JDK-8066227 : Fuzzing bug: CodeGenerator load unitialized slot
  • Type: Sub-task
  • Component: core-libs
  • Sub-Component: jdk.nashorn
  • Affected Version: 8u60
  • Priority: P3
  • Status: Resolved
  • Resolution: Fixed
  • OS: generic
  • CPU: generic
  • Submitted: 2014-12-01
  • Updated: 2015-06-04
  • Resolved: 2014-12-08
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 8 JDK 9
8u40Fixed 9 b43Fixed
Related Reports
Cloners :  
JDK-8066228 - Fuzzing bug: AssertionError when entering function body
Cloners :  
JDK-8066226 - Fuzzing bug: parameter counts differ in TypeConverterFactory
Description
jjs> function f() { var x; (x -= x = 0); } f()
Exception in thread "main" java.lang.AssertionError: Attempted load of uninitialized slot 1 (as type int)
   at jdk.nashorn.internal.codegen.MethodEmitter.load(MethodEmitter.java:993)
   at jdk.nashorn.internal.codegen.MethodEmitter.load(MethodEmitter.java:955)
   at jdk.nashorn.internal.codegen.MethodEmitter.load(MethodEmitter.java:937)
   at jdk.nashorn.internal.codegen.CodeGenerator.loadIdent(CodeGenerator.java:318)
   at jdk.nashorn.internal.codegen.CodeGenerator.access$400(CodeGenerator.java:183)
   at jdk.nashorn.internal.codegen.CodeGenerator$1.enterIdentNode(CodeGenerator.java:725)
   at jdk.nashorn.internal.ir.IdentNode.accept(IdentNode.java:138)
   at jdk.nashorn.internal.codegen.CodeGenerator.loadExpression(CodeGenerator.java:722)
   at jdk.nashorn.internal.codegen.CodeGenerator.loadBinaryOperands(CodeGenerator.java:590)
   at jdk.nashorn.internal.codegen.CodeGenerator.access$6800(CodeGenerator.java:183)
   ...