Page MenuHomeFreeBSD
Differential D54740

vmm: Add privilege checks to vmmctl operations
ClosedPublic
Actions

Authored by markj on Jan 16 2026, 4:29 PM.
Tags
None
Referenced Files
Unknown Object (File)
Wed, May 13, 10:13 PM
Unknown Object (File)
Wed, May 13, 8:31 PM
Unknown Object (File)
Wed, May 13, 8:10 PM
Unknown Object (File)
Wed, May 13, 7:40 PM
Unknown Object (File)
Mon, May 11, 8:27 AM
Unknown Object (File)
Mon, Apr 27, 12:34 PM
Unknown Object (File)
Sun, Apr 26, 4:40 PM
Unknown Object (File)
Wed, Apr 22, 3:19 AM
View All 38 Files
Subscribers
imp

Details

Reviewers
bnovkov
Group Reviewers
bhyve
Commits
rGd4c05edd410e: vmm: Add privilege checks to vmmctl operations
Summary

In preparation for supporting creation of VMs by unprivileged users, add
some restrictions:

  • Disallow creation of non-transient VMs by unprivileged users. That is, if an unprivileged user creates a VM, the VM must be destroyed automatically once the last fd referencing it is gone.
  • Disallow destroying VMs created by a different user, unless the caller has the PRIV_VMM_DESTROY privilege.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

markj created this revision.Jan 16 2026, 4:29 PM
Herald added a subscriber: imp. · View Herald TranscriptJan 16 2026, 4:29 PM
markj requested review of this revision.Jan 16 2026, 4:29 PM
markj added a parent revision: D54739: bhyve: Don't log a warning when we fail to open /dev/pci.
markj added a child revision: D54741: vmm: Enable unprivileged bhyve.
Harbormaster completed remote builds in B69925: Diff 169856.Jan 16 2026, 4:29 PM
bnovkov accepted this revision as: bnovkov.Jan 20 2026, 2:29 PM
This revision is now accepted and ready to land.Jan 20 2026, 2:29 PM
markj added a parent revision: D54851: bhyve: Use PCIOCGETCONF to find the host LPC bridge.Jan 23 2026, 10:34 PM
markj updated this revision to Diff 171994.Feb 16 2026, 3:45 PM

Rebase

This revision now requires review to proceed.Feb 16 2026, 3:45 PM
Harbormaster completed remote builds in B70706: Diff 171994.Feb 16 2026, 3:45 PM
bnovkov accepted this revision as: bnovkov.Feb 19 2026, 5:14 PM
This revision is now accepted and ready to land.Feb 19 2026, 5:14 PM
Closed by commit rGd4c05edd410e: vmm: Add privilege checks to vmmctl operations (authored by markj). · Explain WhyFeb 19 2026, 5:16 PM
This revision was automatically updated to reflect the committed changes.
markj added a commit: rGd4c05edd410e: vmm: Add privilege checks to vmmctl operations.

Revision Contents
Changeset List

PathSize
sys/
dev/
vmm/
21 lines
sys/
4 lines

Diff 172257

View Options

sys/dev/vmm/vmm_dev.c

Loading...
View Options

sys/sys/priv.h

Loading...