| 2020-06-30 03:41:24 |
Dimitri John Ledkov |
bug |
|
|
added bug |
| 2020-06-30 03:44:17 |
Dimitri John Ledkov |
description |
Please build EDK2 with -DFD_SIZE_IN_KB=4096 flag, instead of the current -DFD_SIZE_2MB one.
This increases code from 1.9 to 3.6M, and increases nvram VARS storage from 132k to 541k. |
Please build EDK2 with -DFD_SIZE_IN_KB=4096 flag, instead of the current -DFD_SIZE_2MB one.
This increases code from 1.9 to 3.6M, and increases nvram VARS storage from 132k to 541k.
Care must be taken when doing this. Maybe we need to rename the firmware images, and keep the 2MB firmware images under the existing names. As VMs with already initialized VARS.fd stores, might not be compatible with the 4MB CODE.fd images. |
|
| 2020-07-24 22:28:34 |
Dimitri John Ledkov |
nominated for series |
|
Ubuntu Bionic |
|
| 2020-07-24 22:28:34 |
Dimitri John Ledkov |
bug task added |
|
edk2 (Ubuntu Bionic) |
|
| 2020-07-24 22:28:34 |
Dimitri John Ledkov |
nominated for series |
|
Ubuntu Eoan |
|
| 2020-07-24 22:28:34 |
Dimitri John Ledkov |
bug task added |
|
edk2 (Ubuntu Eoan) |
|
| 2020-07-24 22:28:34 |
Dimitri John Ledkov |
nominated for series |
|
Ubuntu Xenial |
|
| 2020-07-24 22:28:34 |
Dimitri John Ledkov |
bug task added |
|
edk2 (Ubuntu Xenial) |
|
| 2020-07-24 22:28:34 |
Dimitri John Ledkov |
nominated for series |
|
Ubuntu Groovy |
|
| 2020-07-24 22:28:34 |
Dimitri John Ledkov |
bug task added |
|
edk2 (Ubuntu Groovy) |
|
| 2020-07-24 22:28:34 |
Dimitri John Ledkov |
nominated for series |
|
Ubuntu Focal |
|
| 2020-07-24 22:28:34 |
Dimitri John Ledkov |
bug task added |
|
edk2 (Ubuntu Focal) |
|
| 2020-07-24 22:28:42 |
Dimitri John Ledkov |
bug |
|
|
added subscriber dann frazier |
| 2020-07-24 23:46:00 |
Dimitri John Ledkov |
bug |
|
|
added subscriber Stéphane Graber |
| 2020-07-24 23:47:05 |
Dimitri John Ledkov |
description |
Please build EDK2 with -DFD_SIZE_IN_KB=4096 flag, instead of the current -DFD_SIZE_2MB one.
This increases code from 1.9 to 3.6M, and increases nvram VARS storage from 132k to 541k.
Care must be taken when doing this. Maybe we need to rename the firmware images, and keep the 2MB firmware images under the existing names. As VMs with already initialized VARS.fd stores, might not be compatible with the 4MB CODE.fd images. |
-DFD_SIZE_2MB OVMF builds are not longer fit for purpose, as they are too small to apply dbxupdate.
We must provide -DFD_SIZE_4MB and default to them.
We must keep -DFD_SIZE_2MB builds to keep existing VMs working. |
|
| 2020-07-24 23:48:44 |
Dimitri John Ledkov |
summary |
bump the size of nvram VARS.fd |
please provide 4MB firmware builds |
|
| 2020-07-29 23:01:01 |
Dimitri John Ledkov |
information type |
Private Security |
Public |
|
| 2020-07-29 23:01:04 |
Dimitri John Ledkov |
information type |
Public |
Public Security |
|
| 2020-08-03 21:39:10 |
dann frazier |
attachment added |
|
edk2_2020.05-2ubuntu1_2020.05-2ubuntu1+4M.2.debdiff https://bugs.launchpad.net/ubuntu/+source/edk2/+bug/1885662/+attachment/5398518/+files/edk2_2020.05-2ubuntu1_2020.05-2ubuntu1+4M.2.debdiff |
|
| 2020-08-03 21:39:21 |
dann frazier |
edk2 (Ubuntu Groovy): status |
New |
In Progress |
|
| 2020-08-03 21:39:23 |
dann frazier |
edk2 (Ubuntu Groovy): assignee |
|
dann frazier (dannf) |
|
| 2020-08-04 00:25:42 |
Ubuntu Foundations Team Bug Bot |
tags |
|
patch |
|
| 2020-08-07 20:55:13 |
Launchpad Janitor |
edk2 (Ubuntu Groovy): status |
In Progress |
Fix Released |
|
| 2022-10-13 07:36:17 |
Mustafa Kemal Gilor |
edk2 (Ubuntu Focal): assignee |
|
Mustafa Kemal Gilor (mustafakemalgilor) |
|
| 2022-10-13 07:36:23 |
Mustafa Kemal Gilor |
edk2 (Ubuntu Focal): status |
New |
In Progress |
|
| 2022-10-13 09:37:43 |
Nobuto Murata |
bug |
|
|
added subscriber Nobuto Murata |
| 2022-11-11 07:44:07 |
Mustafa Kemal Gilor |
attachment added |
|
LXC profile file for enabling X11 forwarding (container --> host) https://bugs.launchpad.net/ubuntu/+source/edk2/+bug/1885662/+attachment/5630573/+files/x11.profile |
|
| 2022-11-11 07:45:59 |
Launchpad Janitor |
edk2 (Ubuntu Xenial): status |
New |
Confirmed |
|
| 2022-11-11 07:45:59 |
Launchpad Janitor |
edk2 (Ubuntu Bionic): status |
New |
Confirmed |
|
| 2022-11-11 07:45:59 |
Launchpad Janitor |
edk2 (Ubuntu Eoan): status |
New |
Confirmed |
|
| 2022-11-11 07:46:58 |
Mustafa Kemal Gilor |
edk2 (Ubuntu Xenial): status |
Confirmed |
New |
|
| 2022-11-11 07:47:00 |
Mustafa Kemal Gilor |
edk2 (Ubuntu Bionic): status |
Confirmed |
New |
|
| 2022-11-11 07:47:02 |
Mustafa Kemal Gilor |
edk2 (Ubuntu Eoan): status |
Confirmed |
New |
|
| 2022-11-11 08:25:04 |
Christian Ehrhardt |
bug |
|
|
added subscriber Christian Ehrhardt |
| 2022-11-12 02:05:38 |
Steve Langasek |
edk2 (Ubuntu Eoan): status |
New |
Won't Fix |
|
| 2022-11-14 13:15:35 |
Mustafa Kemal Gilor |
description |
-DFD_SIZE_2MB OVMF builds are not longer fit for purpose, as they are too small to apply dbxupdate.
We must provide -DFD_SIZE_4MB and default to them.
We must keep -DFD_SIZE_2MB builds to keep existing VMs working. |
[ Impact ]
Windows virtual machines running on top of Ubuntu Focal and Bionic hypervisors with the OVMF UEFI bios are facing an issue while installing the KB5012170 update from Microsoft. The windows update cannot proceed to install the KB5012170, because the 2MB OVMF image on the QEMU host no longer has sufficient space to store the contents for the update, which causes the update process to fail. The people running Windows VMs on Ubuntu Focal/QEMU are unable to update their VMs.
There is a known workaround problem, which is using 4MB OVMF images from either Debian or Ubuntu Jammy.
This fix is a backport of 4MB OVMF images from upstream for Focal. This fix also changes the default OVMF image from 2MB to 4MB for all new VMs that will be spawned by a hypervisor using the descriptor interface.
Apart from the fix, the SRU includes autopkgtests for the backported changes as well.
[ Test Plan ]
The test plan basically boils down to the scenario below:
- Spawn a Focal/QEMU host with the container/VM technology of your choice
- Create a Windows 10 VM on QEMU (use existing OVMF images at launch)
- Try to install KB5012170 on VM, and it should fail
- Install the fix to the Focal/QEMU host via PPA
- Launch the VM with new 4M images
- Try to install KB5012170 on VM, and it should succeed
The steps below are a reproduction of the test plan above with LXC as a host environment for Focal/QEMU.
# Environment setup describes QEMU running over
# Focal LXC with X11 forwarding
# Download windows 10 ISO:
# https://www.microsoft.com/en-us/software-download/windows10ISO
# -- host shell --
# Create an LXC profile that enables X11 forwarding
# for containers <See the attached x11.profile file>
$ lxc profile create x11
$ cat x11.profile | lxc profile edit x11
# Create a Focal/QEMU container with X11 forwarding
$ lxc launch ubuntu:focal --profile default --profile x11 test-qemu-host
# Mount folder containing windows iso
$ lxc config device add test-qemu-host winiso disk source=/workspace/os-iso path=/os-iso
$ lxc exec test-qemu-host -- sudo --user ubuntu --login
# -- QEMU container shell --
# Install QEMU & OVMF
$ sudo apt -y update && sudo apt -y install qemu-kvm ovmf
# Create a windows VM
$ mkdir windows-vm && cd windows-vm
$ qemu-img create -f qcow2 windows.img 32G
$ cp /usr/share/OVMF/OVMF_VARS.ms.fd OVMF_VARS.ms.windows.fd
# Launch the VM
$ qemu-system-x86_64 -hda windows.img -m 4096M -smp cores=4 -M q35,smm=on -global ICH9-LPC.disable_s3=1 -global driver=cfi.pflash01,property=secure,value=on -drive if=pflash,format=raw,readonly=on,file=/usr/share/OVMF/OVMF_CODE.ms.fd -drive if=pflash,format=raw,file=./OVMF_VARS.ms.windows.fd -cdrom /os-iso/Win10_22H2_English_x64.iso
# Setup the operating system
# After everything settles:
# Download KB5012170 from Microsoft Update Catalog
# https://www.catalog.update.microsoft.com/Search.aspx?q=KB5012170
# Try to install the KB5012170 update, it should fail
# Shutdown VM
# Install fix to QEMU host from PPA:
sudo add-apt-repository ppa:mustafakemalgilor/lp-1885662-4
sudo apt update
# Re-launch VM with new 4M images:
cp /usr/share/OVMF/OVMF_VARS_4M.ms.fd OVMF_VARS_4M.ms.windows.fd
qemu-system-x86_64 -hda windows.img -m 8192M -smp cores=4 -M q35,smm=on -global ICH9-LPC.disable_s3=1 -global driver=cfi.pflash01,property=secure,value=on -drive if=pflash,format=raw,readonly=on,file=/usr/share/OVMF/OVMF_CODE_4M.ms.fd -drive if=pflash,format=raw,file=./OVMF_VARS_4M.ms.windows.fd
# Re-try to install the KB5012170, it should succeed
[ Where problems could occur ]
This SRU introduces providing an OVMF image with a higher capacity variable store, which will have no impact on existing VMs. The migration of existing VMs will be opt-in.
