[Bug 251046] bhyve PCI passthrough does not work inside jail
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Fri Apr 9 13:05:37 UTC 2021
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=251046
--- Comment #6 from neirac <cneirabustos at gmail.com> ---
(In reply to Peter Wemm from comment #5)
Currently illumos is able to do pci-passthrough with bhyve running inside a
zone, that gives you an extra layer of security,if there is escape from the
hypervisor then the attacker will land on a jail and not the host system.
Here are relevant links on how is used on illumos :
https://movementarian.org/blog/posts/2018-10-26-pci-pass-through-support-with-bhyve-and-smartos/
https://www.cyber-tec.org/2019/05/29/using-bhyve-pci-passthrough-on-omnios/
I think it would be nice to have this feature on FreeBSD jails, as Mark stated
"better solution would be to extend pci(4) so that bhyve can use it to do
everything required for PCI passthrough."
I would like to explore this option any pointer on how to start would be really
good.
--
You are receiving this mail because:
You are on the CC list for the bug.
More information about the freebsd-jail
mailing list