feat: add new unsafeInspectorProxy option to miniflare (#8357)

---------

Co-authored-by: Pete Bacon Darwin <pete@bacondarwin.com>

Author: dario-piotrowicz

.changeset/little-spiders-sell.md

@@ -0,0 +1,49 @@
+---
+"miniflare": patch
+---
+
+feat: add new `unsafeInspectorProxy` option to miniflare
+
+Add a new `unsafeInspectorProxy` option to the miniflare worker options, if
+at least one worker has the option set then miniflare will establish a proxy
+between itself and workerd for the v8 inspector APIs which exposes only the
+requested workers to inspector clients. The inspector proxy communicates through
+miniflare's `inspectorPort` and exposes each requested worker via a path comprised
+of the worker's name
+
+example:
+
+```js
+import { Miniflare } from "miniflare";
+
+const mf = new Miniflare({
+	// the inspector proxy will be accessible through port 9229
+	inspectorPort: 9229,
+	workers: [
+		{
+			name: "worker-a",
+			scriptPath: "./worker-a.js",
+			// enable the inspector proxy for worker-a
+			unsafeInspectorProxy: true,
+		},
+		{
+			name: "worker-b",
+			scriptPath: "./worker-b.js",
+			// worker-b is not going to be proxied
+		},
+		{
+			name: "worker-c",
+			scriptPath: "./worker-c.js",
+			// enable the inspector proxy for worker-c
+			unsafeInspectorProxy: true,
+		},
+	],
+});
+```
+
+In the above example an inspector proxy gets set up which exposes `worker-a` and `worker-b`,
+inspector clients can discover such workers via `http://localhost:9229` and communicate with
+them respectively via `ws://localhost:9229/worker-a` and `ws://localhost:9229/worker-b`
+
+Note: this API is experimental, thus it's not being added to the public documentation and
+it's prefixed by `unsafe`

packages/miniflare/package.json

@@ -83,6 +83,7 @@
 		"eslint-plugin-es": "^4.1.0",
 		"eslint-plugin-prettier": "^5.0.1",
 		"expect-type": "^0.15.0",
+		"get-port": "^7.1.0",
 		"heap-js": "^2.5.0",
 		"http-cache-semantics": "^4.1.0",
 		"kleur": "^4.1.5",

packages/miniflare/src/index.ts

@@ -78,6 +78,7 @@ import {
 	reviveError,
 	ServiceDesignatorSchema,
 } from "./plugins/core";
+import { InspectorProxyController } from "./plugins/core/inspector-proxy";
 import {
 	Config,
 	Extension,
@@ -744,12 +745,32 @@ export class Miniflare {
 	readonly #webSocketServer: WebSocketServer;
 	readonly #webSocketExtraHeaders: WeakMap<http.IncomingMessage, Headers>;
 
+	#maybeInspectorProxyController?: InspectorProxyController;
+	#previousRuntimeInspectorPort?: number;
+
 	constructor(opts: MiniflareOptions) {
 		// Split and validate options
 		const [sharedOpts, workerOpts] = validateOptions(opts);
 		this.#sharedOpts = sharedOpts;
 		this.#workerOpts = workerOpts;
 
+		const workerNamesToProxy = new Set(
+			this.#workerOpts
+				.filter(({ core: { unsafeInspectorProxy } }) => !!unsafeInspectorProxy)
+				.map((w) => w.core.name ?? "")
+		);
+
+		const enableInspectorProxy = workerNamesToProxy.size > 0;
+
+		if (enableInspectorProxy) {
+			if (this.#sharedOpts.core.inspectorPort === undefined) {
+				throw new MiniflareCoreError(
+					"ERR_MISSING_INSPECTOR_PROXY_PORT",
+					"inspector proxy requested but without an inspectorPort specified"
+				);
+			}
+		}
+
 		// Add to registry after initial options validation, before any servers/
 		// child processes are started
 		if (maybeInstanceRegistry !== undefined) {
@@ -760,6 +781,21 @@ export class Miniflare {
 
 		this.#log = this.#sharedOpts.core.log ?? new NoOpLog();
 
+		if (enableInspectorProxy) {
+			if (this.#sharedOpts.core.inspectorPort === undefined) {
+				throw new MiniflareCoreError(
+					"ERR_MISSING_INSPECTOR_PROXY_PORT",
+					"inspector proxy requested but without an inspectorPort specified"
+				);
+			}
+
+			this.#maybeInspectorProxyController = new InspectorProxyController(
+				this.#sharedOpts.core.inspectorPort,
+				this.#log,
+				workerNamesToProxy
+			);
+		}
+
 		this.#liveReloadServer = new WebSocketServer({ noServer: true });
 		this.#webSocketServer = new WebSocketServer({
 			noServer: true,
@@ -1406,14 +1442,21 @@ export class Miniflare {
 			configuredHost,
 			this.#sharedOpts.core.port
 		);
-		let inspectorAddress: string | undefined;
+		let runtimeInspectorAddress: string | undefined;
 		if (this.#sharedOpts.core.inspectorPort !== undefined) {
-			inspectorAddress = this.#getSocketAddress(
+			let runtimeInspectorPort = this.#sharedOpts.core.inspectorPort;
+			if (this.#maybeInspectorProxyController !== undefined) {
+				// if we have an inspector proxy let's use a
+				// random port for the actual runtime inspector
+				runtimeInspectorPort = 0;
+			}
+			runtimeInspectorAddress = this.#getSocketAddress(
 				kInspectorSocket,
-				this.#previousSharedOpts?.core.inspectorPort,
+				this.#previousRuntimeInspectorPort,
 				"localhost",
-				this.#sharedOpts.core.inspectorPort
+				runtimeInspectorPort
 			);
+			this.#previousRuntimeInspectorPort = runtimeInspectorPort;
 		}
 		const loopbackAddress = `${
 			maybeGetLocallyAccessibleHost(configuredHost) ??
@@ -1424,7 +1467,7 @@ export class Miniflare {
 			entryAddress,
 			loopbackAddress,
 			requiredSockets,
-			inspectorAddress,
+			inspectorAddress: runtimeInspectorAddress,
 			verbose: this.#sharedOpts.core.verbose,
 			handleRuntimeStdio: this.#sharedOpts.core.handleRuntimeStdio,
 		};
@@ -1445,6 +1488,19 @@ export class Miniflare {
 		// all of `requiredSockets` as keys.
 		this.#socketPorts = maybeSocketPorts;
 
+		if (this.#maybeInspectorProxyController !== undefined) {
+			// Try to get inspector port for the workers
+			const maybePort = this.#socketPorts.get(kInspectorSocket);
+			if (maybePort === undefined) {
+				throw new MiniflareCoreError(
+					"ERR_RUNTIME_FAILURE",
+					"Unable to access the runtime inspector socket."
+				);
+			} else {
+				this.#maybeInspectorProxyController.updateConnection(maybePort);
+			}
+		}
+
 		const entrySocket = config.sockets?.[0];
 		const secure = entrySocket !== undefined && "https" in entrySocket;
 		const previousEntryURL = this.#runtimeEntryURL;
@@ -1527,6 +1583,8 @@ export class Miniflare {
 		// `dispose()`d synchronously, immediately after constructing a `Miniflare`
 		// instance. In this case, return a discard URL which we'll ignore.
 		if (disposing) return new URL("http://[100::]/");
+		// if there is an inspector proxy let's wait for it to be ready
+		await this.#maybeInspectorProxyController?.ready;
 		// Make sure `dispose()` wasn't called in the time we've been waiting
 		this.#checkDisposed();
 		// `#runtimeEntryURL` is assigned in `#assembleAndUpdateConfig()`, which is
@@ -1551,6 +1609,10 @@ export class Miniflare {
 		this.#checkDisposed();
 		await this.ready;
 
