Ensure that waitForProcess is never called more than once (fixes #69)

ChangeLog.md

@@ -1,5 +1,10 @@
 # ChangeLog for typed-process
 
+## 0.2.12.0
+
+* Ensure that `waitForProcess` is never called more than once
+  [#70](https://github.com/fpco/typed-process/pull/70)
+
 ## 0.2.11.0
 
 * Expose more from `System.Process.Typed.Internal`

package.yaml

@@ -1,5 +1,5 @@
 name:        typed-process
-version:     0.2.11.0
+version:     0.2.12.0
 synopsis:    Run external processes, with strong typing of streams
 description: Please see the tutorial at <https://github.com/fpco/typed-process#readme>
 category:    System

src/System/Process/Typed.hs

@@ -1,4 +1,5 @@
 {-# LANGUAGE CPP #-}
+{-# LANGUAGE LambdaCase #-}
 {-# LANGUAGE TypeFamilies #-}
 {-# LANGUAGE DeriveDataTypeable #-}
 {-# LANGUAGE RecordWildCards #-}
@@ -130,13 +131,15 @@ module System.Process.Typed
     ) where
 
 import Control.Exception hiding (bracket, finally)
+import Control.Monad ((>=>), guard)
 import Control.Monad.IO.Class
 import qualified System.Process as P
 import System.IO (hClose)
 import System.IO.Error (isPermissionError)
 import Control.Concurrent (threadDelay)
-import Control.Concurrent.Async (asyncWithUnmask, cancel, waitCatch)
-import Control.Concurrent.STM (newEmptyTMVarIO, atomically, putTMVar, TMVar, readTMVar, tryReadTMVar, STM, tryPutTMVar, throwSTM, catchSTM)
+import Control.Concurrent.Async (asyncWithUnmask)
+import qualified Control.Concurrent.Async as Async
+import Control.Concurrent.STM (newEmptyTMVarIO, atomically, putTMVar, TMVar, readTMVar, tryReadTMVar, STM, throwSTM, catchSTM)
 import System.Exit (ExitCode (ExitSuccess, ExitFailure))
 import System.Process.Typed.Internal
 import qualified Data.ByteString.Lazy as L
@@ -239,51 +242,39 @@ startProcess pConfig'@ProcessConfig {..} = liftIO $ do
               atomically $ putTMVar pExitCode ec
               return ec
 
+          let waitForProcess = Async.wait waitingThread :: IO ExitCode
           let pCleanup = pCleanup1 `finally` do
-                  -- First: stop calling waitForProcess, so that we can
-                  -- avoid race conditions where the process is removed from
-                  -- the system process table while we're trying to
-                  -- terminate it.
-                  cancel waitingThread
-
-                  -- Now check if the process had already exited
-                  eec <- waitCatch waitingThread
-
-                  case eec of
+                  _ :: ExitCode <- Async.poll waitingThread >>= \ case
                       -- Process already exited, nothing to do
-                      Right _ec -> return ()
+                      Just r -> either throwIO return r
 
                       -- Process didn't exit yet, let's terminate it and
                       -- then call waitForProcess ourselves
-                      Left _ -> do
+                      Nothing -> do
                           terminateProcess pHandle
-                          ec <- P.waitForProcess pHandle
-                          success <- atomically $ tryPutTMVar pExitCode ec
-                          evaluate $ assert success ()
+                          waitForProcess
+                  return ()
 
           return Process {..}
   where
     pConfig = clearStreams pConfig'
 
-    terminateProcess pHandle = do
-      eres <- try $ P.terminateProcess pHandle
-      case eres of
-          Left e
-            -- On Windows, with the single-threaded runtime, it
-            -- seems that if a process has already exited, the
-            -- call to terminateProcess will fail with a
-            -- permission denied error. To work around this, we
-            -- catch this exception and then immediately
-            -- waitForProcess. There's a chance that there may be
-            -- other reasons for this permission error to appear,
-            -- in which case this code may allow us to wait too
-            -- long for a child process instead of erroring out.
-            -- Recommendation: always use the multi-threaded
-            -- runtime!
-            | isPermissionError e && not multiThreadedRuntime && isWindows ->
-              pure ()
-            | otherwise -> throwIO e
-          Right () -> pure ()
+    terminateProcess :: P.ProcessHandle -> IO ()
+    terminateProcess p = do
+        -- On Windows, with the single-threaded runtime, it seems that if a
+        -- process has already exited, the call to terminateProcess will fail
+        -- with a permission denied error. To work around this, we ignore this
+        -- exception. There's a chance that there may be other reasons for this
+        -- permission error to appear, in which case this code may allow us to
+        -- wait too long for a child process instead of erroring out on a
+        -- subsequent call to `waitForProcess`.
+        -- Recommendation: always use the multi-threaded runtime!
+        ignorePermissionErrorOnSingleThreadedWindows $ P.terminateProcess p
+
+    ignorePermissionErrorOnSingleThreadedWindows :: IO () -> IO ()
+    ignorePermissionErrorOnSingleThreadedWindows = tryJust (guard . p) >=> either return return
+      where
+        p e = isPermissionError e && not multiThreadedRuntime && isWindows
 
 foreign import ccall unsafe "rtsSupportsBoundThreads"
   multiThreadedRuntime :: Bool

test/System/Process/TypedSpec.hs

@@ -5,6 +5,7 @@ module System.Process.TypedSpec (spec) where
 import System.Process.Typed
 import System.Process.Typed.Internal
 import System.IO
+import Control.Exception
 import Control.Concurrent.Async (Concurrently (..))
 import Control.Concurrent.STM (atomically)
 import Test.Hspec
@@ -170,3 +171,12 @@ spec = do
     it "empty param are showed" $
       let expected = "Raw command: podman exec --detach-keys \"\" ctx bash\n"
        in show (proc "podman" ["exec", "--detach-keys", "", "ctx", "bash"]) `shouldBe` expected
+
+    describe "stopProcess" $ do
+        it "never calls waitForProcess more than once (fix for #69)" $ do
+            -- https://github.com/fpco/typed-process/issues/70
+            let config = setStdout createPipe (proc "echo" ["foo"])
+            withProcessWait config $ \p -> do
+              _ <- S.hGetContents (getStdout p)
+              throwIO DivideByZero
+            `shouldThrow` (== DivideByZero)