科技改变生活-雨落星辰 - 所有的伟大,都源于一个勇敢的开始

    最新消息:雨落星辰是一个专注网站SEO优化、网站SEO诊断、搜索引擎研究、网络营销推广、网站策划运营及站长类的自媒体原创博客
    你的位置: 首页>programmer>c - mpq sigsev when init after clear - Stack Overflow

    c - mpq sigsev when init after clear - Stack Overflow

    programmeradmin0浏览0评论

    The code(irrelevant parts removed)

    void mpz_choose_ui(mpz_t rop,ul a,ul b){
    mpz_clear(rop);
    mpz_init(rop);
}

    causes a segfault even though the mpz_t rop is cleared before init, gdb shows

    0x00007ffff7da2c95 in __GI___libc_free (mem=0xffffffffffffffff) at malloc.c:3453
3453      if (chunk_is_mmapped (p))                       /* release mmapped memory. */

    It seems like something is mapped even though mpz_clear was run before it.

    minimum reproducable example is

    void mpz_example(mpz_t rop){
    mpz_clear(rop);
    mpz_init(rop);
}
void example(){
    mpq_t tmp;
    mpz_t tmp2;
    mpz_t tmp3;
    mpz_example(tmp3);
}
int main(void)
{
    mpq_t rop;

    mpq_init(rop);
    example();
    return 0;
}

    this reeks of use after free or something like that but everything is cleared then init-ed

    yes they have to be 3 separate functions for some reason

    tmp and tmp2 also have to be there for some reason

    The code(irrelevant parts removed)

    void mpz_choose_ui(mpz_t rop,ul a,ul b){
    mpz_clear(rop);
    mpz_init(rop);
}

    causes a segfault even though the mpz_t rop is cleared before init, gdb shows

    0x00007ffff7da2c95 in __GI___libc_free (mem=0xffffffffffffffff) at malloc.c:3453
3453      if (chunk_is_mmapped (p))                       /* release mmapped memory. */

    It seems like something is mapped even though mpz_clear was run before it.

    minimum reproducable example is

    void mpz_example(mpz_t rop){
    mpz_clear(rop);
    mpz_init(rop);
}
void example(){
    mpq_t tmp;
    mpz_t tmp2;
    mpz_t tmp3;
    mpz_example(tmp3);
}
int main(void)
{
    mpq_t rop;

    mpq_init(rop);
    example();
    return 0;
}

    this reeks of use after free or something like that but everything is cleared then init-ed

    yes they have to be 3 separate functions for some reason

    tmp and tmp2 also have to be there for some reason

    • c
    • gmp
    Share Improve this question edited 9 hours ago user20695956 asked 9 hours ago user20695956user20695956 1036 bronze badges 3
    • the full function is void mpz_choose_ui(mpz_t rop,ul a,ul b){ mpz_clear(rop); mpz_init(rop); mpz_set_ui(rop,1); for(ul i=0;i<b;i++){ mpz_mul_ui(rop,rop,a-i); } for(ul i=1;i<=b;i++){ mpz_div_ui(rop,rop,i); } } so its not like there is anything before it – user20695956 Commented 9 hours ago
    • just mpz_clear(rop);mpz_init(rop); reproduces it in some scenarios though when exactly is unknown – user20695956 Commented 9 hours ago
    • @user20695956 Edit the question and put the clarifications in there. Please also consider making it into a minimal reproducible example as already asked for. – Ted Lyngmo Commented 9 hours ago
    Add a comment  | 

    1 Answer 1

    Reset to default 0

    You're supposed to mpz_clear an initialized mpz_t when you're done with it, not before you start using it. mpz_clear frees the dynamically allocated storage an initialized mpz_t owns. When you clear it before you initialize it, you're trying to free uninitialized pointers.

    You can see in the documentation that usage is supposed to look like

    {
  mpz_t integ;
  mpz_init (integ);
  …
  mpz_add (integ, …);
  …
  mpz_sub (integ, …);

  /* Unless the program is about to exit, do ... */
  mpz_clear (integ);
}

    with mpz_init to initialize the mpz_t and mpz_clear at the end to free allocated storage. mpz_clear does not go at the beginning.

    与本文相关的文章

    发布评论

    评论列表(0)

    1. 暂无评论