Re: [PATCH 1/2] serial: core: Don't drop DTR if system console
From: Peter Hurley
Date: Mon Jun 09 2014 - 21:20:28 EST
On 06/09/2014 09:08 AM, One Thousand Gnomes wrote:
On Wed, 4 Jun 2014 10:16:10 -0400
Peter Hurley <peter@xxxxxxxxxxxxxxxxxx> wrote:
If a tty is opened on a serial console, don't drop DTR on
last tty close, on tty hangup, or when resetting port hardware
via TIOCSSERIAL and TIOCSERCONFIG ioctls.
Signed-off-by: Peter Hurley <peter@xxxxxxxxxxxxxxxxxx>
NAK
This introduces a security flaw.
If you have a system with a remote console you dial into then with this
patch applied a modem drop eg from a bad line will no longer drop any
live session and ensure a login is required as it was before.
There's no security flaw here.
The situation you're referring to above is managed by the CLOCAL termios
setting (which by default does _not_ hangup the tty on carrier loss).
This patch only affects the line state if the last tty reference is closed
or the tty is hung up by software (like on controlling process exit).
In this case, any login session is already dying, and it would not be possible
to hijack a live session. A successful re-login is still required.
That's a pretty bad regression case.
If you are running a serial console and want to leave DTR high either
wire the cable that way or don't set HUPCL in the first place. The
technology for fixing this problem already exists!
Notwithstanding what I wrote above, this patch does change behavior
with remote consoles, which may be unacceptable.
For example, if the remote user logs out, the current behavior hangs up
the modem (if HUPCL), whereas the patch behavior just presents a new
login prompt.
So yeah, I agree; this patch should be dropped.
Regards,
Peter Hurley
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/