Method and apparatus for detecting references to deallocated memory in a dynamic memory allocation system

US 5,559,980 A
Filed: 03/18/1993
Issued: 09/24/1996
Est. Priority Date: 03/18/1993
Status: Expired due to Fees

First Claim

Patent Images

1. A dynamic memory allocation system having an address space comprising a plurality of non-overlapping address-space pages, each address-space page including a plurality of addresses of the address space, the system comprising:

a memory comprising a plurality of non-overlapping memory pages, each memory page including a plurality of memory locations each having a corresponding first address for use in accessing that memory location;

a memory map for representing a mapping of addresses from the address space to the memory locations, the memory map representing a mapping of the addresses from a first portion of the address space that presently resides in the memory to the memory locations;

memory allocating means (42) responsive to a dynamic memory allocation request, for allocating to a requestor a memory location from a memory page having at least one other memory location already allocated in response to another dynamic memory allocation request, mapping to the allocated memory location a second address from an address-space page none of whose included addresses are presently mapped to memory locations, and giving the second address to the requestor for referencing the allocated memory location;

memory deallocating means (43) responsive to a dynamic memory deallocation request, for deallocating the allocated memory location from the requestor and canceling the mapping of the second address to the deallocated memory location; and

address translating means (41) responsive to the requestor referencing the deallocated memory location with the second address, for using the memory map to translate the second address to the deallocated memory location'"'"'s first address, the address translating means failing to accomplish the translation if the mapping of the second address to the deallocated memory location is not represented in the memory map, whereby the reference by the requestor to the deallocated memory location is detected.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and means for identifying references by a process or a subprogram of a process to deallocated memory in a dynamic memory allocation system. The system and method are effective in identifying such references even before they have manifested themselves, and also in identifying the perpetrators of such references. The system and method make use of that portion of the address space of the process which is not otherwise used. A dynamic memory allocation function responds to a requestor'"'"'s request for memory allocation by mapping memory which the function is allocating to the requestor into otherwise-unused virtual address space, recording this mapping in the system'"'"'s memory map, and returning the virtual address to the requestor for use in referencing the allocated memory. Hence, any attempted access by the requestor to the allocated memory uses the virtual address, and the virtual address must be translated through the process memory map before the access can be established. A dynamic memory deallocation function responds to a requestor'"'"'s request for memory deallocation by deleting from the process memory map the mapping between the memory which is being deallocated and the corresponding virtual address. Hence, any subsequent attempted access by the requestor to the deallocated memory fails on account of the corresponding entry in the process memory map being empty and thus unavailable for completion of the requisite address translation. This failure is trapped, recorded, and reported by the system'"'"'s conventional fault-management mechanisms.

Citations

27 Claims

1. A dynamic memory allocation system having an address space comprising a plurality of non-overlapping address-space pages, each address-space page including a plurality of addresses of the address space, the system comprising:
- a memory comprising a plurality of non-overlapping memory pages, each memory page including a plurality of memory locations each having a corresponding first address for use in accessing that memory location;
  
  a memory map for representing a mapping of addresses from the address space to the memory locations, the memory map representing a mapping of the addresses from a first portion of the address space that presently resides in the memory to the memory locations;
  
  memory allocating means (42) responsive to a dynamic memory allocation request, for allocating to a requestor a memory location from a memory page having at least one other memory location already allocated in response to another dynamic memory allocation request, mapping to the allocated memory location a second address from an address-space page none of whose included addresses are presently mapped to memory locations, and giving the second address to the requestor for referencing the allocated memory location;
  
  memory deallocating means (43) responsive to a dynamic memory deallocation request, for deallocating the allocated memory location from the requestor and canceling the mapping of the second address to the deallocated memory location; and
  
  address translating means (41) responsive to the requestor referencing the deallocated memory location with the second address, for using the memory map to translate the second address to the deallocated memory location'"'"'s first address, the address translating means failing to accomplish the translation if the mapping of the second address to the deallocated memory location is not represented in the memory map, whereby the reference by the requestor to the deallocated memory location is detected.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The system of claim 1 wherein:
    - the memory map represents a mapping of address-space pages to memory pages; and
      
      location to the requestor, an address-space page from a second portionthe memory allocating means allocates at least one memory of the address space that excludes the first portion, which address-space page presently does not have any addresses mapped to memory locations, to the allocated at least one memory location, and gives at least one second address from the mapped address-space page from the second portion to the requestor for referencing the allocated at least one memory location; and
      
      the memory deallocating means deallocates the allocated at least one memory location from the requestor and cancels the mapping of the mapped address-space page from the second portion to the at least one deallocated memory location.
  - 3. The system of claim 1 wherein:
    - the memory map is one of a plurality of memory maps, each corresponding to a different process and for representing a mapping of addresses from an address space of the corresponding process to the memory locations, andthe requestor is either (a) one of a plurality of processes or (b) one of a plurality of subprograms of a process.
  - 4. The system of claim 1 wherein:
    - the memory allocating means causes the mapping of the second address to the allocated memory location to be represented in the memory map; and
      
      the memory deallocating means for deallocating and canceling comprises means for deleting the mapping of the second address to the allocated memory location from the memory map.
  - 5. The system of claim 1 whereinthe memory allocating means (42) is responsive to a first dynamic memory allocation request for allocating to a requestor corresponding to the first request a first memory location in a memory page, mapping to the allocated first memory location a second address from a first address-space page none of whose included addresses are mapped to memory locations, and giving the second address from the first address-space page to the requestor corresponding to the first request for referencing the allocated first memory location, andthe memory allocating means is further responsive to a second dynamic memory allocation request for allocating to a requestor corresponding to the second request a second memory location in the memory page, mapping to the allocated second memory location a second address from a second address-space page none of whose included addresses are mapped to memory locations and giving the second address from the second address-space page to the requestor corresponding to the second request for referencing the allocated second memory location.

6. A dynamic memory allocation system having an address space comprising a plurality of non-overlapping address-space pages, each address-space page including a plurality of addresses of the address space, the system comprising:
- a memory comprising a plurality of non-overlapping memory pages, each memory page including a plurality of memory locations each having a corresponding first address for use in accessing that memory location;
  
  a memory map for representing a mapping of addresses from the address space to the memory locations, the memory map representing a mapping of the addresses from a first portion of the address space that presently resides in the memory to the memory locations;
  
  memory allocating means (42) responsive to a dynamic memory allocation request, for allocating to a requestor a memory location from a memory page having at least one other memory location already allocated in response to another dynamic memory allocation request, mapping in the memory map to the allocated memory location a second address from an address-space page none of whose included addresses are presently mapped to memory locations, and giving the second address to the requestor for referencing the allocated memory location;
  
  address translating means (41) responsive to the requestor referencing the allocated memory location with the second address of the allocated memory location, for using the memory map to translate the second address of the allocated memory location to the allocated memory location'"'"'s first address for use in accessing the referenced allocated memory location;
  
  memory deallocating means (43) responsive to a dynamic memory deallocation request, for deallocating the allocated memory location from the requestor and deleting the mapping of the second address to the deallocated memory location from the memory map; and
  
  the address translating means further responsive to the requestor referencing the deallocated memory location with the second address of the deallocated memory location, for using the memory map to attempt to translate the second address of the deallocated memory location to the first address of the deallocated memory location and failing to accomplish the translation due to the deletion from the memory map by the memory deallocating means, whereby the reference by the requestor to the deallocated memory location is detected.
- View Dependent Claims (7, 8, 9, 10, 11)
- - 7. The system of claim 6 further comprising:
    - means responsive to the translation of the second address to the allocated memory location'"'"'s first address, for using the first address to access the referenced allocated memory location; and
      
      whereinthe address translating means includesmeans (610) responsive to a failed translation, for reporting the failure.
  - 8. The system of claim 6 wherein:
    - the memory map is one of a plurality of memory maps each corresponding to a different process for representing a mapping of addresses from an address space of the corresponding process to the memory locations; and
      
      the requestor is either (a) one of a plurality of processes or (b) one of a plurality of subprograms of a process.
  - 9. The system of claim 6 whereinthe memory allocating means (42) is responsive to a first dynamic memory allocation request for allocating to a requestor corresponding to the first request a first memory location in a memory page, mapping to the allocated first memory location a second address from a first address-space page none of whose included addresses are mapped to memory locations, and giving the second address from the first address-space page to the requestor corresponding to the first request for referencing the allocated first memory location, andthe memory allocating means is further responsive to a second dynamic memory allocation request for allocating to a requestor corresponding to the second request a second memory location in the memory page, mapping to the allocated second memory location a second address from a second address-space page none of whose included addresses are mapped to memory locations, and giving the second address from the second address-space page to the requestor corresponding to the second request for referencing the allocated second memory location.
  - 10. The system of claim 6 wherein:
    - the memory map represents a mapping of address-space pages to memory pages; and
      
      the memory allocating means allocates at least one memory location to the requestor, maps an address-space page from a second portion of the memory space that excludes the first portion, which address-space page presently does not have any addresses mapped to memory locations, to the allocated at least one memory location in the memory map, and gives at least one second address from the mapped address-space page from the second portion to the requestor for referencing the allocated at least one memory location; and
      
      the memory deallocating means deallocates the allocated at least one memory location from the requestor and deletes the mapping of the mapped address-space page from the second portion to the at least one deallocated memory location from the memory map.
  - 11. The system of claim 10 wherein:
    - the memory allocating means includesa pool (450) of address-space pages in the second portion which address-space pages presently, are not used, in that they do not have any addresses trapped to memory locations, the address-space pages being arranged in the pool in least-recently-used order, andmeans for mapping the at least one memory location to at least one second address of the least-recently-used address-space page that appears in the pool, and removing the least-recently-used address-space page from the pool; and
      
      the memory deallocating means includesmeans (510) for returning the address-space page which includes the at least one second address that was mapped to the deallocated at least one memory location, to the pool as a most-recently-used address-space page.

12. In a dynamic memory allocation system having a memory comprising a plurality of non-overlapping memory pages, each memory page including a plurality of memory locations each having a corresponding first address for use in accessing that memory location, an address space comprising a plurality of non-overlapping address-space pages, each address-space page including a plurality of addresses of the address space, a memory map for representing a mapping of addresses from the address space to the memory locations, the memory map representing a mapping of the addresses from a first portion of the address space that presently resides in the memory to the memory locations, a memory allocation means that responds to a memory allocation request by allocating a memory location to a requestor, a memory deallocation means that responds to a memory deallocation request by deallocating the allocated memory location from the requestor, and an address translation means that responds to the requestor referencing the allocated memory location with an address that is mapped to that allocated memory location, by using the memory map to translate the referencing address to the allocated memory location'"'"'s first address, the improvement comprising:
- said memory allocation means including means responsive to an allocation of a memory location to a requestor in response to a memory allocation request, the allocated memory location being from a memory page having at least one other memory location already allocated in response to another memory allocation request, for mapping to the allocated memory location a second address from an address-space page none of whose included addresses are presently mapped to memory locations, and giving the second address to the requestor for referencing the allocated memory location; and
  
  said memory deallocation means including means responsive to a deallocation of the allocated memory location from the requestor, for canceling the mapping of the second address to the deallocated memory location;
  
