Reconsider structured cloning of errors to use .name instead of [[GetPrototypeOf]] #5140
Comments
|
This seems fine to me, I think. @jorendorff, any opinions? Fwiw, SpiderMonkey has a concept of "error type" that is in fact not forgeable and is attached to every Error object. But that doesn't map to any spec concepts and may not have equivalents in other implenentations, so probably isn't very usable... |
|
There is an [[ErrorData]] internal slot on Errors, so it'd be totally reasonable in the spec for that to contain the type. Is there a reason that you can't look up the error type in an unforgeable fashion from internal slots rather than doing observable lookups? |
|
We discussed that previously in tc39/ecma262#1389. In particular there is no observable way to tell the difference between a "real" TypeError and a "forged" TypeError right now, so we shouldn't introduce one via the structured clone algorithm. |
|
Ah, right - checking the slot with a fallback to |
|
Though it was discussed previously, it seems tc39/ecma262#1389 (comment) would apply to this solution. |
|
Yeah, it's a tradeoff between how many edge cases we want to prohibit, versus how many we want to allow. I think the edge case of confusing cross-realm issues (which people might realistically run into) outweighs the edge case of people changing |
|
I'm fine with using |
Discussed at whatwg/html#5140. Bug: chromium:1030086 Change-Id: I9decbf300cf817a5cc3396a6cb7f276c8ed8ee25 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/1990917 Reviewed-by: Simon Zünd <szuend@chromium.org> Commit-Queue: Yutaka Hirano <yhirano@chromium.org> Cr-Commit-Position: refs/heads/master@{#65676}
In #4268, largely guided by tc39/ecma262#1389, we decided to use [[GetPrototypeOf]]() (~
.__proto__) to figure out what type of error object was being cloned. In particular we compared the retrieved prototype with the current Realm's %TypeError%, %EvalError%, etc.In https://bugs.chromium.org/p/chromium/issues/detail?id=1030086 we discovered that this is kind of fragile. In particular it leads to weird situations like:
Error.As such I suggest we move from using
.__proto__to using.name. Both are equally forgeable but using.namewill work better in these kind of weird cross-realm cases.We could also do something like checking
.constructor.nameor.__proto__.namebut IMO we should minimize the number of operations we do, and those would both require two Get()s.Thoughts? @yhirano @bzbarsky
(Note to self: if we change this then we should fix #4991 at the same time. In particular if we move to Get() then we need to use ? instead of !)
The text was updated successfully, but these errors were encountered: