Skip to main content

The Bug Zoo

The program crashes: Segmentation fault



This family of problem is extremely large and contains two main sort of errors: access to non-authorized part of the memory and system calls with incorrect parameter values.

Unauthorized memory access

It when you try to read or write to a memory address

1. totally meaningless (for instance a non-initialized pointer)

2. out of bounds

3. not allocated anymore
Note that a memory access with an unitialized pointer may corrupt the memory
without actually crashing the program. For instance

#include <iostream>
int main(int argc, char **argv) {
int b;
int a[10];
b = 4;
for(int i = 0; i < 100; i++) {
a[i] = 12;
cout << b << " "; cout.flush();
}
}

displays
4 4 4 4 4 4 4 4 4 4 4 4 4 4 4 12 12 12 12 12 12 12 12 12
12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12
12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12
12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12
12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12 12
Segmentation fault

First, the loop fills the a array, then it erases b (which is just after a in the
memory) but the program still does not crash because the operating system
has allocated a minimum amount of memory larger than what is specified in
the source code. When the counter leaves the allocated area, the CPU tries to
access a non-authorized part and the operating system kills it.

Such errors can be extremely tricky, since an incorrect memory access can crash
the program after a while

#include <iostream>
int main(int argc, char **argv) {
int *b;
int a[10];
b = new int[10];
for(int i = 0; i < 20; i++) a[i] = 12;
cout << "We are here!\n";
b[2] = 13; // kaboom
}
prints out

We are here!
Segmentation fault

Here b was correctly initialized, then erased by an out-of-bound access of array
a, and the crash occurs when then not-anymore correct value of b is used.

Incorrect system call

The second case occurs when you use a system call with wrong parameter values.
It can be explicit (for instance the UNIX fclose with a non-initialized value) or
implicit through the C++ memory allocation / deallocation system (for instance
if you delete[] the same array twice)

#include <iostream>
int main(int argc, char **argv) {
int *b = new int[123];
delete[] b;
delete[] b; // kaboom
}

The program crashes: Floating point exception


This happens when you try a division by 0 with integer numbers. Note that
the floating-point types are extremely tolerant to meaningless operations. Since
those types can carry values such as nan, inf and -inf, computating values
such as logarithm of negative numbers, square root of negative numbers and
inverse of 0 will not crash the program (but will most of the time lead to a
wrong result).
Labels:

Popular posts from this blog

C++ Program to find the sum, difference, product and quotient of two integers

#include <iostream.h> #include <conio.h> void main() {   clrscr();   int x = 10;   int y = 2;   int sum, difference, product, quotient;   sum = x + y;   difference = x - y;   product = x * y;   quotient = x / y;   cout << "The sum of " << x << " & " << y << " is " << sum << "." << endl;   cout << "The difference of " << x << " & " << "y <<  is " << difference << "." << endl;   cout << "The product of " << x << " & " << y << " is " << product << "." << endl;   cout << "The quotient of " << x << " & " << y << " is " << quotient << "." << endl;   getch(); }
Read more

Putimage function in c

putimage function outputs a bit image onto the screen. Declaration:- void putimage(int left, int top, void *ptr, int op); putimage puts the bit image previously saved with getimage back onto the screen, with the upper left corner of the image placed at (left, top). ptr points to the area in memory where the source image is stored. The op argument specifies a operator that controls how the color for each destination pixel on screen is computed, based on pixel already on screen and the corresponding source pixel in memory. c smiling face animation This animation using c draws a smiling face which appears at random position on screen. See output below the code, it will help you in understanding the code easily. C programming code #include<graphics.h> #include<conio.h> #include<stdlib.h>   main() { int gd = DETECT, gm, area, temp1, temp2, left = 25, top = 75; void *p;   initgraph(&gd,&gm,"C:\\TC\\BGI");   setcolor(YELLOW)...
Read more

What is Dynamic Memory Allocation in C++ Program

In the computer world, anything that is processed be it an instruction or any data first needs to be loaded and located in internal memory.  In C++ programs also any data that is processed while executing the program is held in the internal memory.  What is Dynamic Memory Allocation? Dynamic Memory allocation means that the memory that will be used during the program is not known beforehand and is allocated dynamically and on the go. It is allocated during the runtime as and when required by the program. In C++ there are two operators used in dynamic memory allocation  1. New  2. Delete New operator in dynamic memory allocation The new operator in C++ is used to create objects of all types. The new operator will allocate memory of the size of the data type specified in the program.  For Example iptr = new int ;  Storing initial values will allocate needed amount of memory from the free store to hold the value of the specified data-type and store the startin...
Read more