On Tue, Aug 29, 2023 at 09:54:40AM +0200, Erik Skultety wrote:
> On Mon, Aug 28, 2023 at 02:10:42PM -0700, Derek Lee wrote:
> > When SEV is enabled in domcapabilities does that just mean any of SEV,
> > SEV-ES, SEV-SNP is possible on the hardware?
>
> No, only means
On Mon, Aug 28, 2023 at 02:10:42PM -0700, Derek Lee wrote:
> When SEV is enabled in domcapabilities does that just mean any of SEV,
> SEV-ES, SEV-SNP is possible on the hardware?
No, only means that the CPU has 'sev' in the flags. On
its own it doesn't say anything about the ES/SNP fe
When SEV is enabled in domcapabilities does that just mean any of SEV,
SEV-ES, SEV-SNP is possible on the hardware?
Similarly, does enabling SEV as a launchSecurity option in a domainXML mean
that whichever SEV is available will be enabled? And if the guest policy
has the ES flag set