From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail05.groups.io (mail05.groups.io [45.79.224.7]) by spool.mail.gandi.net (Postfix) with ESMTPS id 38D869415BC for ; Tue, 28 Jan 2025 09:09:13 +0000 (UTC) DKIM-Signature: a=rsa-sha256; bh=b+C8AzOZ4vQ9AbZQIEpPyPGEvBHHcFzUgeRetoWYIEU=; c=relaxed/simple; d=groups.io; h=Message-ID:Date:User-Agent:From:Subject:To:MIME-Version:Precedence:List-Subscribe:List-Help:Sender:List-Id:Mailing-List:Delivered-To:Resent-Date:Resent-From:Reply-To:List-Unsubscribe-Post:List-Unsubscribe:Content-Type:Content-Language; s=20240830; t=1738055353; v=1; x=1738314552; b=DCJWrD3qgH/jMY3ZTy/GtoKjxecErEFic1E+Nbg0ueRzpJ1NvEpKiOKq8ioT+pIpSuS3v/S0 dyh5VbmYwFqx3R8m35wdrALcpZoJuVeFKT8iVhNgV/2KHurjaOgINV8Z9/xUAbUcIFGU/7y+gOx mAJx2jjfzNetG6PBevVcObIEq43z9OFyrp/yHkl2CVJJesR9b19eZzeqJl805U4NUwILaat4LL8 27OIff7N3mR9/5PDRQyXGHfBZrcpKm+oVxgGo3ayknxBR8Eyvf1aUHXLrcFL+Kk/l7Zvc66e5zb Kl5yrHVguIvtPhFUhVAEYaLZ4SkV7xjNcOH4lXHdgoang== X-Received: by 127.0.0.2 with SMTP id ySRkYY7687511xle2OQVlbJ6; Tue, 28 Jan 2025 01:09:12 -0800 X-Received: from NAM10-MW2-obe.outbound.protection.outlook.com (NAM10-MW2-obe.outbound.protection.outlook.com [40.107.94.67]) by mx.groups.io with SMTP id smtpd.web10.13663.1738055351604933152 for ; Tue, 28 Jan 2025 01:09:11 -0800 X-Received: from IA1PR12MB6460.namprd12.prod.outlook.com (2603:10b6:208:3a8::13) by SA3PR12MB7974.namprd12.prod.outlook.com (2603:10b6:806:307::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8377.22; Tue, 28 Jan 2025 09:09:08 +0000 X-Received: from IA1PR12MB6460.namprd12.prod.outlook.com ([fe80::c819:8fc0:6563:aadf]) by IA1PR12MB6460.namprd12.prod.outlook.com ([fe80::c819:8fc0:6563:aadf%6]) with mapi id 15.20.8377.021; Tue, 28 Jan 2025 09:09:08 +0000 Message-ID: <08f57d8f-c0e3-4e76-b65f-34dc61d03381@amd.com> Date: Tue, 28 Jan 2025 14:39:04 +0530 User-Agent: Mozilla Thunderbird From: "Aithal, Srikanth via groups.io" Subject: [edk2-devel] edk2 master: AMD SEV-ES guest boot with OvmfPkgX64 fails To: "devel@edk2.groups.io" , sachinganesh@ami.com X-ClientProxiedBy: PN3PR01CA0112.INDPRD01.PROD.OUTLOOK.COM (2603:1096:c01:96::20) To IA1PR12MB6460.namprd12.prod.outlook.com (2603:10b6:208:3a8::13) MIME-Version: 1.0 X-MS-PublicTrafficType: Email X-MS-TrafficTypeDiagnostic: IA1PR12MB6460:EE_|SA3PR12MB7974:EE_ X-MS-Office365-Filtering-Correlation-Id: 08eab5b4-51bd-4f7b-8f9d-08dd3f7b6c28 X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam-Message-Info: =?utf-8?B?YjVqSVU3N0NLcGJjZE9jU281b25QM0FQeWtUVlVPeW12QUtQdzBXQk5HSXI3?= =?utf-8?B?UlYyc0g2OG5KWDJiS1lvYTRlRHdkc3ZlcEh4WDdFMVFLdFIwWUpzelBRbXFp?= =?utf-8?B?K1RrRG50K2EvL2FCTldUbS8rcHJsZ05yU3d3d0Rhek0welRHWnlJcWFXNnQv?= =?utf-8?B?T2g0cDM4QjFpS0t2MjVKQ1R5SlNBSHlEMWtzZXBtOFJhY2ZlQXo3Z25VTXho?= =?utf-8?B?RmFnZGdDN0tsQllGbFd5VzNCd0wwWE1PbnFKN1pzdjkrR3ZsRmNDMVA5T2di?= =?utf-8?B?aXU5V0hLbnRldXZYbm9WbHZqYmhHcFNFS2VMaGg1RzRuSzY0NXVidVNDcHo3?= =?utf-8?B?UEY4VUxZZ010MzFackFQZVU5bmsrNEF4NmQ5RENDakgxNVZoSFJLNGx4MUdn?= =?utf-8?B?SGpoK1lQcVRxN0xUVkZOY1FlRFRQSk4yWTkxRVh4eGxZcDErbXFPTU5YbS9i?= =?utf-8?B?RzFIdGk1dlNBek9mL0tuT3FRVlEyaFRqREx6ZkdjSE1LSHUydlNlZDkwWEdk?= =?utf-8?B?SERlRVJDbUNKcDZuZkFBUDUyOU5xYTBoUlFtdkU3UzlwekxET1M5NGFleFRE?= =?utf-8?B?YVlkWElsNkplUU41MG1TYjlrcGE2T0V1S25wd3NjeUV5YTFSU3pUQmVycUNq?= =?utf-8?B?REErdVRzVjY2UFVEK3FPSG55Sm9pWllrRXREZjU1MUlDZG5tdkUrSFpVSGx6?= =?utf-8?B?VHBiTmJnbTR4RzlVTWxVZEduNmNGT1ZDaEk3OWsxb2F3OXEzeVh5TmozYnhC?= =?utf-8?B?Tll5ZHQ2ZThwWWo4Vml6UjZyUVNTK09pSzdxQ2hCVklUOFBWWjlNYnh0L3Zj?= =?utf-8?B?NjBISEFmUFd1YXBDbHdTUXFrS2ZRU0g0Y0F1R29IYU0vTlZVdzZoZ1JrZ2NX?= =?utf-8?B?RkdnWmZWSmF3R0REaU0xTFl6SFFHeHJWYWpJeEMyVk16QVluNU55WkRTTzZv?= =?utf-8?B?ZWtFY1VUWTVCRWViMjJrWllzZ0tOSktRd1kxUTMyMllxeW1ZWjA4dm5sYmJu?= =?utf-8?B?dWM2dHhXUEJkTmtLZitiUWFMalpDRG90allML3BNOU16RTJnRDEwcGZ0bnRB?= =?utf-8?B?SG9UR0thYjVNVllOUEJiTVZuVDd0ajgyTUV4dks4SUJvSVZZZjQ2L0VwZXZZ?= =?utf-8?B?Y1NkYUxhRkp6c1F5R1pKalhNWWE1cnlGQThRbmF4ZStnbVhBd0pkT0phNlJi?= =?utf-8?B?UmZoV21LU3dvbHNBdVRPYTQwN2F0QzhXZEpWQ1h4dXZiTnlFL1JsUkYzcHVX?= =?utf-8?B?NXBoc3JNNWgwMXAxVTdJejN1ei9ZelFOK2wyRG1Pai96VlBIY1hhaDFLYXl5?= =?utf-8?B?OHdjVEtwMDQxWXBWSDA2OGRGd2dIck1lYzg4TEFYZUc1ZDhUS2h3ZU1hbXJM?= =?utf-8?B?L04vSUdWVjNVNzhYaDZjdXJVVnJYaFhxekdGU3Y2Y0RuUlRwaFZEa3ZUQ1A4?= =?utf-8?B?cE1lb2o0Z2gvVkxrb1owK241K3NySG81bUV2SldlZGtIbkVaYXJDdW9haFd1?= =?utf-8?B?RURXbElscXRlM3B0OHg5WWJrRkh1b2lOcGNyc0hPR09hYzZUS2VaUnRrVGth?= =?utf-8?B?Vmdvb1ZGRGJ1UEh4K2hHbExzTkNVVis0d3RqQXc4eHFQNWVxMGo0bnNSUWZC?= =?utf-8?B?LzBVUmllWEdtZUYwWWI1a3U1VVhtRWh5bVNKcXFXVmNVQ3FRdjZJOVd0QVc2?= =?utf-8?B?SnRNYzJPN1NtUnVyeHNtV3FzY0w2S2pRRlkzdXI3cTVKTDBtMG5aOUoyVWVZ?= =?utf-8?B?aUdyY3h0SWp2bjhCTVAwaWxpVlRCV2ZQWjUrWGs4VmU0V0phNHRVMXhMMGtv?= =?utf-8?B?aU9PVHBmSWEyL2lvRDhTNnI3bGtFQjlhMkFHQXVGSXdaTCtLWS9PTGpKbFE1?= =?utf-8?Q?k4BL8j4QbDxPw?= X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-MessageData-0: =?utf-8?B?RFdoYnZpT1dyUnQxSEd6bHJsWGJLSEtuWWkyYzdoQ1BTS2ZQL1FXcDNGSi9w?= =?utf-8?B?MVNlTmQ1eC9aLzJqSDZsNzhhRVFsWTZlWXN1b1N4WmVSMHEwN2F5M0JzVWZC?= =?utf-8?B?UUVFMzdoSVRtSWpXbUJad25UWFZOUjkrbWY0WWlFcHIrWW5wNW1MY2FqL2pL?= =?utf-8?B?MGE3V2JHckFDWHFjaloyMk1NaHNCampzMzZqM2tuZGFEcmlPODJndVB6Z0h0?= =?utf-8?B?RnVNZXRQNUpGUWtVeWdBNG04ck13dWJxZTlOWlFNUWVTV1Jrc28rRnZhVWtp?= =?utf-8?B?eXhMRHVuekdHb1RHMmxuL3lWelNLc3p5ME1RaVJMbGpVQ1dXS1VTRkp4dDZm?= =?utf-8?B?TG9UZ21IbHorUjJVaWtWOStiZk51YVZwRDU0YytRRDQ5TXZvZlBDSDRnYTZB?= =?utf-8?B?RklJSlgxRE1pU252Ky96VDJ3d3NCSTUyUXZBZ3Nka3JiczMwOXMzMUw0ZGJX?= =?utf-8?B?WHE3UlVCYXc3WmVyeGEyVzFzK2JuZXpMeHlqTXkxNFpaV2FDdm1RMmE3K2tB?= =?utf-8?B?SGxKTi96cDlRRmx5aWNrVjJEa2VEdmlqWExzc3FGQUNMSVR0SWpXYnQxTzdq?= =?utf-8?B?WENxQWhnNmVUMkNvaThXWUUwNnZTanQ4eUJlRHBJQ1pWd3dzd2NIMEZ4Si94?= =?utf-8?B?N0ttRmpmV3NZck9QWFFndkJWSU5qanZhbXNrQjJhL2l5cHVQK0Y2c1Q3QUI2?= =?utf-8?B?TG5OSE42WG9XMll2a0VzNjV1YyszaXZDelFsYXNEMDVXdU9JWmpSanRpWEln?= =?utf-8?B?enVIUzcxYTQ1ZnVQR0ZmdVNWcmRreTZ1QXBkckl5QlZ0M3pZWjE3VWY5aWVo?= =?utf-8?B?K3Zpd3NHbjB4RGd6TG5tMDR2OFZIM281YzBRSEEwdnhNcElabXhKY0lRT3lx?= =?utf-8?B?L1NOdGljWVFiQ1U4WTExektmQzdHRHNQK1RPOEVlL0tHYXpTYkJRYVdSak9I?= =?utf-8?B?NWhwSzRkeEZqVUMxOEVFL3ZJd0YyM0w3SEprMitOMEoydENhMVFLMW1Pc3Zs?= =?utf-8?B?OFpGZjNIWnpuTk5FM3c4L0N2VGprdzhXUmhTRi9zZXY1NlZ1SThZVW91WHpP?= =?utf-8?B?NWkzMHVRZ1R2WnhWUStISlJ1VWJ1K3NwWUk5SldWV0szUHRrYi8wUVJyd0xh?= =?utf-8?B?cjMzZFZjU1lNU0JFOGhZWnRGcG5XYmw1Mmc1VnFZdEdaZGxkdTRFVENGK1Az?= =?utf-8?B?Ukh6NEJlWHlQS1lhY2JNUkxucFE5WWdRUGR0ZEFFVURhOXI3NzNFSUdkQUts?= =?utf-8?B?TjdFejhPMUwydDNjdVlOL1kvQU5WajcwamRtNU5CTnhtbTBKaDl3T0c5TDRC?= =?utf-8?B?ZG1UOXdhYjMzb1NqbnBjWTVoRXE4ZXBSK1owOEpKNC9PL3g3Z1ZzZWlaS0xr?= =?utf-8?B?b0NIK1BrTFEraFVhYkR5Z0JRaXZwaWlrd0dmSHFPeHNvb29DcFMzOFR5RDlZ?= =?utf-8?B?bEdITm9VMHNjT1hYdVJKaVJ2ZzVtS0dsU2Jwb29CdFcycEd1dWt3eU13VVBC?= =?utf-8?B?bXJ0enczMlUyTFFWczBJQjI3cS95djBLTWU1aCtzaGcvVUdSMjNwWkNObEZm?= =?utf-8?B?UmxNbmtzK0U3RWRZVFd0eVZqZ2FybWYvVHNwaFJndmQrQ2YxanY2c25tNE9G?= =?utf-8?B?RmxvcFJGcnJDSDNoUGFpVk1wSFNNbG1YdXdJdTR1MGFaSEovUzh3OWJSV1RG?= =?utf-8?B?UUNzUHRIbDhxNHFuWHdsQlY2SXROb0t5dVlVTVVKRk9CcEM5QjI3NitoVjIw?= =?utf-8?B?c0NheDBNdmlNUmNCZjU5UnhaQkJHVXhNSS9mWEkvVlpTalh1ZzdkRTZvVmRm?= =?utf-8?B?NzlQanp1dHdTSmlaZ0gvSk9nNEEyNUdPcGRsenVrN1hLNzdtbC9MNkxRNXUr?= =?utf-8?B?NjJIUHIrK3BOcjl1c2ExeVhaUEhaQ1ZKLzdCNEpqVUlPMWRXV2VzUjg3S2hh?= =?utf-8?B?YkpseW1Bajc3WE1pRE9rWEFIRFBhUzJoRHVLU1JJYlloWUNHVlFxT2laNTBH?