This is the minimal TEE-enabled profile that serves as a foundation for other specialized images. It provides basic AMD SEV-SNP/TDX support with essential security features.
- Basic AMD SEV-SNP/TDX support
- TPM2 integration
- Minimal system footprint
- meta-confidential-compute: Core confidential computing support
- meta-openembedded: Basic system utilities and libraries
- poky: Base Yocto distribution
- Image Type:
cvm-image-azure - Package Format: IPK
- Supported Machine: tdx
- Distribution: cvm
The following environment variables can be set to customize the build:
DEBUG_TWEAKS_ENABLED: Enable debug features (default: 1)DISK_ENCRYPTION_KEY_STORAGE: Configure disk encryption key storage location (optional)TARGET_LUN: The logical unit number of the attached disk (optiona, default: 10)
make image-baseFor measurement generation:
make measurements-baseBuild artifacts will be available in reproducible-build/artifacts-base/.