I've already patched the issue with #13.

What is the benefit of using euid over uid? The shim seems to have always used uid (really, just root).

What is the benefit of using euid over uid? The shim seems to have always used uid (really, just root).

IIUC ttrpc can be used from other programs.

Also, rather than checking the credential by ourselves, shouldn't we use sendmsg(2) the ucred structure as a SCM_CREDENTIALS cmsg?

Example: https://github.com/lxc/cgmanager/blob/8f599b54c8021f37c1eeb7394a30b9e5fd0870f9/access_checks.c#L187

@AkihiroSuda I reproduced what was already in the shim in the 1.0 for months. The documentation on what is the correct thing to use here is thin, so I don't know.

For example, when a suid bit is set to a ttrpc server program, the EUID of the program corresponds to the binary file owner.
In such a case, I expect EUID to be validated as the credential.

cc @estesp PTAL?

LGTM

Although i don't think we need to change the function name for this change

Agree with @crosbymichael that the function name was fine; using euid definitely seems correct to cover the setuid case.

Likewise, no need to be too verbose with the name, the intent stays the same.

And agreed, EUID makes sense here

reverted the function name

test failure seems unrelated

--- FAIL: TestClientEOF (0.00s)
	server_test.go:326: accept unix @TestClientEOF: use of closed network connection

restarted CI and now green

@AkihiroSuda Needs another rebase.

done

@AkihiroSuda Sigh. Again, pls. Sorry :(

LGTM