VM-Operator/org.jdrupes.vmoperator.runner.qemu/templates/Standard-VM-latest.ftl.yaml

"swtpm":
  # Candidate paths for the executable 
  "executable": [ "/usr/bin/swtpm" ]
  
  # Arguments may be specified as nested lists for better readability.
  # The arguments are flattened before being passed to the process.
  "arguments":
    - "socket"
    - "--tpm2"
    - [ "--tpmstate", "dir=${ dataDir }" ]
    - [ "--ctrl", "type=unixio,path=${ runtimeDir }/swtpm-sock,mode=0600" ]
    - "--terminate"

"qemu":
  # Candidate paths for the executable 
  "executable": [ "/usr/bin/qemu-system-x86_64" ]

  # Arguments may be specified as nested lists for better readability.
  # The arguments are flattened before being passed to the process.
  # Unless otherwise noted, flags can be found on
  # https://www.qemu.org/docs/master/system/invocation.html
  #
  # Useful links:
  #   - https://joonas.fi/2021/02/uefi-pc-boot-process-and-uefi-with-qemu/
  "arguments":
    # Qemu configuration
    - "-no-user-config"
    # * https://www.kernel.org/doc/Documentation/virtual/kvm/api.txt
    - [ "-global", "kvm-pit.lost_tick_policy=delay" ]
    # * Allow spawn for network setup (tap/bridge)
    - [ "-sandbox", "on,obsolete=deny,elevateprivileges=deny,\
        spawn=allow,resourcecontrol=deny" ] 
    # * Qemu monitor connection          
    - [ "-chardev", "socket,id=charmonitor,\
        path=${ runtimeDir }/monitor.sock,server=on,wait=off" ]
    - [ "-mon", "chardev=charmonitor,id=monitor,mode=control" ]
    
    # VM configuration
    - [ "-name", "guest=${ vm.name },debug-threads=on" ]
    - [ "-uuid", "${ vm.uuid }"]
    # * Configure "modern" machine (pc-q35-7.0). USB is off, because we
    #   configure (better) xhci later. No VMWare IO port (obviously). 
    #   For smm=on see https://scumjr.github.io/2016/01/04/playing-with-smm-and-qemu/.
    #   Configure ROM/EEPROM for UEFI.
    - [ "-machine", "pc-q35-7.0,usb=off,vmport=off,dump-guest-core=off\
        <#if vm.firmware?starts_with("secure")>,smm=on</#if>\
        <#if firmwareRom??>,pflash0=fw-rom-device\
        ,pflash1=fw-eeprom-device</#if>,memory-backend=pc.ram,hpet=off" ]
    # * https://bugzilla.redhat.com/show_bug.cgi?id=1170533, may be unnecessary
    - [ "-global", "ICH9-LPC.disable_s3=1" ]
    - [ "-global", "ICH9-LPC.disable_s4=1" ]
    <#if firmwareRom??>
    # * Provide ROM/EEPROM devices (instead of built-in BIOS)
    - [ "-blockdev", "node-name=fw-rom-file,driver=file,cache.direct=on,\
        filename=${ firmwareRom },auto-read-only=true,discard=unmap" ]
    - [ "-blockdev", "node-name=fw-rom-device,driver=raw,\
        read-only=true,file=fw-rom-file" ]
    - [ "-blockdev", "node-name=fw-eeprom-file,driver=file,cache.direct=on,\
        filename=${ firmwareVars },auto-read-only=true,discard=unmap" ]
    - [ "-blockdev", "node-name=fw-eeprom-device,driver=raw,\
        read-only=false,file=fw-eeprom-file" ]
    </#if>
    # * Driver tuning for secure boot
    #   https://wiki.debian.org/SecureBoot/VirtualMachine
    #   http://www.linux-kvm.org/downloads/lersek/ovmf-whitepaper-c770f8c.txt
    <#if vm.firmware?starts_with("secure")>
    - [ "-global", "driver=cfi.pflash01,property=secure,value=on" ]
    </#if>
    <#if vm.bootMenu>
    - [ "-boot", "menu=on" ]
    </#if>
    # * Provide RAM
    - [ "-object", "memory-backend-ram,id=pc.ram,\
        size=${ (vm.maximumRam!1073741824)?c }" ]
    - [ "-m", "${ ((vm.maximumRam!1073741824)/1048576)?round?c }" ]
    - [ "-device", "virtio-balloon-pci,id=balloon0" ]
    <#if vm.useTpm>
    # Attach TPM
    - [ "-chardev", "socket,id=chrtpm,path=${ runtimeDir }/swtpm-sock" ]
    - [ "-tpmdev", "emulator,id=tpm0,chardev=chrtpm" ]
    - [ "-device", "tpm-tis,tpmdev=tpm0" ]
    </#if>    
    - [ "-cpu", "${ vm.cpuModel }" ]
    <#if vm.maximumCpus gt 1>
    - [ "-smp", "${ vm.currentCpus },maxcpus=${ vm.maximumCpus }\
        <#if vm.cpuSockets gt 0>,sockets=${ vm.cpuSockets }</#if>\
        <#if vm.diesPerSocket gt 0>,cores=${ vm.diesPerSocket }</#if>\
        <#if vm.coresPerDie gt 0>,cores=${ vm.coresPerDie }</#if>\
        <#if vm.threadsPerCore gt 0>,cores=${ vm.threadsPerCore }</#if>" ]
    </#if>
    <#if vm.accelerator != "none">
    - [ "-accel", "${ vm.accelerator }"]
    </#if>
    # (More devices:) 
    # * RTC
    - [ "-rtc", "base=${ vm.rtcBase },clock=${ vm.rtcClock },driftfix=slew" ]
    # On-board serial, made available as pty on host (not used)
    - [ "-chardev", "pty,id=ptyserial0" ]
    - [ "-device", "isa-serial,chardev=ptyserial0,id=serial0,index=0" ]
    # * PCI Serial device(s) (more in SPICE configuration below)
    #   Best explanation found: 
    #   https://fedoraproject.org/wiki/Features/VirtioSerial
    - [ "-device", "virtio-serial-pci,id=virtio-serial0" ]
    #   - Guest agent serial connection
    - [ "-device", "virtserialport,id=channel0,name=org.qemu.guest_agent.0,\
        chardev=guest-agent-socket" ]
    - [ "-chardev","socket,id=guest-agent-socket,\
        path=${ runtimeDir }/org.qemu.guest_agent.0,server=on,wait=off" ]
    # * USB Hub and devices (more in SPICE configuration below)
    #   https://qemu-project.gitlab.io/qemu/system/devices/usb.html
    #   https://github.com/qemu/qemu/blob/master/hw/usb/hcd-xhci.c
    - [ "-device", "qemu-xhci,p2=15,p3=15,id=usb" ]
    - [ "-device", "usb-tablet" ]
    # * Random number generator
    - [ "-object", "rng-random,id=objrng0,filename=/dev/random" ]
    - [ "-device", "virtio-rng-pci,rng=objrng0,id=rng0" ]
    # * Graphics and Audio Card
    #   This is the only video "card" without a flickering cursor.
    - [ "-device", "virtio-vga,id=video0,max_outputs=1" ]
    - [ "-device", "ich9-intel-hda,id=sound0" ]
    # Network
    <#assign nwCounter = 0/>
    <#list vm.network![] as itf>
    <#switch itf.type!"tap">
    <#case "tap">
    - [ "-netdev", "bridge,id=hostnet${ nwCounter }\
        <#if itf.bridge??>,br=${ itf.bridge }</#if>" ]
    - [ "-device", "${ itf.device },netdev=hostnet${ nwCounter }\
        <#if itf.mac??>,mac=${ itf.mac }</#if>" ]
    <#break>
    <#case "user">
    - [ "-netdev", "user,id=hostnet${ nwCounter }\
        <#if itf.net??>,net=${ itf.net }</#if>" ]
    - [ "-device", "${ itf.device },netdev=hostnet${ nwCounter }\
        <#if itf.mac??>,mac=${ itf.mac }</#if>" ]
    <#break>
    </#switch>
    <#assign nwCounter += 1/>
    </#list>
    # Drives
    # * CD-Drives
    <#assign cdCounter = 0/>
    <#list vm.drives![] as drive>
    <#if (drive.type!"") == "ide-cd">
    - [ "-drive", "id=drive-cdrom${ cdCounter },if=none,media=cdrom,cache=none\
        <#if drive.file??>,file=${ drive.file }</#if>" ]
    #   (IDE is old, but faster than usb-storage. virtio-blk-pci does not  
    #    work without file [empty drive])
    - [ "-device", "ide-cd,id=cd${ cdCounter },bus=ide.${ cdCounter },\
        drive=drive-cdrom${ cdCounter }\
        <#if drive.bootindex??>,bootindex=${ drive.bootindex }</#if>" ]
    <#assign cdCounter += 1/>
    </#if>
    </#list>
    # * Disks
    <#assign drvCounter = 0/>
    <#list vm.drives![] as drive>
    <#switch (drive.type!"raw")>
    <#case "raw">
    #   - how to access the resource on the host (a file or a block device)
    <#if drive.file??>
    - [ "-blockdev", "node-name=drive-${ drvCounter }-host-resource,\
        driver=file,filename=${ drive.file }" ]
    </#if>
    <#if drive.device??>
    - [ "-blockdev", "node-name=drive-${ drvCounter }-host-resource,\
        driver=host_device,filename=${ drive.device },\
        aio=native,cache.direct=on,cache.no-flush=off,\
        auto-read-only=true,discard=unmap" ]
    </#if>
    #   - how to use the file (as sequence of literal blocks)
    - [ "-blockdev", "node-name=drive-${ drvCounter }-backend,driver=raw,\
        file=drive-${ drvCounter }-host-resource" ]
    #   - the driver (what the guest sees)
    - [ "-device", "virtio-blk-pci,drive=drive-${ drvCounter }-backend\
        <#if drive.bootindex??>,bootindex=${ drive.bootindex }</#if>" ]
    <#assign drvCounter += 1/>
    <#break>
    </#switch>
    </#list>
    
    # SPICE (display, channels ...)
    # https://www.linux-kvm.org/page/SPICE
    - [ "-spice", "port=${ vm.spice.port?c },disable-ticketing=on\
        ,seamless-migration=on" ]
    - [ "-chardev", "spicevmc,id=vdagentdev,name=vdagent" ]
    - [ "-device", "virtserialport,name=com.redhat.spice.0,\
        chardev=vdagentdev" ]
    # * Audio
    - [ "-audiodev", "driver=spice,id=audio1" ]
    - [ "-device", "hda-duplex,audiodev=audio1" ]
    # * USB redirection
    <#list 0..<vm.spice.usbRedirects as index>
    - [ "-chardev", "spicevmc,id=charredir${ index },name=usbredir" ]
    - [ "-device", "usb-redir,id=redir${ index },chardev=charredir${ index }" ]
    </#list>
Initial commit. 2023-05-23 21:38:32 +02:00			`"swtpm":`
			`# Candidate paths for the executable`
			`"executable": [ "/usr/bin/swtpm" ]`

			`# Arguments may be specified as nested lists for better readability.`
			`# The arguments are flattened before being passed to the process.`
			`"arguments":`
			`- "socket"`
			`- "--tpm2"`
Persist tpm data across host reboots. 2023-06-09 16:49:32 +02:00			`- [ "--tpmstate", "dir=${ dataDir }" ]`
Initial commit. 2023-05-23 21:38:32 +02:00			`- [ "--ctrl", "type=unixio,path=${ runtimeDir }/swtpm-sock,mode=0600" ]`
			`- "--terminate"`

			`"qemu":`
			`# Candidate paths for the executable`
			`"executable": [ "/usr/bin/qemu-system-x86_64" ]`

			`# Arguments may be specified as nested lists for better readability.`
			`# The arguments are flattened before being passed to the process.`
			`# Unless otherwise noted, flags can be found on`
			`# https://www.qemu.org/docs/master/system/invocation.html`
			`#`
			`# Useful links:`
			`# - https://joonas.fi/2021/02/uefi-pc-boot-process-and-uefi-with-qemu/`
			`"arguments":`
Boot from CD-ROM works. 2023-05-28 21:35:13 +02:00			`# Qemu configuration`
Initial commit. 2023-05-23 21:38:32 +02:00			`- "-no-user-config"`
Boot from CD-ROM works. 2023-05-28 21:35:13 +02:00			`# * https://www.kernel.org/doc/Documentation/virtual/kvm/api.txt`
			`- [ "-global", "kvm-pit.lost_tick_policy=delay" ]`
Add comment. 2023-06-07 15:05:12 +02:00			`# * Allow spawn for network setup (tap/bridge)`
Boot from CD-ROM works. 2023-05-28 21:35:13 +02:00			`- [ "-sandbox", "on,obsolete=deny,elevateprivileges=deny,\`
			`spawn=allow,resourcecontrol=deny" ]`
			`# * Qemu monitor connection`
			`- [ "-chardev", "socket,id=charmonitor,\`
			`path=${ runtimeDir }/monitor.sock,server=on,wait=off" ]`
			`- [ "-mon", "chardev=charmonitor,id=monitor,mode=control" ]`

			`# VM configuration`
Initial commit. 2023-05-23 21:38:32 +02:00			`- [ "-name", "guest=${ vm.name },debug-threads=on" ]`
			`- [ "-uuid", "${ vm.uuid }"]`
Boot from CD-ROM works. 2023-05-28 21:35:13 +02:00			`# * Configure "modern" machine (pc-q35-7.0). USB is off, because we`
			`# configure (better) xhci later. No VMWare IO port (obviously).`
			`# For smm=on see https://scumjr.github.io/2016/01/04/playing-with-smm-and-qemu/.`
			`# Configure ROM/EEPROM for UEFI.`
Initial commit. 2023-05-23 21:38:32 +02:00			`- [ "-machine", "pc-q35-7.0,usb=off,vmport=off,dump-guest-core=off\`
Support secure boot. 2023-06-08 13:43:11 +02:00			`<#if vm.firmware?starts_with("secure")>,smm=on</#if>\`
			`<#if firmwareRom??>,pflash0=fw-rom-device\`
Initial commit. 2023-05-23 21:38:32 +02:00			`,pflash1=fw-eeprom-device</#if>,memory-backend=pc.ram,hpet=off" ]`
Boot from CD-ROM works. 2023-05-28 21:35:13 +02:00			`# * https://bugzilla.redhat.com/show_bug.cgi?id=1170533, may be unnecessary`
			`- [ "-global", "ICH9-LPC.disable_s3=1" ]`
			`- [ "-global", "ICH9-LPC.disable_s4=1" ]`
Support secure boot. 2023-06-08 13:43:11 +02:00			`<#if firmwareRom??>`
Boot from CD-ROM works. 2023-05-28 21:35:13 +02:00			`# * Provide ROM/EEPROM devices (instead of built-in BIOS)`
Provide remaining devices. 2023-05-29 23:14:48 +02:00			`- [ "-blockdev", "node-name=fw-rom-file,driver=file,cache.direct=on,\`
Initial commit. 2023-05-23 21:38:32 +02:00			`filename=${ firmwareRom },auto-read-only=true,discard=unmap" ]`
			`- [ "-blockdev", "node-name=fw-rom-device,driver=raw,\`
			`read-only=true,file=fw-rom-file" ]`
Provide remaining devices. 2023-05-29 23:14:48 +02:00			`- [ "-blockdev", "node-name=fw-eeprom-file,driver=file,cache.direct=on,\`
Support secure boot. 2023-06-08 13:43:11 +02:00			`filename=${ firmwareVars },auto-read-only=true,discard=unmap" ]`
Initial commit. 2023-05-23 21:38:32 +02:00			`- [ "-blockdev", "node-name=fw-eeprom-device,driver=raw,\`
			`read-only=false,file=fw-eeprom-file" ]`
Support secure boot. 2023-06-08 13:43:11 +02:00			`</#if>`
Add drive support. 2023-06-08 18:21:39 +02:00			`# * Driver tuning for secure boot`
			`# https://wiki.debian.org/SecureBoot/VirtualMachine`
			`# http://www.linux-kvm.org/downloads/lersek/ovmf-whitepaper-c770f8c.txt`
Support secure boot. 2023-06-08 13:43:11 +02:00			`<#if vm.firmware?starts_with("secure")>`
			`- [ "-global", "driver=cfi.pflash01,property=secure,value=on" ]`
			`</#if>`
Support optional boot menu and increase power down timeout. 2023-06-11 14:04:25 +02:00			`<#if vm.bootMenu>`
			`- [ "-boot", "menu=on" ]`
			`</#if>`
Boot from CD-ROM works. 2023-05-28 21:35:13 +02:00			`# * Provide RAM`
Initial commit. 2023-05-23 21:38:32 +02:00			`- [ "-object", "memory-backend-ram,id=pc.ram,\`
Handle memory sizes properly. 2023-06-10 23:48:14 +02:00			`size=${ (vm.maximumRam!1073741824)?c }" ]`
