Date: Sun, 8 Sep 2024 19:43:36 +0000 From: Shawn Webb <shawn.webb@hardenedbsd.org> To: John Baldwin <jhb@freebsd.org> Cc: Mark Johnston <markj@freebsd.org>, src-committers@freebsd.org, dev-commits-src-all@freebsd.org, dev-commits-src-main@freebsd.org Subject: Re: git: e962b37bf0ff - main - bhyve: Do not enable PCI BAR decoding if a boot ROM is present Message-ID: <jzmieezb3tr2ub24lv6ijak57omugwh5zgxvhzvwrknxhnu3yq@fdy6jze3rhlv> In-Reply-To: <spdohps7mmfirvxtxnv25nga5spycopqxol3vekfrptsmeo7p4@5jbif4bvvle2> References: <202408191359.47JDxAbK026029@gitrepo.freebsd.org> <qkp2zbmykgwsbrxekut35rexlktypzg5oj2bbfslig7eksprpi@2lw5x47mtytp> <7213e551-6be2-44b1-a8b6-55645c593c12@FreeBSD.org> <spdohps7mmfirvxtxnv25nga5spycopqxol3vekfrptsmeo7p4@5jbif4bvvle2>
next in thread | previous in thread | raw e-mail | index | archive | help
--d3c3vavkuh42wyjl Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Sep 06, 2024 at 04:30:07PM UTC, Shawn Webb wrote: > On Fri, Sep 06, 2024 at 09:37:45AM UTC, John Baldwin wrote: > > On 9/5/24 22:10, Shawn Webb wrote: > > > Hey Mark, > > >=20 > > > This commit seems to force me to now pass "-o pci.enable_bars=3Dtrue"= to > > > all my VMs on amd64. I wonder if that might be a POLA violation. I > > > didn't realize that I needed to set that until I bisected the src > > > tree, looking for the commit that broke bhyve for me. > > >=20 > > > Is changing the default here really worth it for amd64? If so, I'm > > > thinking this should be in both RELNOTES and UPDATING. I now have to > > > propigate re-enabling this across my entire infrastructure. > > >=20 > > > Thanks, > >=20 > > That should only be true if you are using an older UEFI firmware that d= id > > not program BARs. Are you seeing this on stock FreeBSD, and which vers= ion > > of the UEFI ROM are you using? >=20 > Ah, thanks for the hint, John! My UEFI edk2 bhyve package is years out > of date. I guess I need to pay more attention to what `pkg upgrade` > does NOT upgrade: >=20 > hbsd-laptop-02[shawn]:/home/shawn $ pkg info | grep bhyve > uefi-edk2-bhyve-g20210226_1,2 UEFI EDK2 firmware for bhyve > uefi-edk2-bhyve-devel-g20190424_1 UEFI-EDK2 firmware for bhyve >=20 > hbsd-laptop-02[shawn]:/home/shawn $ pkg search bhyve > edk2-bhyve-g202308_5 EDK2 Firmware for bhyve >=20 > I'm building some packages on my laptop right now. Once that finishes, > I'll go ahead and upgrade to the new package, retest, and report. >=20 > If this is indeed the problem (I suspect it is), I apologize for the > noise. Thanks, though, for the hint and the help. :-) The issue was indeed the out-of-date EDK2 UEFI firmware. Sorry for the noise, but thank you very much for the hint! --=20 Shawn Webb Cofounder / Security Engineer HardenedBSD Tor-ified Signal: +1 303-901-1600 / shawn_webb_opsec.50 https://git.hardenedbsd.org/hardenedbsd/pubkeys/-/raw/master/Shawn_Webb/03A= 4CBEBB82EA5A67D9F3853FF2E67A277F8E1FA.pub.asc --d3c3vavkuh42wyjl Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAABCAAdFiEEA6TL67gupaZ9nzhT/y5nonf44foFAmbd/mAACgkQ/y5nonf4 4fq+Sg//eq8ePmxbzQh8ANFUeX6/XdsLYeorRytMRaoea0ZnKfey+H0X+/pRDTkz NLbfmwKDf2PmpLCVODwPpP4b8D+yhTlV87eTqFfb32xa+uptTXHeXnFkb7JTy3wm GqJHOPAcI033voDo9ch7hFVxPOpGaBIMVjUXlsJz/u+8M3JPTWWIM+LBz1+O6mQB L/jE2NcbVdwoocljz+mlAwK7mfaQPcckAWHf5Sy/eP55cMyKdH1glfhcRRW90HRS U/E0+dLD5bwbsSpHj4yArp/7nYwcMjqbB5FZX7hloTpvRq1XLxFkTxKP0SUZwWtA r0pAg9LxSVOPar3hchPpg8Wbvs+0FxE0CnaE2mVmD99VxAaUQFuKmPYhij6xvWlo WL9ifridoKKQePczhFUW+dLXG3ev56bFDzGIjIlWbeusPGjI0Z1POa5YV8LYE/q+ ltKFVwyHDIGUJFB1HJIc6QAshExp8tYoBG1jxR4n8zDUBLR2ETuFAZF6dc4fZ/LA p5G8HuiEOQJgzHzb6zKlOwE2jsc9W/yTBU42ng4OUdAgaL7+/YhfZdEUk7g/Y48P DYLAcOPWYnah53HF2QnJ8Z96jyXdjorJtdkOpUHCYpEk0mLWeL92WxBe2A+HSSJz Z/BAttQC84RGi3EBru5iiA8vs/u/kgszdRaHFJtxH8k0nnj9bPs= =sUwR -----END PGP SIGNATURE----- --d3c3vavkuh42wyjl--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?jzmieezb3tr2ub24lv6ijak57omugwh5zgxvhzvwrknxhnu3yq>