8279545: Buffer overrun in reverse_words of sharedRuntime_x86_64.cpp:3517

[hseigel]

Please review this small fix to prevent a potential integer overflow that can cause a buffer overrun. The fix was tested with Mach5 tiers 1-2 on Linux, Mac OS, and Windows, Mach5 tiers 3-5 on Linux x64, and Mach5 builds of the JDK on PPC and S390.

Thanks, Harold

---

Progress

• Change must not contain extraneous whitespace
• Commit message must refer to an issue
• Change must be properly reviewed

Issue

• JDK-8279545: Buffer overrun in reverse_words of sharedRuntime_x86_64.cpp:3517

Reviewers

• Coleen Phillimore (@coleenp - Reviewer)
• Lois Foltan (@lfoltan - Reviewer)

Reviewing

Using git

Checkout this PR locally:
$ git fetch https://git.openjdk.java.net/jdk pull/7053/head:pull/7053
$ git checkout pull/7053

Update a local copy of the PR:
$ git checkout pull/7053
$ git pull https://git.openjdk.java.net/jdk pull/7053/head

Using Skara CLI tools

Checkout this PR locally:
$ git pr checkout 7053

View PR using the GUI difftool:
$ git pr show -t 7053

Using diff file

Download this PR as a diff file:
https://git.openjdk.java.net/jdk/pull/7053.diff

[bridgekeeper]

👋 Welcome back hseigel! A progress list of the required criteria for merging this PR into master will be added to the body of your pull request. There are additional pull request commands available for use with this pull request.

[openjdk]

@hseigel The following label will be automatically applied to this pull request:

• hotspot-compiler

When this pull request is ready to be reviewed, an "RFR" email will be sent to the corresponding mailing list. If you would like to change these labels, use the /label pull request command.

[hseigel]

/label add hotspot-runtime

[openjdk]

@hseigel
The hotspot-runtime label was successfully added.

[mlbridge]

Webrevs

• 01: Full - Incremental (66425037)
• 00: Full (c570c10f)

[coleenp]

I was mystified about this number. Can you make this instead like:

int thing = sizeof (unsigned long) * 3;
guarantee(longwords <= 8192 / thing, "must be");

Or is division just as unsafe?

Should this be uint64_t, not long ? Or change it to julong if it's a small change to match the x86 version.

[hseigel]

How about just: guarantee(longwords <= 8092 / (sizeof(julong) * 3), "must be"); ?
I don't think that doing division is a problem.

[coleenp]

Looks good, thanks!

[openjdk]

@hseigel This change now passes all automated pre-integration checks.

ℹ️ This project also has non-automated pre-integration requirements. Please see the file CONTRIBUTING.md for details.

After integration, the commit message for the final commit will be:

8279545: Buffer overrun in reverse_words of sharedRuntime_x86_64.cpp:3517

Reviewed-by: coleenp, lfoltan

You can use pull request commands such as /summary, /contributor and /issue to adjust it as needed.

At the time when this comment was updated there had been 26 new commits pushed to the master branch:

• e8f494c: 8279825: JFR: JFCModel shouldn't need FilePermission to read predefined .jfc files
• 9f30ec1: 8278398: jwebserver: Add test to confirm maximum request time
• dd76a28: 8280000: Remove unused CardTable::find_covering_region_containing
• 84976b4: 8278549: UNIX sun/font coding misses SUSE distro detection on recent distro SUSE 15
• 965c64b: 8279699: Parallel: More precise boundary in ObjectStartArray::object_starts_in_range
• 35172cd: 8278951: containers/cgroup/PlainRead.java fails on Ubuntu 21.10
• 237f861: 8273143: Transition to _thread_in_vm when handling a polling page exception
• 9209e6d: 8279877: Document IDEA IDE setup in docs/ide.md
• 0a839b4: 8279801: EC KeyFactory and KeyPairGenerator do not have aliases for OID format
• 6fcaa32: 8262442: (windows) Use all proxy configuration sources when java.net.useSystemProxies=true
• ... and 16 more: https://git.openjdk.java.net/jdk/compare/f54ce84474c2ced340c92564814fa5c221415944...master

As there are no conflicts, your changes will automatically be rebased on top of these commits when integrating. If you prefer to avoid this automatic rebasing, please check the documentation for the /integrate command for further details.

➡️ To integrate this PR with the above commit message to the master branch, type /integrate in a new comment.

[lfoltan]

Looks good.
Lois

[hseigel]

Thanks Coleen and Lois for the reviews!

/integrate

[openjdk]

Going to push as commit 35734ad.
Since your change was applied there have been 26 commits pushed to the master branch:

• e8f494c: 8279825: JFR: JFCModel shouldn't need FilePermission to read predefined .jfc files
• 9f30ec1: 8278398: jwebserver: Add test to confirm maximum request time
• dd76a28: 8280000: Remove unused CardTable::find_covering_region_containing
• 84976b4: 8278549: UNIX sun/font coding misses SUSE distro detection on recent distro SUSE 15
• 965c64b: 8279699: Parallel: More precise boundary in ObjectStartArray::object_starts_in_range
• 35172cd: 8278951: containers/cgroup/PlainRead.java fails on Ubuntu 21.10
• 237f861: 8273143: Transition to _thread_in_vm when handling a polling page exception
• 9209e6d: 8279877: Document IDEA IDE setup in docs/ide.md
• 0a839b4: 8279801: EC KeyFactory and KeyPairGenerator do not have aliases for OID format
• 6fcaa32: 8262442: (windows) Use all proxy configuration sources when java.net.useSystemProxies=true
• ... and 16 more: https://git.openjdk.java.net/jdk/compare/f54ce84474c2ced340c92564814fa5c221415944...master

Your commit was automatically rebased without conflicts.

[openjdk]

@hseigel Pushed as commit 35734ad.

💡 You may see a message that your pull request was closed with unmerged commits. This can be safely ignored.