:orphan: .. index:: pair: group; Safe memory allocation .. _doxid-group__te__tools__te__alloc: Safe memory allocation ====================== .. toctree:: :hidden: Overview ~~~~~~~~ Safe memory allocation. :ref:`More...` .. ref-code-block:: cpp :class: doxyrest-overview-code-block // global functions static bool :ref:`te_alloc_adjust_extent`(size_t total_length, size_t offset, size_t* extent); void* :ref:`te_alloc_internal`(size_t size, bool initialize, const char* filename, int line); void* :ref:`te_realloc_internal`(void* oldptr, size_t newsize, const char* filename, int line); static bool :ref:`te_is_valid_alloc`(size_t nmemb, size_t size); void* :ref:`te_memdup_internal`(const void* src, bool zero_terminated, size_t maxsize, const char* filename, int line); // macros #define :ref:`TE_ALLOC`(size_) #define :ref:`TE_ALLOC_UNINITIALIZED`(size_) #define :ref:`TE_MEMDUP`(src_, size_) #define :ref:`TE_REALLOC`(ptr_, newsize_) #define :ref:`TE_STRDUP`(src_) #define :ref:`TE_STRNDUP`(src_, maxsize_) .. _details-group__te__tools__te__alloc: Detailed Documentation ~~~~~~~~~~~~~~~~~~~~~~ Safe memory allocation. Global Functions ---------------- .. index:: pair: function; te_alloc_adjust_extent .. _doxid-group__te__tools__te__alloc_1ga2311b0264768a874404cdda91182f931: .. ref-code-block:: cpp :class: doxyrest-title-code-block static bool te_alloc_adjust_extent(size_t total_length, size_t offset, size_t* extent) Ensure that ``offset`` + ``extent`` is not out of bounds. The function adjusts the value in ``extent`` so that a chunk starting at ``extent`` lie completely within a buffer of ``total_length`` bytes. The function handles unsigned overflows correctly, so e.g. ``extent`` may contain ``SIZE_MAX``. ``offset`` should be within ``total_length``. .. rubric:: Parameters: .. list-table:: :widths: 20 80 * - total_length - Total length of a buffer. * - offset - Offset of a chunk within the buffer. * - extent - Length of the chunk. .. rubric:: Returns: ``true`` if ``extent`` was reduced. .. index:: pair: function; te_alloc_internal .. _doxid-group__te__tools__te__alloc_1ga9b04d9e7a066ebc23244e6748192bfaf: .. ref-code-block:: cpp :class: doxyrest-title-code-block void* te_alloc_internal(size_t size, bool initialize, const char* filename, int line) Allocate ``size`` bytes and optionally fill allocated memory with zeroes. This function should never be called directly, use :ref:`TE_ALLOC() ` or :ref:`TE_ALLOC_UNINITIALIZED() ` macros instead. On requesting zero bytes, the function actually returns a 1-byte buffer capturing ISO C permitted behaviour of recent glibc. .. rubric:: Parameters: .. list-table:: :widths: 20 80 * - size - Number of bytes to allocate. * - initialize - Zero the allocated memory if ``true``. * - filename - Caller's filename. * - line - Caller's line. * - TE_FATAL_ERROR - in an unlikely case of a memory allocation failure. .. rubric:: Returns: A pointer to a fresh memory block (never ``NULL``). .. index:: pair: function; te_realloc_internal .. _doxid-group__te__tools__te__alloc_1ga4b76246ea43dc4e8837ded0d507b2645: .. ref-code-block:: cpp :class: doxyrest-title-code-block void* te_realloc_internal(void* oldptr, size_t newsize, const char* filename, int line) Reallocate ``oldptr`` to have the size of ``newsize``. If ``oldptr`` is ``NULL``, it is an exact equivalent of :ref:`te_alloc_internal() `. This function should never be called directly, use :ref:`TE_REALLOC() ` macro instead. Unlike system ``realloc``, this function aborts if a non-null ``oldptr`` is tried to resize to zero bytes the behaviour of system ``realloc`` is really ill-defined. .. rubric:: Parameters: .. list-table:: :widths: 20 80 * - oldptr - An existing memory block or ``NULL``. * - newsize - New size of the block. * - filename - Caller's filename. * - line - Caller's line. * - TE_FATAL_ERROR - in an unlikely case of a memory allocation failure or zero-size reallocation. .. rubric:: Returns: A pointer to a reallocated block (never ``NULL``, may be the same as ``oldptr``). .. index:: pair: function; te_is_valid_alloc .. _doxid-group__te__tools__te__alloc_1ga6201d0a6504d3322bc066f0840859141: .. ref-code-block:: cpp :class: doxyrest-title-code-block static bool te_is_valid_alloc(size_t nmemb, size_t size) Check whether an array of ``nmemb`` elements of ``size`` bytes can be allocated. Basically, it checks that ``nmemb`` \* ``size`` would fit into ``size_t``; it does not check for available memory and so on. The primary purpose of this function is to ensure that ``:ref:`TE_ALLOC(x * y) ``` would not errneously return a small buffer due to overflow: .. ref-code-block:: cpp if (!te_is_valid_alloc(nmemb, size)) TEST_FAIL("Array is too large"); arr = TE_ALLOC(nmemb * size); See Hacker's Delight, 2nd Edition, section 2.12.4 .. rubric:: Parameters: .. list-table:: :widths: 20 80 * - nmemb - Number of elements. * - size - Size of an element. .. rubric:: Returns: ``true`` if an array of ``nmemb`` elements may be allocated. .. index:: pair: function; te_memdup_internal .. _doxid-group__te__tools__te__alloc_1ga99efc0c9e8e407f92e2114313155bbe0: .. ref-code-block:: cpp :class: doxyrest-title-code-block void* te_memdup_internal(const void* src, bool zero_terminated, size_t maxsize, const char* filename, int line) Copy a block of memory ``src``. This function should never be called directly, c NULL if and only if ``src`` is ``NULL``. .. rubric:: Parameters: .. list-table:: :widths: 20 80 * - src - Source buffer (may be ``NULL``). * - zero_terminated - If ``true``, only copy bytes up to the first binary zero. * - maxsize - Maximum number of bytes to copy (may be less if ``zero_terminated`` is ``true``). * - filename - Source filename. * - line - * - TE_FATAL_ERROR - in an unlikely case of a memory allocation failure. .. rubric:: Returns: A pointer to a fresh copy of ``src``. Macros ------ .. index:: pair: define; TE_ALLOC .. _doxid-group__te__tools__te__alloc_1gaf58c0466026027f590f3430350a6efee: .. ref-code-block:: cpp :class: doxyrest-title-code-block #define TE_ALLOC(size_) Allocate ``size_`` bytes and fill allocated memory with zeroes. On requesting zero bytes, the macro actually returns a 1-byte buffer capturing ISO C permitted behaviour of recent glibc. .. rubric:: Parameters: .. list-table:: :widths: 20 80 * - size\_ - Number of bytes to allocate. * - TE_FATAL_ERROR - in an unlikely case of a memory allocation failure. .. rubric:: Returns: A pointer to a fresh memory block (never ``NULL``). .. index:: pair: define; TE_ALLOC_UNINITIALIZED .. _doxid-group__te__tools__te__alloc_1gad52e67c7c6495f539e1e12b47f8592d1: .. ref-code-block:: cpp :class: doxyrest-title-code-block #define TE_ALLOC_UNINITIALIZED(size_) Allocate ``size_`` bytes without initializing it. In most cases :ref:`TE_ALLOC() ` shall be used instead. This macro is intended for performance-critical cases where the caller would immediately initialize the memory block itself, e.g. with ``memset`` or ``memcpy``. On requesting zero bytes, the macro actually returns a 1-byte buffer capturing ISO C permitted behaviour of recent glibc. .. rubric:: Parameters: .. list-table:: :widths: 20 80 * - size\_ - Number of bytes to allocate. * - TE_FATAL_ERROR - in an unlikely case of a memory allocation failure. .. rubric:: Returns: A pointer to a fresh uninitialized memory block (never ``NULL``). .. index:: pair: define; TE_MEMDUP .. _doxid-group__te__tools__te__alloc_1gad6095c3c2a4fd4fd5fb9337a9f23a66a: .. ref-code-block:: cpp :class: doxyrest-title-code-block #define TE_MEMDUP(src_, size_) Make a copy of ``size_`` bytes of memory starting from ``src_``. This macro is similiar to ``memdup`` function found in OpenBSD and some other OSes. c NULL if and only if ``src_`` is ``NULL``. Refer to :ref:`TE_ALLOC() ` on behaviour when ``size_`` is zero. .. rubric:: Parameters: .. list-table:: :widths: 20 80 * - src\_ - Source buffer (may be ``NULL``). * - size\_ - * - TE_FATAL_ERROR - in an unlikely case of a memory allocation failure. .. rubric:: Returns: A pointer to a fresh copy of ``src_``. .. index:: pair: define; TE_REALLOC .. _doxid-group__te__tools__te__alloc_1gabc6edcc53c8e662822e2ed2f4aad4203: .. ref-code-block:: cpp :class: doxyrest-title-code-block #define TE_REALLOC(ptr_, newsize_) Reallocate ``ptr_`` to have the size of ``newsize_``. If ``ptr_`` contains ``NULL``, it is an exact equivalent of :ref:`TE_ALLOC() `. ``ptr_`` must be an lvalue and its content is replaced upon reallocation, so the old invalidated address is not accessible anymore. Unlike system ``realloc``, this function aborts if a non-null ``ptr_`` is tried to resize to zero bytes the behaviour of system ``realloc`` is really ill-defined. .. rubric:: Parameters: .. list-table:: :widths: 20 80 * - ptr\_ - An lvalue holding an existing memory block or ``NULL``. * - newsize\_ - New size of the block. * - TE_FATAL_ERROR - in an unlikely case of a memory allocation failure or zero-size reallocation. .. index:: pair: define; TE_STRDUP .. _doxid-group__te__tools__te__alloc_1ga70ceb5c5fe3c77e8c0894ed52de09bc1: .. ref-code-block:: cpp :class: doxyrest-title-code-block #define TE_STRDUP(src_) Make a copy of zero-terminated ``src_`` like system ``strdup``. c NULL if and only if ``src_`` is ``NULL``. .. rubric:: Parameters: .. list-table:: :widths: 20 80 * - src\_ - * - TE_FATAL_ERROR - in an unlikely case of a memory allocation failure. .. rubric:: Returns: A pointer to a fresh copy of ``src_``. .. index:: pair: define; TE_STRNDUP .. _doxid-group__te__tools__te__alloc_1ga91b98976d44ab811aafea4aea9375aae: .. ref-code-block:: cpp :class: doxyrest-title-code-block #define TE_STRNDUP(src_, maxsize_) Make a copy of possibly zero-terminated ``src_`` like system ``strndup``. The macro copies the content of ``src_`` up to and including the first binary zero or the first ``maxsize_`` bytes, whichever comes first. The result is always zero-terminated. c NULL if and only if ``src_`` is ``NULL``. .. rubric:: Parameters: .. list-table:: :widths: 20 80 * - src\_ - A possibly zero-terminated string (may be ``NULL``). * - maxsize\_ - * - TE_FATAL_ERROR - in an unlikely case of a memory allocation failure. .. rubric:: Returns: A pointer to a fresh copy of ``src_``.