<rdar://problem/40453623>

Created attachment 355704 [details] Patch

Comment on attachment 355704 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=355704&action=review r=me > Source/WebCore/Modules/indexeddb/server/UniqueIDBDatabase.cpp:955 > + static NeverDestroyed<Strong<JSDOMGlobalObject>> domGlobalObject(databaseThreadVM(), JSDOMGlobalObject::create(databaseThreadVM(), JSDOMGlobalObject::createStructure(databaseThreadVM(), jsNull()), normalWorld(databaseThreadVM()))); It's not necessary in this patch, but I think it would be nice to write a follow-up patch that eventually deletes this global object and its VM. We use this global object as a temporary to enable serializing and deserializing JavaScript values. It's wasteful to keep it and its VM allocated forever. One strategy is to create an object that owns the VM and global object, and make that object reference counted and owned by each UniqueIDBDatabase. That way, when the last UniqueIDBDatabase is closed, we can free the VM. So you would have something like: class IDBSerializationContext : public WeakPtrFactory<IDBSerializationContext>, public RefCounted<IDBSerializationContext> { ... private: std::unique_ptr<VM> m_vm; Strong<JSDOMGlobalObject> m_globalObject; }; IDBSerializationContext& sharedIDBSerializationContext() { static WeakPtr<IDBSerializationContext> s_context; if (!s_context) { ... } return s_context; } > Source/WebCore/bindings/js/JSDOMWrapper.cpp:44 > + ASSERT(globalObject.classInfo() == JSDOMGlobalObject::info() || scriptExecutionContext() || globalObject.classInfo() == JSRemoteDOMWindow::info()); Probably best to write this as: ASSERT(scriptExecutionContext() || globalObject.classInfo() == JSRemoteDOMWindow::info() || globalObject.classInfo() == JSDOMGlobalObject::info()); The primary thing we're trying to assert is that we have a script execution context. After that come two exceptions to the general rule. Best to put the general rule first.

Comment on attachment 355704 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=355704&action=review >> Source/WebCore/Modules/indexeddb/server/UniqueIDBDatabase.cpp:955 >> + static NeverDestroyed<Strong<JSDOMGlobalObject>> domGlobalObject(databaseThreadVM(), JSDOMGlobalObject::create(databaseThreadVM(), JSDOMGlobalObject::createStructure(databaseThreadVM(), jsNull()), normalWorld(databaseThreadVM()))); > > It's not necessary in this patch, but I think it would be nice to write a follow-up patch that eventually deletes this global object and its VM. We use this global object as a temporary to enable serializing and deserializing JavaScript values. It's wasteful to keep it and its VM allocated forever. > > One strategy is to create an object that owns the VM and global object, and make that object reference counted and owned by each UniqueIDBDatabase. That way, when the last UniqueIDBDatabase is closed, we can free the VM. > > So you would have something like: > > class IDBSerializationContext : public WeakPtrFactory<IDBSerializationContext>, public RefCounted<IDBSerializationContext> { > ... > private: > std::unique_ptr<VM> m_vm; > Strong<JSDOMGlobalObject> m_globalObject; > }; > > IDBSerializationContext& sharedIDBSerializationContext() > { > static WeakPtr<IDBSerializationContext> s_context; > if (!s_context) { > ... > } > return s_context; > } Sure, will do. >> Source/WebCore/bindings/js/JSDOMWrapper.cpp:44 >> + ASSERT(globalObject.classInfo() == JSDOMGlobalObject::info() || scriptExecutionContext() || globalObject.classInfo() == JSRemoteDOMWindow::info()); > > Probably best to write this as: > > ASSERT(scriptExecutionContext() || globalObject.classInfo() == JSRemoteDOMWindow::info() || globalObject.classInfo() == JSDOMGlobalObject::info()); > > The primary thing we're trying to assert is that we have a script execution context. After that come two exceptions to the general rule. Best to put the general rule first. JSDOMObject invokes JSDOMGlobalObject::scriptExecutionContext(), which checks if JSDOMGlobalObject inherits from JS*Window or JSWorker* or JSWorker* or JSWorklet* with release assert. I put globalObject.classInfo() == JSDOMGlobalObject::info() before scriptExecutionContext() to avoid removing the release assertion, as creating a JSDOMGlobalObject without window or worker is a special case that should not happen elsewhere. I can change the order here and remove the assertion in scriptExecutionContext().

> JSDOMObject invokes JSDOMGlobalObject::scriptExecutionContext(), which > checks if JSDOMGlobalObject inherits from JS*Window or JSWorker* or > JSWorker* or JSWorklet* with release assert. I put globalObject.classInfo() > == JSDOMGlobalObject::info() before scriptExecutionContext() to avoid > removing the release assertion, as creating a JSDOMGlobalObject without > window or worker is a special case that should not happen elsewhere. I can > change the order here and remove the assertion in scriptExecutionContext(). OK, let's leave this as is for now. Perhaps later we'll decide that IDB should really use JSWorkerGlobalScope instead of JSDOMGlobalObject.

Comment on attachment 355704 [details] Patch Clearing flags on attachment: 355704 Committed r238677: <https://trac.webkit.org/changeset/238677>

All reviewed patches have been landed. Closing bug.