[v8.x] buffer: zero-fill buffer allocated with invalid content #17467
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
`test-inspector-async-hook-setup-at-signal` is also flaky on VS2017
PR-URL: nodejs#17428 Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Anatoli Papirovski <apapirovski@mac.com> Reviewed-By: Ali Ijaz Sheikh <ofrobots@google.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Michaël Zasso <targos@protonmail.com>
Zero-fill when `Buffer.alloc()` receives invalid fill data. A solution like nodejs#17427 which switches to throwing makes sense, but is likely a breaking change. This suggestion leaves the behaviour of `buffer.fill()` untouched, since any change to it would be a breaking change, and lets `Buffer.alloc()` check whether any filling took place or not. PR-URL: nodejs#17428 Refs: nodejs#17427 Refs: nodejs#17423 Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Anatoli Papirovski <apapirovski@mac.com> Reviewed-By: Ali Ijaz Sheikh <ofrobots@google.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Michaël Zasso <targos@protonmail.com>
nodejs-github-bot
added
buffer
|
CI: https://ci.nodejs.org/job/node-test-commit/14571/ @gibfahn It would be great if this could go into today’s release or the security release |
I think putting it in the security release makes sense. |
BridgeAR
reviewed
Dec 6, 2017
| @@ -10,6 +10,7 @@ prefix sequential | |||
| test-inspector-async-call-stack : PASS, FLAKY | |||
| test-inspector-bindings : PASS, FLAKY | |||
| test-inspector-debug-end : PASS, FLAKY | |||
| test-inspector-async-hook-setup-at-signal: PASS, FLAKY | |||
There was a problem hiding this comment.
Hm, is this related to the change here?
There was a problem hiding this comment.
No, this snuck its way in here because v8.x-staging was rebased.
The commits should still apply cleanly; I can rebase this PR if @gibfahn likes.
fhinkel
reviewed
Dec 6, 2017
| // Prints: <Buffer 61 61 61 61 61> | ||
| console.log(buf.fill('a')); | ||
| // Prints: <Buffer aa aa aa aa aa> | ||
| console.log(buf.fill('aazz', 'hex')); |
There was a problem hiding this comment.
I'm wondering if we should use something like bbzz here. With a it's unclear if no filling is performed or if the string was truncated. Also, should the last example have a // Prints: ...?
fhinkel
reviewed
Dec 6, 2017
| @@ -238,7 +238,9 @@ Buffer.alloc = function(size, fill, encoding) { | |||
| // be interpreted as a start offset. | |||
| if (typeof encoding !== 'string') | |||
| encoding = undefined; | |||
| return createUnsafeBuffer(size).fill(fill, encoding); | |||
| const ret = createUnsafeBuffer(size); | |||
| if (fill_(ret, fill, encoding) > 0) | |||
There was a problem hiding this comment.
Maybe leave a comment here?
// Invalid data, no filling.
fhinkel
reviewed
Dec 6, 2017
| @@ -832,19 +839,17 @@ Buffer.prototype.fill = function fill(val, start, end, encoding) { | |||
| } | |||
|
|
|||
| // Invalid ranges are not set to a default, so can range check early. | |||
There was a problem hiding this comment.
Should it say "so one can range check early."?
There was a problem hiding this comment.
Or maybe
// Early range check because invalid ranges are not set to a default.
|
@fhinkel Would it be okay with you if I resolved your comments in a separate PR against |
gibfahn
pushed a commit
that referenced
this pull request
Dec 6, 2017
PR-URL: #17428 Backport-PR-URL: #17467 Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Anatoli Papirovski <apapirovski@mac.com> Reviewed-By: Ali Ijaz Sheikh <ofrobots@google.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Michaël Zasso <targos@protonmail.com>
gibfahn
pushed a commit
that referenced
this pull request
Dec 6, 2017
Zero-fill when `Buffer.alloc()` receives invalid fill data. A solution like #17427 which switches to throwing makes sense, but is likely a breaking change. This suggestion leaves the behaviour of `buffer.fill()` untouched, since any change to it would be a breaking change, and lets `Buffer.alloc()` check whether any filling took place or not. PR-URL: #17428 Backport-PR-URL: #17467 Refs: #17427 Refs: #17423 Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Anatoli Papirovski <apapirovski@mac.com> Reviewed-By: Ali Ijaz Sheikh <ofrobots@google.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Michaël Zasso <targos@protonmail.com>
gibfahn
approved these changes
Dec 6, 2017
MylesBorins
pushed a commit
that referenced
this pull request
Dec 7, 2017
PR-URL: #17428 Backport-PR-URL: #17467 Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Anatoli Papirovski <apapirovski@mac.com> Reviewed-By: Ali Ijaz Sheikh <ofrobots@google.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Michaël Zasso <targos@protonmail.com>
MylesBorins
pushed a commit
that referenced
this pull request
Dec 7, 2017
Zero-fill when `Buffer.alloc()` receives invalid fill data. A solution like #17427 which switches to throwing makes sense, but is likely a breaking change. This suggestion leaves the behaviour of `buffer.fill()` untouched, since any change to it would be a breaking change, and lets `Buffer.alloc()` check whether any filling took place or not. PR-URL: #17428 Backport-PR-URL: #17467 Refs: #17427 Refs: #17423 Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Anatoli Papirovski <apapirovski@mac.com> Reviewed-By: Ali Ijaz Sheikh <ofrobots@google.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Michaël Zasso <targos@protonmail.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Checklist
make -j4 test(UNIX), orvcbuild test(Windows) passesAffected core subsystem(s)