Merge pull request #55 from dongx1x/configfs-tsm

Author: wenhuizhang

deployment/kubernetes/manifests/ccnp-server-deployment.yaml

@@ -29,6 +29,10 @@ spec:
         resources:
           limits:
             tdx.intel.com/tdx-guest: 1
+        securityContext:
+          privileged: true
+          runAsGroup: 0
+          runAsUser: 0
         volumeMounts:
           - name: proc
             mountPath: /proc
@@ -40,6 +44,8 @@ spec:
             mountPath: /run/kernel/security/
           - name: vsock-port
             mountPath: /etc/tdx-attest.conf
+          - name: configfs
+            mountPath: /sys/kernel/config/
       volumes:
         - name: proc
           hostPath:
@@ -61,5 +67,9 @@ spec:
           hostPath:
             path: /etc/tdx-attest.conf
             type: File
+        - name: configfs
+          hostPath:
+            path: /sys/kernel/config/
+            type: Directory
       nodeSelector:
         intel.feature.node.kubernetes.io/tdx-guest: "enabled"