Note regarding the new-api-needs-documentation label:

This serves as a reminder for when your PR is modifying a ref *.cs file and adding/modifying public APIs, to please make sure the API implementation in the src *.cs file is documented with triple slash comments, so the PR reviewers can sign off that change.

Tagging subscribers to this area: @dotnet/area-system-security, @vcsjones
See info in area-owners.md if you want to be subscribed.

Draft to get a run through CI. Android is very unhappy in my local dev.

/azp run runtime-extra-platforms

/azp run runtime-extra-platforms

The x86 and x64 Android legs passed. The ARM64 seemed to crash. I also cannot get the ARM64 tests to run locally, but that's true even on main, so I don't think I introduced any incorrect behavior.

Marking as ready for review, then.

@jkoritzinsky can you weigh in on the JNI parts?

/azp run runtime-extra-platforms

/azp run runtime-extra-platforms

@bartonjs @jkoritzinsky I am having a hard time parsing the results of the Android test runs. I don't see anything in the test results that look like a failure as a result from this change. Can either of you help me confirm that and this is okay to merge?

It is related:

09-29 06:08:20.250  3012  3012 I DOTNET  : JNI_OnLoad: JNI_OnLoad in pal_jni.c
09-29 06:08:20.251  3012  3012 F DOTNET  : GetClassGRef: class javax/crypto/spec/AEADBadTagException was not found
--------- beginning of crash
09-29 06:08:20.251  3012  3012 F libc    : Fatal signal 6 (SIGABRT), code -1 (SI_QUEUE) in tid 3012 (rimitives.Tests), pid 3012 (rimitives.Tests)

Taken from one of the MonoRunner logs here

/azp run runtime-extra-platforms

/azp run runtime-extra-platforms

/azp run runtime-extra-platforms