Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to overflow the stack without pushing new stack frames?

Tags:

c

segmentation-fault

stack-overflow

One obvious way to cause a stack overflow and get Segmentation fault would be to recursively push stack frames on top of each other until it booms. I'm wondering if stack overflow could happen without even pushing new stack frames.

Creating a large enough array could do it too from experience, but any other possible scenarios?

like image 383
Ann Brown Avatar asked Apr 11 '12 09:04

Ann Brown

People also ask

Can a stack contain multiple stack frames?

A stack consists of an ordered set of stack elements, called stack frames, which are managed in a last-in first-out manner. In this information, unqualified references to stack mean invocation stack. The invocation stack can contain multiple invocation stack frames, which represent invocation instances of routines.

How can we Minimise the stack overflow?

One method to prevent stack overflow is to track the stack pointer with test and measurement methods. Use timer interrupts that periodically check the location of the stack pointer, record the largest value, and watch that it does not grow beyond that value.

What is use of next instruction in stack frame?

It will immediately return the current frame from the stack following which the next frame is now in the activation record.

How many stack frames are created?

When your program is started, the stack has only one frame, that of the function main(). This is called the initial frame or the outermost frame. Each time a function is called, a new frame is made. Each time a function returns, the frame for that function invocation is eliminated.

1 Answers

C99 uses a resizable array, which you could use and keep resizing it to a larger one. However this resizable array is implemented using alloca. Here's a sample code in UNIX env:

#include <stdio.h>
#include <alloca.h>
#include <stdlib.h>
#include <stdbool.h>

int
main()
{
    while (true)
    {
        void *p = alloca(32UL);
        printf("new memory allocated at %p \n", p);
    }
    exit(EXIT_SUCCESS);
}

And your output will look like this

new memory allocated at 0xbf800a60 
new memory allocated at 0xbf800a30 
new memory allocated at 0xbf800a00 
new memory allocated at 0xbf8009d0 
new memory allocated at 0xbf8009a0 
[1]    3977 segmentation fault  ./a.out

alloca is in the malloc family of functions, except that it allocated memory on the stack by adjusting the stack pointer.

like image 65
Reza Toghraee Avatar answered Oct 29 '22 04:10

Reza Toghraee
Sign in to Comment

Related questions

How to manage memory alignments and generic pointer arithmetics in a portable way in C?
How do I find segmentation fault from multiple files using GDB
No warning or error indication when variable defined as static but declared as extern
How do you share a constant array of strings between files?
traversing C string: get the last word of a string
How can I prove that fread calls ReadFile and fopen calls CreateFile
New to C programming on linux, stuck at typecasting
malloc pointer to array
Euler 160 : Find the non trivial 5 digits of the factorial
Expected project/directory structure for Automake?
why ruby scanf is so slow?
Send file writes to in-memory buffer (fopen something, but write to buffer, not disk)
OpenSSL certificate revocation check in client program using OCSP stapling
Accessing low-level registers of an embedded device using Python
Array of struct pointers, invalid initializer error, in C
How to partially declare a struct that is typedef'ed when in an include file
Threads/Process comparison on Linux/Windows
Why does the dependence graph of this scanf()-using program by Frama-C look like this?
How to modify shared memory (shmget/shmat) in C?
How can I inspect a static library to see if the debug symbols are being exported?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!