Round. 2023-06-11 14:24:05 +02:00			`- [ "-m", "${ ((vm.maximumRam!1073741824)/1048576)?round?c }" ]`
Provide remaining devices. 2023-05-29 23:14:48 +02:00			`- [ "-device", "virtio-balloon-pci,id=balloon0" ]`
Add CPU configuration. 2023-05-24 11:44:47 +02:00			`<#if vm.useTpm>`
			`# Attach TPM`
			`- [ "-chardev", "socket,id=chrtpm,path=${ runtimeDir }/swtpm-sock" ]`
			`- [ "-tpmdev", "emulator,id=tpm0,chardev=chrtpm" ]`
			`- [ "-device", "tpm-tis,tpmdev=tpm0" ]`
			`</#if>`
			`- [ "-cpu", "${ vm.cpuModel }" ]`
			`<#if vm.maximumCpus gt 1>`
			`- [ "-smp", "${ vm.currentCpus },maxcpus=${ vm.maximumCpus }\`
			`<#if vm.cpuSockets gt 0>,sockets=${ vm.cpuSockets }</#if>\`
			`<#if vm.diesPerSocket gt 0>,cores=${ vm.diesPerSocket }</#if>\`
			`<#if vm.coresPerDie gt 0>,cores=${ vm.coresPerDie }</#if>\`
			`<#if vm.threadsPerCore gt 0>,cores=${ vm.threadsPerCore }</#if>" ]`
			`</#if>`
			`<#if vm.accelerator != "none">`
			`- [ "-accel", "${ vm.accelerator }"]`
			`</#if>`
Boot from CD-ROM works. 2023-05-28 21:35:13 +02:00			`# (More devices:)`
			`# * RTC`
			`- [ "-rtc", "base=${ vm.rtcBase },clock=${ vm.rtcClock },driftfix=slew" ]`
			`# On-board serial, made available as pty on host (not used)`
			`- [ "-chardev", "pty,id=ptyserial0" ]`
			`- [ "-device", "isa-serial,chardev=ptyserial0,id=serial0,index=0" ]`
			`# * PCI Serial device(s) (more in SPICE configuration below)`
			`# Best explanation found:`
			`# https://fedoraproject.org/wiki/Features/VirtioSerial`
			`- [ "-device", "virtio-serial-pci,id=virtio-serial0" ]`
			`# - Guest agent serial connection`
Provide remaining devices. 2023-05-29 23:14:48 +02:00			`- [ "-device", "virtserialport,id=channel0,name=org.qemu.guest_agent.0,\`
			`chardev=guest-agent-socket" ]`
Boot from CD-ROM works. 2023-05-28 21:35:13 +02:00			`- [ "-chardev","socket,id=guest-agent-socket,\`
			`path=${ runtimeDir }/org.qemu.guest_agent.0,server=on,wait=off" ]`
			`# * USB Hub and devices (more in SPICE configuration below)`
			`# https://qemu-project.gitlab.io/qemu/system/devices/usb.html`
			`# https://github.com/qemu/qemu/blob/master/hw/usb/hcd-xhci.c`
			`- [ "-device", "qemu-xhci,p2=15,p3=15,id=usb" ]`
			`- [ "-device", "usb-tablet" ]`
			`# * Random number generator`
			`- [ "-object", "rng-random,id=objrng0,filename=/dev/random" ]`
			`- [ "-device", "virtio-rng-pci,rng=objrng0,id=rng0" ]`
			`# * Graphics and Audio Card`
Add drive support. 2023-06-08 18:21:39 +02:00			`# This is the only video "card" without a flickering cursor.`
Boot from CD-ROM works. 2023-05-28 21:35:13 +02:00			`- [ "-device", "virtio-vga,id=video0,max_outputs=1" ]`
			`- [ "-device", "ich9-intel-hda,id=sound0" ]`
Add networking. 2023-06-07 15:03:11 +02:00			`# Network`
			`<#assign nwCounter = 0/>`
			`<#list vm.network![] as itf>`
			`<#switch itf.type!"tap">`
			`<#case "tap">`
Handle bridge name correctly. 2023-06-18 14:38:53 +02:00			`- [ "-netdev", "bridge,id=hostnet${ nwCounter }\`
			`<#if itf.bridge??>,br=${ itf.bridge }</#if>" ]`
Add networking. 2023-06-07 15:03:11 +02:00			`- [ "-device", "${ itf.device },netdev=hostnet${ nwCounter }\`
			`<#if itf.mac??>,mac=${ itf.mac }</#if>" ]`
			`<#break>`
			`<#case "user">`
			`- [ "-netdev", "user,id=hostnet${ nwCounter }\`
			`<#if itf.net??>,net=${ itf.net }</#if>" ]`
