Effective in 2026, to align with our trunk stable development model and ensure platform stability for the ecosystem, we will publish source code to AOSP in Q2 and Q4. For building and contributing to AOSP, we recommend utilizing android-latest-release instead of aosp-main. The android-latest-release manifest branch will always reference the most recent release pushed to AOSP. For more information, see Changes to AOSP.

SDV core bootloader

In addition to what's required of an [Android bootloader (ABL)][6], the SDV Core Bootloader (or the guest "loader" running on the host within the Hypervisor, if there's no ABL on the guest side) needs to perform the following:

Verify SDV images as per Android Verified Boot 2.0.
Generate the Android HLOS CDI layer.

Kernel parameters

The SDV Core bootloader must pass the kernel parameters described in the following sections.

androidboot.verifiedbootstate

In SDV, it's not possible to set a custom root of trust for Android Verified boot. For example, by the owner of the vehicle. Therefore, in SDV Core there are no yellow androidboot.verifiedbootstate. Possible values are:

green: bootloader is locked
orange: bootloader is unlocked

androidboot.sdv.instance_name

The SDV VM instance name.

androidboot.sdv.boot_mode

In addition to being present in the Android HLOS CDI certificate, the SDV Boot Mode is also passed to SDV Core as a kernel parameter named androidboot.sdv.boot_mode.

Possible values are locked and unlocked.

androidboot.sdv.vvmfactorytrust

The VVMFactoryTrust, a SHA-256 hash value, encoded as a hexadecimal string of 64 characters, case-insensitive. If the VVMFactoryTrust hasn't been written , or if it's not supported, the value of androidboot.sdv.vvmfactorytrust should be the string 00 (two characters).

SDV core bootloader Stay organized with collections Save and categorize content based on your preferences.