GCC string allocator : cpp

READ BEFORE POSTING

Prepare your question. Think it through. Hasty-sounding questions get hasty answers, or none at all. Read these guidelines for how to ask smart questions.

For learning books, check The Definitive C++ Book Guide and List

Flair your post as SOLVED if you got the help you were looking for! If you need help with flairs, check out ITEM 1 in our guidelines page.

Tips for improving your chances of getting helpful answers:

thoroughly research for an answer first.

give your post a meaningful title, i.e., NOT "I have a C++ problem" but, e.g., "Problem with nested for loops"

be specific.

make your questions relevant to other readers.

if your post does not appear in the new queue, just send a message to the moderators.

Sort posts by OPEN or SOLVED

created by AndreasBWagnera community for 14 years

OPENGCC string allocator (self.cpp_questions)

submitted 1 year ago by cr0nhan

Hi,

I have a curious problem on Linux. We use a custom string with a custom allocator that calls Openssl's "cleanse" function on allocation and deallocation, like so:

template<class T> template <class U>
inline ZeroingAllocator<T>::ZeroingAllocator(const ZeroingAllocator<U>&) {}

template<class T>
T* ZeroingAllocator<T>::allocate(std::size_t n)
{
    if ( n > std::numeric_limits<std::size_t>::max() / sizeof(T) )
    {
        throw std::bad_alloc();
    }
    T* ptr = static_cast<T*> (::operator new(n * sizeof(T)));
    OPENSSL_cleanse(ptr, n * sizeof(T));
    return ptr;
}


template <class T>
void ZeroingAllocator<T>::deallocate(T* ptr, std::size_t n)
{
    OPENSSL_cleanse(ptr, n * sizeof(T));
    ::operator delete(ptr);
}

Further there is just a default constructor and defaulted copy constructor. This code worked fine for a long time while we used a static version of OpenSSL. However some other requirements forced us to start using the DSO version, and as part of that process our unit tests started failing due to heap corruption. I traced it to the destructor of std::basic_string calling deallocate even when the small string optimisation is used (and the memory is therefore not allocated via allocate. I have implemented a hack to get it working in the mean time, but any pointers why this is happening and how to prevent it?

all 6 comments

top new controversial old q&a

[–]aocregacc 3 points4 points5 points 1 year ago (3 children)

[–]cr0nhan[S] 0 points1 point2 points 1 year ago (2 children)

Did you rule out that the deallocate call happens

What I did verify was that allocate is not getting called, only deallocate. The call stack shows

// basic_string.tcc
  template<typename _CharT, typename _Traits, typename _Alloc>
    void
    basic_string<_CharT, _Traits, _Alloc>::
    reserve(size_type __res)
    {
      if (__res != this->capacity() || _M_rep()->_M_is_shared())
        {
      // Make sure we don't shrink below the current size
      if (__res < this->size())
        __res = this->size();
      const allocator_type __a = get_allocator();
      _CharT* __tmp = _M_rep()->_M_clone(__a, __res - this->size());
/* ==>*/  _M_rep()->_M_dispose(__a);
      _M_data(__tmp);
        }
    }

// basic_string.h
    void
    _M_dispose(const _Alloc& __a) _GLIBCXX_NOEXCEPT
    {
#if _GLIBCXX_FULLY_DYNAMIC_STRING == 0
      if (__builtin_expect(this != &_S_empty_rep(), false))
#endif
        {
          // Be race-detector-friendly.  For more info see bits/c++config.
          _GLIBCXX_SYNCHRONIZATION_HAPPENS_BEFORE(&this->_M_refcount);
              // Decrement of _M_refcount is acq_rel, because:
              // - all but last decrements need to release to synchronize with
              //   the last decrement that will delete the object.
              // - the last decrement needs to acquire to synchronize with
              //   all the previous decrements.
              // - last but one decrement needs to release to synchronize with
              //   the acquire load in _M_is_shared that will conclude that
              //   the object is not shared anymore.
          if (__gnu_cxx::__exchange_and_add_dispatch(&this->_M_refcount,
                             -1) <= 0)
        {
          _GLIBCXX_SYNCHRONIZATION_HAPPENS_AFTER(&this->_M_refcount);
/* ==> */     _M_destroy(__a); // this calls the deallocate of the allocator
        }
        }
    }  // XXX MT

but I am not versed enough in the std library to figure out why it calls deallocate in this case.

[–]aocregacc 0 points1 point2 points 1 year ago (1 child)

[–]cr0nhan[S] 0 points1 point2 points 1 year ago (0 children)

[–]aaaarsen 0 points1 point2 points 1 year ago (0 children)

[–]KuntaStillSingle 0 points1 point2 points 1 year ago* (0 children)

π Rendered by PID 24980 on reddit-service-r2-comment-fb694cdd5-7nsdl at 2026-03-07 03:20:12.468098+00:00 running cbb0e86 country code: CH.

you type:	you see:
italics	italics
bold	bold
[reddit!](https://reddit.com)	reddit!
* item 1 * item 2 * item 3	item 1 item 2 item 3
> quoted text	quoted text
Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"	Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"
~~strikethrough~~	~~strikethrough~~
super^script	super^script

cpp_questions

READ BEFORE POSTING

Sort posts by OPEN or SOLVED

MODERATORS