src: fix --abort-on-uncaught-exception

[misterdjules]

Revert 0af4c9e, parts of
921f2de and port
nodejs/node-v0.x-archive#25835 from v0.12 to
master so that node aborts at the right time when an error is thrown
and --abort-on-uncaught-exception is used.

This change floats a patch on top of V8 that has not been submitted
upstream. If this change turns out to be the preferred approach to fix
issue #3035, the V8 related changes will be submitted upstream.

Fixes #3035.

EDIT: The V8 related changes have landed upstream, see https://codereview.chromium.org/1375933003/.

[misterdjules]

/cc @nodejs/post-mortem

This is one of the proposed approaches to fix #3035. For now, I'm looking for feedback on the general approach. I'll submit another PR shortly that takes a different approach and reference it here.

[thefourtheye]

extra semi-colon at the end.

[misterdjules]

Will fix.

[misterdjules]

@thefourtheye Thanks for the review, updated this PR according to your comments.

[misterdjules]

Also, just to be really clear, an alternative approach to this PR is available with #3038. At this point I'm really looking for comments on the general approach so that we can decide how to move forward and fix #3035.

[bnoordhuis]

I'd make it return an enum so that it can be extended easily in the future.

The naming is kind of incongruous with V8's normal style. UncaughtExceptionCallback is closer to what I'd expect.

For that matter, is it actually necessary to abort inside V8? You could rewrite the logic in isolate.cc to this:

if (uncaught_exception_callback_ != nullptr &&
    PredictExceptionCatcher() != CAUGHT_BY_JAVASCRIPT) {
  uncaught_exception_callback_(reinterpret_cast<v8::Isolate*>(this));
}

It's then up to the callback to abort or not. You can optionally pass message_obj as the second argument.

[misterdjules]

I'd make it return an enum so that it can be extended easily in the future.

Good point.

The naming is kind of incongruous with V8's normal style. UncaughtExceptionCallback is closer to what I'd expect.

Sounds good too 👍

For that matter, is it actually necessary to abort inside V8?

It's not. However in case there's no uncaught exception callback set by the embedder, V8 has to abort. It seemed more consistent to me to abort in the same frame whether or not such a callback is set.

[bnoordhuis]

I'd combine it like this:

if (uncaught_exception_callback_ != nullptr &&
    PredictExceptionCatcher() != CAUGHT_BY_JAVASCRIPT) {
  uncaught_exception_callback_(reinterpret_cast<v8::Isolate*>(this));
} else if (FLAG_abort_on_uncaught_exception &&
           PredictExceptionCatcher() != CAUGHT_BY_JAVASCRIPT) {
  // ...
  base::OS::Abort();
}

In a perfect world --abort_on_uncaught_exception wouldn't exist in V8 and just be handled by the embedder.

[misterdjules]

Before I continue commenting, I just want to say that I'm thinking out loud and trying to find the right set of abstractions. I think your suggestions are great and help move this PR forward. I really really appreciate them and don't want to sound like I'm dismissing them, and I would appreciate if we could continue this constructive conversation.

The problem with aborting in node or in V8 when using --abort-on-uncaught-exception is consistency. For instance, to get the same exit codes and signals in both cases would require to use the same abort implementation. In this case, it would mean using the same implementation as base::OS::Abort(), which we can't use since it's not part of V8's public API (unless I'm missing something). This implementation has changed in the past and we would need to update our implementation to match V8's implementation if it changes again.

While it might not seem like a big issue, to me it indicates that we haven't found the right abstraction.

Now that I've implemented the change you suggested to have an enum rather than a boolean as the return value type for UncaughtExceptionCallback, I have the same concerns. When FLAG_abort_on_uncaught_exception is set, it doesn't make sense to me to do anything than aborting or not aborting (as an exception to the rule). Encoding the different behaviors at that point in an enum means that the UncaughtExceptionCallback in node is written like following:

Isolate::UncaughtExceptionPolicy OnUncaughtException(Isolate* isolate) {
  if (need_to_not_abort) {
   return Isolate::UncaughtExceptionPolicy::NO_ABORT;
  } else {
   return Isolate::UncaughtExceptionPolicy::ABORT;
  }
}

My concern with this implementation is that it's written like if node could do something else than aborting or not aborting, like swallowing the exception. But in reality V8 will abort or exit, but nothing else would make sense.

In a perfect world --abort_on_uncaught_exception wouldn't exist in V8 and just be handled by the embedder.

I don't know. node is maybe the only embedder taking advantage of this command line switch today, but to me it seems general enough to be used by any other embedder. For instance, even though I haven't done it yet, using d8 with --abort-on-uncaught-exception would be a good way for me to test mdb_v8 with recent V8 versions that haven't been integrated into node.

mdb_v8 is also a post-mortem debugger for any V8 embedder, not just node. These examples still revolve around mdb_v8, but I think it illustrates that --abort-on-uncaught-exception is a sound concept for any V8 embedder.

So I'm back to thinking that having the UncaughtExceptionCallback return a bool is better than having it return an enum, but as I said at the beginning of this comment I'm open to any further feedback. It might also help to continue the conversation on IRC for a bit, I'm "jgi" in #io.js, #libuv and #v8.

[thefourtheye]

const

[misterdjules]

It would be great to automate this rule with our linting tools. Is this something that has been investigated before?

Using the prefer-const rule does not apply to function-scoped variable declarations, so we would need to use the no-var eslint rule too, which I assume would require a significant amount of work. I'm also not sure about all the implications since I'm not familiar with ES6.

I'm not a big fan of having implicit coding style rules, because it becomes frustrating for maintainers to enforce them every time, and for contributors because they don't have any tool to check that their code complies to the guidelines.

@thefourtheye @nodejs/tsc Any thoughts on this?

[thefourtheye]

Rod suggested sometime back to think more about suggesting const. So cc ing @rvagg

[misterdjules]

Created #3118 to discuss this.

[thefourtheye]

@misterdjules Cool. Thanks :-)

[misterdjules]

FYI submitted https://codereview.chromium.org/1375933003/ to V8, which contains the V8 related changes of this PR.

[davepacheco]

+1 to this approach over #3038.

[misterdjules]

V8-related changes landed upstream, see https://codereview.chromium.org/1375933003/.

As a result, I split the changes in two commits: one that back ports the V8 change, and one with node-only changes.

The author of the commit with node changes was changed to @whitlockjc because he was the author of the back ported change, that is nodejs/node-v0.x-archive#25835.

/cc @nodejs/post-mortem @nodejs/collaborators @nodejs/tsc

[jasnell]

@bnoordhuis good point. I've added the appropriate tag and will get the changelog for 4.2 updated appropriately. @misterdjules, will you be working on getting the change upstreamed?

[misterdjules]

@jasnell The change has already been upstreamed.

@bnoordhuis Are you suggesting that we do something to get that change into V8's upstream 4.5 branch?

[bnoordhuis]

@misterdjules Yes. There's a tools/release/merge_to_branch.py script you can use to cherry-pick a commit from master to a release branch. I don't know what the V8's team stance is on introducing new APIs in stable branches but I'd at least give it a try.

[misterdjules]

@bnoordhuis I didn't know that, thanks! I'll give it a try and keep you updated.

[misterdjules]

Created https://code.google.com/p/v8/issues/detail?id=4496&thanks=4496&ts=1445018834 and emailed hablich@chromium.org regarding errors when running tools/release/merge_to_branch.py, I'll keep you updated.

[misterdjules]

It seems that the V8 related changes won't make it into a release until V8 4.8: https://code.google.com/p/v8/issues/detail?id=4496.

[MylesBorins]

landed in v4.x-staging as 74f4435...546e833

[misterdjules]

@thealphanerd Just to make sure we're on the same page, do you mean it had already landed in v4.x-staging, or that you just landed it in v4.x-staging?

Usually we write "landed in some-branch as some-commit [, some-other commits]" when we just land commits, not as an indication that it had already landed before.

[MylesBorins]

@misterdjules I was documenting that it had landed. I was going through all commits with the land-on-4.x tag as I was landing stuff. Added in that comment to document what had landed on LTS in threads where it was missed.

I can use different language in the future to specify that I didn't land it, or just not make notes at all. Mostly was just trying to keep things consistent

[misterdjules]

@thealphanerd OK, that's great, thanks for doing that! I would suggest using a slightly different language, just to not confuse those messages with the ones we use when creating new commits.

Something like "This had already landed in v4.x as...".

[MylesBorins]

Makes sense to me. Will use different language if doing this in the future 😄