fix(build): stop leaking the splitReader goroutine when an interceptor abandons its reader

[SAY-5]

What

splitReader in pkg/backend/build/builder.go fans out a source io.Reader into two pipe-backed readers with a single io.Copy goroutine feeding a MultiWriter:

func splitReader(original io.Reader) (io.Reader, io.Reader) {
    r1, w1 := io.Pipe()
    r2, w2 := io.Pipe()
    multiWriter := io.MultiWriter(w1, w2)
    go func() {
        defer w1.Close()
        defer w2.Close()
        _, err := io.Copy(multiWriter, original)
        if err != nil {
            w1.CloseWithError(err)
            w2.CloseWithError(err)
        }
    }()
    return r1, r2
}

io.Pipe writes are synchronous: a write blocks until the paired PipeReader consumes the bytes. If either returned reader is abandoned without being drained to EOF — the interceptor returning early on error is the concrete case flagged in #492 — MultiWriter.Write blocks inside io.Copy, the goroutine never returns, and it leaks for the lifetime of the process. Worse, the other consumer also deadlocks because the write into the second pipe is wedged behind the first.

Fix

Plumb the caller's context into splitReader and run a parallel watcher that calls CloseWithError on both pipe writers on ctx cancel:

func splitReader(ctx context.Context, original io.Reader) (io.Reader, io.Reader) {
    r1, w1 := io.Pipe()
    r2, w2 := io.Pipe()
    multiWriter := io.MultiWriter(w1, w2)
    go func() {
        defer w1.Close()
        defer w2.Close()
        copyDone := make(chan struct{})
        defer close(copyDone)
        go func() {
            select {
            case <-ctx.Done():
                w1.CloseWithError(ctx.Err())
                w2.CloseWithError(ctx.Err())
            case <-copyDone:
            }
        }()
        _, err := io.Copy(multiWriter, original)
        if err != nil {
            w1.CloseWithError(err)
            w2.CloseWithError(err)
        }
    }()
    return r1, r2
}

The copy goroutine observes the ErrClosedPipe from CloseWithError, io.Copy returns, both pipes close cleanly. The parallel watcher goroutine itself exits through the copyDone signal (always closed via defer) so it doesn't leak either.

The only caller (adapterBuilder.storeLayer) already has ctx in scope and passes it through.

Fixes #492

[gemini-code-assist]

Code Review

This pull request updates the splitReader function to accept a context, which is used to prevent goroutine leaks by closing pipe writers if the context is cancelled. While this improves resource management, feedback indicates that BuildLayer still contains a potential goroutine leak if OutputLayer fails, as the function can return early without waiting for the interceptor goroutine to complete.

[gemini-code-assist]

While passing ctx to splitReader helps reclaim the goroutine when the parent context is cancelled, BuildLayer still has a potential goroutine leak if OutputLayer fails (line 191). In that case, the function returns early without waiting for the interceptor goroutine (wg.Wait() is at line 197 and is skipped). Since OutputLayer likely stopped reading from reader, the splitReader goroutine will block on w1.Write, and the interceptor will block on itReader.Read. These will only be reclaimed when the parent ctx is cancelled, which might be much later in a long-running process. Consider using a scoped context with cancellation and ensuring wg.Wait() is called on all exit paths to fully address the leak when OutputLayer fails.