Recently, I tried "Application Verifier", a great tool distributed by Microsoft, can be used alone or together with Visual studio team version,
and it seems to be acceptable. The below code can be found immediately:
1: int* p = new int[10];
2: p[11]=1; // this cannot be detected, since the heap block has additional 8-bytes suffix, it seems that AppVerif does not check with this
3: p[100] = 1; // this can be detected immediately, since AppVerif generates memory fence after the heap block.
After running with Application Verifier, the memory usage is also acceptable.
Another thing related to this is that AppVerif can only work with native codes. As for the mixed code, msdn does not say clearly.
Two potential results can be:
1: AppVerif can only check native memory, ignore managed objects.
2: AppVerif cannot deal with mixed code correctly, may corrupt program's running by mistake.
After research work, I found the below link: saying that AppVerif does not actually validate the managed objects and codes,
instead it validates the CLR itself. If so, it seems that it can work for checking native memory overwriting.
No comments:
Post a Comment