MSVC/x86 exception handling: rewrite avoiding VC runtime internals

[rainers]

• setup exception handler for exceptions during cleanup to avoid C++ calling std::terminate
• remove vcruntime hacks
• when converting exception to error, do not rethrow if the catch handles errors, too
• add support for the "safeseh" attribute

[kinke]

securtity => security

[JohanEngelen]

Could you also make an IR testcase for this? ;-)
See https://github.com/JohanEngelen/ldc/blob/8d078f3bd8939dc6a6c3d5209bf63e2f08d81e24/tests/ir/attributes.d
or
https://github.com/ldc-developers/ldc/pull/1244/files

[rainers]

Could you also make an IR testcase for this? ;-)

I'll try though I've yet to see any of the IR tests to pass on my system.
Do you think adding an attribute for safeseh is the right direction? It could also be buried in the target-specific attributes, as it is very specific to Win32.

[rainers]

securtity => security
void * => void* etc. pls, for consistency, also for function below

Done.

[JohanEngelen]

I'll try though I've yet to see any of the IR tests to pass on my system.
Really? Not to hijack this thread: can you open a new issue for it with some details of error messages?

[rainers]

Really? Not to hijack this thread: can you open a new issue for it with some details of error messages?

Sorry for being slow with this, I've just reported it here: ldc-developers/ldc#1265

[rainers]

Finally implemented swapping exception information for fibers and figured why exceptions where never caught in fibers.
With this change, core.thread also passes its unittests in debug and release builds.

[rainers]

I've added support for catching D exceptions in C++, see ldc-developers/dmd-testsuite#15 for a demonstrating test case.

[dnadlinger]

Thanks for the explanation and the change, it's a lot clearer to me now. (I thought you were referring to the beginning of the record before instead of to the past-the-end address.)

Shouldn't the change also go into the upstream implementation, though? (We can just cherry-pick the fix from master afterwards.)

[rainers]

Shouldn't the change also go into the upstream implementation, though? (We can just cherry-pick the fix from master afterwards.)

I don't think dmd will ever support safeseh. It shouldn't do harm to add it, though.

[rainers]

dlang#1489

[rainers]

Updated to allow any exception type to be mapped to C++.
I also applied some of the ideas from rainers#4

[kinke]

Just nit-picking, but how about:

static void swapField(T)(ref T a, ref T b) { T o = b; b = a; a = o; }
swapField(_length, other._length);
swapField(_p,      other._p);
swapField(_cap,    other._cap);

[rainers]

Done. I think there should be a swap function somewhere in druntime, it is implemented again and again...

[kinke]

I've cherry-picked your upstream commit regarding core.thread, so another rebase is needed. While at it, could you please squash the last 4 commits to a single one and then factor out the C++ stuff (2nd mangling, _d_toString()) in a separate commit again?

[rainers]

Rebased and squashed some commits.

There's still one open issue that doesn't work with this design: cleanup funclets cannot have exception handling themselves, but that's valid in D, e.g. by using try/catch in scope(exit). The LLVM devs don't plan to implement this any time soon.

That's why I want to try outlining cleanup code in the front-end. This might also help the x64 implementation, as it is unlikely that you can setup exception information on x64 as done here (emplace an exception frame in the calling functions stack space).

[kinke]

Rebased and squashed some commits.

👍

That's why I want to try outlining cleanup code in the front-end. This might also help the x64 implementation, as it is unlikely that you can setup exception information on x64 as done here (emplace an exception frame in the calling functions stack space).

And I thought it'd be finished. ;) All the best for your next adventure then, you rock! :)

[rainers]

Not sure it'll work out this time. I expect some troubles regarding cleanups that are already inside nested functions.
So maybe it's better to get this in as an (almost) working solution for x86...

[kinke]

It is unlikely that you can setup exception information on x64 as done here

Do you think the current method (setting up the std::terminate hook) is going to be the (first) x64 solution? That's the reason I haven't merged this yet... ;)

[rainers]

Do you think the current method (setting up the std::terminate hook) is going to be the (first) x64 solution? That's the reason I haven't merged this yet... ;)

I hope I can try the frontend-outling this weekend. If that doesn't work out, merging the two solutions might be the best solution ATM for x64 support.

[rainers]

I hope I can try the frontend-outling this weekend.

FYI: I actually managed to rewrite cleanup blocks, e.g. finally { code } to finally { _d_cleanup(() { code }); }, with _d_cleanup just calling the delegate, but replacing the function for unwind cleanups with another that catches exceptions.

Unfortunately, it causes some of the expected compile errors when having to access several contexts. In addition, errors show the additional indirection in instantiation traces (_d_cleanup must be a template to inherit function attributes). So it doesn't seem a good solution ATM.

I'm currently torn between this and the previous version using the std::terminate hook. Both are rather hacky. I'll investigate how to make the latter safer to avoid skipping a std::terminate call that's not initiated by an exception during cleanup (it would probably also crash).

[rainers]

Closing this in favor of #60.