[v6.x fix] lib: fix zlib async callback after close #16312
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
mcollina
approved these changes
Oct 19, 2017
|
/cc @nodejs/streams @addaleax (re zlib) @nodejs/lts |
addaleax
approved these changes
Oct 22, 2017
| @@ -594,7 +594,7 @@ Zlib.prototype._processChunk = function(chunk, flushFlag, cb) { | |||
| this.callback = null; | |||
| } | |||
|
|
|||
| if (self._hadError) | |||
| if (self._hadError || !self._handle) | |||
There was a problem hiding this comment.
I think self._hadError implies !self._handle, so this might just be if (!self._handle)?
There was a problem hiding this comment.
If you want it that way, I can change it. However, I prefer it this way because:
- This is a backport, so the impetus is on minimal changes rather than best code for future as the code is already obsolete
- This makes it explicit (and easier to review) that the change can not cause additional breakage by removing some handling that needs to be explicitly checked that all sites which set
_hadErroralso clear_handle. - In case
_hadErrorbehavior is changed due to some other case, relying on_handlemight not be guaranteed
But, I don't really know the project well enough to know if my arguments are valid or not. So, either way is fine for me, just let me know if it would be better with just if (!self._handle).
MylesBorins
force-pushed
the
v6.x-staging
branch
2 times, most recently
from
9219283 to
b0fadbe
Compare
Move the core logic from `LineParser` should fail handling into the recoverable error check for the REPL default eval. Fixes: nodejs#15704 Backport-PR-URL: nodejs#15773 PR-URL: nodejs#6171 Reviewed-By: James M Snell <[email protected]> Reviewed-By: Michaël Zasso <[email protected]>
|
@nakedible can you please rebase and respond to @addaleax's comment |
`crypto.createCipher()` sets the fixed IV derived from password and it leads to a security risk of nonce reuse when counter mode is used. A warning is emitted when CTR, GCM or CCM is used in `crypto.createCipher()` to notify users to avoid nonce reuse. Backport-PR-URL: nodejs#16583 Fixes: nodejs#13801 PR-URL: nodejs#13821 Reviewed-By: Ben Noordhuis <[email protected]> Reviewed-By: Fedor Indutny <[email protected]> Reviewed-By: James M Snell <[email protected]> Reviewed-By: Tobias Nießen <[email protected]>
EVP_CIPHER_CTX_FLAG_WRAP_ALLOW flag needs to be set in using wrap mode ciphers. In `crypto.createCipher()`, AES key wrap mode does not use a default IV defined in RFC3394 but a generated IV with `EVP_BytesToKey()` to be consistent API behaviors with other ciphers. The built-in AES wrap mode in OpenSSL is not supported in FIPS mode as http://openssl.6102.n7.nabble.com/AES-Key-Wrap-in-FIPS-Mode-td50238.html so its tests in FIPS mode are skipped. Backport-PR-URL: nodejs#16584 Fixes: nodejs#15009 PR-URL: nodejs#15037 Reviewed-By: Fedor Indutny <[email protected]> Reviewed-By: Ben Noordhuis <[email protected]> Reviewed-By: Tobias Nießen <[email protected]> Reviewed-By: James M Snell <[email protected]>
This exception can logically never happen because of the key stretching that takes place first. Failure must therefore be a bug in Node.js and not in the executing script. Backport-PR-URL: nodejs#16585 PR-URL: nodejs#15183 Reviewed-By: Colin Ihrig <[email protected]> Reviewed-By: James M Snell <[email protected]>
Closing a zlib stream may throw an uncaught exception afterwards if there was a pending callback still to be invoked. This adds a very minimal fix to the issue as all of this code has been rewritten in later versions. Fixes: nodejs#15625
nakedible-p
force-pushed
the
fix-zlib-close-for-v6.x
branch
from
7ce4aea to
a390a32
Compare
|
Rebased. Sorry, sort of dropped the ball on this, because I couldn't get tests for v6.x-staging to pass on my machine. Was something to do with a couple network tests not returning ENOTFOUND but some error. |
|
@addaleax is this ready to land now? |
MylesBorins
force-pushed
the
v6.x-staging
branch
from
fa922b9 to
50c3dab
Compare
|
ping @addaleax |
1 similar comment
|
ping @addaleax |
MylesBorins
force-pushed
the
v6.x-staging
branch
from
88b6795 to
3c4bb3c
Compare
|
@MylesBorins Yes, this is still ready :) |
MylesBorins
pushed a commit
that referenced
this pull request
Jan 19, 2018
Closing a zlib stream may throw an uncaught exception afterwards if there was a pending callback still to be invoked. This adds a very minimal fix to the issue as all of this code has been rewritten in later versions. Fixes: #15625 PR-URL: #16312 Reviewed-By: Matteo Collina <[email protected]> Reviewed-By: Anna Henningsen <[email protected]>
|
landed in 5707f83 |
Merged
MylesBorins
pushed a commit
that referenced
this pull request
Feb 11, 2018
Closing a zlib stream may throw an uncaught exception afterwards if there was a pending callback still to be invoked. This adds a very minimal fix to the issue as all of this code has been rewritten in later versions. Fixes: #15625 PR-URL: #16312 Reviewed-By: Matteo Collina <[email protected]> Reviewed-By: Anna Henningsen <[email protected]>
|
This unfortunately broke ws on osx and needed to be backed out of v6.x We currently have To reproduce with this branch run edit: test failure was a timeout" |
MylesBorins
force-pushed
the
v6.x-staging
branch
3 times, most recently
from
5bdb18e to
691cd5a
Compare
MylesBorins
force-pushed
the
v6.x-staging
branch
2 times, most recently
from
0a4c79b to
988cca8
Compare
|
Closing as we never had resolution |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
A minimal change that will fix #15625. There are no test cases for this, as I have not been able to find a way to trigger this without actually running a busy system in production. The fix is also minimal because I have been able to verify in production that this fixes the issue, by using code like
stream._hadError = true; stream.close(). The fix is for 6.x only, as the code has been heavily rewritten in 8.x and does not contain this bug anymore.Checklist
make -j4 test(UNIX), orvcbuild test(Windows) passesAffected core subsystem(s)
zlib