Bug 247394

<rdar://problem/102165851>

The patch in https://github.com/WebKit/WebKit/pull/12135 is the last one that I have written for Wasm GC. Unfortunately I can't work on further patches at the moment. In this comment I'll document the other pieces that are needed to complete support for Wasm GC.

  * Semantics
    - Support final attribute for types, this should be pretty simple to implement (https://bugs.webkit.org/show_bug.cgi?id=250107)
    - Support GC types in globals, with suitable JS API conversions by calling extern.internalize & ref.cast (https://bugs.webkit.org/show_bug.cgi?id=252349)
    - Implement packed types (i8, i16) for structs (https://bugs.webkit.org/show_bug.cgi?id=246981)
    - Update element segments and any other table-related sections for GC & typed funcrefs (https://bugs.webkit.org/show_bug.cgi?id=251874)
    - Implement GC bulk array operations if they are added to the spec (https://github.com/WebAssembly/gc/pull/363)
    - Adjust ref.cast validation for upcoming spec changes (https://github.com/WebAssembly/gc/pull/359)
    - Implement br_on_cast and br_on_cast_fail (https://bugs.webkit.org/show_bug.cgi?id=254694)
    - Implement JS API casts at Wasm<->JS function call boundaries (https://bugs.webkit.org/show_bug.cgi?id=254693)
    - Add `nullexternref` and `nullfuncref` types (https://bugs.webkit.org/show_bug.cgi?id=254695)
    - Add new constant expressions that the GC proposal adds (https://bugs.webkit.org/show_bug.cgi?id=254696)
    - Align JSC with new implementation limits: https://github.com/WebAssembly/gc/pull/360

  * Optimization
    - Inline array access & allocation in JIT paths (https://bugs.webkit.org/show_bug.cgi?id=245405)
    - Inline struct allocations in JIT (https://bugs.webkit.org/show_bug.cgi?id=244388)
    - Explore optimizing space usage by putting struct/array data inside the JSObject butterfly
    - BBQJIT tier support

More generally, the proposal will likely do an opcode refactoring and renumbering before it is finalized and reaches stage 4, so that will require changes as well. Currently there is some divergence between the spec and implementations in terms of supported opcodes, so it may be necessary to temporarily support other opcodes to be able to run example Wasm GC code produced by toolchains.

Only a subset of GC spec tests are imported into JSC tests currently, as there are tests that depend on some of the open bugs above (e.g., array tests depend on array allocation constant expressions for globals).

Bug 253029 tracks specifically which open issues have to be fixed in order to import the array spec tests. (Maybe it's worth creating similar bugs for the other GC spec tests.)

Hi, everyone!

In about a week, there will be a Web Engines Hackfest. 
I'm trying to organize there a Breakout Session about Wasm GC in JavaScriptCore. 

Honestly, my knowledge of JavaScriptCore is minimal, but I'd love to know more about JSC and contribute some things. I believe I'm not alone. So I'm looking for help with organizing the session.

## Breakout Session

Preparation:
Since we are limited in time, ask participants to do a few things in advance:
* Read or watch materials about Wasm GC to become familiar.
  * TODO ASAP: collect materials.
* Check out and build JSC
  * TODO ASAP: instruction, likely instruction inside WebKit repo is enough.
* Something to read about JSC internals?
* Prepare a list of simple issues to look at during the session, preferably around Wasm GC

Agenda:
* Overview of Wasm implementation in JSC.
* Overview of Wasm GC (and related proposals) implementation details in JSC.
* Try to fix something simple, preferably around Wasm GC. (All together or in groups, or individually)
   * Make sure everyone built it in advance.
--

What do you think?
Do you think it's feasible?
Would you like to help with technical parts? (offline or online)

Any thoughts and suggestions are welcome. 
Thanks!

You can find my contacts at zal.im
--
Zalim