[heap] JSFunction::context always points to valid context.

src/heap/objects-visiting-inl.h

 // Copyright 2012 the V8 project authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #ifndef V8_OBJECTS_VISITING_INL_H_
 #define V8_OBJECTS_VISITING_INL_H_
 
 #include "src/heap/array-buffer-tracker.h"
 #include "src/heap/objects-visiting.h"
 #include "src/ic/ic-state.h"
@@ skipping 585 matching lines @@
     FixedArray* const literals = data->LiteralArray();
     int const inlined_count = data->InlinedFunctionCount()->value();
     for (int i = 0; i < inlined_count; ++i) {
       StaticVisitor::MarkObject(
           heap, SharedFunctionInfo::cast(literals->get(i))->code());
     }
   }
 }
 
 
-inline static bool HasValidNonBuiltinContext(JSFunction* function) {
-  return function->context()->IsContext() && !function->shared()->IsBuiltin();
-}
-
-
 inline static bool HasSourceCode(Heap* heap, SharedFunctionInfo* info) {
   Object* undefined = heap->undefined_value();
   return (info->script() != undefined) &&
          (reinterpret_cast<Script*>(info->script())->source() != undefined);
 }
 
 
 template <typename StaticVisitor>
 bool StaticMarkingVisitor<StaticVisitor>::IsFlushable(Heap* heap,
                                                       JSFunction* function) {
   SharedFunctionInfo* shared_info = function->shared();
 
   // Code is either on stack, in compilation cache or referenced
   // by optimized version of function.
   MarkBit code_mark = Marking::MarkBitFrom(function->code());
   if (Marking::IsBlackOrGrey(code_mark)) {
     return false;
   }
 
-  // The function must have a valid context and not be a builtin.
-  if (!HasValidNonBuiltinContext(function)) {
-    return false;
-  }
-
   // We do not (yet) flush code for optimized functions.
   if (function->code() != shared_info->code()) {
     return false;
   }
 
   // Check age of optimized code.
   if (FLAG_age_code && !function->code()->IsOld()) {
     return false;
   }
 
@@ skipping 37 matching lines @@
   // if there are still live activations (generator objects) on the heap.
   if (shared_info->is_generator()) {
     return false;
   }
 
   // If this is a full script wrapped in a function we do not flush the code.
   if (shared_info->is_toplevel()) {
     return false;
   }
 
+  // The function must not be a builtin.
+  if (shared_info->IsBuiltin()) {
+    return false;
+  }
+
   // If this is a function initialized with %SetCode then the one-to-one
   // relation between SharedFunctionInfo and Code is broken.
   if (shared_info->dont_flush()) {
     return false;
   }
 
   // Check age of code. If code aging is disabled we never flush.
   if (!FLAG_age_code || !shared_info->code()->IsOld()) {
     return false;
   }
@@ skipping 50 matching lines @@
   typedef FlexibleBodyVisitor<StaticVisitor, JSFunction::BodyDescriptorWeakCode,
                               void> JSFunctionWeakCodeBodyVisitor;
   JSFunctionWeakCodeBodyVisitor::Visit(map, object);
 }
 
 
 }  // namespace internal
 }  // namespace v8
 
 #endif  // V8_OBJECTS_VISITING_INL_H_