# Systems Programming

### Lecture 7: Pointers

### Anne Reinarz

anne.k.reinarz@durham.ac.uk


# Starting this week

# Pointers

# What is a Variable?

- A logical name for an allocated area of memory assigned to store a value of a certain type

`int i = 10;`

<center><img src="images/addressi.png" alt="variable" width="700"/></center>



# Pointer Variable

<center><img src="images/addressrow.png" alt="variable" width="500"/></center>

`int i = 10;`

- value of `i` is 10
- The memory address of `i` is `&i` and has a value of 4

# Pointer Variable

<center><img src="images/addressrow.png" alt="variable" width="500"/></center>

- `int i = 10;`

    - A pointer variable stores a memory address:
        ```
        int *p;
        p = &i;
        ```
    - now the pointer variable `p` stores the memory address of the integer variable `i`

# Pointers

<center><img src="images/pointsto.png" alt="indirection" width="400"/></center>

```
int i = 10;   // simple variable
int *p = &i;  // pointer variable
```
- You can read the address operator `&` as "**_address of_**"
    

`printf("%d %d\n", i, *p ) ;`

* output: "`10 10`"

    - You can read the indirection operator `*` as "**_value at_**"

# Basic Pointer Operations

```
int i = 5; // declare an int variable

int *p;    // declare a variable pointer to an int

p = &i;    // & "address of"
```
- Use indirection operator `*` to access and modify the value:

```
*p = 7; // assign value of 7 to i

*p = *p + 1; // add 1 to value of i
```

# The Indirection Operator: what not to do

Applying the indirection operator to an uninitialized pointer variable causes undefined behaviour:

```
int *p;

printf("%d", *p);   /*** WRONG ***/
```

Assigning a value to `*p` is particularly dangerous:

```
int *p;

*p = 1;            /*** DANGER ***/
```

# Pointer Assignment

C allows the use of the assignment operator to copy pointers of the same type:

- Assume that the following declaration is in effect:

```
int i, j, *p, *q;
```

- Example of pointer assignment:

```
p = &i;
```



* There are other ways to assign pointers

# Pointer Assignment


```
int i, j, *p, *q;
p = &i;

```

- Another example of pointer assignment:

```
q = p;
```

- `q` now points to the same place as `p`:

<center><img src="images/twopointers.png" alt="copying pointers" width="400"/></center>




# Pointer Assignment

`p` and `q` both point to `i`, so we can change `i` by assigning a value to `*p` **or** `*q`:

```
*p = 1;
```
<center><img src="images/twopointers1.png" alt="copying pointers" width="350"/></center>

- Any number of pointer variables may point to the same object

# Pointer Assignment

`p` and `q` both point to `i`, so we can change `i` by assigning a value to `*p` **or** `*q`:

```
*q = 2;
```
<center><img src="images/twopointers2.png" alt="copying pointers" width="330"/></center>

- Any number of pointer variables may point to the same object

# Pointers as Arguments

- We can trying writing a `swap()` function that could modify its arguments, but it won’t really work.

- By passing a pointer to a variable instead of the value of the variable, `swap()` can be fixed.

# Swap

We want to write a simple function in C to swap the values of two integer variables, `x` and `y`:

```
void swap(int a, int b) {
    int temp;
    temp = a;
    a = b;
    b = temp;
}
```

- will this work when we call `swap(x,y)`?

- spoiler alert: **NO!**

In [None]:
#include <stdio.h>
void swap(int a, int b);

int main(){
  int x = 8;
  int y = 44;
  swap(x,y);
  printf("x = %d  y = %d\n", x, y);
  return 0;
}

void swap(int a, int b) {
  int temp = a;
  a = b;
  b = temp;
}

# Swap

By default, C uses "call by value". Now let's use pointers:

```
void swap(int *a, int *b) {
  int temp;
  temp = *a;
  *a = *b;
  *b = temp;
}
```

- will this work when we call `swap(&x,&y)`?

In [None]:
#include <stdio.h>
void swap(int *a, int *b);

int main(){
  int x = 8;
  int y = 44;
  swap(&x,&y);
  printf("x = %d  y = %d\n", x, y);
  return 0;
}

void swap(int *a, int *b) {
  int temp = *a;
  *a = *b;
  *b = temp;
}

# Pointers as Arguments

Arguments in calls of `scanf()` are pointers:

```
int i; 
...
scanf("%d", &i);
```

- Without the `&`, `scanf()` would be supplied with the value of `i`

# Pointers as Arguments

- Although `scanf()`’s arguments must be pointers, it’s not always true that every argument needs the `&` operator:

```
int i, *p;
...
p = &i;
scanf("%d", p);
```

- Using the & operator in the call would be wrong:

```
scanf("%d", &p); /*** WRONG ***/
```

# Arrays in C

`int a[10];`

- declares a fixed size array holding ten int values

<center><img src="images/arry.png" alt="arry" width="900"/></center>

- `a[i]` is the `i`th element of the array
- `sizeof(a)` = 10 * `sizeof(int)` = 40 bytes
- The array is stored in memory as a single contiguous block of 40 bytes (10 ints) in size


# Arrays in C

`int a[10];`

<center><img src="images/arry.png" alt="arry" width="900"/></center>

Note that `sizeof(a) / sizeof(a[0])` = 10
- a common way of checking the number of elements in an array.

We can’t pass an array to a function, but we can pass a pointer to it.

- We will also need to pass the length of the array.

# Strings

In C, strings are represented as an array of characters.

```c
char a[] = "Hello worlds";
char b[13];
b = a; // Not allowed
char *c;
c = a;
```
- This will set pointer `c` to the same address as `a`

- Assignment of an array to array is not supported in C

- Instead, we can use `strcpy(b,a);` 
    - first argument is the destination - need to `#include <string.h>`

# Strings

```c
char a[] = "Hello";
```
`strlen(a)` = 5

`sizeof(a)` = 6

- Strings are null terminated – important when allocating space to store them

```
printf("%s %c\n", a, a[0]);
``` 

- Output is: **Hello H**
    - Variable `a` represents the memory address of the start of the string.

#  Pointers, Strings and Arrays

<center><img src="images/array2.png" alt="arry" width="900"/></center>

```
char a[] = "Hello";
char *a = "Hello";
```

- These are equivalent declarations, and create the identical bytes in memory, as shown above.

- Pointers and arrays are often used interchangeably

- However, some behaviour might be different:

In [None]:
#include <stdio.h>
#include <string.h>

int main() {    
    char a[] = "Hello";
    char *b = "Hello";
    printf("size of string is %lu - size of pointer is %lu", sizeof(a), sizeof(b));
}

- using `sizeof(a)` will give 6 in the first case (the size of the array) and 8 in the second case (the size of the pointer).

- In the second case, the string "Hello" is constant and cannot be modified.

# Pointer Arithmetic

```
int a[10];
int *pa;
```
This pair of statements are equivalent using array or pointer notation:
```
pa = &a[0];
pa = a;
```
<center><img src="images/point2first.png" alt="point to array" width="600"/></center>

# Pointer Arithmetic

```
int a[10];
int *pa;
```
This pair of statements are also equivalent (+1 translates to +4 bytes (1 int)):
```
pa = &a[1];
pa = (a+1);
```
<center><img src="images/point2second.png" alt="point to array" width="600"/></center>

# Strange but True

In C, if I write `a[x]`, this works by adding `x` to `a` to find the pointer

- Hence `a[x]` is the same as `*(a+x)`
    - This seems fine with `a[2]`
    - But what if we write `2[a]`?
        - It will compile and run - let's have a look!

In [None]:
#include <stdio.h>

int main() {
    char a[] = "Hello Worlds";
    char *b;
    printf("The fifth character of %s is %c\n", a, a[4]);
    printf("The fifth character of %s is %c\n", a, *(a+4));
    printf("The fifth character of %s is %c\n", a, 4[a]);
    b=a;
    b=b+4;
    printf("The fifth character of %s is %c\n", a, *b);
    return 0;
}

# Strange but True

How about `a[-4]`?

- Interpreted as `*(a + -4)`

**is the next snippet valid?**

In [None]:
#include <stdio.h>

int main() {
    int *p;
    int i = 5;
    int j = 20;
    p = &i;
    printf("%d %d\n", p[0], p[1]);
    return 0;
}

# Peeking at Memory

- We can look at bits of memory

- We can find adjacent local variables and parameters

- Easy to make mistakes

-  We cannot always tell what the data is by looking at it

In [None]:
#include <stdio.h>

int main(){
  int x,y;
  x = 5;
  y = 9;

  int *z = &x;

  z--;
  printf("Before x : %d\n", *z);
  z+=2;
  printf("After  x : %d\n\n", *z);

  z = &x - 5;
  while(z - &x <10){
    printf("At %p : %d\n", z, *z);
    printf("At %p : %p\n\n", &z, z);
    z++;
  }
  return 0;
}

# Pointers to Pointers

We can also have pointers to pointers.

```
int i, *p, **q;
p = &i;
q = &p;
```

<center><img src="images/pointer2pointer.png" alt="pointer to pointer" width="900"/></center>

- Now `i`, `*p` and `**q` all have value 10.

# Breaking Things

Using pointers, we can write any value in any place!

- This can upset the system

- Segmentation fault occurs: hardware tells OS a memory access is not allowed

- Sometimes it goes on for a shockingly long time

In [None]:
#include <stdlib.h>
#include <stdio.h>

int main(){

  int x = 1;
  int *p = &x;
  int i = 1;

  while(-1){

    p++;
    
    // write a value
    *p = rand();
    // *p = 1234;
    
    printf("%d : so far so good. Content of %p is %d\n", i, p, *p);
    i++;
  }
  
  return 0;
}

# Summary

- Pointers
- Pointer Assignment
- Pointers as Arguments
- Pointer Arithmetic
- Pointers to Pointers
- Dangers of Pointers




