tags:

views:

259

answers:

5
Q: 

__vftptr is NULL

We received crash dump from customer site. I see that in one of the structures o nstack __vfptr is NUL.

Does it always point to problematic condition (memeory overrun, deleting object twice...) or is there case where this pointer can be null.

+1  A: 

While generally the answer is "yes", i think you should consider that might be a debugger glitch too.

Drakosha  2009-06-14 13:30:01
True, especially if you are running optimzied code. I can certainly imagine this happening if the __vfptr is not live because it's not used. An good optimizer will then drop the redundant initialization.
MSalters  2009-06-15 08:03:26
+6  A: 

Are you using memset() anywhere on instances of your classes?

I've seen this problem before and the cause was code like

class C : SomeClassWithVirtualFunctions
{
public:
  C()
  {
    memset( this, 0, sizeof ( C ) ) ; // BAD!! sets _vfptr to 0 too
  }
}

cppcheck is neat

bobobobo  2009-06-14 13:31:54
A: 

Normally, I get vptr corruption when the object has been deleted twice (and yes, it is always a bug). Most of the time for me, the vptr is just pointing to some random block of memory, but it sounds like yours is getting overwritten by NULL, which could be the OS blanking out reclaimed memory, or it could be a pointer to what is doing the overwriting.

Consider using boost::shared_ptr to maintain lifetime with ownership.

Todd Gardner  2009-06-14 14:37:37
A: 

This can happen if you try to obtain run-time type information (i.e. use the typeid function) on an object of a class that has no virtual functions.

Tyler McHenry  2009-06-14 14:48:58
+2  A: 

You may be seeing a partially destroyed object on the stack. The compiler may mark part of an object as destroyed by clearing the virtual function table pointer, so that it can correctly implement destructors of classes with "diamond" inheritance (multiple inheritance of classes that have a common, virtual base class) If the program crashes during the destruction of the object, you'll see the partially destroyed object in the dump.

Older MSVC compilers did not correctly implement destructors for classes with diamond inheritance. Any time you tried to destroy one, the program would crash. I'm not sure if this is still the case.

Nat  2009-06-14 16:16:29
That is intresting, it exactly what happens. The program with diamond inheritance crashes during destruction.
Boris  2009-06-15 10:33:37
Can you supply MS link for the problem?
Boris  2009-06-15 10:36:45
I've no idea if MS ever documented the bug. You could try a Bing search!
Nat  2009-06-15 11:29:09
Or you could try asking about it on this site.
Nat  2009-06-16 18:08:52

related questions

Of Memory Management, Heap Corruption, and C++
How do I make a GUI?
Alpha blending sprites in Nintendo DS Homebrew
Thread safe lazy contruction of a singleton in C++
Interview Programming Questions - In house Exam
Link issues (VC6)
What are the barriers to understanding pointers and what can be done to overcome them?
Why are professors or schools picking Java over C++ to teach to students?
What is the best way to create a sparse array in C++
C/C++ library for reading MIDI signals from a USB MIDI device
How do you pack a visual studio c++ project for release?
How to set up unit testing for Visual Studio C++
How do I configure and communicate with a serial port?
Lightweight IDE for Linux
Mapping Stream data to data structures in C#
CPU throttling in C++
Asynchronous multi-direction server-client communication over the same open socket?
Exceptions in C++
Heap corruption under Win32; how to locate?
Build for Windows NT 4.0 using Visual Studio 2005?
C++: Should I use nested classes in this case?
BerkeleyDB Concurrency
GTK implementation of MessageBox
Is gettimeofday() guaranteed to be of microsecond resolution?
How to use the C socket API in C++ on z/OS