Handle bind failures when running NIO in a tight sandbox

Sources/NIOCore/Channel.swift

@@ -371,6 +371,9 @@ public enum ChannelError: Error {
 
     /// An attempt was made to remove a ChannelHandler that is not removable.
     case unremovableHandler
+
+    /// An attempt to bind a `Channel` failed.
+    case bindFailed
 }
 
 extension ChannelError: Equatable { }

Sources/NIOPosix/SocketChannel.swift

@@ -266,14 +266,18 @@ final class ServerSocketChannel: BaseSocketChannel<ServerSocket> {
             promise?.fail(error)
         }
         executeAndComplete(p) {
-            switch target {
-            case .socketAddress(let address):
-                try socket.bind(to: address)
-            case .vsockAddress(let address):
-                try socket.bind(to: address)
+            do {
+                switch target {
+                case .socketAddress(let address):
+                    try socket.bind(to: address)
+                case .vsockAddress(let address):
+                    try socket.bind(to: address)
+                }
+                self.updateCachedAddressesFromSocket(updateRemote: false)
+                try self.socket.listen(backlog: backlog)
+            } catch {
+                promise?.fail(ChannelError.bindFailed)
             }
-            self.updateCachedAddressesFromSocket(updateRemote: false)
-            try self.socket.listen(backlog: backlog)
         }
     }