/// https://github.com/bitcoindevkit/bdk/issues/1634
impl<D> Drop for CPInner<D> {
fn drop(&mut self) {
- // Take out `prev` so its `drop` won't be called when this drop is finished
+ // Take out `prev` so its `drop` won't be called when this drop is finished.
let mut current = self.prev.take();
+ // Collect nodes to drop later so we avoid recursive drop calls while not leaking memory.
while let Some(arc_node) = current {
- // Get rid of the Arc around `prev` if we're the only one holding a ref
- // So the `drop` on it won't be called when the `Arc` is dropped.
- //
- // FIXME: When MSRV > 1.70.0 this should use Arc::into_inner which actually guarantees
- // that no recursive drop calls can happen even with multiple threads.
- match Arc::try_unwrap(arc_node).ok() {
- Some(mut node) => {
- // Keep going backwards
- current = node.prev.take();
- // Don't call `drop` on `CPInner` since that risks it becoming recursive.
- core::mem::forget(node);
- }
+ // Get rid of the `Arc` around `prev` if we're the only one holding a reference so the
+ // `drop` on it won't be called when the `Arc` is dropped.
+ let arc_inner = Arc::into_inner(arc_node);
+
+ match arc_inner {
+ // Keep going backwards.
+ Some(mut node) => current = node.prev.take(),
None => break,
}
}
}
}
}
+
+#[cfg(test)]
+mod tests {
+ use super::*;
+
+ /// Make sure that dropping checkpoints does not result in recursion and stack overflow.
+ #[test]
+ fn checkpoint_drop_is_not_recursive() {
+ let run = || {
+ let mut cp = CheckPoint::new(0, bitcoin::hashes::Hash::hash(b"genesis"));
+
+ for height in 1u32..=(1024 * 10) {
+ let hash: BlockHash = bitcoin::hashes::Hash::hash(height.to_be_bytes().as_slice());
+ cp = cp.push(height, hash).unwrap();
+ }
+
+ // `cp` would be dropped here.
+ };
+ std::thread::Builder::new()
+ // Restrict stack size.
+ .stack_size(32 * 1024)
+ .spawn(run)
+ .unwrap()
+ .join()
+ .unwrap();
+ }
+
+ #[test]
+ fn checkpoint_does_not_leak() {
+ let mut cp = CheckPoint::new(0, bitcoin::hashes::Hash::hash(b"genesis"));
+
+ for height in 1u32..=1000 {
+ let hash: BlockHash = bitcoin::hashes::Hash::hash(height.to_be_bytes().as_slice());
+ cp = cp.push(height, hash).unwrap();
+ }
+
+ let genesis = cp.get(0).expect("genesis exists");
+ let weak = Arc::downgrade(&genesis.0);
+
+ // At this point there should be exactly two strong references to the
+ // genesis checkpoint: the variable `genesis` and the chain `cp`.
+ assert_eq!(
+ Arc::strong_count(&genesis.0),
+ 2,
+ "`cp` and `genesis` should be the only strong references",
+ );
+
+ // Dropping the chain should remove one strong reference.
+ drop(cp);
+ assert_eq!(
+ Arc::strong_count(&genesis.0),
+ 1,
+ "`genesis` should be the last strong reference after `cp` is dropped",
+ );
+
+ // Dropping the final reference should deallocate the node, so the weak
+ // reference cannot be upgraded.
+ drop(genesis);
+ assert!(
+ weak.upgrade().is_none(),
+ "the checkpoint node should be freed when all strong references are dropped",
+ );
+ }
+}
projects / bdk / commitdiff