Release file handles back to caller on failure to take ownership #2715
Conversation
|
I can't think of a good way to unit test this. You can force a failure in the right place by passing in an already closed file handle as follows. Using a closed file descriptor of course is almost certain to result in a flaky test, especially if run in parallel. |
PeterAdams-A
force-pushed
the
releaseHandles
branch
from
f5ebf5d
to
c962e8b
Compare
|
@swift-server-bot test this please |
Motivation: Allocation tests are slightly fragile to small changes. Modifications: Allow 50 extra allocations over the 1000 cycles. Result: Rst tests less flaky
Motivation: When taking ownership of input and output file descriptors in a bootstrap the ownership of the file handles remains with the caller in the function taking ownership fails. This is currently where _takingOwnershipOfDescriptors uses NIOFileHandle to take ownership of descriptors but then experiences a later failure. Modifications: If an exception is throw in _takingOwnershipOfDescriptors release file descriptors from NIOFileHandle. Result: No crash on failure to close file handles before end of scoped usage.
PeterAdams-A
force-pushed
the
releaseHandles
branch
from
c962e8b
to
e5a1255
Compare
|
@Lukasa Let me know how you feel about the test I've tried adding. I looked into hooking sys calls but I believe the current sys call hooking doesn't touch this area at all yet. In order to hook the call made directly from PipeChannel I think I'd need to add a hooking mechanism to that which would involved changing the construction of that. Given the failure is from the construction of PipeChannel feels simpler to just throw the exception directly from a hooking factory for that. Interested to hear your thoughts. |
| protocol NIOPipeBootstrapHooks { | ||
| func makePipeChannel(eventLoop: SelectableEventLoop, | ||
| inputPipe: NIOFileHandle?, | ||
| outputPipe: NIOFileHandle?) throws -> PipeChannel; |
There was a problem hiding this comment.
| outputPipe: NIOFileHandle?) throws -> PipeChannel; | |
| outputPipe: NIOFileHandle?) throws -> PipeChannel |
| } | ||
|
|
||
| let bootstrap = NIOPipeBootstrap(validatingGroup: elg, hooks: NIOPipeBootstrapHooksChannelFail()) | ||
| XCTAssertNotNil(bootstrap) |
There was a problem hiding this comment.
| XCTAssertNotNil(bootstrap) | |
| XCTAssertNotNil(bootstrap) |
| let sock = socket(AF_LOCAL, SOCK_STREAM, 0) | ||
| defer { | ||
| close(sock) | ||
| } |
There was a problem hiding this comment.
I don't think we're using this socket anywhere.
| outputPipe: NIOFileHandle?) throws -> PipeChannel; | ||
| } | ||
|
|
||
| fileprivate struct DefaultNIOPipeBootstrapHooks : NIOPipeBootstrapHooks { |
There was a problem hiding this comment.
| fileprivate struct DefaultNIOPipeBootstrapHooks : NIOPipeBootstrapHooks { | |
| fileprivate struct DefaultNIOPipeBootstrapHooks: NIOPipeBootstrapHooks { |
Motivation:
When taking ownership of input and output file descriptors in a bootstrap the ownership of the file handles remains with the caller in the function taking ownership fails. This is currently where _takingOwnershipOfDescriptors uses NIOFileHandle to take ownership of descriptors but then experiences a later failure.
Modifications:
If an exception is throw in _takingOwnershipOfDescriptors release file descriptors from NIOFileHandle.
Result:
No crash on failure to close file handles before end of scoped usage.