JDK-8191009 : Additional information to JDK-8168914 - G1GC SIGSEGV oopDesc::size()
  • Type: Bug
  • Component: hotspot
  • Sub-Component: gc
  • Affected Version: 8u144
  • Priority: P4
  • Status: Closed
  • Resolution: Duplicate
  • OS: linux_ubuntu
  • CPU: x86_64
  • Submitted: 2017-11-07
  • Updated: 2017-11-09
  • Resolved: 2017-11-09
Related Reports
Duplicate :  
Description
FULL PRODUCT VERSION :
java version "1.8.0_151"
Java(TM) SE Runtime Environment (build 1.8.0_151-b12)
Java HotSpot(TM) 64-Bit Server VM (build 25.151-b12, mixed mode)

FULL OS VERSION :
Linux kris 4.4.0-83-generic #106~14.04.1-Ubuntu SMP Mon Jun 26 18:10:19 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux

EXTRA RELEVANT SYSTEM CONFIGURATION :
ECC Ram

A DESCRIPTION OF THE PROBLEM :
Unexpected Segmentation fault in the G1 garbage collector.

THE PROBLEM WAS REPRODUCIBLE WITH -Xint FLAG: Did not try

THE PROBLEM WAS REPRODUCIBLE WITH -server FLAG: Yes

STEPS TO FOLLOW TO REPRODUCE THE PROBLEM :
Unkown, Program was running for more than 30 days at this point.

ERROR MESSAGES/STACK TRACES THAT OCCUR :
#
# A fatal error has been detected by the Java Runtime Environment:
#
#  SIGSEGV (0xb) at pc=0x00007f1c7ca909db, pid=20427, tid=0x00007f1c5434b700
#
# JRE version: Java(TM) SE Runtime Environment (8.0_144-b01) (build 1.8.0_144-b01)
# Java VM: Java HotSpot(TM) 64-Bit Server VM (25.144-b01 mixed mode linux-amd64 compressed oops)
# Problematic frame:
# V  [libjvm.so+0x4cb9db]  oopDesc::size()+0x5b
#
# Failed to write core dump. Core dumps have been disabled. To enable core dumping, try "ulimit -c unlimited" before starting Java again
#
# If you would like to submit a bug report, please visit:
#   http://bugreport.java.com/bugreport/crash.jsp
#

---------------  T H R E A D  ---------------

Current thread (0x00007f1c78060800):  ConcurrentGCThread [stack: 0x00007f1c5424b000,0x00007f1c5434c000] [id=20454]

siginfo: si_signo: 11 (SIGSEGV), si_code: 1 (SEGV_MAPERR), si_addr: 0x0000000000480330

Registers:
RAX=0x00007f1c7d55b7e0, RBX=0x00007f1c7807a450, RCX=0x0000000000000003, RDX=0x0000000000000003
RSP=0x00007f1c5434aa40, RBP=0x00007f1c5434aa40, RSI=0x0000000000000001, RDI=0x0000000000480328
R8 =0x000000043fd8f158, R9 =0x0000080000000000, R10=0x000000048777aad0, R11=0x00007f1c78061dd0
R12=0x000000043fd8f158, R13=0x00007f1bb4443520, R14=0x00007f1c7805a420, R15=0x00007f1c78061dd0
RIP=0x00007f1c7ca909db, EFLAGS=0x0000000000010206, CSGSFS=0x0000000000000033, ERR=0x0000000000000004
  TRAPNO=0x000000000000000e

Top of Stack: (sp=0x00007f1c5434aa40)
0x00007f1c5434aa40:   00007f1c5434aaa0 00007f1c7cc1e360
0x00007f1c5434aa50:   0000000000000040 00007f1c78072440
0x00007f1c5434aa60:   00007f1c5434aaf0 00007f1c7ca8c40b
0x00007f1c5434aa70:   00007f1c5434aa80 0000000447db72f8
0x00007f1c5434aa80:   0000000447db72f8 00000007c0001938
0x00007f1c5434aa90:   00007f1c5434aba0 00000007c0001940
0x00007f1c5434aaa0:   00007f1c5434aaf0 00007f1c7cc16527
0x00007f1c5434aab0:   0000000000000000 0000000447db72e8
0x00007f1c5434aac0:   00000007c00016d0 0000000447db72e8
0x00007f1c5434aad0:   00007f1c7807a450 00007f1c5434abf0
0x00007f1c5434aae0:   0000000000440000 0000000011000000
0x00007f1c5434aaf0:   00007f1c5434ab20 00007f1c7ca93d34
0x00007f1c5434ab00:   000000000002d8f2 0000000010fb6e5d
0x00007f1c5434ab10:   00007f1c7805a4a8 00007f1c7807a450
0x00007f1c5434ab20:   00007f1c5434ac60 00007f1c7ca8d41e
0x00007f1c5434ab30:   3fe0000000000000 00007f1c7ca922da
0x00007f1c5434ab40:   00007f1b300008f0 00007f1c5434ac80
0x00007f1c5434ab50:   00007f1c7807a560 00007f1c5434abf0
0x00007f1c5434ab60:   01007f1c78253b10 4024000000000000
0x00007f1c5434ab70:   00000007c0000001 00007f1c5434ac98
0x00007f1c5434ab80:   3fff915e54e50293 3fff915e54e50293
0x00007f1c5434ab90:   00007f1c7805a4c0 0000000448000000
0x00007f1c5434aba0:   00007f1c7d520ad0 000000000093fa00
0x00007f1c5434abb0:   00007f1c782c7f70 00007f1c7d52a6a0
0x00007f1c5434abc0:   0000000000002900 00007f1c5434aba0
0x00007f1c5434abd0:   00007f1c7805a420 00007f1c7801cce0
0x00007f1c5434abe0:   00007f1c7807a450 0000000000000000
0x00007f1c5434abf0:   00007f1c7d520a50 00007f1c7805a4a8
0x00007f1c5434ac00:   00007f1c7805a420 00007f1c7807a450
0x00007f1c5434ac10:   00007f1c7d520ab0 00007f1c7807a450
0x00007f1c5434ac20:   00007f1c7801cce0 0000000000000000
0x00007f1c5434ac30:   0000000000000000 0000000000000000

