1.\" Copyright (c) 2013 Peter Grehan 2.\" All rights reserved. 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. 9.\" 2. Redistributions in binary form must reproduce the above copyright 10.\" notice, this list of conditions and the following disclaimer in the 11.\" documentation and/or other materials provided with the distribution. 12.\" 13.\" THIS SOFTWARE IS PROVIDED BY THE AUTHORS AND CONTRIBUTORS ``AS IS'' AND 14.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 15.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 16.\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHORS OR CONTRIBUTORS BE LIABLE 17.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 18.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 19.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 20.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 21.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 22.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 23.\" SUCH DAMAGE. 24.\" 25.\" $FreeBSD$ 26.\" 27.Dd May 18, 2020 28.Dt BHYVE 8 29.Os 30.Sh NAME 31.Nm bhyve 32.Nd "run a guest operating system inside a virtual machine" 33.Sh SYNOPSIS 34.Nm 35.Op Fl AabCeHhPSuWwxY 36.Oo 37.Sm off 38.Fl c\~ 39.Oo 40.Op Cm cpus= 41.Ar numcpus 42.Oc 43.Op Cm ,sockets= Ar n 44.Op Cm ,cores= Ar n 45.Op Cm ,threads= Ar n 46.Oc 47.Sm on 48.Op Fl G Ar port 49.Op Fl g Ar gdbport 50.Oo Fl l 51.Sm off 52.Cm help | Ar lpcdev Op Cm \&, Ar conf 53.Sm on 54.Oc 55.Oo Fl m 56.Sm off 57.Ar memsize 58.Oo 59.Cm K No | Cm k No | Cm M No | Cm m No | Cm G No | Cm g No | Cm T No | Cm t 60.Oc 61.Sm on 62.Oc 63.Op Fl p Ar vcpu Ns Cm \&: Ns Ar hostcpu 64.Op Fl r Ar file 65.Oo Fl s 66.Sm off 67.Cm help | Ar slot Cm \&, Ar emulation Op Cm \&, Ar conf 68.Sm on 69.Oc 70.Op Fl U Ar uuid 71.Ar vmname 72.Sh DESCRIPTION 73.Nm 74is a hypervisor that runs guest operating systems inside a 75virtual machine. 76.Pp 77Parameters such as the number of virtual CPUs, amount of guest memory, and 78I/O connectivity can be specified with command-line parameters. 79.Pp 80If not using a boot ROM, the guest operating system must be loaded with 81.Xr bhyveload 8 82or a similar boot loader before running 83.Nm , 84otherwise, it is enough to run 85.Nm 86with a boot ROM of choice. 87.Pp 88.Nm 89runs until the guest operating system reboots or an unhandled hypervisor 90exit is detected. 91.Sh OPTIONS 92.Bl -tag -width 10n 93.It Fl a 94The guest's local APIC is configured in xAPIC mode. 95The xAPIC mode is the default setting so this option is redundant. 96It will be deprecated in a future version. 97.It Fl A 98Generate ACPI tables. 99Required for 100.Fx Ns /amd64 101guests. 102.It Fl b 103Enable a low-level console device supported by 104.Fx 105kernels compiled with 106.Cd "device bvmconsole" . 107This option will be deprecated in a future version. 108.It Fl c Op Ar setting ... 109Number of guest virtual CPUs 110and/or the CPU topology. 111The default value for each of 112.Ar numcpus , 113.Ar sockets , 114.Ar cores , 115and 116.Ar threads 117is 1. 118The current maximum number of guest virtual CPUs is 16. 119If 120.Ar numcpus 121is not specified then it will be calculated from the other arguments. 122The topology must be consistent in that the 123.Ar numcpus 124must equal the product of 125.Ar sockets , 126.Ar cores , 127and 128.Ar threads . 129If a 130.Ar setting 131is specified more than once the last one has precedence. 