线程更改堆内存

时间:2017-01-11 05:34:44

标签: c linux multithreading gdb

我正在编写这个程序。

char * p;    
void * handler(void * arg)
{
  p = "hello"; // initializing p 
  puts(p);
  puts("------");
  long tid = (long) arg;
  printf("Hello wrold! it is in thread : %ld\n", tid);
  pthread_exit(NULL); //exiting thread 
}

int main() {
  pthread_t t_id[2];
  int rc;
  long t;
  p = malloc(sizeof(100)); // allocating memory tried (p =malloc(sizeof(char)*100);)
  if (p == NULL) {
    perror("malloc");
    exit(EXIT_FAILURE);
  }


  for (t = 0; t < 2; t++) {
    printf("Creating Thread  %ld\n", t);
    rc = pthread_create( & t_id[t], NULL, handler, (void * ) t);
    if (rc) {
      perror("pthread_create");
      exit(EXIT_FAILURE);
    }
  }
  pthread_join(t_id[0], NULL);
  pthread_join(t_id[1], NULL);
  free(p); /// segmentation fault here... 
  puts("***");
  //      pthread_exit(NULL);

}

我在这里得到分段错误, 我使用gdb进行了检查。 令人惊讶的是,p的地址正在改变.WHY?

任何帮助之手都将受到赞赏!

使用主机libthread_db库“/lib/x86_64-linux-gnu/libthread_db.so.1”。

Temporary breakpoint 1, main () at thread_heap.c:27
27              p=malloc(sizeof(100));
(gdb) p p
*$1 = 0x0*    **/// adress of p**
(gdb) next
28              if(p==NULL)
(gdb) p p      
*$2 = 0x602010 ""*  **// why changed here????**
(gdb) next
35              for (t=0;t<2;t++)
(gdb) p p
$3 = 0x602010 ""
(gdb) next
37                      printf("Creating Thread  %ld\n",t);
(gdb)
Creating Thread  0
38                      rc=pthread_create(&t_id[t],NULL,handler,(void *)t);
(gdb)
[New Thread 0x7ffff77fe700 (LWP 21632)]
.
.
.

114     in pthread_join.c
(gdb)
main () at thread_heap.c:49
49      free(p);
(gdb) p p
*$4 = 0x4009e0 "hello"*   **/// again why changed here?**
(gdb)
$5 = 0x4009e0 "hello"
(gdb) step
__GI___libc_free (mem=0x4009e0) at malloc.c:2959
2959    malloc.c: No such file or directory.
(gdb) q

Program received signal SIGSEGV, Segmentation fault.
_int_free (av=0x7ffff7bb6720, p=0x4009d0, have_lock=0) at malloc.c:4098
4098    malloc.c: No such file or directory.   // Why this address changed?
(gdb)

1 个答案:

答案 0 :(得分:2)

问题出在

// in main
p = malloc(sizeof(100)); // allocating memory tried (p =malloc(sizeof(char)*100);)

// in handler function
p = "hello"; // initializing p

此处p是一个全局变量,您之前已使用过malloc。在处理程序函数中,您将p分配给字符串文字的地址,从而产生悬空指针。当您尝试释放此修改后的p时,会出现错误。

你应该做的是

const char *hell = "hello";
strcpy(p,hell);

另外,将malloc修复为之前的版本。当前代码仅分配4个字节。 (sizeof (100)sizeof(int)

相同
相关问题
最新问题