domains: fix handling of uncaught exceptions

[misterdjules]

Fix node exiting due to an exception being thrown rather than emitting
an 'uncaughtException' event on the process object when:

1. no error handler is set on the domain within which an error is thrown
2. an 'uncaughtException' event listener is set on the process

Also fix an issue where the process would not abort in the proper
function call if an error is thrown within a domain with no error
handler and --abort-on-uncaught-exception is used.

Finally, change the behavior of --abort-on-uncaught-exception so that,
if the domain within which the error is thrown has no error handler, but
a domain further up the domains stack has one, the process will not
abort.

Fixes #3607 and #3653.

[misterdjules]

This PR is based on top of #3640. We might want to consolidate both PRs into one, but since this one adds a commit with more substantial changes, I thought I would submit it separately.

Landing #3640 and not this PR creates the problem where the following code:

const domain = require('domain');
d.run(function() { throw new Error('boom'); });

would not make node abort when using --abort-on-uncaught-exception.

So depending on how urgent it is to fix #3607 which #3640 fixes, and how long it would take to review the second commit in this PR, we could either land both commits at once into one commit, or land #3640 first and then this PR.

Once the review for this PR targeted to master is done, I will back port it to the v0.10 and v0.12 branches.

/cc @nodejs/tsc @nodejs/lts @nodejs/collaborators

[thefourtheye]

We use camel case, right?

[misterdjules]

Generally, yes, although it seems it's not enforced by the linter. Are you saying that I should fix _domain_flag's name to be camel cased? This is not an addition from this PR, so i'd rather focus on the changes that this PR makes and fix that later.

[jasnell]

I agree with @misterdjules

[trevnorris]

style nit: these cases should be indented 4 spaces. the linter not catching this?

[misterdjules]

@trevnorris It seems the linter is not catching this, but I've updated the PR as suggested. Thanks!

[jasnell]

hmm... the change looks good but given that this changes the error handling, this would need to be semver-minor or semver-major wouldn't it? @nodejs/ctc

[misterdjules]

@jasnell The issue that the first commit in this PR fixes is a regression from node v4.1.2. That is, #3607 cannot be reproduced with node v4.1.2, but can be reproduced since node v4.2.0.

The first commit in this PR fixes that issue, but it also exposed a bug in the way we handle uncaught exceptions within domains when --abort-on-uncaught-exception is used on the command line. The second commit fixes that bug.

The change in behavior is in the following situation:

var domain = require('domain');
var d1 = domain.create();
var d2 = domain.create();

d1.on('error', function() {
});

d1.run(function() {
  d2.run(function() {
    throw new Error('boom');
  }
}

Previously, when using --abort-on-uncaught-exception, this code would abort. Now, it doesn't because we consider that the domain d1 can handle the error.

Note that in the case of an async operation's callback throwing the error:

var domain = require('domain');
var d1 = domain.create();
var d2 = domain.create();

d1.on('error', function() {
});

d1.run(function() {
  d2.run(function() {
    setImmediate(function() {
      throw new Error('boom');
    });
  }
}

running this code with --abort-on-uncaught-exception still aborts because the domains stack at the time the setImmediate callback is called only contains the domain d2, which doesn't have any error handler set.

I agree that this specific behavior change could be a breaking change, but this PR can be easily changed to not change this behavior and still fix the rest of the issues it fixes.

[jasnell]

hmm ok. we may need to do split it up that way then... which I know is a pain but we need to be very careful about potentially breaking changes landing in LTS.

[misterdjules]

@jasnell No worries and thank you for discussing how to come up with a good solution, I don't consider it as being a pain.

Is:

1. Submitting a PR targeted to v5.x without this behavior change
2. Cherry-picking the commit in v4.x when it lands in v5.x
3. Keeping this PR on master so that it can actually land on master with the behavior change (to eventually be in v6.x)

the right way to move forward?

[jasnell]

Sorry @misterdjules ... just now saw your response on this one. We might be able to get away with being more lenient on landing the behavior change in v5.x. I would say land in master, cherry pick to v5.x, then cherry pick a subset (without the behavior change) to v4.x. Then, in the next v4.x release, we can document the issue in the known issues and indicate that it's been fixed fully in v5.x and master.

@rvagg @Fishrock123 ... does that seem reasonable?

[misterdjules]

@jasnell OK, so I will:

• Submit a new PR targeted to v4.x-staging without the behavior change.
• Update the PRs on v0.12 and v0.10 to not contain the behavior change.
• Keep the PR as it is on master (except for squashing the two commits into one).

Then I'll tag that PR on master as "land-on-v5.x" (whatever the proper spelling for that tag is), and we can decide how we want to land it there. I personally don't see any need to land it with the behavior change on v5.x, as long as it lands with the behavior change on master.

The goal being that eventually the behavior of domains used with --abort-on-uncaught-exception is more consistent with when --abort-on-uncaught-exception is not used, but it doesn't need to happen in v5.x.

[jasnell]

+1

[misterdjules]

@jasnell @nodejs/ctc @nodejs/collaborators Squashed into one commit, updated commit message and original description of the PR. Please take a look.

[bnoordhuis]

Can you use const and properly capitalize the comment while you're here?

[misterdjules]

Will fix!

[misterdjules]

@DonutEspresso Going through the comments I actually found a few typos that I will fix shortly. Thank you, very much appreciated!

[chrisdickinson]

With the current state of this PR, it would be caught by the tests suite: at least one test would fail if EventEmitter.prototype._events was changed in a way that breaks uncaught exceptions handling. I have the feeling this is enough, and that we would probably need to add a lot of similar comments elsewhere if we add one there. But I don't have a strong opinion, so if you'd still like me to add a comment I'll be happy to do so!

That's totally fair! If the tests break then that should be a good enough signal to go on :)

Other than the missing test case, LGTM!

[misterdjules]

@chrisdickinson Added a second commit that adds a test in test/parallel/test-domain-throw-error-then-throw-from-uncaught-exception-handler.js. Since it needs to check if a node process actually aborts in one case, and this also needs to be done in other tests, I factored that logic in a new nodeProcessAborted function defined in test/common.js.

A third commit also fixes some typos in the tests' comments.

Can you please take a look, and if these changes look good to you, I'll squash all commits in this PR into one commit.

[chrisdickinson]

LGTM!

[misterdjules]

@chrisdickinson I've actually changed test/parallel/test-domain-throw-error-then-throw-from-uncaught-exception-handler.js a bit to avoid creating core files, which is what's done in any other similar test.

I took that opportunity to check that the error messages on stderr were consistent with what's expected. It doesn't change the nature/implementation of the test too much though, so I'll consider your LGTM still stands and land that once CI tests results are OK.

Thank you once again!

[misterdjules]

Tagging as semver-minor as per a previous discussion that happened a while ago in this PR.

[misterdjules]

Previous CI tests results had a failure on Windows in test/parallel/test-domain-throw-error-then-throw-from-uncaught-exception-handler.js. I pushed an additional commit that fixes the issue, and restarted CI tests.

[misterdjules]

@nodejs/ctc CI tests all passed, except for existing flaky tests. Will land asap.

[misterdjules]

Landed in 425a354.

[saper]

Everyone: do you think sass/node-sass#1283 is instance of this bug?

[misterdjules]

@saper Do you mean:

1. Was Exit status 3221225477 returned from node scripts/build.js / Windows XP sass/node-sass#1283 fixed by this PR?
2. Was Exit status 3221225477 returned from node scripts/build.js / Windows XP sass/node-sass#1283 introduced by this PR?

I don't see how it could be 1), but it could be 2), although it seems unlikely. Ideally we would have a callstack at the time the process aborted. But that's a discussion that should happen in sass/node-sass#1283 first.

[saper]

I haven't checked yet which versions of node this patch is in, so I don't know whether it's 1 or 2. We started getting those reports only very recently (and it seems we have great deal of Windows XP users #3604 ). I will try to reproduce that myself on the XP box.

[saper]

Sorry for noise, it looks like it is a regression in our code.