[x86/Linux] Initial patch for EH funclet

[wateret]

Generate a simple EH funclet frame and
Support SP-based stack unwinding for funclets.

[wateret]

This patch is originally from https://github.com/parjong/coreclr/commit/a992b93ec85cf70c54558ff63a3b11ee0809b4db. Before doing something like #9489, I thought we need sp-based stack unwinding and a basic funclet frame. At least on x86/linux this makes more unit test success with no regression.

cc: @parjong @jkotas

[janvorli]

cc: @dotnet/jit-contrib

[janvorli]

It would be easier to read if you used a positive condition (listing catch types for which the code is generated). I guess it would be just BBCT_FILTER?

[wateret]

Wouldn't it be both BBCT_FILTER and BBCT_FILTER_HANDLER?

[janvorli]

The BBCT_FILTER_HANDLER represents the handler that's called when the filter decides to handle the exception. So I would think that the BBCT_FILTER_HANDLER should be handled like the BBCT_CATCH.

[wateret]

The only difference between if and else block is the presence of exception object. So I think we need it for all types of funclets other than FINALLY and FAULT.

[janvorli]

Why would the BBCT_FILTER_HANDLER be different from the BBCT_FAULT? It looks like it is essentially the same thing

[janvorli]

What if it is BBCT_FINALLY? Is it correct that we don't generate anything here?

[wateret]

This else if block was for BBCT_FINALLY as well but it somehow crashes. It cannot run any managed binaries and it seems like it crashes from mscorlib(AppDomain or something). I didn't figure out why yet.

[parjong]

@janvorli @wateret It turns out that we need to revise genCallFinally accordingly to support BBCT_FINALLY. The current implementation generates the following call-finally sequence:

       90           nop
       90           nop
       8BCC         mov      ecx, esp
       E80B000000   call     [Finally]
       90           nop

The current implementation passes Initial-SP via ecx, but EE passes Caller-SP via stack. This difference causes segmentation fault.

[janvorli]

Could you please add comment on what the constant "8" means?

[BruceForstall]

I'd also like to see a comment that describes what you expect the stack frame to look like, since you obviously have certain expectations about the stack layout.

---

In reply to: 101234990 [](ancestors = 101234990)

[janvorli]

Please use full URL of the github issue (https://github.com/dotnet/coreclr/issues/9439)

[BruceForstall]

The code needs to stand on its own without reference to GitHub. So please include all and any comments required to document this requirement. A temporary reference is ok, but I would expect it to be removed when the issue is fixed, and not remain longer than, say, one month.

---

In reply to: 101235235 [](ancestors = 101235235)

[janvorli]

@wateret It would be great to add comment to the CodeGen::genFuncletProlog describing the details of what arguments are passed to each filter type, what does the stack frame look like etc. Similar to what we have for this function for all other architectures.

[stephentoub]

@dotnet-bot test this please (Jenkins was down)

[BruceForstall]

This "mov" is the only difference between the funclet prolog types, right? This should be determined by if handlerGetsXcptnObj(block->bbCatchTyp).

[parjong]

@BruceForstall Thanks you for comment! It works well.
@wateret I updated the draft here, and it works well 👍

[wateret]

@janvorli @BruceForstall
I added a commit that can handle BBCT_FINALLY. I had to fix genCallFinally as @parjong pointed out. Also added more comments as you commented.

[BruceForstall]

Couldn't you eliminate the first line and make the second:

getEmitter()->emitIns_R_AR(INS_lea, EA_PTRSIZE, REG_FPBASE, REG_ARG_0, -8);

?

[BruceForstall]

Please add a comment here about the -8. I assume this is because you assume the main function prolog is:

pushd ebp
mov ebp,esp

Thus, CallerSP is exactly 8 bytes above, due to the pushed return address and pushed ebp.

Note that this is the reason we have the funclet frame layout diagram comments. Also, these constants are encapsulated in other architectures with the CodeGen::genCaptureFuncletPrologEpilogInfo() function and descriptive names.

[BruceForstall]

This needs to use -genCallerSPtoFPdelta(), not "8"

[BruceForstall]

What if we are trying to unwind in a funclet and we have pushed a lot of arguments in preparation for making a call, but haven't yet made the call? Then the curESP will not be what you expect.

[parjong]

@BruceForstall Thank you for pointing it out! The current problem is that we do not have a frame pointer for this funclet frame (ebp should be restored as that of main function as I understand).

Could you let me know if there is any way to reserve any register (except ebp)? It would resolve issues from incorrect ESP if we could reserve any registers for a frame pointer for funclet frames.

[BruceForstall]

All the other funclet-based architectures also have fixed sized frames -- they pre-allocate the outgoing argument space for calls, and localloc/_alloca is not allowed in EH handlers / funclets by the CLI spec. So this is new territory.

One possibility is to set up ebp as a normal frame pointer in funclets, and then reserve and use some other register as the base pointer for accessing locals within funclet code generation. That would be a pretty pervasive change.

Another possibility would be to change to fixed frames. That doesn't seem great.

Or, as you suggest, you could reserve another (callee-saved) register for storing the funclet frame pointer. But that then becomes part of the ABI contract, as the VM would need to know which register that is.

There are so few registers already on x86 that reserving (another) one in funclets is going to hurt code quality.

I can't think of any obvious good solution right now.

[parjong]

@BruceForstall How about ecx? Is it supposed to be available in funclet?

[jkotas]

What if we are trying to unwind in a funclet and we have pushed a lot of arguments in preparation for making a call,

The current Windows x86 can handle this situation fine, with just ESP and EBP. What is different about the Linux x86 funclets that it does not work? I do not think we should burn a register for this.

[jkotas]

If not, it seems that GC would get stuck for the following case (with the above unwind routine):

push STK_ARG_2
<< GC >>
push STK_ARG _1
call FUNC

The x86 gc and unwind info keeps track of how much was pushed onto stack and whether it needs protecting. E.g. look for GetPushedArgSize in eetwain.cpp - it returns how much is pushed on the stack at given offset in the method.

[BruceForstall]

The current Windows x86 can handle this situation fine, with just ESP and EBP. What is different about the Linux x86 funclets that it does not work?

GetPushedArgSize() is currently only used in ESP-based frames. With funclets enabled for Linux x86, we're generating EBP-based frames. For normal EBP-based frame unwind, we don't need to worry about pushed arguments because we just use the EBP to pop the frame. However, with funclets, we can't do that because the EBP is pointing to the parent function (the funclet sets this up in the prolog to enable stack local variable access via EBP). Maybe it's possible to still use GetPushedArgSize() in an EBP-based frame in the funclet case to unwind ESP, and then find the actual EBP that was pushed/saved in the funclet prolog (as opposed to the parent frame EBP that was established)?

[BruceForstall]

BTW, I don't think we should mark regions where we push call arguments within funclets as non-interruptible, which might be what @janvorli was suggesting.

[janvorli]

@BruceForstall no, I was not trying to suggest that. I was just explaining how things work.

[janvorli]

We are trying to solve various issues given the current state of how we decided to do certain things on the fly. Given the knowledge of issues we have accumulated recently, I believe we should step back and reconsider the possibilities we have from higher level point of view. Some of the issues are due to the way we have decided to use for stack aligning. Some might be solved if we changed calling convention of jitted code so that the callee is no longer responsible for reclaiming the stack arguments space.
I am afraid that otherwise we would get lost in solving local issues that we could side step using a different global approach.

[BruceForstall]

Add a comment that this is to revert the alignment adjustment.

[wateret]

I have updated the change. I'm aware that we still have some issue but IMHO we will need something like this anyway. So what about merging this, if there is no other issue except for the one that we discussed? Seems like this patch makes most EH test cases(except FILTERs) pass .

[parjong]

Could you please change this as GetRegRestoreBase?

[parjong]

Similarly, need to change this as GetFrameRestoreBase.

[parjong]

@jkotas @janvorli @BruceForstall Could you please take a look this again? As I already posted in #9265, this PR is a necessary step to resolve various issues in x86/Linux. I totally agree with @janvorli's opinion that we need to revisit the overall structure. However, the infrastructure that this PR attempts to introduce will be required even when we take another approach (such as global calling convention change).

[jkotas]

Funclets on all other architectures get the argument via regular argument registers. Would it make more sense to pass the exception object in edx instead?

[wateret]

Last time I did so and I had to also put mov eax, edx in funclet prolog because of

#define REG_EXCEPTION_OBJECT     REG_EAX

in jit/target.h.
So I thought if we pass the Exception Object directly to EAX then we could save an instruction.

I also thought it would be better if we could set REG_EXCEPTION_OBJECT to REG_EDX.

[jkotas]

The first thing the funclet code does is to move ECX to EBP. Can the assembly helper set EBP just like all other argument registers instead?

[wateret]

I tried that last time. However it seems like if EBP is restored in the assembly helper, native unwinder cannot unwind the helper correctly.

[janvorli]

I believe that if you change the assembly helper to use ESP frame instead of EBP one, you would not have this problem. It seems all you'd need to do is to remove the PROLOG_BEG / PROLOG_END and EPILOG_BEG / EPILOG_END (or replace them with dummy ESP_PROLOG_BEG, ... to make it kind of symmetric with EBP based frames) and add PROLOG_PUSH ebp at the beginning and EPILOG_POP ebp at the end. Then changing the EBP in the middle of the function won't cause trouble, since the unwinder would use ESP for unwinding.

[wateret]

Thanks, I'll try that.

[wateret]

@janvorli I made a draft (I did not update the PR yet) for your suggestion but it does not work with nested exception handling like:

main {
  try {
    try {
      Console.WriteLine("try, first throw");
      throw new Exception("a");
    } catch (Exception) {
      Console.WriteLine("first catch, second throw");
      throw new Exception("b");
    }
  } catch (Exception) {
      Console.WriteLine("second catch");
    return 2;
  }
  return 0;
}

And the error message is:

try, first throw
first catch, second throw
terminate called after throwing an instance of 'PAL_SEHException'

It crashes when PAL_ThrowExceptionFromContext() throws C++ exception. IMHO it went wrong when unwinding the helper(CallEHFunclet) frame which is the caller of inner catch funclet, since there is no funclet(or its helper) when it handled first one.

Here is my draft wateret@632f2a6 . It would be nice if you have a look. Thanks.

[wateret]

I set breakpoint on push eax in ThrowExceptionFromContextInternal. At this point the restored EBP and ESP seems correct.

(gdb) i r esp ebp
esp            0xffffb924       0xffffb924
ebp            0xffffcc38       0xffffcc38

[janvorli]

@wateret thank you. I think the esp at the push eax is actually not correct and it should be larger by 4. But we cannot do that, since we would overwrite something on the stack of the CallEHFunclet (or any other native method whose context is passed to ThrowExceptionFromContextInternal.
Can you please change the ThrowExceptionFromContextInternal calling convention to __fastcall and pass the PAL_SEHException * in ecx? I believe that should fix the issue.

[wateret]

I simply tested by manually setting ESP larger by 4 on GDB and it works! and I made a patch for that. wateret@b5c4f45 is that what you meant? It passes the test case I gave.

BTW I was looking at ThrowExceptionFromContextInternal, is there some meaning for pushing Context_Eip before calling into ThrowExceptionHelper? I see that some kind of return address should be pushed since calling ThrowExceptionHelper with jmp instruction. However it looks like doing nothing since it will never return.

[janvorli]

@wateret yes, the patch is exactly what I've meant. It is possible that it will fix more issues in the coreclr tests, since the pattern in the test is quite common.
As for pushing the Context_Eip on the stack - that enables the stack unwinder to unwind from ThrowExceptionHelper to CallEHFunclet. It creates a stack frame looking as if the ThrowExceptionHelper was called by the CallEHFunclet, which allows the exception to be propagated from ThrowExceptionHelper to CallEHFunclet and further.

[wateret]

@janvorli Thank you for all of your response. I'll update the PR after polishing the patch and run unittests

[janvorli]

@wateret I don't understand the comment, could you please clarify it for me?

[wateret]

@janvorli The comment and the next line is copied from AMD64 version of the function. What I thought was: we need that if we modify EBP in funclet.

[janvorli]

I believe that if you change the assembly helper to use ESP frame instead of EBP one, you would not have this problem. It seems all you'd need to do is to remove the PROLOG_BEG / PROLOG_END and EPILOG_BEG / EPILOG_END (or replace them with dummy ESP_PROLOG_BEG, ... to make it kind of symmetric with EBP based frames) and add PROLOG_PUSH ebp at the beginning and EPILOG_POP ebp at the end. Then changing the EBP in the middle of the function won't cause trouble, since the unwinder would use ESP for unwinding.

[wateret]

@janvorli @jkotas @BruceForstall
I have updated the PR with your comments. Could you take a look and merge this if there is no critical issue? Actually we have some works that are depend on this PR so it'd be great if we can have this merged soon.

[BruceForstall]

LGTM

[janvorli]

A nit - these instructions don't belong here since they are not necessary for ESP based frames in general. You have it just for your convenience in the CallEHFunclet, it would be possible refer to the arguments through ESP without setting the EBP.
So I would prefer leaving ESP_PROLOG_BEG and ESP_EPILOG_END empty and adding PROLOG_PUSH ebp mov ebp, esp / EPILOG_POP ebp to the actual asm helpers.

[wateret]

You're right, thanks.

[janvorli]

A nit - I would rename this to GetFirstNonVolatileRegisterAddress. It seems it better describes the purpose and the parameter to the CallEHFunclet that we pass the result of this function to is called pFirstNonVolReg, so it would match that too.

[wateret]

That sounds better to me too.

[janvorli]

LGTM, thank you!

[jkotas]

LGTM modulo comments.

[jkotas]

This change should not be needed anymore.

[parjong]

We may need the following change since no argument is required for finally (as I understand):

#ifndef UNIX_X86_ABI
inst_RV_RV(INS_mov, REG_ARG_0, REG_SPBASE, TYP_I_IMPL);
#endif // !UNIX_X86_ABI

[jkotas]

Agree. (The extra mov ecx, rsp would be harmless - but it is better to not have it.)

[wateret]

I agree with @parjong

[jkotas]

You should not need to push FP for funclets because the funclet does not modify it anymore

[BruceForstall]

@jkotas In the changes to UnwindEbpDoubleAlignFrame(), there is a call to SetEbpLocation() that appears to point to this saved EBP. Is that not required? (Or maybe I'm reading it wrong?)

[jkotas]

This should not be needed. When we come to unwind the funclet, we have to have valid EBP and EBP location from wherever we came from. We should not need to create a duplicate copy here.

[parjong]

@BruceForstall It seems that UnwindEbpDoubleAlignFrame should be revised along with genFuncletProlog.

[janvorli]

@dotnet-bot test OSX x64 Checked Build and Test please

[janvorli]

@dotnet-bot test Ubuntu x64 Checked Build and Test please

[jkotas]

Does the padding need to be different now?

[wateret]

Yes, It should be 12. Sorry about that.

[jkotas]

This should be deleted because of EBP is not stored anymore

[wateret]

I see that we need to remove that. Would it be OK to not doing pContext->SetEbpLocation() for unwinder?

cc: @parjong

[parjong]

This line and baseSP += sizeof(TADDR) at line 3822 should be removed as ebp is not saved any more.

[parjong]

The padding size should be 12 instead of 8.

[wateret]

@jkotas Please take a look. I ran unit tests and the results are fine(same as the previous version that restors EBP in funclet).

[jkotas]

LGTM. Thanks!

[BruceForstall]

@wateret Can you squash the commits?
@jkotas @janvorli I assume we're ready to merge this

[jkotas]

Merged.

@BruceForstall The commits can be squashed as part of merge in the GitHub UI. No need to ask folks to do it.

[janvorli]

@wateret I have just found that there is an alignment issue in the CallEHFunclet. You push four registers and there is return address on the stack, so the stack is not aligned to 16 bytes before calling the funclet. I have hit this issue when testing a simple null reference test app.
Can you please fix it? You will need both subtract 12 from the esp and use .cfi_adjust_cfa_offset 12 to ensure the unwinding works properly. I would recommend creating a macro named ESP_PROLOG_STACK_ALLOC for this purpose.

[wateret]

@janvorli Thank you for finding that. I'll fix that next Monday.