summaryrefslogtreecommitdiff
path: root/doc
diff options
context:
space:
mode:
authorLaurent Bercot <ska-skaware@skarnet.org>2017-12-11 19:11:23 +0000
committerLaurent Bercot <ska-skaware@skarnet.org>2017-12-11 19:11:23 +0000
commit1a7a0c79040d9efa654c151d8a057f34eb9be585 (patch)
tree8874b1684780bba3713fdb59d85fdea7b5a1086a /doc
parent6ee2e470aa4c66b3477449e7f48343b706c70ddc (diff)
downloads6-1a7a0c79040d9efa654c151d8a057f34eb9be585.tar.xz
Add "-a perms" option to s6-ipcserver(-socketbinder)
Diffstat (limited to 'doc')
-rw-r--r--doc/s6-ipcserver-socketbinder.html6
-rw-r--r--doc/s6-ipcserver.html4
2 files changed, 9 insertions, 1 deletions
diff --git a/doc/s6-ipcserver-socketbinder.html b/doc/s6-ipcserver-socketbinder.html
index 6a291fa..ce43d50 100644
--- a/doc/s6-ipcserver-socketbinder.html
+++ b/doc/s6-ipcserver-socketbinder.html
@@ -26,7 +26,7 @@ socket, then executes a program.
<h2> Interface </h2>
<pre>
- s6-ipcserver-socketbinder [ -d | -D ] [ -b <em>backlog</em> ] [ -M | -m ] <em>path</em> <em>prog...</em>
+ s6-ipcserver-socketbinder [ -d | -D ] [ -b <em>backlog</em> ] [ -M | -m ] [ -a <em>perms</em> ] <em>path</em> <em>prog...</em>
</pre>
<ul>
@@ -59,6 +59,10 @@ the default. </li>
that by default SOCK_DGRAM sockets are not connection-mode, and <tt>listen()</tt>
will fail - so you should always give the <tt>-b0</tt> option to
s6-ipcserver-socketbinder along with <tt>-m</tt>. </li>
+ <li> <tt>-a&nbsp;<em>perms</em></tt>&nbsp;: create the socket with
+permissions <em>perms</em>, which is an octal number from 0000 to 0777.
+Default is 0777, meaning everyone can connect to it. 0700 means only processes having the
+same uid as the s6-ipcserver-socketbinder process can connect to it. </li>
</ul>
<h2> Notes </h2>
diff --git a/doc/s6-ipcserver.html b/doc/s6-ipcserver.html
index 4d73db1..829febb 100644
--- a/doc/s6-ipcserver.html
+++ b/doc/s6-ipcserver.html
@@ -108,6 +108,10 @@ Default is 40. It is impossible to set it higher than <em>maxconn</em>. </li>
<li> <tt>-b&nbsp;<em>backlog</em></tt>&nbsp;: set a maximum of
<em>backlog</em> backlog connections on the socket. Extra
connection attempts will rejected by the kernel. </li>
+ <li> <tt>-a&nbsp;<em>perms</em></tt>&nbsp;: create the socket with
+permissions <em>perms</em>, which is an octal number from 0000 to 0777.
+Default is 0777, meaning everyone can connect to it. 0700 means only processes having the
+same uid as the s6-ipcserver process can connect to it. </li>
<li> <tt>-G&nbsp;<em>gidlist</em></tt>&nbsp;: change s6-ipcserver's
supplementary group list to <em>gidlist</em> after binding the socket.
This is only valid when run as root. <em>gidlist</em> must be a