-
Bug
-
Resolution: Fixed
-
P1
-
7u121, 8u92, 9
-
b127
-
Verified
| Issue | Fix Version | Assignee | Priority | Status | Resolution | Resolved In Build |
|---|---|---|---|---|---|---|
| JDK-8168167 | 8u152 | Tobias Hartmann | P1 | Resolved | Fixed | b01 |
| JDK-8163638 | 8u121 | Tobias Hartmann | P1 | Resolved | Fixed | b01 |
| JDK-8159372 | 8u112 | Tobias Hartmann | P1 | Closed | Fixed | b02 |
| JDK-8160590 | 8u111 | Tobias Hartmann | P1 | Resolved | Fixed | b03 |
| JDK-8160584 | 8u102 | Tobias Hartmann | P1 | Resolved | Fixed | b31 |
| JDK-8160499 | 8u92 | Tobias Hartmann | P1 | Resolved | Fixed | b34 |
| JDK-8167745 | emb-8u121 | Tobias Hartmann | P1 | Resolved | Fixed | b01 |
| JDK-8162089 | emb-8u111 | Tobias Hartmann | P1 | Resolved | Fixed | b03 |
| JDK-8159373 | 7u121 | Vladimir Kempik | P1 | Closed | Fixed | b01 |
Depending on the scheduling of instructions, it may happen that a reference to the newly allocated String object escapes before the String.value field is initialized (see [2], '334 StoreP' stores the String object, '514 StoreP' initializes the String.value field). In a highly concurrent setting, another thread may try to dereference String.value from such a partially initialized String object and crash.
TestStringObjectInitialization.java reproduces this problem with JDK 7, 8 and 9 (see attached hs_err files) in approximately 1 out of 10 runs. I had to disable Indify String Concat, Compressed Oops and G1 to trigger the bug with JDK 9.
[1] https://bugs.openjdk.java.net/secure/attachment/60305/graph_baseline_before%20SC.png
[2] https://bugs.openjdk.java.net/secure/attachment/60306/graph_baseline_after_sc.png
- backported by
-
JDK-8160499 Partially initialized string object created by C2's string concat optimization may escape
-
- Resolved
-
-
-
- Resolved
-
-
-
- Resolved
-
-
-
- Resolved
-
-
-
- Resolved
-
-
-
- Resolved
-
-
-
- Resolved
-
-
-
- Closed
-
-
-
- Closed
-
- relates to
-
-
- Resolved
-
-
-
- Resolved
-
-
-
- Resolved
-