+		if (this.#maybeInspectorProxyController !== undefined) {
+			return this.#maybeInspectorProxyController.getInspectorURL();
+		}
+
 		// `#socketPorts` is assigned in `#assembleAndUpdateConfig()`, which is
 		// called by `#init()`, and `ready` doesn't resolve until `#init()` returns
 		assert(this.#socketPorts !== undefined);
@@ -1900,6 +1962,9 @@ export class Miniflare {
 			// `rm -rf ${#tmpPath}`, this won't throw if `#tmpPath` doesn't exist
 			await fs.promises.rm(this.#tmpPath, { force: true, recursive: true });
 
+			// Close the inspector proxy server if there is one
+			await this.#maybeInspectorProxyController?.dispose();
+
 			// Remove from instance registry as last step in `finally`, to make sure
 			// all dispose steps complete
 			maybeInstanceRegistry?.delete(this);

packages/miniflare/src/plugins/core/index.ts

@@ -126,6 +126,8 @@ const CoreOptionsSchemaInput = z.intersection(
 		compatibilityDate: z.string().optional(),
 		compatibilityFlags: z.string().array().optional(),
 
+		unsafeInspectorProxy: z.boolean().optional(),
+
 		routes: z.string().array().optional(),
 
 		bindings: z.record(JsonSchema).optional(),
@@ -191,6 +193,7 @@ export const CoreSharedOptionsSchema = z.object({
 	httpsCertPath: z.string().optional(),
 
 	inspectorPort: z.number().optional(),
+
 	verbose: z.boolean().optional(),
 
 	log: z.instanceof(Log).optional(),

packages/miniflare/src/plugins/core/inspector-proxy/devtools.ts

@@ -0,0 +1,52 @@
+import type Protocol from "devtools-protocol/types/protocol-mapping";
+
+type _Params<ParamsArray extends [unknown?]> = ParamsArray extends [infer P]
+	? P
+	: undefined;
+
+type _EventMethods = keyof Protocol.Events;
+export type DevToolsEvent<Method extends _EventMethods> = Method extends unknown
+	? {
+			method: Method;
+			params: _Params<Protocol.Events[Method]>;
+		}
+	: never;
+
+export type DevToolsEvents = DevToolsEvent<_EventMethods>;
+
+type _CommandMethods = keyof Protocol.Commands;
+export type DevToolsCommandRequest<Method extends _CommandMethods> =
+	Method extends unknown
+		? _Params<Protocol.Commands[Method]["paramsType"]> extends undefined
+			? {
+					id: number;
+					method: Method;
+				}
+			: {
+					id: number;
+					method: Method;
+					params: _Params<Protocol.Commands[Method]["paramsType"]>;
+				}
+		: never;
+
+export type DevToolsCommandRequests = DevToolsCommandRequest<_CommandMethods>;
+
+export type DevToolsCommandResponse<Method extends _CommandMethods> =
+	Method extends unknown
+		? {
+				id: number;
+				result: Protocol.Commands[Method]["returnType"];
+			}
+		: never;
+export type DevToolsCommandResponses = DevToolsCommandResponse<_CommandMethods>;
+
+export function isDevToolsEvent<
+	Method extends DevToolsEvent<_EventMethods>["method"],
+>(event: unknown, name: Method): event is DevToolsEvent<Method> {
+	return (
+		typeof event === "object" &&
+		event !== null &&
+		"method" in event &&
+		event.method === name
+	);
+}

packages/miniflare/src/plugins/core/inspector-proxy/index.ts

@@ -0,0 +1 @@
+export { InspectorProxyController } from "./inspector-proxy-controller";

packages/miniflare/src/plugins/core/inspector-proxy/inspector-proxy-controller.ts

