Airup's IPC socket needs permission (generally root or group airup, when running as init) to connect. Depending on the IPC socket, notify-kind services started as other user may be unable to do notify for permission issues.
Solutions
To be done.
Unresolved Questions
Currently according to tokio's documentation, it is only possible to get peer pid by Unix domain sockets on Linux, not on other platforms. It's a security risk if services not running root can notify the daemon pretending to be another service. How to deal with this?
Introduction
Airup's IPC socket needs permission (generally
root
or groupairup
, when running asinit
) to connect. Depending on the IPC socket,notify
-kind services started as other user may be unable to do notify for permission issues.Solutions
To be done.
Unresolved Questions
tokio
's documentation, it is only possible to get peer pid by Unix domain sockets on Linux, not on other platforms. It's a security risk if services not running root can notify the daemon pretending to be another service. How to deal with this?