commit	a73451a6da8530004db0f129f472acc531f10b86	[log] [tgz]
author	Nikita Ioffe <ioffe@google.com>	Tue Jan 28 17:09:22 2025 +0000
committer	Nikita Ioffe <ioffe@google.com>	Wed Feb 05 15:25:07 2025 +0000
tree	a0890f04f265f0a24706d60c24b724aab08e960b
parent	805fa93ac15b233bf69058118a070230b28843e7 [diff]

commit

a73451a6da8530004db0f129f472acc531f10b86

[log] [tgz]

author

Nikita Ioffe <ioffe@google.com>

Tue Jan 28 17:09:22 2025 +0000

committer

Nikita Ioffe <ioffe@google.com>

Wed Feb 05 15:25:07 2025 +0000

tree

a0890f04f265f0a24706d60c24b724aab08e960b

parent

805fa93ac15b233bf69058118a070230b28843e7 [diff]

apkmanifest: parse fields related to relaxed rollback protection scheme In case a Microdroid pVM wants to opt in a relaxed rollback protection scheme it needs to have the following things defined in its manifest: * <uses-permission USE_RELAXED_MICRODROID_ROLLBACK_PROTECTION> * set android.system.virtualmachine.ROLLBACK_INDEX <property> In case only one of the two things is defined, the VM won't boot. This is enforced by microdroid_manager (see changes to the verify.rs). In the follow-up patch these new fields will be used to create a new more relaxed sealing policy. Bug: 378681279 Test: atest MicrodroidTests Change-Id: Iabd12fd47f0eb271f021d5ad466de4f6c0669f2b

tree: a0890f04f265f0a24706d60c24b724aab08e960b

README.md

Android Virtualization Framework (AVF)

Android Virtualization Framework (AVF) provides secure and private execution environments for executing code. AVF is ideal for security-oriented use cases that require stronger isolation assurances over those offered by Android’s app sandbox.

Visit our public doc site to learn more about what AVF is, what it is for, and how it is structured. This repository contains source code for userspace components of AVF.

If you want a quick start, see the getting started guideline and follow the steps there.

For in-depth explanations about individual topics and components, visit the following links.

AVF components:

AVF APIs:

How-Tos: