Bug 233723

Summary: Remove StructureIDBlob
Product: WebKit Reporter: Keith Miller <keith_miller>
Component: New BugsAssignee: Keith Miller <keith_miller>
Status: REOPENED    
Severity: Normal CC: annulen, commit-queue, ews-watchlist, gyuyoung.kim, mark.lam, msaboff, ryuan.choi, saam, sergio, tzagallo, webkit-bug-importer, ysuzuki
Priority: P2 Keywords: InRadar
Version: WebKit Nightly Build   
Hardware: Unspecified   
OS: Unspecified   
Bug Depends on: 233930    
Bug Blocks:    
Attachments:
Description Flags
Patch
none
Patch
none
Patch for landing none

Keith Miller
Reported 2021-12-01 13:38:28 PST
Remove StructureIDBlob
Attachments
Patch (28.15 KB, patch)
2021-12-01 13:38 PST, Keith Miller 		no flags
DetailsFormatted DiffDiff
Patch (28.47 KB, patch)
2021-12-01 13:41 PST, Keith Miller 		no flags
DetailsFormatted DiffDiff
Patch for landing (28.77 KB, patch)
2021-12-03 09:36 PST, Keith Miller 		no flags
DetailsFormatted DiffDiff
Show Obsolete (2) View All Add attachment proposed patch, testcase, etc.
Keith Miller
Comment 1 2021-12-01 13:38:56 PST
Created attachment 445608 [details] Patch
Keith Miller
Comment 2 2021-12-01 13:41:53 PST
Created attachment 445609 [details] Patch
Yusuke Suzuki
Comment 3 2021-12-01 13:59:42 PST
Comment on attachment 445609 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=445609&action=review r=me > Source/JavaScriptCore/runtime/Structure.h:861 > + // part of the object. And need to match the order of the equivalent properties in > + // JSCell. > + IndexingType m_indexingModeIncludingHistory; > + JSType m_type; > + TypeInfo::InlineTypeFlags m_inlineTypeFlags; > + CellState m_defaultCellState { CellState::DefinitelyWhite }; I think we should rename them to explicitly state that they are information of JSCell allocated with this Structure. Since Structure itself is a JSCell, it has Structure::m_type etc. in JSCell parent class. So using the same name here is confusing. e.g. m_instanceType, m_instanceIndexingModeIncludingHistory etc.
Mark Lam
Comment 4 2021-12-01 14:21:30 PST
Comment on attachment 445609 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=445609&action=review > Source/JavaScriptCore/ChangeLog:11 > + can be a single load platforms that allow (and don't penalize) misaligned loads. /load platforms/load on platforms/ >> Source/JavaScriptCore/runtime/Structure.h:861 >> + IndexingType m_indexingModeIncludingHistory; >> + JSType m_type; >> + TypeInfo::InlineTypeFlags m_inlineTypeFlags; >> + CellState m_defaultCellState { CellState::DefinitelyWhite }; > > I think we should rename them to explicitly state that they are information of JSCell allocated with this Structure. > Since Structure itself is a JSCell, it has Structure::m_type etc. in JSCell parent class. So using the same name here is confusing. > e.g. m_instanceType, m_instanceIndexingModeIncludingHistory etc. I suggest adding static_asserts to guarantee that the order of these fields match those in JSCell to ensure that anyone messing this up will not go unnoticed. Alternatively, define a JSCellHeader macro / struct and use that both here and in JSCell to ensure that we never mess up. That would be a much stronger guarantee than the comment above. I think the static_asserts would probably be least intrusive for now.
Mark Lam
Comment 5 2021-12-01 14:24:36 PST
Comment on attachment 445609 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=445609&action=review >>> Source/JavaScriptCore/runtime/Structure.h:861 >>> + CellState m_defaultCellState { CellState::DefinitelyWhite }; >> >> I think we should rename them to explicitly state that they are information of JSCell allocated with this Structure. >> Since Structure itself is a JSCell, it has Structure::m_type etc. in JSCell parent class. So using the same name here is confusing. >> e.g. m_instanceType, m_instanceIndexingModeIncludingHistory etc. > > I suggest adding static_asserts to guarantee that the order of these fields match those in JSCell to ensure that anyone messing this up will not go unnoticed. Alternatively, define a JSCellHeader macro / struct and use that both here and in JSCell to ensure that we never mess up. That would be a much stronger guarantee than the comment above. I think the static_asserts would probably be least intrusive for now. In response to Yusuke's comment, one alternative id to to put these in an embedded struct here e.g. struct { IndexingType m_indexingModeIncludingHistory; JSType m_type; TypeInfo::InlineTypeFlags m_inlineTypeFlags; CellState m_defaultCellState { CellState::DefinitelyWhite }; } m_cellHeader;
Saam Barati
Comment 6 2021-12-02 10:34:34 PST
Comment on attachment 445609 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=445609&action=review Nice > Source/JavaScriptCore/runtime/Structure.h:168 > + int32_t objectInitializationBlob() const { return *reinterpret_cast_ptr<const uint32_t*>(&m_indexingModeIncludingHistory); } nit: bitwise_cast
Keith Miller
Comment 7 2021-12-03 09:36:16 PST
Comment on attachment 445609 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=445609&action=review >> Source/JavaScriptCore/runtime/Structure.h:168 >> + int32_t objectInitializationBlob() const { return *reinterpret_cast_ptr<const uint32_t*>(&m_indexingModeIncludingHistory); } > > nit: bitwise_cast Why bitwise_cast? It's casting a pointer to a different pointer, I usually only use bitwise_cast for integral->integral.
Keith Miller
Comment 8 2021-12-03 09:36:51 PST
Created attachment 445867 [details] Patch for landing
EWS
Comment 9 2021-12-03 10:30:17 PST
Committed r286502 (244841@main): <https://commits.webkit.org/244841@main> All reviewed patches have been landed. Closing bug and clearing flags on attachment 445867 [details].
Radar WebKit Bug Importer
Comment 10 2021-12-03 10:31:24 PST
<rdar://problem/86024479>
WebKit Commit Bot
Comment 11 2021-12-07 08:53:58 PST
Re-opened since this is blocked by bug 233930
Note You need to log in before you can comment on or make changes to this bug.