commit	dfb2a0c3eb149315b582c6e09598e1b385a13d1f	[log] [tgz]
author	Alice Wang <aliceywang@google.com>	Tue Jan 14 15:04:42 2025 +0000
committer	Alice Wang <aliceywang@google.com>	Mon Jan 20 15:04:48 2025 +0000
tree	0402b75cf90ec3997f0c1941950c7753291d8e19
parent	a3e0b1af003219b62ff3fb28fc1df84a44f95e94 [diff]

commit

dfb2a0c3eb149315b582c6e09598e1b385a13d1f

[log] [tgz]

author

Alice Wang <aliceywang@google.com>

Tue Jan 14 15:04:42 2025 +0000

committer

Alice Wang <aliceywang@google.com>

Mon Jan 20 15:04:48 2025 +0000

tree

0402b75cf90ec3997f0c1941950c7753291d8e19

parent

a3e0b1af003219b62ff3fb28fc1df84a44f95e94 [diff]

[Trusty] Enable verified boot for Trusty VM on top of pvmfw This cl enables verified boot of the Trusty VM on top of pvmfw. It involves the following steps: 1. Extract the loadable sections from the Trusty VM ELF image. 2. Sign the extracted binary with AVB and append an AVB footer. 3. Repackage the signed binary into a new ELF file with a single loadable segment. crosvm loads this new ELF image and exposes the loadable section containing the signed image 2. to pvmfw. Bug: 379646659 Bug: 389914683 Test: m lk_trusty.elf and run the resulting image in pVM on Pixel Change-Id: I3b865e2f9378d3fc28dfddb4e7d4e5c752878373

tree: 0402b75cf90ec3997f0c1941950c7753291d8e19

README.md

Android Virtualization Framework (AVF)

Android Virtualization Framework (AVF) provides secure and private execution environments for executing code. AVF is ideal for security-oriented use cases that require stronger isolation assurances over those offered by Android’s app sandbox.

Visit our public doc site to learn more about what AVF is, what it is for, and how it is structured. This repository contains source code for userspace components of AVF.

If you want a quick start, see the getting started guideline and follow the steps there.

For in-depth explanations about individual topics and components, visit the following links.

AVF components:

AVF APIs:

How-Tos: