stronger secure mode when defining MI_SECURE=4: checks for double free, corrupted free list, and invalid pointer frees. Performance is impacted but not too much -- more perf testing is needed

test/main-override-static.c

@@ -2,12 +2,16 @@
 #include <stdio.h>
 #include <assert.h>
 #include <string.h>
+#include <stdint.h>
 
 #include <mimalloc.h>
 #include <mimalloc-override.h>  // redefines malloc etc.
 
+static void double_free();
+
 int main() {
   mi_version();
+  double_free();
   void* p1 = malloc(78);
   void* p2 = malloc(24);
   free(p1);
@@ -29,3 +33,19 @@ int main() {
   mi_stats_print(NULL);
   return 0;
 }
+
+static void double_free() {
+  void* p[256];
+  uintptr_t buf[256];
+
+  p[0] = mi_malloc(622616);
+  p[1] = mi_malloc(655362);
+  p[2] = mi_malloc(786432);
+  mi_free(p[2]);
+  // [VULN] Double free
+  mi_free(p[2]);
+  p[3] = mi_malloc(786456);
+  // [BUG] Found overlap
+  // p[3]=0x429b2ea2000 (size=917504), p[1]=0x429b2e42000 (size=786432)
+  fprintf(stderr, "p3: %p-%p, p1: %p-%p, p2: %p\n", p[3], (uint8_t*)(p[3]) + 786456, p[1], (uint8_t*)(p[1]) + 655362, p[2]);
+}

test/main-override.cpp

@@ -2,10 +2,13 @@
 #include <stdio.h>
 #include <assert.h>
 #include <string.h>
+#include <stdint.h>
 
 #include <mimalloc.h>
 #include <new>
 
+static void double_free();
+
 static void* p = malloc(8);
 
 void free_p() {
@@ -24,6 +27,7 @@ public:
 
 int main() {
   //mi_stats_reset();  // ignore earlier allocations
+  double_free();
   atexit(free_p);
   void* p1 = malloc(78);
   void* p2 = mi_malloc_aligned(16,24);
@@ -66,3 +70,5 @@ public:
 };
 
 static Static s = Static();
+
+