commit f47f43b657225b357d678181d75a4b598c99d8fe
author Treehugger Robot <android-test-infra-autosubmit@system.gserviceaccount.com> Fri Nov 29 13:01:25 2024 +0000
committer Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com> Fri Nov 29 13:01:25 2024 +0000
tree 0004f29c862e8a4696a9cd2d4fdecda7383496cc
parent eef44ce473e813043f6cc8aabd322178e8cb58a0
parent 50501eca8e08f33c3d16ce7cfa0fa5d3e6ad06c1

Merge "pvmfw: Document com.android.virt.cap in README" into main am: 809a3a1884 am: 50501eca8e

Original change: https://android-review.googlesource.com/c/platform/packages/modules/Virtualization/+/3378620

Change-Id: I3a074402e29aa4c8c5a8ffde0c420b8525fc4c42
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>

guest/pvmfw/README.md

diff --git a/guest/pvmfw/README.md b/guest/pvmfw/README.md
index 50fe3d3..8c8314d 100644
--- a/guest/pvmfw/README.md
+++ b/guest/pvmfw/README.md
@@ -450,6 +450,18 @@
 
 [soong-udroid]: https://cs.android.com/android/platform/superproject/main/+/main:packages/modules/Virtualization/microdroid/Android.bp;l=425;drc=b94a5cf516307c4279f6c16a63803527a8affc6d
 
+#### VBMeta Properties
+
+AVF defines special keys for AVB VBMeta descriptor properties that pvmfw
+recognizes, allowing VM owners to ensure that pvmfw performs its role in a way
+that is compatible with their guest kernel. These are:
+
+- `"com.android.virt.cap"`: a `|`-separated list of "capabilities" from
+  - `remote_attest`: pvmfw uses a hard-coded index for rollback protection
+  - `secretkeeper_protection`: pvmfw defers rollback protection to the guest
+  - `supports_uefi_boot`: pvmfw boots the VM as a EFI payload (experimental)
+  - `trusty_security_vm`: pvmfw skips rollback protection
+
 ## Development
 
 For faster iteration, you can build pvmfw, adb-push it to the device, and use