  whereby an attempt, by the translation means in response to the requestor referencing the deallocated memory location with the second address of the deallocated memory location, to use the memory map to translate the second address of tile deallocated memory location to the first address of the deallocated memory location fails if the mapping of the second address is not represented in the memory map, and the reference by the requestor to the deallocated memory location is detected in consequence of the failure.
- View Dependent Claims (13, 14, 15, 16)
- - 13. The arrangement of claim 12 whereinthe means for mapping a second address is responsive to an allocation, in response to .a first dynamic memory allocation request, of a first memory location in a memory page to a requestor corresponding to the first request, for mapping to the allocated first memory location a second address from a first address-space page none of whose included addresses are mapped to memory locations, and giving the second address from the first address-space page to the requestor corresponding to the first request for referencing the allocated first memory location, andthe means for mapping a second address is further responsive to an allocation, in response to a second dynamic memory allocation request, of a second memory location in the memory page to a requestor corresponding to the second request, for mapping to the allocated second memory location a second address from a second address-space page none of whose included addresses are mapped to memory locations, and giving the second address from the second address-space page to the requestor corresponding to the second request for referencing the allocated second memory location.
  - 14. The improvement in a dynamic memory allocation system, as in claim 12 wherein:
    - the mapping means responds to the allocation of the memory location to the requestor representing the mapping of the second address to the allocated memory location in the memory map; and
      
      the canceling means comprisesmeans responsive to the deallocation of the memory location from the requestor, for deleting the mapping of the second address to the deallocated memory location from the memory map;
      
      whereby an attempt, by the translation means in response to the requestor referencing the deallocated memory location with the second address, to use the memory map to translate the second address to the first address of the deallocated memory location fails due to the deletion from the memory map made by the deleting means, and the reference by the requestor to the deallocated memory location is detected in consequence of the failure.
  - 15. The improvement in a dynamic memory allocation system, as in claim 14 wherein the memory map represents a mapping of address-space pages to memory pages, the memory allocation means allocates at least one memory location to the requestor, and the memory deallocation means deallocates the at least one allocated memory location from the requestor, wherein:
    - the means for mapping maps an address-space page from a second portion of the address space that excludes the first portion, which address-space page presently does not have any addresses mapped to memory locations, to the allocated at least one memory location in the memory map, and gives at least one second address from the mapped address-space page from the second portion to the requestor for referencing the allocated at least one memory location; and
      
      the means for deleting deletes the mapping of the mapped address-space page from the second portion to the at least one deallocated memory location from the memory map.
  - 16. The improvement in a dynamic memory allocation system, as in claim 15 wherein:
    - the means for mapping includesa pool (450) of address-space pages in the second portion which address-space pages presently are not used, in that they do not have any addresses mapped to memory locations, the address-space pages arranged in the pool in least-recently-used order; and
      
      means (408-412) for mapping the at least one memory location to at least one second address of the least-recently-used address-space page that appears in the pool, and removing the least-recently-used address-space page from the pool; and
      
      the memory deallocation means includesmeans (510) for returning the address-space page which includes the at least one second address that was mapped to the deallocated at least one memory location, to the pool as a most-recently-used address-space page.

17. A method of detecting a reference by a requestor to a memory location in a dynamic memory allocation system having a memory comprising a plurality of non-overlapping memory pages, each memory page including a plurality of memory locations each having a corresponding first address for use in accessing the memory location, an address space comprising a plurality of non-overlapping address-space pages, each address-space page including a plurality of addresses of the address space, and a memory map for representing a mapping of addresses from the address space to the memory locations, the memory map representing a mapping of the addresses from a first portion of the address space that presently resides in the memory to the memory locations, the method comprising the steps of:
- in response to a dynamic memory allocation request,allocating to a requestor a memory location from a memory page having at least one other memory location already allocated in response to another dynamic memory allocation request,mapping a second address, from an address-space page none of whose included addresses are presently mapped to memory locations, to the allocated memory location, andgiving the second address to the requestor for referencing the allocated memory location;
  
  in response to a dynamic memory deallocation request,deallocating the allocated memory location from the requestor, andcanceling the mapping of the second address to the deallocated memory location; and
  
