github/kata-containers
1
0
Fork 1
mirror of https://github.com/kata-containers/kata-containers.git synced 2025-08-21 01:13:56 +00:00
Code Issues Projects Releases Wiki Activity

packaging: Build TDX specific guest image

Browse Source 
The specific TDX image relies on having EAA KBC, instead of using the
default `offline_fs_kbc`.

This image is, with this commit, built and distributed, but not yet used
by TDX specific configurations, which will be done in a follow-up
commit.

Signed-off-by: Fabiano Fidêncio <fabiano.fidencio@intel.com>
This commit is contained in:
Fabiano Fidêncio 2022-11-01 13:53:02 +01:00
parent 05db886e27
commit c72fdaf916
4 changed files with 18 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
.github/workflows/cc-payload-after-push.yaml vendored
View File

@ -20,6 +20,7 @@ jobs:
- cc-sev-ovmf - cc-sev-ovmf
- cc-sev-rootfs-initrd - cc-sev-rootfs-initrd
- cc-tdx-kernel - cc-tdx-kernel
- cc-tdx-rootfs-image
- cc-tdx-qemu - cc-tdx-qemu
- cc-tdx-td-shim - cc-tdx-td-shim
- cc-tdx-tdvf - cc-tdx-tdvf

1
.github/workflows/cc-payload.yaml vendored
View File

@ -20,6 +20,7 @@ jobs:
- cc-sev-ovmf - cc-sev-ovmf
- cc-sev-rootfs-initrd - cc-sev-rootfs-initrd
- cc-tdx-kernel - cc-tdx-kernel
- cc-tdx-rootfs-image
- cc-tdx-qemu - cc-tdx-qemu
- cc-tdx-td-shim - cc-tdx-td-shim
- cc-tdx-tdvf - cc-tdx-tdvf

6
tools/packaging/kata-deploy/local-build/Makefile
View File

@ -91,7 +91,8 @@ cc: cc-cloud-hypervisor-tarball \
cc-tdx-td-shim-tarball \ cc-tdx-td-shim-tarball \
cc-tdx-tdvf-tarball \ cc-tdx-tdvf-tarball \
cc-sev-ovmf-tarball \ cc-sev-ovmf-tarball \
cc-sev-rootfs-initrd-tarball cc-sev-rootfs-initrd-tarball \
cc-tdx-rootfs-tarball
cc-cloud-hypervisor-tarball: cc-cloud-hypervisor-tarball:
${MAKE} $@-build ${MAKE} $@-build
@ -108,6 +109,9 @@ cc-rootfs-image-tarball:
cc-sev-rootfs-initrd-tarball: cc-sev-kernel-tarball cc-sev-rootfs-initrd-tarball: cc-sev-kernel-tarball
${MAKE} $@-build ${MAKE} $@-build
cc-tdx-rootfs-image-tarball:
${MAKE} $@-build
cc-shim-v2-tarball: cc-shim-v2-tarball:
${MAKE} $@-build ${MAKE} $@-build

12
tools/packaging/kata-deploy/local-build/kata-deploy-binaries.sh
View File

@ -118,10 +118,11 @@ install_cc_clh() {
install_cc_image() { install_cc_image() {
export AA_KBC="${1:-offline_fs_kbc}" export AA_KBC="${1:-offline_fs_kbc}"
image_type="${2:-image}" image_type="${2:-image}"
image_initrd_suffix="${3:-""}"
export KATA_BUILD_CC=yes export KATA_BUILD_CC=yes
info "Create CC image configured with AA_KBC=${AA_KBC}" info "Create CC image configured with AA_KBC=${AA_KBC}"
"${rootfs_builder}" --imagetype="${image_type}" --prefix="${cc_prefix}" --destdir="${destdir}" "${rootfs_builder}" --imagetype="${image_type}" --prefix="${cc_prefix}" --destdir="${destdir}" --image_initrd_suffix="${image_initrd_suffix}"
} }
install_cc_sev_image() { install_cc_sev_image() {
@ -130,6 +131,13 @@ install_cc_sev_image() {
install_cc_image "${AA_KBC}" "${image_type}" install_cc_image "${AA_KBC}" "${image_type}"
} }
install_cc_tdx_image() {
AA_KBC="eaa_kbc"
image_type="image"
image_suffix="tdx"
install_cc_image "${AA_KBC}" "${image_type}" "${image_suffix}"
}
#Install CC kernel asset #Install CC kernel asset
install_cc_kernel() { install_cc_kernel() {
export KATA_BUILD_CC=yes export KATA_BUILD_CC=yes
@ -359,6 +367,8 @@ handle_build() {
cc-sev-rootfs-initrd) install_cc_sev_image ;; cc-sev-rootfs-initrd) install_cc_sev_image ;;
cc-tdx-rootfs-image) install_cc_tdx_image ;;
cc-shim-v2) install_cc_shimv2 ;; cc-shim-v2) install_cc_shimv2 ;;
cc-virtiofsd) install_cc_virtiofsd ;; cc-virtiofsd) install_cc_virtiofsd ;;