Snap for 8746144 from 82d8cbf40d5c033108ba44cfdd3d0989d119e00e to mainline-conscrypt-release Change-Id: I25004505fcd8ac0ae07cc2fbff51f70a692c9978

commit: 7cee6e53a0103eb87e1c37febe7fb38845b22d3d [log] [tgz]
author: Android Build Coastguard Worker <android-build-coastguard-worker@google.com> Mon Jun 20 20:17:32 2022 +0000
committer: Android Build Coastguard Worker <android-build-coastguard-worker@google.com> Mon Jun 20 20:17:32 2022 +0000
tree: 5801a3ed38619739c3d555f40f8037ea5b4cd65e
parent: efa261d37a53402ceebe2cdff4e3c644ed6ee7a0 [diff]
parent: 82d8cbf40d5c033108ba44cfdd3d0989d119e00e [diff]
diff --git a/nugget/proto/nugget/app/identity/identity.proto b/nugget/proto/nugget/app/identity/identity.proto
index 591a92a..a29aa16 100644
--- a/nugget/proto/nugget/app/identity/identity.proto
+++ b/nugget/proto/nugget/app/identity/identity.proto

@@ -29,8 +29,8 @@
   option (nugget.protobuf.app_id) = "IDENTITY";
   option (nugget.protobuf.app_name) = "Identity";
   option (nugget.protobuf.app_version) = 1;
-  option (nugget.protobuf.request_buffer_size) = 1024;
-  option (nugget.protobuf.response_buffer_size) = 1024;
+  option (nugget.protobuf.request_buffer_size) = 2048;
+  option (nugget.protobuf.response_buffer_size) = 2048;
 
   // RPCs for the Identity HAL
   rpc WICinitialize (WICinitializeRequest) returns (WICinitializeResponse);

diff --git a/nugget/proto/nugget/app/keymaster/keymaster.options b/nugget/proto/nugget/app/keymaster/keymaster.options
index 4d99765..d6eb175 100644
--- a/nugget/proto/nugget/app/keymaster/keymaster.options
+++ b/nugget/proto/nugget/app/keymaster/keymaster.options

@@ -15,7 +15,7 @@
 nugget.app.keymaster.ProvisionPresharedSecretRequest.preshared_secret max_size:32
 nugget.app.keymaster.StartAttestKeyRequest.not_before max_size:15
 nugget.app.keymaster.StartAttestKeyRequest.not_after max_size:15
-nugget.app.keymaster.StartAttestKeyRequest.caller_issuer_subj_name max_size:64
+nugget.app.keymaster.StartAttestKeyRequest.caller_issuer_subj_name max_size:100
 nugget.app.keymaster.ProvisionPresharedSecretResponse.digest max_size:32
 nugget.app.keymaster.ProvisionCertificatesRequest.cert_block max_size: 1024
 nugget.app.keymaster.ProvisionCertificatesRequest.digest max_size: 32

diff --git a/nugget/proto/nugget/app/keymaster/keymaster.proto b/nugget/proto/nugget/app/keymaster/keymaster.proto
index 67f464a..89710e6 100644
--- a/nugget/proto/nugget/app/keymaster/keymaster.proto
+++ b/nugget/proto/nugget/app/keymaster/keymaster.proto

@@ -413,6 +413,7 @@
   uint32 system_version = 4;         // Deprecated.
   uint32 system_security_level = 5;  // Patch level of the boot partition.
   bytes boot_hash = 6;               // This is a SHA256 digest.
+  uint32 boot_security_level = 7;
 }
 message SetBootStateResponse {
   // Specified in keymaster_defs.proto:ErrorCode

diff --git a/nugget/proto/nugget/app/keymaster/keymaster_defs.proto b/nugget/proto/nugget/app/keymaster/keymaster_defs.proto
index 66d1801..dfdfeeb 100644
--- a/nugget/proto/nugget/app/keymaster/keymaster_defs.proto
+++ b/nugget/proto/nugget/app/keymaster/keymaster_defs.proto

@@ -321,6 +321,7 @@
     FUSING_PVT_1 = 3;   // Strongbox gen v1 certs.
     FUSING_D_PVT = 4;   // Dauntless gen v0 certs.
     FUSING_D_PVT_1 = 5; // Dauntless gen v1 certs.
+    FUSING_D_PVT_2 = 6; // Dauntless gen v2 certs (D3M2).
 }
 
 enum CertificateStatus {
commit	7cee6e53a0103eb87e1c37febe7fb38845b22d3d	[log] [tgz]
author	Android Build Coastguard Worker <android-build-coastguard-worker@google.com>	Mon Jun 20 20:17:32 2022 +0000
committer	Android Build Coastguard Worker <android-build-coastguard-worker@google.com>	Mon Jun 20 20:17:32 2022 +0000
tree	5801a3ed38619739c3d555f40f8037ea5b4cd65e
parent	efa261d37a53402ceebe2cdff4e3c644ed6ee7a0 [diff]
parent	82d8cbf40d5c033108ba44cfdd3d0989d119e00e [diff]