JDK-8282475 : SafeFetch should not rely on existence of Thread::current
  • Type: Enhancement
  • Component: hotspot
  • Sub-Component: runtime
  • Affected Version: 11,16,17,18,19
  • Priority: P4
  • Status: Resolved
  • Resolution: Duplicate
  • OS: os_x
  • CPU: aarch64
  • Submitted: 2022-03-01
  • Updated: 2022-04-19
  • Resolved: 2022-04-19
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
Other
tbdResolved
Related Reports
Relates :  
JDK-8283326 - Implement SafeFetch statically
Relates :  
JDK-8253795 - Implementation of JEP 391: macOS/AArch64 Port
Description
Since JDK-8253795, SafeFetch on MacOS aarch64 needs the current Thread to function:

```
// Safefetch allows to load a value from a location that's not known
// to be valid. If the load causes a fault, the error value is returned.
inline int SafeFetch32(int* adr, int errValue) {
  assert(StubRoutines::SafeFetch32_stub(), "stub not yet generated");
#if defined(__APPLE__) && defined(AARCH64)
  Thread* thread = Thread::current_or_null_safe();
  assert(thread != NULL, "required for W^X management");
  ThreadWXEnable wx(WXExec, thread);
#endif // __APPLE__ && AARCH64
  return StubRoutines::SafeFetch32_stub()(adr, errValue);
}
```

This is not good, since SafeFetch, by design, is supposed to be safe and never crash as long as the SafeFetch routines have been initialized (StubRoutines::CanUseSafeFetch() == true). By definition, its job is to be safe. And it can be used at unpredictable times (error handling, AsyncGetCallTrace etc) so no guarantee that we always have a current thread.

Also, this is an assert, so in release builds we would just crash at that point.

Thread::current is needed here to save/restore the state of the WX flag for the current thread. I assume this is done to enable the safe nesting of WX state switches. Would be interesting to know whether
1) We ever do nest ThreadWXEnable - is this realistic? If not, we don't need to know the current WX flag state, we could just switch it on before calling into generated code, off when leaving.
2) whether there is a way to query the current thread's wx state from the OS instead of storing it into Thread (I did not find an API for that but maybe I'm looking at the wrong place)

If this cannot be changed for MacOS aarch64, we should make "Thread::current != NULL" a precondition for CanUseSafeFetch() on that platform. Callers are supposed to call CanUseSafeFetch before using SafeFetch, so that would at least prevent asserts.
Comments
Fixed with JDK-8283326
19-04-2022
Has been fixed with JDK-8283326
19-04-2022
Current thinking is that we should generate SafeFetch on the affected platforms - and possibly others as well - statically. That way the whole reason for this WX switching disappears. I am working on a prototype.
15-03-2022
A pull request was submitted for review. URL: https://git.openjdk.java.net/jdk/pull/7727 Date: 2022-03-07 11:29:08 +0000
07-03-2022
To answer your questions: 1) Nesting seems to occur. 2) there is only an ugly way (inline assembly that uses an undocumented register) A solution is to store it in a thread local global variable.
07-03-2022