@@ -0,0 +1,274 @@
+import crypto from "node:crypto";
+import { createServer, IncomingMessage, Server } from "node:http";
+import getPort from "get-port";
+import { DeferredPromise } from "miniflare:shared";
+import WebSocket, { WebSocketServer } from "ws";
+import { version as miniflareVersion } from "../../../../package.json";
+import { Log } from "../../../shared";
+import { InspectorProxy } from "./inspector-proxy";
+
+/**
+ * An `InspectorProxyController` connects to the various runtime (/workerd) inspector servers and exposes through the user specified
+ * inspector port the appropriate workers.
+ *
+ * The controller:
+ *  - implements the various discovery `/json/*` endpoints that inspector clients query (exposing only the appropriate workers)
+ *  - creates a proxy for each worker
+ *  - when a web socket connection is requested for a worker it passes such request to the appropriate proxy
+ */
+export class InspectorProxyController {
+	#runtimeConnectionEstablished: DeferredPromise<void>;
+
+	#proxies: InspectorProxy[] = [];
+
+	#server: Promise<Server>;
+
+	#inspectorPort: number | Promise<number>;
+
+	constructor(
+		userInspectorPort: number,
+		private log: Log,
+		private workerNamesToProxy: Set<string>
+	) {
+		this.#inspectorPort =
+			userInspectorPort !== 0 ? userInspectorPort : getPort();
+		this.#server = this.#initializeServer();
+		this.#runtimeConnectionEstablished = new DeferredPromise();
+	}
+
+	async #initializeServer() {
+		const server = createServer(async (req, res) => {
+			const maybeJson = await this.#handleDevToolsJsonRequest(
+				req.headers.host ?? "localhost",
+				req.url ?? "/"
+			);
+
+			if (maybeJson !== null) {
+				res.setHeader("Content-Type", "application/json");
+				res.end(JSON.stringify(maybeJson));
+				return;
+			}
+
+			res.statusCode = 404;
+			res.end(null);
+		});
+
+		this.#initializeWebSocketServer(server);
+
+		server.listen(await this.#inspectorPort);
+
+		return server;
+	}
+
+	#initializeWebSocketServer(server: Server) {
+		const devtoolsWebSocketServer = new WebSocketServer({ server });
+
+		devtoolsWebSocketServer.on("connection", (devtoolsWs, upgradeRequest) => {
+			const validationError =
+				this.#validateDevToolsWebSocketUpgradeRequest(upgradeRequest);
+			if (validationError !== null) {
+				devtoolsWs.close();
+				return;
+			}
+
+			const proxy = this.#proxies.find(
+				({ path }) => upgradeRequest.url === path
+			);
+
+			if (!proxy) {
+				this.log.warn(
+					`Warning: An inspector connection was requested for the ${upgradeRequest.url} path but no such inspector exists`
+				);
+				devtoolsWs.close();
+				return;
+			}
+
+			proxy.onDevtoolsConnected(
+				devtoolsWs,
+				this.#checkIfDevtoolsHaveFileSystemAccess(upgradeRequest)
+			);
+		});
+	}
+
+	#validateDevToolsWebSocketUpgradeRequest(req: IncomingMessage) {
+		// Validate `Host` header
+		const hostHeader = req.headers.host;
+		if (hostHeader == null) return { statusText: null, status: 400 };
+		try {
+			const host = new URL(`http://${hostHeader}`);
+			if (!ALLOWED_HOST_HOSTNAMES.includes(host.hostname)) {
+				return { statusText: "Disallowed `Host` header", status: 401 };
+			}
+		} catch {
+			return { statusText: "Expected `Host` header", status: 400 };
+		}
+		// Validate `Origin` header
+		let originHeader = req.headers.origin;
+		if (!originHeader && !req.headers["user-agent"]) {
+			// VSCode doesn't send an `Origin` header, but also doesn't send a
+			// `User-Agent` header, so allow an empty origin in this case.
+			originHeader = "http://localhost";
+		}
+		if (!originHeader) {
+			return { statusText: "Expected `Origin` header", status: 400 };
+		}
+		try {
+			const origin = new URL(originHeader);
+			const allowed = ALLOWED_ORIGIN_HOSTNAMES.some((rule) => {
+				if (typeof rule === "string") return origin.hostname === rule;
+				else return rule.test(origin.hostname);
+			});
+			if (!allowed) {
+				return { statusText: "Disallowed `Origin` header", status: 401 };
+			}
+		} catch {
+			return { statusText: "Expected `Origin` header", status: 400 };
+		}
+
+		return null;
+	}
+
+	#checkIfDevtoolsHaveFileSystemAccess(req: IncomingMessage) {
+		// Our patched DevTools are hosted on a `https://` URL. These cannot
+		// access `file://` URLs, meaning local source maps cannot be fetched.
+		// To get around this, we can rewrite `Debugger.scriptParsed` events to
