From 96d922fc27b84d6e2c5b8257a9e0f5ae703affb0 Mon Sep 17 00:00:00 2001 From: Mikko Ylinen Date: Fri, 9 May 2025 16:03:04 +0300 Subject: [PATCH] kernel: disable virtio MMIO for confidential guests As the comment in the fragment suggests, this is for the firecracker builds and not relevant for confidential guests, for example. Exlude mmio.conf fragment by adding the new !confidential tag to drop virtio MMIO transport for the confidential guest kernel (as virtio PCI is enough for the use cases today). Signed-off-by: Mikko Ylinen --- tools/packaging/kernel/configs/fragments/common/mmio.conf | 1 + 1 file changed, 1 insertion(+) diff --git a/tools/packaging/kernel/configs/fragments/common/mmio.conf b/tools/packaging/kernel/configs/fragments/common/mmio.conf index 5afc0b10b4..afaec1a379 100644 --- a/tools/packaging/kernel/configs/fragments/common/mmio.conf +++ b/tools/packaging/kernel/configs/fragments/common/mmio.conf @@ -1,3 +1,4 @@ +# !confidential # mmio devices are required for firecracker CONFIG_VIRTIO_MMIO=y CONFIG_VIRTIO_MMIO_CMDLINE_DEVICES=y