This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
lldb/test/Shell/Process/Windows/
-
test/
-
Shell/
-
Process/
-
Windows/
2/6
wndproc_exception.cpp

Differential D128410

[lldb] Add a testcase for nested exceptions on Windows
Needs ReviewPublic

Authored by mstorsjo on Jun 23 2022, 1:48 AM.

Download Raw Diff

Details

Reviewers

labath
alvinhochun
DavidSpickett

Summary

This adds a testcase for
4d123783957e547009e55346bf3a8ae43a88fa14 / D128201. Before that commit,
lldb would crash here, while now lldb manages to stop after the
exception.

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

mstorsjo created this revision.Jun 23 2022, 1:48 AM

Herald added a project: Restricted Project. · View Herald TranscriptJun 23 2022, 1:48 AM

mstorsjo requested review of this revision.Jun 23 2022, 1:48 AM

Herald added a project: Restricted Project. · View Herald TranscriptJun 23 2022, 1:48 AM

For this testcase to work, it needs to be able to open a window - so it can't run entirely in headless mode. But I guess that a bunch of other tests in LLDB also already do that, since running the LLDB tests on Windows pops up a dozen of windows temporarily.

Herald added a subscriber: JDevlieghere. · View Herald TranscriptJun 23 2022, 1:51 AM

Harbormaster completed remote builds in B171522: Diff 439278.Jun 23 2022, 1:52 AM

In D128410#3604066, @mstorsjo wrote:

For this testcase to work, it needs to be able to open a window - so it can't run entirely in headless mode. But I guess that a bunch of other tests in LLDB also already do that, since running the LLDB tests on Windows pops up a dozen of windows temporarily.

I think those just come from the tests (or more like test runners) which forget to suppress a console window from opening (see LLDB_LAUNCH_INFERIORS_WITHOUT_CONSOLE) -- this is probably the first "gui" application. This isn't necessarily a showstopper, but I am surprised that it is necessary. I'm hardly a windows expert, but I would expect that it should be possible to generate an exception (even nested exception, which to me sounds like the equivalent of getting a signal inside a signal handler) in a "regular" text-mode application. Are you sure that is not possible?

lldb/test/Shell/Process/Windows/wndproc_exception.cpp
7	Is there something reasonable we could assert here? The process exit status for instance?

In D128410#3604075, @labath wrote:

In D128410#3604066, @mstorsjo wrote:

For this testcase to work, it needs to be able to open a window - so it can't run entirely in headless mode. But I guess that a bunch of other tests in LLDB also already do that, since running the LLDB tests on Windows pops up a dozen of windows temporarily.

I think those just come from the tests (or more like test runners) which forget to suppress a console window from opening (see LLDB_LAUNCH_INFERIORS_WITHOUT_CONSOLE) -- this is probably the first "gui" application. This isn't necessarily a showstopper, but I am surprised that it is necessary. I'm hardly a windows expert, but I would expect that it should be possible to generate an exception (even nested exception, which to me sounds like the equivalent of getting a signal inside a signal handler) in a "regular" text-mode application. Are you sure that is not possible?

I didn't say that this isn't necessarily possible - this is the reduced testcase that @alvinhochun provided in https://github.com/mstorsjo/llvm-mingw/issues/292#issuecomment-1160239522 (that I shrunk down further a bit).

I'm not all that familiar with exactly what happens in these APIs here that makes this a nested exception and what other non-GUI APIs would produce the same effect. Maybe any API where Windows system code calls back to a user provided callback? Does @stella.stamenova know?

lldb/test/Shell/Process/Windows/wndproc_exception.cpp
7	This in itself requires the `%lldb` command to succeed - the exit status for each `RUN` line needs to be successful (unless a failure is expected and it can be inverted with the `not` command). Or did you mean checking the process exit code of the child process (that intentionally does crash)? When this test case is run, it prints the following to the terminal: (lldb) run Process 3168 stopped * thread #1, stop reason = Exception 0xc000041d encountered at address 0x7ff68e6f1227 frame #0: 0x00007ff68e6f1227 wndproc_exception.cpp.tmp.exe -> 0x7ff68e6f1227: movl $0x1, (%rax) 0x7ff68e6f122d: movq $0x0, 0x50(%rsp) 0x7ff68e6f1236: jmp 0x7ff68e6f1259 0x7ff68e6f123b: movq 0x48(%rsp), %r9 Process 3168 launched: 'C:\dev\llvm-project\llvm\build-msvc\tools\lldb\test\Shell\Process\Windows\Output\wndproc_exception.cpp.tmp.exe' (x86_64) I guess we could check for `Exception 0xc000041d encountered` maybe, although I'm afraid of making the testcase unnecessarily brittle too.

mstorsjo added inline comments.Jun 23 2022, 2:42 AM

lldb/test/Shell/Process/Windows/wndproc_exception.cpp
7	If running with lldb-server enabled, it prints a different exception code, `0xc0000005` (which is `STATUS_ACCESS_VIOLATION`) which probably is the proper nested exception, while without lldb-server, it prints `0xc000041d` (`STATUS_FATAL_USER_CALLBACK_EXCEPTION`). So for the purpose of this testcase, just to make sure that it doesn't crash in this case, it'd be better to not specify exactly which exception code is to be returned.

In D128410#3604083, @mstorsjo wrote:

I'm not all that familiar with exactly what happens in these APIs here that makes this a nested exception and what other non-GUI APIs would produce the same effect. Maybe any API where Windows system code calls back to a user provided callback? Does @stella.stamenova know?

FWIW, I tested with doing a similar crash in the callback from EnumerateLoadedModules, but that doesn't trigger the same case.

I tested running the lldb tests within docker, which is a headless windows environment, and this test does indeed fail there (it hangs).

It may be possible to stuff a pointer to an EXCEPTION_RECORD into another EXCEPTION_RECORD and use RtlRaiseException to generate the exception, but you'll have to test how it actually works.

alvinhochun added inline comments.Jun 23 2022, 6:39 AM

lldb/test/Shell/Process/Windows/wndproc_exception.cpp
7	It may be that lldb-server is catching the first chance `STATUS_ACCESS_VIOLATION` exception before the exception is passed to the exception handler...

alvinhochun added inline comments.Jun 23 2022, 7:31 AM

lldb/test/Shell/Process/Windows/wndproc_exception.cpp
7	If you test with windbg or gdb, you will get the access violation / sigsegv first, and only after continuing the debuggee you will get the `0xc000041d` exception.

In D128410#3604927, @alvinhochun wrote:

It may be possible to stuff a pointer to an EXCEPTION_RECORD into another EXCEPTION_RECORD and use RtlRaiseException to generate the exception, but you'll have to test how it actually works.

That would be pretty cool.

lldb/test/Shell/Process/Windows/wndproc_exception.cpp
7	This in itself requires the `%lldb` command to succeed - the exit status for each `RUN` line needs to be successful (unless a failure is expected and it can be inverted with the `not` command). Or did you mean checking the process exit code of the child process (that intentionally does crash)? Yes, that's what I mean, but I don't think we need to match the precise exception number (although probably only one of those two numbers is really "correct"). We could just match the `stop reason = Exception` part.

In D128410#3608190, @labath wrote:

In D128410#3604927, @alvinhochun wrote:

It may be possible to stuff a pointer to an EXCEPTION_RECORD into another EXCEPTION_RECORD and use RtlRaiseException to generate the exception, but you'll have to test how it actually works.

That would be pretty cool.

Yeah - I guess it's two separate kinds of testcases; this one would be more of a macro-testcase, "does this real-world case work - whichever way lldb happens to handle it" (nested exception or not?) while that would be more of a clinical unit test for specifically testing nested exceptions.

In D128410#3609185, @mstorsjo wrote:

In D128410#3608190, @labath wrote:

In D128410#3604927, @alvinhochun wrote:

It may be possible to stuff a pointer to an EXCEPTION_RECORD into another EXCEPTION_RECORD and use RtlRaiseException to generate the exception, but you'll have to test how it actually works.

That would be pretty cool.

Yeah - I guess it's two separate kinds of testcases; this one would be more of a macro-testcase, "does this real-world case work - whichever way lldb happens to handle it" (nested exception or not?) while that would be more of a clinical unit test for specifically testing nested exceptions.

That's true. However, if I had to choose between the two, I would always go for the one with the fewest moving parts. Lldb has a lot of problems with reproducibility of tests, so I am always looking for ways to make tests more specific.

Revision Contents

Path

Size

lldb/

test/

Shell/

Process/

Windows/

wndproc_exception.cpp

54 lines

Diff 439278

lldb/test/Shell/Process/Windows/wndproc_exception.cpp

This file was added.

				// clang-format off

				// Check that lldb doesn't crash when there's a nested exception.

				// REQUIRES: system-windows
				// RUN: %clangxx_host -o %t.exe -luser32 -v -- %s
				// RUN: %lldb -f %t.exe -o "run"
				labathUnsubmitted Not Done Reply Inline Actions Is there something reasonable we could assert here? The process exit status for instance? labath: Is there something reasonable we could assert here? The process exit status for instance?
				mstorsjoAuthorUnsubmitted Done Reply Inline Actions This in itself requires the `%lldb` command to succeed - the exit status for each `RUN` line needs to be successful (unless a failure is expected and it can be inverted with the `not` command). Or did you mean checking the process exit code of the child process (that intentionally does crash)? When this test case is run, it prints the following to the terminal: (lldb) run Process 3168 stopped * thread #1, stop reason = Exception 0xc000041d encountered at address 0x7ff68e6f1227 frame #0: 0x00007ff68e6f1227 wndproc_exception.cpp.tmp.exe -> 0x7ff68e6f1227: movl $0x1, (%rax) 0x7ff68e6f122d: movq $0x0, 0x50(%rsp) 0x7ff68e6f1236: jmp 0x7ff68e6f1259 0x7ff68e6f123b: movq 0x48(%rsp), %r9 Process 3168 launched: 'C:\dev\llvm-project\llvm\build-msvc\tools\lldb\test\Shell\Process\Windows\Output\wndproc_exception.cpp.tmp.exe' (x86_64) I guess we could check for `Exception 0xc000041d encountered` maybe, although I'm afraid of making the testcase unnecessarily brittle too. mstorsjo: This in itself requires the `%lldb` command to succeed - the exit status for each `RUN` line…
				mstorsjoAuthorUnsubmitted Done Reply Inline Actions If running with lldb-server enabled, it prints a different exception code, `0xc0000005` (which is `STATUS_ACCESS_VIOLATION`) which probably is the proper nested exception, while without lldb-server, it prints `0xc000041d` (`STATUS_FATAL_USER_CALLBACK_EXCEPTION`). So for the purpose of this testcase, just to make sure that it doesn't crash in this case, it'd be better to not specify exactly which exception code is to be returned. mstorsjo: If running with lldb-server enabled, it prints a different exception code, `0xc0000005` (which…
				alvinhochunUnsubmitted Not Done Reply Inline Actions It may be that lldb-server is catching the first chance `STATUS_ACCESS_VIOLATION` exception before the exception is passed to the exception handler... alvinhochun: It may be that lldb-server is catching the first chance `STATUS_ACCESS_VIOLATION` exception…
				alvinhochunUnsubmitted Not Done Reply Inline Actions If you test with windbg or gdb, you will get the access violation / sigsegv first, and only after continuing the debuggee you will get the `0xc000041d` exception. alvinhochun: If you test with windbg or gdb, you will get the access violation / sigsegv first, and only…
				labathUnsubmitted Not Done Reply Inline Actions This in itself requires the `%lldb` command to succeed - the exit status for each `RUN` line needs to be successful (unless a failure is expected and it can be inverted with the `not` command). Or did you mean checking the process exit code of the child process (that intentionally does crash)? Yes, that's what I mean, but I don't think we need to match the precise exception number (although probably only one of those two numbers is really "correct"). We could just match the `stop reason = Exception` part. labath: > This in itself requires the `%lldb` command to succeed - the exit status for each `RUN` line…

				#include <windows.h>

				static LRESULT CALLBACK WindowProc(HWND hwnd, UINT uMsg, WPARAM wParam,
				LPARAM lParam) {
				switch (uMsg) {
				case WM_DESTROY:
				PostQuitMessage(0);
				return 0;

				case WM_PAINT:
				(volatile int )nullptr = 1;
				return 0;
				}
				return DefWindowProcA(hwnd, uMsg, wParam, lParam);
				}

				int WINAPI WinMain(HINSTANCE hInstance, HINSTANCE hPrevInstance, LPSTR pCmdLine,
				int nCmdShow) {
				const char CLASS_NAME[] = "Crash Window Class";

				WNDCLASSA wc = {};

				wc.lpfnWndProc = WindowProc;
				wc.hInstance = hInstance;
				wc.lpszClassName = CLASS_NAME;

				RegisterClassA(&wc);

				HWND hwnd = CreateWindowExA(0, CLASS_NAME, "Crash", WS_OVERLAPPEDWINDOW,
				CW_USEDEFAULT, CW_USEDEFAULT, CW_USEDEFAULT,
				CW_USEDEFAULT,
				NULL, NULL, hInstance, NULL);

				if (hwnd == NULL)
				return 0;

				ShowWindow(hwnd, nCmdShow);

				MSG msg = {};
				while (GetMessageA(&msg, NULL, 0, 0) > 0) {
				TranslateMessage(&msg);
				DispatchMessageA(&msg);
				}

				return 0;
				}