Silviu Calinoiu

Silviu Calinoiu Silviu Calinoiu

Niner since 2009


  • Silviu Calinoiu: Inside Windows 7 - Fault Tolerant Heap

    Unfortunately it detects it during free. In order to detect it when the buffer overruns happens you need to play tricks with how the blocks are laid out in memory (each in a different page) and then play tricks with the protection of the following page. There is actually something that does this called page heap which is part of Application Verifier and you can download it from here: 


    This however has drastic performance implications and therefore is used only in testing environments. So the deal with FTH is just to shave some of these issues and try to detect as much as possible. It is still better then crashing with an innocent victim on the stack because now at least you know the entity freeing the block had some issue in the code paths manipulating that block. Essentially it is not different from the approach you used in your project. Just generalizes it for everybody. And debugging still requires lots of thinking but less than before.