8159244: Partially initialized string object created by C2's string concat optimization may escape

Emit release barrier after String creation to prevent partially initialized object from escaping. Reviewed-by: kvn
2025-09-23 12:34:32 +02:00 · 2016-06-15 07:58:56 +02:00 · 2016-06-15 07:58:56 +02:00 · 3fddb36924
commit 3fddb36924
parent 467a5400d2
2 changed files with 85 additions and 1 deletions
--- a/hotspot/src/share/vm/opto/stringopts.cpp
+++ b/hotspot/src/share/vm/opto/stringopts.cpp
@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2009, 2015, Oracle and/or its affiliates. All rights reserved.
+ * Copyright (c) 2009, 2016, Oracle and/or its affiliates. All rights reserved.
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
 *
 * This code is free software; you can redistribute it and/or modify it
@ -1958,6 +1958,12 @@ void PhaseStringOpts::replace_string_concat(StringConcat* sc) {
    // Initialize the string
    kit.store_String_value(kit.control(), result, dst_array);
    kit.store_String_coder(kit.control(), result, coder);
+
+    // The value field is final. Emit a barrier here to ensure that the effect
+    // of the initialization is committed to memory before any code publishes
+    // a reference to the newly constructed object (see Parse::do_exits()).
+    assert(AllocateNode::Ideal_allocation(result, _gvn) != NULL, "should be newly allocated");
+    kit.insert_mem_bar(Op_MemBarRelease, result);
  } else {
    result = C->top();
  }