quote:

---

> Hello All,
>
> I am getting a coredump on ca. every 50th call
> to localtime_r().
>
> Program terminated with signal 11, Segmentation fault.
> #0 0x00044d14 in _free_unlocked ()
> (gdb)
> (gdb)
> (gdb) bt
> #0 0x00044d14 in _free_unlocked ()
> #1 0x00044cdc in free ()
> #2 0x0003d42c in tzcpy ()
> #3 0x0003d0e8 in _ltzset_u ()
> #4 0x0003c0a4 in localtime_u ()
> #5 0x0003c28c in localtime_r ()
> #6 0x0001dac0 in MyDate (time=1067940071) at fnct.c:53
> #7 0x00013e90 in ind_cat () at indcat.c:73
> #8 0x0001d5a4 in dpj
> (elements=51, cur=0x7a8a8, li=17, width=26, x0=3, y0=5)
> at dpj.c:53
> #9 0x000107b8 in main
> (argc=1, argv=0xffbef3fc) at main.c:182
> (gdb)
>
> This only happens in MyDate, although I call localtime_r
> in many other places of program. According to "top",
> the program starts with the size of 970K, slowly leaks
> the memory until reaches almost 1000K, then makes a "BOOM".
> I've spent quite a while searching for a leak, with no luck.
> Only couple of malloc's() and free's(), always giving memory
> back completely. It wouldn't coredump that quickly even if
> they not returned, would it? And, at least, not in localtime(),
> I guess.
>
> I also have couple of longjmp()'s, and it's not so easy
> to get rid of them. But these longjmp's worked perfectly
> on other platforms for past 5 years (I am porting the
> thing to Solaris 6/7/8/9 now, compiling in Solaris 2.6
> with gcc 3.3).
>
> Here's a piece of source. I have changed some vars to static
> just for a test, but with dynamic it was absolutely the same.
>
> static time_t extime;
> static struct tm tms;
> // dateline is also a static char[64];
>
> char *MyDate(time) time_t time; {
>
> extime=time;
>
> localtime_r(&extime,&tms);
> snprintf(dateline, sizeof dateline,
> "%02d.%02d.%04d %02d:%02d'%02d\"",
> tms.tm_mday, 1+tms.tm_mon, 1900+tms.tm_year,
> tms.tm_hour, tms.tm_min, tms.tm_sec
> );
> return((char *)&dateline[0]);
>
> }
>
> I also tried to catch SIGSERV:
> with signal(), it coredumps on the very next call to localtime(),
> anyway; with sigset() just hangs, I guess, looping on a signal.
>
> Any ideas, please?

---

quote:

---

>This only happens in MyDate, although I call localtime_r
>in many other places of program. According to "top",
>the program starts with the size of 970K, slowly leaks
>the memory until reaches almost 1000K, then makes a "BOOM".
>I've spent quite a while searching for a leak, with no luck.
>Only couple of malloc's() and free's(), always giving memory
>back completely. It wouldn't coredump that quickly even if
>they not returned, would it? And, at least, not in localtime(),
>I guess.

---

quote:

---

>I also have couple of longjmp()'s, and it's not so easy
>to get rid of them. But these longjmp's worked perfectly
>on other platforms for past 5 years (I am porting the
>thing to Solaris 6/7/8/9 now, compiling in Solaris 2.6
>with gcc 3.3).

---

quote:

---

>Here's a piece of source. I have changed some vars to static
>just for a test, but with dynamic it was absolutely the same.

