Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

What is difference between BaseAddress and AllocationBase in MEMORY_BASIC_INFORMATION struct?

Tags:

operating-system

windows

process

windows-7

msdn

In MSDN i find following`

BaseAddress - A pointer to the base address of the region of pages.

AllocationBase - A pointer to the base address of a range of pages allocated by the VirtualAlloc function. The page pointed to by the BaseAddress member is contained within this allocation range.

But i don't understand what is difference really. Can anyone tell me difference? (not like in MSDN :) )

like image 379
know_everything Avatar asked Oct 19 '13 10:10

know_everything

1 Answers

Virtual memory allocations on Windows are made with a granularity of 64 kilobytes, the value of SYSTEM_INFO.dwAllocationGranularity. But virtual memory pages are 4096 bytes, the value of SYSTEM_INFO.dwPageSize.

When you allocate virtual memory with VirtualAlloc, you'll always get a chunk back whose BaseAddress equals AllocationBase. But if you then alter the page protection of one or more of the pages within this chunk then you can observe this chunk being subdivided with a different BaseAddress. Best shown with a sample program, run this on MSVC++:

#include "stdafx.h"
#include <Windows.h>
#include <stdio.h>
#include <conio.h>

void showmem(void* mem) {
    MEMORY_BASIC_INFORMATION info = {};
    VirtualQuery(mem, &info, sizeof info);
    printf("Alloc = %p, base = %p, size = %d, protect = %d\n",
           info.AllocationBase, info.BaseAddress, info.RegionSize, info.Protect);
}


int main() {
    BYTE* mem = (BYTE*)VirtualAlloc(0, 65536, MEM_COMMIT, PAGE_READWRITE);
    printf("%s", "Initial allocation:\n");
    showmem(mem);

    DWORD oldprotect;
    BOOL ok = VirtualProtect(mem + 4096, 4096, PAGE_NOACCESS, &oldprotect);
    printf("%s", "\nAfter protection changes:\n");
    showmem(mem);
    showmem(mem + 4096);
    showmem(mem + 4096 + 4096);

    _getch();
    return 0;
}

Sample output of this program:

Initial allocation:
Alloc = 00ED0000, base = 00ED0000, size = 65536, protect = 4

After protection changes:
Alloc = 00ED0000, base = 00ED0000, size = 4096, protect = 4
Alloc = 00ED0000, base = 00ED1000, size = 4096, protect = 1
Alloc = 00ED0000, base = 00ED2000, size = 57344, protect = 4

And note how the VirtualProtect() call required the original chunk to be split in 3 regions with different BaseAddress but the same AllocationBase.

like image 154
Hans Passant Avatar answered Nov 20 '22 10:11

Hans Passant
Sign in to Comment

Related questions

uwp win10 Listview SelectedItem Style
Delete Mac .DS_Store files on windows [closed]
How do you check if environment variables are defined in windows batch scripting [closed]
How to compile C code in Linux to run on Windows? [duplicate]
Fatal Error when starting jupyter notebook
How to force restart a Windows box using VBScript?
Should developers fear updates to their workstation software / development stack?
Can a 32bit process access more memory on a 64bit windows OS?
How to configure IPython to use gvim on Windows?
Highlighting labels Windows Forms
How can I run an executable from RAM using C++?
Why does WaitForSingleObject(INVALID_HANDLE_VALUE, INFINITE) block?
Most efficient way to send images across processes
Overhead of DLL
Implicit vs. Explicit linking to a DLL
How do I get the command-line arguments of a Windows service?
python -c and `while`
PHP execute command and log output without waiting
Windows: install fonts from cmd/.bat file
Apache 2 - reload config on Windows

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!