ansaurus

Question

can memory corruption be caused by invalid *reading* freed memory?

Answer 1

+2 A:

It won't corrupt the memory you read, but it isn't going to do wonders for the working of your program.

Brian Hooper 2010-07-03 18:21:46

Answer 2

+4 A:

You can use GDB to watch each write in this memory address, like this:

(gdb) watch *((int*)0xf28000fa)

Then you can debug where the problem is.

Reading doesn't cause memory corruption, but there are a lot of situations that you don't even imagine that could be the cause of this, and Valgrind is not a perfect tool.

See more information about debugging memory issues here.

Tarantula 2010-07-03 18:26:49

thanks, this is very useful info.

c-urchin 2010-07-03 19:45:58

Answer 3

+1 A:

Reading freed memory is also considered memory corruption.

You can also check http://en.wikipedia.org/wiki/Memory_corruption.

Andrei 2010-07-03 18:28:40

Answer 4

+1 A:

No, reading invalid locations can't possibly cause the error you are seeing. If the location is valid in your address space, you'll just be reading junk, if not, you'll get a segmentation fault.

Check valgrind's output to see where the invalid reads are coming from - this will give you a hint towards where the real mistake lies. Once you find this, I'm quite sure the real culprit won't be far away, and it's probably an invalid write.

casablanca 2010-07-03 18:37:22

but if there's an invalid write why doesn't valgrind show that too?

c-urchin 2010-07-03 19:45:15

That's something I don't know the answer to, but have you looked at what is causing the invalid reads?

casablanca 2010-07-03 20:01:49

@steve: one possibility is that the illegal read results in some bit of code using an address which isn't *invalid*, in the sense of being protected by valgrind, but is *wrong* in the sense that it's not the address that code should be using. This is turn could lead to an inconsistency detected as memory corruption. Corruption doesn't necessarily mean a detectable invalid write has occurred, just that some data structure is inconsistent. As a simple hypothetical example, imagine adding a list node to a list twice - you never perform an illegal write, but you get a corrupted list.

Steve Jessop 2010-07-04 00:50:40

Answer 5

+1 A:

It shouldn't be that common on current processors, but I've worked on platforms where even a read operation could do magic. In the specific 6502 processor has mapped I/O, so a regular "read" instruction with a I/O mapped address can do surprising stuff.

About 30 years ago I got bitten by that because my bad read provoked a memory bank switch (that is every byte of memory, including the area containing the code, got a new different value just after that instruction). The funny part is that it wasn't a truly "unintentional" bad read... I actually did the read even if knowing that it was going to be garbage because this saved me a few assembler instructions... not a smart move.

6502 2010-07-03 19:11:39

Answer 6

A:

What can really happen, is that free can use madvise(MADV_DONTNEED) syscall to tell the kernel "I don't need this page, drop it" (see madvise(2) manpage). If that page gets really deallocated and you read anything from it, kernel will silently provide freshly new page, zeroed out - and thus cause your application to encounter completely unexpected data!

Juraj 2010-07-03 19:23:56

ansaurus

tags:

views:

answers:

can memory corruption be caused by invalid reading freed memory?

related questions