[compiler] AllocationBuilder: CHECK that allocation size is positive

R=jgruber@chromium.org Bug: v8:12010 Change-Id: Idb64bd673dd28dd3ef9103efea902413b4de7f67 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3051611Reviewed-by: Jakob Gruber <jgruber@chromium.org> Commit-Queue: Georg Neis <neis@chromium.org> Cr-Commit-Position: refs/heads/master@{#75909}

[compiler] AllocationBuilder: CHECK that allocation size is positive
R=jgruber@chromium.org Bug: v8:12010 Change-Id: Idb64bd673dd28dd3ef9103efea902413b4de7f67 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3051611Reviewed-by: Jakob Gruber <jgruber@chromium.org> Commit-Queue: Georg Neis <neis@chromium.org> Cr-Commit-Position: refs/heads/master@{#75909}
d6ab3560 · Georg Neis · V8 LUCI CQ · 621686c1 · d6ab3560
Commit d6ab3560 authored Jul 24, 2021 by Georg Neis Committed by V8 LUCI CQ Jul 26, 2021
Hide whitespace changes
Inline Side-by-side

Showing with 1 addition and 0 deletions

allocation-builder-inl.h src/compiler/allocation-builder-inl.h +1 -0

No files found.
--- a/src/compiler/allocation-builder-inl.h
+++ b/src/compiler/allocation-builder-inl.h
@@ -17,6 +17,7 @@ namespace compiler {

 void AllocationBuilder::Allocate(int size, AllocationType allocation,
                                 Type type) {
+  CHECK_GT(size, 0);
  DCHECK_LE(size, isolate()->heap()->MaxRegularHeapObjectSize(allocation));
  effect_ = graph()->NewNode(
      common()->BeginRegion(RegionObservability::kNotObservable), effect_);