| 491d88834d8af35b9701f92d972212d873dbb6a0 |
|
10-Oct-2017 |
Adam Vartanian <flooey@google.com> |
Deprecate BC implementations of duplicated algorithms
The first step in deprecating the BC implementations of algorithms that
are also provided by Conscrypt. This checks whether the app's target
API level is greater than a given threshold (currently O, but subject
to change later) and disallows access to those algorithms when true.
This limit only applies to requests from the system-created BC provider.
Apps can install their own provider, in which case they get the
implementations they requested.
This doesn't yet implement the deprecation for Cipher instances, since
the transformation scheme makes that more complicated.
The ultimate removal of these algorithms, once a sufficient deprecation
period has elapsed, is tracked in b/67761667.
Bug: 67626877
Test: cts -m CtsLibcoreTestCases
Test: cts -m CtsLibcoreOkHttpTestCases
Test: cts -m CtsLibcoreWycheproofBCTestCases
Test: cts -m CtsLibcoreWycheproofConscryptTestCases
Change-Id: I48f07226e66873a65859121af32028c1547952ac
|
| ec0da6812cd14cacb890c7a21ef893ba8d46bf09 |
|
23-Feb-2016 |
Kenny Root <kroot@google.com> |
CertPathValidatorTest: add OCSP response tests
Test what happens when leaf OCSP data is given for a certificate for
both revoked and valid cases.
(cherry picked from commit 522b9174fca3ce4724ef8e032e26664697529e03)
Bug: 27494097
Change-Id: If58ff4b30b78a10cb2563ff2d13887f34d511a4a
|
| 522b9174fca3ce4724ef8e032e26664697529e03 |
|
23-Feb-2016 |
Kenny Root <kroot@google.com> |
CertPathValidatorTest: add OCSP response tests
Test what happens when leaf OCSP data is given for a certificate for
both revoked and valid cases.
Bug: 27494097
Change-Id: If58ff4b30b78a10cb2563ff2d13887f34d511a4a
|