Created attachment 54822 [details] Kernel CONFIG I'm using 2.6.38 kernel sources with grsecurity/PaX patches on Gentoo Hardened linux on Intel iCore7 x64 host. Example guest is Debian-6.0-amd64. Grecurity -> Security level -> Virtualization enabled starting qemu as qemu-kvm -net tap,ifname=tap1,script=no -net nic -monitor stdio -m 256 -d cpu,in_asm,exec -s -boot d -cdrom debian-minimal.iso -hda debian.qcow2 (qemu) info kvm kvm support: enabled (qemu) info cpus * CPU #0: pc=0x000000000010017c (halted) thread_id=4688 (qemu) info pci Bus 0, device 0, function 0: Host bridge: PCI device 8086:1237 id "" Bus 0, device 1, function 0: ISA bridge: PCI device 8086:7000 id "" Bus 0, device 1, function 1: IDE controller: PCI device 8086:7010 BAR4: I/O at 0xc000 [0xc00f]. id "" Bus 0, device 1, function 3: Bridge: PCI device 8086:7113 IRQ 9. id "" Bus 0, device 2, function 0: VGA controller: PCI device 1013:00b8 BAR0: 32 bit prefetchable memory at 0xf0000000 [0xf1ffffff]. BAR1: 32 bit memory at 0xf2000000 [0xf2000fff]. BAR6: 32 bit memory at 0xffffffffffffffff [0x0000fffe]. id "" (qemu) info status VM status: running (qemu) info roms fw=genroms/vapic.bin size=0x002400 name="vapic.bin" addr=00000000fffe0000 size=0x020000 mem=rom name="bios.bin" (qemu) info registers EAX=00000000 EBX=00187130 ECX=00187130 EDX=00000000 ESI=00000000 EDI=00000000 EBP=00000000 ESP=0ffcfeac EIP=0010017c EFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0028 00000000 ffffffff 00c09300 DPL=0 DS [-WA] CS =0020 00000000 ffffffff 00c09b00 DPL=0 CS32 [-RA] SS =0028 00000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0028 00000000 ffffffff 00c09300 DPL=0 DS [-WA] FS =0000 00000000 ffffffff 00000000 GS =0000 00000000 ffffffff 00000000 LDT=0000 00000000 ffffffff 00000000 TR =0008 00000580 00000067 00008b00 DPL=0 TSS32-busy GDT= 0000ab80 0000002f IDT= 000030b8 000007ff CR0=00000013 CR2=00000000 CR3=00000000 CR4=00000000 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000000 FCW=037f FSW=0020 [ST=0] FTW=00 MXCSR=00001f80 FPR0=f44d002c60000000 400d FPR1=80847fe700000000 400e FPR2=fa007fa240000000 400e FPR3=80e88055f0000000 400e FPR4=ea61009c40000000 400d FPR5=ea62009c40000000 400c FPR6=bb7fffb9b0000000 400b FPR7=bb83ffb9b0000000 400b XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 My emerge --info: app-shells/bash: 4.2_p8 dev-lang/python: 2.7.1-r1, 3.1.3-r1 dev-util/cmake: 2.8.4 sys-apps/baselayout: 2.0.2 sys-apps/openrc: 0.8.1 sys-apps/sandbox: 2.5 sys-devel/autoconf: 2.68 sys-devel/automake: 1.11.1-r1 sys-devel/binutils: 2.21 sys-devel/gcc: 4.5.2 sys-devel/gcc-config: 1.4.1 sys-devel/libtool: 2.4-r1 sys-devel/make: 3.82 sys-kernel/linux-headers: 2.6.38 virtual/os-headers: 2.6.38 (sys-kernel/linux-headers) ACCEPT_KEYWORDS="amd64 ~amd64" ACCEPT_LICENSE="* -@EULA" CBUILD="x86_64-pc-linux-gnu" CFLAGS="-march=core2 -mtune=generic -O2 -pipe" CHOST="x86_64-pc-linux-gnu" CONFIG_PROTECT="/etc /var/bind" CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/env.d /etc/fonts/fonts.conf /etc/gconf /etc/gentoo-release /etc/php/apache2-php5.3/ext-active/ /etc/php/cgi-php5.3/ext-active/ /etc/php/cli-php5.3/ext-active/ /etc/revdep-rebuild /etc/sandbox.d /etc/terminfo" CXXFLAGS="-march=core2 -mtune=generic -O2 -pipe" DISTDIR="/usr/portage/distfiles" FEATURES="assume-digests binpkg-logs distlocks fixlafiles fixpackages news parallel-fetch protect-owned sandbox sfperms strict unknown-features-warn unmerge-logs unmerge-orphans userfetch" FFLAGS="" GENTOO_MIRRORS="ftp://rush.tisys.org/pub/gentoo/" LDFLAGS="-Wl,-O1 -Wl,--as-needed" MAKEOPTS="-j9" PKGDIR="/usr/portage/packages" PORTAGE_CONFIGROOT="/" PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --compress --force --whole-file --delete --stats --timeout=180 --exclude=/distfiles --exclude=/local --exclude=/packages" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/usr/portage" PORTDIR_OVERLAY="" SYNC="rsync://rush.tisys.org/gentoo-portage" Portage 2.1.9.46 (hardened/linux/amd64/no-multilib, gcc-4.5.2, glibc-2.13-r2, 2.6.38-hardened x86_64) ================================================================= System uname: Linux-2.6.38-hardened-x86_64-Intel-R-_Core-TM-_i7_CPU_930_@_2.80GHz-with-gentoo-2.0.2 Timestamp of tree: Fri, 15 Apr 2011 09:45:01 +0000 USE="acl amd64 berkdb bzip2 cli cracklib crypt cvs cxx dri gdbm git gnutls gpm hardened iconv ipv6 justify lighttpd mercurial mmx modules mudflap ncurses nls nptl nptlonly openmp pam pcre perl php postgresql pppd python readline sbcl session sse sse2 sse4 ssl ssse3 subversion sysfs tcpd unicode urandom xml xmlrpc xsl zlib" COLLECTD_PLUGINS="df interface irq load memory rrdtool swap syslog" ELIBC="glibc" INPUT_DEVICES="keyboard mouse evdev" KERNEL="linux" LCD_DEVICES="ncurses text" PHP_TARGETS="php5-3" USERLAND="GNU" XTABLES_ADDONS="quota2 psd pknock lscan length2 ipv4options ipset ipp2p iface geoip fuzzy condition tee tarpit sysrq steal rawnat logmark ipmark dhcpmac delude chaos account" Unset: CPPFLAGS, CTARGET, EMERGE_DEFAULT_OPTS, INSTALL_MASK, LANG, LC_ALL, LINGUAS, PORTAGE_BUNZIP2_COMMAND, PORTAGE_COMPRESS, PORTAGE_COMPRESS_FLAGS, PORTAGE_RSYNC_EXTRA_OPTS See additional information/discussion here http://bugs.gentoo.org/show_bug.cgi?id=363713
Additional discussion in qemu-devel mailing list
http://lists.nongnu.org/archive/html/qemu-devel/2011-04/msg01547.html
Created attachment 54832 [details] Dmesg output