The new VMs will be using the 4MB OVMF image by default, given that the owning hypervisor is using the descriptor interface.
The user will be able to switch back to the 2MB image in case of regression.
[ Other Info ]
This update does not replace the existing 2MB OVMF image; instead, it provides a new 4MB image. Therefore, the existing VMs should be manually migrated to the 4MB image.
[Original bug description]
-DFD_SIZE_2MB OVMF builds are not longer fit for purpose, as they are too small to apply dbxupdate.
We must provide -DFD_SIZE_4MB and default to them.
We must keep -DFD_SIZE_2MB builds to keep existing VMs working. |
|
| 2022-12-07 15:24:26 |
Mustafa Kemal Gilor |
attachment added |
|
Live migration test script https://bugs.launchpad.net/ubuntu/focal/+source/edk2/+bug/1885662/+attachment/5635092/+files/live_migration_test.py |
|
| 2022-12-07 15:26:31 |
Mustafa Kemal Gilor |
attachment added |
|
Live migration results of simulated existing guests https://bugs.launchpad.net/ubuntu/focal/+source/edk2/+bug/1885662/+attachment/5635093/+files/live-migration-tests-results-existing.txt |
|
| 2022-12-07 15:26:57 |
Mustafa Kemal Gilor |
attachment added |
|
Live migration results of newly created guests with default boot uefi https://bugs.launchpad.net/ubuntu/focal/+source/edk2/+bug/1885662/+attachment/5635095/+files/live-migration-tests-results-default-uefi.txt |
|
| 2022-12-08 12:27:30 |
Paride Legovini |
bug |
|
|
added subscriber Paride Legovini |
| 2022-12-08 12:28:21 |
Paride Legovini |
edk2 (Ubuntu Xenial): status |
New |
Won't Fix |
|
| 2022-12-16 09:02:14 |
Timo Aaltonen |
edk2 (Ubuntu Focal): status |
In Progress |
Fix Committed |
|
| 2022-12-16 09:02:16 |
Timo Aaltonen |
bug |
|
|
added subscriber Ubuntu Stable Release Updates Team |
| 2022-12-16 09:02:17 |
Timo Aaltonen |
bug |
|
|
added subscriber SRU Verification |
| 2022-12-16 09:02:21 |
Timo Aaltonen |
tags |
patch |
patch verification-needed verification-needed-focal |
|
| 2022-12-22 12:07:33 |
Mustafa Kemal Gilor |
attachment added |
|
migration-tests.log https://bugs.launchpad.net/ubuntu/+source/edk2/+bug/1885662/+attachment/5637192/+files/migration-tests.log |
|
| 2022-12-22 12:10:01 |
Mustafa Kemal Gilor |
attachment added |
|
Screenshot from 2022-12-22 15-08-09.png https://bugs.launchpad.net/ubuntu/+source/edk2/+bug/1885662/+attachment/5637193/+files/Screenshot%20from%202022-12-22%2015-08-09.png |
|
| 2022-12-22 12:10:44 |
Mustafa Kemal Gilor |
tags |
patch verification-needed verification-needed-focal |
patch verification-done-focal verification-needed |
|
| 2023-01-16 07:22:32 |
Mustafa Kemal Gilor |
tags |
patch verification-done-focal verification-needed |
patch verification-done-focal |
|
| 2023-01-24 22:56:26 |
Chris Halse Rogers |
removed subscriber Ubuntu Stable Release Updates Team |
|
|
|
| 2023-01-24 22:57:41 |
Launchpad Janitor |
edk2 (Ubuntu Focal): status |
Fix Committed |
Fix Released |
|
