RFR: 8271925: ZGC: Arraycopy stub passes invalid oop to load barrier [v2]
Tobias Hartmann
thartmann at openjdk.java.net
Mon Aug 9 05:59:07 UTC 2021
> The fix for [JDK-8270461](https://bugs.openjdk.java.net/browse/JDK-8270461), see [PR 252](https://git.openjdk.java.net/jdk17/pull/252), made sure that the arraycopy offset when cloning an oop array always points to the first element of the array. However, it missed to adjust the copy length as well, leading to reading/copying 8 bytes beyond the end of the array.
>
> This only reproduces in Valhalla (probably because the mark word layout differs there) and only with `-XX:-UseCompressedClassPointers`. I'll backport the fix to JDK 17u.
>
> Thanks,
> Tobias
Tobias Hartmann has updated the pull request incrementally with one additional commit since the last revision:
Changed SubXNode to SubLNode
-------------
Changes:
- all: https://git.openjdk.java.net/jdk/pull/5014/files
- new: https://git.openjdk.java.net/jdk/pull/5014/files/59bb2fdf..7155e7de
Webrevs:
- full: https://webrevs.openjdk.java.net/?repo=jdk&pr=5014&range=01
- incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=5014&range=00-01
Stats: 1 line in 1 file changed: 0 ins; 0 del; 1 mod
Patch: https://git.openjdk.java.net/jdk/pull/5014.diff
Fetch: git fetch https://git.openjdk.java.net/jdk pull/5014/head:pull/5014
PR: https://git.openjdk.java.net/jdk/pull/5014
More information about the hotspot-compiler-dev
mailing list