---

quote:

---

> I am getting a coredump on ca. every 50th call
> to localtime_r().
>
> Program terminated with signal 11, Segmentation fault.
> #0 0x00044d14 in _free_unlocked ()
> (gdb)
> (gdb)
> (gdb) bt
> #0 0x00044d14 in _free_unlocked ()
> #1 0x00044cdc in free ()
> #2 0x0003d42c in tzcpy ()
> #3 0x0003d0e8 in _ltzset_u ()
> #4 0x0003c0a4 in localtime_u ()
> #5 0x0003c28c in localtime_r ()
> #6 0x0001dac0 in MyDate (time=1067940071) at fnct.c:53
> #7 0x00013e90 in ind_cat () at indcat.c:73
> #8 0x0001d5a4 in dpj
> (elements=51, cur=0x7a8a8, li=17, width=26, x0=3, y0=5)
> at dpj.c:53
> #9 0x000107b8 in main
> (argc=1, argv=0xffbef3fc) at main.c:182
> (gdb)

---

quote:

---

> Any ideas, please?
>
> Is there any GPL library for time manipulation that I could try out
> instead of Solaris bundled one? Or do you think the lib is not a
> suspect, and I must keep searching for a leak?

---

quote:

---

> On Tue, 04 Nov 2003 02:33:43 -0800, aryzhov wrote:
>
>
> This has nothing to do with the localtime_r() function. Notice that the
> failure is in the free() routine. Somewhere in your code you've done one
> of three things:
>
> 1) Free()'d a block twice
> 2) Used a block after it was free()'d
> 3) Written past the end of a block you malloc()'ed
>
> I'm betting it's #3. Something I've seen happen many times is for a
> program that's been running fine on platform X to start failing like this
> when ported to platform Y. Invesigation always shows that on platform X
> the allocations are being rounded up to a larger size than on platform Y.
> Thus providing just enough "padding" to keep the heap from being corrupted
> on platform X.
>
>
> I am certain the problem is not with the Solaris time routines. You might
> try using a debug malloc package like Electric Fence. Alternatively,
> perform a code review looking at every malloc() invocation (and calloc()
> etc., of course). Consider whether you might be allocating a buffer that
> is smaller than actually required. For example, a common mistake is to do
> something like this:
>
> char *str = malloc( strlen( "abcd" ));
> strcpy( str, "abcd" );
>
> That will result in a block that is one byte shorter than required.
> Depending on the granularity used by your malloc() routine that
> mistake could be masked by padding added to the block you requested.

---

quote:

---

> [...]
> extern char *environ[];

---

quote:

---

> The 2 subroutines I just posted, it fact was one only, since
> only one frees the memory.. Here's another one that frees.
> Regards,
> Andrei

---

quote:

---

> // prepend the new tuning file
> //
> sgettune(name) register char *name; {

---

quote:

---

> register int fd, add, len, newlen;
> register char *newdescr, *newendloc, *newenddescr;
> struct stat st;
> int nr, totlen, statlen;

---

quote:

---

> // See how big the new tuning file is
> fd=open(name,0);

---

quote:

---

> if(
> ( fd<=0 and fd!=ENOENT)

---

quote:

---

> or fstat(fd,&st) == -1

---

quote:

---

> or (st.st_dev == sdev and st.st_ino == sino )
> or (st.st_dev == udev and st.st_ino == uino )

---

quote:

---

> ) { fd = -1; len = 0; } else len = (int)st.st_size;

---

quote:

---

> statlen=enddescr-endloc; // Piece that never change

---

quote:

---

> totlen=len+statlen; // How much we need now
> if( (newdescr=malloc(totlen+2)) == NULL ) { //+1024 tried, too

---

quote:

---

> wrerr("Can not malloc for new tuning file");
> return;
> }
> nr=0;
> if(fd>0) nr=read(fd, newdescr, len); close(fd);

---

quote:

---

> aryzhov <aryzhov@my-deja.com> wrote:
>
>
> Sorry, but why do you still use pre-ANSI C constructs nearly one and
> half a decade since they have become obsolete?

---

quote:

---

> And you're not declaring
> the return type of the function which seems to return void (but without
> explicitely declaring it a C89 compiler will default to int) And nowadays
> 'register' usually isn't useful anymore, compilers have become quite
> good at figuring out what to put into registers and what not. So make
> this
>
> void sgettune( char *name ) {
>

---

quote:

---

>
>
> The last time I checked the man page for open(2) there where lots
> of macros lsited for setting the 'flags' argument, but 0 wasn't one
> of them - assuming that O_RDONLY is 0 makes this inherently
> unportable.

---

quote:

---

>
>
> Since when has 'and' become a C keyword?

---

quote:

---

> And if fd is less than 0 (that's when you
> can be sure there was a failure, 0 is a completely legal return
> value of open(2)) the value of fd won't be ENOENT (which usually
> is 2) but 'errno' might be set to ENOENT.

---

quote:

---

> And why don't you
> check just for fd < 0? If it's less than 0 it doesn't make
> sense to call fstat() on fd, whatever the reason for the failure
> to open the file was.

---

quote:

---

>
> And 'or' is also not a C keyword, it's spelled '||'.
>

---

quote:

---

>
> What's 'sdev', 'sino', 'udev' or 'uino'?
>

---

quote:

---

>
>
> Where did you define 'enddescr' or 'endloc'?

---

quote:

---

>
>
>
> The layout of this makes it look as if you think that both statements
> would only be executed if fd is larger than 0, but only the execution
> of the read() call depends on the value of fd.

---

quote:

---

>
> Ok, I give up - the rest is complete gibberish and won't work unless
> all the obviously global variables have been carefully initialized,
> which I can't check. Chances aren't bad that something is going
> wrong here. And did you rea lly ever try to feed this to your
> compiler? I can hardly imagine that any self-respecting C compiler
> would do anything else than spitting out an armload of error and
> warning messages.

---

quote:

---

> aryzhov wrote:
>
> Some of your troubles may begin with this incorrect
> declaration of `environ', which is a `char**' and not a
> `char*[]'. See Question 6.1 in the comp.lang.c Frequently
> Asked Questions (FAQ) list
>
> http://www.eskimo.com/~scs/C-faq/top.html
>
> if you don't understand why `char**' and `char*[]' are
> different. (Questions 6.2 and 6.3 may also be helpful.)

---

quote:

---

>
> A larger question: Why not use getenv() and putenv()
> instead of this code?

---

quote:

---

> Jens.Toerring@physik.fu-berlin.de wrote in message news:<bocd64$1ctocc$1@uni-berlin.de>...
[QUOTE][color=darkred]
> I guess since staements like "#define and &&" have become
> possible. Some people are quite nostalgic about other languages
> and may define rather funny constructs that still get
> compiled with CC with no single warning. I don't see
> a problem with this if the code remains readable.

---

quote:

---

[QUOTE][color=darkred]
> Those are static char*, defined in the very beginning of the
> file which is rather big. There's another subroutine that initialises
> them. It also does some malloc's(), but never free(), so I
> didn't post it here since it's out of suspiction for memory leaks.

---

quote:

---

I can't see why you need to add 2 to 'totlen' (1 should be enough
if I understand correctly what's coming later in the function)
and the comment about "trying to add 1024 too" makes it look even
more suspicious. Usually you should know exactly how much memory
you're going to need. The moment you start trying to avoid
problems by just experimenting with the numbers you pass to
malloc() you're in deep, dark, cold and very slimy water ;-) It
might look as if it works for some shorter or longer time but
any small change to the program (or trying to compile it with a
different compiler or compile it on a different architecture) it
may come back to haunt you.
[QUOTE][color=darkred]
[QUOTE][color=darkred]
> True.. I'm just trying to keep the code more compact, sometimes
> readability suffers

---

quote:

---

> As I mentioned before, compiler warnings is something that I got rid
> of many years ago. I can mail the whole code if you don't believe :-)

---

quote:

---

> Hello All,
>
> I am getting a coredump on ca. every 50th call
> to localtime_r().
>

---

quote:

---

> aryzhov@my-deja.com (aryzhov) wrote in message news:<7ca75749.0311040233.6edcb44e@posting.google.com>...
> Now, the funny part.. Since watchmalloc library only exists
> in DSO form, I relinked everything dynamically (previously
> PROG was always linked statically, as I use it sometimes in
> environments where no dynamic libs are available).
> AND IT DIDN'T COREDUMP ANYMORE!
> Interesting.. I've relinked it again, dynamically but without
> LD_PRELOAD in the environment. Well... it did crash, but
> it took 15 minutes of sress test to get that SIGSEGV in localtime(),
> whereas the static version compiled from the same source got it
> after few seconds of such test. Another advantage of shared libs, heh?
> And, if linked with watchmalloc, there is no way to crash it..
> Which sort of proves that memory allocations may be taken out of
> suspect list.

