mallocbug.c

来自「一个C源代码分析器」· C语言代码 · 共 67 行

67 行

/* Reproduce a GNU malloc bug.  */#include <stdio.h>extern char *malloc ();#define size_t unsigned intintmain (){  char *dummy0;  char *dummy1;  char *fill_info_table1;  char *over_top;  size_t over_top_size = 0x3000;  char *over_top_dup;  size_t over_top_dup_size = 0x7000;  char *x;  size_t i;  /* Here's what memory is supposed to look like (hex):        size  contents        3000  original_info_table, later fill_info_table1      3fa000  dummy0      3fa000  dummy1        6000  info_table_2	3000  over_top	*/  /* mem: original_info_table */  dummy0 = malloc (0x3fa000);  /* mem: original_info_table, dummy0 */  dummy1 = malloc (0x3fa000);  /* mem: free, dummy0, dummy1, info_table_2 */  fill_info_table1 = malloc (0x3000);  /* mem: fill_info_table1, dummy0, dummy1, info_table_2 */  x = malloc (0x1000);  free (x);  /* mem: fill_info_table1, dummy0, dummy1, info_table_2, freexx */  /* This is what loses; info_table_2 and freexx get combined unbeknownst     to mmalloc, and mmalloc puts over_top in a section of memory which     is on the free list as part of another block (where info_table_2 had     been).  */  over_top = malloc (over_top_size);  over_top_dup = malloc (over_top_dup_size);  memset (over_top, 0, over_top_size);  memset (over_top_dup, 1, over_top_dup_size);  for (i = 0; i < over_top_size; ++i)    if (over_top[i] != 0)      {	printf ("FAIL: malloc expands info table\n");	return 0;      }  for (i = 0; i < over_top_dup_size; ++i)    if (over_top_dup[i] != 1)      {	printf ("FAIL: malloc expands info table\n");	return 0;      }  printf ("PASS: malloc expands info table\n");  return 0;}

mallocbug.c - 源码说明

本页面展示了「一个C源代码分析器」中的 mallocbug.c 源码文件，采用 C语言编程语言编写，共 67 行代码。您可以在线阅读完整代码内容，也可以返回资源详情页下载完整源码包进行本地学习和开发。

虫虫下载站收录了大量与源代码相关的技术资源，包括源代码、技术文档、电路图等，是电子工程师和嵌入式开发者的专业学习平台。

⌨️ 快捷键说明

复制代码Ctrl + C

搜索代码Ctrl + F

全屏模式F11

增大字号Ctrl + =

减小字号Ctrl + -

显示快捷键?