概述

我目前正在尝试创建一个动态扩展数组，我可以在c++和c中使用该数组，该数组包含在我称为Train的结构中，该结构必须使用称为initialize_train的函数进行初始化，并使用insert_cart向数组中添加更多内容。当这个函数被执行时，它使用函数realloc将数组扩展1，然后通过指针插入一个分配的数组。当我第二次使用insert_cart时，函数malloc出现了m incurring，错误是malloc（）：损坏的最大大小。我已经尝试找出为什么这发生了2天还没有为什么它发生只有它似乎发生第三次我使用malloc当代码从行0和行51保持不变。

代码

#include <stdlib.h>
#include <stdio.h>
#include <string.h>

const unsigned short CHAR_POINTER_SIZE = sizeof(char*);

typedef struct
{
    char **carts;
    unsigned short count;
} Train;

void initialize_train(Train *train)
{
    train->carts = (char **)malloc(CHAR_POINTER_SIZE);
    train->count = 0;
}

void insert_cart(Train *train, char *text)
{
    char* allocatedText;
    {
        unsigned int length = strlen(text) + 1 ;
        printf("%d: %s\n", length, text);
        allocatedText  = (char*)malloc(length);
        printf("bytes allocated\n");
    }

    train->count += CHAR_POINTER_SIZE;
    train->carts = (char **)realloc(train->carts, train->count);
    
    
    unsigned int index = 0;
    while (*text != '\n')
    {
        allocatedText[index] = *text;
        text++;
        index++;
    }

    train->carts[train->count++] = allocatedText;
}

int main(void)
{
    Train train;
    initialize_train(&train);
    
    
    insert_cart(&train, "cart_0");
    insert_cart(&train, "cart_1");
    insert_cart(&train, "cart_2");
    insert_cart(&train, "cart_3");
    insert_cart(&train, "cart_4");
    insert_cart(&train, "cart_5");
    free(&train);
}

输出

7: cart_0
bytes allocated
7: cart_1
malloc(): corrupted top size

我希望输出是

7: cart_0
bytes allocated
7: cart_1
bytes allocated
7: cart_2
bytes allocated
7: cart_3
bytes allocated
7: cart_4
bytes allocated
7: cart_5
bytes allocated