GNU bug report logs - #50193
guix: shepherd pid 1 holds /dev/console

Previous Next

Package: guix;

Reported by: muradm <mail <at> muradm.net>

Date: Tue, 24 Aug 2021 18:43:02 UTC

Severity: normal

To reply to this bug, email your comments to 50193 AT debbugs.gnu.org.

Toggle the display of automated, internal messages from the tracker.

View this report as an mbox folder, status mbox, maintainer mbox


Report forwarded to bug-guix <at> gnu.org:
bug#50193; Package guix. (Tue, 24 Aug 2021 18:43:02 GMT) Full text and rfc822 format available.

Acknowledgement sent to muradm <mail <at> muradm.net>:
New bug report received and forwarded. Copy sent to bug-guix <at> gnu.org. (Tue, 24 Aug 2021 18:43:02 GMT) Full text and rfc822 format available.

Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):

From: muradm <mail <at> muradm.net>
To: bug-guix <at> gnu.org
Subject: guix: shepherd pid 1 holds /dev/console
Date: Tue, 24 Aug 2021 21:37:59 +0300
On IRC chat we identified an issue related to linux SAK, which
is explained here 
https://www.kernel.org/doc/html/latest/security/sak.html

Following the check what processes will be SAK'ed:

~# ls -l /proc/[0-9]*/fd/* | grep console
lrwx------ 1 root   root   64 Aug 24 21:22 /proc/1/fd/1 -> 
/dev/console
lrwx------ 1 root   root   64 Aug 24 21:22 /proc/1/fd/2 -> 
/dev/console
l-wx------ 1 root   root   64 Aug 24 21:22 /proc/578/fd/4 -> 
/dev/console
lrwx------ 1 root   root   64 Aug 24 21:22 /proc/593/fd/1 -> 
/dev/console
lrwx------ 1 root   root   64 Aug 24 21:22 /proc/593/fd/2 -> 
/dev/console
lrwx------ 1 root   root   64 Aug 24 20:03 /proc/705/fd/1 -> 
/dev/console
lrwx------ 1 root   root   64 Aug 24 20:03 /proc/705/fd/2 -> 
/dev/console
lrwx------ 1 root   root   64 Aug 24 21:22 /proc/909/fd/1 -> 
/dev/console
lrwx------ 1 root   root   64 Aug 24 21:22 /proc/909/fd/2 -> 
/dev/console

As it is seen from above output, pid 1 which is shepherd holds 
/dev/console
making linux SAK feature useless. When SAK command issued by 
shortcut keys,
all above proceses gets killed including pid 1 which is shepherd, 
causing
system to stall.




This bug report was last modified 2 years and 216 days ago.

Previous Next


GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.