Set umask=0 when creating unix sockets

Signed-off-by: eternal-flame-AD <[email protected]>
gotify · Nov 22, 2024 · 2bc026a · 2bc026a
1 parent cc7da2a
commit 2bc026a
Show file tree

Hide file tree

Showing 3 changed files with 26 additions and 4 deletions.
diff --git a/runner/runner.go b/runner/runner.go
@@ -77,11 +77,15 @@ func startListening(connectionType, listenAddr string, port, keepAlive int) (net
 	network, addr := getNetworkAndAddr(listenAddr, port)
 	lc := net.ListenConfig{KeepAlive: time.Duration(keepAlive) * time.Second}
 
-	l, err := lc.Listen(context.Background(), network, addr)
-	if err == nil {
-		fmt.Println("Started listening for", connectionType, "on", l.Addr().Network(), l.Addr().String())
+	var l net.Listener
+	if err := withUmask(0, func() (err error) {
+		l, err = lc.Listen(context.Background(), network, addr)
+		return err
+	}); err != nil {
+		return nil, err
 	}
-	return l, err
+	fmt.Println("Started listening for", connectionType, "on", l.Addr().Network(), l.Addr().String())
+	return l, nil
 }
 
 func getNetworkAndAddr(listenAddr string, port int) (string, string) {

diff --git a/runner/umask.go b/runner/umask.go
@@ -0,0 +1,11 @@
+//go:build unix
+
+package runner
+
+import "syscall"
+
+func withUmask(mask int, f func() error) error {
+	oldmask := syscall.Umask(mask)
+	defer syscall.Umask(oldmask)
+	return f()
+}
diff --git a/runner/umask_fallback.go b/runner/umask_fallback.go
@@ -0,0 +1,7 @@
+//go:build !unix
+
+package runner
+
+func withUmask(_ int, f func() error) error {
+	return f()
+}