Fix a memory leak on returning incompatible values (#2424)

This fixes an issue where if a store-incompatible value is returned from a host-defined function then that value is leaked. Practically this means that it's possible to accidentally leak `Func` values, but a simple insertion of a `drop` does the trick!
2020-11-16 14:26:48 -06:00
parent a61f068c64
commit 8675fa5aa7
2 changed files with 36 additions and 0 deletions
--- a/crates/wasmtime/src/func.rs
+++ b/crates/wasmtime/src/func.rs
@@ -1611,6 +1611,14 @@ macro_rules! impl_into_func {
                            )
                        }))
                    };
+
+                    // Note that we need to be careful when dealing with traps
+                    // here. Traps are implemented with longjmp/setjmp meaning
+                    // that it's not unwinding and consequently no Rust
+                    // destructors are run. We need to be careful to ensure that
+                    // nothing on the stack needs a destructor when we exit
+                    // abnormally from this `match`, e.g. on `Err`, on
+                    // cross-store-issues, or if `Ok(Err)` is raised.
                    match ret {
                        Err(panic) => wasmtime_runtime::resume_panic(panic),
                        Ok(ret) => {
@@ -1618,6 +1626,7 @@ macro_rules! impl_into_func {
                            // can't assume it returned a value that is
                            // compatible with this store.
                            if !ret.compatible_with_store(weak_store) {
+                                drop(ret);
                                raise_cross_store_trap();
                            }