RESOLVED FIXED 220809
REGRESSION (r270874): Some React Native apps are reported broken on iOS 
https://bugs.webkit.org/show_bug.cgi?id=220809
Summary REGRESSION (r270874): Some React Native apps are reported broken on iOS
Alexey Shvayka
Reported 2021-01-21 10:29:52 PST
REGRESSION (r270874): Some React Native apps are reported broken on iOS
Attachments
Patch (18.90 KB, patch)
2021-01-21 10:33 PST, Alexey Shvayka 		no flags
DetailsFormatted DiffDiff
Patch (18.94 KB, patch)
2021-01-21 11:10 PST, Alexey Shvayka 		no flags
DetailsFormatted DiffDiff
Patch for landing (14.37 KB, patch)
2021-01-25 17:27 PST, Alexey Shvayka 		no flags
DetailsFormatted DiffDiff
Show Obsolete (2) View All Add attachment proposed patch, testcase, etc.
Alexey Shvayka
Comment 1 2021-01-21 10:33:05 PST
Created attachment 418061 [details] Patch
Alexey Shvayka
Comment 2 2021-01-21 10:37:45 PST
Comment on attachment 418061 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=418061&action=review > Source/JavaScriptCore/runtime/JSObject.cpp:2001 > + bool reportAsEnumerable = !(slot.attributes() & PropertyAttribute::DontEnum) || structure(vm)->typeInfo().getOwnPropertySlotIsWrongAboutDontEnum(); The flag should probably be queried from slotBase() rather than |this|.
Alexey Shvayka
Comment 3 2021-01-21 11:10:50 PST
Created attachment 418064 [details] Patch Query GetOwnPropertySlotIsWrongAboutDontEnum from the slotBase().
Radar WebKit Bug Importer
Comment 4 2021-01-21 16:51:17 PST
<rdar://problem/73475533>
Saam Barati
Comment 5 2021-01-22 11:05:22 PST
I'm going to test this soon and can review too
Saam Barati
Comment 6 2021-01-25 16:09:36 PST
Comment on attachment 418064 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=418064&action=review Confirmed this fixes the React native crashes we were seeing > Source/JavaScriptCore/runtime/JSTypeInfo.h:62 > +static constexpr unsigned GetOwnPropertySlotIsWrongAboutDontEnum = 1 << 20; nit, I think I'd call this: GetOwnPropertySlotMayBeWrongAboutDontEnum since we don't know definitively, but the runtime must be conservative. > Source/WebCore/bridge/runtime_array.h:38 > + static constexpr unsigned StructureFlags = Base::StructureFlags | OverridesGetOwnPropertySlot | OverridesGetOwnPropertyNames | InterceptsGetOwnPropertySlotByIndexEvenWhenLengthIsNotZero | GetOwnPropertySlotIsWrongAboutDontEnum; is it worth reverting these back to how they used to be and provide this flag? Or should we make them truthful? I don't think we have evidence that this part of the patch broke stuff
Alexey Shvayka
Comment 7 2021-01-25 17:27:53 PST
Created attachment 418359 [details] Patch for landing
EWS
Comment 8 2021-01-25 18:13:16 PST
Committed r271873: <https://trac.webkit.org/changeset/271873> All reviewed patches have been landed. Closing bug and clearing flags on attachment 418359 [details].
Note You need to log in before you can comment on or make changes to this bug.