Unix Socket Handling

[ryanjyoder]

The current handling of Unix sockets is not correct.

1. The service should not delete the socket before binding to it. If the socket exists, that implies another service is already listening on the socket.
2. The socket should instead be cleaned up at shutdown.
3. The permissions should NOT be world writable by default.

One of the main reasons to use sockets is for security. Using sockets allows you to lock access down to a specific unix group/user.However, due to the various use cases for unix sockets, it may be a good idea to accept a net.Listener interface, so that the socket can be configured before the server is started.

[codecov]

Codecov Report

Merging #2280 into master will increase coverage by 0.08%.
The diff coverage is 100%.

@@            Coverage Diff             @@
##           master    #2280      +/-   ##
==========================================
+ Coverage   98.38%   98.47%   +0.08%     
==========================================
  Files          41       41              
  Lines        2296     2293       -3     
==========================================
- Hits         2259     2258       -1     
+ Misses         21       20       -1     
+ Partials       16       15       -1

Impacted Files	Coverage Δ
gin.go	99.13% <100%> (+0.84%)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update a71af9c...5253b8f. Read the comment docs.

[appleboy]

remove this block.

[ryanjyoder]

Good catch 👍

[thinkerou]

LGTM

[ePirat]

How can I set the socket file permissions to set it group-writable so that my go program and webserver reading/writing the socket do not need to share the same user?