src,permission: throw async errors on async APIs #52730

RafaelGSS · 2024-04-28T02:17:16Z

With this PR, we throw access denied asynchronously for async APIs.

fs.readFile('restricted-file.md', (error) => {
  // error is ERR_ACCESS_DENIED
})

cc/ @nodejs/security-wg

nodejs-github-bot · 2024-04-28T02:17:21Z

Review requested:

@nodejs/security-wg

benjamingr

LGTM (this is a big break, and I'm concerned about breakage but it's better to do now and not when it's no longer experimental)

RafaelGSS · 2024-04-28T16:04:33Z

LGTM (this is a big break, and I'm concerned about breakage but it's better to do now and not when it's no longer experimental)

Yes, that's a "expected" breakage to Permission Model users

nodejs-github-bot · 2024-04-28T16:13:56Z

CI: https://ci.nodejs.org/job/node-test-pull-request/58784/

nodejs-github-bot · 2024-04-29T14:10:47Z

CI: https://ci.nodejs.org/job/node-test-pull-request/58797/

RafaelGSS · 2024-04-29T18:26:56Z

Failing due to #52751

github-actions · 2024-04-29T19:45:56Z

The notable-change PRs with changes that should be highlighted in changelogs. label has been added by @RafaelGSS.

Please suggest a text for the release notes if you'd like to include a more detailed summary, then proceed to update the PR description with the text or a link to the notable change suggested text comment. Otherwise, the commit will be placed in the Other Notable Changes section.

RafaelGSS · 2024-04-29T19:46:04Z

I'm adding the notable change label as it's a breaking change to Permission Model users.

nodejs-github-bot · 2024-04-30T02:19:57Z

Landed in 4487e37

PR-URL: #52730 Refs: nodejs/security-wg#898 Reviewed-By: Benjamin Gruenbaum <benjamingr@gmail.com> Reviewed-By: Marco Ippolito <marcoippolito54@gmail.com>

Notable changes: buffer: * improve `base64` and `base64url` performance (Yagiz Nizipli) #52428 dns: * (SEMVER-MINOR) add order option and support ipv6first (Paolo Insogna) #52492 events,doc: * mark CustomEvent as stable (Daeyeon Jeong) #52618 lib, url: * (SEMVER-MINOR) add a `windows` option to path parsing (Aviv Keller) #52509 module: * (SEMVER-MINOR) implement NODE_COMPILE_CACHE for automatic on-disk code caching (Joyee Cheung) #52535 net: * (SEMVER-MINOR) add CLI option for autoSelectFamilyAttemptTimeout (Paolo Insogna) #52474 src: * (SEMVER-MINOR) add `string_view` overload to snapshot FromBlob (Anna Henningsen) #52595 src,permission: * throw async errors on async APIs (Rafael Gonzaga) #52730 test_runner: * (SEMVER-MINOR) add --test-skip-pattern cli option (Aviv Keller) #52529 url: * (SEMVER-MINOR) implement parse method for safer URL parsing (Ali Hassan) #52280 PR-URL: TODO

Notable changes: buffer: * improve `base64` and `base64url` performance (Yagiz Nizipli) #52428 dns: * (SEMVER-MINOR) add order option and support ipv6first (Paolo Insogna) #52492 events,doc: * mark CustomEvent as stable (Daeyeon Jeong) #52618 lib, url: * (SEMVER-MINOR) add a `windows` option to path parsing (Aviv Keller) #52509 module: * (SEMVER-MINOR) implement NODE_COMPILE_CACHE for automatic on-disk code caching (Joyee Cheung) #52535 net: * (SEMVER-MINOR) add CLI option for autoSelectFamilyAttemptTimeout (Paolo Insogna) #52474 src: * (SEMVER-MINOR) add `string_view` overload to snapshot FromBlob (Anna Henningsen) #52595 src,permission: * throw async errors on async APIs (Rafael Gonzaga) #52730 test_runner: * (SEMVER-MINOR) add --test-skip-pattern cli option (Aviv Keller) #52529 url: * (SEMVER-MINOR) implement parse method for safer URL parsing (Ali Hassan) #52280 PR-URL: #52768

PR-URL: nodejs#52730 Refs: nodejs/security-wg#898 Reviewed-By: Benjamin Gruenbaum <benjamingr@gmail.com> Reviewed-By: Marco Ippolito <marcoippolito54@gmail.com>

Notable changes: buffer: * improve `base64` and `base64url` performance (Yagiz Nizipli) nodejs#52428 dns: * (SEMVER-MINOR) add order option and support ipv6first (Paolo Insogna) nodejs#52492 events,doc: * mark CustomEvent as stable (Daeyeon Jeong) nodejs#52618 lib, url: * (SEMVER-MINOR) add a `windows` option to path parsing (Aviv Keller) nodejs#52509 module: * (SEMVER-MINOR) implement NODE_COMPILE_CACHE for automatic on-disk code caching (Joyee Cheung) nodejs#52535 net: * (SEMVER-MINOR) add CLI option for autoSelectFamilyAttemptTimeout (Paolo Insogna) nodejs#52474 src: * (SEMVER-MINOR) add `string_view` overload to snapshot FromBlob (Anna Henningsen) nodejs#52595 src,permission: * throw async errors on async APIs (Rafael Gonzaga) nodejs#52730 test_runner: * (SEMVER-MINOR) add --test-skip-pattern cli option (Aviv Keller) nodejs#52529 url: * (SEMVER-MINOR) implement parse method for safer URL parsing (Ali Hassan) nodejs#52280 PR-URL: nodejs#52768

src,permission: throw async errors on async APIs

4585f4d

RafaelGSS added security Issues and PRs related to security. permission Issues and PRs related to the Permission Model labels Apr 28, 2024

nodejs-github-bot added c++ Issues and PRs that require attention from people who are familiar with C++. lib / src Issues and PRs related to general changes in the lib or src directory. needs-ci PRs that need a full CI run. labels Apr 28, 2024

fixup! src,permission: throw async errors on async APIs

b71f0a4

RafaelGSS added the dont-land-on-v18.x PRs that should not land on the v18.x-staging branch and should not be released in v18.x. label Apr 28, 2024

benjamingr approved these changes Apr 28, 2024

View reviewed changes

RafaelGSS added the request-ci Add this label to start a Jenkins CI on a PR. label Apr 28, 2024

github-actions bot removed the request-ci Add this label to start a Jenkins CI on a PR. label Apr 28, 2024

RafaelGSS added the author ready PRs that have at least one approval, no pending requests for changes, and a CI started. label Apr 29, 2024

marco-ippolito approved these changes Apr 29, 2024

View reviewed changes

RafaelGSS added commit-queue Add this label to land a pull request using GitHub Actions. notable-change PRs with changes that should be highlighted in changelogs. labels Apr 29, 2024

RafaelGSS mentioned this pull request Apr 29, 2024

Permission Model - Roadmap nodejs/security-wg#898

Closed

7 tasks

nodejs-github-bot removed the commit-queue Add this label to land a pull request using GitHub Actions. label Apr 30, 2024

nodejs-github-bot merged commit 4487e37 into nodejs:main Apr 30, 2024
66 checks passed

aduh95 pushed a commit that referenced this pull request Apr 30, 2024

src,permission: throw async errors on async APIs

c6fe433

PR-URL: #52730 Refs: nodejs/security-wg#898 Reviewed-By: Benjamin Gruenbaum <benjamingr@gmail.com> Reviewed-By: Marco Ippolito <marcoippolito54@gmail.com>

aduh95 mentioned this pull request Apr 30, 2024

2024-05-02, Version 22.1.0 (Current) #52768

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

src,permission: throw async errors on async APIs #52730

src,permission: throw async errors on async APIs #52730

RafaelGSS commented Apr 28, 2024

nodejs-github-bot commented Apr 28, 2024

benjamingr left a comment

RafaelGSS commented Apr 28, 2024 •

edited

nodejs-github-bot commented Apr 28, 2024

nodejs-github-bot commented Apr 29, 2024

RafaelGSS commented Apr 29, 2024

github-actions bot commented Apr 29, 2024

RafaelGSS commented Apr 29, 2024

nodejs-github-bot commented Apr 30, 2024

src,permission: throw async errors on async APIs #52730

src,permission: throw async errors on async APIs #52730

Conversation

RafaelGSS commented Apr 28, 2024

nodejs-github-bot commented Apr 28, 2024

benjamingr left a comment

Choose a reason for hiding this comment

RafaelGSS commented Apr 28, 2024 • edited

nodejs-github-bot commented Apr 28, 2024

nodejs-github-bot commented Apr 29, 2024

RafaelGSS commented Apr 29, 2024

github-actions bot commented Apr 29, 2024

RafaelGSS commented Apr 29, 2024

nodejs-github-bot commented Apr 30, 2024

RafaelGSS commented Apr 28, 2024 •

edited