Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8158168

Missing bounds checks for some String intrinsics

    Details

    • Subcomponent:
    • Resolved In Build:
      b166
    • Verification:
      Verified

      Backports

        Description

        # SIGSEGV (0xb) at pc=0x0000007fa4726ec0, pid=3211, tid=3218
        #
        # JRE version: Java(TM) SE Runtime Environment (9.0) (build 9-internal+0-2016-05-26-211740.amurillo.jdk9-hs-2016-05-26-snapshot)
        # Java VM: Java HotSpot(TM) 64-Bit Server VM (9-internal+0-2016-05-26-211740.amurillo.jdk9-hs-2016-05-26-snapshot, compiled mode, tiered, compressed oops, g1 gc, linux-aarch64)
        # Problematic frame:
        # V [libjvm.so+0x3d2ec0] CollectedHeap::fill_with_objects(HeapWord*, unsigned long, bool)+0xa8
        #
        # Core dump will be written. Default location: Core dumps may be processed with "/usr/share/apport/apport %p %s %c %P" (or dumping to /export/local/aurora/sandbox/results/ResultDir/stressHierarchy009/core.3211)


        --------------- S U M M A R Y ------------

        Command Line: -XX:MaxMetaspaceSize=450m -Xss10m -Xbootclasspath/a:/export/local/aurora/CommonData/vm/lib/wb.jar -XX:+UnlockDiagnosticVMOptions -XX:+WhiteBoxAPI -Xcomp -XX:+CreateCoredumpOnCrash -XX:+IgnoreUnrecognizedVMOptions -XX:ReservedCodeCacheSize=256M -Xcomp metaspace.stressHierarchy.common.StressHierarchy3 -treeDepth 70 -minLevelSize 10 -maxLevelSize 100 -hierarchyType INTERFACES -triggerUnloadingByFillingMetaspace

        Host: AArch64 Processor rev 0 (aarch64), 8 cores, 15G, Ubuntu 14.04.3 LTS
        Time: Fri May 27 10:15:09 2016 PDT elapsed time: 26 seconds (0d 0h 0m 26s)

        --------------- T H R E A D ---------------

        Current thread (0x0000007f9c029000): GCTaskThread "GC Thread#0" [stack: 0x0000007fa344a000,0x0000007fa354a000] [id=3218]

        Stack: [0x0000007fa344a000,0x0000007fa354a000], sp=0x0000007fa3548740, free space=1017k
        Native frames: (J=compiled Java code, j=interpreted, Vv=VM code, C=native code)
        V [libjvm.so+0x3d2ec0] CollectedHeap::fill_with_objects(HeapWord*, unsigned long, bool)+0xa8
        V [libjvm.so+0x4dc5b8] RemoveSelfForwardPtrHRClosure::doHeapRegion(HeapRegion*)+0x190
        V [libjvm.so+0x4c2a54] G1CollectedHeap::collection_set_iterate_from(HeapRegion*, HeapRegionClosure*)+0x3c
        V [libjvm.so+0x4dc26c] G1ParRemoveSelfForwardPtrsTask::work(unsigned int)+0x9c
        V [libjvm.so+0x9db9ac] GangWorker::loop()+0x50
        V [libjvm.so+0x9db888] AbstractGangWorker::run()+0x2c
        V [libjvm.so+0x825fe4] thread_native_entry(Thread*)+0x104
        C [libpthread.so.0+0x7e2c] start_thread+0xb0


        siginfo: si_signo: 11 (SIGSEGV), si_code: 2 (SEGV_ACCERR), si_addr: 0x00000006d4c3093c

          Attachments

          1. assert-to-guarantee.diff
            0.4 kB
          2. some-barreirs.diff
            7 kB
          3. 8158168_verifier.diff
            5 kB
          4. 8158168.diff
            4 kB
          5. 8158168-reduced-verification
            1 kB

            Issue Links

              Activity

                People

                • Assignee:
                  dlong Dean Long
                  Reporter:
                  dfazunen Dmitry Fazunenko (Inactive)
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  19 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: