491d88834d8af35b9701f92d972212d873dbb6a0 |
|
10-Oct-2017 |
Adam Vartanian <flooey@google.com> |
Deprecate BC implementations of duplicated algorithms The first step in deprecating the BC implementations of algorithms that are also provided by Conscrypt. This checks whether the app's target API level is greater than a given threshold (currently O, but subject to change later) and disallows access to those algorithms when true. This limit only applies to requests from the system-created BC provider. Apps can install their own provider, in which case they get the implementations they requested. This doesn't yet implement the deprecation for Cipher instances, since the transformation scheme makes that more complicated. The ultimate removal of these algorithms, once a sufficient deprecation period has elapsed, is tracked in b/67761667. Bug: 67626877 Test: cts -m CtsLibcoreTestCases Test: cts -m CtsLibcoreOkHttpTestCases Test: cts -m CtsLibcoreWycheproofBCTestCases Test: cts -m CtsLibcoreWycheproofConscryptTestCases Change-Id: I48f07226e66873a65859121af32028c1547952ac
|
ec0da6812cd14cacb890c7a21ef893ba8d46bf09 |
|
23-Feb-2016 |
Kenny Root <kroot@google.com> |
CertPathValidatorTest: add OCSP response tests Test what happens when leaf OCSP data is given for a certificate for both revoked and valid cases. (cherry picked from commit 522b9174fca3ce4724ef8e032e26664697529e03) Bug: 27494097 Change-Id: If58ff4b30b78a10cb2563ff2d13887f34d511a4a
|
522b9174fca3ce4724ef8e032e26664697529e03 |
|
23-Feb-2016 |
Kenny Root <kroot@google.com> |
CertPathValidatorTest: add OCSP response tests Test what happens when leaf OCSP data is given for a certificate for both revoked and valid cases. Bug: 27494097 Change-Id: If58ff4b30b78a10cb2563ff2d13887f34d511a4a
|