From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org)
	by finch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-hardened+bounces-2315-garchives=archives.gentoo.org@lists.gentoo.org>)
	id 1LEcV4-0007jr-Dd
	for garchives@archives.gentoo.org; Mon, 22 Dec 2008 04:34:38 +0000
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 2FF98E07C9;
	Mon, 22 Dec 2008 04:34:36 +0000 (UTC)
Received: from deepllc.ru (sw-1005.peterhost.ru [80.93.49.57])
	by pigeon.gentoo.org (Postfix) with ESMTP id C0C93E07C9
	for <gentoo-hardened@lists.gentoo.org>; Mon, 22 Dec 2008 04:34:35 +0000 (UTC)
Received: from [87.103.146.206] (arach.krasnoyarsk.ru [87.103.146.206])
	(authenticated bits=0)
	by deepllc.ru (8.14.3/8.14.2) with ESMTP id mBM4VCp1066462
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO)
	for <gentoo-hardened@lists.gentoo.org>; Mon, 22 Dec 2008 07:31:20 +0300 (MSK)
	(envelope-from p.labushev@gmail.com)
Message-ID: <494F18CD.5010909@gmail.com>
Date: Mon, 22 Dec 2008 11:34:21 +0700
From: Pavel Labushev <p.labushev@gmail.com>
User-Agent: Thunderbird 2.0.0.18 (X11/20081207)
Precedence: bulk
List-Post: <mailto:gentoo-hardened@lists.gentoo.org>
List-Help: <mailto:gentoo-hardened+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-hardened+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-hardened+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-hardened.gentoo.org>
X-BeenThere: gentoo-hardened@lists.gentoo.org
Reply-to: gentoo-hardened@lists.gentoo.org
MIME-Version: 1.0
To: gentoo-hardened@lists.gentoo.org
Subject: Re: [gentoo-hardened] KVM & Gentoo Hardened
References: <49481B57.4010801@gmail.com>    <897813410812210510x213af7dhe692529c5f5e8a3@mail.gmail.com> <891aebf1f2cc377adba08adebc77c120.squirrel@www.hamiltonshells.ca>
In-Reply-To: <891aebf1f2cc377adba08adebc77c120.squirrel@www.hamiltonshells.ca>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: quoted-printable
X-Archives-Salt: a8dcb34f-1680-4ef7-9d9e-dd35fddfc2e5
X-Archives-Hash: 449d5a17951819798af2283b3738f8ee

Sadako ?????:

> Do you actually have the virtualbox _host_ running under hardened-sourc=
es?
> If so, could you please upload your kernel config somewhere?

Try the following:
Disable CONFIG_PAX_NOELFRELOCS to compile virtualbox (you can enable it=20
after to run virtualbox).
Disable CONFIG_PAX_KERNEXEC and CONFIG_PAX_MEMORY_UDEREF to run virtualbo=
x.
Disable V-T/AMD-V for your guests.

It used to work for me with hardened-sources-2.6.25 on Athlon X2 (i386)=20
until I moved to vmware server (that is, by the way, requires just=20
KERNEXEC to be disabled).