Bug 2223779

Summary: Libvirt FDO installation Failed to instantiate TCTI
Product: Red Hat Enterprise Linux 9 Reporter: Sebastian Hetze <shetze>
Component: fido-device-onboardAssignee: idiez
Status: POST --- QA Contact: Xiaofeng Wang <xiaofwan>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 9.2CC: bbreard, miabbott, perobins
Target Milestone: rcKeywords: Triaged, ZStream
Target Release: 9.3   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
: 2231069 (view as bug list) Environment:
Last Closed: Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 2231069    

Description Sebastian Hetze 2023-07-18 21:35:35 UTC 
Description of problem:

When deploying a new VM from simplified-installer.iso as described in https://github.com/osbuild/rhel-for-edge-demo and https://www.youtube.com/watch?v=_nq5IAVbl2Y the installation fails with error messages

tcti:src/tss2-tcti/tctildr.c:416:Tss2_TctiLdr_Initialize_Ex() Failed to instantiate TCTI
tss_esapi::tcti_ldr > Error when creating a TCTI context: response code not recognized

right after the fdo_manufacturing_client is Performing DIUN.

The VM is configured with the emulated TIS TPMv2.0 device. Looking at the fdo-aio logfiles, I would say the communication between the fdo services and the VM is working.

Version-Release number of selected component (if applicable):
Version      : 0.4.7
Release      : 3.el9

How reproducible:
,   

Steps to Reproduce:
1. Create most simple simplified-installer.iso with the RHEL9 image builder
2. install fdo-admin-cli and provide with serviceinfo_api_server.yml from github rhel-for-edge-demo
3. deploy new VM with
virt-install \
--name ${NAME} \
--description "${NAME} FDO Edge Instance" \
--os-type=Linux \
--os-variant=rhel9.2 \
--tpm backend.type=emulator,backend.version=2.0,model=tpm-tis \
--boot uefi \
--ram=3072 \
--vcpus=1 \
--disk path=/var/lib/libvirt/images/${NAME}.qcow2,bus=virtio,size=10 \
--network network=host-bridge,mac=52:54:00:0b:46:2f \
--location /srv/Images/ISO/simplified-installer.iso

Actual results:

Installation fails and journalctl shows
tcti:src/tss2-tcti/tctildr.c:416:Tss2_TctiLdr_Initialize_Ex() Failed to instantiate TCTI
tss_esapi::tcti_ldr > Error when creating a TCTI context: response code not recognized

Expected results:

Installation customized according to serviceinfo_api_server.yml

Additional info:
Comment 1 Micah Abbott 2023-07-19 17:40:37 UTC 
We are tracking this upstream as well - https://github.com/fedora-iot/fido-device-onboard-rs/issues/531
Comment 2 idiez 2023-07-21 10:37:34 UTC 
PR with fix posted: https://github.com/fedora-iot/fido-device-onboard-rs/pull/536