			`- [ "-device", "${ itf.device },netdev=hostnet${ nwCounter }\`
			`<#if itf.mac??>,mac=${ itf.mac }</#if>" ]`
			`<#break>`
			`</#switch>`
			`<#assign nwCounter += 1/>`
			`</#list>`
Boot from CD-ROM works. 2023-05-28 21:35:13 +02:00			`# Drives`
			`# * CD-Drives`
			`<#assign cdCounter = 0/>`
			`<#list vm.drives![] as drive>`
Add drive support. 2023-06-08 18:21:39 +02:00			`<#if (drive.type!"") == "ide-cd">`
Provide remaining devices. 2023-05-29 23:14:48 +02:00			`- [ "-drive", "id=drive-cdrom${ cdCounter },if=none,media=cdrom,cache=none\`
Boot from CD-ROM works. 2023-05-28 21:35:13 +02:00			`<#if drive.file??>,file=${ drive.file }</#if>" ]`
			`# (IDE is old, but faster than usb-storage. virtio-blk-pci does not`
			`# work without file [empty drive])`
Make more than one CD drive work. 2023-06-08 21:43:11 +02:00			`- [ "-device", "ide-cd,id=cd${ cdCounter },bus=ide.${ cdCounter },\`
			`drive=drive-cdrom${ cdCounter }\`
Boot from CD-ROM works. 2023-05-28 21:35:13 +02:00			`<#if drive.bootindex??>,bootindex=${ drive.bootindex }</#if>" ]`
			`<#assign cdCounter += 1/>`
			`</#if>`
			`</#list>`
Add drive support. 2023-06-08 18:21:39 +02:00			`# * Disks`
			`<#assign drvCounter = 0/>`
			`<#list vm.drives![] as drive>`
			`<#switch (drive.type!"raw")>`
			`<#case "raw">`
			`# - how to access the resource on the host (a file or a block device)`
			`<#if drive.file??>`
			`- [ "-blockdev", "node-name=drive-${ drvCounter }-host-resource,\`
			`driver=file,filename=${ drive.file }" ]`
			`</#if>`
			`<#if drive.device??>`
			`- [ "-blockdev", "node-name=drive-${ drvCounter }-host-resource,\`
			`driver=host_device,filename=${ drive.device },\`
			`aio=native,cache.direct=on,cache.no-flush=off,\`
			`auto-read-only=true,discard=unmap" ]`
			`</#if>`
Boot from CD-ROM works. 2023-05-28 21:35:13 +02:00			`# - how to use the file (as sequence of literal blocks)`
Add drive support. 2023-06-08 18:21:39 +02:00			`- [ "-blockdev", "node-name=drive-${ drvCounter }-backend,driver=raw,\`
			`file=drive-${ drvCounter }-host-resource" ]`
Boot from CD-ROM works. 2023-05-28 21:35:13 +02:00			`# - the driver (what the guest sees)`
Add drive support. 2023-06-08 18:21:39 +02:00			`- [ "-device", "virtio-blk-pci,drive=drive-${ drvCounter }-backend\`
			`<#if drive.bootindex??>,bootindex=${ drive.bootindex }</#if>" ]`
			`<#assign drvCounter += 1/>`
			`<#break>`
			`</#switch>`
			`</#list>`
Boot from CD-ROM works. 2023-05-28 21:35:13 +02:00
Provide remaining devices. 2023-05-29 23:14:48 +02:00			`# SPICE (display, channels ...)`
			`# https://www.linux-kvm.org/page/SPICE`
Configurable SPICE settings. 2023-05-30 18:04:31 +02:00			`- [ "-spice", "port=${ vm.spice.port?c },disable-ticketing=on\`
			`,seamless-migration=on" ]`
Provide remaining devices. 2023-05-29 23:14:48 +02:00			`- [ "-chardev", "spicevmc,id=vdagentdev,name=vdagent" ]`
			`- [ "-device", "virtserialport,name=com.redhat.spice.0,\`
			`chardev=vdagentdev" ]`
			`# * Audio`
			`- [ "-audiodev", "driver=spice,id=audio1" ]`
			`- [ "-device", "hda-duplex,audiodev=audio1" ]`
			`# * USB redirection`
Configurable SPICE settings. 2023-05-30 18:04:31 +02:00			`<#list 0..<vm.spice.usbRedirects as index>`
			`- [ "-chardev", "spicevmc,id=charredir${ index },name=usbredir" ]`
			`- [ "-device", "usb-redir,id=redir${ index },chardev=charredir${ index }" ]`
			`</#list>`