[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [MiNT] Freeing child's base page

To: <mint@lists.fishpool.fi>
Subject: Re: [MiNT] Freeing child's base page
From: "Jo Even Skarstein" <joska@online.no>
Date: Wed, 27 Jan 2010 10:39:57 +0100
Importance: Normal
In-reply-to: <c6533ef61001270000k2fcdbbc8n21341fa8181cc7af@mail.gmail.com>
List-help: <mailto:ecartis@lists.fishpool.fi?Subject=help>
List-id: <mint.lists.fishpool.fi>
List-owner: <mailto:tjhukkan@fishpool.fi>
List-post: <mailto:mint@lists.fishpool.fi>
List-subscribe: <mailto:mint-request@lists.fishpool.fi?Subject=subscribe>
List-unsubscribe: <mailto:mint-request@lists.fishpool.fi?Subject=unsubscribe>
References: <c6533ef61001261501l44961b1bh146ba21ed071a6b3@mail.gmail.com> <1F55D94972D147B8A69EF89653073145@mercatus.local> <c6533ef61001270000k2fcdbbc8n21341fa8181cc7af@mail.gmail.com>
Sender: mint-bounce@lists.fishpool.fi

From: Miro Kropacek
Sent: Wednesday, January 27, 2010 9:00 AM
To: Jo Even Skarstein
Cc: MiNT Mailing List
Subject: Re: [MiNT] Freeing child's base page

So the problem is that the pointer in proc 1 now points to free memory.If it's Mfree'd then it belongs to the OS now. Ofcourse it's illegal to access this memory now. If LDG does this, it mustbe considered a bug.
But again, we're freeing BP _only_ and BP contains some pointers to someparts of memory (text, data, bss etc) -- so it wouldmake sense if I call Mfree (bp->p_data_segment ); but calling Mfree (bp)only? There must be something more.

I think we need more details on how LDG loads and access modules. How arethe modules loaded? With Pexec? Are the modules at any point executed, orare the just called as subroutines from the parent?

From your previous post:

I know where the bug is I just don't know why it happens, it seems likeincorrect allocation in the first place, ldg_unload:

if( ldg) {
       if( ldg->close) (*ldg->close)();
       Mfree( ((BASPAG *)ldg->baspag)->p_env);
       Mfree( ldg->baspag);
      ldg->baspag = NULL;
       }

crash occurs on the last line, ldg->baspage = NULL (!), if I comment thisout, everything is OK. It seems that Mfree() frees
more than it should (i.e. freeing also the memory where 'ldg' points to)

You say that you don't use the LDG TSR, which - if I understand the purposeof this TSR correctly - means that the module is loaded by the applicationand not shared. This implicates that the module is unloaded from memory whenthe calling application exits. So where and how is the actual unloadingperformed? If the module is unloaded by the time the code above is called,then the code is buggy.

Have you tried to comment out the two Mfrees in the code above but leavethat last line in? If you still get a memory violation then the module isalready unloaded and it's memory free'd to the OS. Then you just need tofigure out when the module is actually removed from memory, and how it'ssupposed to happen :-)

Jo Even


__________ Information from ESET NOD32 Antivirus, version of virus signature database 4808 (20100126) __________

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com

Follow-Ups:
- Re: [MiNT] Freeing child's base page
  - From: Miro Kropacek <miro.kropacek@gmail.com>

References:
- [MiNT] Freeing child's base page
  - From: Miro Kropacek <miro.kropacek@gmail.com>
- Re: [MiNT] Freeing child's base page
  - From: "Jo Even Skarstein" <joska@online.no>
- Re: [MiNT] Freeing child's base page
  - From: Miro Kropacek <miro.kropacek@gmail.com>

Prev by Date: Re: [MiNT] Re : windom and gcc4
Next by Date: Re: [MiNT] Freeing child's base page
Previous by thread: Re: [MiNT] Freeing child's base page
Next by thread: Re: [MiNT] Freeing child's base page
Index(es):
- Date
- Thread