From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from list by lists.gnu.org with archive (Exim 4.71)
	id 1Vr9IW-0008Tv-8j
	for mharc-grub-devel@gnu.org; Thu, 12 Dec 2013 11:39:36 -0500
Received: from eggs.gnu.org ([2001:4830:134:3::10]:56986)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <cjwatson@ubuntu.com>) id 1Vr9IM-0008IX-1R
	for grub-devel@gnu.org; Thu, 12 Dec 2013 11:39:30 -0500
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <cjwatson@ubuntu.com>) id 1Vr9IG-00020O-Kq
	for grub-devel@gnu.org; Thu, 12 Dec 2013 11:39:25 -0500
Received: from v6.chiark.greenend.org.uk ([2001:ba8:1e3::]:49491
	helo=chiark.greenend.org.uk) by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <cjwatson@ubuntu.com>) id 1Vr9IG-00020F-4Z
	for grub-devel@gnu.org; Thu, 12 Dec 2013 11:39:20 -0500
Received: from [172.20.153.9] (helo=riva.pelham.vpn.ucam.org)
	by chiark.greenend.org.uk (Debian Exim 4.72 #1) with esmtps
	(return-path cjwatson@ubuntu.com) id 1Vr9IE-0007fj-74
	for grub-devel@gnu.org; Thu, 12 Dec 2013 16:39:19 +0000
Received: from ns1.pelham.vpn.ucam.org ([172.20.153.2] helo=riva.ucam.org)
	by riva.pelham.vpn.ucam.org with esmtps
	(TLS1.2:DHE_RSA_AES_128_CBC_SHA1:128) (Exim 4.80)
	(envelope-from <cjwatson@ubuntu.com>) id 1Vr9I4-0002j6-Fa
	for grub-devel@gnu.org; Thu, 12 Dec 2013 16:39:08 +0000
Date: Thu, 12 Dec 2013 16:39:07 +0000
From: Colin Watson <cjwatson@ubuntu.com>
To: grub-devel@gnu.org
Subject: Re: [PATCH 3/4] Build grub.xen.
Message-ID: <20131212163907.GG1431@riva.ucam.org>
References: <20131212153643.GA1431@riva.ucam.org>
	<20131212153741.GD1431@riva.ucam.org>
	<CAEaD8JN=Gg8fut+pXBA0=8abvo5YE=Q4eiXYR6kPT-yRqjNA1Q@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <CAEaD8JN=Gg8fut+pXBA0=8abvo5YE=Q4eiXYR6kPT-yRqjNA1Q@mail.gmail.com>
User-Agent: Mutt/1.5.21 (2010-09-15)
X-detected-operating-system: by eggs.gnu.org: Error: Malformed IPv6 address
	(bad octet value).
X-Received-From: 2001:ba8:1e3::
X-BeenThere: grub-devel@gnu.org
X-Mailman-Version: 2.1.14
Precedence: list
Reply-To: The development of GNU GRUB <grub-devel@gnu.org>
List-Id: The development of GNU GRUB <grub-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/grub-devel>,
	<mailto:grub-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/grub-devel>
List-Post: <mailto:grub-devel@gnu.org>
List-Help: <mailto:grub-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/grub-devel>,
	<mailto:grub-devel-request@gnu.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Dec 2013 16:39:31 -0000

On Thu, Dec 12, 2013 at 05:24:50PM +0100, Vladimir 'phcoder' Serbinenko wrote:
> This config has a security problem. If a user has full acces to some
> partition (e.g. fto server partition) he can put grub.xen there and load
> his own code

Only in the domU context, though.  If a user has full access to a guest
filesystem then of course they can run code in the domU.  This seems
unsurprising and not a problem?

-- 
Colin Watson                                       [cjwatson@ubuntu.com]