---

quote:

---

>This is probably to make everyone laugh,
>but I wouldn't mind a materiaistic explanation, either.
>As Sean Burke suggested, I've relinked the thing with
>watchmalloc:

---

quote:

---

> rm PROG
> LD_PRELOAD=watchmalloc.so.1 ; export LD_PRELOAD ; make
> MALLOC_DEBUG=WATCH ; export MALLOC_DEBUG ; ./PROG

---

quote:

---

>Maybe I misunderstand something, but it catches SIGTRAP
>on the very first call to malloc() that perfectly works
>when WATCHMALLOC is not set. Usage?

---

quote:

---

>Now, the funny part.. Since watchmalloc library only exists
>in DSO form, I relinked everything dynamically (previously
>PROG was always linked statically, as I use it sometimes in
>environments where no dynamic libs are available).
>AND IT DIDN'T COREDUMP ANYMORE!

---

quote:

---

>Interesting.. I've relinked it again, dynamically but without
>LD_PRELOAD in the environment. Well... it did crash, but
>it took 15 minutes of sress test to get that SIGSEGV in localtime(),
>whereas the static version compiled from the same source got it
>after few seconds of such test. Another advantage of shared libs, heh?
>And, if linked with watchmalloc, there is no way to crash it..
>Which sort of proves that memory allocations may be taken out of
>suspect list. The trouble remains that the process still grows,
>and DSO version grows alot faster than statc, so there is a leak
>somewhere.

---

quote:

---

> aryzhov <aryzhov@my-deja.com> wrote:
>
> No, absolutely not, quite to the contrary. You *have* some memory
> corruption in your program. But depending on how you compile and
> link your program the problem moves within the code.

---

quote:

---

> aryzhov@my-deja.com (aryzhov) writes:
>
>
> That means that there's a problem with the allocated memory;
> I wouldn't expect it to crash inside malloc, though.
>

---

quote:

---

>
> Dynamic system libraries are *always* available; statically linking
> libc and other system libraries does not give portable binaries.

---

quote:

---

> You should not involve watchmalloc until after the linking phase
> and exactly like this:
>
>
> env LD_PRELOAD=watchmalloc.so.1 MALLOC_DEBUG=WATCH,RW ./PROG

---

quote:

---

> 20 #define ENVSIZE 4096 // Only so many allowed
> 21
> 22 extern char **environ;
> 23 static char *new_env[ENVSIZE+2];
> 24
> 25 int inienv() { // Called from main() once; just copies
> 26 // the whole inherited environ[]
> 27 // to the internal space, so we can
> 28 // easily manipulate it later
> 29 register i;
> 30 for(i=0; i<ENVSIZE && environ[i]!=NULL; i++) {
> 31 int ell=strlen(environ[i]); // Env line len with "xx="
> 32 new_env[i]=malloc(ell+2);
> 33 checkfatal(new_env[i]==0, "No Memory at env init");
> 34 strcpy(new_env[i], environ[i]);
> 35 }
> 36 for( ; i<ENVSIZE ; i++) new_env[i]=NULL;
> 37 environ=new_env;
> 38 }
> 39
>
> Of course I can get rid of this piece and use putenv() later, instead
> of own setenv() function, as Eric Sosman suggested, but I doubt it will
> help against memry leaks.
>
> Something is probably wrong with the way I am using watchmalloc..

---

quote:

---

> I do see one thing obviously wrong with the code. If the existing
> environ array has exactly 4096 members your new_env array will not be

---