Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

"fs.chownSync" results in an abort #37995

Closed
zyscoder opened this issue Mar 31, 2021 · 2 comments
Closed

"fs.chownSync" results in an abort #37995

zyscoder opened this issue Mar 31, 2021 · 2 comments
Labels
confirmed-bug Issues with confirmed bugs. fs Issues and PRs related to the fs subsystem / file system. good first issue Issues that are suitable for first-time contributors.

Comments

@zyscoder
Copy link

What steps will reproduce the bug?

Setup a node instance,

» node

and run the following javascript code.

fs.chownSync("",-1, -1)

Then the node instance crashes.

How often does it reproduce? Is there a required condition?

This abort can always be triggered following the steps above.

What is the expected behavior?

If any error occurs, an exception or other similar error-reporting stuff should be thrown. There is no reason to abort the whole node process.

What do you see instead?

» node
Welcome to Node.js v14.15.1.
Type ".help" for more information.
> fs.chownSync("",-1, -1)
node[51145]: ../src/node_file.cc:2179:void node::fs::Chown(const v8::FunctionCallbackInfo<v8::Value>&): Assertion `args[1]->IsUint32()' failed.
 1: 0xa03530 node::Abort() [node]
 2: 0xa035ae  [node]
 3: 0xa0d54a  [node]
 4: 0xbe369b  [node]
 5: 0xbe4c46  [node]
 6: 0xbe52c6 v8::internal::Builtin_HandleApiCall(int, unsigned long*, v8::internal::Isolate*) [node]
 7: 0x13ff259  [node]

Additional information
@Ayase-252 Ayase-252 added the fs Issues and PRs related to the fs subsystem / file system. label Mar 31, 2021
@aduh95 aduh95 added the confirmed-bug Issues with confirmed bugs. label Mar 31, 2021
@aduh95
Copy link
Contributor

aduh95 commented Mar 31, 2021

Can reproduce on master:

> out/Release/node -e 'fs.chownSync("",-1, -1)' 
out/Release/node[42049]: ../src/node_file.cc:2187:void node::fs::Chown(const FunctionCallbackInfo<v8::Value> &): Assertion `args[1]->IsUint32()' failed.
 1: 0x10aedc895 node::Abort() […/out/Release/node]
 2: 0x10aedc701 node::Assert(node::AssertionInfo const&) […/out/Release/node]
 3: 0x10aef14ed node::fs::Chown(v8::FunctionCallbackInfo<v8::Value> const&) […/out/Release/node]
 4: 0x10b0c1e5a v8::internal::FunctionCallbackArguments::Call(v8::internal::CallHandlerInfo) […/out/Release/node]
 5: 0x10b0c1438 v8::internal::MaybeHandle<v8::internal::Object> v8::internal::(anonymous namespace)::HandleApiCallHelper<false>(v8::internal::Isolate*, v8::internal::Handle<v8::internal::HeapObject>, v8::internal::Handle<v8::internal::HeapObject>, v8::internal::Handle<v8::internal::FunctionTemplateInfo>, v8::internal::Handle<v8::internal::Object>, v8::internal::BuiltinArguments) […/out/Release/node]
 6: 0x10b0c09ff v8::internal::Builtin_Impl_HandleApiCall(v8::internal::BuiltinArguments, v8::internal::Isolate*) […/out/Release/node]
 7: 0x10b9399b9 Builtins_CEntry_Return1_DontSaveFPRegs_ArgvOnStack_BuiltinExit […/out/Release/node]
 8: 0x10b8d43e5 Builtins_InterpreterEntryTrampoline […/out/Release/node]
[2]    42049 abort      out/Release/node -e 'fs.chownSync("",-1, -1)'
> out/Release/node -e 'fs.chown("",-1, -1, Function.prototype)' 
out/Release/node[42085]: ../src/node_file.cc:2187:void node::fs::Chown(const FunctionCallbackInfo<v8::Value> &): Assertion `args[1]->IsUint32()' failed.
 1: 0x106a16895 node::Abort() […/out/Release/node]
 2: 0x106a16701 node::Assert(node::AssertionInfo const&) […/out/Release/node]
 3: 0x106a2b4ed node::fs::Chown(v8::FunctionCallbackInfo<v8::Value> const&) […/out/Release/node]
 4: 0x106bfbe5a v8::internal::FunctionCallbackArguments::Call(v8::internal::CallHandlerInfo) […/out/Release/node]
 5: 0x106bfb438 v8::internal::MaybeHandle<v8::internal::Object> v8::internal::(anonymous namespace)::HandleApiCallHelper<false>(v8::internal::Isolate*, v8::internal::Handle<v8::internal::HeapObject>, v8::internal::Handle<v8::internal::HeapObject>, v8::internal::Handle<v8::internal::FunctionTemplateInfo>, v8::internal::Handle<v8::internal::Object>, v8::internal::BuiltinArguments) […/out/Release/node]
 6: 0x106bfa9ff v8::internal::Builtin_Impl_HandleApiCall(v8::internal::BuiltinArguments, v8::internal::Isolate*) […/out/Release/node]
 7: 0x1074739b9 Builtins_CEntry_Return1_DontSaveFPRegs_ArgvOnStack_BuiltinExit […/out/Release/node]
 8: 0x10740e3e5 Builtins_InterpreterEntryTrampoline […/out/Release/node]
[2]    42085 abort      out/Release/node -e 'fs.chown("",-1, -1, Function.prototype)'

fsPromises methods are not impacted:

> out/Release/node -e 'fs.promises.chown("",-1, -1)'            
node:internal/process/promises:245
          triggerUncaughtException(err, true /* fromPromise */);
          ^

RangeError [ERR_OUT_OF_RANGE]: The value of "uid" is out of range. It must be >= 0 && < 4294967296. Received -1
    at Object.chown (node:internal/fs/promises:637:3)
    at [eval]:1:13
    at Script.runInThisContext (node:vm:131:12)
    at Object.runInThisContext (node:vm:308:38)
    at node:internal/process/execution:77:19
    at [eval]-wrapper:6:22
    at evalScript (node:internal/process/execution:76:60)
    at node:internal/main/eval_string:23:3 {
  code: 'ERR_OUT_OF_RANGE'
}
> out/Release/node -e 'fs.promises.open("/dev/null").then(fh=>fh.chown(-1, -1))'  
node:internal/process/promises:245
          triggerUncaughtException(err, true /* fromPromise */);
          ^

RangeError [ERR_OUT_OF_RANGE]: The value of "uid" is out of range. It must be >= 0 && < 4294967296. Received -1
    at fchown (node:internal/fs/promises:630:3)
    at fsCall (node:internal/fs/promises:265:18)
    at FileHandle.chown (node:internal/fs/promises:126:12)
    at [eval]:1:43 {
  code: 'ERR_OUT_OF_RANGE'
}

@Lxxyx Lxxyx added the good first issue Issues that are suitable for first-time contributors. label Mar 31, 2021
@ycjcl868 ycjcl868 mentioned this issue Mar 31, 2021
Closed
RaisinTen added a commit to RaisinTen/node that referenced this issue Mar 31, 2021
@RaisinTen
fs: fix chown abort
5402b26 
This syncs the type assertion introduced in the referenced PR in the C++
side. Since chown, lchown, and fchown can accept -1 as a value for uid
and gid, we should also accept signed integers from the JS side.

Fixes: nodejs#37995
Refs: nodejs#31694
@RaisinTen RaisinTen mentioned this issue Mar 31, 2021
Closed
@RaisinTen
Copy link
Contributor

PR: #38004

@Trott Trott closed this as completed in e9ed113 Apr 3, 2021
@aduh95 aduh95 mentioned this issue Apr 4, 2021
Closed
MylesBorins pushed a commit that referenced this issue Apr 4, 2021
@RaisinTen @MylesBorins
fs: fix chown abort
dc46073 
This syncs the type assertion introduced in the referenced PR in the C++
side. Since chown, lchown, and fchown can accept -1 as a value for uid
and gid, we should also accept signed integers from the JS side.

Fixes: #37995
Refs: #31694

PR-URL: #38004
Reviewed-By: Anna Henningsen <[email protected]>
Reviewed-By: Rich Trott <[email protected]>
MylesBorins pushed a commit that referenced this issue Apr 5, 2021
@RaisinTen @MylesBorins
fs: fix chown abort
ad7e344 
This syncs the type assertion introduced in the referenced PR in the C++
side. Since chown, lchown, and fchown can accept -1 as a value for uid
and gid, we should also accept signed integers from the JS side.

Fixes: #37995
Refs: #31694

PR-URL: #38004
Reviewed-By: Anna Henningsen <[email protected]>
Reviewed-By: Rich Trott <[email protected]>
targos pushed a commit that referenced this issue May 1, 2021
@RaisinTen @targos
fs: fix chown abort
8598745 
This syncs the type assertion introduced in the referenced PR in the C++
side. Since chown, lchown, and fchown can accept -1 as a value for uid
and gid, we should also accept signed integers from the JS side.

Fixes: #37995
Refs: #31694

PR-URL: #38004
Reviewed-By: Anna Henningsen <[email protected]>
Reviewed-By: Rich Trott <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
confirmed-bug Issues with confirmed bugs. fs Issues and PRs related to the fs subsystem / file system. good first issue Issues that are suitable for first-time contributors.
Projects
None yet
Milestone
No milestone
5 participants
@Ayase-252 @Lxxyx @aduh95 @zyscoder @RaisinTen