git: 8bf0882e186e - main - bhyveload: enter capability mode after we setup the vcpu
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Wed, 03 Jan 2024 22:19:29 UTC
The branch main has been updated by kevans:
URL: https://cgit.FreeBSD.org/src/commit/?id=8bf0882e186effbd3d742ce17613cf9dfb81ce0c
commit 8bf0882e186effbd3d742ce17613cf9dfb81ce0c
Author: Kyle Evans <kevans@FreeBSD.org>
AuthorDate: 2024-01-03 22:18:00 +0000
Commit: Kyle Evans <kevans@FreeBSD.org>
CommitDate: 2024-01-03 22:19:15 +0000
bhyveload: enter capability mode after we setup the vcpu
Reviewed by: allanjude (earlier version), emaste, markj
Differential Revision: https://reviews.freebsd.org/D43286
---
usr.sbin/bhyveload/bhyveload.c | 7 +++++++
1 file changed, 7 insertions(+)
diff --git a/usr.sbin/bhyveload/bhyveload.c b/usr.sbin/bhyveload/bhyveload.c
index 855ce5947a93..124c1141bffa 100644
--- a/usr.sbin/bhyveload/bhyveload.c
+++ b/usr.sbin/bhyveload/bhyveload.c
@@ -78,6 +78,7 @@
#include <termios.h>
#include <unistd.h>
+#include <capsicum_helpers.h>
#include <vmmapi.h>
#include "userboot.h"
@@ -868,6 +869,12 @@ main(int argc, char** argv)
vcpu = vm_vcpu_open(ctx, BSP);
+ caph_cache_catpages();
+ if (caph_enter() < 0) {
+ perror("caph_enter");
+ exit(1);
+ }
+
/*
* setjmp in the case the guest wants to swap out interpreter,
* cb_swap_interpreter will swap out loader as appropriate and set