[D] Windows 11 ISO does not boot with UEFI (OVMF) in KVM hosts [cloudstack]

Wed, 17 Sep 2025 08:42:07 -0700 


GitHub user jeanvetorello created a discussion: Windows 11 ISO does not boot 
with UEFI (OVMF) in KVM hosts

### problem

Hello,

I am trying to deploy a Windows 11 VM on Apache CloudStack (KVM hypervisor) 
using UEFI boot with OVMF.
However, the VM does not boot from the ISO. The TianoCore (OVMF) firmware 
screen appears, I select the CD-ROM option, but it immediately returns to the 
boot menu instead of loading the Windows installer.

# virsh dumpxml i-2-102-VM | grep -A5 loader
    <loader readonly='yes' secure='yes' 
type='pflash'>/usr/share/OVMF/OVMF_CODE_4M.secboot.fd</loader>
    <nvram 
template='/usr/share/OVMF/OVMF_VARS_4M.ms.fd'>/var/lib/libvirt/qemu/nvram/72901cf3-b926-4771-91db-839c4863a52d.fd</nvram>
    <boot dev='cdrom'/>
    <boot dev='hd'/>
    <smbios mode='sysinfo'/>
  </os>

# virsh dumpxml i-2-102-VM | grep -A5 tpm
    <tpm model='tpm-tis'>
      <backend type='emulator' version='2.0'/>
      <alias name='tpm0'/>
    </tpm>
    <graphics type='vnc' port='5903' autoport='yes' listen='192.168.1.15'>
      <listen type='address' address='192.168.1.15'/>
    </graphics>
    <audio id='1' type='none'/>
    <video>


<img width="1006" height="681" alt="Image" 
src="https://github.com/user-attachments/assets/44a8a5c1-e0e0-4c54-938b-f1b22693474b";
 />

<img width="907" height="657" alt="Image" 
src="https://github.com/user-attachments/assets/3f833046-2043-4a82-a6e2-8bd8ba650a6e";
 />

<img width="740" height="590" alt="Image" 
src="https://github.com/user-attachments/assets/6077e2d9-9c54-42ae-954b-07c492c5e29b";
 />

<img width="827" height="617" alt="Image" 
src="https://github.com/user-attachments/assets/6cf38a79-bd38-4b09-84be-7f464946e68b";
 />

<img width="1110" height="748" alt="Image" 
src="https://github.com/user-attachments/assets/d7e47df8-a5a1-4ca1-827c-f17bea64f152";
 />

### versions

Ubuntu 24.04 LTSUbuntu 24.04.3 LTS
CloudStack 4.21.0.0 
cloudstack-agent 4.21.0.0 
QEMU emulator version 8.2.2 
virsh 10.0.0

ovmf 2024.02-2ubuntu0.4

ls -l /usr/share/OVMF/
total 8720
-rw-r--r-- 1 root root 3653632 Jun  4 03:51 OVMF_CODE_4M.fd
lrwxrwxrwx 1 root root      23 Jun  4 03:51 OVMF_CODE_4M.ms.fd -> 
OVMF_CODE_4M.secboot.fd
-rw-r--r-- 1 root root 3653632 Jun  4 03:51 OVMF_CODE_4M.secboot.fd
lrwxrwxrwx 1 root root      23 Jun  4 03:51 OVMF_CODE_4M.snakeoil.fd -> 
OVMF_CODE_4M.secboot.fd
-rw-r--r-- 1 root root  540672 Jun  4 03:51 OVMF_VARS_4M.fd
-rw-r--r-- 1 root root  540672 Jun  4 03:51 OVMF_VARS_4M.ms.fd
-rw-r--r-- 1 root root  540672 Jun  4 03:51 OVMF_VARS_4M.snakeoil.fd



### The steps to reproduce the bug

1.Install CloudStack agent with ovmf package on Ubuntu 24.04 host.
2.Configure /etc/cloudstack/agent/uefi.properties:
```
guest.nvram.template.secure=/usr/share/OVMF/OVMF_VARS_4M.ms.fd
guest.nvram.template.legacy=/usr/share/OVMF/OVMF_VARS_4M.fd
guest.nvram.path=/var/lib/libvirt/qemu/nvram/
guest.loader.secure=/usr/share/OVMF/OVMF_CODE_4M.secboot.fd
guest.loader.legacy=/usr/share/OVMF/OVMF_CODE_4M.fd
```
3.Register a Windows 11 ISO in secondary storage.

4. Create a VM with:
virtual.tpm.version
2.0
virtual.tpm.model
tpm-tis
UEFI
SECURE
Firmware: OVMF (with TPM 2.0)

5. Global Settings 
enable.additional.vm.configuration true
allow.additional.vm.configuration.list.kvm devices,tpm,backend

6. Start the VM.
...


### What to do about it?

_No response_

GitHub link: https://github.com/apache/cloudstack/discussions/11660

----
This is an automatically sent email for [email protected].
To unsubscribe, please send an email to: [email protected]

Reply via email to