Add AddressSanitizer (ASan) memory testing for native addon (#1430)

minggangw · web-flow · commit 3e8a4efdeb73 · 2026-03-12T17:25:55.000+08:00
Add ASan-based memory testing infrastructure to detect memory errors (leaks, use-after-free, type mismatches) in the C++ N-API addon code. Bug fixes found and resolved by ASan: - src/executor.cpp: Fix new-delete-type-mismatch in Executor::Stop(). The uv_close callback deleted via uv_handle_t* (96 bytes) but the object was allocated as uv_async_t (128 bytes). Fixed by casting back to uv_async_t* before delete. - src/rcl_context_bindings.cpp: Fix argv memory leak in Init(). RCPPUTILS_SCOPE_EXIT for FreeArgs was placed after early return paths, so argv was never freed on error. Moved it immediately after allocation. New files: - scripts/run_asan_test.sh: ASan test runner that builds with -fsanitize=address, sets up LD_PRELOAD/LSAN_OPTIONS, temporarily hides prebuilds to load the debug build, and auto-excludes tests from blocklist.json and asan_blocklist.json. Supports --no-build, --exclude, and specific test file arguments. - test/asan_blocklist.json: Tests excluded under ASan due to LD_PRELOAD incompatibility with child processes (npm, colcon, ros2 CLI) or known third-party issues (ref-napi heap-use-after-free). - .github/workflows/linux-x64-asan-test.yml: Standalone CI workflow running ASan tests on push/PR to develop (Jazzy + Node 24.X + x64). Other changes: - package.json: Add "test:asan" npm script. - suppr.txt: Add napi_create_reference and napi_create_external suppressions for module-level singleton allocations. - README.md: Add ASan CI badge to status table. Fix: #1429
diff --git a/.github/workflows/linux-x64-asan-test.yml b/.github/workflows/linux-x64-asan-test.yml
@@ -0,0 +1,47 @@
+name: ASan Memory Test
+
+on:
+  push:
+    branches:
+      - develop
+  pull_request:
+    branches:
+      - develop
+  workflow_dispatch:
+
+defaults:
+  run:
+    shell: bash
+
+jobs:
+  asan:
+    runs-on: ubuntu-latest
+    container:
+      image: ubuntu:noble
+    steps:
+    - name: Setup Node.js 24.X
+      uses: actions/setup-node@v6
+      with:
+        node-version: 24.X
+        architecture: x64
+
+    - name: Setup ROS2 Jazzy
+      uses: ros-tooling/setup-ros@v0.7
+      with:
+        required-ros-distributions: jazzy
+
+    - name: Install test dependencies
+      run: |
+        sudo apt install -y ros-jazzy-test-msgs ros-jazzy-mrpt-msgs
+
+    - uses: actions/checkout@v6
+
+    - name: Install npm dependencies
+      run: |
+        source /opt/ros/jazzy/setup.bash
+        npm i
+
+    - name: Build and test with AddressSanitizer
+      run: |
+        source /opt/ros/jazzy/setup.bash
+        npm run test:asan
diff --git a/README.md b/README.md
@@ -2,9 +2,9 @@
 
 [![npm](https://img.shields.io/npm/v/rclnodejs.svg)](https://www.npmjs.com/package/rclnodejs) [![Coverage Status](https://coveralls.io/repos/github/RobotWebTools/rclnodejs/badge.svg?branch=develop)](https://coveralls.io/github/RobotWebTools/rclnodejs?branch=develop) [![npm](https://img.shields.io/npm/dm/rclnodejs)](https://www.npmjs.com/package/rclnodejs) [![GitHub license](https://img.shields.io/github/license/RobotWebTools/rclnodejs.svg)](https://github.com/RobotWebTools/rclnodejs/blob/develop/LICENSE) [![node](https://img.shields.io/node/v/rclnodejs.svg)](https://nodejs.org/en/download/releases/) [![npm type definitions](https://img.shields.io/npm/types/rclnodejs)](https://www.npmjs.com/package/rclnodejs) [![code style: prettier](https://img.shields.io/badge/code_style-prettier-ff69b4.svg?style=flat-square)](https://github.com/prettier/prettier)
 
-|           **ROS Distro\***           |                                                                                                                                                                                                                                                                                                                                                          **Status**                                                                                                                                                                                                                                                                                                                                                          |
-| :----------------------------------: | :--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------: |
-| Rolling<br>Kilted<br>Jazzy<br>Humble | [![Linux](https://github.com/RobotWebTools/rclnodejs/actions/workflows/linux-x64-push-test.yml/badge.svg?branch=develop)](https://github.com/RobotWebTools/rclnodejs/actions/workflows/linux-x64-push-test.yml?query=branch%3Adevelop)<br>[![Linux](https://github.com/RobotWebTools/rclnodejs/actions/workflows/linux-arm64-push-test.yml/badge.svg?branch=develop)](https://github.com/RobotWebTools/rclnodejs/actions/workflows/linux-arm64-push-test.yml?query=branch%3Adevelop)<br>[![Windows](https://github.com/RobotWebTools/rclnodejs/actions/workflows/windows-push-test.yml/badge.svg?branch=develop)](https://github.com/RobotWebTools/rclnodejs/actions/workflows/windows-push-test.yml?query=branch%3Adevelop) |
+|           **ROS Distro\***           |                                                                                                                                                                                                                                                                                                                                                                                                                                                                              **Status**                                                                                                                                                                                                                                                                                                                                                                                                                                                                               |
+| :----------------------------------: | :-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------: |
+| Rolling<br>Kilted<br>Jazzy<br>Humble | [![Linux](https://github.com/RobotWebTools/rclnodejs/actions/workflows/linux-x64-push-test.yml/badge.svg?branch=develop)](https://github.com/RobotWebTools/rclnodejs/actions/workflows/linux-x64-push-test.yml?query=branch%3Adevelop)<br>[![Linux](https://github.com/RobotWebTools/rclnodejs/actions/workflows/linux-arm64-push-test.yml/badge.svg?branch=develop)](https://github.com/RobotWebTools/rclnodejs/actions/workflows/linux-arm64-push-test.yml?query=branch%3Adevelop)<br>[![Windows](https://github.com/RobotWebTools/rclnodejs/actions/workflows/windows-push-test.yml/badge.svg?branch=develop)](https://github.com/RobotWebTools/rclnodejs/actions/workflows/windows-push-test.yml?query=branch%3Adevelop)<br>[![ASan](https://github.com/RobotWebTools/rclnodejs/actions/workflows/linux-x64-asan-test.yml/badge.svg?branch=develop)](https://github.com/RobotWebTools/rclnodejs/actions/workflows/linux-x64-asan-test.yml?query=branch%3Adevelop) |
 
 > **Note:** rclnodejs development and maintenance is limited to the ROS 2 LTS releases and the Rolling development branch
 
