stackoom
  简体   繁体   中英

Why does this code leak?

 原文  2012-05-31 19:47:12       c++/ ios/ memory/ memory-management/ memory-leaks

Question

Well, here again, this time the compiler is showing me a memory error (leak):

otest(18015,0xacae32c0) malloc: * error for object 0x194e734: incorrect checksum for freed object - object was probably modified after being freed. * set a breakpoint in malloc_error_break to debug

I'm using clang with ARC activated and STL, this is a C++ file (.cpp).

What I found: If I comment the "delete" line it runs without problems. It makes me wonder who is freeing my allocated memory (cStr).

Btw. This code takes a query string (arg=abc&arg2=asdb) and returns a map whit those values. 

static map<string, string> getDecodedQueryString( string qs ) {
            map<string, string> r;

            qs = qs+"&";

            char key[100], value[100],  * cStr, *ptr;
            cStr = new char[ qs.length() ];
            memcpy( cStr, qs.c_str(), url.length()-1);
            cStr[qs.length()]=0;

            ptr =  strtok(cStr, "&");
            while ( ptr != NULL && sscanf( ptr, "%[^=]=%[^&]", &key, &value ) == 2) { 
                r[key]=value;
                ptr = strtok(NULL, "&");
            }
            delete [] cStr; //leaking?

            return r; 
        }

Thanks

3 answers

solution1
 4 ACCPTED  2012-05-31 19:52:03

The problem is likely in these lines: 

    cStr = new char[ qs.length() ];
    memcpy( cStr, qs.c_str(), url.length()-1);
    cStr[qs.length()]=0;

Even without the memcpy() (which may have its own problems due to the length of url , as I mentioned above in a comment), the cStr[qs.length()] = 0 writes one byte past the end of the buffer.

If your compiler has strdup() available (it's nonstandard, but most do), you can replace this with: 

cStr = strdup(qs.c_str());
// ...
free(cStr);

This saves you from having to mess around with manually allocating bytes, copying them, null terminating in the right place, etc.

solution2
 3  2012-05-31 19:51:36

Str = new char[ qs.length() ];
...
cStr[qs.length()]=0;

That write is invalid, it's one past the end of cStr . If the allocator stored a checksum right after the allocation, and checks it at delete time, you've just stomped on it.

solution3
 2  2012-05-31 20:10:59

Something along the lines of below will do the same thing. 

std::stringstream ss(qs);
std::string temp;
std::string key;
std::string value;
while(std::getline(ss, temp, '&')) {
   std::stringstream equal(temp);
   std::getline(equal, key, '=');
   std::getline(equal, value, '=');
   r[key] = value;
}

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Why does my code that interrupts a thread leak? Why does this code leak? (simple codesnippet) Why does this code produce a memory leak? Why does this code have a memory leak in C++ Why does one code produce a memory leak and the other doesn't? Why does this code leak memory? (Out arguments and pointers) Does this Qt code leak memory? Does this code cause memory leak? Does this piece of code leak memory? Why this code is not causing memory leak?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM