Changed permissions for domain sockets to allow non-root executors. Previously, the default permissions for domain sockets allowed r/w access only for the file's user, so an executor launched under a non-privileged user could not open the agent's socket. This patch adds r/w permissions for the group and other users to address the access problem. Review: https://reviews.apache.org/r/72478

commit: 515b239983e51dd06c8b5c347b4b739644113f8f [log] [tgz]
author: Andrei Budnik <abudnik@apache.org> Wed May 06 19:48:38 2020 +0200
committer: Andrei Budnik <abudnik@apache.org> Thu May 07 11:56:09 2020 +0200
tree: 34591fe7dd8c8013c5f6c96cdfa1c49aa1f09411
parent: 63ca5c159ef0272fc1d2add6ff73a88c8e16ea0c [diff]
diff --git a/src/common/domain_sockets.hpp b/src/common/domain_sockets.hpp
index 6d2b0ab..630ea93 100644
--- a/src/common/domain_sockets.hpp
+++ b/src/common/domain_sockets.hpp

@@ -33,7 +33,7 @@
 namespace common {
 
 constexpr size_t DOMAIN_SOCKET_MAX_PATH_LENGTH = 108;
-constexpr int DOMAIN_SOCKET_DEFAULT_MODE = 0600;
+constexpr int DOMAIN_SOCKET_DEFAULT_MODE = 0666;
 
 
 inline Try<process::network::unix::Socket> createDomainSocket(
commit	515b239983e51dd06c8b5c347b4b739644113f8f	[log] [tgz]
author	Andrei Budnik <abudnik@apache.org>	Wed May 06 19:48:38 2020 +0200
committer	Andrei Budnik <abudnik@apache.org>	Thu May 07 11:56:09 2020 +0200
tree	34591fe7dd8c8013c5f6c96cdfa1c49aa1f09411
parent	63ca5c159ef0272fc1d2add6ff73a88c8e16ea0c [diff]