| 2020-11-11 13:45:36 |
Jaromír Cápík |
bug |
|
|
added bug |
| 2020-11-11 13:46:33 |
Jaromír Cápík |
bug task added |
|
ubuntu |
|
| 2020-11-12 02:36:29 |
Alex Murray |
affects |
ubuntu |
qemu (Ubuntu) |
|
| 2020-11-12 02:36:51 |
Alex Murray |
launchpad: status |
New |
Invalid |
|
| 2020-11-12 02:37:35 |
Alex Murray |
information type |
Private Security |
Public |
|
| 2021-01-21 20:47:49 |
André Abrantes |
bug |
|
|
added subscriber André |
| 2021-01-21 20:48:01 |
Launchpad Janitor |
qemu (Ubuntu): status |
New |
Confirmed |
|
| 2021-01-22 07:33:16 |
Christian Ehrhardt |
bug |
|
|
added subscriber Christian Ehrhardt |
| 2021-01-25 07:20:35 |
Christian Ehrhardt |
nominated for series |
|
Ubuntu Focal |
|
| 2021-01-25 07:20:35 |
Christian Ehrhardt |
bug task added |
|
qemu (Ubuntu Focal) |
|
| 2021-01-25 07:20:35 |
Christian Ehrhardt |
nominated for series |
|
Ubuntu Groovy |
|
| 2021-01-25 07:20:35 |
Christian Ehrhardt |
bug task added |
|
qemu (Ubuntu Groovy) |
|
| 2021-01-25 07:20:43 |
Christian Ehrhardt |
qemu (Ubuntu Focal): status |
New |
Incomplete |
|
| 2021-01-25 07:20:47 |
Christian Ehrhardt |
qemu (Ubuntu): status |
Confirmed |
Fix Released |
|
| 2021-01-25 07:20:50 |
Christian Ehrhardt |
qemu (Ubuntu Groovy): status |
New |
Incomplete |
|
| 2021-01-28 00:24:05 |
André Abrantes |
attachment added |
|
virsh_start.log https://bugs.launchpad.net/launchpad/+bug/1903864/+attachment/5457539/+files/virsh_start.log |
|
| 2021-01-28 08:27:41 |
Christian Ehrhardt |
tags |
|
server-next |
|
| 2021-02-03 09:36:18 |
Christian Ehrhardt |
qemu (Ubuntu Focal): status |
Incomplete |
Triaged |
|
| 2021-02-03 09:36:20 |
Christian Ehrhardt |
qemu (Ubuntu Groovy): status |
Incomplete |
Triaged |
|
| 2021-02-03 09:40:19 |
Launchpad Janitor |
merge proposal linked |
|
https://code.launchpad.net/~paelzer/ubuntu/+source/qemu/+git/qemu/+merge/397417 |
|
| 2021-02-03 09:40:39 |
Launchpad Janitor |
merge proposal linked |
|
https://code.launchpad.net/~paelzer/ubuntu/+source/qemu/+git/qemu/+merge/397418 |
|
| 2021-02-03 15:19:12 |
Christian Ehrhardt |
description |
Hello. The TPM device in virt-manager never really worked in Ubuntu (I tried upgrades from 16.04 to 20.04 and each of them exhibited a different kind of issues).
The Ubuntu 20.04 versions of libvirt/qemu are throwing the following error:
qemu-system-x86_64: -device tpm-tis,tpmdev=tpm-tpm0,id=tpm0: Property 'tpm-tis.tpmdev' can't find value 'tpm-tpm0'
Our employer changed a security policy, requiring encrypted drives and that endangers usage of Linux as the host system without making the tpm passthrough working.
Versions:
libvirt0:amd64 6.0.0-0ubuntu8.5
qemu-kvm 1:4.2-3ubuntu6.8
virt-manager 1:2.2.1-3ubuntu2.1 |
[Impact]
* TPM isn't always easy, but at least some rough edges can be improved.
In this case some qemu commandlines will lead to odd error reporting
which is a) a false-positive and b) blocking the use case.
* This was fixed upstream and hereby the fix is backported
[Test Case]
Easiest - using passthrough:
You need a system that has a TPM:
$ sudo qemu-system-x86_64 -nodefaults -S -display none -monitor stdio -tpmdev passthrough,id=tpm0,path=/dev/tpm0 -device tpm-tis,tpmdev=tpm0
If you enter the qemu monitor you are good, if qemu doesn't start complaining about its command line arguments then the error is still present.
One can (if you want to go the extra mile) also set up a swtpm based emulator and try that. But swtpm isn't in the archive yet and trousers (a dependency) has issues on install. Commands would then be like:
$ swtpm socket --tpmstate dir=/tmp/mytpm1 --ctrl type=unixio,path=/tmp/mytpm1/swtpm-sock --log level=20
$ qemu-system-x86_64 -nodefaults -S -display none -monitor stdio -chardev socket,id=chrtpm,path=/tmp/mytpm1/swtpm-sock -tpmdev emulator,id=tpm0,chardev=chrtpm -device tpm-tis,tpmdev=tpm0
[Where problems could occur]
* The changes are local only to the tpm code in qemu. So we can assume
that other areas will unlikely be affected, but at the same time errors
would occur in exactly that place. So for the time after release our
bug triage can be extra careful if anyone mentioned qemu+tpm to spot
regressions.
[Other Info]
* n/a
----
Hello. The TPM device in virt-manager never really worked in Ubuntu (I tried upgrades from 16.04 to 20.04 and each of them exhibited a different kind of issues).
The Ubuntu 20.04 versions of libvirt/qemu are throwing the following error:
qemu-system-x86_64: -device tpm-tis,tpmdev=tpm-tpm0,id=tpm0: Property 'tpm-tis.tpmdev' can't find value 'tpm-tpm0'
Our employer changed a security policy, requiring encrypted drives and that endangers usage of Linux as the host system without making the tpm passthrough working.
Versions:
libvirt0:amd64 6.0.0-0ubuntu8.5
qemu-kvm 1:4.2-3ubuntu6.8
virt-manager 1:2.2.1-3ubuntu2.1 |
|
| 2021-02-09 06:17:25 |
Christian Ehrhardt |
qemu (Ubuntu Focal): status |
Triaged |
In Progress |
|
| 2021-02-09 06:17:26 |
Christian Ehrhardt |
qemu (Ubuntu Groovy): status |
Triaged |
In Progress |
|
| 2021-02-10 12:50:05 |
Christian Ehrhardt |
tags |
server-next |
block-proposed block-proposed-focal block-proposed-groovy server-next |
|
| 2021-02-10 14:56:01 |
Robie Basak |
qemu (Ubuntu Groovy): status |
In Progress |
Fix Committed |
|
| 2021-02-10 14:56:03 |
Robie Basak |
bug |
|
|
added subscriber Ubuntu Stable Release Updates Team |
| 2021-02-10 14:56:06 |
Robie Basak |
bug |
|
|
added subscriber SRU Verification |
| 2021-02-10 14:56:10 |
Robie Basak |
tags |
block-proposed block-proposed-focal block-proposed-groovy server-next |
block-proposed block-proposed-focal block-proposed-groovy server-next verification-needed verification-needed-groovy |
|
| 2021-02-10 14:56:38 |
Robie Basak |
qemu (Ubuntu Focal): status |
In Progress |
Fix Committed |
|
| 2021-02-10 14:56:44 |
Robie Basak |
tags |
block-proposed block-proposed-focal block-proposed-groovy server-next verification-needed verification-needed-groovy |
block-proposed block-proposed-focal block-proposed-groovy server-next verification-needed verification-needed-focal verification-needed-groovy |
|
| 2021-02-17 00:58:28 |
Mathew Hodson |
affects |
launchpad |
ubuntu-translations |
|
| 2021-02-17 00:58:40 |
Mathew Hodson |
bug task deleted |
ubuntu-translations |
|
|
| 2021-02-18 15:01:16 |
Christian Ehrhardt |
tags |
block-proposed block-proposed-focal block-proposed-groovy server-next verification-needed verification-needed-focal verification-needed-groovy |
block-proposed block-proposed-focal block-proposed-groovy server-next verification-done verification-done-focal verification-done-groovy |
|
| 2021-02-19 04:24:37 |
Ian Johnson |
bug |
|
|
added subscriber Ian Johnson |
| 2021-02-22 16:03:08 |
Launchpad Janitor |
qemu (Ubuntu Groovy): status |
Fix Committed |
Fix Released |
|
| 2021-02-22 16:03:08 |
Launchpad Janitor |
cve linked |
|
2020-13754 |
|
| 2021-02-22 16:03:16 |
Launchpad Janitor |
qemu (Ubuntu Focal): status |
Fix Committed |
Fix Released |
|
| 2021-08-29 02:00:24 |
Julian Carvajal |
bug |
|
|
added subscriber Julian Carvajal |