= =?utf-8?B?S3cwaU5qZ1l5L1Z3cmpHOGNhdDBibmZJZGZmUVhCYkwrMDMvM0gzTXdCVGZx?= =?utf-8?B?U0tSWEcwRk5yVWhiRHlaaHZNelRZdTltampaUldZakFFRjQ5bDhPdDU1cEtt?= =?utf-8?Q?H1ujVYOoSmLjQVBWd5/e3o/lA?= X-OriginatorOrg: amd.com X-MS-Exchange-CrossTenant-Network-Message-Id: 08eab5b4-51bd-4f7b-8f9d-08dd3f7b6c28 X-MS-Exchange-CrossTenant-AuthSource: IA1PR12MB6460.namprd12.prod.outlook.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-OriginalArrivalTime: 28 Jan 2025 09:09:08.7276 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: 3dd8961f-e488-4e60-8e11-a82d994e183d X-MS-Exchange-CrossTenant-MailboxType: HOSTED X-MS-Exchange-CrossTenant-UserPrincipalName: 7d+BeewOJvLFc0j5Ex1W0ld+xsrqHvPs0Cwtvu/KW3kKy63Kl7SCPyMI1DqorZgxH8fKFB7TH5FIgZPtNJ5Hhw== X-MS-Exchange-Transport-CrossTenantHeadersStamped: SA3PR12MB7974 Precedence: Bulk List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Resent-Date: Tue, 28 Jan 2025 01:09:11 -0800 Resent-From: srikanth.aithal@amd.com Reply-To: devel@edk2.groups.io,srikanth.aithal@amd.com List-Unsubscribe-Post: List-Unsubscribe=One-Click List-Unsubscribe: X-Gm-Message-State: YvGnBWuiLURVwHaleoS7xs2mx7686176AA= Content-Type: multipart/alternative; boundary="------------jn44oAsG2Cd0oDvMaxTZNqzM" Content-Language: en-US X-GND-Status: LEGIT Authentication-Results: spool.mail.gandi.net; dkim=pass header.d=groups.io header.s=20240830 header.b=DCJWrD3q; dmarc=pass (policy=none) header.from=groups.io; spf=pass (spool.mail.gandi.net: domain of bounce@groups.io designates 45.79.224.7 as permitted sender) smtp.mailfrom=bounce@groups.io --------------jn44oAsG2Cd0oDvMaxTZNqzM Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit Hello, With current edk2/master booting AMD SEV-ES guest with OvmfPkgX64 package is failing with below error: [    0.240243] Memory Encryption Features active: AMD SEV SEV-ES [    0.241170] SEV: Status: SEV SEV-ES [    0.241783] pid_max: default: 32768 minimum: 301 [    0.243627] BUG: unable to handle page fault for address: 000000007f6e1331 [    0.243629] #PF: supervisor instruction fetch in kernel mode [    0.243630] #PF: error_code(0x0010) - not-present page [    0.243631] PGD 8000001933063 P4D 8000001933063 PUD 8000001934063 PMD 8000001938063 PTE 800007f6e1063 [    0.243635] Oops: Oops: 0010 [#1] PREEMPT SMP NOPTI [    0.243637] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.11.2-7aa21fec18-11cb77746de #1 [    0.243640] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS unknown 02/02/2022 [    0.243641] RIP: 0010:0x7f6e1331 [    0.243643] Code: Unable to access opcode bytes at 0x7f6e1307. [    0.243643] RSP: 0000:ffffffff96403b80 EFLAGS: 00010097 ORIG_RAX: 0000000000000010 [    0.243645] RAX: 0000000000000001 RBX: ffffffff96403c40 RCX: ffffffff96403c40 [    0.243646] RDX: 00000000000003fd RSI: ffffffff96403d40 RDI: 0000000000000001 [    0.243647] RBP: ffffffff96403c00 R08: 0000000000000001 R09: 000000007f6e2c74 [    0.243648] R10: 0000000000000002 R11: 0000000000000000 R12: 000000000000001f [    0.243649] R13: ffffffff96403c5f R14: 00000000000003fd R15: ffffffff96403bb8 [    0.243650] FS:  0000000000000000(0000) GS:ffff933b3cc00000(0000) knlGS:0000000000000000 [    0.243652] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [    0.243653] CR2: 000000007f6e1331 CR3: 000800000196e000 CR4: 00000000003506f0 [    0.243655] Call Trace: [    0.243656]  [    0.243657]  ? __die+0x1b/0x60 [    0.243662]  ? page_fault_oops+0x151/0x4d0 [    0.243667]  ? exc_page_fault+0x64/0x140 [    0.243670]  ? vc_raw_handle_exception+0x287/0x2c0 [    0.243676]  ? kernel_exc_vmm_communication+0x4d/0x100 [    0.243679]  ? asm_exc_vmm_communication+0x31/0x70 [    0.243685]  ? __alloc_pages_noprof+0x162/0x300 [    0.243691]  ? __cpa_process_fault+0x463/0x6f0 [    0.243698]  ? srso_return_thunk+0x5/0x5f [    0.243701]  ? __efi_call+0x28/0x30 [    0.243705]  ? srso_return_thunk+0x5/0x5f [    0.243706]  ? efi_set_virtual_address_map+0x95/0x1e0 [    0.243710]  ? sev_es_efi_map_ghcbs+0x8c/0xd0 [    0.243714]  ? efi_enter_virtual_mode+0x391/0x470 [    0.243718]  ? start_kernel+0x457/0x750 [    0.243720]  ? x86_64_start_reservations+0x14/0x30 [    0.243722]  ? x86_64_start_kernel+0xce/0xe0 [    0.243723]  ? common_startup_64+0x13e/0x141 [    0.243727]  [    0.243728] Modules linked in: [    0.243730] CR2: 000000007f6e1331 [    0.243731] ---[ end trace 0000000000000000 ]--- [    0.243732] RIP: 0010:0x7f6e1331 *[    0.243733] Code: Unable to access opcode bytes at 0x7f6e1307.