1.\" Copyright (c) 2013 Peter Grehan 2.\" All rights reserved. 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. 9.\" 2. Redistributions in binary form must reproduce the above copyright 10.\" notice, this list of conditions and the following disclaimer in the 11.\" documentation and/or other materials provided with the distribution. 12.\" 13.\" THIS SOFTWARE IS PROVIDED BY THE AUTHORS AND CONTRIBUTORS ``AS IS'' AND 14.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 15.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 16.\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHORS OR CONTRIBUTORS BE LIABLE 17.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 18.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 19.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 20.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 21.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 22.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 23.\" SUCH DAMAGE. 24.\" 25.\" $FreeBSD$ 26.\" 27.Dd April 22, 2020 28.Dt BHYVE 8 29.Os 30.Sh NAME 31.Nm bhyve 32.Nd "run a guest operating system inside a virtual machine" 33.Sh SYNOPSIS 34.Nm 35.Op Fl AabCeHhPSuWwxY 36.Oo 37.Sm off 38.Fl c\~ 39.Oo 40.Op Cm cpus= 41.Ar numcpus 42.Oc 43.Op Cm ,sockets= Ar n 44.Op Cm ,cores= Ar n 45.Op Cm ,threads= Ar n 46.Oc 47.Sm on 48.Op Fl G Ar port 49.Op Fl g Ar gdbport 50.Oo Fl l 51.Sm off 52.Cm help | Ar lpcdev Op Cm \&, Ar conf 53.Sm on 54.Oc 55.Oo Fl m 56.Sm off 57.Ar memsize 58.Oo 59.Cm K No | Cm k No | Cm M No | Cm m No | Cm G No | Cm g No | Cm T No | Cm t 60.Oc 61.Sm on 62.Oc 63.Op Fl p Ar vcpu Ns Cm \&: Ns Ar hostcpu 64.Oo Fl s 65.Sm off 66.Cm help | Ar slot Cm \&, Ar emulation Op Cm \&, Ar conf 67.Sm on 68.Oc 69.Op Fl U Ar uuid 70.Ar vmname 71.Sh DESCRIPTION 72.Nm 73is a hypervisor that runs guest operating systems inside a 74virtual machine. 75.Pp 76Parameters such as the number of virtual CPUs, amount of guest memory, and 77I/O connectivity can be specified with command-line parameters. 78.Pp 79If not using a boot ROM, the guest operating system must be loaded with 80.Xr bhyveload 8 81or a similar boot loader before running 82.Nm , 83otherwise, it is enough to run 84.Nm 85with a boot ROM of choice. 86.Pp 87.Nm 88runs until the guest operating system reboots or an unhandled hypervisor 89exit is detected. 90.Sh OPTIONS 91.Bl -tag -width 10n 92.It Fl a 93The guest's local APIC is configured in xAPIC mode. 94The xAPIC mode is the default setting so this option is redundant. 95It will be deprecated in a future version. 96.It Fl A 97Generate ACPI tables. 98Required for 99.Fx Ns /amd64 100guests. 101.It Fl b 102Enable a low-level console device supported by 103.Fx 104kernels compiled with 105.Cd "device bvmconsole" . 106This option will be deprecated in a future version. 107.It Fl c Op Ar setting ... 108Number of guest virtual CPUs 109and/or the CPU topology. 110The default value for each of 111.Ar numcpus , 112.Ar sockets , 113.Ar cores , 114and 115.Ar threads 116is 1. 117The current maximum number of guest virtual CPUs is 16. 118If 119.Ar numcpus 120is not specified then it will be calculated from the other arguments. 121The topology must be consistent in that the 122.Ar numcpus 123must equal the product of 124.Ar sockets , 125.Ar cores , 126and 127.Ar threads . 128If a 129.Ar setting 130is specified more than once the last one has precedence. 131.It Fl C 132Include guest memory in core file. 133.It Fl e 134Force 135.Nm 136to exit when a guest issues an access to an I/O port that is not emulated. 137This is intended for debug purposes. 138.It Fl g Ar gdbport 139For 140.Fx 141kernels compiled with 142.Cd "device bvmdebug" , 143allow a remote kernel kgdb to be relayed to the guest kernel gdb stub 144via a local IPv4 address and this port. 145This option will be deprecated in a future version. 146.It Fl G Ar port 147Start a debug server that uses the GDB protocol to export guest state to a 148debugger. 149An IPv4 TCP socket will be bound to the supplied 150.Ar port 151to listen for debugger connections. 152Only a single debugger may be attached to the debug server at a time. 153If 154.Ar port 155begins with 156.Sq w , 157.Nm 158will pause execution at the first instruction waiting for a debugger to attach. 159.It Fl h 160Print help message and exit. 161.It Fl H 162Yield the virtual CPU thread when a HLT instruction is detected. 163If this option is not specified, virtual CPUs will use 100% of a host CPU. 164.It Fl l Op Ar help|lpcdev Ns Op , Ns Ar conf 165Allow devices behind the LPC PCI-ISA bridge to be configured. 166The only supported devices are the TTY-class devices 167.Ar com1 168and 169.Ar com2 170and the boot ROM device 171.Ar bootrom . 172.Pp 173.Ar help 174print a list of supported LPC devices. 175.It Fl m Ar memsize Ns Op Ar K|k|M|m|G|g|T|t 176Guest physical memory size in bytes. 177This must be the same size that was given to 178.Xr bhyveload 8 . 179.Pp 180The size argument may be suffixed with one of K, M, G or T (either upper 181or lower case) to indicate a multiple of kilobytes, megabytes, gigabytes, 182or terabytes. 183If no suffix is given, the value is assumed to be in megabytes. 184.Pp 185.Ar memsize 186defaults to 256M. 187.It Fl p Ar vcpu:hostcpu 188Pin guest's virtual CPU 189.Em vcpu 190to 191.Em hostcpu . 192.It Fl P 193Force the guest virtual CPU to exit when a PAUSE instruction is detected. 194.It Fl s Op Ar help|slot,emulation Ns Op , Ns Ar conf 195Configure a virtual PCI slot and function. 196.Pp 197.Nm 198provides PCI bus emulation and virtual devices that can be attached to 199slots on the bus. 200There are 32 available slots, with the option of providing up to 8 functions 201per slot. 202.Bl -tag -width 10n 203.It Ar help 204print a list of supported PCI devices. 205.It Ar slot 206.Ar pcislot[:function] 207.Ar bus:pcislot:function 208.Pp 209The 210.Ar pcislot 211value is 0 to 31. 212The optional 213.Ar function 214value is 0 to 7. 215The optional 216.Ar bus 217value is 0 to 255. 218If not specified, the 219.Ar function 220value defaults to 0. 221If not specified, the 222.Ar bus 223value defaults to 0. 224.It Ar emulation 225.Bl -tag -width 10n 226.It Li hostbridge | Li amd_hostbridge 227.Pp 228Provide a simple host bridge. 229This is usually configured at slot 0, and is required by most guest 230operating systems. 231The 232.Li amd_hostbridge 233emulation is identical but uses a PCI vendor ID of 234.Li AMD . 235.It Li passthru 236PCI pass-through device. 237.It Li virtio-net 238Virtio network interface. 239.It Li virtio-blk 240Virtio block storage interface. 241.It Li virtio-scsi 242Virtio SCSI interface. 243.It Li virtio-rnd 244Virtio RNG interface. 245.It Li virtio-console 246Virtio console interface, which exposes multiple ports 247to the guest in the form of simple char devices for simple IO 248between the guest and host userspaces. 249.It Li ahci 250AHCI controller attached to arbitrary devices. 251.It Li ahci-cd 252AHCI controller attached to an ATAPI CD/DVD. 253.It Li ahci-hd 254AHCI controller attached to a SATA hard-drive. 255.It Li e1000 256Intel e82545 network interface. 257.It Li uart 258PCI 16550 serial device. 259.It Li lpc 260LPC PCI-ISA bridge with COM1 and COM2 16550 serial ports and a boot ROM. 261The LPC bridge emulation can only be configured on bus 0. 262.It Li fbuf 263Raw framebuffer device attached to VNC server. 264.It Li xhci 265eXtensible Host Controller Interface (xHCI) USB controller. 266.It Li nvme 267NVM Express (NVMe) controller. 268.It Li hda 269High Definition Audio Controller. 270.El 271.It Op Ar conf 272This optional parameter describes the backend for device emulations. 273If 274.Ar conf 275is not specified, the device emulation has no backend and can be 276considered unconnected. 277.Pp 278Network devices: 279.Bl -tag -width 10n 280.It Ar tapN Ns Op , Ns Ar mac=xx:xx:xx:xx:xx:xx 281.It Ar vmnetN Ns Op , Ns Ar mac=xx:xx:xx:xx:xx:xx 282.Pp 283If 284.Ar mac 285is not specified, the MAC address is derived from a fixed OUI and the 286remaining bytes from an MD5 hash of the slot and function numbers and 287the device name. 288.Pp 289The MAC address is an ASCII string in 290.Xr ethers 5 291format. 292.El 293.Pp 294Block storage devices: 295.Bl -tag -width 10n 296.It Pa /filename Ns Oo , Ns Ar block-device-options Oc 297.It Pa /dev/xxx Ns Oo , Ns Ar block-device-options Oc 298.El 299.Pp 300The 301.Ar block-device-options 302are: 303.Bl -tag -width 8n 304.It Li nocache 305Open the file with 306.Dv O_DIRECT . 307.It Li direct 308Open the file using 309.Dv O_SYNC . 310.It Li ro 311Force the file to be opened read-only. 312.It Li sectorsize= Ns Ar logical Ns Oo / Ns Ar physical Oc 313Specify the logical and physical sector sizes of the emulated disk. 314The physical sector size is optional and is equal to the logical sector size 315if not explicitly specified. 316.El 317.Pp 318SCSI devices: 319.Bl -tag -width 10n 320.It Pa /dev/cam/ctl Ns Oo Ar pp . Ns Ar vp Oc Ns Oo , Ns Ar scsi-device-options Oc 321.El 322.Pp 323The 324.Ar scsi-device-options 325are: 326.Bl -tag -width 10n 327.It Li iid= Ns Ar IID 328Initiator ID to use when sending requests to specified CTL port. 329The default value is 0. 330.El 331.Pp 332TTY devices: 333.Bl -tag -width 10n 334.It Li stdio 335Connect the serial port to the standard input and output of 336the 337.Nm 338process. 339.It Pa /dev/xxx 340Use the host TTY device for serial port I/O. 341.El 342.Pp 343Boot ROM device: 344.Bl -tag -width 10n 345.It Pa romfile 346Map 347.Ar romfile 348in the guest address space reserved for boot firmware. 349.El 350.Pp 351Pass-through devices: 352.Bl -tag -width 10n 353.It Ns Ar slot Ns / Ns Ar bus Ns / Ns Ar function 354Connect to a PCI device on the host at the selector described by 355.Ar slot , 356.Ar bus , 357and 358.Ar function 359numbers. 360.El 361.Pp 362Guest memory must be wired using the 363.Fl S 364option when a pass-through device is configured. 365.Pp 366The host device must have been reserved at boot-time using the 367.Va pptdevs 368loader variable as described in 369.Xr vmm 4 . 370.Pp 371Virtio console devices: 372.Bl -tag -width 10n 373.It Li port1= Ns Pa /path/to/port1.sock Ns ,anotherport= Ns Pa ... 374A maximum of 16 ports per device can be created. 375Every port is named and corresponds to a Unix domain socket created by 376.Nm . 377.Nm 378accepts at most one connection per port at a time. 379.Pp 380Limitations: 381.Bl -bullet -offset 2n 382.It 383Due to lack of destructors in 384.Nm , 385sockets on the filesystem must be cleaned up manually after 386.Nm 387exits. 388.It 389There is no way to use the "console port" feature, nor the console port 390resize at present. 391.It 392Emergency write is advertised, but no-op at present. 393.El 394.El 395.Pp 396Framebuffer devices: 397.Bl -tag -width 10n 398.It Xo 399.Oo rfb= Ns Oo Ar IP\&: Oc Ns Ar port Oc Ns Oo ,w= Ns Ar width Oc Ns Oo ,h= Ns 400.Ar height Oc Ns Oo ,vga= Ns Ar vgaconf Oc Ns Oo Ns ,wait Oc Ns Oo ,password= Ns 401.Ar password Oc 402.Xc 403.Bl -tag -width 8n 404.It Ar IPv4:port No or Ar [IPv6%zone]:port 405An 406.Ar IP 407address and a 408.Ar port 409VNC should listen on. 410The default is to listen on localhost IPv4 address and default VNC port 5900. 411An IPv6 address must be enclosed in square brackets and may contain an 412optional zone identifier. 413.It Ar width No and Ar height 414A display resolution, width and height, respectively. 