-
Notifications
You must be signed in to change notification settings - Fork 30k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat: please turn the WASI returnOnExit option to default true #46923
Comments
@nodejs/wasi |
@cjihrig what's your take on this? A default of |
I don't have strong feelings either way. My only concern about making the default EDIT: One thing that occurred to me is that we implemented the current hack because if |
I brought this up in today's wasi team meeting. It sounds like our hacky approach is essentially the right way to go for now and we should change the default value of |
@cjihrig I'm happy to put together a PR to change the default. It is potentially breaking though so I'm wondering if we should mark it SemVer Major even though the feature is experimental. What do you think. Also my plan would be to put the PR together early next week so it would not make the cutoff for 20.x |
How about making it semver-minor and not backporting to 19.x and below? |
WASI is still experimental in Node so we can change it at any time. But I do think not backporting it is a good idea. |
I like the suggestion as well. So we'll plan to mark semver-minor and then tag for don't backport to 19.x etc. |
I'll plan to submit a PR Friday or more likely Monday. |
Refs: nodejs#46923 Signed-off-by: Michael Dawson <mdawson@devrus.com>
Refs: nodejs#46923 Signed-off-by: Michael Dawson <mdawson@devrus.com>
Refs: nodejs#46923 Signed-off-by: Michael Dawson <mdawson@devrus.com>
Refs: #46923 Signed-off-by: Michael Dawson <mdawson@devrus.com> PR-URL: #47390 Reviewed-By: Richard Lau <rlau@redhat.com> Reviewed-By: Guy Bedford <guybedford@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de> Reviewed-By: James M Snell <jasnell@gmail.com>
Refs: #46923 Signed-off-by: Michael Dawson <mdawson@devrus.com> PR-URL: #47390 Reviewed-By: Richard Lau <rlau@redhat.com> Reviewed-By: Guy Bedford <guybedford@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de> Reviewed-By: James M Snell <jasnell@gmail.com>
I think this can be closed as the PR to switch the default has landed. Let me know if you think that was not the right thing to do. |
Feature Request
Overview
node/doc/api/wasi.md
Lines 139 to 142 in c4103c1
node/lib/wasi.js
Lines 112 to 116 in c4103c1
The current behaviour is for the WASI/WASM module to exit the process when
__wasi_proc_exit
is called. Not only that, currently it also allows the WASI module to control the exit code.This seems like a capability that should be explicitly provided to the module rather than something that is on by default. It's unintuitive that a process running in a sandbox would have the ability to crash the entire app without the caller giving it explicit permission to do so.
This is particularly an issue when running 3rd party modules since you rarely have a complete idea on when and where the module might call
__wasi_proc_exit
and with what exit codes.Returning instead of exitting when a sandboxed process finishes aligns better with the principles of least privilege and secure by default.
Context
#46254 (comment)
https://github.com/nodejs/node/blob/main/test/wasi/test-return-on-exit.js
The text was updated successfully, but these errors were encountered: