Page MenuHomePhabricator

VirtualBoxProject
ActivePublic

Members (1)

Watchers

  • This project does not have any watchers.

Recent Activity

May 22 2019

Patrick updated the task description for T720: post feature request for more secure clipboard sharing against VirtualBox and KVM.
May 22 2019, 6:51 PM · VirtualBox, usability, Whonix
HulaHoop added a comment to T720: post feature request for more secure clipboard sharing against VirtualBox and KVM.

Accepted as optional feature/usecase. Moved implementation design from protocol level to spice-gtk.

May 22 2019, 7:33 AM · VirtualBox, usability, Whonix

May 2 2019

Patrick updated the task description for T720: post feature request for more secure clipboard sharing against VirtualBox and KVM.
May 2 2019, 12:04 PM · VirtualBox, usability, Whonix

May 1 2019

Patrick added a comment to T720: post feature request for more secure clipboard sharing against VirtualBox and KVM.

HulaHoop (HulaHoop):

HulaHoop added a comment.

https://gitlab.freedesktop.org/spice/spice-protocol/issues/8
May 1 2019, 2:25 AM · VirtualBox, usability, Whonix

Apr 30 2019

HulaHoop added a comment to T720: post feature request for more secure clipboard sharing against VirtualBox and KVM.

https://gitlab.freedesktop.org/spice/spice-protocol/issues/8

Apr 30 2019, 11:52 PM · VirtualBox, usability, Whonix

Apr 26 2019

Patrick added a comment to T720: post feature request for more secure clipboard sharing against VirtualBox and KVM.
Apr 26 2019, 12:59 PM · VirtualBox, usability, Whonix

Apr 25 2019

Patrick updated the task description for T720: post feature request for more secure clipboard sharing against VirtualBox and KVM.
Apr 25 2019, 11:09 AM · VirtualBox, usability, Whonix
Patrick updated the task description for T720: post feature request for more secure clipboard sharing against VirtualBox and KVM.
Apr 25 2019, 11:08 AM · VirtualBox, usability, Whonix
Patrick updated the task description for T720: post feature request for more secure clipboard sharing against VirtualBox and KVM.
Apr 25 2019, 11:08 AM · VirtualBox, usability, Whonix
HulaHoop added a comment to T720: post feature request for more secure clipboard sharing against VirtualBox and KVM.

Issue was discussed by Libvirt devs on RedHat bugzilla:
https://bugzilla.redhat.com/show_bug.cgi?id=1320263#c4
I even linked to a secure clipboard proposal that would have given a secure clipboard functionality by copying Qubes style interaction. It went no where and was closed as WONTFIX.

Apr 25 2019, 4:01 AM · VirtualBox, usability, Whonix

Apr 24 2019

Patrick renamed T720: post feature request for more secure clipboard sharing against VirtualBox and KVM from Better Clipboard and DragnDrop for Whonix to post feature request for more secure clipboard sharing against VirtualBox and KVM.
Apr 24 2019, 10:17 AM · VirtualBox, usability, Whonix
Patrick updated the task description for T720: post feature request for more secure clipboard sharing against VirtualBox and KVM.
Apr 24 2019, 10:07 AM · VirtualBox, usability, Whonix
Patrick updated the task description for T720: post feature request for more secure clipboard sharing against VirtualBox and KVM.
Apr 24 2019, 10:04 AM · VirtualBox, usability, Whonix

Apr 23 2019

Patrick triaged T908: copy Whonix VM images to Whonix-Host and set up during build as Normal priority.
Apr 23 2019, 1:41 PM · build, VirtualBox, Whonix, Whonix-Host

Apr 14 2019

Patrick closed T782: Change Settings in VirtualBox GW and WS - boot devices and audio as Resolved.

Awesome!

Apr 14 2019, 4:59 PM · VirtualBox, Whonix 15, Whonix
TNTBOMBOM added a comment to T782: Change Settings in VirtualBox GW and WS - boot devices and audio.

yes it working

Apr 14 2019, 4:58 PM · VirtualBox, Whonix 15, Whonix
Patrick updated subscribers of T782: Change Settings in VirtualBox GW and WS - boot devices and audio.