+		// include a special `worker:` scheme for source maps, and respond to
+		// `Network.loadNetworkResource` commands for these. Unfortunately, this
+		// breaks IDE's built-in debuggers (e.g. VSCode and WebStorm), so we only
+		// want to enable this transformation when we detect hosted DevTools has
+		// connected. We do this by looking at the WebSocket handshake headers:
+		//
+		//  DevTools
+		//
+		// Upgrade: websocket
+		// Host: localhost:9229
+		// (from Chrome)  User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
+		// (from Firefox) User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:109.0) Gecko/20100101 Firefox/116.0
+		// Origin: https://devtools.devprod.cloudflare.dev
+		// ...
+		//
+		//  VSCode
+		//
+		// Upgrade: websocket
+		// Host: localhost
+		// ...
+		//
+		//  WebStorm
+		//
+		// Upgrade: websocket
+		// Host: localhost:9229
+		// Origin: http://localhost:9229
+		// ...
+		//
+		// From this, we could just use the presence of a `User-Agent` header to
+		// determine if DevTools connected, but VSCode/WebStorm could very well
+		// add this in future versions. We could also look for an `Origin` header
+		// matching the hosted DevTools URL, but this would prevent preview/local
+		// versions working. Instead, we look for a browser-like `User-Agent`.
+		const userAgent = req.headers["user-agent"] ?? "";
+		const hasFileSystemAccess = !/mozilla/i.test(userAgent);
+
+		return hasFileSystemAccess;
+	}
+
+	#inspectorId = crypto.randomUUID();
+	async #handleDevToolsJsonRequest(host: string, path: string) {
+		if (path === "/json/version") {
+			return {
+				Browser: `miniflare/v${miniflareVersion}`,
+				// TODO: (someday): The DevTools protocol should match that of workerd.
+				// This could be exposed by the preview API.
+				"Protocol-Version": "1.3",
+			};
+		}
+
+		if (path === "/json" || path === "/json/list") {
+			return this.#proxies.map(({ workerName }) => {
+				const localHost = `${host}/${workerName}`;
+				const devtoolsFrontendUrl = `https://devtools.devprod.cloudflare.dev/js_app?theme=systemPreferred&debugger=true&ws=${localHost}`;
+
+				return {
+					id: `${this.#inspectorId}-${workerName}`,
+					type: "node", // TODO: can we specify different type?
+					description: "workers",
+					webSocketDebuggerUrl: `ws://${localHost}`,
+					devtoolsFrontendUrl,
+					devtoolsFrontendUrlCompat: devtoolsFrontendUrl,
+					// Below are fields that are visible in the DevTools UI.
+					title:
+						workerName.length === 0 || this.#proxies.length === 1
+							? `Cloudflare Worker`
+							: `Cloudflare Worker: ${workerName}`,
+					faviconUrl: "https://workers.cloudflare.com/favicon.ico",
+					// url: "http://" + localHost, // looks unnecessary
+				};
+			});
+		}
+
+		return null;
+	}
+
+	async getInspectorURL(): Promise<URL> {
+		return getWebsocketURL(await this.#inspectorPort);
+	}
+
+	async updateConnection(runtimeInspectorPort: number) {
+		const workerdInspectorJson = (await fetch(
+			`http://127.0.0.1:${runtimeInspectorPort}/json`
+		).then((resp) => resp.json())) as {
+			id: string;
+		}[];
+
+		this.#proxies = workerdInspectorJson
+			.map(({ id }) => {
+				if (!id.startsWith("core:user:")) {
+					return;
+				}
+
+				const workerName = id.replace(/^core:user:/, "");
+
+				if (!this.workerNamesToProxy.has(workerName)) {
+					return;
+				}
+
+				return new InspectorProxy(
+					workerName,
+					new WebSocket(`ws://127.0.0.1:${runtimeInspectorPort}/${id}`)
+				);
+			})
+			.filter(Boolean) as InspectorProxy[];
+
+		this.#runtimeConnectionEstablished.resolve();
+	}
+
+	async #waitForReady() {
+		await this.#runtimeConnectionEstablished;
+	}
+
+	get ready(): Promise<void> {
+		return this.#waitForReady();
+	}
+
+	async dispose(): Promise<void> {
+		await Promise.all(this.#proxies.map((proxy) => proxy.dispose()));
+
+		const server = await this.#server;
+		return new Promise((resolve, reject) => {
+			server.close((err) => (err ? reject(err) : resolve()));
+		});
+	}
+}
+
+function getWebsocketURL(port: number): URL {
+	return new URL(`ws://127.0.0.1:${port}`);
+}
+
+const ALLOWED_HOST_HOSTNAMES = ["127.0.0.1", "[::1]", "localhost"];
+const ALLOWED_ORIGIN_HOSTNAMES = [
+	"devtools.devprod.cloudflare.dev",
+	"cloudflare-devtools.pages.dev",
+	/^[a-z0-9]+\.cloudflare-devtools\.pages\.dev$/,
+	"127.0.0.1",
+	"[::1]",
+	"localhost",
+];