Instructions: (pc=0x00007f1c7ca909db)
0x00007f1c7ca909bb:   48 89 e5 0f b6 30 40 84 f6 74 2a 48 8b 05 4b bc
0x00007f1c7ca909cb:   aa 00 8b 7f 08 8b 50 08 89 d1 48 d3 e7 48 03 38
0x00007f1c7ca909db:   8b 4f 08 83 f9 00 7e 19 f6 c1 01 75 18 89 c8 c9
0x00007f1c7ca909eb:   c1 f8 03 c3 90 48 8b 7f 08 8b 4f 08 83 f9 00 7f

Register to memory mapping:

RAX=0x00007f1c7d55b7e0: <offset 0xf967e0> in /usr/lib/jvm/java-8-oracle/jre/lib/amd64/server/libjvm.so at 0x00007f1c7c5c5000
RBX=0x00007f1c7807a450 is an unknown value
RCX=0x0000000000000003 is an unknown value
RDX=0x0000000000000003 is an unknown value
RSP=0x00007f1c5434aa40 is an unknown value
RBP=0x00007f1c5434aa40 is an unknown value
RSI=0x0000000000000001 is an unknown value
RDI=0x0000000000480328 is an unknown value
R8 =0x000000043fd8f158 is pointing into object: 0x000000043fd7c478
[C
 - klass: {type array char}
 - length: 100066
R9 =0x0000080000000000 is an unknown value
R10=0x000000048777aad0 is an oop
[C
 - klass: {type array char}
 - length: 8
R11=0x00007f1c78061dd0 is an unknown value
R12=0x000000043fd8f158 is pointing into object: 0x000000043fd7c478
[C
 - klass: {type array char}
 - length: 100066
R13=0x00007f1bb4443520 is an unknown value
R14=0x00007f1c7805a420 is an unknown value
R15=0x00007f1c78061dd0 is an unknown value


Stack: [0x00007f1c5424b000,0x00007f1c5434c000],  sp=0x00007f1c5434aa40,  free space=1022k
Native frames: (J=compiled Java code, j=interpreted, Vv=VM code, C=native code)
V  [libjvm.so+0x4cb9db]  oopDesc::size()+0x5b
V  [libjvm.so+0x659360]  CMTask::deal_with_reference(oopDesc*)+0x1a0
V  [libjvm.so+0x651527]  InstanceKlass::oop_oop_iterate_nv(oopDesc*, G1CMOopClosure*)+0xf7
V  [libjvm.so+0x4ced34]  CMBitMapClosure::do_bit(unsigned long)+0xa4
V  [libjvm.so+0x4c841e]  CMTask::do_marking_step(double, bool, bool)+0xace
V  [libjvm.so+0x4cf4bd]  CMConcurrentMarkingTask::work(unsigned int)+0x10d
V  [libjvm.so+0xaeccff]  GangWorker::run()+0x1f
V  [libjvm.so+0x92a338]  os::Linux::initialize_system_info()+0x58


Heap:
 garbage-first heap   total 4579328K, used 3894206K [0x00000003c0000000, 0x00000003c04022f0, 0x00000007c0000000)
  region size 4096K, 72 young (294912K), 6 survivors (24576K)
 Metaspace       used 234059K, capacity 343362K, committed 371280K, reserved 1361920K
  class space    used 35755K, capacity 44952K, committed 58748K, reserved 1048576K
  
VM Arguments:
jvm_args: -DM=/.kris -Xmx16G -Xms1G -XX:MaxHeapFreeRatio=40 -XX:MinHeapFreeRatio=20 -XX:+UseCodeCacheFlushing -XX:ReservedCodeCacheSize=512m -Djava.awt.headless=true -XX:+UseG1GC -XX:MaxGCPauseMillis=2000 -XX:GCTimeRatio=4 -XX:InitiatingHeapOccupancyPercent=15 -XX:+ParallelRefProcEnabled -XX:+UseStringDeduplication -Xverify:none -XX:+UseBiasedLocking -XX:+UseFastAccessorMethods -XX:+UseFastEmptyMethods -XX:-OmitStackTraceInFastThrow -Dfile.encoding=UTF8 -XX:+EliminateLocks -XX:+UseBiasedLocking -Djava.net.preferIPv4Stack=true -Dsun.net.inetaddr.negative.ttl=60 -Dsun.net.inetaddr.ttl=60 -XX:-HeapDumpOnOutOfMemoryError -XX:HeapDumpPath=/.kris/oom.hprof
java_command: server.jar --noTabs --outputFileName /.kris/logs/stdout.log de.ipcon.db.DBMan .kris
java_class_path (initial): server.jar
Launcher Type: SUN_STANDARD

Environment Variables:
JAVA_HOME=/usr/lib/jvm/java-8-oracle
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
USERNAME=kris
SHELL=/bin/bash  

REPRODUCIBILITY :
This bug can be reproduced rarely.


Comments
This issue is duplicate of JDK-8168914 as reported. Issue observed on 8u144 b01. This issue is already fixed in 8u152 b04. Kindly update to latest Java version to avoid this issue - http://www.oracle.com/technetwork/java/javase/downloads/jdk8-downloads-2133151.html Please do let us know if you still observe the issue.
09-11-2017