At 03/14/2012 06:52 PM, Avi Kivity Wrote: > On 03/14/2012 12:52 PM, Wen Congyang wrote: >>> >>>> If so, is this channel visible to guest userspace? If the channle is >>>> visible to guest >>>> userspace, the program running in userspace may write the same message to >>>> the channel. >>> >>> Access control is via permissions. You can have udev scripts assign >>> whatever uid and gid to the port of your interest. By default, all >>> ports are only accessible to the root user. >> >> We should also prevent root user writing message to this channel if it is >> used for panicked notification. >> > > Why? root can easily cause a panic. >
root user can write the same message to virtio-serial while the guest is running... Thanks Wen Congyang
