rpms / libvirt

Clone
Source Code
GIT

Blame SOURCES/libvirt-docs-Update-AMD-launch-secure-description.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c8-beta-stream-rhel c8-sig-altarch-stream-rhel c8-stream-rhel c8s-sig-hyperscale c8s-stream-rhel c9 c9-beta c9s-sig-hyperscale
  1.   a41c76bf11425b6b84221cc1e59a95c6c25a9331
  2.   SOURCES
  3.   libvirt-docs-Update-AMD-launch-secure-description.patch
Blob History Raw
a41c76 
From b89b5b577ae05a9f453a55b8e7cbd81db27e95df Mon Sep 17 00:00:00 2001
a41c76 
Message-Id: <b89b5b577ae05a9f453a55b8e7cbd81db27e95df@dist-git>
a41c76 
From: Boris Fiuczynski <fiuczy@linux.ibm.com>
a41c76 
Date: Wed, 24 Jun 2020 13:16:22 +0200
a41c76 
Subject: [PATCH] docs: Update AMD launch secure description
a41c76 
MIME-Version: 1.0
a41c76 
Content-Type: text/plain; charset=UTF-8
a41c76 
Content-Transfer-Encoding: 8bit
a41c76
a41c76 
Update document with changes in qemu capability caching and the added
a41c76 
secure guest support checking for AMD SEV in virt-host-validate.
a41c76
a41c76 
Signed-off-by: Boris Fiuczynski <fiuczy@linux.ibm.com>
a41c76 
Reviewed-by: Erik Skultety <eskultet@redhat.com>
a41c76 
(cherry picked from commit 2c3ffa37284b9fa3d1e6c369fa2bb71c6f6dd92a)
a41c76
a41c76 
https://bugzilla.redhat.com/show_bug.cgi?id=1848997
a41c76 
https://bugzilla.redhat.com/show_bug.cgi?id=1850351
a41c76
a41c76 
Signed-off-by: Jiri Denemark <jdenemar@redhat.com>
a41c76 
Message-Id: <1229877019008ac6f0135296af502e596c3e30e5.1592996194.git.jdenemar@redhat.com>
a41c76 
Reviewed-by: Ján Tomko <jtomko@redhat.com>
a41c76 
---
a41c76 
 docs/kbase/launch_security_sev.rst | 9 ++++++---
a41c76 
 1 file changed, 6 insertions(+), 3 deletions(-)
a41c76
a41c76 
diff --git a/docs/kbase/launch_security_sev.rst b/docs/kbase/launch_security_sev.rst
a41c76 
index 65f258587d..19b978481a 100644
a41c76 
--- a/docs/kbase/launch_security_sev.rst
a41c76 
+++ b/docs/kbase/launch_security_sev.rst
a41c76 
@@ -30,8 +30,11 @@ Enabling SEV on the host
a41c76 
 ========================
a41c76
a41c76 
 Before VMs can make use of the SEV feature you need to make sure your
a41c76 
-AMD CPU does support SEV. You can check whether SEV is among the CPU
a41c76 
-flags with:
a41c76 
+AMD CPU does support SEV. You can run ``libvirt-host-validate``
a41c76 
+(libvirt >= 6.5.0) to check if your host supports secure guests or you
a41c76 
+can follow the manual checks below.
a41c76 
+
a41c76 
+You can manually check whether SEV is among the CPU flags with:
a41c76
a41c76 
 ::
a41c76
a41c76 
@@ -109,7 +112,7 @@ following:
a41c76 
      </features>
a41c76 
    </domainCapabilities>
a41c76
a41c76 
-Note that if libvirt was already installed and libvirtd running before
a41c76 
+Note that if libvirt (<6.5.0) was already installed and libvirtd running before
a41c76 
 enabling SEV in the kernel followed by the host reboot you need to force
a41c76 
 libvirtd to re-probe both the host and QEMU capabilities. First stop
a41c76 
 libvirtd:
a41c76 
--
a41c76 
2.27.0
a41c76

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation