Here are a few good candidates for undefined behavior:
scanf("%d", &size);
int array[size];
for (int i = 0; i < size; i++) {
array[i] = rand() % 1001;
}
If size is too large, say greater than a few millions, the array allocated with automatic storage will likely cause a stack overflow.
char str[512];
int i = 0;
int index = 0;
for (i = 0; i < size; i++) {
index += sprintf(&str[index], "%d,", array[i]);
}
If size entered by the user is larger than 128, the code converting the array to a string will likely cause a buffer overflow causing undefined behavior.
In the child process:
puts(addr);
addr points to the memory mapped file contents. This file does not contain a null terminator, hence if by chance its size is a multiple of the page size, the memory mapped block will not contain a null terminator and puts(addr) will read beyond the end of the block, causing undefined behavior.
Note that none of the above may cause the process to fail before the first printf call.
发布评论
评论(1)
以下是一些不确定行为的好候选人:
如果
大小太大,则说明数百万,用自动存储分配的阵列可能会导致 stack Overflow 。如果用户输入的
size大于128,则将数组转换为字符串的代码可能会导致缓冲区溢出,从而导致不确定的行为。在子进程中:
addr指向内存映射的文件内容。该文件不包含零件终结器,因此,如果偶然的大小是页面大小的倍数,则内存映射块将不包含null终结器,puts(addr)将读取块,导致不确定的行为。请注意,以上都不会导致该过程在第一个
printf调用之前失败。Here are a few good candidates for undefined behavior:
If
sizeis too large, say greater than a few millions, the array allocated with automatic storage will likely cause a stack overflow.If
sizeentered by the user is larger than 128, the code converting the array to a string will likely cause a buffer overflow causing undefined behavior.In the child process:
addrpoints to the memory mapped file contents. This file does not contain a null terminator, hence if by chance its size is a multiple of the page size, the memory mapped block will not contain a null terminator andputs(addr)will read beyond the end of the block, causing undefined behavior.Note that none of the above may cause the process to fail before the first
printfcall.