Fedora 34 Adding SEVCTL Utility For Managing AMD SEV
SEVCTL is a utility for managing AMD Secure Encrypted Virtualization with displaying various SEV details, managing of certificates, resetting the platform's persistent state, and other features for what is exposed by the SEV management API with EPYC processors.
SEV allows for isolating of guests and the hypervisor using unique keys managed by the AMD Secure Processor. AMD Secure Encrypted Virtualization has been built upon since its original introduction with the EPYC 7001 "Naples" processors. AMD has been upstreaming SEV support into the Linux kernel and relevant pieces of the open-source virtualization stack. Most recently they've begun working to upstream SEV-SNP for EPYC 7003 Milan CPUs.
SEVCTL is an Apache 2.0 licensed utility under the Enarx project for dealing with various vendor Trusted Execution Environments.
SEVCTL has been in development the past year and is available on GitHub while Fedora 34 is the first major distribution packaging it. The Fedora 34 details on SEVCTL can be found via this blog post by Red Hat's Connor Kuehl.