fix: URLSearchParams construction and iteration spec compliance

[adrian-niculescu]

While chasing a failing backend request in our app we noticed it was hitting a URL that looked like this:

https://api.example.com/items?[object+Object]=

The culprit was an innocent new URLSearchParams({ limit: "50", cursor: "abc123" }). The binding only handles the string init form, so any object passed to the constructor gets stringified to "[object Object]" and the whole query collapses into one bogus key. The same code works in browsers and Node, which made it a fun one to track down.

This reworks the constructor to follow the WebIDL init dispatch from the URL spec: a plain object is read as a record (own enumerable keys in order; a Symbol key throws), an iterable (Array, Map, Set, another URLSearchParams, generators) is read as a sequence of pairs (with IteratorClose on abrupt completion, and a TypeError for a pair whose length isn't 2), other primitives and null coerce to a USVString and get parsed (a Symbol throws; null parses as the string "null", matching the whatwg-url reference implementation), and undefined produces empty params (the IDL default).

Writing tests for that surfaced a few more spec gaps, also fixed here:

• entries()/keys()/values() returned plain arrays, and there was no @@iterator, so for..of, spread, and the new URLSearchParams(other) copy form didn't work. They now return live ES iterators per spec, with @@iterator aliasing entries. This also fixes a duplicate-key bug: the old get_keys()+get() walk returned the first value for every occurrence of a repeated key.
• get() returns null for a missing name instead of undefined (one existing test asserted undefined and was updated to match the spec).
• delete(name, value) and has(name, value) honor the optional value argument, which ada already exposes. An explicit undefined value is treated as omitted, matching WPT.

The URLSearchParams test group now has 49 specs covering all of the above. Full suite run on an emulator via runtests: 513 tests, 0 failures.

iOS counterpart: NativeScript/ios#388.

Update after review: every name and value argument across get/getAll/has/delete/append/set now goes through the same USVString coercion (a Symbol throws), entries()/keys()/values() and the iterator's next() brand-check their receivers, and GetPointer no longer reads an internal field from objects that have none (entries.call({}) used to be an out-of-bounds read). A second pass against the IDL and the whatwg-url reference implementation aligned three more corners: new URLSearchParams(null) parses as the string "null" instead of being treated as empty (the union conversion has no null special case; WPT does not cover it and Node is the outlier), an enumerable Symbol key in a record init throws, and the remaining members (get/getAll/has/append/set/delete/forEach/sort/toString/size) brand-check their receiver like the iterator methods.

Summary by CodeRabbit

• Bug Fixes

  • Iterators (entries/keys/values/default) now behave per spec: live, have correct identity/branding, preserve duplicates, close on errors, and throw on illegal invocation; get() returns null for missing keys.

• Improvements

  • Constructor accepts records, arrays/pairs, Maps/Sets, generic iterables, primitives, and strips leading ?; delete()/has() support value-based matching with proper coercion and explicit-undefined handling.

• Tests

  • Expanded coverage for iterators, constructor inputs, edge cases, and error conditions.

[coderabbitai]

Note

Reviews paused

It looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the reviews.auto_review.auto_pause_after_reviewed_commits setting.

Use the following commands to manage reviews:

• @coderabbitai resume to resume automatic reviews.
• @coderabbitai review to trigger a single review.

Use the checkboxes below for quick actions:

• ▶️ Resume reviews
• 🔍 Trigger review

📝 Walkthrough

Walkthrough

URLSearchParams constructor dispatch, live iterator implementation/wiring, and query method semantics were changed to match the spec; tests were expanded for iterator protocol, initialization shapes, coercion, and value-filtered has/delete behavior.

Changes

URLSearchParams Spec Compliance

Layer / File(s)	Summary
Live iterator protocol and exposure test-app/runtime/src/main/cpp/URLSearchParamsImpl.cpp, test-app/app/src/main/assets/app/tests/testURLSearchParamsImpl.js	Adds spec-style live iterator implementation and branding, installs the entries template as @@iterator, validates foreign receivers, and changes entries()/keys()/values() to return live iterators; tests cover iterator identity, next() presence, duplicate-key preservation, liveness under mid-iteration mutations, receiver-branding/retargeting, and source-iterator closure on malformed pairs.
Constructor and initialization helpers test-app/runtime/src/main/cpp/URLSearchParamsImpl.cpp, test-app/app/src/main/assets/app/tests/testURLSearchParamsImpl.js	Rewrites Ctor to dispatch by input type (string parsing with leading ? stripping, record vs sequence via callable @@iterator, primitives via ValueToString, nullish/empty handling), implements materialization helpers, and expands tests for records, arrays-of-pairs, Maps/Sets, generic iterables/generators, non-array inner pairs, primitive initializers, and many error cases.
Query methods and mutation semantics test-app/runtime/src/main/cpp/URLSearchParamsImpl.cpp, test-app/app/src/main/assets/app/tests/testURLSearchParamsImpl.js	Updates append/set to coerce arguments via ValueToString; get now returns null when missing; getAll coerces names; has/delete accept optional value-filtered overloads (explicit undefined treated as omitted) with coercion and throw on uncoercible values; illegal-invocation checks now throw TypeError for additional methods; tests added for these behaviors.

Sequence Diagram

sequenceDiagram
  participant Client
  participant URLSearchParams_prototype
  participant EntriesTemplate
  participant LiveIterator
  participant InternalStorage
  Client->>URLSearchParams_prototype: call entries()/keys()/values()/@@iterator
  URLSearchParams_prototype->>EntriesTemplate: create/return live iterator (ReturnLiveIterator)
  EntriesTemplate->>LiveIterator: instantiate with hidden state
  LiveIterator->>InternalStorage: read current pair on next()
  LiveIterator->>InternalStorage: advance index
  Client->>LiveIterator: next()
  LiveIterator->>Client: return {value, done}
  Note over Client,InternalStorage: mutation to URLSearchParams between next() calls
  Client->>LiveIterator: next()
  LiveIterator->>InternalStorage: reflect updated pairs in result
  alt source iterator yields malformed pair
    LiveIterator->>EntriesTemplate: close source iterator
  end

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~65 minutes

Poem

🐰 I hopped through pairs and iterator streams,

Branded next-steps bright in iterative dreams,
I coerced each name and closed the broken thread,
Constructors sprout from maps, arrays, and spread,
A tiny rabbit tests what spec-books said.

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 39.29% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The pull request title accurately summarizes the primary focus: spec-compliant URLSearchParams construction and iteration behavior.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

test-app/runtime/src/main/cpp/URLSearchParamsImpl.cpp (1)

523-544: ⚠️ Potential issue | 🟠 Major | ⚡ Quick win

Coerce the name argument the same way you now coerce value.

get(), has(), and delete() still downcast args[0] straight to v8::String, so non-string names bypass the WebIDL/USVString conversion this PR is otherwise trying to implement. That leaves calls like params.get(1), params.has(true, 2), params.delete({ toString() { return "a"; } }), or an omitted first argument on the wrong path, and Symbol names will not fail in the spec-defined way.

Illustrative fix

 void URLSearchParamsImpl::Delete(const v8::FunctionCallbackInfo<v8::Value> &args) {
         URLSearchParamsImpl *ptr = GetPointer(args.This());
         if (ptr == nullptr) {
             return;
         }
-        auto key = ArgConverter::ConvertToString(args[0].As<v8::String>());
+        std::string key;
+        if (!ValueToString(args.GetIsolate()->GetCurrentContext(), args[0], key)) {
+            return;
+        }
         if (args.Length() > 1 && !args[1]->IsUndefined()) {
             std::string value;
             if (!ValueToString(args.GetIsolate()->GetCurrentContext(), args[1], value)) {
                 return;
             }
-            ptr->GetURLSearchParams()->remove(key, value);
+            ptr->GetURLSearchParams()->remove(key, value);
         } else {
-            ptr->GetURLSearchParams()->remove(key.c_str());
+            ptr->GetURLSearchParams()->remove(key.c_str());
         }
 }

Apply the same ValueToString(...) pattern to Get and Has.

Also applies to: 586-603, 623-648

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@test-app/runtime/src/main/cpp/URLSearchParamsImpl.cpp` around lines 523 -
544, Coerce the first (name) argument with the same WebIDL/USVString path you
already use for value: replace direct downcasts like
ArgConverter::ConvertToString(args[0].As<v8::String()) with a
ValueToString(context, args[0], std::string name) call (using
args.GetIsolate()->GetCurrentContext()) in URLSearchParamsImpl::Delete and do
the same fixes in URLSearchParamsImpl::Get and URLSearchParamsImpl::Has; if
ValueToString returns false, return early (preserve exception), and retain the
existing special-case logic for an explicit undefined second argument in Delete
so only a present non-undefined second arg triggers the value-filtered removal.

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@test-app/runtime/src/main/cpp/URLSearchParamsImpl.cpp`:
- Around line 125-174: IteratorNext currently ignores the actual receiver and
reads iterator state from args.Data(), allowing
illegal-invocation/use-after-detach; add a brand check: ensure args.This() is an
object and that its kStateSource/kStateIndex/kStateKind properties match/are
present (i.e., the same iterator state object) before proceeding, otherwise
throw a TypeError (e.g., "Illegal invocation"); update IteratorNext to read
state from args.This() (or verify args.This() === args.Data()) and perform the
same validation in the other iterator next implementations referenced (the ones
around the other line ranges), keeping the existing use of kStateSource,
kStateIndex, kStateKind, IteratorNext and URLSearchParamsImpl::GetPointer to
locate and validate the iterator state.

---

Outside diff comments:
In `@test-app/runtime/src/main/cpp/URLSearchParamsImpl.cpp`:
- Around line 523-544: Coerce the first (name) argument with the same
WebIDL/USVString path you already use for value: replace direct downcasts like
ArgConverter::ConvertToString(args[0].As<v8::String()) with a
ValueToString(context, args[0], std::string name) call (using
args.GetIsolate()->GetCurrentContext()) in URLSearchParamsImpl::Delete and do
the same fixes in URLSearchParamsImpl::Get and URLSearchParamsImpl::Has; if
ValueToString returns false, return early (preserve exception), and retain the
existing special-case logic for an explicit undefined second argument in Delete
so only a present non-undefined second arg triggers the value-filtered removal.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Repository UI

Review profile: CHILL

Plan: Pro

Run ID: 30e744b1-a1f0-48d8-8fd8-4ebb8ee7aba7

📥 Commits

Reviewing files that changed from the base of the PR and between bfd7650 and dbec4d8.

📒 Files selected for processing (2)

• test-app/app/src/main/assets/app/tests/testURLSearchParamsImpl.js
• test-app/runtime/src/main/cpp/URLSearchParamsImpl.cpp

[adrian-niculescu]

On the outside-diff comment about coercing the name argument: agreed. The IDL declares every name and value as USVString, so get, getAll, has, delete, append and set all run their arguments through the same ValueToString conversion (1ddf6d9, 65bf3bf). A number/boolean/object argument coerces via toString, a Symbol or a throwing toString raises a TypeError, and for append/set a failed coercion appends or replaces nothing. Covered by new tests; the full suite passes on an emulator (521 tests, 0 failures, URLSearchParams group at 57).