I have Virtualbox running hardened-selinux profile Gentoo as guest. The host is Windows XP SP3 (if that matters). I try to start kdm in the guest, but it fails. The error from 'X -configure' is helpful: X.Org X Server 1.9.5 Release Date: 2011-03-17 X Protocol Version 11, Revision 0 Build Operating System: Linux 2.6.37-hardened-r7 x86_64 Gentoo Current Operating System: Linux wdawson-lt-gentoo 2.6.37-hardened-r7 #4 SMP Sat May 28 07:59:32 EDT 2011 x86_64 Kernel command line: root=/dev/sda3 video=uvesafb:mtrr:1,ywrap,800x768-32@60 Build Date: 02 June 2011 04:09:09PM Current version of pixman: 0.20.2 Before reporting problems, check http://wiki.x.org to make sure that you have the latest version. Markers: (--) probed, (**) from config file, (==) default setting, (++) from command line, (!!) notice, (II) informational, (WW) warning, (EE) error, (NI) not implemented, (??) unknown. (==) Log file: "/var/log/Xorg.0.log", Time: Thu Jun 2 17:26:10 2011 List of video drivers: vboxvideo dlopen: /usr/lib64/xorg/modules/drivers/vboxvideo_drv.so: undefined symbol: DRICreatePCIBusID (EE) Failed to load /usr/lib64/xorg/modules/drivers/vboxvideo_drv.so (EE) Failed to load module "vboxvideo" (loader failed, 7) No devices to configure. Configuration failed. There does not appear to be support for static-libs when building x11-drivers/xf86-video-virtualbox, which is the owner of vboxvideo_drv.so. Is there a workaround or resolution to the problem - to make vboxvideo work as the display device driver module in a hardened selinux system? Reproducible: Always Portage 2.1.9.42 (hardened/linux/amd64/selinux, gcc-4.4.5, libc-0-r0, 2.6.37-hardened-r7 x86_64) ================================================================= System uname: Linux-2.6.37-hardened-r7-x86_64-Intel-R-_Core-TM-_i5_CPU_M_540_@_2.53GHz-with-gentoo-2.0.2 Timestamp of tree: Thu, 02 Jun 2011 00:45:01 +0000 app-shells/bash: 4.1_p9 dev-java/java-config: 2.1.11-r3 dev-lang/python: 2.7.1-r1, 3.1.3-r1 dev-util/cmake: 2.8.4-r1 sys-apps/baselayout: 2.0.2 sys-apps/openrc: 0.8.2-r1::pentoo sys-apps/sandbox: 2.4 sys-devel/autoconf: 2.13, 2.65-r1 sys-devel/automake: 1.4_p6-r1, 1.8.5-r4, 1.9.6-r3, 1.11.1 sys-devel/binutils: 2.20.1-r1 sys-devel/gcc: 4.4.5 sys-devel/gcc-config: 1.4.1-r1 sys-devel/libtool: 2.2.10 sys-devel/make: 3.82 sys-kernel/linux-headers: 2.6.36.1 sys-libs/glibc: 2.12.2 virtual/os-headers: 0 ACCEPT_KEYWORDS="amd64" ACCEPT_LICENSE="*" CBUILD="x86_64-pc-linux-gnu" CFLAGS="-march=native -O2 -pipe" CHOST="x86_64-pc-linux-gnu" CONFIG_PROTECT="/etc /usr/share/config /usr/share/gnupg/qualified.txt /var/lib/hsqldb" CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/env.d /etc/env.d/java/ /etc/eselect/postgresql /etc/fonts/fonts.conf /etc/gconf /etc/gentoo-release /etc/php/apache2-php5.3/ext-active/ /etc/php/cgi-php5.3/ext-active/ /etc/php/cli-php5.3/ext-active/ /etc/revdep-rebuild /etc/sandbox.d /etc/terminfo /etc/texmf/language.dat.d /etc/texmf/language.def.d /etc/texmf/updmap.d /etc/texmf/web2c" CXXFLAGS="-march=native -O2 -pipe" DISTDIR="/usr/portage/distfiles" FEATURES="assume-digests binpkg-logs distlocks fixlafiles fixpackages news parallel-fetch protect-owned sandbox selinux sesandbox sfperms strict unknown-features-warn unmerge-logs unmerge-orphans userfetch" FFLAGS="" GENTOO_MIRRORS="http://mirror.mcs.anl.gov/pub/gentoo/ http://gentoo.chem.wisc.edu/gentoo/ http://mirrors.cs.wmich.edu/gentoo http://www.cyberuse.com/gentoo/ http://mirror.datapipe.net/gentoo http://gentoo.mirrors.easynews.com/linux/gentoo/ http://chi-10g-1-mirror.fastsoft.net/pub/linux/gentoo/gentoo-distfiles/ http://www.gtlib.gatech.edu/pub/gentoo http://gentoo.mirrors.hoobly.com/ http://distro.ibiblio.org/pub/linux/distributions/gentoo/ http://lug.mtu.edu/gentoo/ http://gentoo.netnitco.net http://gentoo.osuosl.org/ http://gentoo.mirrors.pair.com/ http://mirrors.rit.edu/gentoo/ http://mirror.iawnet.sandia.gov/gentoo/ http://gentoo.llarian.net/ http://gentoo.mirrors.tds.net/gentoo http://ftp.ucsb.edu/pub/mirrors/linux/gentoo/ http://mirror.lug.udel.edu/pub/gentoo/ http://mirror.its.uidaho.edu/pub/gentoo/ http://gentoo.cites.uiuc.edu/pub/gentoo/ http://gentoo.cs.uni.edu/ http://mirror.usu.edu/mirrors/gentoo/" LDFLAGS="-Wl,-O1 -Wl,--as-needed" MAKEOPTS="-j2" PKGDIR="/usr/portage/packages" PORTAGE_CONFIGROOT="/" PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --compress --force --whole-file --delete --stats --timeout=180 --exclude=/distfiles --exclude=/local --exclude=/packages" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/usr/portage" PORTDIR_OVERLAY="/var/lib/layman/pentoo /var/lib/layman/hardened-development" SYNC="rsync://rsync.us.gentoo.org/gentoo-portage" USE="X alsa amd64 apic berkdb bzip2 cdr cleartype clflush cli cmov consolekiti constant_tsc corefonts cracklib crypt cups cx8 cxx dbus de dri dvd fpu fxsr gdbm gpm hardened iconv justify kde lahf_lm lm mca mce mmx modules monitor msr mtrr mudflap ncurses nls nptl nptlonly nx open_perms openmp pae pam pat pcre perl pge phonon pic pni policykit pppd pse pse36 python qt3support qt4 readline rep_good selinux sep session sse sse2 ssl ssse3 syscall sysfs tcpd truetype tsc type1 up urandom vme xorg zlib" ALSA_CARDS="hda-intel" ALSA_PCM_PLUGINS="adpcm alaw asym copy dmix dshare dsnoop empty extplug file hooks iec958 ioplug ladspa lfloat linear meter mmap_emul mulaw multi null plug rate route share shm softvol" APACHE2_MODULES="actions alias auth_basic authn_alias authn_anon authn_dbm authn_default authn_file authz_dbm authz_default authz_groupfile authz_host authz_owner authz_user autoindex cache cgi cgid dav dav_fs dav_lock deflate dir disk_cache env expires ext_filter file_cache filter headers include info log_config logio mem_cache mime mime_magic negotiation rewrite setenvif speling status unique_id userdir usertrack vhost_alias" CALLIGRA_FEATURES="braindump flow karbon kexi kpresenter krita tables words" CAMERAS="ptp2" COLLECTD_PLUGINS="df interface irq load memory rrdtool swap syslog" ELIBC="glibc" GPSD_PROTOCOLS="ashtech aivdm earthmate evermore fv18 garmin garmintxt gpsclock itrax mtk3301 nmea ntrip navcom oceanserver oldstyle oncore rtcm104v2 rtcm104v3 sirf superstar2 timing tsip tripmate tnt ubx" INPUT_DEVICES="virtualbox evdev" KERNEL="linux" LCD_DEVICES="bayrad cfontz cfontz633 glk hd44780 lb216 lcdm001 mtxorb ncurses text" PHP_TARGETS="php5-3" RUBY_TARGETS="ruby18" USERLAND="GNU" VIDEO_CARDS="virtualbox" XTABLES_ADDONS="quota2 psd pknock lscan length2 ipv4options ipset ipp2p iface geoip fuzzy condition tee tarpit sysrq steal rawnat logmark ipmark dhcpmac delude chaos account" Unset: CPPFLAGS, CTARGET, EMERGE_DEFAULT_OPTS, INSTALL_MASK, LANG, LC_ALL, LINGUAS, PORTAGE_BUNZIP2_COMMAND, PORTAGE_COMPRESS, PORTAGE_COMPRESS_FLAGS, PORTAGE_RSYNC_EXTRA_OPTS
/usr/portage/x11-drivers/xf86-video-virtualbox/xf86-video-virtualbox-3.2.12.ebuild:QA_TEXTRELS_x86="usr/lib/VBoxOGL.so" /usr/portage/x11-drivers/xf86-video-virtualbox/xf86-video-virtualbox-4.0.6.ebuild:QA_TEXTRELS_x86="usr/lib/VBoxOGL.so" /usr/portage/x11-drivers/xf86-video-virtualbox/xf86-video-virtualbox-4.0.8.ebuild:QA_TEXTRELS_x86="usr/lib/VBoxOGL.so" Looks like textrels are in the code. Try looking in dmesg.
(In reply to comment #1) > /usr/portage/x11-drivers/xf86-video-virtualbox/xf86-video-virtualbox-3.2.12.ebuild:QA_TEXTRELS_x86="usr/lib/VBoxOGL.so" > /usr/portage/x11-drivers/xf86-video-virtualbox/xf86-video-virtualbox-4.0.6.ebuild:QA_TEXTRELS_x86="usr/lib/VBoxOGL.so" > /usr/portage/x11-drivers/xf86-video-virtualbox/xf86-video-virtualbox-4.0.8.ebuild:QA_TEXTRELS_x86="usr/lib/VBoxOGL.so" > > Looks like textrels are in the code. Try looking in dmesg. I gave up on making hardened profile work as a Virtualbox guest... too many issues and not enough time on my part.
Doing some old bug cleaning, closing this one since the OP has given up hope :/