# Systems Programming

<img src="images/durhamlogo.png" alt="Durham University" style="float: right; margin-right: 15px;" width="300">


### Lecture 7: Pointers

Stuart James

stuart.a.james@durham.ac.uk


# Recap

https://PollEv.com/stuartjames

<center><img src="images\quiz-qr.png" alt="Poll Link" width="400"></center>

# Recap Union & Struct

In [3]:
#include <stdio.h>
#define TITLE_LEN 8
#define AUTHOR_LEN 8
#define DESIGN_LEN 8

struct s_catalog_item {
  int stock_number;
  double price;
  int item_type;
  char title[TITLE_LEN+1];
  char author[AUTHOR_LEN+1];
  int num_pages;
  char design[DESIGN_LEN+1];
  int colors;
  int sizes;
};

struct u_catalog_item {
  int stock_number;
  double price;
  int item_type;
  union {
    struct {
      char title[TITLE_LEN+1];
      char author[AUTHOR_LEN+1];
      int num_pages;
    } book;
    struct {
      char design[DESIGN_LEN+1];
    } mug;
    struct {
      char design[DESIGN_LEN+1];
      int colors;
      int sizes;
    } shirt;
  } item;
};

int main(){
    // Accessing the original struct:
    struct s_catalog_item  c_struct; 
    c_struct.title[0] = 't';
    
    // Accessing our new data structure:
    struct u_catalog_item  c_union; 
    c_union.item.book.title[0] = 't';
    
    return 0;
}

# Recap: `typedef`

In [4]:
typedef struct coords {
  int x;
  int y;
} point;


typedef union id_thing {
  int i;
  double d;
} number;

int main(){
    point p1 = {5, 4}; // instead of struct point p1;
    number n = {.d = 10.0}; // instead of union number n;
}

# Recap: IO

In [5]:
#include <stdio.h>

int main()
{
   printf ("Characters: %c %c \n", 'a', 65);
   printf ("Decimals: %d %ld\n", 1977, 650000L);
   printf ("Preceding with blanks: %10d \n", 1977);
   printf ("Preceding with zeros: %010d \n", 1977);
   printf ("Some different radices: %d %x %o %#x %#o \n", 100, 100, 100, 100, 100);
   printf ("floats: %4.2f %+.0e %E \n", 3.1416, 3.1416, 3.1416);
   printf ("Width trick: %*d \n", 5, 10);
   printf ("%s \n", "A string");
   return 0;
} 

Characters: a A 
Decimals: 1977 650000
Preceding with blanks:       1977 
Preceding with zeros: 0000001977 
Some different radices: 100 64 144 0x64 0144 
floats: 3.14 +3e+00 3.141600E+00 
Width trick:    10 
A string 


## Starting this week

# Pointers

# What is a Variable?

- A logical name for an allocated area of memory, assigned to store a value of a certain type.

```c
int i = 10;
```

<center><img src="images/addressi.png" alt="variable" width="700"/></center>



# Pointer Variable

<center><img src="images/addressrow.png" alt="variable" width="500"/></center>

```c
int i = 10;
```

- value of `i` is 10.
- The memory address of `i` is `&i` and has a value of 4.

# Pointer Variable

<center><img src="images/addressrow.png" alt="variable" width="500"/></center>

- `int i = 10;`

    - A pointer variable stores a memory address:
        ```c
        int *p;
        p = &i;
        ```
    - now the pointer variable `p` stores the memory address of the variable `i`

# Pointers

<center><img src="images/pointsto.png" alt="indirection" width="350"/></center>

```c
int i = 10;   // simple variable
int *p = &i;  // pointer variable
```
- You can read the address operator `&` as "**_address of_**"
    

```c
printf("%d %d\n", i, *p ) ;
```

* output: "`10 10`"

    - You can read the indirection operator `*` as "**_value at_**"

# Basic Pointer Operations

```c
int i = 5; // declare an int variable

int *p;    // declare a variable pointer to an int

p = &i;    // & "address of"
```
- Use indirection operator `*` to access and modify the value:

```c
*p = 7; // assign value of 7 to i

*p = *p + 1; // add 1 to value of i
```

# The Indirection Operator: what not to do

Applying the indirection operator to an uninitialised pointer variable causes undefined behaviour:

```c
int *p;

printf("%d", *p);   /*** WRONG ***/
```

Assigning a value to `*p` is particularly dangerous:

```c
int *p;

*p = 1;            /*** DANGER ***/
```

# Pointer Assignment

C allows the use of the assignment operator to copy pointers of the same type:

- Assume that the following declaration is in effect:

```c
int i, j, *p, *q;
```

- Example of pointer assignment:

```c
p = &i;
```



* There are other ways to assign pointers

# Pointer Assignment


```c
int i, j, *p, *q;
p = &i;

```

- Another example of pointer assignment:
c
```
q = p;
```

- `q` now points to the same place as `p`:

<center><img src="images/twopointers.png" alt="copying pointers" width="400"/></center>




# Pointer Assignment

`p` and `q` both point to `i`, so we can change `i` by assigning a value to `*p` **or** `*q`:

```c
*p = 1;
```
<center><img src="images/twopointers1.png" alt="copying pointers" width="400"/></center>

- Any number of pointer variables may point to the same object

# Pointer Assignment

`p` and `q` both point to `i`, so we can change `i` by assigning a value to `*p` **or** `*q`:

```c
*q = 2;
```
<center><img src="images/twopointers2.png" alt="copying pointers" width="400"/></center>

- Any number of pointer variables may point to the same object

# Pointers as Arguments

- We can try writing a `swap()` function that could modify its arguments, but it won’t really work.

- By passing a pointer to a variable instead of the value of the variable, `swap()` can be fixed.

# Swap

We want to write a simple function in C to swap the values of two integer variables, `x` and `y`:

```c
void swap(int a, int b) {
    int temp;
    temp = a;
    a = b;
    b = temp;
}
```

- will this work when we call `swap(x,y)`?

- spoiler alert: **NO!**

In [6]:
#include <stdio.h>
void swap(int a, int b);

int main(){
  int x = 8;
  int y = 44;
  swap(x,y);
  printf("x = %d  y = %d\n", x, y);
  return 0;
}
void swap(int a, int b) {
  int temp = a;
  a = b;
  b = temp;
}

x = 8  y = 44


# Swap

By default, C uses "call by value". Now let's use pointers:

```c
void swap(int *a, int *b) {
  int temp;
  temp = *a;
  *a = *b;
  *b = temp;
}
```

- will this work when we call `swap(&x,&y)`?

In [20]:
#include <stdio.h>
void swap(int *a, int *b);

int main(){
  int x = 8;
  int y = 44;
  printf("before swap: x = %d  y = %d\n", x, y);
  swap(&x,&y);
  printf(" after swap: x = %d  y = %d\n", x, y);
  return 0;
}
void swap(int *a, int *b) {
  int temp = *a;
  *a = *b;
  *b = temp;
}

input_line_33:3:11: error: function definition is not allowed here
int main(){
          ^
input_line_33:11:27: error: function definition is not allowed here
void swap(int *a, int *b) {
                          ^


Interpreter Error: 

# Pointers as Arguments

Arguments in calls of `scanf()` are pointers:

```c
int i; 
...
scanf("%d", &i);
```

- Without the `&`, `scanf()` would be supplied with the value of `i`

# Pointers as Arguments

- Although `scanf()`’s arguments must be pointers, it’s not always true that every argument needs the `&` operator:

```c
int i, *p;
...
p = &i;
scanf("%d", p);
```

- Using the `&` operator in the call would be **wrong**:

```c
scanf("%d", &p); /*** WRONG ***/
```

# Arrays in C

```c
int a[10];
```

- declares a fixed size array holding ten `int` values.

<center><img src="images/arry.png" alt="arry" width="900"/></center>

- `a[i]` is the `i`th element of the array
- `sizeof(a)` = 10 * `sizeof(int)` = 40 bytes
- The array is stored in memory as a single contiguous block of 40 bytes (10 ints) in size!


# Arrays in C

```c
int a[10];
```

<center><img src="images/arry.png" alt="arry" width="900"/></center>

Note that `sizeof(a) / sizeof(a[0])` = 10
- a common way of checking the number of elements in an array.

We can’t pass an array to a function, but we can pass a pointer to it.

- We will also need to pass the length of the array.

# Strings

In C, strings are represented as an array of characters.

```c
char a[] = "Hello worlds";
char b[13];
b = a; // Not allowed
char *c;
c = a; // Allowed
```
- This will set pointer `c` to the same address as `a`

- Assignment of an array to array is not supported in C

- Instead, we can use `strcpy(b,a);` 
    - first argument is the destination - need to `#include <string.h>`

# Strings

```c
char a[] = "Hello";
```
`strlen(a)` = 5

`sizeof(a)` = 6

- Strings are null terminated – important when allocating space to store them!

```c
printf("%s %c\n", a, a[0]);
``` 

- Output is: **Hello H**
    - Variable `a` represents the memory address of the start of the string.

#  Pointers, Strings and Arrays

<center><img src="images/array2.png" alt="arry" width="900"/></center>

```c
char a[] = "Hello";
char *a = "Hello";
```

- These are equivalent declarations, and create the identical bytes in memory, as shown above.

- Pointers and arrays are often used interchangeably!

- However, some behaviour might be different:

In [8]:
#include <stdio.h>
#include <string.h>

int main() {    
    char a[] = "Hello";
    char *b = "Hello";
    printf("size of string is %lu - size of pointer is %lu", sizeof(a), sizeof(b));
}

size of string is 6 - size of pointer is 8

- using `sizeof(a)` will give 6 in the first case (the size of the array) and 8 in the second case (the size of the pointer).

- In the second case, the string "Hello" is constant and cannot be modified.

# Pointer Arithmetic

```c
int a[10];
int *pa;
```
This pair of statements are equivalent using array or pointer notation:
```c
pa = &a[0];
pa = a;
```
<center><img src="images/point2first.png" alt="point to array" width="600"/></center>

# Pointer Arithmetic

```c
int a[10];
int *pa;
```
This pair of statements are also equivalent (+1 translates to +4 bytes (1 int)):
```c
pa = &a[1];
pa = (a+1);
```
<center><img src="images/point2second.png" alt="point to array" width="600"/></center>

# Strange but True

In C, if I write `a[x]`, this works by adding `x` to `a` to find the pointer

- Hence `a[x]` is the same as `*(a+x)`
    - This seems fine with `a[2]`
    - But what if we write `2[a]`?
        - It will compile and run - let's have a look!

In [9]:
#include <stdio.h>

int main() {
    char a[] = "Hello Worlds";
    char *b;
    printf("The fifth character of %s is %c\n", a, a[4]);
    printf("The fifth character of %s is %c\n", a, *(a+4));
    printf("The fifth character of %s is %c\n", a, 4[a]);
    b=a;
    b=b+4;
    printf("The fifth character of %s is %c\n", a, *b);

    return 0;
}

The fifth character of Hello Worlds is o
The fifth character of Hello Worlds is o
The fifth character of Hello Worlds is o
The fifth character of Hello Worlds is o


# Strange but True

How about `a[-4]`?

- Interpreted as `*(a + -4)`

**is the next snippet valid?**

In [10]:
#include <stdio.h>

int main() {
    
    int *p;
    int j = 20; // Stack order, Before? 
    int i = 5;
    p = &i;
//     int j = 20; // Stack order, After?
    
    printf("%d %d\n", p[0], p[1]);
    return 0;
}

5 20


# Peeking at Memory

- We can look at bits of memory.

- We can find adjacent local variables and parameters.

- Easy to make mistakes!

- We cannot always tell what the data is by looking at it.

In [11]:
#include <stdio.h>

int main(){
  int x,y;   
  x = 5;
  y = 9;
  

  int *z = &x;

  z--;
  printf("Before x : %d\n", *z);
  z+=2;
  printf("After  x : %d\n\n", *z);

  z = &x - 5;
  while(z - &x <10){
    printf("At %p : %d\n", z, *z);
    printf("At %p : %p\n\n", &z, z);
    z++;
  }
  return 0;
}

Before x : 9
After  x : 0

At 0x30d1c1c94 : 3
At 0x30d1c1c98 : 0x30d1c1c94

At 0x30d1c1c98 : 219946136
At 0x30d1c1c98 : 0x30d1c1c98

At 0x30d1c1c9c : 3
At 0x30d1c1c98 : 0x30d1c1c9c

At 0x30d1c1ca0 : 78110672
At 0x30d1c1c98 : 0x30d1c1ca0

At 0x30d1c1ca4 : 9
At 0x30d1c1c98 : 0x30d1c1ca4

At 0x30d1c1ca8 : 5
At 0x30d1c1c98 : 0x30d1c1ca8

At 0x30d1c1cac : 0
At 0x30d1c1c98 : 0x30d1c1cac

At 0x30d1c1cb0 : 219946240
At 0x30d1c1c98 : 0x30d1c1cb0

At 0x30d1c1cb4 : 3
At 0x30d1c1c98 : 0x30d1c1cb4

At 0x30d1c1cb8 : 74241458
At 0x30d1c1c98 : 0x30d1c1cb8

At 0x30d1c1cbc : 1
At 0x30d1c1c98 : 0x30d1c1cbc

At 0x30d1c1cc0 : 219946104
At 0x30d1c1c98 : 0x30d1c1cc0

At 0x30d1c1cc4 : 3
At 0x30d1c1c98 : 0x30d1c1cc4

At 0x30d1c1cc8 : 78249368
At 0x30d1c1c98 : 0x30d1c1cc8

At 0x30d1c1ccc : 2
At 0x30d1c1c98 : 0x30d1c1ccc



# Pointers to Pointers

We can also have pointers to pointers.

```c
int i, *p, **q;
p = &i;
q = &p;
```

<center><img src="images/pointer2pointer.png" alt="pointer to pointer" width="900"/></center>

- Now `i`, `*p` and `**q` all have value 10.

# Breaking Things

Using pointers, we can write any value in any place!

- This can upset the system.

- Segmentation fault occurs: hardware tells OS a memory access is not allowed.

In [12]:
#include <stdlib.h>
#include <stdio.h>

int main(){

  int x = 1;
  int *p = &x;
  int i = 1;

  while(-1){

    p++;
    
    // write a value
    *p = rand();
    // *p = 1234;
    
    printf("%d : so far so good. Content of %p is %d\n", i, p, *p);
    i++;
  }
  
  return 0;
}

1 : so far so good. Content of 0x3049d1cac is 16807
2 : so far so good. Content of 0x3049d1cb0 is 282475249
3 : so far so good. Content of 0x3049d1cb4 is 1622650073
4 : so far so good. Content of 0x3049d1cb8 is 984943658
5 : so far so good. Content of 0x3049d1cbc is 1144108930
6 : so far so good. Content of 0x3049d1cc0 is 470211272
7 : so far so good. Content of 0x3049d1cc4 is 101027544
8 : so far so good. Content of 0x3049d1cc8 is 1457850878
9 : so far so good. Content of 0x3049d1ccc is 1458777923
10 : so far so good. Content of 0x3049d1cd0 is 2007237709
11 : so far so good. Content of 0x3049d1cd4 is 823564440
12 : so far so good. Content of 0x3049d1cd8 is 1115438165
13 : so far so good. Content of 0x3049d1cdc is 1784484492
14 : so far so good. Content of 0x3049d1ce0 is 74243042
15 : so far so good. Content of 0x3049d1ce4 is 114807987
16 : so far so good. Content of 0x3049d1ce8 is 1137522503
17 : so far so good. Content of 0x3049d1cec is 1441282327
18 : so far so good. Content of 0x30

568 : so far so good. Content of 0x3049d2588 is 1132666825
569 : so far so good. Content of 0x3049d258c is 1436280767
570 : so far so good. Content of 0x3049d2590 is 1854658689
571 : so far so good. Content of 0x3049d2594 is 523449818
572 : so far so good. Content of 0x3049d2598 is 1528073014
573 : so far so good. Content of 0x3049d259c is 566211825
574 : so far so good. Content of 0x3049d25a0 is 822102918
575 : so far so good. Content of 0x3049d25a4 is 173958028
576 : so far so good. Content of 0x3049d25a8 is 987333029
577 : so far so good. Content of 0x3049d25ac is 500078034
578 : so far so good. Content of 0x3049d25b0 is 1708006727
579 : so far so good. Content of 0x3049d25b4 is 1055151240
580 : so far so good. Content of 0x3049d25b8 is 6933754
581 : so far so good. Content of 0x3049d25bc is 571486540
582 : so far so good. Content of 0x3049d25c0 is 1427408396
583 : so far so good. Content of 0x3049d25c4 is 913090935
584 : so far so good. Content of 0x3049d25c8 is 401203083
585 : so 

[C kernel] Executable exited with code -11

# Summary

- Pointers
- Pointer Assignment
- Pointers as Arguments
- Pointer Arithmetic
- Pointers to Pointers
- Dangers of Pointers




