commit | 9eebbab9ca0765dec4216fb221401e6ebbab7ddc | [log] [tgz] |
---|---|---|
author | Alice Wang <aliceywang@google.com> | Wed Apr 10 14:57:27 2024 +0000 |
committer | Alice Wang <aliceywang@google.com> | Thu Apr 25 16:46:47 2024 +0000 |
tree | 8745eb9a179ff628a90314707482d4892b841ee4 | |
parent | a93fea919a5d18b358e896b74cda1d6675c9348c [diff] |
[attestation] Validate vendor module loaded by client VM in RKP VM This cl added the following tasks to the RKP VM: - Parses a client VM DICE chain containing an additional vendor module entry. - Validates the code hash in the vendor module DICE entry against the code hash read from the device tree. The cl also adds a CTS test that triggers the VM attestation from a VM with vendor module. Bug: 330678211 Test: atest MicrodroidTests Change-Id: Id56c6edd8baa32bae6a8ad7b5bca7b18ce167022
Android Virtualization Framework (AVF) provides secure and private execution environments for executing code. AVF is ideal for security-oriented use cases that require stronger isolation assurances over those offered by Android’s app sandbox.
Visit our public doc site to learn more about what AVF is, what it is for, and how it is structured. This repository contains source code for userspace components of AVF.
If you want a quick start, see the getting started guideline and follow the steps there.
For in-depth explanations about individual topics and components, visit the following links.
AVF components:
AVF APIs:
How-Tos: