commit 4c145c06413065d6f7be05c6ad1cfcce4450f94d
author Pierre-Clément Tosi <ptosi@google.com> Tue Nov 26 14:15:26 2024 +0000
committer Pierre-Clément Tosi <ptosi@google.com> Thu Nov 28 15:26:46 2024 +0000
tree c198518fb7c12ba3a9376ed102eee0c3e7435cad
parent 1ac75a2681660b1cb96080f7fdb03ea1d1f17dcf

pvmfw: Document com.android.virt.cap in README

Add needed documentation and prepare for the introduction of new
properties and the rework of the existing one (which will also be
documented).

Test: -
Change-Id: I336c62a8620dff61af4248ad517aac3088bc33db

guest/pvmfw/README.md

diff --git a/guest/pvmfw/README.md b/guest/pvmfw/README.md
index 50fe3d3..8c8314d 100644
--- a/guest/pvmfw/README.md
+++ b/guest/pvmfw/README.md
@@ -450,6 +450,18 @@
 
 [soong-udroid]: https://cs.android.com/android/platform/superproject/main/+/main:packages/modules/Virtualization/microdroid/Android.bp;l=425;drc=b94a5cf516307c4279f6c16a63803527a8affc6d
 
+#### VBMeta Properties
+
+AVF defines special keys for AVB VBMeta descriptor properties that pvmfw
+recognizes, allowing VM owners to ensure that pvmfw performs its role in a way
+that is compatible with their guest kernel. These are:
+
+- `"com.android.virt.cap"`: a `|`-separated list of "capabilities" from
+  - `remote_attest`: pvmfw uses a hard-coded index for rollback protection
+  - `secretkeeper_protection`: pvmfw defers rollback protection to the guest
+  - `supports_uefi_boot`: pvmfw boots the VM as a EFI payload (experimental)
+  - `trusty_security_vm`: pvmfw skips rollback protection
+
 ## Development
 
 For faster iteration, you can build pvmfw, adb-push it to the device, and use