Skip to content

fix use-after-free in ContainerClient decodeJsonResponse()#6275

Merged
anonrig merged 2 commits intomainfrom
yagiz/fix-container-client-uaf
Mar 9, 2026
Merged

fix use-after-free in ContainerClient decodeJsonResponse()#6275
anonrig merged 2 commits intomainfrom
yagiz/fix-container-client-uaf

Conversation

@anonrig
Copy link
Member

@anonrig anonrig commented Mar 9, 2026

Added some basic tests with the help of AI

@anonrig anonrig requested review from a team as code owners March 9, 2026 13:13
@anonrig anonrig enabled auto-merge March 9, 2026 13:14
@ask-bonk @anonrig
Deps resolve; UAF fix is correct. LGTM.
2b85043 
Co-authored-by: anonrig <anonrig@users.noreply.github.com>
@ask-bonk
Copy link
Contributor

ask-bonk bot commented Mar 9, 2026

Good — @capnp-cpp//src/capnp/compat:json is a transitive dependency of the :container-client target. The include will resolve correctly.

Now let me check if there's a potential issue: the capnp/compat/json.h and capnp/message.h includes are now in the header, which means any translation unit that includes container-client.h will also pull these in. Let me check if these are already available via the header's existing deps or if they need to be listed explicitly in the BUILD:

The :container-client target already listed @capnp-cpp//src/capnp/compat:http-over-capnp which likely transitively includes capnp message types, and the json dep works transitively through //src/workerd/io. However, the test target only lists :container-client and @capnp-cpp//src/kj as deps. It doesn't list @capnp-cpp//src/capnp/compat:json directly. But since :container-client has it as a transitive dep, it should be fine for Bazel's C++ compilation (headers + link).

The fix is correct and clean. Let me review the full change one more time for any subtle issues:

  1. Memory safety fix: Correct. The old code returned a Builder (a view/pointer) into a destroyed MallocMessageBuilder. The new code returns a kj::Own<MallocMessageBuilder> that the caller keeps alive.

  2. Template in header: Necessary since the function is now used in both container-client.c++ and the test file. The inline nature of templates avoids ODR violations.

  3. API change: The callers now get kj::Own<capnp::MallocMessageBuilder> and call message->getRoot<T>() themselves. This is a clean, straightforward pattern.

  4. Tests: Cover all 3 response types used in the codebase. The tests are regression tests that would catch the UAF under ASAN.

  5. No behavioral changes: The fix only changes internal memory management — no user-visible behavior changes, so no compat flag is needed.

This is a straightforward, well-executed UAF fix. The code is correct, tests are appropriate, and there are no issues to flag.

LGTM

github run

@ask-bonk ask-bonk bot requested a review from a team as a code owner March 9, 2026 13:16
@anonrig anonrig merged commit e817b31 into main Mar 9, 2026
35 of 36 checks passed
@anonrig anonrig deleted the yagiz/fix-container-client-uaf branch March 9, 2026 14:40
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jasnell jasnell jasnell approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@anonrig @jasnell