* [    0.243734] RSP: 0000:ffffffff96403b80 EFLAGS: 00010097 ORIG_RAX: 0000000000000010 [    0.243735] RAX: 0000000000000001 RBX: ffffffff96403c40 RCX: ffffffff96403c40 [    0.243736] RDX: 00000000000003fd RSI: ffffffff96403d40 RDI: 0000000000000001 [    0.243737] RBP: ffffffff96403c00 R08: 0000000000000001 R09: 000000007f6e2c74 [    0.243738] R10: 0000000000000002 R11: 0000000000000000 R12: 000000000000001f [    0.243739] R13: ffffffff96403c5f R14: 00000000000003fd R15: ffffffff96403bb8 [    0.243740] FS:  0000000000000000(0000) GS:ffff933b3cc00000(0000) knlGS:0000000000000000 [    0.243741] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [    0.243742] CR2: 000000007f6e1331 CR3: 000800000196e000 CR4: 00000000003506f0 [    0.243744] Kernel panic - not syncing: Fatal exception in interrupt [    0.244168] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]--- I did git bisect which points to below commit. commit aedcaa3df8a246ef859c234ed5c243471c5be698 Author: INDIA\sachinganesh Date:Mon Jan 13 16:15:54 2025 +0530 MdePkg: Fix overflow issue in PeCoffLoaderRelocateImageForRuntime RelocDir->Size is a UINT32 value, and RelocDir->VirtualAddress is also a UINT32 value. The current code in PeCoffLoaderRelocateImageForRuntime does not check for overflow when adding RelocDir->Size to RelocDir->VirtualAddress. This patch uses SafeIntLib to ensure that the addition does not overflow. Signed-off-by: Sachin Ganesh MdePkg/Library/BasePeCoffLib/BasePeCoff.c| 25 +++++++++++++------------ MdePkg/Library/BasePeCoffLib/BasePeCoffLib.inf |1 + 2 files changed, 14 insertions(+), 12 deletions(-) Sample qemu command line which I used: /qemu-system-x86_64 \ -machine q35,confidential-guest-support=sev0,vmport=off \ -object sev-guest,id=sev0,policy=0x5,cbitpos=51,reduced-phys-bits=1 \ -name guest=vm,debug-threads=on \ -drive if=pflash,format=raw,unit=0,file=OVMF_X64/OVMF.fd,readonly \ -cpu EPYC-v4 \ -m 2048 \ -smp 255,maxcpus=255,cores=255,threads=1,dies=1,sockets=1 \ -kernel bzImage \ -append "root=/dev/sda rw console=ttyS0 net.ifnames=0 biosdevname=0 movable_node swiotlb=65536 " \ -drive id=disk0,file=22.04-server_seves.qcow2,if=none \ -device virtio-scsi-pci,id=scsi0,disable-legacy=on,iommu_platform=true \ -device scsi-hd,drive=disk0 \ --enable-kvm \ --nographic/ Thank you, /Srikanth Aithal / -=-=-=-=-=-=-=-=-=-=-=- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#121049): https://edk2.groups.io/g/devel/message/121049 Mute This Topic: https://groups.io/mt/110856145/7686176 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [rebecca@openfw.io] -=-=-=-=-=-=-=-=-=-=-=- --------------jn44oAsG2Cd0oDvMaxTZNqzM Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 8bit

