Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-129674

QEMU provides no way to query whether TDX is usable

Linking RHIVOS CVEs to...Migration: Automation ...SWIFT: POC ConversionSync from "Extern...XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Undefined Undefined
    • None
    • rhel-10.1
    • qemu-kvm / QMP Monitor and CLI
    • None
    • None
    • None
    • rhel-virt-core
    • None
    • False
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • Unspecified
    • Unspecified
    • Unspecified
    • x86_64
    • None

      What were you trying to do that didn't work?

      Libvirt needs to be able to query whether TDX is usable on a host. Currently QEMU only provides a way to query whether TDX is compiled in.

      The original TDX patches for QEMU provided a "query-tdx-capabilities" which was an analogue of 'query-sev-capabilities', and libvirt should have used that to determine if TDX was usable on the host. That QMP command seems to have got lost somewhere along the way

      https://mail.gnu.org/archive/html/qemu-devel/2021-07/msg01689.html

      What is the impact of this issue to you?

      Libvirt has no knowledge of whether TDX is actually usable by QEMU.

      Libvirt will have to directly open /dev/kvm and query for the TDX VM type, which while possible, is not something libvirt should have todo directly.

      Please provide the package NVR for which the bug is seen:

      qemu-kvm-10.0.0-14.el10_1.x86_64

              virt-maint virt-maint
              rhn-engineering-berrange Daniel Berrangé
              virt-maint virt-maint
              Zixi Chen Zixi Chen
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated: