Changeset 263117 in webkit

Timestamp:

Jun 16, 2020, 2:30:06 PM (5 years ago)

Author:

mark.lam@apple.com

Message:

Make Options::useJIT() be the canonical source of truth on whether we should use the JIT.
​https://bugs.webkit.org/show_bug.cgi?id=212556
<rdar://problem/63780436>

Reviewed by Saam Barati.

Source/JavaScriptCore:

After r263055, Options::useJIT() always equals VM::canUseJIT() after canUseJIT()
has been computed. This patch removes VM::canUseJIT(), and replaces all calls to
it with calls to Options::useJIT().

In the old code, VM::canUseJIT() would assert s_canUseJITIsSet to ensure that
its clients will not access s_canUseJIT before it is initialized. We not have an
equivalent mechanism with Options. This is how it works:

1. There are 2 new Options flags in the g_jscConfig:

g_jscConfig.options.isFinalized
g_jscConfig.options.allowUnfinalizedAccess

g_jscConfig.options.isFinalized means that all Options values are finalized
i.e. initialization is complete and ready to be frozen in the Config.

g_jscConfig.options.isFinalized is set by initializeThreading() by calling
Options::finalize() once options initialization is complete.

g_jscConfig.options.allowUnfinalizedAccess is an allowance for clients to
access Options values before they are finalized. This is only needed in
options initialization code where Options values are read and written to.

g_jscConfig.options.allowUnfinalizedAccess is set and cleared using the
Options::AllowUnfinalizedAccessScope RAII object. The few pieces of code that
do options initialization will instantiate this scope object.

2. All Options accessors (e.g. Option::useJIT()) will now assert that either g_jscConfig.options.allowUnfinalizedAccess or g_jscConfig.options.isFinalized is set.

3. Since r263055, Options::recomputeDependentOptions() ensures that if useJIT() is false, all other JIT options (e.g. useBaselineJIT(), useDFTJIT(), useFTLJIT(), etc.) are also false. This patch also adds useBBQJIT() and useOMGJIT() to that list.

With this, checks for useJIT() are now redundant if there's also another JIT
option check, e.g. useRegExpJIT() or useDFGJIT(). When redundant, this patch
elides the useJIT() check (which used to be a VM::canUseJIT() check).

Ideally, we should also introduce a separate abstraction for requested option
values before finalization than the finalized option values that will be adopted
by the system. We'll do this as a separate exercise in a later patch.

• API/tests/ExecutionTimeLimitTest.cpp:

(testExecutionTimeLimit):

• API/tests/FunctionOverridesTest.cpp:

(testFunctionOverrides):

• API/tests/PingPongStackOverflowTest.cpp:

(testPingPongStackOverflow):

• Removed redundant calls to Options::initialize().

• API/tests/testapi.c:

(main):

• move the call to testExecutionTimeLimit() to after finalizeMultithreadedMultiVMExecutionTest() returns. This is because testExecutionTimeLimit() modifies JIT options at runtime as part of its testing. This can wreak havoc on the rest of the system that expects the options to be frozen. Ideally, we'll find a way for testExecutionTimeLimit() to do its work without changing JIT options, but that is not easy to do. For now, we'll just run it at the end as a workaround.

• bytecode/CodeBlock.cpp:

(JSC::CodeBlock::setNumParameters):

• bytecode/CodeBlock.h:

(JSC::CodeBlock::numberOfArgumentValueProfiles):
(JSC::CodeBlock::valueProfileForArgument):

• dfg/DFGCapabilities.cpp:

(JSC::DFG::isSupported):

• heap/Heap.cpp:

(JSC::Heap::completeAllJITPlans):
(JSC::Heap::iterateExecutingAndCompilingCodeBlocks):
(JSC::Heap::gatherScratchBufferRoots):
(JSC::Heap::removeDeadCompilerWorklistEntries):
(JSC::Heap::stopThePeriphery):
(JSC::Heap::suspendCompilerThreads):
(JSC::Heap::resumeCompilerThreads):
(JSC::Heap::addCoreConstraints):

• interpreter/AbstractPC.cpp:

(JSC::AbstractPC::AbstractPC):

• jit/JITThunks.cpp:

(JSC::JITThunks::ctiNativeCall):
(JSC::JITThunks::ctiNativeConstruct):
(JSC::JITThunks::ctiNativeTailCall):
(JSC::JITThunks::ctiNativeTailCallWithoutSavedTags):
(JSC::JITThunks::ctiInternalFunctionCall):
(JSC::JITThunks::ctiInternalFunctionConstruct):
(JSC::JITThunks::hostFunctionStub):

• jsc.cpp:

(CommandLine::parseArguments):
(jscmain):

• llint/LLIntEntrypoint.cpp:

(JSC::LLInt::setFunctionEntrypoint):
(JSC::LLInt::setEvalEntrypoint):
(JSC::LLInt::setProgramEntrypoint):
(JSC::LLInt::setModuleProgramEntrypoint):

• llint/LLIntSlowPaths.cpp:

(JSC::LLInt::shouldJIT):
(JSC::LLInt::jitCompileAndSetHeuristics):

• runtime/InitializeThreading.cpp:

(JSC::initializeThreading):

• runtime/JSCConfig.h:
• runtime/JSGlobalObject.cpp:

(JSC::JSGlobalObject::init):

• runtime/JSGlobalObject.h:

(JSC::JSGlobalObject::numberToStringWatchpointSet):

• runtime/Options.cpp:

(JSC::jitEnabledByDefault):
(JSC::disableAllJITOptions):

(JSC::Options::initialize):

• Move the calls to dumpOptionsIfNeeded() and ensureOptionsAreCoherent() to the end after all the options have been initialized because this where they belong.

(JSC::Options::finalize):
(JSC::Options::setOptions):
(JSC::Options::setOption):
(JSC::Options::dumpAllOptions):
(JSC::Options::ensureOptionsAreCoherent):

• runtime/Options.h:

(JSC::Options::AllowUnfinalizedAccessScope::AllowUnfinalizedAccessScope):
(JSC::Options::AllowUnfinalizedAccessScope::~AllowUnfinalizedAccessScope):

• runtime/OptionsList.h:
• runtime/RegExp.cpp:

(JSC::RegExp::compile):
(JSC::RegExp::compileMatchOnly):

• runtime/SymbolTable.h:

(JSC::SymbolTableEntry::isWatchable const):

• runtime/VM.cpp:

(JSC::VM::computeCanUseJIT):
(JSC::VM::VM):
(JSC::VM::getHostFunction):
(JSC::VM::getCTIInternalFunctionTrampolineFor):

• runtime/VM.h:

(JSC::VM::isInMiniMode):
(JSC::VM::canUseJIT): Deleted.

• wasm/WasmCapabilities.h:

(JSC::Wasm::isSupported):

• wasm/WasmOperations.cpp:

(JSC::Wasm::shouldJIT):

• wasm/WasmSlowPaths.cpp:

(JSC::LLInt::shouldJIT):

Source/WebCore:

• cssjit/SelectorCompiler.cpp:

(WebCore::SelectorCompiler::compileSelector):

Source/WebKit:

• WebProcess/WebProcess.cpp:

(WebKit::WebProcess::isJITEnabled):

Location:

trunk/Source

Files:

• JavaScriptCore/API/tests/ExecutionTimeLimitTest.cpp (modified) (2 diffs)
• JavaScriptCore/API/tests/FunctionOverridesTest.cpp (modified) (2 diffs)
• JavaScriptCore/API/tests/PingPongStackOverflowTest.cpp (modified) (2 diffs)
• JavaScriptCore/API/tests/testapi.c (modified) (3 diffs)
• JavaScriptCore/ChangeLog (modified) (1 diff)
• JavaScriptCore/bytecode/CodeBlock.cpp (modified) (1 diff)
• JavaScriptCore/bytecode/CodeBlock.h (modified) (3 diffs)
• JavaScriptCore/dfg/DFGCapabilities.cpp (modified) (2 diffs)
• JavaScriptCore/heap/Heap.cpp (modified) (9 diffs)
• JavaScriptCore/interpreter/AbstractPC.cpp (modified) (2 diffs)
• JavaScriptCore/jit/JITThunks.cpp (modified) (8 diffs)
• JavaScriptCore/jsc.cpp (modified) (2 diffs)
• JavaScriptCore/llint/LLIntEntrypoint.cpp (modified) (5 diffs)
• JavaScriptCore/llint/LLIntSlowPaths.cpp (modified) (3 diffs)
• JavaScriptCore/runtime/InitializeThreading.cpp (modified) (1 diff)
• JavaScriptCore/runtime/JSCConfig.h (modified) (1 diff)
• JavaScriptCore/runtime/JSGlobalObject.cpp (modified) (2 diffs)
• JavaScriptCore/runtime/JSGlobalObject.h (modified) (1 diff)
• JavaScriptCore/runtime/Options.cpp (modified) (10 diffs)
• JavaScriptCore/runtime/Options.h (modified) (3 diffs)
• JavaScriptCore/runtime/OptionsList.h (modified) (1 diff)
• JavaScriptCore/runtime/RegExp.cpp (modified) (3 diffs)
• JavaScriptCore/runtime/SymbolTable.h (modified) (1 diff)
• JavaScriptCore/runtime/VM.cpp (modified) (6 diffs)
• JavaScriptCore/runtime/VM.h (modified) (3 diffs)
• JavaScriptCore/wasm/WasmCapabilities.h (modified) (2 diffs)
• JavaScriptCore/wasm/WasmOperations.cpp (modified) (1 diff)
• JavaScriptCore/wasm/WasmSlowPaths.cpp (modified) (1 diff)
• WebCore/ChangeLog (modified) (1 diff)
• WebCore/cssjit/SelectorCompiler.cpp (modified) (2 diffs)
• WebKit/ChangeLog (modified) (1 diff)
• WebKit/WebProcess/WebProcess.cpp (modified) (1 diff)

trunk/Source/JavaScriptCore/API/tests/ExecutionTimeLimitTest.cpp

@@ -1 +1 @@
 /*
- * Copyright (C) 2015 Apple Inc. All rights reserved.
+ * Copyright (C) 2015-2020 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -129 +129 @@
 
     JSC::initializeThreading();
-    Options::initialize(); // Ensure options is initialized first.
 
     for (auto tierOptions : tierOptionsList) {

trunk/Source/JavaScriptCore/API/tests/FunctionOverridesTest.cpp

@@ -1 +1 @@
 /*
- * Copyright (C) 2016 Apple Inc. All rights reserved.
+ * Copyright (C) 2016-2020 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -39 +39 @@
 
     JSC::initializeThreading();
-    Options::initialize(); // Ensure options is initialized first.
 
     const char* oldFunctionOverrides = Options::functionOverrides();

trunk/Source/JavaScriptCore/API/tests/PingPongStackOverflowTest.cpp

@@ -1 +1 @@
 /*
- * Copyright (C) 2015 Apple Inc. All rights reserved.
+ * Copyright (C) 2015-2020 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -118 +118 @@
 
     JSC::initializeThreading();
-    Options::initialize(); // Ensure options is initialized first.
 
     auto origSoftReservedZoneSize = Options::softReservedZoneSize();

trunk/Source/JavaScriptCore/API/tests/testapi.c

@@ -1 +1 @@
 /*
- * Copyright (C) 2006-2019 Apple Inc.  All rights reserved.
+ * Copyright (C) 2006-2020 Apple Inc.  All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -2102 +2102 @@
     }
     failed |= testTypedArrayCAPI();
-    failed |= testExecutionTimeLimit();
     failed |= testFunctionOverrides();
     failed |= testGlobalContextWithFinalizer();
@@ -2157 +2156 @@
 
     failed = finalizeMultithreadedMultiVMExecutionTest() || failed;
+
+    // Don't run this till after the MultithreadedMultiVMExecutionTest has finished.
+    // This is because testExecutionTimeLimit() modifies JIT options at runtime
+    // as part of its testing. This can wreak havoc on the rest of the system that
+    // expects the options to be frozen. Ideally, we'll find a way for testExecutionTimeLimit()
+    // to do its work without changing JIT options, but that is not easy to do.
+    // For now, we'll just run it here at the end as a workaround.
+    failed |= testExecutionTimeLimit();
 
     if (failed) {

trunk/Source/JavaScriptCore/ChangeLog

@@ +1 @@
+2020-06-16  Mark Lam  <mark.lam@apple.com>
+
+        Make Options::useJIT() be the canonical source of truth on whether we should use the JIT.
+        https://bugs.webkit.org/show_bug.cgi?id=212556
+        <rdar://problem/63780436>
+
+        Reviewed by Saam Barati.
+
+        After r263055, Options::useJIT() always equals VM::canUseJIT() after canUseJIT()
+        has been computed.  This patch removes VM::canUseJIT(), and replaces all calls to
+        it with calls to Options::useJIT().
+
+        In the old code, VM::canUseJIT() would assert s_canUseJITIsSet to ensure that
+        its clients will not access s_canUseJIT before it is initialized.  We not have an
+        equivalent mechanism with Options.  This is how it works:
+
+        1. There are 2 new Options flags in the g_jscConfig:
+                g_jscConfig.options.isFinalized
+                g_jscConfig.options.allowUnfinalizedAccess
+
+           g_jscConfig.options.isFinalized means that all Options values are finalized
+           i.e. initialization is complete and ready to be frozen in the Config.
+
+           g_jscConfig.options.isFinalized is set by initializeThreading() by calling
+           Options::finalize() once options initialization is complete.
+
+           g_jscConfig.options.allowUnfinalizedAccess is an allowance for clients to
+           access Options values before they are finalized.  This is only needed in
+           options initialization code where Options values are read and written to.
+
+           g_jscConfig.options.allowUnfinalizedAccess is set and cleared using the
+           Options::AllowUnfinalizedAccessScope RAII object.  The few pieces of code that
+           do options initialization will instantiate this scope object.
+
+        2. All Options accessors (e.g. Option::useJIT()) will now assert that either
+           g_jscConfig.options.allowUnfinalizedAccess or g_jscConfig.options.isFinalized
+           is set.
+
+        3. Since r263055, Options::recomputeDependentOptions() ensures that if useJIT() is
+           false, all other JIT options (e.g. useBaselineJIT(), useDFTJIT(), useFTLJIT(),
+           etc.) are also false.  This patch also adds useBBQJIT() and useOMGJIT() to that
+           list.
+
+           With this, checks for useJIT() are now redundant if there's also another JIT
+           option check, e.g. useRegExpJIT() or useDFGJIT().  When redundant, this patch
+           elides the useJIT() check (which used to be a VM::canUseJIT() check).
+
+        Ideally, we should also introduce a separate abstraction for requested option
+        values before finalization than the finalized option values that will be adopted
+        by the system.  We'll do this as a separate exercise in a later patch.
+
+        * API/tests/ExecutionTimeLimitTest.cpp:
+        (testExecutionTimeLimit):
+        * API/tests/FunctionOverridesTest.cpp:
+        (testFunctionOverrides):
+        * API/tests/PingPongStackOverflowTest.cpp:
+        (testPingPongStackOverflow):
+        - Removed redundant calls to Options::initialize().
+
+        * API/tests/testapi.c:
+        (main):
+        - move the call to testExecutionTimeLimit() to after finalizeMultithreadedMultiVMExecutionTest()
+          returns.  This is because testExecutionTimeLimit() modifies JIT options at runtime
+          as part of its testing.  This can wreak havoc on the rest of the system that expects
+          the options to be frozen.  Ideally, we'll find a way for testExecutionTimeLimit() to
+          do its work without changing JIT options, but that is not easy to do.  For now,
+          we'll just run it at the end as a workaround.
+
+        * bytecode/CodeBlock.cpp:
+        (JSC::CodeBlock::setNumParameters):
+        * bytecode/CodeBlock.h:
+        (JSC::CodeBlock::numberOfArgumentValueProfiles):
+        (JSC::CodeBlock::valueProfileForArgument):
+        * dfg/DFGCapabilities.cpp:
+        (JSC::DFG::isSupported):
+        * heap/Heap.cpp:
+        (JSC::Heap::completeAllJITPlans):
+        (JSC::Heap::iterateExecutingAndCompilingCodeBlocks):
+        (JSC::Heap::gatherScratchBufferRoots):
+        (JSC::Heap::removeDeadCompilerWorklistEntries):
+        (JSC::Heap::stopThePeriphery):
+        (JSC::Heap::suspendCompilerThreads):
+        (JSC::Heap::resumeCompilerThreads):
+        (JSC::Heap::addCoreConstraints):
+        * interpreter/AbstractPC.cpp:
+        (JSC::AbstractPC::AbstractPC):
+        * jit/JITThunks.cpp:
+        (JSC::JITThunks::ctiNativeCall):
+        (JSC::JITThunks::ctiNativeConstruct):
+        (JSC::JITThunks::ctiNativeTailCall):
+        (JSC::JITThunks::ctiNativeTailCallWithoutSavedTags):
+        (JSC::JITThunks::ctiInternalFunctionCall):
+        (JSC::JITThunks::ctiInternalFunctionConstruct):
+        (JSC::JITThunks::hostFunctionStub):
+        * jsc.cpp:
+        (CommandLine::parseArguments):
+        (jscmain):
+        * llint/LLIntEntrypoint.cpp:
+        (JSC::LLInt::setFunctionEntrypoint):
+        (JSC::LLInt::setEvalEntrypoint):
+        (JSC::LLInt::setProgramEntrypoint):
+        (JSC::LLInt::setModuleProgramEntrypoint):
+        * llint/LLIntSlowPaths.cpp:
+        (JSC::LLInt::shouldJIT):
+        (JSC::LLInt::jitCompileAndSetHeuristics):
+        * runtime/InitializeThreading.cpp:
+        (JSC::initializeThreading):
+        * runtime/JSCConfig.h:
+        * runtime/JSGlobalObject.cpp:
+        (JSC::JSGlobalObject::init):
+        * runtime/JSGlobalObject.h:
+        (JSC::JSGlobalObject::numberToStringWatchpointSet):
+        * runtime/Options.cpp:
+        (JSC::jitEnabledByDefault):
+        (JSC::disableAllJITOptions):
+
+        (JSC::Options::initialize):
+        - Move the calls to dumpOptionsIfNeeded() and ensureOptionsAreCoherent() to the
+          end after all the options have been initialized because this where they belong.
+
+        (JSC::Options::finalize):
+        (JSC::Options::setOptions):
+        (JSC::Options::setOption):
+        (JSC::Options::dumpAllOptions):
+        (JSC::Options::ensureOptionsAreCoherent):
+        * runtime/Options.h:
+        (JSC::Options::AllowUnfinalizedAccessScope::AllowUnfinalizedAccessScope):
+        (JSC::Options::AllowUnfinalizedAccessScope::~AllowUnfinalizedAccessScope):
+        * runtime/OptionsList.h:
+        * runtime/RegExp.cpp:
+        (JSC::RegExp::compile):
+        (JSC::RegExp::compileMatchOnly):
+        * runtime/SymbolTable.h:
+        (JSC::SymbolTableEntry::isWatchable const):
+        * runtime/VM.cpp:
+        (JSC::VM::computeCanUseJIT):
+        (JSC::VM::VM):
+        (JSC::VM::getHostFunction):
+        (JSC::VM::getCTIInternalFunctionTrampolineFor):
+        * runtime/VM.h:
+        (JSC::VM::isInMiniMode):
+        (JSC::VM::canUseJIT): Deleted.
+        * wasm/WasmCapabilities.h:
+        (JSC::Wasm::isSupported):
+        * wasm/WasmOperations.cpp:
+        (JSC::Wasm::shouldJIT):
+        * wasm/WasmSlowPaths.cpp:
+        (JSC::LLInt::shouldJIT):
+
 2020-06-16  Robin Morisset  <rmorisset@apple.com>
 

trunk/Source/JavaScriptCore/bytecode/CodeBlock.cpp

@@ -949 +949 @@
     m_numParameters = newValue;
 
-    m_argumentValueProfiles = RefCountedArray<ValueProfile>(vm().canUseJIT() ? newValue : 0);
+    m_argumentValueProfiles = RefCountedArray<ValueProfile>(Options::useJIT() ? newValue : 0);
 }
 

trunk/Source/JavaScriptCore/bytecode/CodeBlock.h

@@ -1 +1 @@
 /*
- * Copyright (C) 2008-2019 Apple Inc. All rights reserved.
+ * Copyright (C) 2008-2020 Apple Inc. All rights reserved.
  * Copyright (C) 2008 Cameron Zwarich <cwzwarich@uwaterloo.ca>
  *
@@ -497 +497 @@
     {
         ASSERT(m_numParameters >= 0);
-        ASSERT(m_argumentValueProfiles.size() == static_cast<unsigned>(m_numParameters) || !vm().canUseJIT());
+        ASSERT(m_argumentValueProfiles.size() == static_cast<unsigned>(m_numParameters) || !Options::useJIT());
         return m_argumentValueProfiles.size();
     }
@@ -503 +503 @@
     ValueProfile& valueProfileForArgument(unsigned argumentIndex)
     {
-        ASSERT(vm().canUseJIT()); // This is only called from the various JIT compilers or places that first check numberOfArgumentValueProfiles before calling this.
+        ASSERT(Options::useJIT()); // This is only called from the various JIT compilers or places that first check numberOfArgumentValueProfiles before calling this.
         ValueProfile& result = m_argumentValueProfiles[argumentIndex];
         return result;

trunk/Source/JavaScriptCore/dfg/DFGCapabilities.cpp

@@ -1 +1 @@
 /*
- * Copyright (C) 2011-2017 Apple Inc. All rights reserved.
+ * Copyright (C) 2011-2020 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -37 +37 @@
 bool isSupported()
 {
-    return VM::canUseJIT() && Options::useDFGJIT() && MacroAssembler::supportsFloatingPoint();
+    return Options::useDFGJIT() && MacroAssembler::supportsFloatingPoint();
 }
 

trunk/Source/JavaScriptCore/heap/Heap.cpp

@@ -631 +631 @@
 void Heap::completeAllJITPlans()
 {
-    if (!VM::canUseJIT())
+    if (!Options::useJIT())
         return;
 #if ENABLE(JIT)
@@ -643 +643 @@
 {
     m_codeBlocks->iterateCurrentlyExecuting(func);
-    if (VM::canUseJIT())
+    if (Options::useJIT())
         DFG::iterateCodeBlocksForGC(m_vm, func);
 }
@@ -702 +702 @@
 {
 #if ENABLE(DFG_JIT)
-    if (!VM::canUseJIT())
+    if (!Options::useJIT())
         return;
     m_vm.gatherScratchBufferRoots(roots);
@@ -722 +722 @@
 {
 #if ENABLE(DFG_JIT)
-    if (!VM::canUseJIT())
+    if (!Options::useJIT())
         return;
     for (unsigned i = DFG::numberOfWorklists(); i--;)
@@ -1639 +1639 @@
 
 #if ENABLE(JIT)
-    if (VM::canUseJIT()) {
+    if (Options::useJIT()) {
         DeferGCForAWhile awhile(*this);
         if (JITWorklist::ensureGlobalWorklist().completeAllForVM(m_vm)
@@ -2155 +2155 @@
     // after we have suspended the ones that he had started before. That's not very expensive since
     // the worklists use AutomaticThreads anyway.
-    if (!VM::canUseJIT())
+    if (!Options::useJIT())
         return;
     for (unsigned i = DFG::numberOfWorklists(); i--;)
@@ -2366 +2366 @@
 {
 #if ENABLE(DFG_JIT)
-    if (!VM::canUseJIT())
+    if (!Options::useJIT())
         return;
     for (unsigned i = DFG::numberOfWorklists(); i--;)
@@ -2716 +2716 @@
                 slotVisitor.append(conservativeRoots);
             }
-            if (VM::canUseJIT()) {
+            if (Options::useJIT()) {
                 // JITStubRoutines must be visited after scanning ConservativeRoots since JITStubRoutines depend on the hook executed during gathering ConservativeRoots.
                 SetRootMarkReasonScope rootScope(slotVisitor, SlotVisitor::RootMarkReason::JITStubRoutines);
@@ -2824 +2824 @@
     
 #if ENABLE(DFG_JIT)
-    if (VM::canUseJIT()) {
+    if (Options::useJIT()) {
         m_constraintSet->add(
             "Dw", "DFG Worklists",

trunk/Source/JavaScriptCore/interpreter/AbstractPC.cpp

@@ -1 +1 @@
 /*
- * Copyright (C) 2012 Apple Inc. All rights reserved.
+ * Copyright (C) 2012-2020 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -38 +38 @@
     
 #if ENABLE(JIT)
-    if (VM::canUseJIT()) {
+    if (Options::useJIT()) {
         m_pointer = callFrame->returnPC().value();
         m_mode = JIT;

trunk/Source/JavaScriptCore/jit/JITThunks.cpp

@@ -1 +1 @@
 /*
- * Copyright (C) 2012-2019 Apple Inc. All rights reserved.
+ * Copyright (C) 2012-2020 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -93 +93 @@
 MacroAssemblerCodePtr<JITThunkPtrTag> JITThunks::ctiNativeCall(VM& vm)
 {
-    ASSERT(VM::canUseJIT());
+    ASSERT(Options::useJIT());
     return ctiStub(vm, nativeCallGenerator).code();
 }
@@ -99 +99 @@
 MacroAssemblerCodePtr<JITThunkPtrTag> JITThunks::ctiNativeConstruct(VM& vm)
 {
-    ASSERT(VM::canUseJIT());
+    ASSERT(Options::useJIT());
     return ctiStub(vm, nativeConstructGenerator).code();
 }
@@ -105 +105 @@
 MacroAssemblerCodePtr<JITThunkPtrTag> JITThunks::ctiNativeTailCall(VM& vm)
 {
-    ASSERT(VM::canUseJIT());
+    ASSERT(Options::useJIT());
     return ctiStub(vm, nativeTailCallGenerator).code();
 }
@@ -111 +111 @@
 MacroAssemblerCodePtr<JITThunkPtrTag> JITThunks::ctiNativeTailCallWithoutSavedTags(VM& vm)
 {
-    ASSERT(VM::canUseJIT());
+    ASSERT(Options::useJIT());
     return ctiStub(vm, nativeTailCallWithoutSavedTagsGenerator).code();
 }
@@ -117 +117 @@
 MacroAssemblerCodePtr<JITThunkPtrTag> JITThunks::ctiInternalFunctionCall(VM& vm)
 {
-    ASSERT(VM::canUseJIT());
+    ASSERT(Options::useJIT());
     return ctiStub(vm, internalFunctionCallGenerator).code();
 }
@@ -123 +123 @@
 MacroAssemblerCodePtr<JITThunkPtrTag> JITThunks::ctiInternalFunctionConstruct(VM& vm)
 {
-    ASSERT(VM::canUseJIT());
+    ASSERT(Options::useJIT());
     return ctiStub(vm, internalFunctionConstructGenerator).code();
 }
@@ -184 +184 @@
 {
     ASSERT(!isCompilationThread());    
-    ASSERT(VM::canUseJIT());
+    ASSERT(Options::useJIT());
 
     auto hostFunctionKey = std::make_tuple(function, constructor, name);

trunk/Source/JavaScriptCore/jsc.cpp

@@ -2926 +2926 @@
 void CommandLine::parseArguments(int argc, char** argv)
 {
+    Options::AllowUnfinalizedAccessScope scope;
     Options::initialize();
     
@@ -3242 +3243 @@
     CommandLine options(argc, argv);
 
-    processConfigFile(Options::configFile(), "jsc");
-    if (options.m_dump)
-        JSC::Options::dumpGeneratedBytecodes() = true;
+    {
+        Options::AllowUnfinalizedAccessScope scope;
+        processConfigFile(Options::configFile(), "jsc");
+        if (options.m_dump)
+            Options::dumpGeneratedBytecodes() = true;
+    }
 
     // Initialize JSC before getting VM.

trunk/Source/JavaScriptCore/llint/LLIntEntrypoint.cpp

@@ -1 +1 @@
 /*
- * Copyright (C) 2012-2018 Apple Inc. All rights reserved.
+ * Copyright (C) 2012-2020 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -41 +41 @@
     
 #if ENABLE(JIT)
-    if (VM::canUseJIT()) {
+    if (Options::useJIT()) {
         if (kind == CodeForCall) {
             static DirectJITCode* jitCode;
@@ -89 +89 @@
 {
 #if ENABLE(JIT)
-    if (VM::canUseJIT()) {
+    if (Options::useJIT()) {
         static NativeJITCode* jitCode;
         static std::once_flag onceKey;
@@ -112 +112 @@
 {
 #if ENABLE(JIT)
-    if (VM::canUseJIT()) {
+    if (Options::useJIT()) {
         static NativeJITCode* jitCode;
         static std::once_flag onceKey;
@@ -135 +135 @@
 {
 #if ENABLE(JIT)
-    if (VM::canUseJIT()) {
+    if (Options::useJIT()) {
         static NativeJITCode* jitCode;
         static std::once_flag onceKey;

trunk/Source/JavaScriptCore/llint/LLIntSlowPaths.cpp

@@ -1 +1 @@
 /*
- * Copyright (C) 2011-2019 Apple Inc. All rights reserved.
+ * Copyright (C) 2011-2020 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -358 +358 @@
         return false;
 
-    return VM::canUseJIT() && Options::useBaselineJIT();
+    return Options::useBaselineJIT();
 }
 
@@ -365 +365 @@
 {
     DeferGCForAWhile deferGC(vm.heap); // My callers don't set top callframe, so we don't want to GC here at all.
-    ASSERT(VM::canUseJIT());
+    ASSERT(Options::useJIT());
     
     codeBlock->updateAllValueProfilePredictions();

trunk/Source/JavaScriptCore/runtime/InitializeThreading.cpp

@@ -64 +64 @@
         WriteBarrierCounters::initialize();
 #endif
-
-        ExecutableAllocator::initialize();
-        VM::computeCanUseJIT();
-        if (!VM::canUseJIT()) {
-            Options::useJIT() = false;
-            Options::recomputeDependentOptions();
+        {
+            Options::AllowUnfinalizedAccessScope scope;
+            ExecutableAllocator::initialize();
+            VM::computeCanUseJIT();
+            if (!g_jscConfig.vm.canUseJIT) {
+                Options::useJIT() = false;
+                Options::recomputeDependentOptions();
+            }
         }
+        Options::finalize();
 
         if (Options::useSigillCrashAnalyzer())

trunk/Source/JavaScriptCore/runtime/JSCConfig.h

@@ -65 +65 @@
     bool initializeThreadingHasBeenCalled;
 
+    struct {
+#if ASSERT_ENABLED
+        bool canUseJITIsSet;
+#endif
+        bool canUseJIT;
+    } vm;
+
     ExecutableAllocator* executableAllocator;
     FixedVMPoolExecutableAllocator* fixedVMPoolExecutableAllocator;

trunk/Source/JavaScriptCore/runtime/JSGlobalObject.cpp

@@ -1 +1 @@
 /*
- * Copyright (C) 2007-2019 Apple Inc. All rights reserved.
+ * Copyright (C) 2007-2020 Apple Inc. All rights reserved.
  * Copyright (C) 2008 Cameron Zwarich (cwzwarich@uwaterloo.ca)
  *
@@ -1350 +1350 @@
 
     // Unfortunately, the prototype objects of the builtin objects can be touched from concurrent compilers. So eagerly initialize them only if we use JIT.
-    if (VM::canUseJIT()) {
+    if (Options::useJIT()) {
         this->booleanPrototype();
         this->numberPrototype();

trunk/Source/JavaScriptCore/runtime/JSGlobalObject.h

@@ -465 +465 @@
     InlineWatchpointSet& numberToStringWatchpointSet()
     {
-        RELEASE_ASSERT(VM::canUseJIT());
+        RELEASE_ASSERT(Options::useJIT());
         return m_numberToStringWatchpointSet;
     }

trunk/Source/JavaScriptCore/runtime/Options.cpp

@@ -220 +220 @@
 }
 
-static bool jitEnabledByDefault()
+static constexpr bool jitEnabledByDefault()
 {
     return is32Bit() || isAddress64Bit();
@@ -383 +383 @@
     Options::useDFGJIT() = false;
     Options::useFTLJIT() = false;
+    Options::useBBQJIT() = false;
+    Options::useOMGJIT() = false;
     Options::useDOMJIT() = false;
     Options::useRegExpJIT() = false;
@@ -568 +570 @@
         initializeOptionsOnceFlag,
         [] {
+            AllowUnfinalizedAccessScope scope;
+
             // Sanity check that options address computation is working.
             RELEASE_ASSERT(Options::addressOfOption(useKernTCSMID) ==  &Options::useKernTCSM());
@@ -632 +636 @@
             ASSERT(Options::criticalGCMemoryThreshold() > 0.0 && Options::criticalGCMemoryThreshold() < 1.0);
 
-            dumpOptionsIfNeeded();
-            ensureOptionsAreCoherent();
-
 #if HAVE(MACH_EXCEPTIONS)
             if (Options::useMachForExceptions())
@@ -664 +665 @@
                 (hwPhysicalCPUMax() >= 4) && (hwL3CacheSize() >= static_cast<int64_t>(6 * MB));
 #endif
-        });
+
+            // The following should only be done at the end after all options
+            // have been initialized.
+            dumpOptionsIfNeeded();
+            ensureOptionsAreCoherent();
+    });
 }
 
@@ -695 +701 @@
 }
 
+void Options::finalize()
+{
+    ASSERT(!g_jscConfig.options.allowUnfinalizedAccess);
+    g_jscConfig.options.isFinalized = true;
+}
+
 static bool isSeparator(char c)
 {
@@ -702 +714 @@
 bool Options::setOptions(const char* optionsStr)
 {
+    AllowUnfinalizedAccessScope scope;
     RELEASE_ASSERT(!g_jscConfig.isPermanentlyFrozen());
     Vector<char*> options;
@@ -867 +880 @@
 bool Options::setOption(const char* arg)
 {
+    AllowUnfinalizedAccessScope scope;
     bool success = setOptionWithoutAlias(arg);
     if (success)
@@ -877 +891 @@
     const char* separator, const char* optionHeader, const char* optionFooter, DumpDefaultsOption dumpDefaultsOption)
 {
+    AllowUnfinalizedAccessScope scope;
     if (title) {
         builder.append(title);
@@ -979 +994 @@
 void Options::ensureOptionsAreCoherent()
 {
+    AllowUnfinalizedAccessScope scope;
     bool coherent = true;
     if (!(useLLInt() || useJIT())) {

trunk/Source/JavaScriptCore/runtime/Options.h

@@ -30 +30 @@
 #include <stdint.h>
 #include <stdio.h>
+#include <wtf/ForbidHeapAllocation.h>
+#include <wtf/Noncopyable.h>
 #include <wtf/PrintStream.h>
 #include <wtf/StdLibExtras.h>
@@ -74 +76 @@
     };
 
+    class AllowUnfinalizedAccessScope {
+        WTF_MAKE_NONCOPYABLE(AllowUnfinalizedAccessScope);
+        WTF_FORBID_HEAP_ALLOCATION;
+    public:
+#if ASSERT_ENABLED
+        AllowUnfinalizedAccessScope()
+        {
+            if (!g_jscConfig.options.isFinalized) {
+                m_savedAllowUnfinalizedUse = g_jscConfig.options.allowUnfinalizedAccess;
+                g_jscConfig.options.allowUnfinalizedAccess = true;
+            }
+        }
+
+        ~AllowUnfinalizedAccessScope()
+        {
+            if (!g_jscConfig.options.isFinalized)
+                g_jscConfig.options.allowUnfinalizedAccess = m_savedAllowUnfinalizedUse;
+        }
+
+    private:
+        bool m_savedAllowUnfinalizedUse;
+#else
+        ALWAYS_INLINE AllowUnfinalizedAccessScope() = default;
+        ALWAYS_INLINE ~AllowUnfinalizedAccessScope() { }
+#endif
+    };
+
     JS_EXPORT_PRIVATE static void initialize();
+    static void finalize();
 
     // Parses a string of options where each option is of the format "--<optionName>=<value>"
@@ -91 +121 @@
 
 #define DECLARE_OPTION_ACCESSORS(type_, name_, defaultValue_, availability_, description_) \
-    ALWAYS_INLINE static OptionsStorage::type_& name_() { return g_jscConfig.options.name_; }  \
-    ALWAYS_INLINE static OptionsStorage::type_& name_##Default() { return g_jscConfig.options.name_##Default; }
+private: \
+    ALWAYS_INLINE static OptionsStorage::type_& name_##Default() { return g_jscConfig.options.name_##Default; } \
+public: \
+    ALWAYS_INLINE static OptionsStorage::type_& name_() \
+    { \
+        ASSERT(g_jscConfig.options.allowUnfinalizedAccess || g_jscConfig.options.isFinalized); \
+        return g_jscConfig.options.name_; \
+    }
 
     FOR_EACH_JSC_OPTION(DECLARE_OPTION_ACCESSORS)

trunk/Source/JavaScriptCore/runtime/OptionsList.h

@@ -619 +619 @@
     using GCLogLevel = GCLogging::Level;
 
+    bool allowUnfinalizedAccess;
+    bool isFinalized;
+
 #define DECLARE_OPTION(type_, name_, defaultValue_, availability_, description_) \
     type_ name_; \

trunk/Source/JavaScriptCore/runtime/RegExp.cpp

@@ -1 +1 @@
 /*
  *  Copyright (C) 1999-2001, 2004 Harri Porten (porten@kde.org)
- *  Copyright (c) 2007, 2008, 2016-2017 Apple Inc. All rights reserved.
+ *  Copyright (c) 2007-2020 Apple Inc. All rights reserved.
  *  Copyright (C) 2009 Torch Mobile, Inc.
  *  Copyright (C) 2010 Peter Varga (pvarga@inf.u-szeged.hu), University of Szeged
@@ -257 +257 @@
 
 #if ENABLE(YARR_JIT)
-    if (!pattern.containsUnsignedLengthPattern() && VM::canUseJIT() && Options::useRegExpJIT()
+    if (!pattern.containsUnsignedLengthPattern() && Options::useRegExpJIT()
 #if !ENABLE(YARR_JIT_BACKREFERENCES)
         && !pattern.m_containsBackreferences
@@ -321 +321 @@
 
 #if ENABLE(YARR_JIT)
-    if (!pattern.containsUnsignedLengthPattern() && VM::canUseJIT() && Options::useRegExpJIT()
+    if (!pattern.containsUnsignedLengthPattern() && Options::useRegExpJIT()
 #if !ENABLE(YARR_JIT_BACKREFERENCES)
         && !pattern.m_containsBackreferences

trunk/Source/JavaScriptCore/runtime/SymbolTable.h

@@ -232 +232 @@
     bool isWatchable() const
     {
-        return (m_bits & KindBitsMask) == ScopeKindBits && VM::canUseJIT();
+        return (m_bits & KindBitsMask) == ScopeKindBits && Options::useJIT();
     }
     

trunk/Source/JavaScriptCore/runtime/VM.cpp

@@ -197 +197 @@
 namespace JSC {
 
-#if ENABLE(JIT)
-#if ASSERT_ENABLED
-bool VM::s_canUseJITIsSet = false;
-#endif
-bool VM::s_canUseJIT = false;
-#endif
-
 Atomic<unsigned> VM::s_numberOfIDs;
 
@@ -251 +244 @@
 #if ENABLE(JIT)
 #if ASSERT_ENABLED
-    RELEASE_ASSERT(!s_canUseJITIsSet);
-    s_canUseJITIsSet = true;
-#endif
-    s_canUseJIT = VM::canUseAssembler() && Options::useJIT();
+    RELEASE_ASSERT(!g_jscConfig.vm.canUseJITIsSet);
+    g_jscConfig.vm.canUseJITIsSet = true;
+#endif
+    g_jscConfig.vm.canUseJIT = VM::canUseAssembler() && Options::useJIT();
 #endif
 }
@@ -468 +461 @@
 
     // Eagerly initialize constant cells since the concurrent compiler can access them.
-    if (canUseJIT()) {
+    if (Options::useJIT()) {
         sentinelMapBucket();
         sentinelSetBucket();
@@ -548 +541 @@
 #if ENABLE(JIT)
     // Make sure that any stubs that the JIT is going to use are initialized in non-compilation threads.
-    if (canUseJIT()) {
+    if (Options::useJIT()) {
         jitStubs = makeUnique<JITThunks>();
 #if ENABLE(FTL_JIT)
@@ -798 +791 @@
 {
 #if ENABLE(JIT)
-    if (canUseJIT()) {
+    if (Options::useJIT()) {
         return jitStubs->hostFunctionStub(
             *this, function, constructor,
@@ -838 +831 @@
 {
 #if ENABLE(JIT)
-    if (canUseJIT()) {
+    if (Options::useJIT()) {
         if (kind == CodeForCall)
             return jitStubs->ctiInternalFunctionCall(*this).retagged<JSEntryPtrTag>();

trunk/Source/JavaScriptCore/runtime/VM.h

@@ -790 +790 @@
     static bool isInMiniMode()
     {
-        return !canUseJIT() || Options::forceMiniVMMode();
+        return !Options::useJIT() || Options::forceMiniVMMode();
     }
 
@@ -799 +799 @@
 
     static void computeCanUseJIT();
-    ALWAYS_INLINE static bool canUseJIT()
-    {
-#if ENABLE(JIT)
-        ASSERT(s_canUseJITIsSet);
-        return s_canUseJIT;
-#else
-        return false;
-#endif
-    }
 
     SourceProviderCache* addSourceProviderCache(SourceProvider*);
@@ -1234 +1225 @@
     uintptr_t m_currentWeakRefVersion { 0 };
 
-#if ENABLE(JIT)
-#if ASSERT_ENABLED
-    JS_EXPORT_PRIVATE static bool s_canUseJITIsSet;
-#endif
-    JS_EXPORT_PRIVATE static bool s_canUseJIT;
-#endif
-
     VM* m_prev; // Required by DoublyLinkedListNode.
     VM* m_next; // Required by DoublyLinkedListNode.

trunk/Source/JavaScriptCore/wasm/WasmCapabilities.h

@@ -1 +1 @@
 /*
- * Copyright (C) 2019 Apple Inc. All rights reserved.
+ * Copyright (C) 2019-2020 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -34 +34 @@
 inline bool isSupported()
 {
-    return VM::canUseJIT() && Options::useWebAssembly();
+    return Options::useWebAssembly();
 }
 

trunk/Source/JavaScriptCore/wasm/WasmOperations.cpp

@@ -233 +233 @@
 inline bool shouldJIT(unsigned functionIndex)
 {
-    if (!VM::canUseJIT())
-        return false;
     if (!Options::useOMGJIT())
         return false;

trunk/Source/JavaScriptCore/wasm/WasmSlowPaths.cpp

@@ -80 +80 @@
 inline bool shouldJIT(Wasm::FunctionCodeBlock* codeBlock, RequiredWasmJIT requiredJIT = RequiredWasmJIT::Any)
 {
-    if (!VM::canUseJIT())
-        return false;
     if (requiredJIT == RequiredWasmJIT::OMG) {
         if (!Options::useOMGJIT())

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2020-06-16  Mark Lam  <mark.lam@apple.com>
+
+        Make Options::useJIT() be the canonical source of truth on whether we should use the JIT.
+        https://bugs.webkit.org/show_bug.cgi?id=212556
+        <rdar://problem/63780436>
+
+        Reviewed by Saam Barati.
+
+        * cssjit/SelectorCompiler.cpp:
+        (WebCore::SelectorCompiler::compileSelector):
+
 2020-06-16  Sam Weinig  <weinig@apple.com>
 

trunk/Source/WebCore/cssjit/SelectorCompiler.cpp

@@ -1 +1 @@
 /*
- * Copyright (C) 2013-2018 Apple Inc. All rights reserved.
+ * Copyright (C) 2013-2020 Apple Inc. All rights reserved.
  * Copyright (C) 2014 Yusuke Suzuki <utatane.tea@gmail.com>
  *
@@ -401 +401 @@
     ASSERT(compiledSelector.status == SelectorCompilationStatus::NotCompiled);
 
-    if (!JSC::VM::canUseJIT()) {
+    if (!JSC::Options::useJIT()) {
         compiledSelector.status = SelectorCompilationStatus::CannotCompile;
         return;

trunk/Source/WebKit/ChangeLog

@@ +1 @@
+2020-06-16  Mark Lam  <mark.lam@apple.com>
+
+        Make Options::useJIT() be the canonical source of truth on whether we should use the JIT.
+        https://bugs.webkit.org/show_bug.cgi?id=212556
+        <rdar://problem/63780436>
+
+        Reviewed by Saam Barati.
+
+        * WebProcess/WebProcess.cpp:
+        (WebKit::WebProcess::isJITEnabled):
+
 2020-06-16  David Kilzer  <ddkilzer@apple.com>
 

trunk/Source/WebKit/WebProcess/WebProcess.cpp

@@ -1002 +1002 @@
 void WebProcess::isJITEnabled(CompletionHandler<void(bool)>&& completionHandler)
 {
-    completionHandler(JSC::VM::canUseJIT());
+    completionHandler(JSC::Options::useJIT());
 }