I installed the OVMF package from plucky-proposed:
ovmf/plucky-proposed,now 2025.02-3ubuntu2.1 all [installed,automatic]
and ran a similar command as before:
sudo qemu-system-x86_64 \
-enable-kvm \
-nographic \
-snapshot \
-cpu EPYC-v4 \
-machine q35 \
-smp 6 \
-m 6G \
-machine memory-encryption=sev0,vmport=off \
-object memory-backend-memfd,id=ram1,size=6G,share=true,prealloc=false \
-machine memory-backend=ram1 \
-object
sev-snp-guest,id=sev0,policy=0x30000,cbitpos=51,reduced-phys-bits=1,kernel-hashes=on
\
-kernel "$VMLINUZ" \
-append "root=/dev/vda1 console=ttyS0" \
-drive "if=virtio,format=qcow2,file=$IMAGE" \
-drive "if=virtio,format=raw,file=cloud-init.img" \
-bios /usr/share/ovmf/OVMF.amdsev.fd \
-net nic,model=e1000 -net user,hostfwd=tcp::2222-:22
I verified that the VM was booting as expected and once on the guest, I
verified that SEV-SNP was correctly marked as enabled in the logs:
Aug 20 08:12:55 ubuntu kernel: Memory Encryption Features active: AMD SEV
SEV-ES SEV-SNP
Aug 20 08:12:55 ubuntu kernel: SEV: Status: SEV SEV-ES SEV-SNP
Aug 20 08:12:55 ubuntu kernel: SEV: Using SNP CPUID table, 29 entries present.
Aug 20 08:12:55 ubuntu kernel: SEV: SNP running at VMPL0.
Aug 20 08:12:55 ubuntu kernel: SEV: SNP guest platform device initialized.
I also verified that I was able to load the sev-guest module:
$ ls /dev/sev-guest
/dev/sev-guest
** Tags removed: verification-needed verification-needed-plucky
** Tags added: verification-done verification-done-plucky
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2106771
Title:
Add support for QEMU AMD SNP VM Measured linux boot with the addition
of new AMDSEV OVMF.fd
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/edk2/+bug/2106771/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
