feat userver core: fix fs::TempFile destructor crash when fs::TempFile object was moved already

kirslayk · kirslayk · commit 16558d2f1149 · 2025-09-03T15:34:59.000+03:00
commit_hash:6e92edd5bb95a09f9747b3dbb33053c404c9d1a7
diff --git a/.mapping.json b/.mapping.json
@@ -1572,6 +1572,7 @@
   "core/src/fs/read.cpp":"taxi/uservices/userver/core/src/fs/read.cpp",
   "core/src/fs/read_test.cpp":"taxi/uservices/userver/core/src/fs/read_test.cpp",
   "core/src/fs/temp_file.cpp":"taxi/uservices/userver/core/src/fs/temp_file.cpp",
+  "core/src/fs/temp_file_test.cpp":"taxi/uservices/userver/core/src/fs/temp_file_test.cpp",
   "core/src/fs/write.cpp":"taxi/uservices/userver/core/src/fs/write.cpp",
   "core/src/fs/write_test.cpp":"taxi/uservices/userver/core/src/fs/write_test.cpp",
   "core/src/logging/component.cpp":"taxi/uservices/userver/core/src/logging/component.cpp",
diff --git a/core/include/userver/fs/temp_file.hpp b/core/include/userver/fs/temp_file.hpp
@@ -40,7 +40,7 @@ class TempFile final {
     TempFile() = delete;
     TempFile(TempFile&& other) noexcept = default;
     TempFile& operator=(TempFile&& other) noexcept = default;
-    ~TempFile();
+    ~TempFile() noexcept;
 
     /// Take ownership of an existing file
     static TempFile Adopt(std::string path, engine::TaskProcessor& fs_task_processor);
diff --git a/core/src/fs/temp_file.cpp b/core/src/fs/temp_file.cpp
@@ -1,6 +1,7 @@
 #include <userver/fs/temp_file.hpp>
 
 #include <userver/engine/async.hpp>
+#include <userver/logging/log.hpp>
 
 USERVER_NAMESPACE_BEGIN
 
@@ -27,7 +28,13 @@ TempFile::Create(std::string_view parent_path, std::string_view name_prefix, eng
     };
 }
 
-TempFile::~TempFile() { std::move(*this).Remove(); }
+TempFile::~TempFile() noexcept {
+    try {
+        std::move(*this).Remove();
+    } catch (const std::exception& ex) {
+        LOG_ERROR() << "fs::~TempFile failed with exception:" << ex;
+    }
+}
 
 TempFile TempFile::Adopt(std::string path, engine::TaskProcessor& fs_task_processor) {
     return {fs_task_processor, blocking::TempFile::Adopt(std::move(path))};
diff --git a/core/src/fs/temp_file_test.cpp b/core/src/fs/temp_file_test.cpp
@@ -0,0 +1,75 @@
+#include <gmock/gmock.h>
+#include <userver/utest/utest.hpp>
+
+#include <boost/filesystem/operations.hpp>
+
+#include <userver/engine/task/current_task.hpp>
+#include <userver/fs/blocking/temp_directory.hpp>
+#include <userver/fs/temp_file.hpp>
+#include <userver/logging/log.hpp>
+#include <userver/utest/log_capture_fixture.hpp>
+
+USERVER_NAMESPACE_BEGIN
+
+namespace {
+using FsTempFileWithLog = utest::LogCaptureFixture<>;
+}
+
+UTEST_F(FsTempFileWithLog, TempFileDestructorWithException) {
+    std::string parent_dir;
+    {
+        const auto parent = fs::blocking::TempDirectory::Create();
+        parent_dir = parent.GetPath();
+
+        {
+            // Create temp file in temporaty directory
+            const auto file = fs::TempFile::Create(
+                parent_dir, "TempFileDestructorWithException", engine::current_task::GetTaskProcessor()
+            );
+
+            const auto dir_status = boost::filesystem::status(parent_dir);
+            const auto original_perms = dir_status.permissions();
+
+            LOG_DEBUG() << "Original directory permissions: " << static_cast<int>(original_perms);
+
+            // Check that the directory has write permissions
+            ASSERT_TRUE((original_perms & boost::filesystem::perms::owner_write) != boost::filesystem::perms::no_perms);
+
+            // Change permissions for the directory
+            boost::filesystem::permissions(
+                parent_dir,
+                boost::filesystem::perms::owner_read | boost::filesystem::perms::owner_exe |
+                    boost::filesystem::perms::group_read | boost::filesystem::perms::group_exe |
+                    boost::filesystem::perms::others_read | boost::filesystem::perms::others_exe
+            );
+            LOG_DEBUG() << "Changed directory permissions, write is now forbidden";
+
+            // Check that the file can not be removed
+            try {
+                boost::filesystem::remove(file.GetPath());
+                FAIL() << "Expected exception when removing file";
+            } catch (const std::exception& ex) {
+                LOG_DEBUG() << "Confirmed file cannot be removed";
+            }
+
+            // We don't expect that ~TempFile to throw an exception
+        }
+
+        // Check that log with error from ~TempFile exists
+        EXPECT_THAT(GetLogCapture().Filter("fs::~TempFile failed with exception:"), testing::SizeIs(1));
+
+        // Rollback directory permissions
+        boost::filesystem::permissions(
+            parent_dir,
+            boost::filesystem::perms::owner_read | boost::filesystem::perms::owner_write |
+                boost::filesystem::perms::owner_exe | boost::filesystem::perms::group_read |
+                boost::filesystem::perms::group_write | boost::filesystem::perms::group_exe |
+                boost::filesystem::perms::others_read | boost::filesystem::perms::others_write |
+                boost::filesystem::perms::others_exe
+        );
+        LOG_DEBUG() << "Changed directory permissions, write is now available";
+    }
+    ASSERT_FALSE(boost::filesystem::exists(parent_dir));
+}
+
+USERVER_NAMESPACE_END
diff --git a/universal/src/fs/blocking/temp_file.cpp b/universal/src/fs/blocking/temp_file.cpp
@@ -47,7 +47,7 @@ TempFile::~TempFile() {
     try {
         fs::blocking::RemoveSingleFile(path_);
     } catch (const std::exception& ex) {
-        LOG_ERROR() << ex;
+        LOG_ERROR() << "fs::blocking::~TempFile failed with exception: " << ex;
     }
 }
 