packages/miniflare/src/plugins/core/inspector-proxy/inspector-proxy.ts

@@ -0,0 +1,165 @@
+import assert from "node:assert";
+import WebSocket from "ws";
+import { isDevToolsEvent } from "./devtools";
+import type {
+	DevToolsCommandRequests,
+	DevToolsEvent,
+	DevToolsEvents,
+} from "./devtools";
+
+/**
+ * An `InspectorProxy` connects to a single runtime (/workerd) inspector server and proxies websocket communication
+ * between the inspector server and potential inspector clients (/devtools).
+ *
+ * Each `InspectorProxy` has one and only one worker inspector server associated to it.
+ */
+export class InspectorProxy {
+	#workerName: string;
+	#runtimeWs: WebSocket;
+
+	#devtoolsWs?: WebSocket;
+	#devtoolsHaveFileSystemAccess = false;
+
+	constructor(workerName: string, runtimeWs: WebSocket) {
+		this.#workerName = workerName;
+		this.#runtimeWs = runtimeWs;
+		this.#runtimeWs.once("open", () => this.#handleRuntimeWebSocketOpen());
+	}
+
+	get workerName() {
+		return this.#workerName;
+	}
+
+	get path() {
+		return `/${this.#workerName}`;
+	}
+
+	onDevtoolsConnected(
+		devtoolsWs: WebSocket,
+		devtoolsHaveFileSystemAccess: boolean
+	) {
+		if (this.#devtoolsWs) {
+			/** We only want to have one active Devtools instance at a time. */
+			// TODO(consider): prioritise new websocket over previous
+			devtoolsWs.close(
+				1013,
+				"Too many clients; only one can be connected at a time"
+			);
+			return;
+		}
+		this.#devtoolsWs = devtoolsWs;
+		this.#devtoolsHaveFileSystemAccess = devtoolsHaveFileSystemAccess;
+
+		assert(this.#devtoolsWs?.readyState === WebSocket.OPEN);
+
+		this.#devtoolsWs.on("error", console.error);
+
+		this.#devtoolsWs.once("close", () => {
+			if (this.#runtimeWs?.OPEN) {
+				// Since Miniflare proxies the inspector, reloading Chrome DevTools won't trigger debugger initialisation events (because it's connecting to an extant session).
+				// This sends a `Debugger.disable` message to the remote when a new WebSocket connection is initialised,
+				// with the assumption that the new connection will shortly send a `Debugger.enable` event and trigger re-initialisation.
+				// The key initialisation messages that are needed are the `Debugger.scriptParsed` events.
+				this.#sendMessageToRuntime({
+					method: "Debugger.disable",
+					id: this.#nextCounter(),
+				});
+			}
+			this.#devtoolsWs = undefined;
+		});
+
+		this.#devtoolsWs.on("message", (data) => {
+			const message = JSON.parse(data.toString());
+			assert(this.#runtimeWs?.OPEN);
+			this.#sendMessageToRuntime(message);
+		});
+	}
+
+	#runtimeMessageCounter = 1e8;
+	#nextCounter() {
+		return ++this.#runtimeMessageCounter;
+	}
+
+	#runtimeKeepAliveInterval: NodeJS.Timeout | undefined;
+
+	#handleRuntimeWebSocketOpen() {
+		assert(this.#runtimeWs?.OPEN);
+
+		this.#runtimeWs.on("message", (data) => {
+			const message = JSON.parse(data.toString());
+
+			if (!this.#devtoolsWs) {
+				// there is no devtools connection established
+				return;
+			}
+
+			if (isDevToolsEvent(message, "Debugger.scriptParsed")) {
+				return this.#handleRuntimeScriptParsed(message);
+			}
+
+			return this.#sendMessageToDevtools(message);
+		});
+
+		clearInterval(this.#runtimeKeepAliveInterval);
+		this.#runtimeKeepAliveInterval = setInterval(() => {
+			if (this.#runtimeWs?.OPEN) {
+				this.#sendMessageToRuntime({
+					method: "Runtime.getIsolateId",
+					id: this.#nextCounter(),
+				});
+			}
+		}, 10_000);
+	}
+
+	#handleRuntimeScriptParsed(message: DevToolsEvent<"Debugger.scriptParsed">) {
+		// If the devtools does not have filesystem access,
+		// rewrite the sourceMapURL to use a special scheme.
+		// This special scheme is used to indicate whether
+		// to intercept each loadNetworkResource message.
+
+		if (
+			!this.#devtoolsHaveFileSystemAccess &&
+			message.params.sourceMapURL !== undefined &&
+			// Don't try to find a sourcemap for e.g. node-internal: scripts
+			message.params.url.startsWith("file:")
+		) {
+			const url = new URL(message.params.sourceMapURL, message.params.url);
+			// Check for file: in case message.params.sourceMapURL has a different
+			// protocol (e.g. data). In that case we should ignore this file
+			if (url.protocol === "file:") {
+				message.params.sourceMapURL = url.href.replace(
+					"file:",
+					"wrangler-file:"
+				);
+			}
+		}
+
+		return this.#sendMessageToDevtools(message);
+	}
+
+	#sendMessageToDevtools(message: DevToolsEvents) {
+		assert(this.#devtoolsWs);
+
+		if (!this.#devtoolsWs.OPEN) {
+			// the devtools web socket is established but not yet connected
+			this.#devtoolsWs.once("open", () =>
+				this.#devtoolsWs?.send(JSON.stringify(message))
+			);
+			return;
+		}
+
+		this.#devtoolsWs.send(JSON.stringify(message));
+	}
+
+	#sendMessageToRuntime(message: DevToolsCommandRequests) {
+		assert(this.#runtimeWs?.OPEN);
+
+		this.#runtimeWs.send(JSON.stringify(message));
+	}
+
+	async dispose(): Promise<void> {
+		clearInterval(this.#runtimeKeepAliveInterval);
+
+		this.#devtoolsWs?.close();
+	}
+}

packages/miniflare/src/shared/error.ts

@@ -33,5 +33,6 @@ export type MiniflareCoreErrorCode =
 	| "ERR_DIFFERENT_PREVENT_EVICTION" // Multiple Durable Object bindings declared for same class with different unsafe prevent eviction values
 	| "ERR_MULTIPLE_OUTBOUNDS" // Both `outboundService` and `fetchMock` specified
 	| "ERR_INVALID_WRAPPED" // Worker not allowed to be used as wrapped binding
-	| "ERR_CYCLIC"; // Generate cyclic workerd config
+	| "ERR_CYCLIC" // Generate cyclic workerd config
+	| "ERR_MISSING_INSPECTOR_PROXY_PORT"; // An inspector proxy has been requested but no inspector port to use has been specified
 export class MiniflareCoreError extends MiniflareError<MiniflareCoreErrorCode> {}