Comment 5 for bug 2020319

Revision history for this message
Fabio Augusto Miranda Martins (fabio.martins) wrote :

Verified a Focal guest as follows:

1. Reproduced the problem with kernel 5.4.0-152-generic:

https://pastebin.ubuntu.com/p/Cgj6j4Prbc/

2. As a workaround removed:

  <launchSecurity type="sev">
    <policy>0x0003</policy>
  </launchSecurity>

3. Installed kernel from -proposed:

root@ubuntu:~# apt-cache policy linux-image-virtual linux-virtual
linux-image-virtual:
  Installed: 5.4.0.154.151
  Candidate: 5.4.0.154.151
  Version table:
 *** 5.4.0.154.151 500
        500 http://archive.ubuntu.com/ubuntu focal-proposed/main amd64 Packages
        100 /var/lib/dpkg/status
     5.4.0.152.149 500
        500 http://archive.ubuntu.com/ubuntu focal-updates/main amd64 Packages
        500 http://security.ubuntu.com/ubuntu focal-security/main amd64 Packages
     5.4.0.26.32 500
        500 http://archive.ubuntu.com/ubuntu focal/main amd64 Packages
linux-virtual:
  Installed: 5.4.0.154.151
  Candidate: 5.4.0.154.151
  Version table:
 *** 5.4.0.154.151 500
        500 http://archive.ubuntu.com/ubuntu focal-proposed/main amd64 Packages
        100 /var/lib/dpkg/status
     5.4.0.152.149 500
        500 http://archive.ubuntu.com/ubuntu focal-updates/main amd64 Packages
        500 http://security.ubuntu.com/ubuntu focal-security/main amd64 Packages
     5.4.0.26.32 500
        500 http://archive.ubuntu.com/ubuntu focal/main amd64 Packages

4. Added back:

  <launchSecurity type="sev">
    <policy>0x0003</policy>
  </launchSecurity>

5. Instance booted fine:

ubuntu@ubuntu:~$ uname -a
Linux ubuntu 5.4.0-154-generic #171-Ubuntu SMP Fri Jun 16 16:29:04 UTC 2023 x86_
64 x86_64 x86_64 GNU/Linux
ubuntu@ubuntu:~$ sudo dmesg | grep -i sev
[ 0.172491] AMD Secure Encrypted Virtualization (SEV) active
[ 5.318658] SVM: KVM is unsupported when running as an SEV guest

6. Full dmesg: https://paste.ubuntu.com/p/dP4Zp8pKfm/