diff --git a/universal/src/fs/blocking/temp_file_test.cpp b/universal/src/fs/blocking/temp_file_test.cpp
@@ -7,10 +7,13 @@
 
 #include <userver/fs/blocking/temp_directory.hpp>
 #include <userver/fs/blocking/write.hpp>
+#include <userver/logging/log.hpp>
+#include <userver/utest/log_capture_fixture.hpp>
 
 USERVER_NAMESPACE_BEGIN
 
 namespace {
+using FsBlockingTempFileWithLog = utest::LogCaptureFixture<>;
 
 bool StartsWith(std::string_view hay, std::string_view needle) { return hay.substr(0, needle.size()) == needle; }
 
@@ -75,4 +78,59 @@ TEST(TempFile, CustomPath) {
     EXPECT_EQ(boost::filesystem::status(root + "/foo").permissions(), boost::filesystem::perms::owner_all);
 }
 
+TEST_F(FsBlockingTempFileWithLog, BlockingTempFileDestructorWithException) {
+    std::string parent_dir;
+    {
+        const auto parent = fs::blocking::TempDirectory::Create();
+        parent_dir = parent.GetPath();
+
+        {
+            // Create temp file in temporaty directory
+            const auto file = fs::blocking::TempFile::Create(parent_dir, "BlockingTempFileDestructorWithException");
+
+            const auto dir_status = boost::filesystem::status(parent_dir);
+            const auto original_perms = dir_status.permissions();
+
+            LOG_DEBUG() << "Original directory permissions: " << static_cast<int>(original_perms);
+
+            // Check that the directory has write permissions
+            ASSERT_TRUE((original_perms & boost::filesystem::perms::owner_write) != boost::filesystem::perms::no_perms);
+
+            // Change permissions for the directory
+            boost::filesystem::permissions(
+                parent_dir,
+                boost::filesystem::perms::owner_read | boost::filesystem::perms::owner_exe |
+                    boost::filesystem::perms::group_read | boost::filesystem::perms::group_exe |
+                    boost::filesystem::perms::others_read | boost::filesystem::perms::others_exe
+            );
+            LOG_DEBUG() << "Changed directory permissions, write is now forbidden";
+
+            // Check that the file can not be removed
+            try {
+                boost::filesystem::remove(file.GetPath());
+                FAIL() << "Expected exception when removing file";
+            } catch (const std::exception& ex) {
+                LOG_DEBUG() << "Confirmed file cannot be removed";
+            }
+
+            // We don't expect that ~TempFile to throw an exception
+        }
+
+        // Check that log with error from ~TempFile exists
+        EXPECT_EQ(GetLogCapture().Filter("fs::blocking::~TempFile failed with exception:").size(), 1);
+
+        // Rollback directory permissions
+        boost::filesystem::permissions(
+            parent_dir,
+            boost::filesystem::perms::owner_read | boost::filesystem::perms::owner_write |
+                boost::filesystem::perms::owner_exe | boost::filesystem::perms::group_read |
+                boost::filesystem::perms::group_write | boost::filesystem::perms::group_exe |
+                boost::filesystem::perms::others_read | boost::filesystem::perms::others_write |
+                boost::filesystem::perms::others_exe
+        );
+        LOG_DEBUG() << "Changed directory permissions, write is now available";
+    }
+    ASSERT_FALSE(boost::filesystem::exists(parent_dir));
+}
+
 USERVER_NAMESPACE_END

Original file line number	Diff line number	Diff line change
`@@ -47,7 +47,7 @@ TempFile::~TempFile() {`
`47`	`47`	`try {`
`48`	`48`	`fs::blocking::RemoveSingleFile(path_);`
`49`	`49`	`} catch (const std::exception& ex) {`
`50`		`- LOG_ERROR() << ex;`
	`50`	`+ LOG_ERROR() << "fs::blocking::~TempFile failed with exception: " << ex;`
`51`	`51`	`}`
`52`	`52`	`}`
`53`	`53`