Fix underestimation of array length in constrainAload #7461
Conversation
Increase the upper bound of array length constraint in constrainAload by taking heap size into account, fixing erroneous failed ArrayCopyBNDCHK
|
@hzongaro Could I get a review on this when you get back? |
|
Since this is for 0.48, maybe I should get a quicker review. @0xdaryl @vijaysun-omr would one of you be able to review this when you get a chance? |
|
Can you please elaborate on the actual problem ? i.e. what was the array info constraint saying originally and how does the fix address it ? Maybe the problem is that |
|
jenkins build all |
That's correct. I've updated the description with a more in depth explanation of the problem and how this PR will fix it. |
dylanjtuttle
changed the title
|
@vijaysun-omr Does this need to be double delivered for 0.48? This is the first time I've been in a situation where that might be necessary, so I'm not sure what that entails. |
|
@pshipton, is it too late for us to get this into the OpenJ9 0.48 release? |
It would entail opening a pull request for this change against the OpenJ9-OMR 0.48 release branch. |
No, everything is delayed. |
To this point, VP has constrained the length of an array in
constrainAloadto be between 0 andTR::getMaxSigned<TR::Int32>() / elementSizeelements long. This was likely a due to a historical limitation. Since arrays can be longer thanTR::getMaxSigned<TR::Int32>()bytes, if such an array were copied, it would fail theArrayCopyBNDCHK, causing erroneous removal of trees that would prevent the copy from being performed. I discussed my findings during my investigation of this issue in a series of comments in openj9 #19247.This PR increases the high bound of the constraint on the length of an array in
constrainAloadby usingJ9::ObjectModel::maxArraySizeInElements()instead, which produces a better upper bound based on the size of the heap. We already use this method in other parts of VP, likeconstrainArraylength.Fixes: openj9 #19247, openj9 #19403, openj9 #15500 (most likely)