From dd23333ae59b9be4e7671661e0d5a267e9e4720c Mon Sep 17 00:00:00 2001
From: zzh593245631 <zhangzhaohua2@huawei.com>
Date: Wed, 18 Jun 2025 11:59:48 +0800
Subject: [PATCH] =?UTF-8?q?=E8=AF=81=E4=B9=A6=E9=93=BE=E6=A0=A1=E9=AA=8C?=
 =?UTF-8?q?=E6=94=AF=E6=8C=81=E4=BF=A1=E4=BB=BB=E7=B3=BB=E7=BB=9F=E9=A2=84?=
 =?UTF-8?q?=E7=BD=AE=E6=A0=B9=E8=AF=81=E4=B9=A6=20Signed-off-by:=20zzh=20<?=
 =?UTF-8?q?zhangzhaohua2@huawei.com>?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Change-Id: I34b40aebcb77bd94d7f7c80e8a4dd7a35710442d
---
 api/@ohos.security.cert.d.ts | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

diff --git a/api/@ohos.security.cert.d.ts b/api/@ohos.security.cert.d.ts
index 54ceff022a..591a46021e 100644
--- a/api/@ohos.security.cert.d.ts
+++ b/api/@ohos.security.cert.d.ts
@@ -5976,6 +5976,24 @@ declare namespace cert {
      */
     trustAnchors: Array<X509TrustAnchor>;
 
+    /**
+     * Indicates whether to use system preinstalled CA certificates to verify the certificate chain.
+     *
+     * If set to true and trustAnchors is not an empty array, both user trustAnchors and system preinstalled CA
+     * certificates are used to verify the certificate chain.
+     *
+     * If set to true and trustAnchors is an empty array, only system preinstalled CA certificates are used to verify
+     * the certificate chain.
+     *
+     * @type { ?boolean }
+     * @default false
+     * @syscap SystemCapability.Security.Cert
+     * @crossplatform
+     * @atomicservice
+     * @since 20
+     */
+    trustSystemCa?: boolean;
+
     /**
      * The cert and CRL list to build cert chain and verify the certificate chain revocation state.
      *
-- 
Gitee