From owner-freebsd-amd64@freebsd.org Fri Oct 21 19:26:44 2016 Return-Path: Delivered-To: freebsd-amd64@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id DE16EC1BEC3 for ; Fri, 21 Oct 2016 19:26:44 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id B4AACC4A for ; Fri, 21 Oct 2016 19:26:44 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id u9LJQifK061101 for ; Fri, 21 Oct 2016 19:26:44 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: freebsd-amd64@FreeBSD.org Subject: [Bug 213689] Allow bhyve to run from non-root user Date: Fri, 21 Oct 2016 19:26:44 +0000 X-Bugzilla-Reason: CC X-Bugzilla-Type: new X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: ivan.zhmudo@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: freebsd-bugs@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: bug_id short_desc product version rep_platform op_sys bug_status bug_severity priority component assigned_to reporter cc attachments.created Message-ID: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-amd64@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: Porting FreeBSD to the AMD64 platform List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Oct 2016 19:26:45 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D213689 Bug ID: 213689 Summary: Allow bhyve to run from non-root user Product: Base System Version: CURRENT Hardware: amd64 OS: Any Status: New Severity: Affects Some People Priority: --- Component: kern Assignee: freebsd-bugs@FreeBSD.org Reporter: ivan.zhmudo@gmail.com CC: freebsd-amd64@FreeBSD.org CC: freebsd-amd64@FreeBSD.org Created attachment 176037 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D176037&action= =3Dedit The patch Hello. I've tried a new bhyve from FreeBSD 11.0, with its new graphics supp= ort, it's great, many thanks to developers. I do not need VirtualBox anymore! The only annoying problem with it is inability to run a virtual machine fro= m an ordinary (non-root) user. I've wrote a fast fix for this. It adds /dev/vmmctl device when vmm module = is loaded. When you can set any permissions on it by editing /etc/devfs.conf, = for example, or simply calling chown/chmod. Those users, who can read from / wr= ite to this device can create, open and destroy virtual machines. The devices in /dev/vmm and /dev/vmm.io are created with UIDs of user who creates them. The old way for creating or destroying virtual machines was removed ("beavis" sysctls), libvmmapi is changed correspondingly with the kernel. Please tell me what you think. As for me, I added myself to a group bhyveusr and added the following to /etc/devfs.conf own vmmctl root:bhyveusr perm vmmctl 0660 --=20 You are receiving this mail because: You are on the CC list for the bug.=