Changeset 34947 in webkit for trunk/JavaScriptCore

Timestamp:

Jul 2, 2008, 12:00:53 AM (17 years ago)

Author:

[email protected]

Message:

Reviewed by Darin.

Disable JSLock for per-thread contexts.

No change on SunSpider.

• kjs/JSGlobalData.h:
• kjs/JSGlobalData.cpp: (KJS::JSGlobalData::JSGlobalData): (KJS::JSGlobalData::sharedInstance): Added isSharedInstance as a better way to tell whether the instance is shared (legacy).

• kjs/JSLock.cpp: (KJS::createJSLockCount): (KJS::JSLock::lockCount): (KJS::setLockCount): (KJS::JSLock::JSLock): (KJS::JSLock::lock): (KJS::JSLock::unlock): (KJS::JSLock::currentThreadIsHoldingLock): (KJS::JSLock::DropAllLocks::DropAllLocks): (KJS::JSLock::DropAllLocks::~DropAllLocks):
• kjs/JSLock.h: (KJS::JSLock::JSLock): (KJS::JSLock::~JSLock): Made JSLock and JSLock::DropAllLocks constructors take a parameter to decide whether to actually lock a mutex, or only to increment recursion count. We cannot turn it into no-op if we want to keep existing assertions working. Made recursion count per-thread, now that locks may not lock.

• API/JSBase.cpp: (JSEvaluateScript): Take JSLock after casting JSContextRef to ExecState* (which doesn't need locking in any case), so that a decision whether to actually lock can be made. (JSCheckScriptSyntax): Ditto. (JSGarbageCollect): Only lock while collecting the shared heap, not the per-thread one.

• API/JSObjectRef.cpp: (JSClassCreate): Don't lock, as there is no reason to. (JSClassRetain): Ditto. (JSClassRelease): Ditto. (JSPropertyNameArrayRetain): Ditto. (JSPropertyNameArrayRelease): Only lock while deleting the array, as that may touch identifier table. (JSPropertyNameAccumulatorAddName): Adding a string also involves an identifier table lookup, and possibly modification.

• API/JSStringRef.cpp: (JSStringCreateWithCharacters): (JSStringCreateWithUTF8CString): (JSStringRetain): (JSStringRelease): (JSStringGetUTF8CString): (JSStringIsEqual):
• API/JSStringRefCF.cpp: (JSStringCreateWithCFString): JSStringRef operations other than releasing do not need locking.

• VM/Machine.cpp: Don't include unused JSLock.h.

• kjs/CollectorHeapIntrospector.cpp: (KJS::CollectorHeapIntrospector::statistics): Don't take the lock for real, as heap introspection pauses the process anyway. It seems that the existing code could cause deadlocks.

• kjs/Shell.cpp: (functionGC): (main): (jscmain): The test tool uses a per-thread context, so no real locking is required.

• kjs/collector.h: (KJS::Heap::setGCProtectNeedsLocking): Optionally protect m_protectedValues access with a per-heap mutex. This is only needed for WebCore Database code, which violates the "no data migration between threads" by using ProtectedPtr on a background thread. (KJS::Heap::isShared): Keep a shared flag here, as well.

• kjs/protect.h: (KJS::::ProtectedPtr): (KJS::::~ProtectedPtr): (KJS::::operator): (KJS::operator==): (KJS::operator!=): ProtectedPtr is ony used from WebCore, so it doesn't need to take JSLock. An assertion in Heap::protect/unprotect guards agains possible future unlocked uses of ProtectedPtr in JSC.

• kjs/collector.cpp: (KJS::Heap::Heap): Initialize m_isShared. (KJS::Heap::~Heap): No need to lock for real during destruction, but must keep assertions in sweep() working. (KJS::destroyRegisteredThread): Registered thread list is only accessed for shared heap, so locking is always needed here. (KJS::Heap::registerThread): Ditto. (KJS::Heap::markStackObjectsConservatively): Use m_isShared instead of comparing to a shared instance for a small speedup. (KJS::Heap::setGCProtectNeedsLocking): Create m_protectedValuesMutex. There is currently no way to undo this - and ideally, Database code will be fixed to lo longer require this quirk. (KJS::Heap::protect): Take m_protectedValuesMutex (if it exists) while accessing m_protectedValues. (KJS::Heap::unprotect): Ditto. (KJS::Heap::markProtectedObjects): Ditto. (KJS::Heap::protectedGlobalObjectCount): Ditto. (KJS::Heap::protectedObjectCount): Ditto. (KJS::Heap::protectedObjectTypeCounts): Ditto.

• kjs/ustring.cpp:
• kjs/ustring.h: Don't include JSLock.h, which is no longer used here. As a result, an explicit include had to be added to many files in JavaScriptGlue, WebCore and WebKit.

• kjs/JSGlobalObject.cpp: (KJS::JSGlobalObject::init):
• API/JSCallbackConstructor.cpp: (KJS::constructJSCallback):
• API/JSCallbackFunction.cpp: (KJS::JSCallbackFunction::call):
• API/JSCallbackObjectFunctions.h: (KJS::::init): (KJS::::getOwnPropertySlot): (KJS::::put): (KJS::::deleteProperty): (KJS::::construct): (KJS::::hasInstance): (KJS::::call): (KJS::::getPropertyNames): (KJS::::toNumber): (KJS::::toString): (KJS::::staticValueGetter): (KJS::::callbackGetter):
• API/JSContextRef.cpp: (JSGlobalContextCreate): (JSGlobalContextRetain): (JSGlobalContextRelease):
• API/JSValueRef.cpp: (JSValueIsEqual): (JSValueIsStrictEqual): (JSValueIsInstanceOfConstructor): (JSValueMakeNumber): (JSValueMakeString): (JSValueToNumber): (JSValueToStringCopy): (JSValueToObject): (JSValueProtect): (JSValueUnprotect):
• JavaScriptCore.exp:
• kjs/PropertyNameArray.h: (KJS::PropertyNameArray::globalData):
• kjs/interpreter.cpp: (KJS::Interpreter::checkSyntax): (KJS::Interpreter::evaluate): Pass a parameter to JSLock/JSLock::DropAllLocks to decide whether the lock needs to be taken.

Location:

trunk/JavaScriptCore

Files:

• API/JSBase.cpp (modified) (3 diffs)
• API/JSCallbackConstructor.cpp (modified) (2 diffs)
• API/JSCallbackFunction.cpp (modified) (2 diffs)
• API/JSCallbackObjectFunctions.h (modified) (15 diffs)
• API/JSContextRef.cpp (modified) (3 diffs)
• API/JSObjectRef.cpp (modified) (19 diffs)
• API/JSStringRef.cpp (modified) (6 diffs)
• API/JSStringRefCF.cpp (modified) (1 diff)
• API/JSValueRef.cpp (modified) (8 diffs)
• ChangeLog (modified) (2 diffs)
• JavaScriptCore.exp (modified) (2 diffs)
• VM/Machine.cpp (modified) (1 diff)
• kjs/CollectorHeapIntrospector.cpp (modified) (1 diff)
• kjs/JSGlobalData.cpp (modified) (3 diffs)
• kjs/JSGlobalData.h (modified) (1 diff)
• kjs/JSGlobalObject.cpp (modified) (1 diff)
• kjs/JSLock.cpp (modified) (7 diffs)
• kjs/JSLock.h (modified) (2 diffs)
• kjs/PropertyNameArray.h (modified) (1 diff)
• kjs/Shell.cpp (modified) (3 diffs)
• kjs/collector.cpp (modified) (14 diffs)
• kjs/collector.h (modified) (5 diffs)
• kjs/interpreter.cpp (modified) (2 diffs)
• kjs/protect.h (modified) (6 diffs)
• kjs/ustring.cpp (modified) (1 diff)
• kjs/ustring.h (modified) (1 diff)

trunk/JavaScriptCore/API/JSBase.cpp

@@ -41 +41 @@
 JSValueRef JSEvaluateScript(JSContextRef ctx, JSStringRef script, JSObjectRef thisObject, JSStringRef sourceURL, int startingLineNumber, JSValueRef* exception)
 {
-    JSLock lock;
     ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
     JSObject* jsThisObject = toJS(thisObject);
     UString::Rep* scriptRep = toJS(script);
@@ -66 +66 @@
 bool JSCheckScriptSyntax(JSContextRef ctx, JSStringRef script, JSStringRef sourceURL, int startingLineNumber, JSValueRef* exception)
 {
-    JSLock lock;
-
     ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
     UString::Rep* scriptRep = toJS(script);
     UString::Rep* sourceURLRep = sourceURL ? toJS(sourceURL) : &UString::Rep::null;
@@ -90 +89 @@
     // and it may actually be garbage for some clients (most likely, because of JSGarbageCollect being called after releasing the context).
 
-    JSLock lock;
-
     // FIXME: It would be good to avoid creating a JSGlobalData instance if it didn't exist for this thread yet.
     Heap* heap = JSGlobalData::threadInstance().heap;
     if (!heap->isBusy())
         heap->collect();
+
+    JSLock lock(true);
 
     // FIXME: Similarly, we shouldn't create a shared instance here.

trunk/JavaScriptCore/API/JSCallbackConstructor.cpp

@@ -30 +30 @@
 #include "APICast.h"
 #include <kjs/JSGlobalObject.h>
+#include <kjs/JSLock.h>
 #include <kjs/ObjectPrototype.h>
 #include <wtf/Vector.h>
@@ -69 +70 @@
             arguments[i] = toRef(args[i]);
             
-        JSLock::DropAllLocks dropAllLocks;
+        JSLock::DropAllLocks dropAllLocks(exec);
         return toJS(callback(ctx, constructorRef, argumentCount, arguments.data(), toRef(exec->exceptionSlot())));
     }

trunk/JavaScriptCore/API/JSCallbackFunction.cpp

@@ -33 +33 @@
 #include "FunctionPrototype.h"
 #include <kjs/JSGlobalObject.h>
+#include <kjs/JSLock.h>
 #include <wtf/Vector.h>
 
@@ -63 +64 @@
         arguments[i] = toRef(args[i]);
 
-    JSLock::DropAllLocks dropAllLocks;
+    JSLock::DropAllLocks dropAllLocks(exec);
     return toJS(static_cast<JSCallbackFunction*>(functionObject)->m_callback(execRef, functionRef, thisObjRef, argumentCount, arguments.data(), toRef(exec->exceptionSlot())));
 }

trunk/JavaScriptCore/API/JSCallbackObjectFunctions.h

@@ -30 +30 @@
 #include "JSClassRef.h"
 #include "JSGlobalObject.h"
+#include "JSLock.h"
 #include "JSObjectRef.h"
 #include "JSString.h"
@@ -72 +73 @@
     // initialize from base to derived
     for (int i = static_cast<int>(initRoutines.size()) - 1; i >= 0; i--) {
-        JSLock::DropAllLocks dropAllLocks;
+        JSLock::DropAllLocks dropAllLocks(exec);
         JSObjectInitializeCallback initialize = initRoutines[i];
         initialize(toRef(exec), toRef(this));
@@ -110 +111 @@
         // optional optimization to bypass getProperty in cases when we only need to know if the property exists
         if (JSObjectHasPropertyCallback hasProperty = jsClass->hasProperty) {
-            JSLock::DropAllLocks dropAllLocks;
+            JSLock::DropAllLocks dropAllLocks(exec);
             if (hasProperty(ctx, thisRef, propertyNameRef)) {
                 slot.setCustom(this, callbackGetter);
@@ -116 +117 @@
             }
         } else if (JSObjectGetPropertyCallback getProperty = jsClass->getProperty) {
-            JSLock::DropAllLocks dropAllLocks;
+            JSLock::DropAllLocks dropAllLocks(exec);
             if (JSValueRef value = getProperty(ctx, thisRef, propertyNameRef, toRef(exec->exceptionSlot()))) {
                 // cache the value so we don't have to compute it again
@@ -160 +161 @@
     for (JSClassRef jsClass = m_class; jsClass; jsClass = jsClass->parentClass) {
         if (JSObjectSetPropertyCallback setProperty = jsClass->setProperty) {
-            JSLock::DropAllLocks dropAllLocks;
+            JSLock::DropAllLocks dropAllLocks(exec);
             if (setProperty(ctx, thisRef, propertyNameRef, valueRef, toRef(exec->exceptionSlot())))
                 return;
@@ -170 +171 @@
                     return;
                 if (JSObjectSetPropertyCallback setProperty = entry->setProperty) {
-                    JSLock::DropAllLocks dropAllLocks;
+                    JSLock::DropAllLocks dropAllLocks(exec);
                     if (setProperty(ctx, thisRef, propertyNameRef, valueRef, toRef(exec->exceptionSlot())))
                         return;
@@ -206 +207 @@
     for (JSClassRef jsClass = m_class; jsClass; jsClass = jsClass->parentClass) {
         if (JSObjectDeletePropertyCallback deleteProperty = jsClass->deleteProperty) {
-            JSLock::DropAllLocks dropAllLocks;
+            JSLock::DropAllLocks dropAllLocks(exec);
             if (deleteProperty(ctx, thisRef, propertyNameRef, toRef(exec->exceptionSlot())))
                 return true;
@@ -261 +262 @@
             for (int i = 0; i < argumentCount; i++)
                 arguments[i] = toRef(args[i]);
-            JSLock::DropAllLocks dropAllLocks;
+            JSLock::DropAllLocks dropAllLocks(exec);
             return toJS(callAsConstructor(execRef, constructorRef, argumentCount, arguments.data(), toRef(exec->exceptionSlot())));
         }
@@ -288 +289 @@
     for (JSClassRef jsClass = m_class; jsClass; jsClass = jsClass->parentClass)
         if (JSObjectHasInstanceCallback hasInstance = jsClass->hasInstance) {
-            JSLock::DropAllLocks dropAllLocks;
+            JSLock::DropAllLocks dropAllLocks(exec);
             return hasInstance(execRef, thisRef, toRef(value), toRef(exec->exceptionSlot()));
         }
@@ -321 +322 @@
             for (int i = 0; i < argumentCount; i++)
                 arguments[i] = toRef(args[i]);
-            JSLock::DropAllLocks dropAllLocks;
+            JSLock::DropAllLocks dropAllLocks(exec);
             return toJS(callAsFunction(execRef, functionRef, thisObjRef, argumentCount, arguments.data(), toRef(exec->exceptionSlot())));
         }
@@ -338 +339 @@
     for (JSClassRef jsClass = m_class; jsClass; jsClass = jsClass->parentClass) {
         if (JSObjectGetPropertyNamesCallback getPropertyNames = jsClass->getPropertyNames) {
-            JSLock::DropAllLocks dropAllLocks;
+            JSLock::DropAllLocks dropAllLocks(exec);
             getPropertyNames(execRef, thisRef, toRef(&propertyNames));
         }
@@ -381 +382 @@
     for (JSClassRef jsClass = m_class; jsClass; jsClass = jsClass->parentClass)
         if (JSObjectConvertToTypeCallback convertToType = jsClass->convertToType) {
-            JSLock::DropAllLocks dropAllLocks;
+            JSLock::DropAllLocks dropAllLocks(exec);
             if (JSValueRef value = convertToType(ctx, thisRef, kJSTypeNumber, toRef(exec->exceptionSlot())))
                 return toJS(value)->getNumber();
@@ -399 +400 @@
             JSValueRef value;
             {
-                JSLock::DropAllLocks dropAllLocks;
+                JSLock::DropAllLocks dropAllLocks(exec);
                 value = convertToType(ctx, thisRef, kJSTypeString, toRef(exec->exceptionSlot()));
             }
@@ -452 +453 @@
             if (StaticValueEntry* entry = staticValues->get(propertyName.ustring().rep()))
                 if (JSObjectGetPropertyCallback getProperty = entry->getProperty) {
-                    JSLock::DropAllLocks dropAllLocks;
+                    JSLock::DropAllLocks dropAllLocks(exec);
                     if (JSValueRef value = getProperty(toRef(exec), thisRef, propertyNameRef, toRef(exec->exceptionSlot())))
                         return toJS(value);
@@ -497 +498 @@
     for (JSClassRef jsClass = thisObj->m_class; jsClass; jsClass = jsClass->parentClass)
         if (JSObjectGetPropertyCallback getProperty = jsClass->getProperty) {
-            JSLock::DropAllLocks dropAllLocks;
+            JSLock::DropAllLocks dropAllLocks(exec);
             if (JSValueRef value = getProperty(toRef(exec), thisRef, propertyNameRef, toRef(exec->exceptionSlot())))
                 return toJS(value);

trunk/JavaScriptCore/API/JSContextRef.cpp

@@ -42 +42 @@
     initializeThreading();
 
-    JSLock lock;
+    JSLock lock(true);
 
     if (!globalObjectClass) {
@@ -60 +60 @@
 JSGlobalContextRef JSGlobalContextRetain(JSGlobalContextRef ctx)
 {
-    JSLock lock;
     ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
     gcProtect(exec->dynamicGlobalObject());
     return ctx;
@@ -68 +68 @@
 void JSGlobalContextRelease(JSGlobalContextRef ctx)
 {
-    JSLock lock;
     ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
     gcUnprotect(exec->dynamicGlobalObject());
 }

trunk/JavaScriptCore/API/JSObjectRef.cpp

@@ -48 +48 @@
 JSClassRef JSClassCreate(const JSClassDefinition* definition)
 {
-    JSLock lock;
     RefPtr<OpaqueJSClass> jsClass = (definition->attributes & kJSClassAttributeNoAutomaticPrototype)
         ? OpaqueJSClass::createNoAutomaticPrototype(definition)
@@ -58 +57 @@
 JSClassRef JSClassRetain(JSClassRef jsClass)
 {
-    JSLock lock;
     jsClass->ref();
     return jsClass;
@@ -65 +63 @@
 void JSClassRelease(JSClassRef jsClass)
 {
-    JSLock lock;
     jsClass->deref();
 }
@@ -71 +68 @@
 JSObjectRef JSObjectMake(JSContextRef ctx, JSClassRef jsClass, void* data)
 {
-    JSLock lock;
-    ExecState* exec = toJS(ctx);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
 
     if (!jsClass)
@@ -86 +83 @@
 JSObjectRef JSObjectMakeFunctionWithCallback(JSContextRef ctx, JSStringRef name, JSObjectCallAsFunctionCallback callAsFunction)
 {
-    JSLock lock;
-    ExecState* exec = toJS(ctx);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
     Identifier nameID = name ? Identifier(exec, toJS(name)) : Identifier(exec, "anonymous");
     
@@ -95 +92 @@
 JSObjectRef JSObjectMakeConstructor(JSContextRef ctx, JSClassRef jsClass, JSObjectCallAsConstructorCallback callAsConstructor)
 {
-    JSLock lock;
-    ExecState* exec = toJS(ctx);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
     
     JSValue* jsPrototype = jsClass 
@@ -109 +106 @@
 JSObjectRef JSObjectMakeFunction(JSContextRef ctx, JSStringRef name, unsigned parameterCount, const JSStringRef parameterNames[], JSStringRef body, JSStringRef sourceURL, int startingLineNumber, JSValueRef* exception)
 {
-    JSLock lock;
-    
-    ExecState* exec = toJS(ctx);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
+
     UString::Rep* bodyRep = toJS(body);
     UString::Rep* sourceURLRep = sourceURL ? toJS(sourceURL) : &UString::Rep::null;
@@ -148 +145 @@
 bool JSObjectHasProperty(JSContextRef ctx, JSObjectRef object, JSStringRef propertyName)
 {
-    JSLock lock;
-    ExecState* exec = toJS(ctx);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
     JSObject* jsObject = toJS(object);
     UString::Rep* nameRep = toJS(propertyName);
@@ -158 +155 @@
 JSValueRef JSObjectGetProperty(JSContextRef ctx, JSObjectRef object, JSStringRef propertyName, JSValueRef* exception)
 {
-    JSLock lock;
-    ExecState* exec = toJS(ctx);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
     JSObject* jsObject = toJS(object);
     UString::Rep* nameRep = toJS(propertyName);
@@ -174 +171 @@
 void JSObjectSetProperty(JSContextRef ctx, JSObjectRef object, JSStringRef propertyName, JSValueRef value, JSPropertyAttributes attributes, JSValueRef* exception)
 {
-    JSLock lock;
-    ExecState* exec = toJS(ctx);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
     JSObject* jsObject = toJS(object);
     Identifier name(exec, toJS(propertyName));
@@ -194 +191 @@
 JSValueRef JSObjectGetPropertyAtIndex(JSContextRef ctx, JSObjectRef object, unsigned propertyIndex, JSValueRef* exception)
 {
-    JSLock lock;
-    ExecState* exec = toJS(ctx);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
     JSObject* jsObject = toJS(object);
 
@@ -210 +207 @@
 void JSObjectSetPropertyAtIndex(JSContextRef ctx, JSObjectRef object, unsigned propertyIndex, JSValueRef value, JSValueRef* exception)
 {
-    JSLock lock;
-    ExecState* exec = toJS(ctx);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
     JSObject* jsObject = toJS(object);
     JSValue* jsValue = toJS(value);
@@ -225 +222 @@
 bool JSObjectDeleteProperty(JSContextRef ctx, JSObjectRef object, JSStringRef propertyName, JSValueRef* exception)
 {
-    JSLock lock;
-    ExecState* exec = toJS(ctx);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
     JSObject* jsObject = toJS(object);
     UString::Rep* nameRep = toJS(propertyName);
@@ -274 +271 @@
 JSValueRef JSObjectCallAsFunction(JSContextRef ctx, JSObjectRef object, JSObjectRef thisObject, size_t argumentCount, const JSValueRef arguments[], JSValueRef* exception)
 {
-    JSLock lock;
-    ExecState* exec = toJS(ctx);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
     JSObject* jsObject = toJS(object);
     JSObject* jsThisObject = toJS(thisObject);
@@ -310 +307 @@
 JSObjectRef JSObjectCallAsConstructor(JSContextRef ctx, JSObjectRef object, size_t argumentCount, const JSValueRef arguments[], JSValueRef* exception)
 {
-    JSLock lock;
-    ExecState* exec = toJS(ctx);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
     JSObject* jsObject = toJS(object);
 
@@ -344 +341 @@
 JSPropertyNameArrayRef JSObjectCopyPropertyNames(JSContextRef ctx, JSObjectRef object)
 {
-    JSLock lock;
-    JSObject* jsObject = toJS(object);
-    ExecState* exec = toJS(ctx);
+    JSObject* jsObject = toJS(object);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
     
     JSPropertyNameArrayRef propertyNames = new OpaqueJSPropertyNameArray(&exec->globalData());
@@ -356 +353 @@
 JSPropertyNameArrayRef JSPropertyNameArrayRetain(JSPropertyNameArrayRef array)
 {
-    JSLock lock;
     ++array->refCount;
     return array;
@@ -363 +359 @@
 void JSPropertyNameArrayRelease(JSPropertyNameArrayRef array)
 {
-    JSLock lock;
-    if (--array->refCount == 0)
+    if (--array->refCount == 0) {
+        JSLock lock(array->array.globalData()->isSharedInstance);
         delete array;
+    }
 }
 
@@ -380 +377 @@
 void JSPropertyNameAccumulatorAddName(JSPropertyNameAccumulatorRef array, JSStringRef propertyName)
 {
-    JSLock lock;
     PropertyNameArray* propertyNames = toJS(array);
     UString::Rep* rep = toJS(propertyName);
+
+    JSLock lock(propertyNames->globalData()->isSharedInstance);
     propertyNames->add(rep);
 }

trunk/JavaScriptCore/API/JSStringRef.cpp

@@ -44 +44 @@
 JSStringRef JSStringCreateWithCharacters(const JSChar* chars, size_t numChars)
 {
-    JSLock lock;
     return toRef(UString(chars, static_cast<int>(numChars)).rep()->ref());
 }
@@ -50 +49 @@
 JSStringRef JSStringCreateWithUTF8CString(const char* string)
 {
-    JSLock lock;
-
     RefPtr<UString::Rep> result = UString::Rep::createFromUTF8(string);
     if (result.get() == &UString::Rep::null)
@@ -61 +58 @@
 JSStringRef JSStringRetain(JSStringRef string)
 {
-    JSLock lock;
     UString::Rep* rep = toJS(string);
     return toRef(rep->ref());
@@ -68 +64 @@
 void JSStringRelease(JSStringRef string)
 {
-    JSLock lock;
     UString::Rep* rep = toJS(string);
-    rep->deref();
+    bool needsLocking = rep->identifierTable;
+    if (needsLocking) {
+        // It is wasteful to take the lock for per-thread contexts, but we don't have a good way
+        // to determine what the context is.
+        JSLock lock(true);
+        rep->deref();
+    } else
+        rep->deref();
 }
 
@@ -95 +97 @@
 size_t JSStringGetUTF8CString(JSStringRef string, char* buffer, size_t bufferSize)
 {
-    JSLock lock;
     UString::Rep* rep = toJS(string);
     CString cString = UString(rep).UTF8String();
@@ -106 +107 @@
 bool JSStringIsEqual(JSStringRef a, JSStringRef b)
 {
-    JSLock lock;
-
     UString::Rep* aRep = toJS(a);
     UString::Rep* bRep = toJS(b);

trunk/JavaScriptCore/API/JSStringRefCF.cpp

@@ -38 +38 @@
 JSStringRef JSStringCreateWithCFString(CFStringRef string)
 {
-    JSLock lock;
     CFIndex length = CFStringGetLength(string);
     UString::Rep* rep;

trunk/JavaScriptCore/API/JSValueRef.cpp

@@ -119 +119 @@
 bool JSValueIsEqual(JSContextRef ctx, JSValueRef a, JSValueRef b, JSValueRef* exception)
 {
-    JSLock lock;
-    ExecState* exec = toJS(ctx);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
+
     JSValue* jsA = toJS(a);
     JSValue* jsB = toJS(b);
@@ -133 +134 @@
 }
 
-bool JSValueIsStrictEqual(JSContextRef ctx, JSValueRef a, JSValueRef b)
-{
-    UNUSED_PARAM(ctx);
-
-    JSLock lock;
+bool JSValueIsStrictEqual(JSContextRef, JSValueRef a, JSValueRef b)
+{
     JSValue* jsA = toJS(a);
     JSValue* jsB = toJS(b);
@@ -147 +145 @@
 bool JSValueIsInstanceOfConstructor(JSContextRef ctx, JSValueRef value, JSObjectRef constructor, JSValueRef* exception)
 {
-    JSLock lock;
-    ExecState* exec = toJS(ctx);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
+
     JSValue* jsValue = toJS(value);
     JSObject* jsConstructor = toJS(constructor);
@@ -179 +178 @@
 JSValueRef JSValueMakeNumber(JSContextRef ctx, double value)
 {
-    JSLock lock;
-    return toRef(jsNumber(toJS(ctx), value));
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
+
+    return toRef(jsNumber(exec, value));
 }
 
 JSValueRef JSValueMakeString(JSContextRef ctx, JSStringRef string)
 {
-    JSLock lock;
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
+
     UString::Rep* rep = toJS(string);
-    return toRef(jsString(toJS(ctx), UString(rep)));
+    return toRef(jsString(exec, UString(rep)));
 }
 
@@ -199 +202 @@
 double JSValueToNumber(JSContextRef ctx, JSValueRef value, JSValueRef* exception)
 {
-    JSLock lock;
-    JSValue* jsValue = toJS(value);
-    ExecState* exec = toJS(ctx);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
+
+    JSValue* jsValue = toJS(value);
 
     double number = jsValue->toNumber(exec);
@@ -215 +219 @@
 JSStringRef JSValueToStringCopy(JSContextRef ctx, JSValueRef value, JSValueRef* exception)
 {
-    JSLock lock;
-    JSValue* jsValue = toJS(value);
-    ExecState* exec = toJS(ctx);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
+
+    JSValue* jsValue = toJS(value);
     
     JSStringRef stringRef = toRef(jsValue->toString(exec).rep()->ref());
@@ -231 +236 @@
 JSObjectRef JSValueToObject(JSContextRef ctx, JSValueRef value, JSValueRef* exception)
 {
-    JSLock lock;
-    ExecState* exec = toJS(ctx);
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
+
     JSValue* jsValue = toJS(value);
     
@@ -245 +251 @@
 }    
 
-void JSValueProtect(JSContextRef, JSValueRef value)
-{
-    JSLock lock;
+void JSValueProtect(JSContextRef ctx, JSValueRef value)
+{
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
+
     JSValue* jsValue = toJS(value);
     gcProtect(jsValue);
 }
 
-void JSValueUnprotect(JSContextRef, JSValueRef value)
-{
-    JSLock lock;
+void JSValueUnprotect(JSContextRef ctx, JSValueRef value)
+{
+    ExecState* exec = toJS(ctx);
+    JSLock lock(exec);
+
     JSValue* jsValue = toJS(value);
     gcUnprotect(jsValue);

trunk/JavaScriptCore/ChangeLog

@@ +1 @@
+2008-06-30  Alexey Proskuryakov  <[email protected]>
+
+        Reviewed by Darin.
+
+        Disable JSLock for per-thread contexts.
+
+        No change on SunSpider.
+
+        * kjs/JSGlobalData.h:
+        * kjs/JSGlobalData.cpp:
+        (KJS::JSGlobalData::JSGlobalData):
+        (KJS::JSGlobalData::sharedInstance):
+        Added isSharedInstance as a better way to tell whether the instance is shared (legacy).
+
+        * kjs/JSLock.cpp:
+        (KJS::createJSLockCount):
+        (KJS::JSLock::lockCount):
+        (KJS::setLockCount):
+        (KJS::JSLock::JSLock):
+        (KJS::JSLock::lock):
+        (KJS::JSLock::unlock):
+        (KJS::JSLock::currentThreadIsHoldingLock):
+        (KJS::JSLock::DropAllLocks::DropAllLocks):
+        (KJS::JSLock::DropAllLocks::~DropAllLocks):
+        * kjs/JSLock.h:
+        (KJS::JSLock::JSLock):
+        (KJS::JSLock::~JSLock):
+        Made JSLock and JSLock::DropAllLocks constructors take a parameter to decide whether to
+        actually lock a mutex, or only to increment recursion count. We cannot turn it into no-op
+        if we want to keep existing assertions working.
+        Made recursion count per-thread, now that locks may not lock.
+
+        * API/JSBase.cpp:
+        (JSEvaluateScript): Take JSLock after casting JSContextRef to ExecState* (which doesn't need
+        locking in any case), so that a decision whether to actually lock can be made.
+        (JSCheckScriptSyntax): Ditto.
+        (JSGarbageCollect): Only lock while collecting the shared heap, not the per-thread one.
+
+        * API/JSObjectRef.cpp:
+        (JSClassCreate): Don't lock, as there is no reason to.
+        (JSClassRetain): Ditto.
+        (JSClassRelease): Ditto.
+        (JSPropertyNameArrayRetain): Ditto.
+        (JSPropertyNameArrayRelease): Only lock while deleting the array, as that may touch
+        identifier table.
+        (JSPropertyNameAccumulatorAddName): Adding a string also involves an identifier table
+        lookup, and possibly modification.
+
+        * API/JSStringRef.cpp:
+        (JSStringCreateWithCharacters):
+        (JSStringCreateWithUTF8CString):
+        (JSStringRetain):
+        (JSStringRelease):
+        (JSStringGetUTF8CString):
+        (JSStringIsEqual):
+        * API/JSStringRefCF.cpp:
+        (JSStringCreateWithCFString):
+        JSStringRef operations other than releasing do not need locking.
+
+        * VM/Machine.cpp: Don't include unused JSLock.h.
+
+        * kjs/CollectorHeapIntrospector.cpp: (KJS::CollectorHeapIntrospector::statistics):
+        Don't take the lock for real, as heap introspection pauses the process anyway. It seems that
+        the existing code could cause deadlocks.
+
+        * kjs/Shell.cpp:
+        (functionGC):
+        (main):
+        (jscmain):
+        The test tool uses a per-thread context, so no real locking is required.
+
+        * kjs/collector.h:
+        (KJS::Heap::setGCProtectNeedsLocking): Optionally protect m_protectedValues access with a
+        per-heap mutex. This is only needed for WebCore Database code, which violates the "no data
+        migration between threads" by using ProtectedPtr on a background thread.
+        (KJS::Heap::isShared): Keep a shared flag here, as well.
+
+        * kjs/protect.h:
+        (KJS::::ProtectedPtr):
+        (KJS::::~ProtectedPtr):
+        (KJS::::operator):
+        (KJS::operator==):
+        (KJS::operator!=):
+        ProtectedPtr is ony used from WebCore, so it doesn't need to take JSLock. An assertion in
+        Heap::protect/unprotect guards agains possible future unlocked uses of ProtectedPtr in JSC.
+
+        * kjs/collector.cpp:
+        (KJS::Heap::Heap): Initialize m_isShared.
+        (KJS::Heap::~Heap): No need to lock for real during destruction, but must keep assertions
+        in sweep() working.
+        (KJS::destroyRegisteredThread): Registered thread list is only accessed for shared heap,
+        so locking is always needed here.
+        (KJS::Heap::registerThread): Ditto.
+        (KJS::Heap::markStackObjectsConservatively): Use m_isShared instead of comparing to a shared
+        instance for a small speedup.
+        (KJS::Heap::setGCProtectNeedsLocking): Create m_protectedValuesMutex. There is currently no
+        way to undo this - and ideally, Database code will be fixed to lo longer require this quirk.
+        (KJS::Heap::protect): Take m_protectedValuesMutex (if it exists) while accessing
+        m_protectedValues.
+        (KJS::Heap::unprotect): Ditto.
+        (KJS::Heap::markProtectedObjects): Ditto.
+        (KJS::Heap::protectedGlobalObjectCount): Ditto.
+        (KJS::Heap::protectedObjectCount): Ditto.
+        (KJS::Heap::protectedObjectTypeCounts): Ditto.
+
+        * kjs/ustring.cpp:
+        * kjs/ustring.h:
+        Don't include JSLock.h, which is no longer used here. As a result, an explicit include had
+        to be added to many files in JavaScriptGlue, WebCore and WebKit.
+
+        * kjs/JSGlobalObject.cpp:
+        (KJS::JSGlobalObject::init):
+        * API/JSCallbackConstructor.cpp:
+        (KJS::constructJSCallback):
+        * API/JSCallbackFunction.cpp:
+        (KJS::JSCallbackFunction::call):
+        * API/JSCallbackObjectFunctions.h:
+        (KJS::::init):
+        (KJS::::getOwnPropertySlot):
+        (KJS::::put):
+        (KJS::::deleteProperty):
+        (KJS::::construct):
+        (KJS::::hasInstance):
+        (KJS::::call):
+        (KJS::::getPropertyNames):
+        (KJS::::toNumber):
+        (KJS::::toString):
+        (KJS::::staticValueGetter):
+        (KJS::::callbackGetter):
+        * API/JSContextRef.cpp:
+        (JSGlobalContextCreate):
+        (JSGlobalContextRetain):
+        (JSGlobalContextRelease):
+        * API/JSValueRef.cpp:
+        (JSValueIsEqual):
+        (JSValueIsStrictEqual):
+        (JSValueIsInstanceOfConstructor):
+        (JSValueMakeNumber):
+        (JSValueMakeString):
+        (JSValueToNumber):
+        (JSValueToStringCopy):
+        (JSValueToObject):
+        (JSValueProtect):
+        (JSValueUnprotect):
+        * JavaScriptCore.exp:
+        * kjs/PropertyNameArray.h:
+        (KJS::PropertyNameArray::globalData):
+        * kjs/interpreter.cpp:
+        (KJS::Interpreter::checkSyntax):
+        (KJS::Interpreter::evaluate):
+        Pass a parameter to JSLock/JSLock::DropAllLocks to decide whether the lock needs to be taken.
+
 2008-07-01  Alexey Proskuryakov  <[email protected]>
 
@@ -306 +458 @@
         (WTF::): Updated HashTraits for HashTable change.
 
-2008-06-30  Alexey Proskuryakov  <[email protected]>
+2008-07-01  Alexey Proskuryakov  <[email protected]>
 
         Reviewed by Cameron Zwarich.

trunk/JavaScriptCore/JavaScriptCore.exp

@@ -148 +148 @@
 __ZN3KJS4Heap17globalObjectCountEv
 __ZN3KJS4Heap20protectedObjectCountEv
+__ZN3KJS4Heap24setGCProtectNeedsLockingEv
 __ZN3KJS4Heap25protectedObjectTypeCountsEv
 __ZN3KJS4Heap26protectedGlobalObjectCountEv
@@ -170 +171 @@
 __ZN3KJS6JSCell9getObjectEv
 __ZN3KJS6JSCellnwEmPNS_9ExecStateE
-__ZN3KJS6JSLock12DropAllLocksC1Ev
+__ZN3KJS6JSLock12DropAllLocksC1Eb
+__ZN3KJS6JSLock12DropAllLocksC1EPNS_9ExecStateE
 __ZN3KJS6JSLock12DropAllLocksD1Ev
 __ZN3KJS6JSLock14registerThreadEv
-__ZN3KJS6JSLock4lockEv
-__ZN3KJS6JSLock6unlockEv
+__ZN3KJS6JSLock4lockEb
+__ZN3KJS6JSLock6unlockEb
 __ZN3KJS6JSLock9lockCountEv
+__ZN3KJS6JSLockC1EPNS_9ExecStateE
 __ZN3KJS6Parser5parseEPNS_9ExecStateERKNS_7UStringEiN3WTF10PassRefPtrINS_14SourceProviderEEEPiSA_PS3_
 __ZN3KJS6strtodEPKcPPc

trunk/JavaScriptCore/VM/Machine.cpp

@@ -38 +38 @@
 #include "JSArray.h"
 #include "JSFunction.h"
-#include "JSLock.h"
 #include "JSPropertyNameIterator.h"
 #include "JSString.h"

trunk/JavaScriptCore/kjs/CollectorHeapIntrospector.cpp

@@ -96 +96 @@
 void CollectorHeapIntrospector::statistics(malloc_zone_t* zone, malloc_statistics_t* stats)
 {
-    JSLock lock;
+    JSLock lock(false);
     CollectorHeapIntrospector* introspector = reinterpret_cast<CollectorHeapIntrospector*>(zone);
     CollectorHeap* primaryHeap = introspector->m_primaryHeap;

trunk/JavaScriptCore/kjs/JSGlobalData.cpp

@@ -57 +57 @@
 
 
-JSGlobalData::JSGlobalData()
+JSGlobalData::JSGlobalData(bool isShared)
     : machine(new Machine)
-    , heap(new Heap)
+    , heap(new Heap(isShared))
 #if USE(MULTIPLE_THREADS)
     , arrayTable(new HashTable(KJS::arrayTable))
@@ -84 +84 @@
     , parser(new Parser)
     , head(0)
+    , isSharedInstance(isShared)
 {
 }
@@ -133 +134 @@
 {
 #if USE(MULTIPLE_THREADS)
-    AtomicallyInitializedStatic(JSGlobalData, sharedInstance);
-#else
-    static JSGlobalData sharedInstance;
+    MutexLocker locker(*atomicallyInitializedStaticMutex);
 #endif
-    return sharedInstance;
+    static JSGlobalData* sharedInstance;
+    if (!sharedInstance)
+        sharedInstance = new JSGlobalData(true);
+    return *sharedInstance;
 }
 

trunk/JavaScriptCore/kjs/JSGlobalData.h

@@ -82 +82 @@
         JSGlobalObject* head;
 
+        bool isSharedInstance;
+
     private:
         friend class WTF::ThreadSpecific<JSGlobalData>;
 
-        JSGlobalData();
+        JSGlobalData(bool isShared = false);
         ~JSGlobalData();
     };

trunk/JavaScriptCore/kjs/JSGlobalObject.cpp

@@ -102 +102 @@
     ASSERT(JSLock::currentThreadIsHoldingLock());
 
-    d()->globalData = (Heap::heap(this) == JSGlobalData::sharedInstance().heap) ? &JSGlobalData::sharedInstance() : &JSGlobalData::threadInstance();
+    d()->globalData = Heap::heap(this)->isShared() ? &JSGlobalData::sharedInstance() : &JSGlobalData::threadInstance();
 
     if (JSGlobalObject*& headObject = head()) {

trunk/JavaScriptCore/kjs/JSLock.cpp

@@ -25 +25 @@
 
 #include "collector.h"
+#include "ExecState.h"
+
 #if USE(MULTIPLE_THREADS)
 #include <pthread.h>
@@ -36 +38 @@
 static pthread_mutex_t JSMutex = PTHREAD_MUTEX_INITIALIZER;
 
-// Thread-specific key that tells whether a thread holds the JSMutex.
-pthread_key_t didLockJSMutex;
+// Thread-specific key that tells whether a thread holds the JSMutex, and how many times it was taken recursively.
+pthread_key_t JSLockCount;
+
+static void createJSLockCount()
+{
+    pthread_key_create(&JSLockCount, 0);
+}
+
+pthread_once_t createJSLockCountOnce = PTHREAD_ONCE_INIT;
 
 // Lock nesting count.
-static int JSLockCount;
+int JSLock::lockCount()
+{
+    pthread_once(&createJSLockCountOnce, createJSLockCount);
 
-static void createDidLockJSMutex()
+    return reinterpret_cast<int>(pthread_getspecific(JSLockCount));
+}
+
+static void setLockCount(int count)
 {
-    pthread_key_create(&didLockJSMutex, 0);
+    pthread_setspecific(JSLockCount, reinterpret_cast<void*>(count));
 }
-pthread_once_t createDidLockJSMutexOnce = PTHREAD_ONCE_INIT;
 
-void JSLock::lock()
+JSLock::JSLock(ExecState* exec)
+    : m_lockingForReal(exec->globalData().isSharedInstance)
 {
-    pthread_once(&createDidLockJSMutexOnce, createDidLockJSMutex);
+    lock(m_lockingForReal);
+    if (m_lockingForReal)
+        registerThread();
+}
 
-    if (!pthread_getspecific(didLockJSMutex)) {
+void JSLock::lock(bool lockForReal)
+{
+#ifdef NDEBUG
+    // For per-thread contexts, locking is a debug-only feature.
+    if (!lockForReal)
+        return;
+#endif
+
+    pthread_once(&createJSLockCountOnce, createJSLockCount);
+
+    int currentLockCount = lockCount();
+    if (!currentLockCount && lockForReal) {
         int result;
         result = pthread_mutex_lock(&JSMutex);
         ASSERT(!result);
-        pthread_setspecific(didLockJSMutex, &didLockJSMutex);
     }
-    ++JSLockCount;
+    setLockCount(currentLockCount + 1);
 }
 
-void JSLock::unlock()
+void JSLock::unlock(bool lockForReal)
 {
-    ASSERT(JSLockCount);
-    ASSERT(!!pthread_getspecific(didLockJSMutex));
+    ASSERT(lockCount());
 
-    --JSLockCount;
-    if (!JSLockCount) {
-        pthread_setspecific(didLockJSMutex, 0);
+#ifdef NDEBUG
+    // For per-thread contexts, locking is a debug-only feature.
+    if (!lockForReal)
+        return;
+#endif
+
+    int newLockCount = lockCount() - 1;
+    setLockCount(newLockCount);
+    if (!newLockCount && lockForReal) {
         int result;
         result = pthread_mutex_unlock(&JSMutex);
@@ -75 +107 @@
 }
 
+void JSLock::lock(ExecState* exec)
+{
+    lock(exec->globalData().isSharedInstance);
+}
+
+void JSLock::unlock(ExecState* exec)
+{
+    unlock(exec->globalData().isSharedInstance);
+}
+
 bool JSLock::currentThreadIsHoldingLock()
 {
-    pthread_once(&createDidLockJSMutexOnce, createDidLockJSMutex);
-    return !!pthread_getspecific(didLockJSMutex);
+    pthread_once(&createJSLockCountOnce, createJSLockCount);
+    return !!pthread_getspecific(JSLockCount);
 }
 
@@ -86 +128 @@
 }
 
-JSLock::DropAllLocks::DropAllLocks()
-    : m_lockCount(0)
+JSLock::DropAllLocks::DropAllLocks(ExecState* exec)
+    : m_lockingForReal(exec->globalData().isSharedInstance)
 {
-    pthread_once(&createDidLockJSMutexOnce, createDidLockJSMutex);
+    pthread_once(&createJSLockCountOnce, createJSLockCount);
 
-    m_lockCount = !!pthread_getspecific(didLockJSMutex) ? JSLock::lockCount() : 0;
+    m_lockCount = JSLock::lockCount();
     for (int i = 0; i < m_lockCount; i++)
-        JSLock::unlock();
+        JSLock::unlock(m_lockingForReal);
+}
+
+JSLock::DropAllLocks::DropAllLocks(bool lockingForReal)
+    : m_lockingForReal(lockingForReal)
+{
+    pthread_once(&createJSLockCountOnce, createJSLockCount);
+
+    // It is necessary to drop even "unreal" locks, because having a non-zero lock count
+    // will prevent a real lock from being taken.
+
+    m_lockCount = JSLock::lockCount();
+    for (int i = 0; i < m_lockCount; i++)
+        JSLock::unlock(m_lockingForReal);
 }
 
@@ -99 +154 @@
 {
     for (int i = 0; i < m_lockCount; i++)
-        JSLock::lock();
-    m_lockCount = 0;
+        JSLock::lock(m_lockingForReal);
 }
 
@@ -107 +161 @@
 // If threading support is off, set the lock count to a constant value of 1 so assertions
 // that the lock is held don't fail
-const int JSLockCount = 1;
+int JSLock::lockCount()
+{
+    return 1;
+}
 
 bool JSLock::currentThreadIsHoldingLock()
@@ -136 +193 @@
 #endif // USE(MULTIPLE_THREADS)
 
-int JSLock::lockCount()
-{
-    return JSLockCount;
 }
-
-}

trunk/JavaScriptCore/kjs/JSLock.h

@@ -47 +47 @@
     // thread acquired it to begin with.
 
