[jdk11u-dev] Impact of JDK-8279219 and potential patch update 11.0.16.1
Carter Kozak
ckozak at ckozak.net
Thu Aug 11 15:57:15 UTC 2022
I would advocate strongly in favor of a 11.0.16.1 patch release prior to the planned 11.0.17 update in October based on my observations in deployed Java-based applications.I don’t think David is suggesting that we should simply revert the linked commit and I certainly wouldn’t presume to suggest that’s the correct solution for a hotfix release, only that this issue is causing massive impact across Java applications which use TLS and once a fix is known and validated, it would be valuable to release prior to 11.0.17.
As a temporary workaround, we are disabling compilation of SSLEngineInputRecord.decodeInputRecord via -XX:CompileCommand=exclude,sun/security/ssl/SSLEngineInputRecord.decodeInputRecord as this code structure is the trigger from our observed crashes; however, there may be similar code structures that could trigger this failure mode and lead to JVM crashes. We are also exploring the impacts of disabling split if blocks via -XX:-SplitIfBlocks.
Best,
Carter Kozak
More information about the jdk-updates-dev
mailing list