Leaking file locks in Lua 5.3-beta and automatic cleanup of temporary resources

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Leaking file locks in Lua 5.3-beta and automatic cleanup of temporary resources
From: Philipp Janda <siffiejoe@...>
Date: Sat, 15 Nov 2014 16:47:49 +0100

Hi!

To avoid problems with NUL-bytes when reading lines, Lua 5.3-beta readssingle bytes in a loop instead of using `fgets` like previous Luaversions did. For better performance Lua uses unlocked I/O whenavailable (i.e. on POSIX machines, though MS Windows has a similar API:`_lock_file`, `_unlock_file`, and `_getc_nolock`). I found the followingpiece of code in `liolib.c`:


    luaL_buffinit(L, &b);
    l_lockfile(f);
    while ((c = l_getc(f)) != EOF && c != '\n')
      luaL_addchar(&b, c);
    l_unlockfile(f);

The problem I see here is that `luaL_addchar` could `longjmp` out of theloop when memory allocation fails without unlocking the file object. Onesolution to this specific problem would be to read into a characterarray on the C stack and unlock the file stream before doing a`luaL_addlstring`. Or you could rely on the implementation of`luaL_Buffer`s, and unlock the file just before the buffer has to grow.

Anyway, something like this can also happen with other temporaryresources like memory buffers, temporary files, etc., and the usualapproach I use is to allocate a userdata (with a suitable `__gc`method), and let the GC do the cleanup if the function exits with a`longjmp`. Obviously that doesn't work well with locks or otherresources that need immediate cleanup. C++ has RAII for this, so I waswondering whether it makes sense to add functions for automatic resourcecleanup to the Lua C API. The way I imagine it, Lua would store an extrafunction pointer and a `void` pointer for every call to a`lua_CFunction`, and call those stored function pointers (up to the next`setjmp`) in reverse order before doing a `longjmp` in case of an error.


The API could be something like:

    lua_setdestructor(lua_State*, void (*destructor)(void*), void*);
    lua_rundestructor(lua_State*); /* calls and unsets destructor */

And the snippet from `liolib.c` would look like:

    luaL_buffinit(L, &b);
    l_lockfile(f);
    lua_setdestructor(L, fileunlock, f);
    while ((c = l_getc(f)) != EOF && c != '\n')
      luaL_addchar(&b, c);
    lua_rundestructor(L);

with

    static void fileunlock(void *ud) {
      l_unlockfile((FILE*)ud);
    }

What do you guys think?

Philipp

Follow-Ups:
- Re: Leaking file locks in Lua 5.3-beta and automatic cleanup of temporary resources, Roberto Ierusalimschy

Prev by Date: Re: [ANN] Lua 5.3.0 (beta) now available
Next by Date: Re: Penlight rockspec read non-permission, why?
Previous by thread: Re: [ANN] Lua 5.3.0 (beta) now available
Next by thread: Re: Leaking file locks in Lua 5.3-beta and automatic cleanup of temporary resources
Index(es):
- Date
- Thread