Hello,

With current edk2/master booting AMD SEV-ES guest with OvmfPkgX64 package is failing with below error:


[    0.240243] Memory Encryption Features active: AMD SEV SEV-ES
[    0.241170] SEV: Status: SEV SEV-ES
[    0.241783] pid_max: default: 32768 minimum: 301
[    0.243627] BUG: unable to handle page fault for address: 000000007f6e1331
[    0.243629] #PF: supervisor instruction fetch in kernel mode
[    0.243630] #PF: error_code(0x0010) - not-present page
[    0.243631] PGD 8000001933063 P4D 8000001933063 PUD 8000001934063 PMD 8000001938063 PTE 800007f6e1063
[    0.243635] Oops: Oops: 0010 [#1] PREEMPT SMP NOPTI
[    0.243637] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.11.2-7aa21fec18-11cb77746de #1
[    0.243640] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS unknown 02/02/2022
[    0.243641] RIP: 0010:0x7f6e1331
[    0.243643] Code: Unable to access opcode bytes at 0x7f6e1307.
[    0.243643] RSP: 0000:ffffffff96403b80 EFLAGS: 00010097 ORIG_RAX: 0000000000000010
[    0.243645] RAX: 0000000000000001 RBX: ffffffff96403c40 RCX: ffffffff96403c40
[    0.243646] RDX: 00000000000003fd RSI: ffffffff96403d40 RDI: 0000000000000001
[    0.243647] RBP: ffffffff96403c00 R08: 0000000000000001 R09: 000000007f6e2c74
[    0.243648] R10: 0000000000000002 R11: 0000000000000000 R12: 000000000000001f
[    0.243649] R13: ffffffff96403c5f R14: 00000000000003fd R15: ffffffff96403bb8
[    0.243650] FS:  0000000000000000(0000) GS:ffff933b3cc00000(0000) knlGS:0000000000000000
[    0.243652] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[    0.243653] CR2: 000000007f6e1331 CR3: 000800000196e000 CR4: 00000000003506f0
[    0.243655] Call Trace:
[    0.243656]  <TASK>
[    0.243657]  ? __die+0x1b/0x60
[    0.243662]  ? page_fault_oops+0x151/0x4d0
[    0.243667]  ? exc_page_fault+0x64/0x140
[    0.243670]  ? vc_raw_handle_exception+0x287/0x2c0
[    0.243676]  ? kernel_exc_vmm_communication+0x4d/0x100
[    0.243679]  ? asm_exc_vmm_communication+0x31/0x70
[    0.243685]  ? __alloc_pages_noprof+0x162/0x300
[    0.243691]  ? __cpa_process_fault+0x463/0x6f0
[    0.243698]  ? srso_return_thunk+0x5/0x5f
[    0.243701]  ? __efi_call+0x28/0x30
[    0.243705]  ? srso_return_thunk+0x5/0x5f
[    0.243706]  ? efi_set_virtual_address_map+0x95/0x1e0
[    0.243710]  ? sev_es_efi_map_ghcbs+0x8c/0xd0
[    0.243714]  ? efi_enter_virtual_mode+0x391/0x470
[    0.243718]  ? start_kernel+0x457/0x750
[    0.243720]  ? x86_64_start_reservations+0x14/0x30
[    0.243722]  ? x86_64_start_kernel+0xce/0xe0
[    0.243723]  ? common_startup_64+0x13e/0x141
[    0.243727]  </TASK>
[    0.243728] Modules linked in:
[    0.243730] CR2: 000000007f6e1331
[    0.243731] ---[ end trace 0000000000000000 ]---
[    0.243732] RIP: 0010:0x7f6e1331
[    0.243733] Code: Unable to access opcode bytes at 0x7f6e1307.
[    0.243734] RSP: 0000:ffffffff96403b80 EFLAGS: 00010097 ORIG_RAX: 0000000000000010
[    0.243735] RAX: 0000000000000001 RBX: ffffffff96403c40 RCX: ffffffff96403c40
[    0.243736] RDX: 00000000000003fd RSI: ffffffff96403d40 RDI: 0000000000000001
[    0.243737] RBP: ffffffff96403c00 R08: 0000000000000001 R09: 000000007f6e2c74
[    0.243738] R10: 0000000000000002 R11: 0000000000000000 R12: 000000000000001f
[    0.243739] R13: ffffffff96403c5f R14: 00000000000003fd R15: ffffffff96403bb8
[    0.243740] FS:  0000000000000000(0000) GS:ffff933b3cc00000(0000) knlGS:0000000000000000
[    0.243741] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[    0.243742] CR2: 000000007f6e1331 CR3: 000800000196e000 CR4: 00000000003506f0
[    0.243744] Kernel panic - not syncing: Fatal exception in interrupt
[    0.244168] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---


