Effective in 2026, to align with our trunk stable development model and ensure platform stability for the ecosystem, we will publish source code to AOSP in Q2 and Q4. For building and contributing to AOSP, use android-latest-release. The android-latest-release manifest branch will always reference the most recent release pushed to AOSP. For more information, see Changes to AOSP.

Bootloader support for SDV VM identity and attestation

In addition to the requirements for an Android bootloader (ABL), to support SDV virtual machine (VM) identity and attestation, the bootloader must perform the following tasks. If the guest doesn't have an ABL, the guest loader running on the host within the hypervisor must perform these tasks:

Generate the Android HLOS CDI handover.
Support additional kernel parameters.

Additional kernel parameters

The SDV bootloader must pass the kernel parameters described in the following sections.

androidboot.sdv.boot_mode

In addition to being present in the Android HLOS CDI certificate, the SDV bootloader passes the SDV Boot Mode to the SDV VM as a kernel parameter named androidboot.sdv.boot_mode.

Possible values are locked and unlocked.

androidboot.sdv.vvmfactorytrust

The VVMFactoryTrust is a SHA-256 hash value encoded as a case-insensitive, 64-character hexadecimal string. If the VVMFactoryTrust hasn't been written or if it's not supported, the value of androidboot.sdv.vvmfactorytrust must be the two-character string 00.

Bootloader support for SDV VM identity and attestation Stay organized with collections Save and categorize content based on your preferences.

Additional kernel parameters

androidboot.sdv.boot_mode

androidboot.sdv.vvmfactorytrust

Bootloader support for SDV VM identity and attestation