Wednesday, 2026-07-01

opendevreviewyaguang proposed openstack/nova master: libvirt: enable Hyper-V evmcs on Intel hosts  https://review.opendev.org/c/openstack/nova/+/99562001:28
opendevreviewAdam Harwell proposed openstack/placement master: Add ASGI application entry point for Placement API  https://review.opendev.org/c/openstack/placement/+/99513304:08
opendevreviewAdam Harwell proposed openstack/nova master: Add ASGI application entry points for Nova API  https://review.opendev.org/c/openstack/nova/+/99516304:08
opendevreviewChungWon Lee proposed openstack/nova stable/2025.2: Add regression test for bug #2134375  https://review.opendev.org/c/openstack/nova/+/99182404:56
opendevreviewChungWon Lee proposed openstack/nova stable/2025.2: Fix port remain while error on update port with multi network  https://review.opendev.org/c/openstack/nova/+/99183504:59
opendevreviewBalazs Gibizer proposed openstack/nova stable/2026.1: Limit the port fields during security_group query  https://review.opendev.org/c/openstack/nova/+/99564007:49
opendevreviewBalazs Gibizer proposed openstack/nova stable/2025.2: Limit the port fields during security_group query  https://review.opendev.org/c/openstack/nova/+/99564107:50
opendevreviewBalazs Gibizer proposed openstack/nova stable/2025.1: Limit the port fields during security_group query  https://review.opendev.org/c/openstack/nova/+/99564207:51
gibimelwitt: gmaan: elodilles: ^^ here are the backports of the performance improvement fix landed yesterday07:51
elodillesgibi: +2'd the stable/2026.1 version08:15
gibithanks08:35
tkajinamgibi, I hope not many, but it'd be probably helpful to test launching sev-snp using virt-install before you try it from nova to find out anything still missing at host level09:33
tkajinamgibi, if snp is working correctly in both host and guest, you can find '/dev/sev-guest' detected in guest os.09:33
tkajinam /dev/sev_guest more accurately speaking09:34
tkajinamreplying to your question too late :-P09:35
opendevreviewPhilipp Dreesens proposed openstack/nova-specs master: Add spec for bidirectional RPC liveness handshake  https://review.opendev.org/c/openstack/nova-specs/+/98438409:37
gibitkajinam: thanks. not late at all12:00
gibitkajinam: I'm at the stage that I see the kernel reporting12:01
gibi[   27.193776] kvm_amd: SEV enabled (ASIDs 10 - 509)12:01
gibi[   27.198489] kvm_amd: SEV-ES enabled (ASIDs 1 - 9)12:01
gibi[   27.203197] kvm_amd: SEV-SNP enabled (ASIDs 1 - 9)12:01
gibiI just had to refocus some time to other errands, but I will get back to this later today12:01
gibi[root@amd-milan-08 ~]# cat /sys/module/kvm_amd/parameters/sev12:02
gibiY12:02
gibiand libvirt report the same in the domcapabilities 12:04
tkajinamok that looks correct12:42
tkajinamgibi, do you see also sev_es and sev_snp report Y ?12:42
opendevreviewMerged openstack/nova master: Add mtty support for testing fake mdevs  https://review.opendev.org/c/openstack/nova/+/89810012:45
gibitkajinam: not yet. Does that need extra kernel args? I only added kvm_amd.sev=1 yet12:47
gibiI'm running kernel 6.12, libvirt 12.4 qemu 10.112:48
tkajinamyou also need to explicitly enable sev-es and sev-snp too12:48
tkajinamin the kvm_amd module12:48
gibiOK12:48
gibithanks 12:48
gibihm I checked wrongly I do see all three enabled12:50
gibi[root@amd-milan-08 ~]# for f in /sys/module/kvm_amd/parameters/sev* ; do echo $f ; cat $f ; done12:50
gibi/sys/module/kvm_amd/parameters/sev12:50
gibiY12:50
gibi/sys/module/kvm_amd/parameters/sev_es12:50
gibiY12:50
gibi/sys/module/kvm_amd/parameters/sev_snp12:50
gibiY12:50
tkajinamok so firmware and host os are both configured properly :-)12:51
gibinow running devstack with a 128 core CPU is not fun as we default a lot of worker counts to the cpu count and having 128 keyston-api, nova-conductor etc does not make mysql happy :)12:52
gibibut I will get there :)12:53
opendevreviewTakashi Kajinami proposed openstack/nova master: Remove unused method for image v1 API  https://review.opendev.org/c/openstack/nova/+/99553213:03
Ugglaelodilles, I have reviewed the "release" patches. I think I have done all, let me know if I miss one.13:04
elodillesUggla: yepp, you've reviewed all the nova related release patches as far as i see. thanks for that :)13:10
Ugglaelodilles 👍13:10
elodilleslet me review the last one (nova stable releases with CVE fix)13:11
opendevreviewBence Romsics proposed openstack/nova master: Functional reproducer for #2051685  https://review.opendev.org/c/openstack/nova/+/97733113:39
opendevreviewBence Romsics proposed openstack/nova master: Suppress error in cleanup of pre live migration  https://review.opendev.org/c/openstack/nova/+/98208513:39
opendevreviewMerged openstack/nova master: Rename vtpm job and add mtty support for vgpu test  https://review.opendev.org/c/openstack/nova/+/92214014:47
opendevreviewribaudr proposed openstack/nova master: Add reproducer for bug #2071376: unshelve NoValidHost silent failure  https://review.opendev.org/c/openstack/nova/+/99570014:59
opendevreviewribaudr proposed openstack/nova master: Set instance to ERROR on unshelve NoValidHost failure  https://review.opendev.org/c/openstack/nova/+/99570114:59
UgglaReminder: upstream triage in ~20mn15:08
UgglaLink: https://meet.google.com/zjr-rxus-hzj15:09
opendevreviewTakashi Kajinami proposed openstack/nova master: Remove unused UpdateGlanceImage  https://review.opendev.org/c/openstack/nova/+/99572617:20
gibitkajinam: I think sev is broken on master (not related to your change, not applied yet). I think we changed something recently that forces two image_meta.properties check during spawn and the second one does not work on the real image_meta and therefore does not see the uefi hw_firmware_type18:51
gibiI will file a bug18:51
gibihttps://bugs.launchpad.net/nova/+bug/215892718:58
gibihm maybe this is an edge case on using cpu_models=custom19:02
gibiyepp it is with host-passthrough I can move forward but still it is a bug19:05
gibiOK I was able to boot a SEV VM, and I was able to reproduce that SEV-ES fails if SEV-SNP is enabled in the BIOS, qemu rejects it with19:17
gibi2026-07-01T19:04:41.224661Z qemu-kvm: -accel kvm: sev_launch_start: LAUNCH_START ret=1 fw_error=21 'Feature not supported'19:17
gibi2026-07-01T19:04:41.224703Z qemu-kvm: -accel kvm: sev_common_kvm_init: failed to create encryption context19:18
gibi2026-07-01T19:04:41.252619Z qemu-kvm: -accel kvm: failed to initialize kvm: Operation not permitted19:18
gibi2026-07-01 19:04:41.323+0000: shutting down, reason=failed19:18
gibiI will apply you patches tomorrow..19:18

Generated by irclog2html.py 4.1.0 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!