[TOFU] Implement server cert pinning
Implement server certificate pinning to allow more flexibility for
misconfigured networks with only leaf certificates or missing
certificates in the chain (e.g. Root CA cert missing). The user
will be asked if they trust the network provided all the details
available, and if they do, then the server validation will be done
by calculating the server certificate hash and comparing it to the
value approved by the user.
Bug: 272394882
Test: atest SupplicantStaNetworkCallbackAidlImplTest
Test: atest InsecureEapNetworkHandlerTest WifiConfigManagerTest
Test: atest ClientModeImplTest CertificateEventInfoTest
Test: Testing with various misconfigured networks and confirm
connection after approving.
Merged-In: I0694c8d3fff7b7b94004f1eaf683827f15492240
Change-Id: I8697b8100630347006770549c81bc0c0a401d06a
14 files changed