Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

src: fix a crashing issue in Error::ThrowAsJavaScriptException via NODE_API_SWALLOW_UNTHROWABLE_EXCEPTIONS #975

Closed
wants to merge 5 commits into from
Closed

src: fix a crashing issue in Error::ThrowAsJavaScriptException via NODE_API_SWALLOW_UNTHROWABLE_EXCEPTIONS #975

Show file tree
Hide file tree
Changes from 2 commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
788df62
src: fix a crashing issue in Error::ThrowAsJavaScriptException
Feb 6, 2021
5382c4a
src,doc: add compile option
KevinEady Apr 22, 2021
a089697
Address review comments
KevinEady Apr 23, 2021
0187fec
Move compile option back to gyp file
KevinEady Apr 23, 2021
3f291f7
test: Move test to separate target
KevinEady Apr 27, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions common.gypi
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,6 +15,7 @@
}
}]
],
'defines': [ 'NODE_API_SWALLOW_UNTHROWABLE_EXCEPTIONS' ],
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This should not be here by default right ?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hi @mhdawson ,

So this relates to my comment on #902 (comment) where:

Not having the define in binding.gyp and using #define prior to #include <napi.h>: I was not able to opt-in.

You can see in commit a089697 the change to move the setting from binding.gyp to #define and now all of the builds fail.

I do not think it is possible to have a per-compilation unit setting for this feature, because the Error::ThrowAsJavaScriptException is a compiled, exported symbol:

➜  test git:(swallow-unthrowable-exceptions) ✗ nm -C build/Release/binding_noexcept.node | grep ThrowAsJavaScriptException
00000000000024f0 t Napi::Error::ThrowAsJavaScriptException() const

So, when the first compilation unit uses it, it will be compiled with whatever preprocessor definitions are currently in scope.

'include_dirs': ["<!(node -p \"require('../').include_dir\")"],
'cflags': [ '-Werror', '-Wall', '-Wextra', '-Wpedantic', '-Wunused-parameter' ],
'cflags_cc': [ '-Werror', '-Wall', '-Wextra', '-Wpedantic', '-Wunused-parameter' ]
Expand Down
7 changes: 7 additions & 0 deletions doc/setup.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -81,3 +81,10 @@ targeted node version *does not* have Node-API built-in.

The preprocessor directive `NODE_ADDON_API_DISABLE_DEPRECATED` can be defined at
compile time before including `napi.h` to skip the definition of deprecated APIs.

By default, throwing an exception on a terminating environment (eg. worker
threads) will cause a fatal exception, terminating the Node process. This is to
provide feedback to the user of the runtime error, as it is impossible to pass
the error to JavaScript when the environment is terminating. In order to bypass
this behavior such that the Node process will not terminate, define the
preprocessor directive `NODE_API_SWALLOW_UNTHROWABLE_EXCEPTIONS`.
32 changes: 31 additions & 1 deletion napi-inl.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2386,12 +2386,42 @@ inline const std::string& Error::Message() const NAPI_NOEXCEPT {
inline void Error::ThrowAsJavaScriptException() const {
HandleScope scope(_env);
if (!IsEmpty()) {

#ifdef NODE_API_SWALLOW_UNTHROWABLE_EXCEPTIONS
bool pendingException = false;

// check if there is already a pending exception. If so don't try to throw a
// new one as that is not allowed/possible
napi_status status = napi_is_exception_pending(_env, &pendingException);

if ((status == napi_ok) && (pendingException == false)) {
// We intentionally don't use `NAPI_THROW_*` macros here to ensure
// that there is no possible recursion as `ThrowAsJavaScriptException`
// is part of `NAPI_THROW_*` macro definition for noexcept.

status = napi_throw(_env, Value());

if (status == napi_pending_exception) {
// The environment must be terminating as we checked earlier and there
// was no pending exception. In this case continuing will result
// in a fatal error and there is nothing the author has done incorrectly
// in their code that is worth flagging through a fatal error
return;
}
} else {
status = napi_pending_exception;
}
#else
// We intentionally don't use `NAPI_THROW_*` macros here to ensure
// that there is no possible recursion as `ThrowAsJavaScriptException`
// is part of `NAPI_THROW_*` macro definition for noexcept.

napi_status status = napi_throw(_env, Value());
#endif

if (status == napi_pending_exception) {
// The environment could be terminating.
return;
}
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think this block should be added here.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Addressed.


#ifdef NAPI_CPP_EXCEPTIONS
if (status != napi_ok) {
Expand Down
62 changes: 62 additions & 0 deletions test/error.cc
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,9 +1,54 @@
#include <future>
#include "napi.h"

using namespace Napi;

namespace {

std::promise<void> promise_for_child_process_;
std::promise<void> promise_for_worker_thread_;

void ResetPromises(const CallbackInfo&) {
promise_for_child_process_ = std::promise<void>();
promise_for_worker_thread_ = std::promise<void>();
}

void WaitForWorkerThread(const CallbackInfo&) {
std::future<void> future = promise_for_worker_thread_.get_future();

std::future_status status = future.wait_for(std::chrono::seconds(5));

if (status != std::future_status::ready) {
Error::Fatal("WaitForWorkerThread", "status != std::future_status::ready");
}
}

void ReleaseAndWaitForChildProcess(const CallbackInfo& info,
const uint32_t index) {
if (info.Length() < index + 1) {
return;
}

if (!info[index].As<Boolean>().Value()) {
return;
}

promise_for_worker_thread_.set_value();

std::future<void> future = promise_for_child_process_.get_future();

std::future_status status = future.wait_for(std::chrono::seconds(5));

if (status != std::future_status::ready) {
Error::Fatal("ReleaseAndWaitForChildProcess",
"status != std::future_status::ready");
}
}

void ReleaseWorkerThread(const CallbackInfo&) {
promise_for_child_process_.set_value();
}

void DoNotCatch(const CallbackInfo& info) {
Function thrower = info[0].As<Function>();
thrower({});
Expand All @@ -18,16 +63,22 @@ void ThrowApiError(const CallbackInfo& info) {

void ThrowJSError(const CallbackInfo& info) {
std::string message = info[0].As<String>().Utf8Value();

ReleaseAndWaitForChildProcess(info, 1);
throw Error::New(info.Env(), message);
}

void ThrowTypeError(const CallbackInfo& info) {
std::string message = info[0].As<String>().Utf8Value();

ReleaseAndWaitForChildProcess(info, 1);
throw TypeError::New(info.Env(), message);
}

void ThrowRangeError(const CallbackInfo& info) {
std::string message = info[0].As<String>().Utf8Value();

ReleaseAndWaitForChildProcess(info, 1);
throw RangeError::New(info.Env(), message);
}

Expand Down Expand Up @@ -83,16 +134,22 @@ void CatchAndRethrowErrorThatEscapesScope(const CallbackInfo& info) {

void ThrowJSError(const CallbackInfo& info) {
std::string message = info[0].As<String>().Utf8Value();

ReleaseAndWaitForChildProcess(info, 1);
Error::New(info.Env(), message).ThrowAsJavaScriptException();
}

void ThrowTypeError(const CallbackInfo& info) {
std::string message = info[0].As<String>().Utf8Value();

ReleaseAndWaitForChildProcess(info, 1);
TypeError::New(info.Env(), message).ThrowAsJavaScriptException();
}

void ThrowRangeError(const CallbackInfo& info) {
std::string message = info[0].As<String>().Utf8Value();

ReleaseAndWaitForChildProcess(info, 1);
RangeError::New(info.Env(), message).ThrowAsJavaScriptException();
}

Expand Down Expand Up @@ -187,6 +244,8 @@ void ThrowDefaultError(const CallbackInfo& info) {
Error::Fatal("ThrowDefaultError", "napi_get_named_property");
}

ReleaseAndWaitForChildProcess(info, 1);

// The macro creates a `Napi::Error` using the factory that takes only the
// env, however, it heeds the exception mechanism to be used.
NAPI_THROW_IF_FAILED_VOID(env, status);
Expand All @@ -209,5 +268,8 @@ Object InitError(Env env) {
Function::New(env, CatchAndRethrowErrorThatEscapesScope);
exports["throwFatalError"] = Function::New(env, ThrowFatalError);
exports["throwDefaultError"] = Function::New(env, ThrowDefaultError);
exports["resetPromises"] = Function::New(env, ResetPromises);
exports["waitForWorkerThread"] = Function::New(env, WaitForWorkerThread);
exports["releaseWorkerThread"] = Function::New(env, ReleaseWorkerThread);
return exports;
}
88 changes: 88 additions & 0 deletions test/error_terminating_environment.js
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,88 @@
'use strict';
const buildType = process.config.target_defaults.default_configuration;
const assert = require('assert');

// These tests ensure that Error types can be used in a terminating
// environment without triggering any fatal errors.

if (process.argv[2] === 'runInChildProcess') {
const binding_path = process.argv[3];
const index_for_test_case = Number(process.argv[4]);

const binding = require(binding_path);

// Use C++ promises to ensure the worker thread is terminated right
// before running the testable code in the binding.

binding.error.resetPromises()

const { Worker } = require('worker_threads');

const worker = new Worker(
__filename,
{
argv: [
'runInWorkerThread',
binding_path,
index_for_test_case,
]
}
);

binding.error.waitForWorkerThread()

worker.terminate();

binding.error.releaseWorkerThread()

return;
}

if (process.argv[2] === 'runInWorkerThread') {
const binding_path = process.argv[3];
const index_for_test_case = Number(process.argv[4]);

const binding = require(binding_path);

switch (index_for_test_case) {
case 0:
binding.error.throwJSError('test', true);
break;
case 1:
binding.error.throwTypeError('test', true);
break;
case 2:
binding.error.throwRangeError('test', true);
break;
case 3:
binding.error.throwDefaultError(false, true);
break;
case 4:
binding.error.throwDefaultError(true, true);
break;
default: assert.fail('Invalid index');
}

assert.fail('This should not be reachable');
}

test(`./build/${buildType}/binding.node`);
test(`./build/${buildType}/binding_noexcept.node`);

function test(bindingPath) {
const number_of_test_cases = 5;

for (let i = 0; i < number_of_test_cases; ++i) {
const child_process = require('./napi_child').spawnSync(
process.execPath,
[
__filename,
'runInChildProcess',
bindingPath,
i,
]
);

assert(child_process.status === 0, `Test case ${i} failed`);
}
}
1 change: 1 addition & 0 deletions test/index.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -110,6 +110,7 @@ if (napiVersion < 6) {

if (majorNodeVersion < 12) {
testModules.splice(testModules.indexOf('objectwrap_worker_thread'), 1);
testModules.splice(testModules.indexOf('error_terminating_environment'), 1);
}

if (napiVersion < 8) {
Expand Down