conscrypt - Code Search

README.md

security.

OkHttp uses your platform's built-in TLS implementation. On Java platforms OkHttp also supports
[Conscrypt][conscrypt], which integrates [BoringSSL](https://github.com/google/boringssl) with Java. OkHttp will use Conscrypt if it is
the first security provider:

```java
Security.insertProviderAt(Conscrypt.newProvider(), 1);
```

Registered: Fri Dec 26 11:42:13 UTC 2025

- Last Modified: Thu Oct 30 21:39:59 UTC 2025

- 9.5K bytes

- Viewed (0)

github.com/square/okhttp

okhttp/src/jvmTest/kotlin/okhttp3/SessionReuseTest.kt

        .toList()
        .map { it.toByteString().hex() }

    if (platform.isConscrypt()) {
      if (tlsVersion == TlsVersion.TLS_1_3) {
        assertThat(sessionIds[0]).isEmpty()
        assertThat(sessionIds[1]).isEmpty()

        // https://github.com/google/conscrypt/issues/985
        // assertThat(directSessionIds).containsExactlyInAnyOrder(sessionIds[0], sessionIds[1])
      } else {

Registered: Fri Dec 26 11:42:13 UTC 2025

- Last Modified: Sat Nov 01 12:18:11 UTC 2025

- 5.9K bytes

- Viewed (1)

github.com/square/okhttp

docs/changelogs/changelog_3x.md

    interval of 30 seconds is reasonable for most use cases.

 *  **OkHttp now supports [Conscrypt][conscrypt].** Conscrypt is a Java Security
    Provider that integrates BoringSSL into the Java platform. Conscrypt
    supports more cipher suites than the JVM’s default provider and may also
    execute more efficiently.

    To use it, first register a [Conscrypt dependency][conscrypt_dependency] in
    your build system.

Registered: Fri Dec 26 11:42:13 UTC 2025

- Last Modified: Sun Feb 06 14:55:54 UTC 2022

- 50.8K bytes

- Viewed (0)

github.com/square/okhttp

okhttp/src/androidMain/kotlin/okhttp3/internal/platform/Android10Platform.kt

  private val socketAdapters =
    listOfNotNull(
      Android10SocketAdapter.buildIfSupported(),
      DeferredSocketAdapter(AndroidSocketAdapter.playProviderFactory),
      // Delay and Defer any initialisation of Conscrypt and BouncyCastle
      DeferredSocketAdapter(ConscryptSocketAdapter.factory),
      DeferredSocketAdapter(BouncyCastleSocketAdapter.factory),
    ).filter { it.isSupported() }

Registered: Fri Dec 26 11:42:13 UTC 2025

- Last Modified: Sun Jul 20 11:25:50 UTC 2025

- 4.5K bytes

- Viewed (0)

github.com/square/okhttp

okhttp/src/jvmTest/kotlin/okhttp3/internal/tls/ClientAuthTest.kt

        is SSLHandshakeException -> {
          // JDK 11+
        }
        is SSLException -> {
          // javax.net.ssl.SSLException: readRecord
        }
        is SocketException -> {
          // Conscrypt, JDK 8 (>= 292), JDK 9
        }
        else -> {
          assertThat(expected.message).isEqualTo("exhausted all routes")
        }
      }
    }
  }

  @Test
  fun commonNameIsNotTrusted() {

Registered: Fri Dec 26 11:42:13 UTC 2025

- Last Modified: Tue Nov 04 19:13:52 UTC 2025

- 13K bytes

- Viewed (0)

github.com/square/okhttp

regression-test/build.gradle.kts

    testInstrumentationRunner = "androidx.test.runner.AndroidJUnitRunner"
    testInstrumentationRunnerArguments += mapOf(
      "notClass" to "org.conscrypt.KitKatPlatformOpenSSLSocketImplAdapter,org.bouncycastle.pqc.crypto.qtesla.QTeslaKeyEncodingTests"
    )
  }

  compileOptions {
    targetCompatibility(JavaVersion.VERSION_11)

Registered: Fri Dec 26 11:42:13 UTC 2025

- Last Modified: Mon Mar 17 15:11:24 UTC 2025

- 1.6K bytes

- Viewed (0)

github.com/square/okhttp

okhttp-brotli/build.gradle.kts

)

project.applyJavaModules("okhttp3.brotli")

dependencies {
  "friendsApi"(projects.okhttp)
  api(libs.brotli.dec)

  testImplementation(projects.okhttpTestingSupport)
  testImplementation(libs.conscrypt.openjdk)
  testImplementation(libs.junit)
  testImplementation(libs.kotlin.test.common)
  testImplementation(libs.kotlin.test.junit)
  testImplementation(libs.assertk)
}

mavenPublishing {

Registered: Fri Dec 26 11:42:13 UTC 2025

- Last Modified: Sun Sep 21 06:22:22 UTC 2025

- 793 bytes

- Viewed (0)

github.com/square/okhttp

okhttp-dnsoverhttps/build.gradle.kts

  testImplementation(projects.mockwebserver)
  testImplementation(projects.mockwebserver3Junit5)
  testImplementation(libs.squareup.okio.fakefilesystem)
  testImplementation(libs.conscrypt.openjdk)
  testImplementation(libs.junit)
  testImplementation(libs.kotlin.test.common)
  testImplementation(libs.kotlin.test.junit)
}

mavenPublishing {
  configure(KotlinJvm(javadocJar = JavadocJar.Empty()))

Registered: Fri Dec 26 11:42:13 UTC 2025

- Last Modified: Sun Sep 21 06:22:22 UTC 2025

- 906 bytes

- Viewed (1)

github.com/square/okhttp

okhttp/src/androidMain/kotlin/okhttp3/internal/platform/AndroidPlatform.kt

  private val socketAdapters =
    listOfNotNull(
      StandardAndroidSocketAdapter.buildIfSupported(),
      DeferredSocketAdapter(AndroidSocketAdapter.playProviderFactory),
      // Delay and Defer any initialisation of Conscrypt and BouncyCastle
      DeferredSocketAdapter(ConscryptSocketAdapter.factory),
      DeferredSocketAdapter(BouncyCastleSocketAdapter.factory),
    ).filter { it.isSupported() }

  @Throws(IOException::class)

Registered: Fri Dec 26 11:42:13 UTC 2025

- Last Modified: Fri Oct 10 05:19:46 UTC 2025

- 6.5K bytes

- Viewed (0)

github.com/square/okhttp

okhttp/src/commonJvmAndroid/kotlin/okhttp3/internal/platform/Platform.kt

/**
 * Access to platform-specific features.
 *
 * ### Session Tickets
 *
 * Supported on Android 2.3+.
 * Supported on JDK 8+ via Conscrypt.
 *
 * ### ALPN (Application Layer Protocol Negotiation)
 *
 * Supported on Android 5.0+.
 *
 * Supported on OpenJDK 8 via the JettyALPN-boot library or Conscrypt.
 *
 * Supported on OpenJDK 9+ via SSLParameters and SSLSocket features.
 *
 * ### Trust Manager Extraction
 *

Registered: Fri Dec 26 11:42:13 UTC 2025

- Last Modified: Mon Jul 28 07:33:49 UTC 2025

- 8.1K bytes

- Viewed (0)

Search Options