| commit | ce0b36db1e5d974c99fcda1e93f491adcfc9a726 | [log] [tgz] |
|---|---|---|
| author | Pierre-Clément Tosi <ptosi@google.com> | Fri Jan 26 10:50:05 2024 +0000 |
| committer | Pierre-Clément Tosi <ptosi@google.com> | Tue Feb 06 10:26:06 2024 +0000 |
| tree | 76e1273cfe4784344916c5854ff9367b8d1fc589 | |
| parent | df3037fc6be0ae065b86581029fc0b56e605d2be [diff] |
libfdt: Make unsafe API for DT cloning safe The Fdt::copy_from_slice() was unsound as it allowed client code to bypass the (safe) constructor (which validates the class invariant) and provide arbitrary bytes that would then be available as a "safe" (but not actually) &Fdt. Instead of marking that API unsafe (which it should have been), rework it into a safe API taking a &Self, meaning that the invariant has already been validated for the input. Update callers to use the new API. In particular, note that this change forces one of them to be marked unsafe (which is good!). Test: m pvmfw Test: atest liblibfdt.integration_test Change-Id: I7d2d8ecb85c26f5644ca26330c057568a75656ce
Android Virtualization Framework (AVF) provides secure and private execution environments for executing code. AVF is ideal for security-oriented use cases that require stronger isolation assurances over those offered by Android’s app sandbox.
Visit our public doc site to learn more about what AVF is, what it is for, and how it is structured. This repository contains source code for userspace components of AVF.
If you want a quick start, see the getting started guideline and follow the steps there.
For in-depth explanations about individual topics and components, visit the following links.
AVF components:
AVF APIs:
How-Tos: