PageHeap (Page Heap Verification) is a powerful, built-in Windows feature designed to catch silent and delayed memory corruption bugs, such as buffer overflows, buffer underflows, and use-after-free errors. It achieves this by modifying how the Windows Heap Manager allocates memory, allowing developers to isolate exactly when and where a process mismanages its pointers. How PageHeap Works
By default, the Windows Heap Manager groups allocations efficiently to save space. If an app writes past an allocated boundary, it might silently corrupt adjacent data, leading to random, hard-to-trace crashes later in execution. PageHeap isolates these failures using two modes:
Full PageHeap: This places an inaccessible, non-committed guard page (PAGE_NOACCESS) directly after your memory allocation. If your code tries to read or write even a single byte past the allocated boundary, it triggers an immediate Access Violation (AV) crash right on the offending instruction. You can also use the /backwards flag to place the guard page before the allocation to catch buffer underflows.
Standard PageHeap: Instead of expensive virtual memory layout changes, it writes a specific fill pattern directly after the memory block. When the block is eventually freed, the manager inspects this pattern. If the pattern was changed, an exception is raised. While it uses far less memory than Full mode, it delays error detection until the memory is freed. Step-by-Step: Enabling and Using PageHeap
PageHeap is managed via the Global Flags (gflags.exe) tool, which comes bundled with the Debugging Tools for Windows (part of the Windows SDK). Step 1: Enable PageHeap for your Application
Open a command prompt as Administrator and run the gflags tool targeting your specific executable file name: To enable Full PageHeap (Recommended for target debugging): gflags /p /enable YourApp.exe /full Use code with caution. To enable Standard PageHeap (Lower memory overhead): gflags /p /enable YourApp.exe Use code with caution. Step 2: Verify Your Configuration
Ensure Windows has successfully written the settings to the registry: gflags /p Use code with caution.
Leave a Reply