[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH XEN] tools: Update files examples PV&PVH with pygrub.

To: Jürgen Groß <jgross@xxxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx
From: Alexandre GRIVEAUX <agriveaux@xxxxxxxxxxxx>
Date: Wed, 14 Jan 2026 17:49:50 +0100
Cc: Anthony PERARD <anthony.perard@xxxxxxxxxx>
Delivery-date: Wed, 14 Jan 2026 16:50:06 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

Le 14/01/2026 à 09:41, Jürgen Groß a écrit :

On 14.01.26 09:20, Alexandre GRIVEAUX wrote:
Le 14/01/2026 à 08:43, Jürgen Groß a écrit :
Yes. This is why I don't like the wording "inside guest", which isjust not
true.
Before wasting more time for that side, there is chroot withbind-mount of DomU FS.
Rephrasing like this should be more than enough:

# Enable to use a grub2 emulation boot instead of direct kernel boot.
Please be aware that we are trying to phase out pygrub, as it widensthe
attack surface of dom0 from a guest. pygrub needs to look into guest
controlled file systems, so any bug in the related code (e.g.failure to
handle a corrupted or maliciously modified file system) might result in
security issues like code injection.
Effectively, if pygrub is on verge of being phased out, there is notneed for this patch...
:-)
But could you point me to the discussion of alternatives ? As pygruballow a more easy management...
Oh, the fun of selecting the grub variant. :-)

There are:

- pygrub as discussed already
- grub-pv (32- and 64-bit) and grub-pvh: official flavors of grub2 forPV and PVH guests, selected by specifying them as the kernel to boot,running in
  domU context
- pvgrub (32- and 64-bit): legacy grub 0.97 variants based on Mini-OSfor PV guests, selected by specifying them as the kernel to boot, runningin domU
  context
Should this be noted to the wiki ?
Yes. Documentation should really be enhanced.

No problem to that, I have commit access to the wiki but besideupdating, I need to test it, and check if Debian have packaged grub-pv...

For me the pvgrub should also be noted as being phased out in favor ofgrub-pv.

As for me the documentation should be usable by user without advancedknowledge to read code.

So I'm on the edge whether we really should make it easier to usepygrub.
Legit, Should patch subject need to be [RFC PATCH] ?
No, I don't think so. Others might have other opinions than meregarding pygrub.
Juergen


Ok.


Thanks.

References:
- [PATCH XEN] tools: Update files examples PV&PVH with pygrub.
  - From: Alexandre GRIVEAUX
- Re: [PATCH XEN] tools: Update files examples PV&PVH with pygrub.
  - From: Juergen Gross
- Re: [PATCH XEN] tools: Update files examples PV&PVH with pygrub.
  - From: Alexandre GRIVEAUX
- Re: [PATCH XEN] tools: Update files examples PV&PVH with pygrub.
  - From: Jürgen Groß
- Re: [PATCH XEN] tools: Update files examples PV&PVH with pygrub.
  - From: Alexandre GRIVEAUX
- Re: [PATCH XEN] tools: Update files examples PV&PVH with pygrub.
  - From: Jürgen Groß

Prev by Date: Re: [PATCH v4 6/6] arm/mpu: Map domain page in AArch64 MPU systems
Next by Date: Re: [PATCH v3 1/6] x86/cpu-policy: define bits of leaf 6
Previous by thread: Re: [PATCH XEN] tools: Update files examples PV&PVH with pygrub.
Next by thread: [PATCH XEN] tools: Update HVM example whith AHCI, stdvga, tablet and UEFI.
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.