Home/ Questions/Q 746071
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-14T09:39:24+00:00

I read somewhere that it is disastrous to use free to get rid of

  • 0

I read somewhere that it is disastrous to use free to get rid of an object not created by calling malloc, is this true? why?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    That’s undefined behavior – never try it.

    Let’s see what happens when you try to free() an automatic variable. The heap manager will have to deduce how to take ownership of the memory block. To do so it will either have to use some separate structure that lists all allocated blocks and that is very slow an rarely used or hope that the necessary data is located near the beginning of the block.

    The latter is used quite often and here’s how i is supposed to work. When you call malloc() the heap manager allocates a slightly bigger block, stores service data at the beginning and returns an offset pointer. Smth like:

    void* malloc( size_t size )
{
      void* block = tryAlloc( size + sizeof( size_t) );
      if( block == 0 ) {
          return 0;
      }
      // the following is for illustration, more service data is usually written
      *((size_t*)block) = size;
      return (size_t*)block + 1;
 }

    then free() will try to access that data by offsetting the passed pointer but if the pointer is to an automatic variable whatever data will be located where it expects to find service data. Hence undefined behavior. Many times service data is modified by free() for heap manager to take ownership of the block – so if the pointer passed is to an automatic variable some unrelated memory will be modified and read from.

    Implementations may vary but you should never make any specific assumptions. Only call free() on addresses returned by malloc() family functions.

    • 0