+    // For per-thread contexts, JSLock doesn't do any locking, but we
+    // still need to perform all the counting in order to keep debug
+    // assertions working, so that clients that use a shared context don't break.
+
+    class ExecState;
+
     class JSLock : Noncopyable {
     public:
-        JSLock()
+        JSLock(ExecState* exec);
+
+        JSLock(bool lockingForReal)
+            : m_lockingForReal(lockingForReal)
         {
-            lock();
-            registerThread();
+#ifdef NDEBUG
+            // For per-thread contexts, locking is a debug-only feature.
+            if (!lockingForReal)
+                return;
+#endif
+            lock(lockingForReal);
+            if (lockingForReal)
+                registerThread();
         }
 
-        ~JSLock() 
+        ~JSLock()
         { 
-            unlock(); 
+#ifdef NDEBUG
+            // For per-thread contexts, locking is a debug-only feature.
+            if (!m_lockingForReal)
+                return;
+#endif
+            unlock(m_lockingForReal); 
         }
         
-        static void lock();
-        static void unlock();
+        static void lock(bool);
+        static void unlock(bool);
+        static void lock(ExecState*);
+        static void unlock(ExecState*);
+
         static int lockCount();
         static bool currentThreadIsHoldingLock();
@@ -67 +90 @@
         static void registerThread();
 
+        bool m_lockingForReal;
+
         class DropAllLocks : Noncopyable {
         public:
-            DropAllLocks();
+            DropAllLocks(ExecState* exec);
+            DropAllLocks(bool);
             ~DropAllLocks();
             
         private:
             int m_lockCount;
+            bool m_lockingForReal;
         };
     };

trunk/JavaScriptCore/kjs/PropertyNameArray.h

@@ -38 +38 @@
         PropertyNameArray(ExecState* exec) : m_globalData(&exec->globalData()) {}
 
+        JSGlobalData* globalData() { return m_globalData; }
+
         void add(const Identifier& identifier) { add(identifier.ustring().rep()); }
         void add(UString::Rep*);

trunk/JavaScriptCore/kjs/Shell.cpp

@@ -207 +207 @@
 JSValue* functionGC(ExecState* exec, JSObject*, JSValue*, const ArgList&)
 {
-    JSLock lock;
+    JSLock lock(false);
     exec->heap()->collect();
     return jsUndefined();
@@ -302 +302 @@
         res = jscmain(argc, argv);
 #ifndef NDEBUG
-        JSLock::lock();
+        JSLock::lock(false);
         JSGlobalData::threadInstance().heap->collect();
-        JSLock::unlock();
+        JSLock::unlock(false);
 #endif
     EXCEPT(res = 3)
@@ -448 +448 @@
 int jscmain(int argc, char** argv)
 {
-    initializeThreading();
-
-    JSLock lock;
+    KJS::initializeThreading();
+
+    JSLock lock(false);
 
     Options options;

trunk/JavaScriptCore/kjs/collector.cpp

@@ -24 +24 @@
 #include "ExecState.h"
 #include "JSGlobalObject.h"
+#include "JSLock.h"
 #include "JSString.h"
 #include "JSValue.h"
@@ -91 +92 @@
 static void freeHeap(CollectorHeap*);
 
-Heap::Heap()
+Heap::Heap(bool isShared)
     : m_markListSet(0)
+    , m_isShared(isShared)
 {
     memset(&primaryHeap, 0, sizeof(CollectorHeap));
@@ -100 +102 @@
 Heap::~Heap()
 {
-    JSLock lock;
+    JSLock lock(false);
 
     delete m_markListSet;
@@ -439 +441 @@
     // Can't use JSLock convenience object here because we don't want to re-register
     // an exiting thread.
-    JSLock::lock();
+    // JSLock is only used for code simplicity here, as we only need to protect registeredThreads
+    // list manipulation, not JS data structures.
+    JSLock::lock(true);
 
     if (registeredThreads == thread) {
@@ -456 +460 @@
     }
 
-    JSLock::unlock();
+    JSLock::unlock(true);
 
     delete thread;
@@ -468 +472 @@
 void Heap::registerThread()
 {
+    // Since registerThread() is only called when using a shared heap, these locks will be real.
     ASSERT(JSLock::lockCount() > 0);
     ASSERT(JSLock::currentThreadIsHoldingLock());
@@ -729 +734 @@
 #if USE(MULTIPLE_THREADS)
 
-    if (this == JSGlobalData::sharedInstance().heap) {
+    if (m_isShared) {
 
 #ifndef NDEBUG
@@ -737 +742 @@
         fastMallocForbid();
 #endif
+        // It is safe to access the registeredThreads list, because we earlier asserted that locks are being held,
+        // and since this is a shared heap, they are real locks.
         for (Thread* thread = registeredThreads; thread != NULL; thread = thread->next) {
             if (!pthread_equal(thread->posixThread, pthread_self()))
@@ -748 +755 @@
 }
 
+void Heap::setGCProtectNeedsLocking()
+{
+    // Most clients do not need to call this, with the notable exception of WebCore.
+    // Clients that use shared heap have JSLock protection, while others are not supposed
+    // to migrate JS objects between threads. WebCore violates this contract in Database code,
+    // which calls gcUnprotect from a secondary thread.
+    if (!m_protectedValuesMutex)
+        m_protectedValuesMutex.set(new Mutex);
+}
+
 void Heap::protect(JSValue* k)
 {
     ASSERT(k);
-    ASSERT(JSLock::lockCount() > 0);
-    ASSERT(JSLock::currentThreadIsHoldingLock());
+    ASSERT(JSLock::currentThreadIsHoldingLock() || !m_isShared);
 
     if (JSImmediate::isImmediate(k))
         return;
 
-    protectedValues.add(k->asCell());
+    if (m_protectedValuesMutex)
+        m_protectedValuesMutex->lock();
+
+    m_protectedValues.add(k->asCell());
+
+    if (m_protectedValuesMutex)
+        m_protectedValuesMutex->unlock();
 }
 
@@ -763 +785 @@
 {
     ASSERT(k);
-    ASSERT(JSLock::lockCount() > 0);
-    ASSERT(JSLock::currentThreadIsHoldingLock());
+    ASSERT(JSLock::currentThreadIsHoldingLock() || !m_isShared);
 
     if (JSImmediate::isImmediate(k))
         return;
 
-    protectedValues.remove(k->asCell());
+    if (m_protectedValuesMutex)
+        m_protectedValuesMutex->lock();
+
+    m_protectedValues.remove(k->asCell());
+
+    if (m_protectedValuesMutex)
+        m_protectedValuesMutex->unlock();
 }
 
@@ -781 +808 @@
 void Heap::markProtectedObjects()
 {
-    ProtectCountSet::iterator end = protectedValues.end();
-    for (ProtectCountSet::iterator it = protectedValues.begin(); it != end; ++it) {
+    if (m_protectedValuesMutex)
+        m_protectedValuesMutex->lock();
+
+    ProtectCountSet::iterator end = m_protectedValues.end();
+    for (ProtectCountSet::iterator it = m_protectedValues.begin(); it != end; ++it) {
         JSCell* val = it->first;
         if (!val->marked())
             val->mark();
     }
+
+    if (m_protectedValuesMutex)
+        m_protectedValuesMutex->unlock();
 }
 
@@ -941 +974 @@
 size_t Heap::protectedGlobalObjectCount()
 {
+    if (m_protectedValuesMutex)
+        m_protectedValuesMutex->lock();
+
     size_t count = 0;
     if (JSGlobalObject* head = JSGlobalData::threadInstance().head) {
         JSGlobalObject* o = head;
         do {
-            if (protectedValues.contains(o))
+            if (m_protectedValues.contains(o))
                 ++count;
             o = o->next();
         } while (o != head);
     }
+
+    if (m_protectedValuesMutex)
+        m_protectedValuesMutex->unlock();
+
     return count;
 }
@@ -955 +995 @@
 size_t Heap::protectedObjectCount()
 {
-    return protectedValues.size();
+    if (m_protectedValuesMutex)
+        m_protectedValuesMutex->lock();
+
+    size_t result = m_protectedValues.size();
+
+    if (m_protectedValuesMutex)
+        m_protectedValuesMutex->unlock();
+
+    return result;
 }
 
@@ -995 +1043 @@
     HashCountedSet<const char*>* counts = new HashCountedSet<const char*>;
 
-    ProtectCountSet::iterator end = protectedValues.end();
-    for (ProtectCountSet::iterator it = protectedValues.begin(); it != end; ++it)
+    if (m_protectedValuesMutex)
+        m_protectedValuesMutex->lock();
+
+    ProtectCountSet::iterator end = m_protectedValues.end();
+    for (ProtectCountSet::iterator it = m_protectedValues.begin(); it != end; ++it)
         counts->add(typeName(it->first));
 
+    if (m_protectedValuesMutex)
+        m_protectedValuesMutex->unlock();
+
     return counts;
 }

trunk/JavaScriptCore/kjs/collector.h

@@ -27 +27 @@
 #include <wtf/HashSet.h>
 #include <wtf/Noncopyable.h>
+#include <wtf/OwnPtr.h>
+#include <wtf/Threading.h>
 
 namespace KJS {
@@ -76 +78 @@
         size_t size();
 
+        void setGCProtectNeedsLocking();
         void protect(JSValue*);
         void unprotect(JSValue*);
@@ -98 +101 @@
 
         HashSet<ArgList*>& markListSet() { if (!m_markListSet) m_markListSet = new HashSet<ArgList*>; return *m_markListSet; }
+
+        bool isShared() const { return m_isShared; }
 
     private:
@@ -106 +111 @@
         static size_t cellOffset(const JSCell*);
 
-        friend class Machine;
         friend class JSGlobalData;
-        Heap();
+        Heap(bool isShared);
         ~Heap();
 
@@ -122 +126 @@
         CollectorHeap primaryHeap;
         CollectorHeap numberHeap;
-        ProtectCountSet protectedValues;
+
+        OwnPtr<Mutex> m_protectedValuesMutex; // Only non-null if the client explicitly requested it via setGCPrtotectNeedsLocking().
+        ProtectCountSet m_protectedValues;
+
         HashSet<ArgList*>* m_markListSet;
+
+        bool m_isShared;
     };
 

trunk/JavaScriptCore/kjs/interpreter.cpp

@@ -46 +46 @@
 Completion Interpreter::checkSyntax(ExecState* exec, const UString& sourceURL, int startingLineNumber, PassRefPtr<SourceProvider> source)
 {
-    JSLock lock;
+    JSLock lock(exec);
 
     int errLine;
@@ -64 +64 @@
 Completion Interpreter::evaluate(ExecState* exec, ScopeChain& scopeChain, const UString& sourceURL, int startingLineNumber, PassRefPtr<SourceProvider> source, JSValue* thisValue)
 {
-    JSLock lock;
+    JSLock lock(exec);
     
     // parse the source code

trunk/JavaScriptCore/kjs/protect.h

@@ -27 +27 @@
 #include "JSValue.h"
 #include "collector.h"
-#include "JSLock.h"
 
 namespace KJS {
@@ -63 +62 @@
         ProtectedPtr() : m_ptr(NULL) { }
         ProtectedPtr(T *ptr);
-        ProtectedPtr(const ProtectedPtr &);
+        ProtectedPtr(const ProtectedPtr&);
         ~ProtectedPtr();
 
-        template <class U> ProtectedPtr(const ProtectedPtr<U> &);
+        template <class U> ProtectedPtr(const ProtectedPtr<U>&);
         
         T *get() const { return m_ptr; }
@@ -74 +73 @@
         bool operator!() const { return m_ptr == NULL; }
 
-        ProtectedPtr &operator=(const ProtectedPtr &);
-        ProtectedPtr &operator=(T *);
+        ProtectedPtr& operator=(const ProtectedPtr&);
+        ProtectedPtr& operator=(T*);
         
     private:
@@ -84 +83 @@
         : m_ptr(ptr)
     {
-        if (ptr) {
-            JSLock lock;
+        if (ptr)
             gcProtect(ptr);
-        }
     }
 
-    template <class T> ProtectedPtr<T>::ProtectedPtr(const ProtectedPtr &o)
+    template <class T> ProtectedPtr<T>::ProtectedPtr(const ProtectedPtr& o)
         : m_ptr(o.get())
     {
-        if (T *ptr = m_ptr) {
-            JSLock lock;
+        if (T *ptr = m_ptr)
             gcProtect(ptr);
-        }
     }
 
     template <class T> ProtectedPtr<T>::~ProtectedPtr()
     {
-        if (T *ptr = m_ptr) {
-            JSLock lock;
+        if (T *ptr = m_ptr)
             gcUnprotect(ptr);
-        }
     }
 
-    template <class T> template <class U> ProtectedPtr<T>::ProtectedPtr(const ProtectedPtr<U> &o)
+    template <class T> template <class U> ProtectedPtr<T>::ProtectedPtr(const ProtectedPtr<U>& o)
         : m_ptr(o.get())
     {
-        if (T *ptr = m_ptr) {
-            JSLock lock;
+        if (T *ptr = m_ptr)
             gcProtect(ptr);
-        }
     }
 
-    template <class T> ProtectedPtr<T> &ProtectedPtr<T>::operator=(const ProtectedPtr<T> &o) 
+    template <class T> ProtectedPtr<T>& ProtectedPtr<T>::operator=(const ProtectedPtr<T>& o) 
     {
-        JSLock lock;
         T *optr = o.m_ptr;
         gcProtectNullTolerant(optr);
@@ -126 +116 @@
      }
 
-    template <class T> inline ProtectedPtr<T> &ProtectedPtr<T>::operator=(T *optr)
+    template <class T> inline ProtectedPtr<T>& ProtectedPtr<T>::operator=(T* optr)
     {
-        JSLock lock;
         gcProtectNullTolerant(optr);
         gcUnprotectNullTolerant(m_ptr);
@@ -135 +124 @@
     }
 
-    template <class T> inline bool operator==(const ProtectedPtr<T> &a, const ProtectedPtr<T> &b) { return a.get() == b.get(); }
-    template <class T> inline bool operator==(const ProtectedPtr<T> &a, const T *b) { return a.get() == b; }
-    template <class T> inline bool operator==(const T *a, const ProtectedPtr<T> &b) { return a == b.get(); }
+    template <class T> inline bool operator==(const ProtectedPtr<T>& a, const ProtectedPtr<T>& b) { return a.get() == b.get(); }
+    template <class T> inline bool operator==(const ProtectedPtr<T>& a, const T* b) { return a.get() == b; }
+    template <class T> inline bool operator==(const T* a, const ProtectedPtr<T>& b) { return a == b.get(); }
 
-    template <class T> inline bool operator!=(const ProtectedPtr<T> &a, const ProtectedPtr<T> &b) { return a.get() != b.get(); }
-    template <class T> inline bool operator!=(const ProtectedPtr<T> &a, const T *b) { return a.get() != b; }
-    template <class T> inline bool operator!=(const T *a, const ProtectedPtr<T> &b) { return a != b.get(); }
+    template <class T> inline bool operator!=(const ProtectedPtr<T>& a, const ProtectedPtr<T>& b) { return a.get() != b.get(); }
+    template <class T> inline bool operator!=(const ProtectedPtr<T>& a, const T* b) { return a.get() != b; }
+    template <class T> inline bool operator!=(const T* a, const ProtectedPtr<T>& b) { return a != b.get(); }
  
 } // namespace

trunk/JavaScriptCore/kjs/ustring.cpp

@@ -25 +25 @@
 #include "ustring.h"
 
-#include "JSLock.h"
 #include "collector.h"
 #include "dtoa.h"

trunk/JavaScriptCore/kjs/ustring.h

@@ -24 +24 @@
 #define _KJS_USTRING_H_
 
-#include "JSLock.h"
 #include "collector.h"
 #include <stdint.h>