Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

node-api: avoid crashing on passed-in null string #38923

Closed
wants to merge 2 commits into from
Closed

node-api: avoid crashing on passed-in null string #38923

wants to merge 2 commits into from

Conversation

gabrielschulhof
Copy link
Contributor

When napi_create_string_* receives a null pointer as its second
argument, it must null-check it before passing it into V8, otherwise a
crash will occur.

Signed-off-by: @gabrielschulhof

@github-actions github-actions bot added c++ Issues and PRs that require attention from people who are familiar with C++. needs-ci PRs that need a full CI run. labels Jun 4, 2021
@gabrielschulhof gabrielschulhof added node-api Issues and PRs related to the Node-API. test Issues and PRs related to the tests. labels Jun 4, 2021
@gabrielschulhof
node-api: avoid crashing on passed-in null string
b5dc717 
When `napi_create_string_*` receives a null pointer as its second
argument, it must null-check it before passing it into V8, otherwise a
crash will occur.

Signed-off-by: Gabriel Schulhof <[email protected]>
@gabrielschulhof gabrielschulhof mentioned this pull request Jun 4, 2021
Closed
mhdawson
mhdawson approved these changes Jun 4, 2021
View reviewed changes
Copy link
Member

@mhdawson mhdawson left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

addaleax
addaleax requested changes Jun 5, 2021
View reviewed changes
Copy link
Member

@addaleax addaleax left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

str should be allowed to be nullptr if length is 0.

@gabrielschulhof
Copy link
Contributor Author

@addaleax I added an allowance for NULL when the length given is zero. PTAL!

@nodejs-github-bot
Copy link
Collaborator

CI: https://ci.nodejs.org/job/node-test-pull-request/38517/

jasnell
jasnell reviewed Jun 7, 2021
View reviewed changes
src/js_native_api_v8.cc
@@ -1483,6 +1483,8 @@ napi_status napi_create_string_latin1(napi_env env,
size_t length,
napi_value* result) {
CHECK_ENV(env);
if (length > 0)
CHECK_ARG(env, str);
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The naming of these macros is really unfortunate. Everywhere else, CHECK_* generally implies an assert.

@mhdawson
Copy link
Member

Resume attemp: https://ci.nodejs.org/job/node-test-pull-request/38563/

@nodejs-github-bot
Copy link
Collaborator

CI: https://ci.nodejs.org/job/node-test-pull-request/38563/

gabrielschulhof added a commit that referenced this pull request Jun 11, 2021
@gabrielschulhof
node-api: avoid crashing on passed-in null string
d615aeb 
When `napi_create_string_*` receives a null pointer as its second
argument, it must null-check it before passing it into V8, otherwise a
crash will occur.

Signed-off-by: Gabriel Schulhof <[email protected]>
PR-URL: #38923
Reviewed-By: Franziska Hinkelmann <[email protected]>
Reviewed-By: James M Snell <[email protected]>
Reviewed-By: Anna Henningsen <[email protected]>
Reviewed-By: Chengzhong Wu <[email protected]>
Reviewed-By: Michael Dawson <[email protected]>
@gabrielschulhof
Copy link
Contributor Author

Landed in d615aeb.

@gabrielschulhof gabrielschulhof deleted the node-api-fix-string-null branch June 11, 2021 16:04
danielleadams pushed a commit that referenced this pull request Jun 13, 2021
@gabrielschulhof @danielleadams
node-api: avoid crashing on passed-in null string
f7724ab 
When `napi_create_string_*` receives a null pointer as its second
argument, it must null-check it before passing it into V8, otherwise a
crash will occur.

Signed-off-by: Gabriel Schulhof <[email protected]>
PR-URL: #38923
Reviewed-By: Franziska Hinkelmann <[email protected]>
Reviewed-By: James M Snell <[email protected]>
Reviewed-By: Anna Henningsen <[email protected]>
Reviewed-By: Chengzhong Wu <[email protected]>
Reviewed-By: Michael Dawson <[email protected]>
@danielleadams danielleadams mentioned this pull request Jun 14, 2021
Merged
danielleadams pushed a commit that referenced this pull request Jun 17, 2021
@gabrielschulhof @danielleadams
node-api: avoid crashing on passed-in null string
65b76b6 
When `napi_create_string_*` receives a null pointer as its second
argument, it must null-check it before passing it into V8, otherwise a
crash will occur.

Signed-off-by: Gabriel Schulhof <[email protected]>
PR-URL: #38923
Reviewed-By: Franziska Hinkelmann <[email protected]>
Reviewed-By: James M Snell <[email protected]>
Reviewed-By: Anna Henningsen <[email protected]>
Reviewed-By: Chengzhong Wu <[email protected]>
Reviewed-By: Michael Dawson <[email protected]>
@richardlau
Copy link
Member

This is blocked from landing on v14.x-staging as it depends on #37217.

@toyobayashi toyobayashi mentioned this pull request Apr 19, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@fhinkel fhinkel fhinkel approved these changes

@jasnell jasnell jasnell approved these changes

@addaleax addaleax addaleax approved these changes

@legendecas legendecas legendecas approved these changes

@mhdawson mhdawson mhdawson approved these changes

@bl-ue bl-ue bl-ue approved these changes

Assignees
No one assigned
Labels
c++ Issues and PRs that require attention from people who are familiar with C++. needs-ci PRs that need a full CI run. node-api Issues and PRs related to the Node-API. test Issues and PRs related to the tests.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
9 participants
@gabrielschulhof @nodejs-github-bot @mhdawson @richardlau @fhinkel @jasnell @addaleax @legendecas @bl-ue