From 8219005587c883a34530c74f183f0a84038734e5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Daniel=20Wei=C3=9Fe?=
 <66256922+daniel-weisse@users.noreply.github.com>
Date: Tue, 14 May 2024 16:02:30 +0200
Subject: [PATCH] terraform: only set `confidential_instance_type` if
 `cc_technology` is `SEV_SNP` (#3085)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
---
 terraform/infrastructure/gcp/modules/instance_group/main.tf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/terraform/infrastructure/gcp/modules/instance_group/main.tf b/terraform/infrastructure/gcp/modules/instance_group/main.tf
index fe9da14ae..1da265319 100644
--- a/terraform/infrastructure/gcp/modules/instance_group/main.tf
+++ b/terraform/infrastructure/gcp/modules/instance_group/main.tf
@@ -42,7 +42,7 @@ resource "google_compute_instance_template" "template" {
 
   confidential_instance_config {
     enable_confidential_compute = true
-    confidential_instance_type  = var.cc_technology
+    confidential_instance_type  = var.cc_technology == "SEV_SNP" ? "SEV_SNP" : null
   }
 
   # If SEV-SNP is used, we have to explicitly select a Milan processor, as per