URLHost not robust when re-setting its value #18302

TimothyGu · 2018-01-22T23:45:37Z

Version: master
Platform: all
Subsystem: url, src

Currently, the SetOpaque() and SetDomain() methods of URLHost class in node_url.cc always overwrite the existing string in value_ without disposing of the original value in that union.

node/src/node_url.cc

Lines 95 to 112 in a3555d0

    
             // Setting the string members of the union with = is brittle because 
        
             // it relies on them being initialized to a state that requires no 
        
             // destruction of old data. 
        
             // For a long time, that worked well enough because ParseIPv6Host() happens 
        
             // to zero-fill `value_`, but that really is relying on standard library 
        
             // internals too much. 
        
             // These helpers are the easiest solution but we might want to consider 
        
             // just not forcing strings into an union. 
        
             inline void SetOpaque(std::string&& string) { 
        
               type_ = HostType::H_OPAQUE; 
        
               new(&value_.opaque) std::string(std::move(string)); 
        
             } 
        
             inline void SetDomain(std::string&& string) { 
        
               type_ = HostType::H_DOMAIN; 
        
               new(&value_.domain) std::string(std::move(string)); 
        
             } 
        
           };

This could cause a memory leak when these two methods are used on an instance of the class on which one of these two methods has already been called.

Right now that never happens because of the way the URL parsing state machine is designed, but ideally these two methods should first call this->~URLHost() to free any memory already allocated before reinitializing the value through the new placement.

The text was updated successfully, but these errors were encountered:

addaleax · 2018-01-22T23:49:02Z

this->~URLHost()

I’m just going to mention again that I’d prefer something like a Reset() method instead that we could call in these setters and in the destructor – calling the destructor of on object explicitly seems pretty icky, especially when we can avoid it. ;)

(That being said, I’d consider this worthy of being a good first issue if somebody wants to do some C++ stuff?)

apapirovski · 2018-01-23T21:15:56Z

I've marked this as a good first issue and mentor available. I'm happy to assist anyone that wants to take this on, it should be a very simple change.

If anyone's considering this: all that's required is to make a private Reset method on URLHost that contains the current contents of the destructor, then call it from the destructor, SetDomain & SetOpaque.

prog1dev · 2018-01-23T21:51:00Z

@apapirovski Alright, I`ll do this one then :)

Fixes: nodejs#18302

Fixes: #18302 PR-URL: #18357 Reviewed-By: Tiancheng "Timothy" Gu <timothygu99@gmail.com> Reviewed-By: Anatoli Papirovski <apapirovski@mac.com> Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Tobias Nießen <tniessen@tnie.de>

Fixes: nodejs#18302 PR-URL: nodejs#18357 Reviewed-By: Tiancheng "Timothy" Gu <timothygu99@gmail.com> Reviewed-By: Anatoli Papirovski <apapirovski@mac.com> Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Tobias Nießen <tniessen@tnie.de>

Fixes: #18302 Backport-PR-URL: #19639 PR-URL: #18357 Reviewed-By: Tiancheng "Timothy" Gu <timothygu99@gmail.com> Reviewed-By: Anatoli Papirovski <apapirovski@mac.com> Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Tobias Nießen <tniessen@tnie.de>

Fixes: nodejs#18302 PR-URL: nodejs#18357 Reviewed-By: Tiancheng "Timothy" Gu <timothygu99@gmail.com> Reviewed-By: Anatoli Papirovski <apapirovski@mac.com> Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Tobias Nießen <tniessen@tnie.de>

TimothyGu added whatwg-url Issues and PRs related to the WHATWG URL implementation. c++ Issues and PRs that require attention from people who are familiar with C++. labels Jan 22, 2018

apapirovski added good first issue Issues that are suitable for first-time contributors. mentor-available labels Jan 23, 2018

prog1dev added a commit to prog1dev/node that referenced this issue Jan 23, 2018

src: define URLHost::Reset() function

bd831b4

Fixes: nodejs#18302

prog1dev added a commit to prog1dev/node that referenced this issue Jan 23, 2018

src: free memory first on URLHost::SetOpaque & URLHost::SetDomain call

4a2adb0

Fixes: nodejs#18302

prog1dev mentioned this issue Jan 24, 2018

src: free up memory before re-setting URLHost value #18357

Closed

2 tasks

BridgeAR closed this as completed in 36fd25f Feb 1, 2018

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

URLHost not robust when re-setting its value #18302

URLHost not robust when re-setting its value #18302

TimothyGu commented Jan 22, 2018

addaleax commented Jan 22, 2018

apapirovski commented Jan 23, 2018

prog1dev commented Jan 23, 2018

URLHost not robust when re-setting its value #18302

URLHost not robust when re-setting its value #18302

Comments

TimothyGu commented Jan 22, 2018

addaleax commented Jan 22, 2018

apapirovski commented Jan 23, 2018

prog1dev commented Jan 23, 2018