Re: abstract Unix-domain sockets - Mailing list pgsql-hackers
| From | Michael Paquier |
|---|---|
| Subject | Re: abstract Unix-domain sockets |
| Date | |
| Msg-id | 20201109060821.GF1695@paquier.xyz Whole thread Raw |
| In response to | Re: abstract Unix-domain sockets (Peter Eisentraut <peter.eisentraut@2ndquadrant.com>) |
| Responses |
Re: abstract Unix-domain sockets
(Peter Eisentraut <peter.eisentraut@2ndquadrant.com>)
|
| List | pgsql-hackers |
On Thu, Oct 22, 2020 at 09:03:49AM +0200, Peter Eisentraut wrote: > On 2020-10-09 09:28, Peter Eisentraut wrote: >> During the discussion on Unix-domain sockets on Windows, someone pointed >> out[0] abstract Unix-domain sockets. This is a variant of the normal >> Unix-domain sockets that don't use the file system but a separate >> "abstract" namespace. At the user interface, such sockets are >> represented by names starting with "@". I took a look at this and it >> wasn't hard to get working, so here is a patch. It's supposed to be >> supported on Linux and Windows right now, but I haven't tested on Windows. Yeah, peaking at the Windows docs, what you are trying to do here should be supported (please note that I have not tested ). One reference: https://devblogs.microsoft.com/commandline/af_unix-comes-to-windows/ >> And then some extra patches for surrounding cleanup. During testing I >> noticed that the bind() failure hint "Is another postmaster already >> running ..." was shown in inappropriate situations, so I changed that to >> only show for EADDRINUSE errors. (Maybe other error codes could be >> appropriate, but I couldn't find any more.) >> >> And then looking for other uses of EADDRINUSE I found some dead >> Windows-related code that can be cleaned up. > > This last piece has been committed. + <para> + A value that starts with <literal>@</literal> specifies that a + Unix-domain socket in the abstract namespace should be created + (currently supported on Linux and Windows). In that case, this value + does not specify a <quote>directory</quote> but a prefix from which + the actual socket name is computed in the same manner as for the + file-system namespace. While the abstract socket name prefix can be + chosen freely, since it is not a file-system location, the convention + is to nonetheless use file-system-like values such as + <literal>@/tmp</literal>. + </para> As abstract namespaces don't have permissions, anyone knowing the name of the path, which should be unique, can have an access to the server. Do you think that the documentation should warn the user about that? This feature is about easing the management part of the socket paths while throwing away the security aspect of it. When attempting to start a server that listens to the same port and uses the same abstract path, the second server started still shows a hint referring to a file that does not exist: LOG: could not bind Unix address "@tmp/.s.PGSQL.5432": Address already in use HINT: Is another postmaster already running on port 5432? If not, remove socket file "@tmp/.s.PGSQL.5432" and retry. Instead of showing paths with at signs, wouldn't it be better to mention it is an abstract socket address? I am not sure that 0002 is an improvement. It would be more readable to move the part choosing what hint is adapted into a first block that selects the hint string rather than have the whole thing in a single elog() call. -- Michael
Attachment
pgsql-hackers by date: