RFR: JDK-8035663 Suspicious failure of test java/util/concurrent/Phaser/FickleRegister.java

Aleksey Shipilev aleksey.shipilev at oracle.com
Wed Nov 19 11:21:40 UTC 2014 

Hi David,

On 11/19/2014 08:17 AM, David Holmes wrote:
> This test failure exposed a number of issues with the logic in
> unsafe.cpp for handling atomic updates of Java long fields on platforms
> without any direct support for a 64-bit CAS operation - platforms for
> which supports_cx8 is not true. This only impacts our SE Embedded PPC32
> platform (where we have been using this fix for some time now) but in
> case other such platforms came along I wanted to get this pushed to
> mainline.

Does this also apply to "double" handling?

> What the unsafe code did was to use the object containing the field as a
> lock object for reading and writing the field. This seems reasonable on
> the surface but in fact had a fatal flaw - because we were locking a
> Java-level visible object inside what was considered to be a lock-free
> code-path by the application and library logic, we could actually induce
> a deadlock - which is why the test failed.

Ouch.

> In addition the code had two further flaws:
> 
> 1. Because the field could also be updated via direct assignment in Java
> code the unsafe code needed to perform an Atomic::load of the field. And
> for good measure we also employ an Atomic::store to ensure no
> interference with direct reads of the field in Java code.

I am confused by this explanation. This seems to imply Atomic::store and
Atomic::load are already providing the access atomicity. Why do we need
the lock?

Given the interaction with Java code, I wonder if this should be handled
in per-platform Atomic::* definitions, not in Unsafe stubs? Also, if
Atomic::* provide the atomic support, why do we have this:

1178 #ifdef SUPPORTS_NATIVE_CX8
1179   return (jlong)(Atomic::cmpxchg(x, addr, e)) == e;
1180 #else
1181   if (VM_Version::supports_cx8())
1182     return (jlong)(Atomic::cmpxchg(x, addr, e)) == e;
1183   else {
1184     jboolean success = false;
1185     MutexLockerEx mu(UnsafeJlong_lock,
Mutex::_no_safepoint_check_flag);
1186     jlong val = Atomic::load(addr);
1187     if (val == e) { Atomic::store(x, addr); success = true; }
1188     return success;
1189   }
1190 #endif

...instead of delegating to Atomic::cmpxchg directly? If locking is
needed to maintain the atomicity in absence of 8-byte CAS on target
platform, the Atomic::* should IMO maintain the global lock guarding
*all* load/stores as well as CASes there.

Thanks,
-Aleksey.

More information about the hotspot-dev mailing list