
	# Unless required by applicable law or agreed to in writing, software
	# distributed under the License is distributed on an "AS IS" BASIS,
	# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	# See the License for the specific language governing permissions and
	# limitations under the License.


	#
	# Providers
	# See also: J2SE doc. "How to Implement a Provider for the JavaTM Cryptography Architecture"
	#
	# Android's provider of OpenSSL backed implementations
	security.provider.1=org.apache.harmony.xnet.provider.jsse.OpenSSLProvider
	# Favor Harmony's CertificateFactory.X509 over BouncyCastle's
	security.provider.2=org.apache.harmony.security.provider.cert.DRLCertFactory
	# Android's stripped down BouncyCastle provider
	security.provider.3=com.android.org.bouncycastle.jce.provider.BouncyCastleProvider
	# Remaining Harmony providers
	security.provider.4=org.apache.harmony.security.provider.crypto.CryptoProvider
	security.provider.5=org.apache.harmony.xnet.provider.jsse.JSSEProvider







	# The default SSLSocketFactory and SSLServerSocketFactory provider implementations.
	# See specification for
	# javax/net/ssl/SSLSocketFactory.html#getDefault()
	# javax/net/ssl/SSLServerSocketFactory.html#getDefault()

	# For regular SSLSockets, we have two implementations:
	ssl.SocketFactory.provider=org.apache.harmony.xnet.provider.jsse.OpenSSLSocketFactoryImpl
	#ssl.SocketFactory.provider=org.apache.harmony.xnet.provider.jsse.SSLSocketFactoryImpl

	# For SSLServerSockets, there's only the new, OpenSSL-based implementation:
	ssl.ServerSocketFactory.provider=org.apache.harmony.xnet.provider.jsse.OpenSSLServerSocketFactoryImpl

	# Default KeyStore type.
	# See specification for java/security/KeyStore.html#getDefaultType()
	keystore.type=BKS


	# Default KeyManagerFactory and TrustManagerFactory algorithms.
	# See specification for
	# javax/net/ssl/KeyManagerFactory.html#getDefaultAlgorithm()
	# javax/net/ssl/TrustManagerFactory.html#getDefaultAlgorithm()
	ssl.KeyManagerFactory.algorithm=PKIX
	ssl.TrustManagerFactory.algorithm=PKIX

	# system.scope is used to specify implementation class of IdentityScope
	system.scope=org.apache.harmony.security.SystemScope

	# The following Android-only property controls peer certificate validation.
	ssl.disablePeerCertificateChainVerification=false