• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1package: "android.security"
2container: "system"
3
4flag {
5    name: "certificate_transparency_configuration"
6    is_exported: true
7    namespace: "network_security"
8    description: "Enable certificate transparency setting in the network security config"
9    bug: "28746284"
10}
11
12flag {
13    name: "fsverity_api"
14    is_exported: true
15    namespace: "hardware_backed_security"
16    description: "Feature flag for fs-verity API"
17    bug: "285185747"
18}
19
20flag {
21    name: "mgf1_digest_setter_v2"
22    is_exported: true
23    namespace: "hardware_backed_security"
24    description: "Feature flag for mgf1 digest setter in key generation and import parameters."
25    bug: "308378912"
26    is_fixed_read_only: true
27}
28
29flag {
30    name: "keyinfo_unlocked_device_required"
31    is_exported: true
32    namespace: "hardware_backed_security"
33    description: "Add the API android.security.keystore.KeyInfo#isUnlockedDeviceRequired()"
34    bug: "296475382"
35}
36
37flag {
38    name: "unlocked_storage_api"
39    namespace: "hardware_backed_security"
40    description: "Feature flag for unlocked-only storage API"
41    bug: "325129836"
42}
43
44flag {
45    name: "secure_array_zeroization"
46    namespace: "security"
47    description: "Enable secure array zeroization"
48    bug: "320392352"
49    metadata {
50      purpose: PURPOSE_BUGFIX
51    }
52}
53
54flag {
55    name: "frp_enforcement"
56    is_exported: true
57    namespace: "hardware_backed_security"
58    description: "This flag controls whether PDB enforces FRP"
59    bug: "290312729"
60    is_fixed_read_only: true
61}
62
63flag {
64  name: "should_trust_manager_listen_for_primary_auth"
65  namespace: "biometrics"
66  description: "Causes TrustManagerService to listen for credential attempts and ignore reports from upstream"
67  bug: "323086607"
68}
69
70flag {
71    name: "clear_strong_auth_on_adding_primary_credential"
72    namespace: "biometrics"
73    description: "Clear StrongAuth on adding credential"
74    bug: "320817991"
75    metadata {
76      purpose: PURPOSE_BUGFIX
77    }
78}
79
80flag {
81    name: "afl_api"
82    namespace: "hardware_backed_security"
83    description: "AFL feature"
84    bug: "365994454"
85    is_exported: true
86}
87
88flag {
89    name: "internal_log_event_listener"
90    namespace: "hardware_backed_security"
91    description: "Use internal callback to gather SecurityMonitor logs."
92    bug: "389732143"
93    metadata {
94      purpose: PURPOSE_BUGFIX
95    }
96}
97
98flag {
99    name: "protect_device_config_flags"
100    namespace: "psap_ai"
101    description: "Feature flag to limit adb shell to allowlisted flags"
102    bug: "364083026"
103    is_fixed_read_only: true
104}
105
106flag {
107    name: "keystore_grant_api"
108    namespace: "hardware_backed_security"
109    description: "Feature flag for exposing KeyStore grant APIs"
110    bug: "351158708"
111    is_exported: true
112}
113
114flag {
115    name: "secure_lockdown"
116    namespace: "biometrics"
117    description: "Feature flag for Secure Lockdown feature"
118    bug: "373422357"
119    is_exported: true
120}
121
122flag {
123    name: "subscribe_to_keyguard_locked_state_perm_priv_flag"
124    namespace: "psap_ai"
125    description: "Feature flag to add the privileged flag to the SUBSCRIBE_TO_KEYGUARD_LOCKED_STATE permission"
126    bug: "380120712"
127    is_fixed_read_only: true
128}
129
130flag {
131    name: "disable_adaptive_auth_counter_lock"
132    namespace: "biometrics"
133    description: "Flag to allow an adb secure setting to disable the adaptive auth lock"
134    bug: "371057865"
135}
136