Pointer hell

[posted separately to comp.unix.programmer and

Can't figure out why this code generates a SIGSEGV in
fillGlobalBuffer() (below).
[...]
It seems extraordinarily convoluted code for such a simple
task, and I confess I've run out of patience before finishing a
thorough examination. Here's at least one problem, though:
tv = (struct timeval *)bigBuf+bbIndex ;
printf("fGB(): wrote %lu.%lu to bigBuf\n",tv->tv_sec,tv->tv_usec);

[posted separately to comp.unix.programmer and

Can't figure out why this code generates a SIGSEGV in
fillGlobalBuffer() (below).

globalBuffer is allocated in caller.c, then its address is passed to
a pointer of the same type inside of callee.c, and that local pointer
is used as the reference written to from within callee.c.

It doesn't appear to actually write anything there, and when I try to
read it back I get empty data (from the original calloc() call) and
then a segfault.

I increment the offset into globalBuffer to write successive bits of
data (in this case, timestamps but it's just for illustration).

I am apparently making a fundamental error with the C language and
can't actually assign and use a pointer this way, but I'm not
clear as to why.

Or, I actually can do this but I'm going about it the wrong way.

I get a zeros from the printf() call in fillGlobalBuffer() before it
crashes.

References to, or other info describing, what I'm being stupid about
would be greatly appreciated.

===== Environ

Linux, GCC.

%uname -a
Linux tmdev 2.4.20-4GB #1 Tue May 24 16:14:53 UTC 2005 i686 unknown
unknown GNU/Linux

%gcc --version
gcc (GCC) 3.3 20030226 (prerelease) (SuSE Linux)
Copyright (C) 2002 Free Software Foundation, Inc.

%ld --version
GNU ld version 2.13.90.0.18 20030121 (SuSE Linux)
Copyright 2002 Free Software Foundation, Inc.

%/lib/libc.so.6
GNU C Library stable release version 2.3.2, by Roland McGrath et al.
Copyright (C) 2003 Free Software Foundation, Inc.
This is free software; see the source for copying conditions.
There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE.
Compiled by GNU CC version 3.3 20030226 (prerelease) (SuSE Linux).
Compiled on a Linux 2.4.20 system on 2003-03-13.

Can't figure out why this generates a SIGSEGV in fillGlobalBuffer()
(below).

globalBuffer is allocated in caller.c, then its address is passed to
a pointer of the same type inside of callee.c, and that local pointer
is used as the reference written to.

I increment the offset into globalBuffer to write successive bits of
data (in this case, timestamps but it's just for illustration).

I apparently can't assign and use a pointer this way, but I'm not
clear as to why. Or, I can do this but I'm going about it the wrong
way.

I get a zeros from the printf() call in fillGlobalBuffer() before it
crashes.

References to, or other info describing, what I'm being stupid about
would be greatly appreciated.

===== Compile
% gcc -g -Wall -o test caller.c callee.c -I.
===== Code
/* caller.c
*/
#include "callee.h"

unsigned char * globalBuffer ;

int
main(void)
{
int i, bytes_written ;
struct timeval tv ;

if ( (globalBuffer=calloc(1, GLOBAL_BUFSIZE)) == NULL )
{
fprintf(stderr,"calloc() failed on globalBuffer\n" );
exit(-1);
}
setGlobalBuffer( globalBuffer, GLOBAL_BUFSIZE ) ;

bytes_written = 0 ;
for ( i = 0 ; i < GLOBAL_BUFSIZE ; )
{
gettimeofday( &tv, NULL ) ;
fillGlobalBuffer(&tv, sizeof(struct timeval), &bytes_written);
i += bytes_written ;
}

// verify globalBuffer contents
for ( i = 0 ; i < GLOBAL_BUFSIZE ; i += sizeof(struct timeval) )
{
struct timeval * tv ;
tv = (struct timeval *)(globalBuffer+i) ;
// HERE
printf("Index=%d, timeval=%lu.%lu\n",i,tv->tv_sec,tv->tv_usec);
}

return 0 ;
}

/* callee.h
*/
#include <stdlib.h>
#include <stdio.h>
#include <sys/types.h>
#include <sys/time.h>
#include <string.h>

#define GLOBAL_BUFSIZE 1024

void
setGlobalBuffer( unsigned char * gb, int gbmax ) ;

int
fillGlobalBuffer( void * data, int datalen, int * written ) ;

/* callee.c
*/
#include "callee.h"

unsigned char * bigBuf ;
int bbIndex ;
int bbMax ;

void
setGlobalBuffer( unsigned char * gb, int gbmax )
{
bigBuf = gb ;
bbIndex = 0 ;
bbMax = gbmax ;
}

int
fillGlobalBuffer( void * data, int datalen, int * written )
{
struct timeval * tv ;

if ( bbIndex + datalen > bbMax )
return -1 ;

memcpy( bigBuf+bbIndex, data, datalen ) ;

tv = (struct timeval *)bigBuf+bbIndex ;
printf("fGB(): wrote %lu.%lu to bigBuf\n",tv->tv_sec,tv->tv_usec);

bbIndex += datalen ;
*written = datalen ;
return 0 ;
}

===== Output
% ./test
fGB(): wrote 1142826382.680840 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.4833 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf
fGB(): wrote 0.0 to bigBuf

Segmentation fault (core dumped)

I think the problem is here ...
memcpy( bigBuf+bbIndex, data, datalen ) ;

tv = (struct timeval *)bigBuf+bbIndex ;
The second use of bigBuf+bbIndex will be interpreted as:
tv = ((struct timeval *)bigBuf) + bbIndex ;

Simple Simon wrote:

[posted separately to comp.unix.programmer and

Can't figure out why this code generates a SIGSEGV in
fillGlobalBuffer() (below).
[...]
It seems extraordinarily convoluted code for such a simple
task, and I confess I've run out of patience before finishing a
thorough examination.

