Page MenuHomeFreeBSD
Differential D54740

vmm: Add privilege checks to vmmctl operations
ClosedPublic
Actions

Authored by markj on Jan 16 2026, 4:29 PM.
Tags
None
Referenced Files
Unknown Object (File)
Mon, Mar 2, 6:19 PM
Unknown Object (File)
Mon, Mar 2, 11:35 AM
Unknown Object (File)
Sat, Feb 28, 6:18 PM
Unknown Object (File)
Sat, Feb 28, 6:02 PM
Unknown Object (File)
Sat, Feb 28, 3:03 PM
Unknown Object (File)
Wed, Feb 25, 9:12 AM
Unknown Object (File)
Mon, Feb 23, 7:37 PM
Unknown Object (File)
Fri, Feb 20, 12:07 PM
View All 24 Files
Subscribers
imp

Details

Reviewers
bnovkov
Group Reviewers
bhyve
Commits
rGd4c05edd410e: vmm: Add privilege checks to vmmctl operations
Summary

In preparation for supporting creation of VMs by unprivileged users, add
some restrictions:

  • Disallow creation of non-transient VMs by unprivileged users. That is, if an unprivileged user creates a VM, the VM must be destroyed automatically once the last fd referencing it is gone.
  • Disallow destroying VMs created by a different user, unless the caller has the PRIV_VMM_DESTROY privilege.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Skipped
Unit
Tests Skipped
Build Status
Buildable 69925
Build 66808: arc lint + arc unit

Event Timeline

markj created this revision.Jan 16 2026, 4:29 PM
Herald added a subscriber: imp. · View Herald TranscriptJan 16 2026, 4:29 PM
markj requested review of this revision.Jan 16 2026, 4:29 PM
markj added a parent revision: D54739: bhyve: Don't log a warning when we fail to open /dev/pci.
markj added a child revision: D54741: vmm: Enable unprivileged bhyve.
Harbormaster completed remote builds in B69925: Diff 169856.Jan 16 2026, 4:29 PM
bnovkov accepted this revision as: bnovkov.Jan 20 2026, 2:29 PM
This revision is now accepted and ready to land.Jan 20 2026, 2:29 PM
markj added a parent revision: D54851: bhyve: Use PCIOCGETCONF to find the host LPC bridge.Jan 23 2026, 10:34 PM
markj updated this revision to Diff 171994.Mon, Feb 16, 3:45 PM

Rebase

This revision now requires review to proceed.Mon, Feb 16, 3:45 PM
Harbormaster completed remote builds in B70706: Diff 171994.Mon, Feb 16, 3:45 PM
bnovkov accepted this revision as: bnovkov.Thu, Feb 19, 5:14 PM
This revision is now accepted and ready to land.Thu, Feb 19, 5:14 PM
Closed by commit rGd4c05edd410e: vmm: Add privilege checks to vmmctl operations (authored by markj). · Explain WhyThu, Feb 19, 5:16 PM
This revision was automatically updated to reflect the committed changes.
markj added a commit: rGd4c05edd410e: vmm: Add privilege checks to vmmctl operations.

Revision Contents
Changeset List

PathSize
sys/
dev/
vmm/
21 lines
sys/
8 lines

Diff 169856

View Options

sys/dev/vmm/vmm_dev.c

Loading...
View Options

sys/sys/priv.h

Loading...