Does this work? @TNTBOMBOM

Apr 14 2019, 3:32 PM · VirtualBox, Whonix 15, Whonix
Patrick closed T848: [VirtualBox] [FAILED] Failed to start Virtualbox guest utils. as Resolved.
Apr 14 2019, 3:29 PM · vbox-disable-timesync, Whonix 15, Whonix, VirtualBox

Apr 12 2019

Patrick closed T825: Add “Description” to whonix-vbox images as Resolved.

https://github.com/Whonix/whonix-developer-meta-files/commit/2a0064f4214e04a0f454fd1b29fe9f14c6629d2e

Apr 12 2019, 3:43 PM · Whonix 15, Whonix, VirtualBox

Apr 6 2019

Patrick edited projects for T720: post feature request for more secure clipboard sharing against VirtualBox and KVM, added: usability, VirtualBox; removed Whonix 15.
Apr 6 2019, 5:05 PM · VirtualBox, usability, Whonix

Dec 7 2018

Patrick closed T881: remove attempts to hide CPU information from VM in VirtualBox as Resolved.
Dec 7 2018, 12:09 PM · build, VirtualBox, Whonix 15, Whonix 14, Whonix
Patrick removed a project from T530: CPU-induced latency Covert Channel Countermeasures: Whonix 15.
Dec 7 2018, 12:06 PM · virtualizer, VMware, VirtualBox, KVM, Qubes, security, Whonix, research
Patrick removed a project from T687: Supress VB error messages.: Whonix 15.
Dec 7 2018, 11:58 AM · build, VirtualBox, usability, Whonix
Patrick removed a project from T378: make vbox-disable-timesync compatible with guest additions from virtualbox CD: Whonix 15.
Dec 7 2018, 11:57 AM · enhancement, VirtualBox, vbox-disable-timesync, Whonix

Dec 3 2018

HulaHoop added a comment to T881: remove attempts to hide CPU information from VM in VirtualBox.

There's been research showing that trying to hide CPU information in a virtualizer is futile.

Dec 3 2018, 7:07 PM · build, VirtualBox, Whonix 15, Whonix 14, Whonix

Nov 28 2018

Patrick closed T408: --synthcpu was removed from VirtualBox, use --cpuid-portability-level or --cpuidremoveall? as Resolved.

This will be undone. Ticket:

Nov 28 2018, 7:44 AM · Whonix 14, Whonix, VirtualBox
Patrick triaged T881: remove attempts to hide CPU information from VM in VirtualBox as Normal priority.
Nov 28 2018, 7:43 AM · build, VirtualBox, Whonix 15, Whonix 14, Whonix
Patrick reopened T408: --synthcpu was removed from VirtualBox, use --cpuid-portability-level or --cpuidremoveall? as "Open".
Nov 28 2018, 7:40 AM · Whonix 14, Whonix, VirtualBox

Nov 22 2018

Patrick added a project to T825: Add “Description” to whonix-vbox images : Whonix 15.
Nov 22 2018, 10:59 AM · Whonix 15, Whonix, VirtualBox

Oct 1 2018

Patrick placed T848: [VirtualBox] [FAILED] Failed to start Virtualbox guest utils. up for grabs.
Oct 1 2018, 1:30 PM · vbox-disable-timesync, Whonix 15, Whonix, VirtualBox
Patrick changed the status of T848: [VirtualBox] [FAILED] Failed to start Virtualbox guest utils. from Open to testing-in-next-build-required.
Oct 1 2018, 1:28 PM · vbox-disable-timesync, Whonix 15, Whonix, VirtualBox
Patrick lowered the priority of T848: [VirtualBox] [FAILED] Failed to start Virtualbox guest utils. from High to Low.
Oct 1 2018, 1:26 PM · vbox-disable-timesync, Whonix 15, Whonix, VirtualBox

Sep 20 2018

Patrick triaged T848: [VirtualBox] [FAILED] Failed to start Virtualbox guest utils. as High priority.
Sep 20 2018, 9:19 AM · vbox-disable-timesync, Whonix 15, Whonix, VirtualBox

Sep 3 2018

TNTBOMBOM triaged T825: Add “Description” to whonix-vbox images as Normal priority.
Sep 3 2018, 5:30 PM · Whonix 15, Whonix, VirtualBox

Aug 27 2018

Patrick added a comment to T408: --synthcpu was removed from VirtualBox, use --cpuid-portability-level or --cpuidremoveall?.

