stl字符串创建时应用程序崩溃

时间:2011-05-07 10:42:29

标签: c++ stl windbg

我在应用程序的两个位置遇到应用程序崩溃。其中一个位置是下面给出的方法的以下声明。应用程序在为字符串传递给LogMessage方法创建stl字符串对象时崩溃。

EMCoreLogger::GetLoggerInstance()->LogMessage("Sending message completed successfully",
                            "CGEMCustomMessageService",Information);

下面给出了callstack

    msvcr90.dll!_crt_debugger_hook(int _Reserved=101180712)  Line 65    C
    msvcr90.dll!_invalid_parameter(const wchar_t * pszExpression=0x00000000, const wchar_t * pszFunction=0x00000000, const wchar_t * pszFile=0x00000000, unsigned int nLine=0, unsigned int pReserved=0)  Line 112 + 0x7 bytes  C++
    msvcr90.dll!memcpy_s(void * dst=0x0607e5d8, unsigned int sizeInBytes=0, const void * src=0x084beac8, unsigned int count=38)  Line 55 + 0x19 bytes   C
    msvcp90.dll!std::char_traits<char>::_Copy_s(char * _First1=0x0607e5d8, unsigned int _Size_in_bytes=0, const char * _First2=0x084beac8, unsigned int _Count=38)  Line 583    C++
    msvcp90.dll!std::_Traits_helper::copy_s<std::char_traits<char> >(char * _First1=0x0607e5d8, unsigned int _Size=0, const char * _First2=0x084beac8, unsigned int _Count=38, std::_Secure_char_traits_tag __formal={...})  Line 714 + 0x11 bytes  C++
    msvcp90.dll!std::_Traits_helper::copy_s<std::char_traits<char> >(char * _First1=0x0607e5d8, unsigned int _Size=0, const char * _First2=0x084beac8, unsigned int _Count=38)  Line 706 + 0x14 bytes   C++
    msvcp90.dll!std::basic_string<char,std::char_traits<char>,std::allocator<char> >::assign(const char * _Ptr=0x084beac8, unsigned int _Count=38)  Line 1086 + 0x1b bytes  C++
    msvcp90.dll!std::basic_string<char,std::char_traits<char>,std::allocator<char> >::assign(const char * _Ptr=0x084beac8)  Line 1095 + 0x16 bytes  C++
    msvcp90.dll!std::basic_string<char,std::char_traits<char>,std::allocator<char> >::basic_string<char,std::char_traits<char>,std::allocator<char> >(const char * _Ptr=0x084beac8)  Line 664   C++
>   GemCore.dll!CGEMCustomMessageService::SendProcessMessage(unsigned short tkt=167, SSECSMSG * mb=0x0607eafc, int nFuncID=4, int * pnClientIds=0x1bf5aff8, int nClientCount=1)  Line 566 + 0x34 bytes  C++
    GemCore.dll!CCustomMessageRouter::PA_ProcessPrimaryMessage(unsigned short tkt=167, SSECSMSG * mb=0x0607eafc, int nFuncID=4, int * pnClientIds=0x1bf5aff8, int nClientCount=1)  Line 54 + 0x1d bytes C++
    PAL.dll!CPALProtocolPlugin::PA_ProcessPrimaryMessage(unsigned short tkt=167, SSECSMSG * mb=0x0607eafc, int nFuncID=4, int * pnClientIds=0x1bf5aff8, int nClientCount=1)  Line 50 + 0x2c bytes   C++
    CustomSECSII_R.dll!CCustomMessageTransportPlugin::ProcessPrmryMsg(char * pBuffer=0x4794cfe0, unsigned long dwBufSize=31, bool bRepExpected=true, unsigned char byStream='', unsigned char byFunction='', unsigned short tkt=167, int nFuncID=4, int * pnClientIds=0x1bf5aff8, int nClientCount=1)  Line 85 + 0x20 bytes C++
    TAL.dll!CMessageHandler::HandleCustomMessage(char * pBuffer=0x4794cfe0, unsigned long dwBufSize=31, bool bRepExpected=true, unsigned long dwTransID=2839, unsigned long dwTransTwoID=0, unsigned char byStream='', unsigned char byFunction='', unsigned char * pHeader=0x478f8ff0, unsigned char byPType=0, int nScanFuncId=-1, int nProcessFuncId=4, std::vector<int,std::allocator<int> > pVecClientId=[1](1))  Line 2949 + 0x4b bytes   C++
    TAL.dll!CMessageHandler::ReceiveMessage(char * pBuffer=0x4794cfe0, unsigned long dwBufSize=31, bool bRepExpected=true, unsigned long dwTransID=2839, unsigned long dwTransTwoID=0, unsigned char byStream='', unsigned char byFunction='', unsigned char * pHeader=0x478f8ff0, unsigned char byPType=0)  Line 1220 + 0x6c bytes C++
    TAL.dll!CTALTransportObject::ReceiveMessage(char * szBuffer=0x4794cfe0, unsigned long dwBufSize=31, bool bRepExpected=true, unsigned long dwSECS1TRID=2839, unsigned long dwSECS2TRID=0, unsigned char byStream='', unsigned char byFunction='', unsigned char * pbyHeader=0x478f8ff0, unsigned char byPType=0)  Line 199 + 0x30 bytes  C++
    HSMS.dll!CDataMessageMngr::RespondToMessage(CMessage * pMessage=0x0607ff28)  Line 392   C++
    HSMS.dll!CLowerRouter::RecieveData()  Line 820  C++
    HSMS.dll!CLowerRouter::RecievingThread(void * pVoid=0x036f9fa0)  Line 566   C++
    kernel32.dll!7c80b729()     
    [Frames below may be incorrect and/or missing, no symbols loaded for kernel32.dll]

我启用了 pageheap 来检测堆损坏。我还启用了运行时错误检查/ RTC 来检测堆栈损坏。我无法找到根本原因。

如何解决问题?

bool
CGEMCustomMessageService::SendProcessMessage(SECSTICKET tkt, PSECSMSG mb,int nFuncID, int* pnClientIds,int nClientCount)
{
    bool bRetCode = true;
    int nRetCode = 0;
    char chLog[1024] = {0};
    CEALCustomMessagePlugin *pCustomMessagePlugin = CEALCustomMessagePlugin::Instance();
    int nStream   = mb->nStream;
    int nFunction = mb->nFunction;
    int nTicket   = tkt;

        CGEMEqpmntService* pGEMEqpmntService = (CGEMEqpmntService *)CGEMEqpmntService::Instance();
        EQP_CTRL_STATE eControlState = STATE_HOSTOFFLINE;
        sprintf(chLog,"Sending S%d,F%d with ticket[%d]",mb->nStream, mb->nFunction,tkt);
        LogDataMessage(chLog,"CGEMCustomMessageService",Information);

        if (NULL != pCustomMessagePlugin)
        {  

                    GEMCoreLogger::GetLoggerInstance()->LogMessage("Control state is Online remote sending message to client",
                        "CGEMCustomMessageService",Debug);
                    nRetCode = pCustomMessagePlugin->GEMT_ProcessPrimaryMessage(tkt,mb,nFuncID,pnClientIds,nClientCount);

                    GEMCoreLogger::GetLoggerInstance()->LogMessage("Sending message completed successfully",
                        "CGEMCustomMessageService",Information);
        }

    return bRetCode;
}

2 个答案:

答案 0 :(得分:5)

我认为你应该从放弃所有信仰开始。

接下来,看看调用堆栈:你责备的函数调用甚至不存在。似乎一切顺利到memcpy_s。然后回答问题,例如:dit memcpy_s从哪里得到它的参数?谁填补了他们?为什么他们这样填补?...

在排除故障时,你会成为一名侦探。怀疑每个人(但从你自己的代码开始:))。警惕偏见,以及像“应该”这样的词语,“认为......”,“永远不会,永远,......”等等......只去寻找真实的事实。

根据您对系统的了解以及通过调试收集的事实,尝试通过推理减少嫌疑人的数量。

(顺便说一句,在加载一些内核dll的符号后,调用堆栈会变得更有帮助,遵循this Visual Studio article上的提示)

如果所有这些都无济于事,请向StackOverflow上的某人询问:)

答案 1 :(得分:0)

您是否尝试过在通话中使用此表单:

    EMCoreLogger::GetLoggerInstance()->LogMessage( string("Sending message completed successfully"), string("CGEMCustomMessageService"), Information);