415If not specified, a default resolution of 1024x768 pixels will be used. 416Minimal supported resolution is 640x480 pixels, 417and maximum is 1920x1200 pixels. 418.It Ar vgaconf 419Possible values for this option are 420.Dq io 421(default), 422.Dq on 423, and 424.Dq off . 425PCI graphics cards have a dual personality in that they are 426standard PCI devices with BAR addressing, but may also 427implicitly decode legacy VGA I/O space 428.Pq Ad 0x3c0-3df 429and memory space 430.Pq 64KB at Ad 0xA0000 . 431The default 432.Dq io 433option should be used for guests that attempt to issue BIOS calls which result 434in I/O port queries, and fail to boot if I/O decode is disabled. 435.Pp 436The 437.Dq on 438option should be used along with the CSM BIOS capability in UEFI 439to boot traditional BIOS guests that require the legacy VGA I/O and 440memory regions to be available. 441.Pp 442The 443.Dq off 444option should be used for the UEFI guests that assume that 445VGA adapter is present if they detect the I/O ports. 446An example of such a guest is 447.Ox 448in UEFI mode. 449.Pp 450Please refer to the 451.Nm 452.Fx 453wiki page 454.Pq Lk https://wiki.freebsd.org/bhyve 455for configuration notes of particular guests. 456.It wait 457Instruct 458.Nm 459to only boot upon the initiation of a VNC connection, simplifying the 460installation of operating systems that require immediate keyboard input. 461This can be removed for post-installation use. 462.It password 463This type of authentication is known to be cryptographically weak and is not 464intended for use on untrusted networks. 465Many implementations will want to use stronger security, such as running 466the session over an encrypted channel provided by IPsec or SSH. 467.El 468.El 469.Pp 470xHCI USB devices: 471.Bl -tag -width 10n 472.It Li tablet 473A USB tablet device which provides precise cursor synchronization 474when using VNC. 475.El 476.Pp 477NVMe devices: 478.Bl -tag -width 10n 479.It Li devpath 480Accepted device paths are: 481.Ar /dev/blockdev 482or 483.Ar /path/to/image 484or 485.Ar ram=size_in_MiB . 486.It Li maxq 487Max number of queues. 488.It Li qsz 489Max elements in each queue. 490.It Li ioslots 491Max number of concurrent I/O requests. 492.It Li sectsz 493Sector size (defaults to blockif sector size). 494.It Li ser 495Serial number with maximum 20 characters. 496.El 497.Pp 498HD Audio devices: 499.Bl -tag -width 10n 500.It Li play 501Playback device, typically 502.Ar /dev/dsp0 . 503.It Li rec 504Recording device, typically 505.Ar /dev/dsp0 . 506.El 507.El 508.It Fl S 509Wire guest memory. 510.It Fl u 511RTC keeps UTC time. 512.It Fl U Ar uuid 513Set the universally unique identifier 514.Pq UUID 515in the guest's System Management BIOS System Information structure. 516By default a UUID is generated from the host's hostname and 517.Ar vmname . 518.It Fl w 519Ignore accesses to unimplemented Model Specific Registers (MSRs). 520This is intended for debug purposes. 521.It Fl W 522Force virtio PCI device emulations to use MSI interrupts instead of MSI-X 523interrupts. 524.It Fl x 525The guest's local APIC is configured in x2APIC mode. 526.It Fl Y 527Disable MPtable generation. 528.It Ar vmname 529Alphanumeric name of the guest. 530This should be the same as that created by 531.Xr bhyveload 8 . 532.El 533.Sh DEBUG SERVER 534The current debug server provides limited support for debuggers. 535.Ss Registers 536Each virtual CPU is exposed to the debugger as a thread. 537.Pp 538General purpose registers can be queried for each virtual CPU, but other 539registers such as floating-point and system registers cannot be queried. 540.Ss Memory 541Memory (including memory mapped I/O regions) can be read and written by the debugger. 542Memory operations use virtual addresses that are resolved to physical addresses 543via the current virtual CPU's active address translation. 544.Ss Control 545The running guest can be interrupted by the debugger at any time 546.Pq for example, by pressing Ctrl-C in the debugger . 547.Pp 548Single stepping is only supported on Intel CPUs supporting the MTRAP VM exit. 549.Pp 550Breakpoints are supported on Intel CPUs that support single stepping. 551Note that continuing from a breakpoint while interrupts are enabled in the 552guest may not work as expected due to timer interrupts firing while single 553stepping over the breakpoint. 554.Sh SIGNAL HANDLING 555.Nm 556deals with the following signals: 557.Pp 558.Bl -tag -width indent -compact 559.It SIGTERM 560Trigger ACPI poweroff for a VM 561.El 562.Sh EXIT STATUS 563Exit status indicates how the VM was terminated: 564.Pp 565.Bl -tag -width indent -compact 566.It 0 567rebooted 568.It 1 569powered off 570.It 2 571halted 572.It 3 573triple fault 574.It 4 575exited due to an error 576.El 577.Sh EXAMPLES 578If not using a boot ROM, the guest operating system must have been loaded with 579.Xr bhyveload 8 580or a similar boot loader before 581.Xr bhyve 4 582can be run. 583Otherwise, the boot loader is not needed. 584.Pp 585To run a virtual machine with 1GB of memory, two virtual CPUs, a virtio 586block device backed by the 587.Pa /my/image 588filesystem image, and a serial port for the console: 589.Bd -literal -offset indent 590bhyve -c 2 -s 0,hostbridge -s 1,lpc -s 2,virtio-blk,/my/image \\ 591 -l com1,stdio -A -H -P -m 1G vm1 592.Ed 593.Pp 594Run a 24GB single-CPU virtual machine with three network ports, one of which 595has a MAC address specified: 596.Bd -literal -offset indent 597bhyve -s 0,hostbridge -s 1,lpc -s 2:0,virtio-net,tap0 \\ 598 -s 2:1,virtio-net,tap1 \\ 599 -s 2:2,virtio-net,tap2,mac=00:be:fa:76:45:00 \\ 600 -s 3,virtio-blk,/my/image -l com1,stdio \\ 601 -A -H -P -m 24G bigvm 602.Ed 603.Pp 604Run an 8GB quad-CPU virtual machine with 8 AHCI SATA disks, an AHCI ATAPI 605CD-ROM, a single virtio network port, an AMD hostbridge, and the console 606port connected to an 607.Xr nmdm 4 608null-modem device. 609.Bd -literal -offset indent 610bhyve -c 4 \\ 611 -s 0,amd_hostbridge -s 1,lpc \\ 612 -s 1:0,ahci,hd:/images/disk.1,hd:/images/disk.2,\\ 613hd:/images/disk.3,hd:/images/disk.4,\\ 614hd:/images/disk.5,hd:/images/disk.6,\\ 615hd:/images/disk.7,hd:/images/disk.8,\\ 616cd:/images/install.iso \\ 617 -s 3,virtio-net,tap0 \\ 618 -l com1,/dev/nmdm0A \\ 619 -A -H -P -m 8G 620.Ed 621.Pp 622Run a UEFI virtual machine with a display resolution of 800 by 600 pixels 623that can be accessed via VNC at: 0.0.0.0:5900. 624.Bd -literal -offset indent 625bhyve -c 2 -m 4G -w -H \\ 626 -s 0,hostbridge \\ 627 -s 3,ahci-cd,/path/to/uefi-OS-install.iso \\ 628 -s 4,ahci-hd,disk.img \\ 629 -s 5,virtio-net,tap0 \\ 630 -s 29,fbuf,tcp=0.0.0.0:5900,w=800,h=600,wait \\ 631 -s 30,xhci,tablet \\ 632 -s 31,lpc -l com1,stdio \\ 633 -l bootrom,/usr/local/share/uefi-firmware/BHYVE_UEFI.fd \\ 634 uefivm 635.Ed 636.Pp 637Run a UEFI virtual machine with a VNC display that is bound to all IPv6 638addresses on port 5900. 639.Bd -literal -offset indent 640bhyve -c 2 -m 4G -w -H \\ 641 -s 0,hostbridge \\ 642 -s 4,ahci-hd,disk.img \\ 643 -s 5,virtio-net,tap0 \\ 644 -s 29,fbuf,tcp=[::]:5900,w=800,h=600 \\ 645 -s 30,xhci,tablet \\ 646 -s 31,lpc -l com1,stdio \\ 647 -l bootrom,/usr/local/share/uefi-firmware/BHYVE_UEFI.fd \\ 648 uefivm 649.Ed 650.Sh SEE ALSO 651.Xr bhyve 4 , 652.Xr nmdm 4 , 653.Xr vmm 4 , 654.Xr ethers 5 , 655.Xr bhyvectl 8 , 656.Xr bhyveload 8 657.Pp 658.Rs 659.%A Intel 660.%B 64 and IA-32 Architectures Software Developer’s Manual 661.%V Volume 3 662.Re 663.Sh HISTORY 664.Nm 665first appeared in 666.Fx 10.0 . 667.Sh AUTHORS 668.An Neel Natu Aq Mt neel@freebsd.org 669.An Peter Grehan Aq Mt grehan@freebsd.org 670