diff --git a/package.json b/package.json
@@ -28,6 +28,7 @@
     "test": "nyc node --expose-gc ./scripts/run_test.js && tsd && npm install --no-save electron && node test/electron/run_test.js",
     "test-idl": "nyc node --expose-gc ./scripts/run_test.js --idl",
     "lint": "eslint && node ./scripts/cpplint.js",
+    "test:asan": "bash scripts/run_asan_test.sh",
     "format": "clang-format -i -style=file ./src/*.cpp ./src/*.h && npx --yes prettier --write \"{lib,rosidl_gen,rostsd_gen,rosidl_parser,types,example,test,scripts,benchmark,rostsd_gen}/**/*.{js,md,ts}\" ./*.{js,md,ts}",
     "prepare": "husky",
     "coverage": "cat ./coverage/lcov.info | ./node_modules/coveralls/bin/coveralls.js",
diff --git a/scripts/run_asan_test.sh b/scripts/run_asan_test.sh
@@ -0,0 +1,118 @@
+#!/bin/bash
+# Run tests with AddressSanitizer (ASan/LSan) to detect memory leaks and errors
+# in the native N-API addon.
+#
+# Requires: ROS2 sourced, g++ with libasan
+#
+# Usage:
+#   bash scripts/run_asan_test.sh                        # rebuild + run all tests
+#   bash scripts/run_asan_test.sh test/test-node.js      # rebuild + run specific test(s)
+#   bash scripts/run_asan_test.sh --no-build test/test-node.js  # skip rebuild
+#   bash scripts/run_asan_test.sh --exclude test/test-serialization.js  # exclude specific test(s)
+
+set -e
+
+SCRIPT_DIR="$(cd "$(dirname "$0")" && pwd)"
+PROJECT_DIR="$(cd "$SCRIPT_DIR/.." && pwd)"
+cd "$PROJECT_DIR"
+
+# Parse flags
+DO_BUILD=1
+ARGS=()
+EXCLUDES=()
+NEXT_IS_EXCLUDE=0
+for arg in "$@"; do
+  if [[ $NEXT_IS_EXCLUDE -eq 1 ]]; then
+    EXCLUDES+=("$arg")
+    NEXT_IS_EXCLUDE=0
+  elif [[ "$arg" == "--no-build" ]]; then
+    DO_BUILD=0
+  elif [[ "$arg" == "--exclude" ]]; then
+    NEXT_IS_EXCLUDE=1
+  else
+    ARGS+=("$arg")
+  fi
+done
+
+if [[ $NEXT_IS_EXCLUDE -eq 1 ]]; then
+  echo "Error: --exclude requires a test file argument"
+  echo "Usage: bash scripts/run_asan_test.sh --exclude test/test-foo.js"
+  exit 1
+fi
+
+# Step 1: Build with ASan
+if [[ $DO_BUILD -eq 1 ]]; then
+  echo "=== Building with AddressSanitizer ==="
+  CXXFLAGS="-fsanitize=address" npx node-gyp -j 16 rebuild --debug
+fi
+
+# Step 2: Locate libasan
+LIBASAN=$(g++ -print-file-name=libasan.so)
+if [[ "$LIBASAN" == "libasan.so" ]]; then
+  # g++ returned just the name, try to find the full path
+  LIBASAN=$(find /usr/lib* -name "libasan.so*" -type f 2>/dev/null | head -1)
+fi
+
+if [[ -z "$LIBASAN" || ! -f "$LIBASAN" ]]; then
+  echo "Warning: Could not find libasan.so, proceeding without LD_PRELOAD"
+  echo "If you see 'ASan not the first DSO' errors, install libasan: sudo apt install libasan6"
+  LIBASAN=""
+fi
+
+# Step 3: Set up environment
+export LSAN_OPTIONS="suppressions=$PROJECT_DIR/suppr.txt"
+if [[ -n "$LIBASAN" ]]; then
+  export LD_PRELOAD="$LIBASAN"
+fi
+
+# Step 3.5: Temporarily hide prebuilds so the debug build is loaded
+PREBUILDS_DIR="$PROJECT_DIR/prebuilds"
+PREBUILDS_BAK="$PROJECT_DIR/.prebuilds_asan_bak"
+MOVED_PREBUILDS=0
+if [[ -d "$PREBUILDS_DIR" ]]; then
+  if [[ -d "$PREBUILDS_BAK" ]]; then
+    echo "Error: $PREBUILDS_BAK already exists (previous interrupted run?)."
