Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Why does the address of a variable keep changing between runs? [duplicate]

Tags:

c

memory-address

I made two C programs which were exact copy of each other.
Compiled them on Linux using GCC compiler and obtained two separate executables.
Then I examined the assembly code of both using objdump and found the instructions to be identical. Even the addresses of corresponding instructions in two files were the same.

The program was to print the address of a variable in it.

The programs when run produce different address and moreover the same program produces a different address when run each time.

Why address of code lines is same in the two programs but the address of variable changes even for the same program each time it is run?

I suspect that address printed on screen may be a virtual address, but if it's virtual why it can't be same each time? Is the address shown in Assembly code obtained by objdump is also virtual?

like image 879
Arpit Gupta Avatar asked Jan 23 '12 08:01

Arpit Gupta

1 Answers

It's due to address space layout randomization.

To quote Wikipedia:

Address space layout randomization (ASLR) is a computer security method which involves randomly arranging the positions of key data areas, usually including the base of the executable and position of libraries, heap, and stack, in a process's address space.

Benefits

Address space randomization hinders some types of security attacks by making it more difficult for an attacker to predict target addresses. For example, attackers trying to execute return-to-libc attacks must locate the code to be executed, while other attackers trying to execute shellcode injected on the stack have to find the stack first. In both cases, the related memory addresses are obscured from the attackers. These values have to be guessed, and a mistaken guess is not usually recoverable due to the application crashing.

For example, when I repeatedly run the same executable produced from the following C code on my Ubuntu 10.10 box:

#include <stdio.h>

int g = 0;

int main() {
  int x = 0;
  printf("%p %p\n", &x, &g);
}

The address of the local variable (x) keeps changing, but the address of the global variable (g) stays the same.

like image 172
NPE Avatar answered Nov 19 '22 13:11

NPE
Sign in to Comment

Related questions

modified depth first traversal of tree
Is unsigned char a[4][5]; a[1][7]; undefined behavior?
Where can I find a table of all the characters for every C99 Character Set?
Signalling all threads in a process
Elegant implementation of circular singly-linked list in C?
How to obtain a new Pointer in Java?
C /C++ Lock-free (or nonblocking) Ring Buffer that OVERWRITES oldest data?
Programmatically determining max value of a signed integer type
Read debugging information at runtime from an application
Confused about OpenSSL non-blocking I/O
Making C module variables accessible as read-only
Where does python look for a dll opened by ctypes.cdll.<name> on windows?
Why does LD_PRELOAD not seem to work for write with wc
Call C Functions from Haskell at runtime
How to draw directly on the desktop?
Combine designated initializers and malloc in C99+?
Recommended JSON parser in C? [duplicate]
Profiling on baremetal embedded systems (ARM)
When to define a GTK class, when to use signals?
Can Git detect if two source files are essentially copies of each others?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!