Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8216965

crash in freetypeScaler.c CopyBW2Grey8

    XMLWordPrintable

    Details

    • Subcomponent:
      2d
    • Resolved In Build:
      b29
    • CPU:
      aarch64
    • OS:
      linux

      Backports

        Description

        The jck13 test

        api/javax_swing/SwingUtilities/other.html

        test crashes on linuxaarch64 .
        It seems that for some reason a buffer overrun occurs in CopyBW2Grey8 .
        ( src/java.desktop/share/native/libfontmanager/freetypeScaler.c ).

        I added output to the coding of freetypeScaler.c CopyBW2Grey8, this shows why the crash occurs . The pointer src8 goes over the allowed src image size.

        Crash is at :
        # C [libfontmanager.so+0xb86c] CopyBW2Grey8+0x164

        We notice the crash on linuxaarch64 (but similar crashes can be seen on Solaris Sparc).

        Further investigation shows that the linuxaarch64 crash was seen on a SLES15 (Suse Linux 15) machine. But with linux ppc64le and linux x86_64 on SLES15, the crash occurs too so it seems to be a SLES15 related issue .
        A small standalone java program is attached that shows the issue.

          Attachments

            Issue Links

            backported by

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8217673 crash in freetypeScaler.c CopyBW2Grey8

            • P2 - Crashes, loss of data, severe memory leak.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8217932 crash in freetypeScaler.c CopyBW2Grey8

            • P2 - Crashes, loss of data, severe memory leak.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8218001 crash in freetypeScaler.c CopyBW2Grey8

            • P2 - Crashes, loss of data, severe memory leak.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8218302 crash in freetypeScaler.c CopyBW2Grey8

            • P2 - Crashes, loss of data, severe memory leak.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8218350 crash in freetypeScaler.c CopyBW2Grey8

            • P2 - Crashes, loss of data, severe memory leak.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8219226 crash in freetypeScaler.c CopyBW2Grey8

            • P2 - Crashes, loss of data, severe memory leak.
            • Resolved
            relates to

            Bug - A problem which impairs or prevents the functions of the product. JDK-8217768 SIGSEV in Java_sun_font_FreetypeFontScaler_getGlyphMetricsNative+0x17

            • P3 - Major loss of function.
            • Resolved

              Activity

                People

                • Assignee:
                  prr Philip Race
                  Reporter:
                  mbaesken Matthias Baesken
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  6 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: