Running an SEV-ES guest on a OVMF package that is built with TPM support enabled (-DTPM_ENABLE -DTPM_CONFIG_ENABLE) results in guest termination. The reason for this is MMIO is being attempted to an address that is mapped encrypted.
v1: https://edk2.groups.io/g/devel/message/74308 https://listman.redhat.com/archives/edk2-devel-archive/2021-April/msg00720.html msgid: <cover.1618959281.git.thomas.lendacky@amd.com>
v2: https://edk2.groups.io/g/devel/message/74490 https://listman.redhat.com/archives/edk2-devel-archive/2021-April/msg00886.html msgid: <cover.1619540470.git.thomas.lendacky@amd.com>
Thomas is working on it.
v3: [edk2-devel] [PATCH v3 0/5] SEV-ES TPM enablement fixes https://edk2.groups.io/g/devel/message/74608 http://mid.mail-archive.com/cover.1619716333.git.thomas.lendacky@amd.com https://listman.redhat.com/archives/edk2-devel-archive/2021-April/msg01022.html
Merged in commit range ab957f036f67..1e6b0394d6c0, via <https://github.com/tianocore/edk2/pull/1620>.