+    echo "Please remove it manually and retry: rm -rf $PREBUILDS_BAK"
+    exit 1
+  fi
+  mv "$PREBUILDS_DIR" "$PREBUILDS_BAK"
+  MOVED_PREBUILDS=1
+fi
+
+# Restore prebuilds on exit (even on failure)
+cleanup() {
+  if [[ $MOVED_PREBUILDS -eq 1 && -d "$PREBUILDS_BAK" ]]; then
+    mv "$PREBUILDS_BAK" "$PREBUILDS_DIR"
+  fi
+}
+trap cleanup EXIT
+
+# Step 4: Build mocha exclude args from --exclude flags, blocklist.json, and asan_blocklist.json
+MOCHA_EXCLUDES=()
+for exc in "${EXCLUDES[@]}"; do
+  MOCHA_EXCLUDES+=(--ignore "$exc")
+done
+
+# Auto-exclude tests from blocklist.json (Linux entries) and asan_blocklist.json
+for blocklist in "$PROJECT_DIR/test/blocklist.json" "$PROJECT_DIR/test/asan_blocklist.json"; do
+  if [[ -f "$blocklist" ]]; then
+    while IFS= read -r test_file; do
+      MOCHA_EXCLUDES+=(--ignore "test/$test_file")
+    done < <(node -e "
+      const bl = require('$blocklist');
+      const entries = bl.Linux || bl;
+      if (Array.isArray(entries)) entries.forEach(t => console.log(t));
+    " 2>/dev/null)
+  fi
+done
+
+# Step 5: Run tests
+if [[ ${#ARGS[@]} -gt 0 ]]; then
+  echo "=== Running ASan test: ${ARGS[*]} ==="
+  node --expose-gc node_modules/.bin/mocha -r test/gc-on-exit.js "${MOCHA_EXCLUDES[@]}" "${ARGS[@]}"
+else
+  echo "=== Running all ASan tests ==="
+  node --expose-gc node_modules/.bin/mocha -r test/gc-on-exit.js "${MOCHA_EXCLUDES[@]}" 'test/test-*.js'
+fi
+
+echo "=== ASan test complete ==="
diff --git a/src/executor.cpp b/src/executor.cpp
@@ -116,7 +116,7 @@ void Executor::Stop() {
                  // Important Notice:
                  //  This might be called after Executor::~Executor()
                  //  Don't free Executor::async_ in Executor's dtor
-                 delete async;
+                 delete reinterpret_cast<uv_async_t*>(async);
                  handle_closed = true;
                });
       while (!handle_closed) uv_run(uv_default_loop(), UV_RUN_ONCE);
diff --git a/src/rcl_context_bindings.cpp b/src/rcl_context_bindings.cpp
@@ -54,6 +54,7 @@ Napi::Value Init(const Napi::CallbackInfo& info) {
   Napi::Array jsArgv = info[1].As<Napi::Array>();
   size_t argc = jsArgv.Length();
   char** argv = AbstractArgsFromNapiArray(jsArgv);
+  RCPPUTILS_SCOPE_EXIT({ FreeArgs(argv, argc); });
 
   // Set up the domain id.
   size_t domain_id = RCL_DEFAULT_DOMAIN_ID;
@@ -82,7 +83,6 @@ Napi::Value Init(const Napi::CallbackInfo& info) {
       RCL_RET_OK, rcl_logging_configure(&context->global_arguments, &allocator),
       rcl_get_error_string().str);
 
-  RCPPUTILS_SCOPE_EXIT({ FreeArgs(argv, argc); });
   return env.Undefined();
 }
 
diff --git a/suppr.txt b/suppr.txt
@@ -1,3 +1,5 @@
 leak:librcl.so$
 leak:ref-napi/prebuilds/linux-x64/node.napi.node$
-leak:^napi_module_register$
+leak:^napi_module_register$
+leak:^napi_create_reference$
+leak:^napi_create_external$
diff --git a/test/asan_blocklist.json b/test/asan_blocklist.json
@@ -0,0 +1,6 @@
+[
+  "test-serialization.js",
+  "test-message-generation-bin.js",
+  "test-rosidl-message-generator.js",
+  "test-type-description-service.js"
+]
