[Bug 251046] bhyve PCI passthrough does not work inside jail

From: <bugzilla-noreply_at_freebsd.org>
Date: Mon, 26 Jul 2021 16:58:17 +0000
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=251046

--- Comment #8 from Mark Johnston <markj_at_FreeBSD.org> ---
Sorry for the delayed follow up.  I wrote some patches to remove the need for
/dev/io:

https://reviews.freebsd.org/D31307
https://reviews.freebsd.org/D31308

Testing would be appreciated.  This does not remove the dependency on /dev/mem
yet.

I am very skeptical that jailing bhyve with PCI passthrough enabled provides
any meaningful security.  /dev/pci allows a jailed root to access all PCI(e)
devices in the system.  Jails can be a useful deployment mechanism though, so I
think we should better support their integration with bhyve.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
Received on Mon Jul 26 2021 - 16:58:17 UTC

Original text of this message