双重释放或内存损坏
我有这样的代码
char *verboseBuf = NULL;
if(somethin){
for(a loop){
for(another loop){
if(somethin else){
if(curl execution){
if(fail){
verboseBuf = (char *) malloc(sizeof(char) * (currSize +1));
fread(verboseBuf, 1, currSize, verboseFd);
verboseBuf[currSize + 1] = '\0';
string verbose = verboseBuf;
free(verboseBuf);
}
}
}
}
}
}
我使用 verboseBuf 的唯一地方是在最后的 if 循环内。但我明白了,
*** glibc detected *** ./test: double free or corruption (!prev): 0x13c13290 ***
但是如果我只在一个地方使用它,怎么能释放它两次呢?每次我使用它时,我都会释放它。 我尝试使用 addr2line 来查找之前释放它的位置,但得到的只是 ??:0。
I have a code like this
char *verboseBuf = NULL;
if(somethin){
for(a loop){
for(another loop){
if(somethin else){
if(curl execution){
if(fail){
verboseBuf = (char *) malloc(sizeof(char) * (currSize +1));
fread(verboseBuf, 1, currSize, verboseFd);
verboseBuf[currSize + 1] = '\0';
string verbose = verboseBuf;
free(verboseBuf);
}
}
}
}
}
}
The only place that i use the verboseBuf is inside the final if loop. but i get
*** glibc detected *** ./test: double free or corruption (!prev): 0x13c13290 ***
But how can be freeing it twice if i only use it in one place? and everytime i use it, i free it.
I tried using addr2line to find the place where it was freed previously but all got was a ??:0.
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(3)
这一行正在向缓冲区末尾写入一个字节。
This line is writing one byte past the end of your buffer.
该消息并不具体意味着您两次释放某些内容,而是意味着 glibc 检测到堆损坏,并且释放两次内容是造成这种情况的一个常见原因,但不是唯一的原因。
在这种情况下,该行
溢出了缓冲区的末尾,从而破坏了分配器在其之后存储的所有簿记数据。删除+1,它应该可以工作。
That message doesn't specifically mean that you freed something twice, it means that glibc detected heap corruption, and freeing things twice is one common cause of that, but not the only one.
In this case, the line
is overflowing the end of your buffer, corrupting whatever bookkeeping data the allocator stored after it. Remove the +1 and it should work.
将
verboseBuf[currSize + 1] = '\0';设为verboseBuf[currSize] = '\0';Make
verboseBuf[currSize + 1] = '\0';asverboseBuf[currSize] = '\0';