From de203196447b2813a80bf103b543664a787ffb8b Mon Sep 17 00:00:00 2001
From: Nikolay Martyanov <nikolay@zededa.com>
Date: Mon, 16 Sep 2024 13:20:25 +0200
Subject: [PATCH] pillar: Add OVMF_VARS.fd to pillar container.

This commit copies OVMF_VARS.fd into the pillar container by adding it
to /usr/lib/xen/boot/ovmf_vars.bin. It is important that the file is
available in the pillar container because Pillar will create per-domain
copies of it stored in /persist, which are then accessible to the
xen-tools container. This sets the groundwork for enabling virtual
machines to save and retain UEFI settings across reboots by using
per-domain NVRAM files.

Signed-off-by: Nikolay Martyanov <nikolay@zededa.com>
---
 pkg/pillar/Dockerfile | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/pkg/pillar/Dockerfile b/pkg/pillar/Dockerfile
index 68bf604366..e7332707ec 100644
--- a/pkg/pillar/Dockerfile
+++ b/pkg/pillar/Dockerfile
@@ -2,6 +2,7 @@
 # SPDX-License-Identifier: Apache-2.0
 FROM lfedge/eve-fscrypt:0b7cc0d9d620e47fc54e21d56cb8a5cd224f9c9b as fscrypt
 
+FROM lfedge/eve-uefi:d821658883d6748d8bbf0d6640c62288e3ce8c6f as uefi-build
 FROM lfedge/eve-dom0-ztools:417d4ff6a57d2317c9e65166274b0ea6f6da16e2 as zfs
 RUN mkdir /out
 # copy zfs-related files from dom0-ztools using prepared list of files
@@ -80,6 +81,9 @@ RUN set -e && for patch in /sys-patches/*.patch; do \
         patch -p0 --no-backup-if-mismatch -r /tmp/deleteme.rej < "$patch"; \
     done
 
+RUN mkdir -p /out/usr/lib/xen/boot
+COPY --from=uefi-build /OVMF_VARS.fd /out/usr/lib/xen/boot/ovmf_vars.bin
+
 # we need zfs files on running system
 COPY --from=zfs /out /out