Add checkServerTrusted variant to X509TrustManagerExtensions This variant passes down the OCSP and TLS data that may be required to validate the Certificate Transparency status of a certificate. This is required for network stacks that are not able to pass down an SSLSession nor a Socket (e.g., Cronet). Bug: 293505388 Bug: 319829948 Bug: 377159091 Test: build API-Coverage-Bug: 376139811 Flag: android.net.platform.flags.x509_extensions_certificate_transparency Change-Id: I0304c97e799452a51916174788ba7dd6c9a82fb6

commit: 4f65df85764670ba5bc997f4d3c13c70a8642be3 [log] [tgz]
author: Thiébaud Weksteen <tweek@google.com> Mon Oct 28 14:22:53 2024 +1100
committer: Thiébaud Weksteen <tweek@google.com> Thu Nov 28 15:43:20 2024 +1100
tree: f6061b98176288bce3de9ba06c2d076ee1ca9a47
parent: 7c3fc3b827fbf0e9c55dd956f047bee3887409be [diff] [blame]
diff --git a/AconfigFlags.bp b/AconfigFlags.bp
index e184704..e951708 100644
--- a/AconfigFlags.bp
+++ b/AconfigFlags.bp

@@ -105,6 +105,7 @@
         "com.android.server.flags.services-aconfig-java",
         "com.android.text.flags-aconfig-java",
         "com.android.window.flags.window-aconfig-java",
+        "conscrypt_exported_aconfig_flags_lib",
         "device_policy_aconfig_flags_lib",
         "display_flags_lib",
         "dropbox_flags_lib",
@@ -194,6 +195,14 @@
     defaults: ["framework-minus-apex-aconfig-java-defaults"],
 }
 
+// Conscrypt
+java_aconfig_library {
+    name: "conscrypt_exported_aconfig_flags_lib",
+    aconfig_declarations: "conscrypt-aconfig-flags",
+    mode: "exported",
+    defaults: ["framework-minus-apex-aconfig-java-defaults"],
+}
+
 // Telecom
 java_aconfig_library {
     name: "telecom_flags_core_java_lib",
commit	4f65df85764670ba5bc997f4d3c13c70a8642be3	[log] [tgz]
author	Thiébaud Weksteen <tweek@google.com>	Mon Oct 28 14:22:53 2024 +1100
committer	Thiébaud Weksteen <tweek@google.com>	Thu Nov 28 15:43:20 2024 +1100
tree	f6061b98176288bce3de9ba06c2d076ee1ca9a47
parent	7c3fc3b827fbf0e9c55dd956f047bee3887409be [diff] [blame]