diff --git a/tools/packaging/kernel/build-kernel.sh b/tools/packaging/kernel/build-kernel.sh index 81865250d0..100d1b9b18 100755 --- a/tools/packaging/kernel/build-kernel.sh +++ b/tools/packaging/kernel/build-kernel.sh @@ -127,7 +127,10 @@ get_tee_kernel() { mkdir -p ${kernel_path} [ -z "${kernel_url}" ] && kernel_url=$(get_from_kata_deps "assets.kernel.${tee}.url") - kernel_tarball="${version}.tar.gz" + + kernel_tarball="linux-${version}.tar.gz" + tarball_name=$(get_from_kata_deps "assets.kernel.${tee}.tarball") + [ -z "$tarball_name" ] || kernel_tarball="$tarball_name" if [ ! -f "${kernel_tarball}" ]; then curl --fail -OL "${kernel_url}/${kernel_tarball}" @@ -553,7 +556,8 @@ main() { esac elif [[ "${conf_guest}" != "" ]]; then #If specifying a tag for kernel_version, must be formatted version-like to avoid unintended parsing issues - kernel_version=$(get_from_kata_deps "assets.kernel.${conf_guest}.tag") + kernel_version=$(get_from_kata_deps "assets.kernel.${conf_guest}.version" 2>/dev/null || true) + [ -n "${kernel_version}" ] || kernel_version=$(get_from_kata_deps "assets.kernel.${conf_guest}.tag") else kernel_version=$(get_from_kata_deps "assets.kernel.version") fi diff --git a/tools/packaging/kernel/configs/fragments/x86_64/sev/sev.conf b/tools/packaging/kernel/configs/fragments/x86_64/sev/sev.conf index 32a43f2bbf..baa44878ac 100644 --- a/tools/packaging/kernel/configs/fragments/x86_64/sev/sev.conf +++ b/tools/packaging/kernel/configs/fragments/x86_64/sev/sev.conf @@ -1,12 +1,9 @@ # AMD Secure Encrypted Virtualization (SEV) CONFIG_AMD_MEM_ENCRYPT=y -CONFIG_AMD_MEM_ENCRYPT_ACTIVE_BY_DEFAULT=y -CONFIG_CRYPTO_DEV_SP_PSP=y -CONFIG_CRYPTO_DEV_CCP=y -CONFIG_SECURITYFS=y -CONFIG_VIRT_DRIVERS=y CONFIG_EFI=y CONFIG_EFI_SECRET=m +CONFIG_EFI_STUB=y CONFIG_MODULE_SIG=y -CONFIG_MODULES=y \ No newline at end of file +CONFIG_MODULES=y +CONFIG_VIRT_DRIVERS=y \ No newline at end of file diff --git a/tools/packaging/kernel/kata_config_version b/tools/packaging/kernel/kata_config_version index 49541f7210..5595fa46c0 100644 --- a/tools/packaging/kernel/kata_config_version +++ b/tools/packaging/kernel/kata_config_version @@ -1 +1 @@ -94 +95 diff --git a/versions.yaml b/versions.yaml index 53bd0ae544..164969397b 100644 --- a/versions.yaml +++ b/versions.yaml @@ -158,11 +158,11 @@ assets: description: "Linux kernel that supports TDX" url: "https://github.com/intel/linux-kernel-dcp/archive/refs/tags" tag: "SPR-BKC-PC-v9.6" + tarball: "SPR-BKC-PC-v9.6.tar.gz" sev: - description: "Linux kernel with efi_secret support" - url: "https://github.com/confidential-containers-demo/\ - linux/archive/refs/tags/" - tag: "efi-secret-v5.17-rc6" + description: "Linux kernel that supports SEV" + url: "https://cdn.kernel.org/pub/linux/kernel/v5.x/" + version: "v5.19.2" kernel-experimental: description: "Linux kernel with virtio-fs support"