  in response to the requestor referencing the deallocated memory location with the second address,using the memory map to translate the second address to the deallocated memory location'"'"'s first address, andfailing to accomplish the translation if the mapping of the second address to the deallocated memory location is not represented in the memory map,whereby the reference by the requestor to the deallocated memory location is detected.
- View Dependent Claims (18, 19, 20, 21)
- - 18. The method of claim 17 in a system wherein the memory map represents a mapping of address-space pages to memory pages, wherein:
    - the step of allocating comprises the step of allocating at least one memory location to the requestor;
      
      the step of mapping comprises the step of mapping an address-space page from a second portion of the address space that excludes the first portion, which address-space page presently does not have any addresses mapped to memory locations, to the allocated at least one memory location;
      
      the step of giving comprises the step ofgiving at least one second address from the mapped address-space page from the second portion to the requestor for referencing the allocated at least one memory location;
      
      the step of deallocating comprises the step ofdeallocating the allocated at least one memory location from the requestor; and
      
      the step of canceling comprises the step ofdeleting the mapping of the mapped address-space page from the second portion to the at least one deallocated memory location.
  - 19. The method of claim 17 in a system whereinthe memory map is one of a plurality of memory maps, each corresponding to a different process, for representing a mapping of addresses from an address space of the corresponding process to the memory locations, andthe requestor is either (a) one of a plurality of processes or (b) one of a plurality of subprograms of a process.
  - 20. The method of claim 17 wherein:
    - the step of mapping comprises the step ofrepresenting the mapping of the second address to the allocated memory location in the memory map; and
      
      the step of canceling comprises the step ofdeleting the mapping of the second address to the allocated memory location from the memory map.
  - 21. The method of claim 17 wherein:
    - the steps of allocating, mapping, and giving in response to a dynamic memory allocation request respectively comprise the steps ofin response to a first dynamic memory allocation request,allocating to a requestor corresponding to the first request a first memory location in a memory page,mapping to the allocated first memory location a second address from a first address-space page none of whose included addresses are mapped to memory locations, andgiving the second address from the first address-space page to the requestor corresponding to the first request for referencing the allocated first memory location; and
      
      the steps of allocating, mapping, and giving in response to a dynamic memory allocation request further respectively comprise the steps ofin response to a second dynamic memory allocation request,allocating to a requestor corresponding to the second request a second memory location in the memory page that includes the first memory location,mapping to the allocated second memory location a second address frown a second address-space page none of whose included addresses are mapped to memory locations, andgiving the second address from the second address-space page to the requestor corresponding to the second request for referencing the allocated second memory location.

22. A method of detecting a reference by a requestor to a deallocated memory location in a dynamic memory allocation system having a memory comprising a plurality of non-overlapping memory pages, each memory page including a plurality of memory locations each having a corresponding first address for use in accessing the memory location, an address space comprising a plurality of non-overlapping address-space pages, each address-space page including a plurality of addresses of the address space, and a memory map for representing a mapping of addresses from the address space to the memory locations, the memory map representing a mapping of the addresses from a first portion of the address space that presently resides in the memory to the memory locations, the method comprising the steps of:
- in response to a dynamic memory allocation request,allocating to a requestor a memory location from a memory page having at least one other memory location already allocated in response to another dynamic memory allocation request,mapping a second address, from an address-space page none of whose included addresses are presently mapped to memory locations, to the allocated memory location in the memory map, andgiving the second address to the requestor for referencing the allocated memory location;
  
  in response to the requestor referencing the allocated memory location with the second address,using the memory map to translate the second address to the allocated memory location'"'"'s first address, andusing the first address to access the allocated referenced memory location;
  
  in response to a dynamic memory deallocation request,deallocating the allocated memory location from the requestor, anddeleting the mapping of the second address to the deallocated memory location from the memory map; and
  
  in response to the requestor referencing the deallocated deallocated memory location with the second address,using the memory map in an attempt to translate the second address to the deallocated deallocated memory location'"'"'s first address, andfailing in the attempt due to the deletion from the memory map,whereby the reference by the requestor to the deallocated memory location is detected.
- View Dependent Claims (23, 24, 25, 26, 27)
- - 23. The method of claim 22 further comprising the steps of:
    - in response to the translating of the second address to the allocated memory location'"'"'s first address, using the first address to access the referenced allocated memory location; and
      
      in response to a failed translation, reporting the failure.
  - 24. The method of claim 22 in a system whereinthe memory map is one of a plurality of memory maps, each corresponding to a different process, for representing a mapping of addresses from an address space of the corresponding process to the memory locations, andthe requestor is one of (a) one of a plurality of processes and (b) one of a plurality of subprograms of a process.
  - 25. The method of claim 22 wherein:
    - the steps of allocating, mapping, and giving in response to a dynamic memory allocation request respectively comprise-the steps ofin response to a first dynamic memory allocation request,allocating to a requestor corresponding to the first request a first memory location in a memory page,mapping to the allocated first memory location a second address from a first address space page none of whose included addresses are mapped to memory locations, andgiving the second address from the first address-space page to the requestor corresponding to the first request for referencing the allocated first memory location; and
      
      the steps of allocating, mapping, and giving in response to a dynamic memory allocation request further respectively comprise the steps ofin response to a second dynamic memory allocation request,allocating to a requestor corresponding to the second request a second memory location in the memory page that includes the first memory location,mapping to the allocated second memory location a second address from a second address-space page none of whose included addresses are mapped to memory locations, andgiving the second address from the second address-space page to the requestor corresponding to the second request for referencing the allocated second memory location.
  - 26. The method of claim 22 in a system wherein the memory map represents a mapping of address-space pages to memory pages, wherein:
    - the step of allocating comprises the step of allocating at least one memory location to the requestor,the step of mapping comprises the step ofmapping address-space page from a second portion of the address space that excludes the first portion, which address-space page presently does not have any addresses mapped to memory from a second portion of the address space that excludes the first portion, which address-space page presently does not have any addresses mapped to memory locations, to the allocated at least one memory location in the memory map;
      
      the step of giving comprises the step ofgiving at least one second address from the mapped address-space page from the second portion to the requestor for referencing the allocated at least one memory location;
      
      the step of deallocating comprises the step ofdeallocating the allocated at least one memory location from the requestor; and
      
      the step of deleting comprises the step ofdeleting the mapping of the mapped address-space page from the second portion to the at least one deallocated memory location from the memory map.
  - 27. The method of claim 26 wherein:
    - the step of mapping an address-space page includes the steps ofremoving a least-recently-used address-space page from a pool of address-space pages in the second portion which address-space pages are presently not used, in that they do not have any addresses mapped to memory locations, the address-space pages being arranged in the pool in least-recently-used order, andmapping the at least one memory location to at least one second address of the least-recently-used address-space page; and
      
      the step of deallocating includes the step ofreturning the address-space page which includes the at least one second address that was mapped to the deallocated at least one memory location, to the pool as a most-recently-used address-space page.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Lucent Technologies, Inc. (Nokia Corporation)
Original Assignee
Lucent Technologies, Inc. (Nokia Corporation)
Inventors
Robertson, Alan L., Connors, Paul A.
Primary Examiner(s)
GOSSAGE, GLENN A

Application Number

US08/032,918
Time in Patent Office

1,286 Days
Field of Search

395/425, 395/575, 395/412, 395/413, 395/416, 395/418, 395/419, 395/427, 395/481, 395/486, 395/487, 395/650, 395/183.14, 395/183.13, 395/183.18, 395/182.03 , 395/182.06, 395/185.01, 395/185.1, 395/497.02, 395/497.01, 395/497.04, 395/600, 364/DIG. 1
US Class Current

711/100
CPC Class Codes

G06F 12/023   Free address space management

G06F 12/0292   using tables or multilevel ...

G06F 12/10   Address translation

Method and apparatus for detecting references to deallocated memory in a dynamic memory allocation system

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

Citations

27 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for detecting references to deallocated memory in a dynamic memory allocation system

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

27 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links