Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix crypto abort on throwing setter #27157

Closed
wants to merge 1 commit into from
Closed

Fix crypto abort on throwing setter #27157

wants to merge 1 commit into from

Conversation

sam-github
Copy link
Contributor

See #26868 (comment)

@addaleax Note there are 2 commits. Actually, I'm not convinced the second commit is correct.

If a C++ API called from js has an openssl error occur, then while creating the error object to throw from C++, it calls into user-land js, and THAT throws, which error should actually suface? With all the Maybe checking, I made it be the "pending" low-level error. That was a useful exercise, it gives me a better understanding what all the Maybe's are about, but I have to say, I'm not sure its what I would expect.

In this case, isn't it the first error, the openssl API one, that we would want thrown? Not the second one?

Checklist
  • make -j4 test (UNIX), or vcbuild test (Windows) passes
  • tests and/or benchmarks are included
  • documentation is changed or added
  • commit message follows commit guidelines

@sam-github sam-github requested a review from addaleax April 9, 2019 19:13
@nodejs-github-bot
Copy link
Collaborator

Lite-CI: https://ci.nodejs.org/job/node-test-pull-request-lite-pipeline/3214

@nodejs-github-bot nodejs-github-bot added c++ Issues and PRs that require attention from people who are familiar with C++. crypto Issues and PRs related to the crypto subsystem. labels Apr 9, 2019
@sam-github sam-github changed the title Fix tls abort on throwing setter Fix crypto abort on throwing setter Apr 9, 2019
addaleax
addaleax approved these changes Apr 9, 2019
View reviewed changes
Copy link
Member

@addaleax addaleax left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you!

src/node_crypto.cc Outdated Show resolved Hide resolved
src/node_crypto.cc Outdated Show resolved Hide resolved
src/node_crypto.cc Outdated Show resolved Hide resolved
src/node_crypto.cc Outdated Show resolved Hide resolved
@sam-github sam-github force-pushed the fix-abort-on-throwing-setter branch 2 times, most recently from 9686a81 to cf6e4d2 Compare April 11, 2019 22:28
@sam-github
Copy link
Contributor Author

@addaleax made your suggested changes, still this open question:

Actually, I'm not convinced the second commit is correct.

If a C++ API called from js has an openssl error occur, then while creating the error object to throw from C++, it calls into user-land js, and THAT throws, which error should actually suface? With all the Maybe checking, I made it be the "pending" low-level error. That was a useful exercise, it gives me a better understanding what all the Maybe's are about, but I have to say, I'm not sure its what I would expect.

In this case, isn't it the first error, the openssl API one, that we would want thrown? Not the second one?

@addaleax
Copy link
Member

@sam-github Yeah, I don’t think there’s a definite right or wrong answer. But I think forwarding the setter exception is what would happen if we were to do this in JS land (unless there are explicit try/catchs), and it might also be odd to throw an “incomplete” OpenSSL error object otherwise?

@sam-github
Copy link
Contributor Author

@addaleax the analogy with js is not entirely perfect, because the openssl error is not (yet) an exception, but it is an "error". The properties are doced as "exist if they do" (lots of crypto errors don't come from openssl, so don't have the properties), so that isn't a problem, but I'll leave it as it is, throwing the first pending exception. Its a total fringe case, its hard to imagine anyone attaching throwing setters on the global object prototype and expecting deterministic behaviour.

@nodejs-github-bot
Copy link
Collaborator

CI: https://ci.nodejs.org/job/node-test-pull-request/22394/

@nodejs-github-bot
Copy link
Collaborator

CI: https://ci.nodejs.org/job/node-test-pull-request/22430/

@nodejs-github-bot
Copy link
Collaborator

CI: https://ci.nodejs.org/job/node-test-pull-request/22475/

@sam-github
Copy link
Contributor Author

Landed in 69140bc

sam-github added a commit that referenced this pull request Apr 17, 2019
@sam-github
crypto: do not abort when setting throws
69140bc 
PR-URL: #27157
Reviewed-By: Anna Henningsen <anna@addaleax.net>
Reviewed-By: James M Snell <jasnell@gmail.com>
@sam-github sam-github closed this Apr 17, 2019
@sam-github sam-github deleted the fix-abort-on-throwing-setter branch April 17, 2019 18:17
@sam-github sam-github mentioned this pull request Apr 18, 2019
Closed
4 tasks
This was referenced Apr 23, 2019
Closed
Closed
Closed
Closed
Closed
This was referenced Apr 23, 2019
Closed
Closed
Closed
Closed
Closed
@bnoordhuis bnoordhuis mentioned this pull request Oct 19, 2022
Open
@molllyn1 molllyn1 mentioned this pull request Apr 15, 2024
Open
@ron-a20 ron-a20 mentioned this pull request Apr 15, 2024
Open
@kissofire kissofire mentioned this pull request Apr 15, 2024
Open
@137717unity 137717unity mentioned this pull request Apr 15, 2024
Open
@aliceUnhinged613 aliceUnhinged613 mentioned this pull request Apr 15, 2024
Open
@wedataintelligence wedataintelligence mentioned this pull request Apr 16, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@addaleax addaleax addaleax approved these changes

@jasnell jasnell jasnell approved these changes

Assignees
No one assigned
Labels
c++ Issues and PRs that require attention from people who are familiar with C++. crypto Issues and PRs related to the crypto subsystem.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@sam-github @nodejs-github-bot @addaleax @jasnell