Don't fall back to unprotected mode if protected is not supported. Checking the capability on /dev/kvm doesn't work, and in any case if a client requests a protected VM but it isn't supported we should fail with an error, not fall back to running it in unprotected mode. Microdroid clients now need to explicitly choose whether to run in protected mode or not, the same as raw VM clients. Test: atest VirtualizationTestCases Change-Id: If05b871bf83062c1619729ec17eb3342ce5ced30

commit: 3994f0059f9916920c6efddec0bf90bff33dc04f [log] [tgz]
author: Andrew Walbran <qwandor@google.com> Thu Jan 27 17:33:45 2022 +0000
committer: Andrew Walbran <qwandor@google.com> Mon Jan 31 16:11:30 2022 +0000
tree: 28778776821e41d2e259f234db7ec8b215d6dff4
parent: 4382754aa87e94b5205500579d64a6c31268624f [diff] [blame]
diff --git a/microdroid/microdroid.json b/microdroid/microdroid.json
index 0c294e9..cb27a24 100644
--- a/microdroid/microdroid.json
+++ b/microdroid/microdroid.json

@@ -37,6 +37,5 @@
       "writable": true
     }
   ],
-  "memory_mib": 256,
-  "protected": false
+  "memory_mib": 256
 }
commit	3994f0059f9916920c6efddec0bf90bff33dc04f	[log] [tgz]
author	Andrew Walbran <qwandor@google.com>	Thu Jan 27 17:33:45 2022 +0000
committer	Andrew Walbran <qwandor@google.com>	Mon Jan 31 16:11:30 2022 +0000
tree	28778776821e41d2e259f234db7ec8b215d6dff4
parent	4382754aa87e94b5205500579d64a6c31268624f [diff] [blame]