Presentation is loading. Please wait.

Presentation is loading. Please wait.

Precise Detection of Memory Leaks Jonas Maebe, Michiel Ronsse, Koen De Bosschere WODA2004 25 May 2004 Dammit, Jim. I’m an Eiffel Tower, not a Star Trek.

Published byHelen Annabella Nichols Modified over 9 years ago

Similar presentations

Presentation on theme: "Precise Detection of Memory Leaks Jonas Maebe, Michiel Ronsse, Koen De Bosschere WODA2004 25 May 2004 Dammit, Jim. I’m an Eiffel Tower, not a Star Trek."— Presentation transcript:

1 Precise Detection of Memory Leaks Jonas Maebe, Michiel Ronsse, Koen De Bosschere WODA2004 25 May 2004 Dammit, Jim. I’m an Eiffel Tower, not a Star Trek logo

2 Memory leaks What –Allocating memory without releasing later Why bad –Reduce performance –May cause crashes How to solve –Find out where exactly memory is leaked

3 Overview Kinds of memory leaks Existing tools Our solution False positives Evaluation Future Work

4 Physical Leaks What –Last pointer to a block of memory is destroyed Causes –Pointer overwrite –Free block containing pointer –Stack shrinks

5 Physical Leaks (2) Important information: –Allocation site of block –Location where last pointer is lost –Assignment location of last pointer

6 Logical Leaks What –Reachable pointer available, but block never freed Important information –Allocation site of block –Where are these pointers?

7 Existing Tools Most: where was leaked block allocated –Pro: simple, very fast –Con: may not be enough information Insure++: also where last pointer lost –Pro: more information for physical leaks –Con: not more info for logical leaks, source code instrumentation, no description of technique, expensive

8 Our solution Keep track of allocated blocks 1 Principle of “dynamic instrumentation” covered by EU software patent AT&T Use dynamic instrumentation 1 to detect all references to memory blocks (DIOTA) Physical leak: reference count of block becomes zero Logical leak: unfreed blocks which are not physical leaks

9 DIOTA Generated code (clone) Original program Stack (shared) Push target Jmp DIOTA heap DIOTA principle To configure: Use “backends” Here: Memory instrumentation Replace calls to memory management functions

10 Overview Leak Detection Memory Blocks BlockInfo1 BlockInfo4 References Tree: Random and sequential access First element (stack) LeakInfo1 Leaks Hashtable: Only random access necessary

11 void *a = malloc(32); Allocations Memory Blocks BlockInfo1 References Leaks Reserved blocks: Intercept memory management functions Have reference count

12 References Memory Blocks BlockInfo1 References Leaks void *a = malloc(32); Reference Detection: Results of stores Begin addresses of blocks

13 Leaks Memory Blocks Blockinfo1 References LeakInfo1 Leaks void *a = malloc(32); a = NULL;

14 Stale References Memory Blocks BlockInfo1 References Leaks void *a = malloc(32); free(a); a = NULL; !!! Two possibilities: Search all references and destroy them Make sure we can detect that block has been freed

15 Stale References (2) All BlockInfo’s get a unique ID References get copy of ID When freeing a block, give it a new ID BlockInfo’s come from dedicated pool  Can be reused as soon as block is freed  Direct pointer to BlockInfo from Reference

16 False Positives Memory Blocks Blockinfo1 References L1 Leaks void *a = malloc(32); a += 2*sizeof(void*);... void *b = a-2*sizeof(void*);... Need way to detect that leak info is out of date

17 False Positives (2) Every memory block gets a usecount usecount is increased at stores current usecount is copied to leakinfo Delay reporting of leaks: –BlockID’s don’t match: block freed –usecounts don’t match: block still addressed later

18 Other issues C++: pointers to BlockStart+sizeof(void*) False negatives (random value == ptr) Circular structures

19 Evaluation Slowdown: 250 - 350 times in real world programs Example bug found using implementation: 1 for(int i=0;i<exp+1;i++) { set > new_terms = find_terms(...); // fix memory leak found by DIOTA value_clear(result->arr[i].d); 5 value_clear(result->arr[i].x.n); result->arr[i] = translate_one_term(...); }

20 Future work Report information about logical memory leaks Detect usage of stale pointers Speed up implementation: –“Post-write” memory instrumentation –Stack change interception

21 Questions?

Download ppt "Precise Detection of Memory Leaks Jonas Maebe, Michiel Ronsse, Koen De Bosschere WODA2004 25 May 2004 Dammit, Jim. I’m an Eiffel Tower, not a Star Trek."

Similar presentations

Stacks, Queues, and Linked Lists

Stacks, Queues, and Linked Lists
Dynamic memory allocation

Dynamic memory allocation
Dynamic Memory Management

Dynamic Memory Management
Dynamic Memory Allocation (also see pointers lectures) -L. Grewe.

Dynamic Memory Allocation (also see pointers lectures) -L. Grewe.
David Notkin Autumn 2009 CSE303 Lecture 13 This space for rent.

David Notkin Autumn 2009 CSE303 Lecture 13 This space for rent.
Dynamic allocation and deallocation of memory: Chapter 4, Slide 1.

Dynamic allocation and deallocation of memory: Chapter 4, Slide 1.
Lecture 10: Heap Management CS 540 GMU Spring 2009.

Lecture 10: Heap Management CS 540 GMU Spring 2009.
CS-1030 Dr. Mark L. Hornick 1 Pointers And Dynamic Memory.

CS-1030 Dr. Mark L. Hornick 1 Pointers And Dynamic Memory.
Prof. Necula CS 164 Lecture 141 Run-time Environments Lecture 8.

Prof. Necula CS 164 Lecture 141 Run-time Environments Lecture 8.
Compiler construction in4020 – lecture 12 Koen Langendoen Delft University of Technology The Netherlands.

Compiler construction in4020 – lecture 12 Koen Langendoen Delft University of Technology The Netherlands.
Managing Memory Static and Dynamic Memory Type Casts Allocating Arrays of Dynamic Size Resizing Block of Memory Returning Memory from a Function Avoiding.

Managing Memory Static and Dynamic Memory Type Casts Allocating Arrays of Dynamic Size Resizing Block of Memory Returning Memory from a Function Avoiding.
Managing Memory DCT 1063 PROGRAMMING 2 Mohd Nazri Bin Ibrahim Faculty of Computer, Media & Technology TATi University College

Managing Memory DCT 1063 PROGRAMMING 2 Mohd Nazri Bin Ibrahim Faculty of Computer, Media & Technology TATi University College
Agenda  Review: pointer & array  Relationship between pointer & array  Dynamic memory allocation.

Agenda  Review: pointer & array  Relationship between pointer & array  Dynamic memory allocation.
Pointer applications. Arrays and pointers Name of an array is a pointer constant to the first element whose value cannot be changed Address and name refer.

Pointer applications. Arrays and pointers Name of an array is a pointer constant to the first element whose value cannot be changed Address and name refer.
Hastings Purify: Fast Detection of Memory Leaks and Access Errors.

Hastings Purify: Fast Detection of Memory Leaks and Access Errors.
An efficient data race detector for DIOTA Michiel Ronsse, Bastiaan Stougie, Jonas Maebe, Frank Cornelis, Koen De Bosschere Department of Electronics and.

An efficient data race detector for DIOTA Michiel Ronsse, Bastiaan Stougie, Jonas Maebe, Frank Cornelis, Koen De Bosschere Department of Electronics and.
CS 326 Programming Languages, Concepts and Implementation Instructor: Mircea Nicolescu Lecture 18.

CS 326 Programming Languages, Concepts and Implementation Instructor: Mircea Nicolescu Lecture 18.
CPSC 388 – Compiler Design and Construction

CPSC 388 – Compiler Design and Construction
Chapter 8 Runtime Support. How program structures are implemented in a computer memory? The evolution of programming language design has led to the creation.

Chapter 8 Runtime Support. How program structures are implemented in a computer memory? The evolution of programming language design has led to the creation.
1 Day 03 Introduction to C. 2 Memory layout and addresses 5 10 12.5 9. 8 r s int x = 5, y = 10; float f = 12.5, g = 9.8; char c = ‘r’, d = ‘s’; 430043044308431243164317.

1 Day 03 Introduction to C. 2 Memory layout and addresses r s int x = 5, y = 10; float f = 12.5, g = 9.8; char c = ‘r’, d = ‘s’;

Similar presentations

Ads by Google