[typedarray] Properly initialize JSTypedArray::length with Smi.

[typedarray] Properly initialize JSTypedArray::length with Smi.

Even after https://codereview.chromium.org/2371963002 we still did not
always store a Smi into the JSTypedArray::length field, the runtime
function %TypedArrayInitializeFromArrayLike was still storing whatever
it got from the JavaScript code, which is highly dependent on internal
decisions of the ICs and the representation selection in the optimizing
compilers, so that's pretty fragile.

R=verwaest@chromium.org
BUG=chromium:650933
Committed: https://crrev.com/15a449b141bbecd70a3eaa6fba401b74e0810796
Cr-Commit-Position: refs/heads/master@{#39802}

[Benedikt Meurer, 2016-09-28 05:23:44]

The CQ bit was checked by bmeurer@chromium.org to run a CQ dry run

[commit-bot: I haz the power, 2016-09-28 05:23:47]

Dry run: CQ is trying da patch. Follow status at
 
https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...

[Toon Verwaest, 2016-09-28 05:30:43]

lgtm

[Benedikt Meurer, 2016-09-28 05:31:37]

The CQ bit was unchecked by bmeurer@chromium.org

[Benedikt Meurer, 2016-09-28 05:31:41]

The CQ bit was checked by bmeurer@chromium.org

[commit-bot: I haz the power, 2016-09-28 05:31:48]

CQ is trying da patch. Follow status at
 
https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...

[commit-bot: I haz the power, 2016-09-28 05:49:29]

Committed patchset #1 (id:1)

[commit-bot: I haz the power, 2016-09-28 05:49:45]

Description was changed from

==========
[typedarray] Properly initialize JSTypedArray::length with Smi.

Even after https://codereview.chromium.org/2371963002 we still did not
always store a Smi into the JSTypedArray::length field, the runtime
function %TypedArrayInitializeFromArrayLike was still storing whatever
it got from the JavaScript code, which is highly dependent on internal
decisions of the ICs and the representation selection in the optimizing
compilers, so that's pretty fragile.

R=verwaest@chromium.org
BUG=chromium:650933
==========

to

==========
[typedarray] Properly initialize JSTypedArray::length with Smi.

Even after https://codereview.chromium.org/2371963002 we still did not
always store a Smi into the JSTypedArray::length field, the runtime
function %TypedArrayInitializeFromArrayLike was still storing whatever
it got from the JavaScript code, which is highly dependent on internal
decisions of the ICs and the representation selection in the optimizing
compilers, so that's pretty fragile.

R=verwaest@chromium.org
BUG=chromium:650933

Committed: https://crrev.com/15a449b141bbecd70a3eaa6fba401b74e0810796
Cr-Commit-Position: refs/heads/master@{#39802}
==========

[commit-bot: I haz the power, 2016-09-28 05:49:46]

Patchset 1 (id:??) landed as
https://crrev.com/15a449b141bbecd70a3eaa6fba401b74e0810796
Cr-Commit-Position: refs/heads/master@{#39802}