Skip to content

TDX initialization fails on Ubuntu 25.04 with "reserved areas exhausted" (regression from issue #135) #415

New issue
New issue
Open
Open
TDX initialization fails on Ubuntu 25.04 with "reserved areas exhausted" (regression from issue #135)#415
@JadenSWang

Description

@JadenSWang
JadenSWang
opened on Dec 19, 2025

Same issue as #135 is occurring on Ubuntu 25.04 with kernel 6.14.0-1009-intel.

The CMR patches that fixed this for 24.04 appear to not be backported to the 25.04 kernel. Using the 24.04 kernel does not have this problem (initializes).

System:

  • Ubuntu 25.04 (Plucky)
  • Kernel: 6.14.0-1009-intel
  • CPU: Intel Xeon 6747P (Granite Rapids)
  • Server: HPE ProLiant DL380a Gen12
  • TDX Module: 2.0.08.00

Error:
virt/tdx: initialization failed: TDMR [0x40000000, 0x80000000): reserved areas exhausted.

Git ref

1c9ca3964b617ed2be13b47869df7663c4bd8e5f

Operating system details

Distributor ID:	Ubuntu
Description:	Ubuntu 25.04
Release:	25.04
Codename:	plucky

Kernel version

6.14.0-1009-intel #9-Ubuntu SMP PREEMPT_DYNAMIC Tue Nov 25 17:44:46 UTC 2025 x86_64 x86_64 GNU/Linux

TDX kernel logs

[   10.620111] virt/tdx: BIOS enabled: private KeyID range [32, 64)
[   10.620114] virt/tdx: Disable ACPI S3. Turn off TDX in the BIOS to use ACPI S3.
[   31.518687] virt/tdx: TDX module 2.0.08.00, build number 882, build date 0134fed5
[   33.250619] virt/tdx: initialization failed: TDMR [0x40000000, 0x80000000): reserved areas exhausted.
[   33.341756] virt/tdx: module initialization failed (-28)
...
[   10.620111] virt/tdx: BIOS enabled: private KeyID range [32, 64)
[   10.620114] virt/tdx: Disable ACPI S3. Turn off TDX in the BIOS to use ACPI S3.
[   31.518687] virt/tdx: TDX module 2.0.08.00, build number 882, build date 0134fed5
[   33.250619] virt/tdx: initialization failed: TDMR [0x40000000, 0x80000000): reserved areas exhausted.
[   33.341756] virt/tdx: module initialization failed (-28)

TDX CPU instruction support

CPU supports TDX according to /proc/cpuinfo

Model specific registers (MSRs)

MK_TME_ENABLED bit: 1 (expected value: 1)
SEAM_RR bit: 1 (expected value: 1)
NUM_TDX_PRIV_KEYS: 20
SGX_AND_MCHECK_STATUS: 0 (expected value: 0)
Production platform: Production (expected value: Production)

CPU details

 Intel(R) Xeon(R) 6747P

QEMU package details

Status: Installed
Package: qemu-system-x86
Version: 1:9.2.1+ds-1ubuntu4+tdx2.0~ppa2
APT-Sources: https://ppa.launchpadcontent.net/kobuk-team/tdx/ubuntu plucky/main amd64 Packages

Libvirt package details

Status: Installed
Package: libvirt-clients
Version: 11.0.0-2ubuntu6+tdx2.0~ppa1
APT-Sources: https://ppa.launchpadcontent.net/kobuk-team/tdx/ubuntu plucky/main amd64 Packages

OVMF package details

Status: Installed
Package: ovmf
Version: 2025.02-3ubuntu2.2
APT-Sources: http://in.archive.ubuntu.com/ubuntu plucky-updates/main amd64 Packages

sgx-dcap-pccs package details

Status: Not Installed

tdx-qgs package details

Status: Not Installed

sgx-ra-service package details

Status: Not Installed

sgx-pck-id-retrieval-tool package details

Status: Not Installed

QGSD service status

Unit qgsd.service could not be found.

PCCS service status

Unit pccs.service could not be found.

MPA registration logs (last 30 lines)

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions