Skip to content

[JSC] Do not convert to DirectConstruct / DirectCall when it is bound function or it is a non constructible constructor#49102

Merged
webkit-commit-queue merged 1 commit intoWebKit:mainfrom
Constellation:eng/JSC-Do-not-convert-to-DirectConstruct-DirectCall-when-it-is-bound-function-or-it-is-a-non-constructible-constructor
Aug 8, 2025
Merged

[JSC] Do not convert to DirectConstruct / DirectCall when it is bound function or it is a non constructible constructor#49102
webkit-commit-queue merged 1 commit intoWebKit:mainfrom
Constellation:eng/JSC-Do-not-convert-to-DirectConstruct-DirectCall-when-it-is-bound-function-or-it-is-a-non-constructible-constructor

Conversation

@Constellation
Copy link
Member

@Constellation Constellation commented Aug 8, 2025
edited by webkit-early-warning-system
Loading

4cc881d

[JSC] Do not convert to DirectConstruct / DirectCall when it is bound function or it is a non constructible constructor
https://bugs.webkit.org/show_bug.cgi?id=297101
rdar://157813555

Reviewed by Mark Lam.

We should avoid converting this Call to DirectCall / DirectConstruct
when they are not done in strength reduction phase.

* Source/JavaScriptCore/dfg/DFGByteCodeParser.cpp:
(JSC::DFG::ByteCodeParser::handleInlining):

Canonical link: https://commits.webkit.org/298376@main

7016ad3

Misc iOS, visionOS, tvOS & watchOS macOS Linux Windows Apple Internal
✅ 🧪 style ✅ 🛠 ios ✅ 🛠 mac ✅ 🛠 wpe ✅ 🛠 win ✅ 🛠 ios-apple
✅ 🛠 ios-sim ✅ 🛠 mac-AS-debug ✅ 🧪 wpe-wk2 🧪 win-tests ✅ 🛠 mac-apple
✅ 🧪 webkitperl ✅ 🧪 ios-wk2 ✅ 🧪 api-mac ✅ 🧪 api-wpe
✅ 🧪 ios-wk2-wpt ✅ 🧪 mac-wk1 ✅ 🛠 wpe-cairo
✅ 🛠 🧪 jsc ✅ 🧪 api-ios ✅ 🧪 mac-wk2 ✅ 🛠 gtk
✅ 🛠 🧪 jsc-arm64 ✅ 🛠 vision ✅ 🧪 mac-AS-debug-wk2 ✅ 🧪 gtk-wk2
✅ 🛠 vision-sim ✅ 🧪 mac-wk2-stress ✅ 🧪 api-gtk
✅ 🧪 vision-wk2 ✅ 🧪 mac-intel-wk2 🛠 playstation
✅ 🛠 🧪 unsafe-merge ✅ 🛠 tv ✅ 🛠 mac-safer-cpp 🛠 jsc-armv7
✅ 🛠 tv-sim 🧪 jsc-armv7-tests
✅ 🛠 watch
✅ 🛠 watch-sim

@Constellation Constellation requested a review from a team as a code owner August 8, 2025 04:22
@Constellation Constellation self-assigned this Aug 8, 2025
@Constellation Constellation added the JavaScriptCore For bugs in JavaScriptCore, the JS engine used by WebKit, other than kxmlcore issues. label Aug 8, 2025
@webkit-early-warning-system
Copy link
Collaborator

webkit-early-warning-system commented Aug 8, 2025
edited
Loading

EWS run on current version of this PR (hash 7016ad3)

Details

Misc iOS, visionOS, tvOS & watchOS macOS Linux Windows Apple Internal
✅ 🧪 style ✅ 🛠 ios ✅ 🛠 mac ✅ 🛠 wpe ✅ 🛠 win ✅ 🛠 ios-apple
✅ 🛠 ios-sim ✅ 🛠 mac-AS-debug ✅ 🧪 wpe-wk2 🧪 win-tests ✅ 🛠 mac-apple
✅ 🧪 webkitperl ✅ 🧪 ios-wk2 ✅ 🧪 api-mac ✅ 🧪 api-wpe
✅ 🧪 ios-wk2-wpt ✅ 🧪 mac-wk1 ✅ 🛠 wpe-cairo
✅ 🛠 🧪 jsc ✅ 🧪 api-ios ✅ 🧪 mac-wk2 ✅ 🛠 gtk
✅ 🛠 🧪 jsc-arm64 ✅ 🛠 vision ✅ 🧪 mac-AS-debug-wk2 ✅ 🧪 gtk-wk2
✅ 🛠 vision-sim ✅ 🧪 mac-wk2-stress ✅ 🧪 api-gtk
✅ 🧪 vision-wk2 ✅ 🧪 mac-intel-wk2 🛠 playstation
✅ 🛠 🧪 unsafe-merge ✅ 🛠 tv ✅ 🛠 mac-safer-cpp 🛠 jsc-armv7
✅ 🛠 tv-sim 🧪 jsc-armv7-tests
✅ 🛠 watch
✅ 🛠 watch-sim

MenloDorian
MenloDorian approved these changes Aug 8, 2025
View reviewed changes
Copy link

@MenloDorian MenloDorian left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

r=me

@Constellation Constellation added the unsafe-merge-queue Applied to send a pull request to merge-queue, but skip building and testing label Aug 8, 2025
@Constellation
[JSC] Do not convert to DirectConstruct / DirectCall when it is bound…
4cc881d 
… function or it is a non constructible constructor

https://bugs.webkit.org/show_bug.cgi?id=297101
rdar://157813555

Reviewed by Mark Lam.

We should avoid converting this Call to DirectCall / DirectConstruct
when they are not done in strength reduction phase.

* Source/JavaScriptCore/dfg/DFGByteCodeParser.cpp:
(JSC::DFG::ByteCodeParser::handleInlining):

Canonical link: https://commits.webkit.org/298376@main
@webkit-commit-queue webkit-commit-queue force-pushed the eng/JSC-Do-not-convert-to-DirectConstruct-DirectCall-when-it-is-bound-function-or-it-is-a-non-constructible-constructor branch from 7016ad3 to 4cc881d Compare August 8, 2025 07:21
@webkit-commit-queue
Copy link
Collaborator

webkit-commit-queue commented Aug 8, 2025

Committed 298376@main (4cc881d): https://commits.webkit.org/298376@main

Reviewed commits have been landed. Closing PR #49102 and removing active labels.

@webkit-commit-queue webkit-commit-queue merged commit 4cc881d into WebKit:main Aug 8, 2025
@webkit-commit-queue webkit-commit-queue removed the unsafe-merge-queue Applied to send a pull request to merge-queue, but skip building and testing label Aug 8, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@MenloDorian MenloDorian MenloDorian approved these changes

Assignees

@Constellation Constellation

Labels

JavaScriptCore For bugs in JavaScriptCore, the JS engine used by WebKit, other than kxmlcore issues.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@Constellation @webkit-early-warning-system @webkit-commit-queue @MenloDorian