- Published on
How to Debug Node.js Segmentation Faults
- Authors
- Name
- Lucas Floriani
- @lucasfloriani13
How to Debug Node.js Segmentation Faults
How to Debug Node.js Segmentation Faults
segfaulting
is an crash that occurs silently without any kind of stack trace., perhaps printing just segmentation fault (core dumped)
What is a Segmentation Fault?
Is when a program attempts to access a memory location that it is not allowed to access, or attempts to access a memory location in a way that is not allowed (for example, attempting to write to a read-only location, or to overwrite part of the operating system)
Is when a program breaks some fundamental rule set by the operating system, so the SO sends your process a signal (SIGSEGV on Mac & Linux, STATUS_ACCESS_VIOLATION on Windows
), and typically the process shuts down immediately.
Examples:
- Reading or writing to an invalid memory address (Native code somewhere trying to use a null pointer as a memory address);
- Stack or buffer overflow;
- Reading or writing from memory that's not yours (Maybe it was tours but it's now been released, maybe it's unused, or maybe it's owned by another process or the operating system).
PS: All thse cases involve low-level concerns, like pointers and memory management.
Unfortunately, there are a few cases where you can still hit segfaults in Node:
- When you use native addons (C++ addons) (either directly, or because one of your dependencies uses them), so you're effectively running your own native code as part of your application. If that native code is either buggy or just incompatible with your version of Node, you'll often get segfaults.
- If you manipulate parts of the internal private state of Node objects. This can break Node's assumptions, so that Node's built-in native code does the wrong thing, resulting in segfaults.
- When Node.js itself has a bug somewhere, and segfaults all by itself.
How can I fix it?
Find the cause, search which of those 3 cases above you have.
Native Addons are always the most likely cause here. There's a couple of things to try straight away:
- Rebuild all your native node modules with
npm rebuild
. This will recompile native code with your current version of node, and should resolve any issues where your native modules are compiled for the wrong node version. - Find all the native modules you have installed, by searching your node_modules folder for
.node
files. On Linux/Mac you can list them with:find node_modules -iname "*.node"
If you have no native modules installed, you can rule that case out entirely. If you do have modules installed there that seem related to the crash you're seeing, then that's probably a good place to start looking.
You can also try to get more detail on the segmentation fault itself.
To do this, you can use the Segfault-Handler module. Just run npm install segfault-handler
, and then add the below right at the start of your application code:
const SegfaultHandler = require('segfault-handler');
SegfaultHandler.registerHandler('crash.log');
That module listens for any SIGSEGV signal, and reports the detailed stack trace that caused it before the process shuts down. When you next hit your segmentation fault, you'll get something like this:
PID 30818 received SIGSEGV for address: 0x20
[...]/node_modules/segfault-handler/build/Release/segfault-handler.node(+0x3127)[0x7fdb5a5fb127]
/lib/x86_64-linux-gnu/libpthread.so.0(+0x128a0)[0x7fdb735f58a0]
node(_ZN4node7TLSWrap6EncOutEv+0x170)[0xa09010]
node(_ZN4node7TLSWrap7DoWriteEPNS_9WriteWrapEP8uv_buf_tmP11uv_stream_s+0x2c7)[0xa0a6c7]
node(_ZN4node5http212Http2Session15SendPendingDataEv+0x4ce)[0x93b5ae]
node(_ZN4node5http212Http2Session5CloseEjb+0xda)[0x93c4fa]
node[0xb62a3f]
node(_ZN2v88internal21Builtin_HandleApiCallEiPPNS0_6ObjectEPNS0_7IsolateE+0xb9)[0xb635a9]
[0xcec6c2dbe1d]
[1] 30818 segmentation fault (core dumped) node ./bin/run start
That's the output from a segmentation fault I was hitting recently, where the new HTTP/2 debugging support in HTTP Toolkit occasionally crashed the Node process, after certain patterns of connections & disconnections.
A trace like this doesn't give you enough to fix the issue, but it does give a clear clue where the problem lies.
In my case, the SendPendingData
method of an HTTP2Session
is trying to write to a TLS stream as the session closes down, and that's then crashing the process. That gave me some clear info: it's an issue with HTTP/2 requests, and it's happening in node itself, not a native addon. From there, a quick search of the Node issue tracker led me to a reported bug, and eventually to a workaround.
If the trace is clearly pointing to Node internals (as above) and you're not messing around with those yourself, or using any relevant native addons, then you've probably found a bug in Node. Congratulations! Node should never segfault if you're writing normal JavaScript code, so something very wrong is going on.
From here, there's a few good next steps:
- Update to the latest version of Node/the node module in question, and make sure the same bug still appears there.In many cases just a quick update of the right thing will solve your issue, and if not then maintainers will be much happier to help you investigate if they know it's definitely a current issue.
- Double-check your code is using the failing code as intended. Check the documentation of the related properties and methods you're accessing, and make sure that they are indeed documented (i.e. you're not unexpectedly messing with internal state) and that you're following the instructions in that documentation correctly. It's often useful to look through the native module's test code too, to see some examples of how it's supposed to be accessed.
- Report the issue to the addon maintainers/Node team.
- Use your segfault trace to find the relevant code, add detailed logging or use debugging tools, and very carefully walk through the code that's failing to try and find something that's not quite right.
- Find a workaround: change how you're using the module in question, use a different module entirely for now, or delete the broken feature from your product entirely.