uutils/coreutils

stty: no verification that tcsetattr applied all settings

Open

#10324 opened on Jan 18, 2026

View on GitHub
 (1 comment) (0 reactions) (0 assignees)Rust (23,246 stars) (1,852 forks)batch import
U - sttygood first issuereported-canonical

Description

Component

stty

Description

POSIX allows tcsetattr to return success while only partially applying requested changes. GNU stty re-reads terminal settings after tcsetattr and compares them to the requested configuration, exiting with an error if they differ. uutils calls tcsetattr and returns success without verification.

The tcsetattr() function shall return successfully if it was able to perform any of the requested actions, even if some of the requested actions could not be performed.

// src/uu/stty/src/stty.rs:425-431
for arg in &valid_args {
    match arg {
        ArgOptions::Mapping(mapping) => apply_char_mapping(&mut termios, mapping),
        ArgOptions::Flags(flag) => apply_setting(&mut termios, flag),
        // ...
    }
}
tcsetattr(opts.file.as_fd(), set_arg, &termios)?;
// No readback or comparison follows

GNU performs tcgetattr after setting, compares with eq_mode(), and calls error(EXIT_FAILURE, ...) if settings don't match.

Impact

On platforms where tcsetattr applies only a subset of changes, uutils exits successfully while the terminal remains misconfigured. Scripts disabling echo for password input may silently fail, exposing sensitive data.

Contributor guide

Tech stack
rust
Domain
cli
Issue type
bug
DifficultyEstimated implementation difficulty for a new contributor, from 1 for very small changes to 5 for expert-level work.
3
Estimated timeA rough time range for an experienced contributor to investigate, implement, test, and prepare a pull request.
1-3 hours
Activity statusHow available the issue appears right now: fresh, active, stale, blocked, or waiting on maintainer input.
fresh
ClarityHow clearly the issue explains the expected change, acceptance criteria, and next step.
clear
Prerequisites
basic RustPOSIX terminal I/O concepts
Newbie friendlinessA 1-100 score estimating how approachable this issue is for first-time contributors.
70
Research direction
Look at the stty source file (src/uu/stty/src/stty.rs) around lines 425-431 where tcsetattr is called. The fix requires adding a tcgetattr call after tcsetattr to read back the terminal settings, then comparing the result with the intended configuration using a function like eq mode() from GNU coreutils. If they differ, the program should exit with an error. Reference the POSIX quote in the issue and the GNU implementation for exact behavior.