Let’s consider whether it is safe, prove it’s safety, and remove it if we can!
Created attachment 342729 [details] Patch
Created attachment 342731 [details] Patch
Comment on attachment 342731 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=342731&action=review r=me > Source/JavaScriptCore/runtime/JSObject.cpp:1350 > + // Our following operations are sequentially executed by using storeStoreFence. Our following => The mutator performs the following > Source/JavaScriptCore/runtime/JSObject.cpp:1402 > + WTF::storeStoreFence(); You only need this for mutatorShouldBeFenced, right?
Comment on attachment 342731 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=342731&action=review >> Source/JavaScriptCore/runtime/JSObject.cpp:1402 >> + WTF::storeStoreFence(); > > You only need this for mutatorShouldBeFenced, right? Yeah, we can guard this with it.
Committed r234065: <https://trac.webkit.org/changeset/234065>
<rdar://problem/42444258>