Regarding the spectre vulnerability and its effect on VirtualBox your input is desired. @dumbmouse

Aug 27 2018, 8:32 PM · Whonix 14, Whonix, VirtualBox
Patrick updated subscribers of T408: --synthcpu was removed from VirtualBox, use --cpuid-portability-level or --cpuidremoveall?.

"Hiding CPU model is futile." Any reference for that? @HulaHoop

Aug 27 2018, 8:32 PM · Whonix 14, Whonix, VirtualBox

Jun 30 2018

Patrick closed T790: Reducing the size of raw files as Resolved.
Jun 30 2018, 12:34 PM · build, KVM, VirtualBox, Whonix, Whonix 15

Apr 30 2018

Onion_Knight added a comment to T790: Reducing the size of raw files.

virt-sparsify solution dropped because needs booting the image with qemu-system (not clean, to much unknown consequences, see attached ouptut).

Apr 30 2018, 3:50 PM · build, KVM, VirtualBox, Whonix, Whonix 15
Onion_Knight added a comment to T790: Reducing the size of raw files.
Apr 30 2018, 11:54 AM · build, KVM, VirtualBox, Whonix, Whonix 15

Apr 26 2018

Patrick triaged T790: Reducing the size of raw files as Normal priority.
Apr 26 2018, 9:25 AM · build, KVM, VirtualBox, Whonix, Whonix 15

Apr 6 2018

Patrick changed the status of T782: Change Settings in VirtualBox GW and WS - boot devices and audio from Open to testing-in-next-build-required.

https://github.com/Whonix/Whonix/pull/415

Apr 6 2018, 9:30 AM · VirtualBox, Whonix 15, Whonix
Patrick assigned T782: Change Settings in VirtualBox GW and WS - boot devices and audio to unman.
Apr 6 2018, 9:30 AM · VirtualBox, Whonix 15, Whonix

Mar 11 2018

Patrick closed T408: --synthcpu was removed from VirtualBox, use --cpuid-portability-level or --cpuidremoveall? as Resolved.
Mar 11 2018, 2:44 PM · Whonix 14, Whonix, VirtualBox

Mar 1 2018

HulaHoop added a comment to T550: Clock Drift Detection.

NB for the record: with qemu-ga a guest can still shut itself off via crafted input to the agent. So besides removing timer access to the guest, there was no other advantage to removing ACPI.

Mar 1 2018, 6:13 PM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix
HulaHoop added a comment to T550: Clock Drift Detection.

Actually we don't have to suspend the guest. Execution of any command on the host after resume is enough to create a uniqu event in the qemu-ga's log file.

Mar 1 2018, 4:34 AM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix
HulaHoop added a comment to T550: Clock Drift Detection.

The proper and direct way to use virsh to communicate with guest agent:

Mar 1 2018, 12:53 AM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix
HulaHoop added a comment to T550: Clock Drift Detection.

The YAJL parser used in libvirt is tiny, modern (written in2007) and has no CVEs. It is an SAX type event-driven parser unlike the vulnerable, top-down recursive descent type that was used in QEMU.

Mar 1 2018, 12:03 AM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix

Feb 28 2018

HulaHoop added a comment to T550: Clock Drift Detection.

https://wiki.libvirt.org/page/Qemu_guest_agent

Feb 28 2018, 11:39 PM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix
HulaHoop added a comment to T550: Clock Drift Detection.

It turns out the QEMU guest agent warning was not relevant to those who use libvirt. With libvirt a safe parser is used. Breakouts can only happen if a process on the host is designed to parse guest input because there is no way to control that otherwise it should be safe for our uses. This potentially simplifies the design in many respects but a host package will still be needed. I will update the task list.

Feb 28 2018, 8:40 PM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix
HulaHoop added a comment to T550: Clock Drift Detection.

https://www.redhat.com/archives/libvirt-users/2018-February/msg00083.html
[libvirt-users] QEMU guest-agent safety in hostile VM?

Feb 28 2018, 7:40 PM · Whonix-Host, VirtualBox, KVM, sdwdate, Whonix