Any progress on this request?

For documentation see http://0pointer.de/blog/projects/socket-activation.html and https://www.freedesktop.org/software/systemd/man/systemd.socket.html

Not that I'm aware of. If you have a particular use case, you're welcome to share it here.

I do have a concern that needs more investigation. Many systems in the wild - especially in clouds - are misconfigured and lack proper entropy (e.g., /dev/urandom passthrough for libvirt). Right now this means that these systems time out in booting, which is admittedly not great but it does make the problem clear. (systemd doesn't appear to have interest in adding a "RNG is fully seeded" dependency, so this isn't going to get better.)

So if we go socket-activated, we may just silently hang the request (or time it out, which would be worse because it would yield unexpected fallback behavior). But on the other hand, krb5 may do enough setup before calling into the interposer that the application would need a fully seeded RNG before hitting the gssproxy socket. This probably requires some testing.

Finally, introducing a hard systemd dependency is an automatic reject from me - using advanced features from systemd is fine, but we need to have fallback.

Project has moved please reopen here if still an issue:
https://github.com/gssapi/gssproxy/issues