I did git bisect which points to below commit.

commit aedcaa3df8a246ef859c234ed5c243471c5be698

Author: INDIA\sachinganesh <sachinganesh@ami.com>

Date:   Mon Jan 13 16:15:54 2025 +0530

 

    MdePkg: Fix overflow issue in PeCoffLoaderRelocateImageForRuntime

 

    RelocDir->Size is a UINT32 value, and RelocDir->VirtualAddress is

    also a UINT32 value. The current code in

    PeCoffLoaderRelocateImageForRuntime does not check for overflow when

    adding RelocDir->Size to RelocDir->VirtualAddress. This patch uses

    SafeIntLib to ensure that the addition does not overflow.

 

    Signed-off-by: Sachin Ganesh <sachinganesh@ami.com>

 

 MdePkg/Library/BasePeCoffLib/BasePeCoff.c      | 25 +++++++++++++------------

 MdePkg/Library/BasePeCoffLib/BasePeCoffLib.inf |  1 +

 2 files changed, 14 insertions(+), 12 deletions(-)


Sample qemu command line which I used:

qemu-system-x86_64 \
-machine q35,confidential-guest-support=sev0,vmport=off \
-object sev-guest,id=sev0,policy=0x5,cbitpos=51,reduced-phys-bits=1 \
-name guest=vm,debug-threads=on \
-drive if=pflash,format=raw,unit=0,file=OVMF_X64/OVMF.fd,readonly  \
-cpu EPYC-v4 \
-m 2048 \
-smp 255,maxcpus=255,cores=255,threads=1,dies=1,sockets=1 \
-kernel bzImage \
-append "root=/dev/sda rw console=ttyS0 net.ifnames=0 biosdevname=0 movable_node swiotlb=65536 " \
-drive id=disk0,file=22.04-server_seves.qcow2,if=none \
-device virtio-scsi-pci,id=scsi0,disable-legacy=on,iommu_platform=true \
-device scsi-hd,drive=disk0 \
--enable-kvm \
--nographic

Thank you,

Srikanth Aithal <sraithal@amd.com>


_._,_._,_
Groups.io Links:

You receive all messages sent to this group.

View/Reply Online (#121049) | | Mute This Topic | New Topic
Your Subscription | Contact Group Owner | Unsubscribe [rebecca@openfw.io]

_._,_._,_
--------------jn44oAsG2Cd0oDvMaxTZNqzM--