Yeah, I apologize for that. callee.{c,h} are actually placed in a
library, and caller.c calls that library. So it is convoluted far
beyond what is strictly necessary for the task, but since I thought
that the problem was related to the buffer reference passed into
callee.c, I thought I needed to reflect the relationship of the files
to each other.
Here's at least one problem, though:

tv = (struct timeval *)bigBuf+bbIndex ;
That was indeed the problem, although you raise another one.
printf("fGB(): wrote %lu.%lu to bigBuf\n",tv->tv_sec,tv->tv_usec);
First, ponder the difference between the first of these
lines and

tv = (struct timeval *)(bigBuf + bbIndex);

Second, consider that a `struct timeval' might have alignment
requirements and that a bunch of bytes at an arbitrary address
might not meet those requirements. (This doesn't happen in the
sample code you posted, since everything you put in the buffer is
a `struct timeval' -- effectively, you've got an array of them
and the array elements will all be aligned properly. But if you
start mingling `struct timeval's with strings and `struct foobar's,
all bets are off.)

This is a great concern, although it isn't biting me yet. Does this
type of alignment problem have a commonly referenced name, so that I
can learn more about it?

Do compilers generally support flags that address this, or are you
just hosed if a problem like this arises?

Hope this helps.

[... concerning alignment ...]
This is a great concern, although it isn't biting me yet. Does this
type of alignment problem have a commonly referenced name, so that I
can learn more about it?
Alignment requirements are generally referred to as,
er, "alignment requirements." (Who'd have guessed?)
Do compilers generally support flags that address this, or are you
just hosed if a problem like this arises?

Simple Simon wrote On 03/20/06 17:51,:

[... concerning alignment ...]
This is a great concern, although it isn't biting me yet. Does this
type of alignment problem have a commonly referenced name, so that I
can learn more about it?
Alignment requirements are generally referred to as,
er, "alignment requirements." (Who'd have guessed?)

Do compilers generally support flags that address this, or are you
just hosed if a problem like this arises?

Some compilers are able to generate code that will
correctly access mis-aligned data, usually at a penalty
in speed. For example, they might perform four single-
byte fetches plus some shifting and or-ing instead of
just reading an `int' out of memory.

Some compilers don't bother with this kind of stuff,
presumably because the compiler writers had better things
to do than pamper poor programmers!

If a compiler doesn't make special provision for mis-
aligned data, three behaviors are common:

- The mis-aligned access causes a trap of some kind,
and your program crashes. (Some systems raise a
SIGBUS signal when this happens.)

- The mis-aligned access causes a trap that invokes
a software fixer-upper. After a bunch of single-
byte accesses and suitable bit-bashing, your program
continues to run -- or, rather, continues to crawl.

- The hardware simply ignores the offending address
bits and your program goes merrily on its way. Alas,
it has accessed some data "near" the data you were
actually trying to touch ...

From the point of view of the C language, this is not
an exhaustive list of the possible outcomes. In fact, it
is not possible to construct such a list; all C says is
that a mis-aligned access causes "undefined behavior,"
meaning that anything at all could occur. "Anything at
all" is a very large territory with very few maps, best
avoided.

Your post was prescient -- the very next problem I ran into was an
alignment issue. I had an incoming data stream of the structure 7
bytes (substructure: 3 1 1 1 1 bytes) then a short int, then some
other stuff.

I used a struct like so, which reflected the structure of the data

typedef struct {
char ca[3] ;
char c1[1] ;
char c2[1] ;
char c3[1] ;
char c4[1] ;
short int i ;

// ...other stuff...

} record ;

....

record * rp = (record *)record_buffer ;

....and rp->i always contained bytes 8 and 9 of the record_buffer,
instead of bytes 7 and 8.

I dumped memory of record_buffer and the bytes 7 and 8 were the ones
I wanted, but the cast above gave me bytes 8 and 9 of record_buffer.

I figured out an undoubtably very clumsy and inelegant way of getting
what I needed, but thanks for your help overall, and for making me
sensitive to the nature of my next problem before it had even arisen.
When you need to slosh data with possibly strict alignment
requirements in and out of buffers with less stringent needs,
it's just not safe to pretend that the un-aligned bytes are
really an instance of the data object. Before you can treat
them as an `int' or a `struct timeval' or whatever, the only
safe course is to copy them byte-by-byte into an actual instance
of the appropriate type. Your code was something of a special
case, because (1) the buffer was obtained from calloc() and
all such buffers are aligned so as to meet the strictest of
alignment requirements, and (2) you filled the buffer with
multiple copies of the same type of struct, laid end-to-end.
In effect you've used the buffer as an array of structs, and
that will work just fine. But if you start mixing and matching
different types of data in such a buffer, alignment issues
will bite you.

Your post was prescient -- the very next problem I ran into was an
alignment issue. I had an incoming data stream of the structure 7
bytes (substructure: 3 1 1 1 1 bytes) then a short int, then some
other stuff.

I used a struct like so, which reflected the structure of the data

typedef struct {
char ca[3] ;
char c1[1] ;
char c2[1] ;
char c3[1] ;
char c4[1] ;
short int i ;

// ...other stuff...

} record ;

...

record * rp = (record *)record_buffer ;

...and rp->i always contained bytes 8 and 9 of the record_buffer,
instead of bytes 7 and 8.

I dumped memory of record_buffer and the bytes 7 and 8 were the ones
I wanted, but the cast above gave me bytes 8 and 9 of record_buffer.

I figured out an undoubtably very clumsy and inelegant way of getting
what I needed, but thanks for your help overall, and for making me
sensitive to the nature of my next problem before it had even arisen.