fix(code-injection): prefer invocation and fail loudly

Author: oetr

docs/bug-detectors.md

@@ -148,6 +148,10 @@ The detector can be configured in the
   frames. The remaining stack text is matched as shown, including path
   separators and column numbers.
 
+The detector must be able to install a canary on at least one active global
+object. Locked-down environments that forbid this should disable the detector
+explicitly.
+
 Here is an example configuration in the
 [custom hooks](./fuzz-settings.md#customhooks--arraystring) file:
 

packages/bug-detectors/internal/code-injection.ts

@@ -19,6 +19,8 @@ import type { Context } from "vm";
 import {
 	getJazzerJsGlobal,
 	guideTowardsContainment,
+	registerAfterEachCallback,
+	reportFinding,
 	reportAndThrowFinding,
 } from "@jazzer.js/core";
 import { registerBeforeHook } from "@jazzer.js/hooking";
@@ -32,11 +34,19 @@ import {
 	IgnoreList,
 	type IgnoreRule,
 } from "../shared/finding-suppression";
-
-const BASE_CANARY_NAME = "jaz_zer";
+import {
+	ensureCanaryInstalled,
+	ensureCanaryInstalledOnAnyTarget,
+} from "../shared/code-injection-canary";
 
 export type { IgnoreRule } from "../shared/finding-suppression";
 
+type PendingAccess = {
+	canaryName: string;
+	stack: string;
+	handledByInvocation: boolean;
+};
+
 /**
  * Configuration for the Code Injection bug detector.
  * Controls the reporting and suppression of dynamic code evaluation findings.
@@ -105,8 +115,10 @@ const config = new CodeInjectionConfigImpl();
 bugDetectorConfigurations.set("code-injection", config);
 
 const installedCanaries = new WeakMap<object, string>();
+const pendingAccesses: PendingAccess[] = [];
 
 ensureKnownCanariesInstalled();
+registerAfterEachCallback(flushPendingAccesses);
 
 registerBeforeHook(
 	"eval",
@@ -153,11 +165,14 @@ registerBeforeHook(
 );
 
 function ensureKnownCanariesInstalled(): void {
-	ensureCanaryInstalled(globalThis);
-	const vmContext = getVmContext();
-	if (vmContext) {
-		ensureCanaryInstalled(vmContext);
-	}
+	ensureCanaryInstalledOnAnyTarget(
+		[
+			{ label: "globalThis", object: globalThis },
+			{ label: "vmContext", object: getVmContext() },
+		],
+		installedCanaries,
+		createCanaryDescriptor,
+	);
 }
 
 function getVmContext(): Context | undefined {
@@ -167,48 +182,39 @@ function getVmContext(): Context | undefined {
 function getActiveCanaryName(): string {
 	const vmContext = getVmContext();
 	return vmContext
-		? ensureCanaryInstalled(vmContext)
-		: ensureCanaryInstalled(globalThis);
-}
-
-function ensureCanaryInstalled(target: object): string {
-	const knownCanaryName = installedCanaries.get(target);
-	if (knownCanaryName) {
-		return knownCanaryName;
-	}
-
-	let canaryName = BASE_CANARY_NAME;
-	let suffix = 0;
-	while (Object.getOwnPropertyDescriptor(target, canaryName)) {
-		suffix += 1;
-		canaryName = `${BASE_CANARY_NAME}_${suffix}`;
-	}
-
-	Object.defineProperty(target, canaryName, createCanaryDescriptor(canaryName));
-	installedCanaries.set(target, canaryName);
-	return canaryName;
+		? ensureCanaryInstalled(
+				vmContext,
+				installedCanaries,
+				createCanaryDescriptor,
+			)
+		: ensureCanaryInstalled(
+				globalThis,
+				installedCanaries,
+				createCanaryDescriptor,
+			);
 }
 
 function createCanaryDescriptor(canaryName: string): PropertyDescriptor {
 	return {
 		get() {
 			const accessStack = captureStack();
-			if (config.shouldReportAccess(accessStack)) {
-				reportAndThrowFinding(
-					buildFindingMessage(
-						"Potential Code Injection (Canary Accessed)",
-						`accessed canary: ${canaryName}`,
-						accessStack,
-						"ignoreAccess",
-						"If this is a safe heuristic read, suppress it to continue fuzzing for code execution. Add this to your custom hooks:",
-					),
-					false,
-				);
+			const pendingAccess = config.shouldReportAccess(accessStack)
+				? {
+						canaryName,
+						stack: accessStack,
+						handledByInvocation: false,
+					}
+				: undefined;
+			if (pendingAccess) {
+				pendingAccesses.push(pendingAccess);
 			}
 
 			return function canaryCall() {
 				const invocationStack = captureStack();
 				if (config.shouldReportInvocation(invocationStack)) {
+					if (pendingAccess) {
+						pendingAccess.handledByInvocation = true;
+					}
 					reportAndThrowFinding(
 						buildFindingMessage(
 							"Confirmed Code Injection (Canary Invoked)",
@@ -227,6 +233,24 @@ function createCanaryDescriptor(canaryName: string): PropertyDescriptor {
 	};
 }
 
+function flushPendingAccesses(): void {
+	for (const pendingAccess of pendingAccesses.splice(0)) {
+		if (pendingAccess.handledByInvocation) {
+			continue;
+		}
+		reportFinding(
+			buildFindingMessage(
+				"Potential Code Injection (Canary Accessed)",
+				`accessed canary: ${pendingAccess.canaryName}`,
+				pendingAccess.stack,
+				"ignoreAccess",
+				"If this is a safe heuristic read, suppress it to continue fuzzing for code execution. Add this to your custom hooks:",
+			),
+			false,
+		);
+	}
+}
+
 function buildFindingMessage(
 	title: string,
 	action: string,

packages/bug-detectors/shared/code-injection-canary.test.ts

@@ -0,0 +1,86 @@
+/*
+ * Copyright 2026 Code Intelligence GmbH
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+import {
+	ensureCanaryInstalled,
+	ensureCanaryInstalledOnAnyTarget,
+} from "./code-injection-canary";
+
+const descriptorFactory = (canaryName: string): PropertyDescriptor => ({
+	value: canaryName,
+	configurable: false,
+});
+
+describe("code injection canary", () => {
+	test("reuses an already installed canary", () => {
+		const target = {};
+		const installedCanaries = new WeakMap<object, string>();
+
+		expect(
+			ensureCanaryInstalled(target, installedCanaries, descriptorFactory),
+		).toBe("jaz_zer");
+		expect(
+			ensureCanaryInstalled(target, installedCanaries, descriptorFactory),
+		).toBe("jaz_zer");
+	});
+
+	test("suffixes the canary name when the default one is already taken", () => {
+		const target = { jaz_zer: true };
+		const installedCanaries = new WeakMap<object, string>();
+
+		expect(
+			ensureCanaryInstalled(target, installedCanaries, descriptorFactory),
+		).toBe("jaz_zer_1");
+	});
+
+	test("continues when an earlier target rejects the canary", () => {
+		const lockedTarget = Object.preventExtensions({});
+		const openTarget = {};
+		const installedCanaries = new WeakMap<object, string>();
+
+		expect(() => {
+			ensureCanaryInstalledOnAnyTarget(
+				[
+					{ label: "globalThis", object: lockedTarget },
+					{ label: "vmContext", object: openTarget },
+				],
+				installedCanaries,
+				descriptorFactory,
+			);
+		}).not.toThrow();
+		expect(openTarget).toHaveProperty("jaz_zer", "jaz_zer");
+	});
+
+	test("fails loudly when no target accepts the canary", () => {
+		const lockedTarget = Object.preventExtensions({});
+		const installedCanaries = new WeakMap<object, string>();
+
+		expect(() => {
+			ensureCanaryInstalledOnAnyTarget(
+				[{ label: "globalThis", object: lockedTarget }],
+				installedCanaries,
+				descriptorFactory,
+			);
+		}).toThrow(/could not install a canary on any available global object/i);
+		expect(() => {
+			ensureCanaryInstalledOnAnyTarget(
+				[{ label: "globalThis", object: lockedTarget }],
+				installedCanaries,
+				descriptorFactory,
+			);
+		}).toThrow(/--disableBugDetectors=code-injection/);
+	});
+});

packages/bug-detectors/shared/code-injection-canary.ts

@@ -0,0 +1,100 @@
+/*
+ * Copyright 2026 Code Intelligence GmbH
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+const BASE_CANARY_NAME = "jaz_zer";
+
+export type CanaryTarget = {
+	label: string;
+	object: object | undefined;
+};
+
+type DescriptorFactory = (canaryName: string) => PropertyDescriptor;
+
+export function ensureCanaryInstalled(
+	target: object,
+	installedCanaries: WeakMap<object, string>,
+	createCanaryDescriptor: DescriptorFactory,
+): string {
+	const knownCanaryName = installedCanaries.get(target);
+	if (knownCanaryName) {
+		return knownCanaryName;
+	}
+
+	let canaryName = BASE_CANARY_NAME;
+	let suffix = 0;
+	while (Object.getOwnPropertyDescriptor(target, canaryName)) {
+		suffix += 1;
+		canaryName = `${BASE_CANARY_NAME}_${suffix}`;
+	}
+
+	Object.defineProperty(target, canaryName, createCanaryDescriptor(canaryName));
+	installedCanaries.set(target, canaryName);
+	return canaryName;
+}
+
+export function ensureCanaryInstalledOnAnyTarget(
+	targets: CanaryTarget[],
+	installedCanaries: WeakMap<object, string>,
+	createCanaryDescriptor: DescriptorFactory,
+): void {
+	const failures: string[] = [];
+	let installedAnyCanary = false;
+
+	for (const target of targets) {
+		if (!target.object) {
+			continue;
+		}
+
+		try {
+			ensureCanaryInstalled(
+				target.object,
+				installedCanaries,
+				createCanaryDescriptor,
+			);
+			installedAnyCanary = true;
+		} catch (error) {
+			failures.push(`${target.label}: ${describeError(error)}`);
+		}
+	}
+
+	if (!installedAnyCanary) {
+		throw new Error(buildNoCanaryTargetMessage(failures));
+	}
+}
+
+function buildNoCanaryTargetMessage(failures: string[]): string {
+	const lines = [
+		"The Code Injection bug detector could not install a canary on any available global object.",
+		"Disable it explicitly with --disableBugDetectors=code-injection or the equivalent Jest configuration if your environment intentionally locks down globals.",
+	];
+
+	if (failures.length > 0) {
+		lines.push("", "Installation failures:");
+		lines.push(...failures.map((failure) => `    ${failure}`));
+	}
+
+	return lines.join("\n");
+}
+
+function describeError(error: unknown): string {
+	if (error instanceof Error) {
+		return `${error.name}: ${error.message}`;
+	}
+	if (typeof error === "string") {
+		return error;
+	}
+	return String(error);
+}