In RSC, a trap refers to something, usually a POSIX signal, that results
in a C++ exception. A common example is SIGSEGV, the signal that a
thread receives when it performs an illegal memory access, usually because
it used a bad pointer.
Robust C++: Safety Net
describes how RSC handles traps. To summarize, RSC installs a handler that
intercepts POSIX signals and throws a C++ exception so that a signal can be
handled by a catch clause in Thread::Start, the
function that underlies all RSC threads. However, it is undefined behavior
for a signal handler to try to do almost anything useful in C++, so how well
this strategy works depends on the compiler that was used and the platform
for which it targeted the executable.
RSC has 29 tests that tell RecoveryThread
to cause traps in various ways. Getting the safety net to work can be
challenging when porting RSC to another platform, which is one reason
why these tests are provided. The entire set can be run with the command
>read test.trap.all. Each test generates the following (see the
recover.* files in the output directory):
- A function trace (*.trace.txt).
- A function profile (*.funcs.txt) that lists each function that was invoked, along with how many times it was invoked and the total net time spent in it. This information is not that useful here, but it is valuable when you want to pinpoint which functions to focus on in order to improve real-time performance.
- A scheduler trace (*.sched.txt). The first part of this trace lists all threads in the executable, with statistics for each. The second part is a record of all the context switches that occurred during the test.
- A console transcript of the test (*.cli.txt).
RSC is built using
- the MSVC compiler, targeted to Windows;
- the clang compiler, also targeted to Windows; and
- the gcc compiler, targeted to Linux.
The following table provides the current status of each safety net test for the above combinations.
| Description | Test Name1 | Script2 | MSVC/Windows | clang/Windows | gcc/Linux |
|---|---|---|---|---|---|
| exit thread | Return | trap.01 | pass | pass | pass |
| throw an exception | Exception | trap.02 | pass | pass | pass |
| use a bad pointer | BadPtr | trap.03 | pass | pass | pass |
| divide by zero | DivZero | trap.04 | pass | pass | pass |
raise SIGINT |
SIGINT | trap.05 | pass | pass | pass |
raise SIGILL |
SIGILL | trap.06 | pass | pass | pass |
raise SIGTERM |
SIGTERM | trap.07 | pass | pass | pass |
raise SIGBREAK |
SIGBREAK | trap.08 | pass | pass | n/a |
call abort |
abort | trap.09 | pass | pass | pass |
call std::terminate |
terminate | trap.10 | fail3 🔴 | pass | fail4 🔴 |
call Thread::Kill on another thread |
KillRemote | trap.11 | pass | pass | pass |
call Thread::Kill on running thread |
KillLocal | trap.12 | pass | pass | pass |
cause an infinite loop and be killed by InitThread |
InfiniteLoop | trap.13 | pass | pass | pass |
cause a stack overflow and be killed by Thread::StackCheck |
StackOverflow | trap.14 | pass | pass | pass |
trap, and trap again in Thread::Recover |
TrapInRecover | trap.15 | pass | pass | pass |
delete Thread object of another thread |
DeleteRemote | trap.16 | pass | pass | pass |
delete Thread object of running thread |
DeleteLocal | trap.17 | pass | pass | pass |
| cause an infinite loop and be killed by ctrl-C | Ctrl-C | trap.18 | pass | pass | pass6 🟡 |
call Thread::EnterBlockingOperation while holding a mutex |
MutexBlock | trap.19 | pass | pass | pass |
| trap, and constructor traps first time thread is recreated | ThreadCtorTrap | trap.20 | pass | pass | pass |
| exit thread while holding a mutex | MutexExit | trap.21 | pass | pass | pass |
| trap while holding a mutex | MutexTrap | trap.22 | pass | pass | pass |
| trap, and trap once more during trap recovery | Retrap | trap.23 | pass | pass | pass |
| trap and allow thread to exit | BadPtrExit | trap.24 | pass | pass | pass |
disable Daemon; kill thread; reenable Daemon; thread recreated |
DaemonReenable | trap.25 | pass | pass | pass |
exit thread; constructor traps first time Daemon recreates thread, so Daemon is disabled; reenable Daemon; thread recreated |
DaemonTrap | trap.26 | pass | pass | pass |
| trap in destructor when exiting thread | ThreadDtorTrap | trap.27 | pass | fail4 🔴 | fail4 🔴 |
raise SIGBUS |
SIGBUS | trap.28 | n/a | n/a | pass |
| write to protected memory | SIGWRITE | trap.29 | pass | fail5 🟡 | pass |
- file name in output directory
- file name in input directory
- causes a stack overflow by rethrowing exceptions (release build only)
- causes a stack overflow by rethrowing exceptions
- raises
SIGSEGV, not the Windows structured exception that includes the details needed to map it toSIGWRITE - fails if launched from VS2022, which does not forward ctrl-C to the Linux Console Window