docs: Update AMD launch secure description

Update document with changes in qemu capability caching and the added secure guest support checking for AMD SEV in virt-host-validate. Signed-off-by: Boris Fiuczynski <fiuczy@linux.ibm.com> Reviewed-by: Erik Skultety <eskultet@redhat.com>
2024-12-23 21:34:54 +03:00 · 2020-06-15 10:28:11 +02:00 · 2020-06-15 10:28:11 +02:00 · 2c3ffa3728
commit 2c3ffa3728
parent 4b561d49ad
1 changed files with 6 additions and 3 deletions
--- a/docs/kbase/launch_security_sev.rst
+++ b/docs/kbase/launch_security_sev.rst
@ -30,8 +30,11 @@ Enabling SEV on the host
 ========================

 Before VMs can make use of the SEV feature you need to make sure your
-AMD CPU does support SEV. You can check whether SEV is among the CPU
-flags with:
+AMD CPU does support SEV. You can run ``libvirt-host-validate``
+(libvirt >= 6.5.0) to check if your host supports secure guests or you
+can follow the manual checks below.
+
+You can manually check whether SEV is among the CPU flags with:

 ::

@ -109,7 +112,7 @@ following:
     </features>
   </domainCapabilities>

-Note that if libvirt was already installed and libvirtd running before
+Note that if libvirt (<6.5.0) was already installed and libvirtd running before
 enabling SEV in the kernel followed by the host reboot you need to force
 libvirtd to re-probe both the host and QEMU capabilities. First stop
 libvirtd: