Skip to content

http: improve writeEarlyHints by avoiding for-of loop#59958

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
nodejs-github-bot merged 1 commit into from
Oct 6, 2025
Merged

http: improve writeEarlyHints by avoiding for-of loop #59958

nodejs-github-bot merged 1 commit into from
Oct 6, 2025

Conversation

@haramj
Copy link
Member

@haramjharamj commented Sep 21, 2025

This change is based on the "Unsafe array iteration" principle from the Node.js core development guidelines. for-of loops rely on the Symbol.iterator property, which can be modified by userland code, potentially leading to unpredictable or insecure behavior. Using a standard for loop directly accesses the array elements by index, ensuring a more stable and secure execution flow.

Refs: https://github.com/nodejs/node/blob/main/doc/contributing/primordials.md#unsafe-array-iteration

@nodejs-github-bot
Copy link
Collaborator

nodejs-github-bot commented Sep 21, 2025

Review requested:

  • @nodejs/http
  • @nodejs/net

@nodejs-github-botnodejs-github-bot added http Issues or PRs related to the http subsystem. needs-ci PRs that need a full CI run. labels Sep 21, 2025
@haramjharamjforce-pushed the haramjeong-patch-250921 branch from 0760cdf to 17e98e7CompareSeptember 21, 2025 06:10
@haramjharamj changed the title http: Improve writeEarlyHints by avoiding for-of loophttp: improve writeEarlyHints by avoiding for-of loopSep 21, 2025
@codecov
Copy link

codecovbot commented Sep 21, 2025
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 88.43%. Comparing base (39d7303) to head (17e98e7).
⚠️ Report is 120 commits behind head on main.

Additional details and impacted files
@@ Coverage Diff @@## main #59958 +/- ## ======================================= Coverage 88.42% 88.43% ======================================= Files 703 703 Lines 207399 207401 +2 Branches 39986 39992 +6 ======================================= + Hits 183397 183410 +13 - Misses 15989 15990 +1 + Partials 8013 8001 -12
Files with missing linesCoverage Δ
lib/_http_server.js97.31% <100.00%> (-0.08%)⬇️

... and 46 files with indirect coverage changes

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@daeyeondaeyeon added request-ci Add this label to start a Jenkins CI on a PR. author ready PRs that have at least one approval, no pending requests for changes, and a CI started. labels Sep 27, 2025
@github-actionsgithub-actionsbot removed the request-ci Add this label to start a Jenkins CI on a PR. label Sep 27, 2025
@nodejs-github-bot
Copy link
Collaborator

nodejs-github-bot commented Sep 27, 2025

CI: https://ci.nodejs.org/job/node-test-pull-request/69393/

gurgunday
gurgunday approved these changes Sep 27, 2025
View reviewed changes
Copy link
Member

@gurgundaygurgunday left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

@nodejs-github-bot
Copy link
Collaborator

nodejs-github-bot commented Sep 28, 2025

CI: https://ci.nodejs.org/job/node-test-pull-request/69410/

@haramj
Copy link
MemberAuthor

haramj commented Oct 2, 2025

It looks like the CI run for this PR failed due to a flaky test.
Could you please re-run the CI.

@nodejs-github-bot
Copy link
Collaborator

nodejs-github-bot commented Oct 2, 2025

CI: https://ci.nodejs.org/job/node-test-pull-request/69508/

@daeyeondaeyeon added the commit-queue Add this label to land a pull request using GitHub Actions. label Oct 6, 2025
@nodejs-github-botnodejs-github-bot removed the commit-queue Add this label to land a pull request using GitHub Actions. label Oct 6, 2025
@nodejs-github-botnodejs-github-bot merged commit 5b3c4b3 into nodejs:mainOct 6, 2025
64 of 65 checks passed
@nodejs-github-bot
Copy link
Collaborator

nodejs-github-bot commented Oct 6, 2025

Landed in 5b3c4b3

targos pushed a commit that referenced this pull request Oct 6, 2025
@haramj@targos
http: improve writeEarlyHints by avoiding for-of loop
1b25008
PR-URL: #59958 Refs: https://github.com/nodejs/node/blob/main/doc/contributing/primordials.md#unsafe-array-iteration Reviewed-By: Daeyeon Jeong <[email protected]> Reviewed-By: Antoine du Hamel <[email protected]>
@github-actionsgithub-actionsbot mentioned this pull request Oct 7, 2025
Merged
aduh95 pushed a commit that referenced this pull request Oct 22, 2025
@haramj@aduh95
http: improve writeEarlyHints by avoiding for-of loop
ef67d09
PR-URL: #59958 Refs: https://github.com/nodejs/node/blob/main/doc/contributing/primordials.md#unsafe-array-iteration Reviewed-By: Daeyeon Jeong <[email protected]> Reviewed-By: Antoine du Hamel <[email protected]>
@github-actionsgithub-actionsbot mentioned this pull request Oct 23, 2025
Merged
@claudeclaudebot mentioned this pull request Nov 3, 2025
Merged
1 task
Sign up for freeto join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@daeyeondaeyeondaeyeon approved these changes

@aduh95aduh95aduh95 approved these changes

@gurgundaygurgundaygurgunday approved these changes

Assignees

No one assigned

Labels

author readyPRs that have at least one approval, no pending requests for changes, and a CI started.httpIssues or PRs related to the http subsystem.needs-ciPRs that need a full CI run.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@haramj@nodejs-github-bot@daeyeon@aduh95@gurgunday