[Bug 2106771] Re: Add support for QEMU AMD SNP VM Measured linux boot with the addition of new AMDSEV OVMF.fd

Harika Nittala Thu, 10 Apr 2025 12:35:51 -0700

As a workaround fix, I used the built AMDSEV OVMF.fd from the OVMF
source code extracted from the Ubuntu Plucky Package.


I built the AMDSEV-SNP VM OVMF from the OVMF plucky ubuntu package using
the following steps:

Step 1: Get OVMF Source code from the Ubuntu Plucky Package
        apt-get source ovmf


Step 2: Build AMD-SNP OVMF for SNP VM measure direct boot based on the below 
link:
        
https://github.com/tianocore/tianocore.github.io/wiki/Common-instructions

        a) Pre-Install OVMF Dependencies to setup EDK2 Build Environment
           
            sudo apt install build-essential uuid-dev iasl git  nasm  
python-is-python3
        
        b) Compile build tools
            
 
            $ cd edk2-2025.02/
            $ make -C BaseTools
            $ export EDK_TOOLS_PATH=$HOME/edk2-2025.02/BaseTools
            $ ./edksetup.sh 
   
          When the above steps are done, we can work in the edk2 directory for 
code development.

        c) Build the EDK II BaseTools
              
            $ make -C edk2/BaseTools

        d) Setup build shell environment

           $ cd edk2-2025.02/
           $ export EDK_TOOLS_PATH=$HOME/src/edk2/BaseTools

            # Below command populates edk2/Conf directory with the default 
configuration files
           $ . edksetup.sh BaseTools

        e) Modify Conf files to build AMDSEV OVMF.fd firmwar for SNP remote 
attestation and secret injection purposes.
          
           # Create GRUB file under AmdSev to build AmdSev firmware without 
error
           $ touch OvmfPkg/AmdSev/Grub/grub.efi

           # Modify Conf/target.txt to build AMDSEV Firmware
           # In the Conf/target.txt,
             # Set the build platform, target architecture, tool chain, and 
multi-threading options as follows:

           ACTIVE_PLATFORM       = OvmfPkg/AmdSev/AmdSevX64.dsc
           TARGET_ARCH           = X64
           TOOL_CHAIN_TAG        = GCC5

           # Build AMDSEV OVMF Firmware 
            build

           # After build, OVMF firmware for SNP VM measured boot is located at 
Build/AmdSev/DEBUG_GCC5/FV/OVMF.fd inside edk2 source directory
 


            
   
            


** Attachment added: "This screenshot shows the ubuntu OVMF fix for the 
successful SNP QEMU direct measure linux boot"
   
https://bugs.launchpad.net/ubuntu/+source/edk2/+bug/2106771/+attachment/5870969/+files/plukcy-ovmf-fix-in-snp-qemu-cmdline.png

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2106771

Title:
  Add support for QEMU AMD SNP VM Measured linux boot with the addition
  of new AMDSEV OVMF.fd

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/edk2/+bug/2106771/+subscriptions


-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 2106771] Re: Add support for QEMU AMD SNP VM Measured linux boot with the addition of new AMDSEV OVMF.fd

Reply via email to