malloc error

A

afarah

Under what condition will we see a segmentation fault in the malloc
library routine? Specifically, a failure in call to "chunk_alloc()"
from within malloc.

I have a multi-threaded c++ program that occasionally core-dumps in
"malloc" when running on Linux 2.4 (it always works fine on Solaris
5). The stack trace shows the final call to "chunk_alloc".

I would like to re-create this bug within a debugger. However, the
segmentation fault happens so infrequently that I think I need to have
a better idea of how a problem like this can arise before I can
re-create it.

Many thanks in advance for any ideas.
 
V

Victor Bazarov

afarah said:
Under what condition will we see a segmentation fault in the malloc
library routine? Specifically, a failure in call to "chunk_alloc()"
from within malloc.

I have a multi-threaded c++ program that occasionally core-dumps in
"malloc" when running on Linux 2.4 (it always works fine on Solaris
5). The stack trace shows the final call to "chunk_alloc".

I would like to re-create this bug within a debugger. However, the
segmentation fault happens so infrequently that I think I need to have
a better idea of how a problem like this can arise before I can
re-create it.

Many thanks in advance for any ideas.
Click to expand...

Multi-threading is OT here simply because C++ program model is a single
process on a single CPU with all parts of the program executing in
a sequence. Intrinsics of C library are too, because they are very
compiler-specific. Differences between OSes are also beyond the scope
of this newsgroup. Perhaps you will find better help in a forum for
your compiler or OS. Try comp.os.linux.development.apps or gnu.g++.help.

In general a library routine fails when it gets invalid input, and there
is no invalid input for malloc, IIRC. Any number you pass in is going to
be interpreted as an unsigned integral value, and the system will either
allocate the requested amount, in which case a pointer to it is returned,
or fail to do so, in which case it will return a null pointer.

In most cases unexpected segmentation faults are due to memory corruption
that happened some time before the code that breaks is executed. You may
need some memory checking tools (like Purify) to see what's going wrong
with the program's memory. Of course, program's being multithreaded
doesn't really help...

Good luck!

Victor
 
?

=?ISO-8859-1?Q?=22Nils_O=2E_Sel=E5sdal=22?=

afarah said:
Under what condition will we see a segmentation fault in the malloc
library routine? Specifically, a failure in call to "chunk_alloc()"
from within malloc.
Click to expand...
If there is a bug in the malloc library.

More common though, you have a nasty bug which does something very
bad, probably corrupting the heap,stack or otherwise invoke undefined
behavior.
I have a multi-threaded c++ program that occasionally core-dumps in
"malloc" when running on Linux 2.4 (it always works fine on Solaris
5). The stack trace shows the final call to "chunk_alloc".

I would like to re-create this bug within a debugger. However, the
segmentation fault happens so infrequently that I think I need to have
a better idea of how a problem like this can arise before I can
re-create it.
Click to expand...
Get a hold of valgrind, and run your program in its memory checker tool.
 
R

Ron Natalie

afarah said:
Under what condition will we see a segmentation fault in the malloc
library routine? Specifically, a failure in call to "chunk_alloc()"
from within malloc.
Click to expand...
To amplify on what Victor said. The most common problem with malloc()
and free() exploding is that on a previous allocation you did something
bad.

The most common ones are:

1. Freeing something not malloced, or freeing the same value twice.
2. (I vote for this one) Writing out of the bounds of a previous malloc.
Common malloc implementations put control information for the space
management intermixed with the allocations. Write a few bytes outside
of a malloc'd region is almost sure to corrupt malloc's internal data.
 
G

Gianni Mariani

afarah said:
Under what condition will we see a segmentation fault in the malloc
library routine? Specifically, a failure in call to "chunk_alloc()"
from within malloc.

I have a multi-threaded c++ program that occasionally core-dumps in
"malloc" when running on Linux 2.4 (it always works fine on Solaris
5). The stack trace shows the final call to "chunk_alloc".

I would like to re-create this bug within a debugger. However, the
segmentation fault happens so infrequently that I think I need to have
a better idea of how a problem like this can arise before I can
re-create it.

Many thanks in advance for any ideas.
Click to expand...

It's an app bug.

Try running the app under valgrind with and set the environment variable
GLIBCXX_FORCE_NEW (or GLIBCPP_FORCE_NEW depending on version of GCC).

Or try runnung under efence.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

malloc creates seg faults? 7
malloc for members of a structure and a segmentation fault 19
Looking for malloc() help 19
Question to malloc 13
a fast malloc/free implementation & benchmarks 0
malloc segmentation fault 9
gcc knows about malloc() 68
Need help with bug (glibc, linux, malloc-related) 7

Members online

Total: 29 (members: 2, guests: 27)
Robots: 207

Forum statistics

Threads
473,764
Messages
2,569,566
Members
45,041
Latest member
RomeoFarnh

Latest Threads

Top