stackoom
  简体   繁体   中英

What happens when a Java String overflows?

 原文  2020-03-19 11:02:13       java/ arrays/ string/ char/ overflow

Question

As far as I understand,Java Strings are just an array of characters, with the maximum length being an integer value. If I understand this answer correctly, it is possible to cause an overflow with a String - albeit in " unusual circumstances ".

Since Java Strings are based on char arrays and Java automatically checks array bounds, buffer overflows are only possible in unusual scenarios:

  1. If you call native code via JNI
  2. In the JVM itself (usually written in C++)
  3. The interpreter or JIT compiler does not work correctly (Java bytecode mandated bounds checks)

Correct me if I'm wrong, but I believe this means that you can write outside the bounds of the array, without triggering the ArrayIndexOutOfBounds (or similar) exception.

I've encountered issues in C++ with buffer overflows, and I can find plenty of advice about other languages , but none specifically answering what would happen if you caused a buffer overflow with a String (or any other array type) in Java.

I know that Java Strings are bounds-checked, and can't be overflowed by native Java code alone (unless issues are present in the compiler or JVM, as per points 2 and 3 above), but the first point implies that it is technically possible to get a char[] into an... undesirable position.

Given this, I have two specific questions about the behaviour of such issues in Java, assuming the above is correct:

  1. If a String can overflow, what happens when it does?
  2. What would the implications of this behaviour be?

Thanks in advance.

2 answers

solution1
 3  2020-03-19 11:12:05

To answer you first question, I had the luck of actually causing a error of such, and the execution just stopped throwing one of these errors:

java.lang.OutOfMemoryError: Requested array size exceeds VM limit

So that was my case, I don't know if that represents a security problem as buffer overflow in C and C++.

solution2
 0  2020-03-19 12:01:00

A String in Java is immutable, so once created there is no writing to the underlying array of char or array of byte (it depends on the Java version and contents of the String whether one or the other is used). Ok, using JNI could circumvent that, but with pure Java, it is impossible to leave the bounds of the array without causing an ArrayOutOfBoundsException or alike.

The only way to cause a kind of an overflow in the context of String handling would be to create a new String that is too long. Make sure that your JVM will have enough heap (around 36 GB), create a char array of Integer.MAX_VALUE - 1 , populate that appropriately, call new String( byte [] ) with that array, and then execute

var string = string.concat( new String( array ) );

But the result is just an exception telling you that it was attempted to create a too large array.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question What happens when I try to get the bytes for a String but the conversion from Character to Byte overflows the Integer length? What happens under the hood when bytes converted to String in Java? What happens at compile and runtime when concatenating an empty string in Java? What happens when String args[] is replaced with int args[] in Java? What happens when a path for ImageIcon(String) is invalid (Java)? What happens when assigned null to String object? What happens to integer when converted to String What happens to the ThreadPoolExecutor when thread dies in Java What happens when java program starts? what really happens when passing objects in java?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM