src: fix inspector nullptr deref on abrupt exit

bnoordhuis · MylesBorins · commit 7d1d7390ebef · 2017-12-21T13:48:33.000-05:00
Fix a nullptr dereference on abrupt termination when async call stack recording is enabled. Bug discovered while trying to write a regression test for the bug fix in commit df79b7d ("src: fix missing handlescope bug in inspector".) PR-URL: #17577 Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Timothy Gu <timothygu99@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Refael Ackermann <refack@gmail.com> Reviewed-By: Eugene Ostroukhov <eostroukhov@google.com>
diff --git a/src/inspector_agent.cc b/src/inspector_agent.cc
@@ -325,10 +325,12 @@ class NodeInspectorClient : public V8InspectorClient {
   }
 
   void maxAsyncCallStackDepthChanged(int depth) override {
-    if (depth == 0) {
-      env_->inspector_agent()->DisableAsyncHook();
-    } else {
-      env_->inspector_agent()->EnableAsyncHook();
+    if (auto agent = env_->inspector_agent()) {
+      if (depth == 0) {
+        agent->DisableAsyncHook();
+      } else {
+        agent->EnableAsyncHook();
+      }
     }
   }
 
diff --git a/test/sequential/test-inspector-async-call-stack-abort.js b/test/sequential/test-inspector-async-call-stack-abort.js
@@ -0,0 +1,34 @@
+// Check that abrupt termination when async call stack recording is enabled
+// does not segfault the process.
+'use strict';
+const common = require('../common');
+common.skipIfInspectorDisabled();
+common.skipIf32Bits();
+
+const { strictEqual } = require('assert');
+const eyecatcher = 'nou, houdoe he?';
+
+if (process.argv[2] === 'child') {
+  const { Session } = require('inspector');
+  const { promisify } = require('util');
+  const { registerAsyncHook } = process.binding('inspector');
+  (async () => {
+    let enabled = 0;
+    registerAsyncHook(() => ++enabled, () => {});
+    const session = new Session();
+    session.connect();
+    session.post = promisify(session.post);
+    await session.post('Debugger.enable');
+    strictEqual(enabled, 0);
+    await session.post('Debugger.setAsyncCallStackDepth', { maxDepth: 42 });
+    strictEqual(enabled, 1);
+    throw new Error(eyecatcher);
+  })();
+} else {
+  const { spawnSync } = require('child_process');
+  const options = { encoding: 'utf8' };
+  const proc = spawnSync(process.execPath, [__filename, 'child'], options);
+  strictEqual(proc.status, 0);
+  strictEqual(proc.signal, null);
+  strictEqual(proc.stderr.includes(eyecatcher), true);
+}

Original file line number	Diff line number	Diff line change
`@@ -325,10 +325,12 @@ class NodeInspectorClient : public V8InspectorClient {`
`325`	`325`	`}`
`326`	`326`
`327`	`327`	`void maxAsyncCallStackDepthChanged(int depth) override {`
`328`		`- if (depth == 0) {`
`329`		`- env_->inspector_agent()->DisableAsyncHook();`
`330`		`- } else {`
`331`		`- env_->inspector_agent()->EnableAsyncHook();`
	`328`	`+ if (auto agent = env_->inspector_agent()) {`
	`329`	`+ if (depth == 0) {`
	`330`	`+ agent->DisableAsyncHook();`
	`331`	`+ } else {`
	`332`	`+ agent->EnableAsyncHook();`
	`333`	`+ }`
`332`	`334`	`}`
`333`	`335`	`}`
`334`	`336`