[heap] Filter out non-heap values when tracing wrappers

We used to rely on the fact that all values kept alive through wrapper tracing were materialized as heap objects. Smis break this invariant and need to be filter out. BUG=chromium:716031 Review-Url: https://codereview.chromium.org/2852463003 Cr-Commit-Position: refs/heads/master@{#44946}

[heap] Filter out non-heap values when tracing wrappers
We used to rely on the fact that all values kept alive through wrapper tracing were materialized as heap objects. Smis break this invariant and need to be filter out. BUG=chromium:716031 Review-Url: https://codereview.chromium.org/2852463003 Cr-Commit-Position: refs/heads/master@{#44946}
1f3a95f1 · mlippautz · Commit bot · a16c3c91 · 1f3a95f1
Commit 1f3a95f1 authored Apr 27, 2017 by mlippautz Committed by Commit bot Apr 27, 2017
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 4 deletions

heap.cc src/heap/heap.cc +3 -4

No files found.
--- a/src/heap/heap.cc
+++ b/src/heap/heap.cc
@@ -5671,11 +5671,10 @@ void Heap::TracePossibleWrapper(JSObject* js_object) {
 }

 void Heap::RegisterExternallyReferencedObject(Object** object) {
+  // The embedder is not aware of whether numbers are materialized as heap
+  // objects are just passed around as Smis.
+  if (!(*object)->IsHeapObject()) return;
  HeapObject* heap_object = HeapObject::cast(*object);
-  if (heap_object == nullptr) {
-    // We might encounter non-empty handles that point to nullptr.
-    return;
-  }
  DCHECK(Contains(heap_object));
  if (FLAG_incremental_marking_wrappers && incremental_marking()->IsMarking()) {
    IncrementalMarking::MarkGrey(this, heap_object);