Dragonwell Security Provider is a Java Security Provider (JSP) that implements parts of the Java Cryptography Extension (JCE) and Java Secure Socket Extension (JSSE). It uses Tongsuo to provide cryptographic primitives and Transport Layer Security (TLS) for Java applications on OpenJDK. See the capabilities documentation for detailed information on what is provided.
Dragonwell Security Provider inherits from Google's project Conscrypt. The core SSL engine has borrowed liberally from the Netty project and their
work on netty-tcnative, giving Dragonwell Security Provider
similar performance.
In addition to supporting international mainstream en-decryption Algorithms and SSL/TLS protocols, Dragonwell Security Provider also provides support for China's ShangMi Algorithms SM2/SM3/SM4 and RFC8998 TLS protocol.
| Homepage: | github.com/dragonwell-project/alibaba-dragonwell-security-provider |
| Mailing List: | jeffery.wsj@alibaba-inc.com |
Dragonwell Security Provider supports Java 8/11 OpenJDK. The build artifacts are available on Maven Central.
You can download the JARs directly from the Maven repositories.
The OpenJDK artifacts are platform-dependent since each embeds a native library for a particular platform. We publish artifacts to Maven Central for the following platforms:
| Classifier | OS | Architecture |
|---|---|---|
| linux-x86_64 | Linux | x86_64 (64-bit) |
| linux-aarch_64 | Linux | aarch_64 (64-bit) |
| osx-x86_64 | Mac | x86_64 (64-bit) |
| osx-aarch_64(M1) | Mac | aarch_64 (64-bit) |
Use the os-maven-plugin to add the dependency:
<build>
<extensions>
<extension>
<groupId>kr.motd.maven</groupId>
<artifactId>os-maven-plugin</artifactId>
<version>1.4.1.Final</version>
</extension>
</extensions>
</build>
<dependency>
<groupId>com.alibaba.dragonwell</groupId>
<artifactId>security-native</artifactId>
<version>1.0.0</version>
<classifier>${os.detected.classifier}</classifier>
</dependency>Use the osdetector-gradle-plugin (which is a wrapper around the os-maven-plugin) to add the dependency:
buildscript {
repositories {
mavenCentral()
}
dependencies {
classpath 'com.google.gradle:osdetector-gradle-plugin:1.4.0'
}
}
// Use the osdetector-gradle-plugin
apply plugin: "com.google.osdetector"
dependencies {
compile 'com.alibaba.dragonwell:security-native:1.0.0:' + osdetector.classifier
}For convenience, we also publish an Uber JAR to Maven Central that contains the shared libraries for all of the published platforms. While the overall size of the JAR is larger than depending on a platform-specific artifact, it greatly simplifies the task of dependency management for most platforms.
To depend on the uber jar, simply use the security-native-uber artifacts.
<dependency>
<groupId>com.alibaba.dragonwell</groupId>
<artifactId>security-native-uber</artifactId>
<version>1.0.0</version>
</dependency>dependencies {
compile 'com.alibaba.dragonwell:security-native-uber:1.0.0'
}If you are making changes to Dragonwell Security Provider, see the building instructions.