1# AMD SEV-SNP 2 3### WARNING 4This feature is only currently supported on MSHV. 5 6AMD Secure Encrypted Virtualization & Secure Nested Paging (SEV-SNP) is an AMD 7technology designed to add strong memory integrity protection to help prevent 8malicious hypervisor-based attacks like data replay, memory-remapping and more 9in order to create an isolated execution environment. Here are some useful 10links: 11 12* [SNP Homepage] (https://www.amd.com/en/processors/amd-secure-encrypted-virtualization) 13more information about SEV-SNP technical aspects, design and specification. 14 15## Cloud Hypervisor support 16 17It is required to use a machine which has enabled support for AMD SEV-SNP in 18the BIOS. 19 20On the Cloud Hypervisor side, all you need is to build the project with the 21`sev_snp` feature enabled: 22 23```bash 24cargo build --no-default-features --features "sev_snp" 25``` 26 27**Note** 28Please note that `sev_snp` cannot be enabled in conjunction with `tdx` feature flag. 29 30You can run a SEV-SNP VM using the following command: 31 32```bash 33./cloud-hypervisor \ 34 --platform sev_snp=on \ 35 --cpus boot=1 \ 36 --memory size=1G \ 37 --disk path=ubuntu.img 38``` 39