132.It Fl C 133Include guest memory in core file. 134.It Fl e 135Force 136.Nm 137to exit when a guest issues an access to an I/O port that is not emulated. 138This is intended for debug purposes. 139.It Fl g Ar gdbport 140For 141.Fx 142kernels compiled with 143.Cd "device bvmdebug" , 144allow a remote kernel kgdb to be relayed to the guest kernel gdb stub 145via a local IPv4 address and this port. 146This option will be deprecated in a future version. 147.It Fl G Ar port 148Start a debug server that uses the GDB protocol to export guest state to a 149debugger. 150An IPv4 TCP socket will be bound to the supplied 151.Ar port 152to listen for debugger connections. 153Only a single debugger may be attached to the debug server at a time. 154If 155.Ar port 156begins with 157.Sq w , 158.Nm 159will pause execution at the first instruction waiting for a debugger to attach. 160.It Fl h 161Print help message and exit. 162.It Fl H 163Yield the virtual CPU thread when a HLT instruction is detected. 164If this option is not specified, virtual CPUs will use 100% of a host CPU. 165.It Fl l Op Ar help|lpcdev Ns Op , Ns Ar conf 166Allow devices behind the LPC PCI-ISA bridge to be configured. 167The only supported devices are the TTY-class devices 168.Ar com1 169and 170.Ar com2 171and the boot ROM device 172.Ar bootrom . 173.Pp 174.Ar help 175print a list of supported LPC devices. 176.It Fl m Ar memsize Ns Op Ar K|k|M|m|G|g|T|t 177Guest physical memory size in bytes. 178This must be the same size that was given to 179.Xr bhyveload 8 . 180.Pp 181The size argument may be suffixed with one of K, M, G or T (either upper 182or lower case) to indicate a multiple of kilobytes, megabytes, gigabytes, 183or terabytes. 184If no suffix is given, the value is assumed to be in megabytes. 185.Pp 186.Ar memsize 187defaults to 256M. 188.It Fl p Ar vcpu:hostcpu 189Pin guest's virtual CPU 190.Em vcpu 191to 192.Em hostcpu . 193.It Fl P 194Force the guest virtual CPU to exit when a PAUSE instruction is detected. 195.It Fl r Ar file 196Resume a guest from a snapshot. 197The guest memory contents are restored from 198.Ar file , 199and the guest device and vCPU state are restored from the file 200.Dq Ar file Ns .kern . 201.Pp 202Note that the current snapshot file format requires that the configuration of 203devices in the new VM match the VM from which the snapshot was taken by specifying the 204same 205.Op Fl s 206and 207.Op Fl l 208options. 209The count of vCPUs and memory configuration are read from the snapshot. 210.It Fl s Op Ar help|slot,emulation Ns Op , Ns Ar conf 211Configure a virtual PCI slot and function. 212.Pp 213.Nm 214provides PCI bus emulation and virtual devices that can be attached to 215slots on the bus. 216There are 32 available slots, with the option of providing up to 8 functions 217per slot. 218.Bl -tag -width 10n 219.It Ar help 220print a list of supported PCI devices. 221.It Ar slot 222.Ar pcislot[:function] 223.Ar bus:pcislot:function 224.Pp 225The 226.Ar pcislot 227value is 0 to 31. 228The optional 229.Ar function 230value is 0 to 7. 231The optional 232.Ar bus 233value is 0 to 255. 234If not specified, the 235.Ar function 236value defaults to 0. 237If not specified, the 238.Ar bus 239value defaults to 0. 240.It Ar emulation 241.Bl -tag -width 10n 242.It Li hostbridge | Li amd_hostbridge 243.Pp 244Provide a simple host bridge. 245This is usually configured at slot 0, and is required by most guest 246operating systems. 247The 248.Li amd_hostbridge 249emulation is identical but uses a PCI vendor ID of 250.Li AMD . 251.It Li passthru 252PCI pass-through device. 253.It Li virtio-net 254Virtio network interface. 255.It Li virtio-blk 256Virtio block storage interface. 257.It Li virtio-scsi 258Virtio SCSI interface. 259.It Li virtio-rnd 260Virtio RNG interface. 261.It Li virtio-console 262Virtio console interface, which exposes multiple ports 263to the guest in the form of simple char devices for simple IO 264between the guest and host userspaces. 265.It Li ahci 266AHCI controller attached to arbitrary devices. 267.It Li ahci-cd 268AHCI controller attached to an ATAPI CD/DVD. 269.It Li ahci-hd 270AHCI controller attached to a SATA hard-drive. 271.It Li e1000 272Intel e82545 network interface. 273.It Li uart 274PCI 16550 serial device. 275.It Li lpc 276LPC PCI-ISA bridge with COM1 and COM2 16550 serial ports and a boot ROM. 277The LPC bridge emulation can only be configured on bus 0. 278.It Li fbuf 279Raw framebuffer device attached to VNC server. 280.It Li xhci 281eXtensible Host Controller Interface (xHCI) USB controller. 282.It Li nvme 283NVM Express (NVMe) controller. 284.It Li hda 285High Definition Audio Controller. 286.El 287.It Op Ar conf 288This optional parameter describes the backend for device emulations. 289If 290.Ar conf 291is not specified, the device emulation has no backend and can be 292considered unconnected. 293.Pp 294Network backends: 295.Bl -tag -width 10n 296.It Ar tapN Ns Oo , Ns Ar mac=xx:xx:xx:xx:xx:xx Oc Ns Oo , Ns Ar mtu=N Oc 297.It Ar vmnetN Ns Oo , Ns Ar mac=xx:xx:xx:xx:xx:xx Oc Ns Oo , Ns Ar mtu=N Oc 298.It Ar netgraph,path=ADDRESS,peerhook=HOOK Ns Oo , Ns Ar socket=NAME Oc Ns Oo , Ns Ar hook=HOOK Oc Ns Oo , Ns Ar mac=xx:xx:xx:xx:xx:xx Oc Ns Oo , Ns Ar mtu=N Oc 299.Pp 300If 301.Ar mac 302is not specified, the MAC address is derived from a fixed OUI and the 303remaining bytes from an MD5 hash of the slot and function numbers and 304the device name. 305.Pp 306The MAC address is an ASCII string in 307.Xr ethers 5 308format. 309.Pp 310With virtio-net devices, the 311.Ar mtu 312parameter can be specified to inform the guest about the largest MTU 313that should be allowed, expressed in bytes. 314.Pp 315With netgraph backend, the 316.Ar path 317and 318.Ar peerhook 319parameters must be specified to set the destination node and corresponding hook. 320The optional parameters 321.Ar socket 322and 323.Ar hook 324may be used to set the 325.Xr ng_socket 4 326node name and source hook. 327The 328.Ar ADDRESS , 329.Ar HOOK 330and 331.Ar NAME 332must comply with 333.Xr netgraph 4 334addressing rules. 335.El 336.Pp 337Block storage devices: 338.Bl -tag -width 10n 339.It Pa /filename Ns Oo , Ns Ar block-device-options Oc 340.It Pa /dev/xxx Ns Oo , Ns Ar block-device-options Oc 341.El 342.Pp 343The 344.Ar block-device-options 345are: 346.Bl -tag -width 8n 347.It Li nocache 348Open the file with 349.Dv O_DIRECT . 350.It Li direct 351Open the file using 352.Dv O_SYNC . 353.It Li ro 354Force the file to be opened read-only. 355.It Li sectorsize= Ns Ar logical Ns Oo / Ns Ar physical Oc 356Specify the logical and physical sector sizes of the emulated disk. 357The physical sector size is optional and is equal to the logical sector size 358if not explicitly specified. 359.El 360.Pp 361SCSI devices: 362.Bl -tag -width 10n 363.It Pa /dev/cam/ctl Ns Oo Ar pp . Ns Ar vp Oc Ns Oo , Ns Ar scsi-device-options Oc 364.El 365.Pp 366The 367.Ar scsi-device-options 368are: 369.Bl -tag -width 10n 370.It Li iid= Ns Ar IID 371Initiator ID to use when sending requests to specified CTL port. 372The default value is 0. 373.El 374.Pp 375TTY devices: 376.Bl -tag -width 10n 377.It Li stdio 378Connect the serial port to the standard input and output of 379the 380.Nm 381process. 382.It Pa /dev/xxx 383Use the host TTY device for serial port I/O. 384.El 385.Pp 386Boot ROM device: 387.Bl -tag -width 10n 388.It Pa romfile 389Map 390.Ar romfile 391in the guest address space reserved for boot firmware. 392.El 393.Pp 394Pass-through devices: 395.Bl -tag -width 10n 396.It Ns Ar slot Ns / Ns Ar bus Ns / Ns Ar function 397Connect to a PCI device on the host at the selector described by 398.Ar slot , 399.Ar bus , 400and 401.Ar function 402numbers. 403.El 404.Pp 405Guest memory must be wired using the 406.Fl S 407option when a pass-through device is configured. 408.Pp 409The host device must have been reserved at boot-time using the 410.Va pptdevs 411loader variable as described in 412.Xr vmm 4 . 413.Pp 414Virtio console devices: 415.Bl -tag -width 10n 416.It Li port1= Ns Pa /path/to/port1.sock Ns ,anotherport= Ns Pa ... 417A maximum of 16 ports per device can be created. 418Every port is named and corresponds to a Unix domain socket created by 419.Nm . 420.Nm 421accepts at most one connection per port at a time. 422.Pp 423Limitations: 424.Bl -bullet -offset 2n 425.It 426Due to lack of destructors in 427.Nm , 428sockets on the filesystem must be cleaned up manually after 429.Nm 430exits. 431.It 432There is no way to use the "console port" feature, nor the console port 433resize at present. 434.It 435Emergency write is advertised, but no-op at present. 436.El 437.El 438.Pp 439Framebuffer devices: 440.Bl -tag -width 10n 441.It Xo 442.Oo rfb= Ns Oo Ar IP\&: Oc Ns Ar port Oc Ns Oo ,w= Ns Ar width Oc Ns Oo ,h= Ns 443.Ar height Oc Ns Oo ,vga= Ns Ar vgaconf Oc Ns Oo Ns ,wait Oc Ns Oo ,password= Ns 444.Ar password Oc 445.Xc 446.Bl -tag -width 8n 447.It Ar IPv4:port No or Ar [IPv6%zone]:port 448An 449.Ar IP 450address and a 451.Ar port 452VNC should listen on. 453The default is to listen on localhost IPv4 address and default VNC port 5900. 454An IPv6 address must be enclosed in square brackets and may contain an 455optional zone identifier. 456.It Ar width No and Ar height 457A display resolution, width and height, respectively. 458If not specified, a default resolution of 1024x768 pixels will be used. 459Minimal supported resolution is 640x480 pixels, 460and maximum is 1920x1200 pixels. 461.It Ar vgaconf 462Possible values for this option are 463.Dq io 464(default), 465.Dq on 466, and 467.Dq off . 468PCI graphics cards have a dual personality in that they are 469standard PCI devices with BAR addressing, but may also 470implicitly decode legacy VGA I/O space 471.Pq Ad 0x3c0-3df 472and memory space 473.Pq 64KB at Ad 0xA0000 . 474The default 475.Dq io 476option should be used for guests that attempt to issue BIOS calls which result 477in I/O port queries, and fail to boot if I/O decode is disabled. 478.Pp 479The 480.Dq on 481option should be used along with the CSM BIOS capability in UEFI 482to boot traditional BIOS guests that require the legacy VGA I/O and 483memory regions to be available. 484.Pp 485The 486.Dq off 487option should be used for the UEFI guests that assume that 488VGA adapter is present if they detect the I/O ports. 489An example of such a guest is 490.Ox 491in UEFI mode. 492.Pp 493Please refer to the 494.Nm 495.Fx 496wiki page 497.Pq Lk https://wiki.freebsd.org/bhyve 498for configuration notes of particular guests. 499.It wait 500Instruct 501.Nm 502to only boot upon the initiation of a VNC connection, simplifying the 503installation of operating systems that require immediate keyboard input. 504This can be removed for post-installation use. 505.It password 506This type of authentication is known to be cryptographically weak and is not 507intended for use on untrusted networks. 508Many implementations will want to use stronger security, such as running 509the session over an encrypted channel provided by IPsec or SSH. 510.El 511.El 512.Pp 513xHCI USB devices: 514.Bl -tag -width 10n 515.It Li tablet 516A USB tablet device which provides precise cursor synchronization 517when using VNC. 518.El 519.Pp 520NVMe devices: 521.Bl -tag -width 10n 522.It Li devpath 523Accepted device paths are: 524.Ar /dev/blockdev 525or 526.Ar /path/to/image 527or 528.Ar ram=size_in_MiB . 529.It Li maxq 530Max number of queues. 531.It Li qsz 532Max elements in each queue. 533.It Li ioslots 534Max number of concurrent I/O requests. 535.It Li sectsz 536Sector size (defaults to blockif sector size). 537.It Li ser 538Serial number with maximum 20 characters. 539.El 540.Pp 541HD Audio devices: 542.Bl -tag -width 10n 543.It Li play 544Playback device, typically 545.Ar /dev/dsp0 . 546.It Li rec 547Recording device, typically 548.Ar /dev/dsp0 . 549.El 550.El 551.It Fl S 552Wire guest memory. 553.It Fl u 554RTC keeps UTC time. 555.It Fl U Ar uuid 556Set the universally unique identifier 557.Pq UUID 558in the guest's System Management BIOS System Information structure. 559By default a UUID is generated from the host's hostname and 560.Ar vmname . 561.It Fl w 562Ignore accesses to unimplemented Model Specific Registers (MSRs). 563This is intended for debug purposes. 564.It Fl W 565Force virtio PCI device emulations to use MSI interrupts instead of MSI-X 566interrupts. 567.It Fl x 568The guest's local APIC is configured in x2APIC mode. 569.It Fl Y 570Disable MPtable generation. 571.It Ar vmname 572Alphanumeric name of the guest. 573This should be the same as that created by 574.Xr bhyveload 8 . 575.El 576.Sh DEBUG SERVER 577The current debug server provides limited support for debuggers. 578.Ss Registers 579Each virtual CPU is exposed to the debugger as a thread. 580.Pp 581General purpose registers can be queried for each virtual CPU, but other 582registers such as floating-point and system registers cannot be queried. 583.Ss Memory 584Memory (including memory mapped I/O regions) can be read and written by the debugger. 585Memory operations use virtual addresses that are resolved to physical addresses 586via the current virtual CPU's active address translation. 587.Ss Control 588The running guest can be interrupted by the debugger at any time 589.Pq for example, by pressing Ctrl-C in the debugger . 590.Pp 591Single stepping is only supported on Intel CPUs supporting the MTRAP VM exit. 592.Pp 593Breakpoints are supported on Intel CPUs that support single stepping. 594Note that continuing from a breakpoint while interrupts are enabled in the 595guest may not work as expected due to timer interrupts firing while single 596stepping over the breakpoint. 597.Sh SIGNAL HANDLING 598.Nm 599deals with the following signals: 600.Pp 601.Bl -tag -width indent -compact 602.It SIGTERM 603Trigger ACPI poweroff for a VM 604.El 605.Sh EXIT STATUS 606Exit status indicates how the VM was terminated: 607.Pp 608.Bl -tag -width indent -compact 609.It 0 610rebooted 611.It 1 612powered off 613.It 2 614halted 615.It 3 616triple fault 617.It 4 618exited due to an error 619.El 620.Sh EXAMPLES 621If not using a boot ROM, the guest operating system must have been loaded with 622.Xr bhyveload 8 623or a similar boot loader before 624.Xr bhyve 4 625can be run. 626Otherwise, the boot loader is not needed. 627.Pp 628To run a virtual machine with 1GB of memory, two virtual CPUs, a virtio 629block device backed by the 630.Pa /my/image 631filesystem image, and a serial port for the console: 632.Bd -literal -offset indent 633bhyve -c 2 -s 0,hostbridge -s 1,lpc -s 2,virtio-blk,/my/image \\ 634 -l com1,stdio -A -H -P -m 1G vm1 635.Ed 636.Pp 637Run a 24GB single-CPU virtual machine with three network ports, one of which 638has a MAC address specified: 639.Bd -literal -offset indent 640bhyve -s 0,hostbridge -s 1,lpc -s 2:0,virtio-net,tap0 \\ 641 -s 2:1,virtio-net,tap1 \\ 642 -s 2:2,virtio-net,tap2,mac=00:be:fa:76:45:00 \\ 643 -s 3,virtio-blk,/my/image -l com1,stdio \\ 644 -A -H -P -m 24G bigvm 645.Ed 646.Pp 647Run an 8GB quad-CPU virtual machine with 8 AHCI SATA disks, an AHCI ATAPI 648CD-ROM, a single virtio network port, an AMD hostbridge, and the console 649port connected to an 650.Xr nmdm 4 651null-modem device. 652.Bd -literal -offset indent 653bhyve -c 4 \\ 654 -s 0,amd_hostbridge -s 1,lpc \\ 655 -s 1:0,ahci,hd:/images/disk.1,hd:/images/disk.2,\\ 656hd:/images/disk.3,hd:/images/disk.4,\\ 657hd:/images/disk.5,hd:/images/disk.6,\\ 658hd:/images/disk.7,hd:/images/disk.8,\\ 659cd:/images/install.iso \\ 660 -s 3,virtio-net,tap0 \\ 661 -l com1,/dev/nmdm0A \\ 662 -A -H -P -m 8G 663.Ed 664.Pp 665Run a UEFI virtual machine with a display resolution of 800 by 600 pixels 666that can be accessed via VNC at: 0.0.0.0:5900. 667.Bd -literal -offset indent 668bhyve -c 2 -m 4G -w -H \\ 669 -s 0,hostbridge \\ 670 -s 3,ahci-cd,/path/to/uefi-OS-install.iso \\ 671 -s 4,ahci-hd,disk.img \\ 672 -s 5,virtio-net,tap0 \\ 673 -s 29,fbuf,tcp=0.0.0.0:5900,w=800,h=600,wait \\ 674 -s 30,xhci,tablet \\ 675 -s 31,lpc -l com1,stdio \\ 676 -l bootrom,/usr/local/share/uefi-firmware/BHYVE_UEFI.fd \\ 677 uefivm 678.Ed 679.Pp 680Run a UEFI virtual machine with a VNC display that is bound to all IPv6 681addresses on port 5900. 682.Bd -literal -offset indent 683bhyve -c 2 -m 4G -w -H \\ 684 -s 0,hostbridge \\ 685 -s 4,ahci-hd,disk.img \\ 686 -s 5,virtio-net,tap0 \\ 687 -s 29,fbuf,tcp=[::]:5900,w=800,h=600 \\ 688 -s 30,xhci,tablet \\ 689 -s 31,lpc -l com1,stdio \\ 690 -l bootrom,/usr/local/share/uefi-firmware/BHYVE_UEFI.fd \\ 691 uefivm 692.Ed 693.Sh SEE ALSO 694.Xr bhyve 4 , 695.Xr netgraph 4 , 696.Xr ng_socket 4 , 697.Xr nmdm 4 , 698.Xr vmm 4 , 699.Xr ethers 5 , 700.Xr bhyvectl 8 , 701.Xr bhyveload 8 702.Pp 703.Rs 704.%A Intel 705.%B 64 and IA-32 Architectures Software Developer’s Manual 706.%V Volume 3 707.Re 708.Sh HISTORY 709.Nm 710first appeared in 711.Fx 10.0 . 712.Sh AUTHORS 713.An Neel Natu Aq Mt neel@freebsd.org 714.An Peter Grehan Aq Mt grehan@freebsd.org 715