user4756956
Reputation: 9
Class not found exception from OpenSSLSocketImpl after upgrading Security Provider
Per Android Developer and Updating Your Security Provider to Protect Against SSL Exploits, the security provider in Android 4.x OS should be upgraded to avoid known vulnerabilities. Using the ProviderInstaller class of Google Play services, we can upgrade the same.
When we try to access the OpenSSLSocketImpl class as shown in below code snippet, it throws the class not found exception.
Class.forName("com.google.android.gms.org.conscrypt.OpenSSLSocketImpl");
Why is OpenSSLSocketImpl causing a class not found exception?
What else should we perform to use the latest OpenSSL library?
Upvotes: 0
Views: 876
Answers (1)
Nikolay Elenkov
Reputation: 52946
The implementation classes are not part of the API, so you shouldn't reference them directly.
Upvotes: 3
Related Questions
- Defective OpenSSL Version (OpenSSL 1.1.1g)
- How to solve javax.net.ssl.SSLHandshakeException Error without Google Play Services installed?
- SSL Socket : no cipher suites in common error
- How to determine which dependency causes Google Play OpenSSL warning?
- Google Play Security Alert and OpenSSL version 1.0.1j after all possible updates
- Google Play and OpenSSL vulnerability warning
- Google Mandatory update to latest OpenSSL
- Update Android app to latest version of OpenSSL
- OpenSSL libssl.so error undefined reference to 'ssl3_cbc_remove_padding'
- Update openssl version in the guardianproject/openssl-android