Bug 52719 - An incomplete fix for the resource leak bug in WebappClassLoader.java
Summary: An incomplete fix for the resource leak bug in WebappClassLoader.java
Alias: None
Product: Tomcat 6
Classification: Unclassified
Component: Catalina (show other bugs)
Version: unspecified
Hardware: PC All
: P2 trivial (vote)
Target Milestone: default
Assignee: Tomcat Developers Mailing List
Depends on:
Reported: 2012-02-21 09:37 UTC by lianggt08
Modified: 2012-03-23 17:02 UTC (History)
0 users


Note You need to log in before you can comment on or make changes to this bug.
Description lianggt08 2012-02-21 09:37:53 UTC
The fix revision 423920 was aimed to remove an resource leak bug on the  JarFile "jarFile "  in the method "validateJarFile" of the file "/tomcat/tc6.0.x/trunk/java/org/apache/catalina/loader/WebappClassLoader.java" , but it is incomplete. 

When the statements at lines 3226-3245 throw any eception, the object "jarFile " can not be closed as expected. The best way to close such resource object is putting such close operations in the finaly block of a try-catch-finally structure.

The buggy code is copies as bellows: 

3220 protected boolean validateJarFile(File jarfile)
        throws IOException {

        if (triggers == null)
            return (true);
3225        JarFile jarFile = new JarFile(jarfile);
3226        for (int i = 0; i < triggers.length; i++) {
            Class clazz = null;
            try {
                if (parent != null) {
                    clazz = parent.loadClass(triggers[i]);
                } else {
                    clazz = Class.forName(triggers[i]);
            } catch (Throwable t) {
                clazz = null;
            if (clazz == null)
            String name = triggers[i].replace('.', '/') + ".class";
            if (log.isDebugEnabled())
                log.debug(" Checking for " + name);
            JarEntry jarEntry = jarFile.getJarEntry(name);
            if (jarEntry != null) {
                log.info("validateJarFile(" + jarfile + 
                    ") - jar not loaded. See Servlet Spec 2.3, "
                    + "section 9.7.2. Offending class: " + name);
3246                jarFile.close();
                return (false);
        return (true);

Comment 1 Mark Thomas 2012-03-07 22:00:35 UTC
r423920 has nothing to do with resource leaks. Starting a bug report with a clearly invalid statement does little to help the credibility of the report.

Severity set to something more realistic given the likelihood of this ever actually happening.

Fixed in trunk and 7.0.x for 7.0.27. Proposed for 6.0.x although I'd be equally happy with WONTFIX for 6.0.x.
Comment 2 Konstantin Kolinko 2012-03-23 17:02:47 UTC
Fixed in 6.0 with r1304483 and will be in 6.0.36