Claudio Jeker wrote: > I highly suspect that this is not correct without further changes. > There is a reason why the comment is explicit about the fact that it only > works if SCM_RIGHTS is the only control message type. Just ignoring this > fact is probably a security risk.
Isn't the externalisation code concerned only with control messages in which file descriptors are passed? As you can only pass one control message, either SCM_RIGHTS or SCM_CREDS, it seems there should be no concerns about fds here. Stuart Henderson wrote: > Is that not what SO_PEERCRED does? SO_PEERCRED lets you do this for connected SOCK_STREAM sockets, but not for datagram sockets. Kind regards, David
