#So apparently try catch can get completely ignored huh...

https://github.com/llvm-mirror/libcxxabi/blob/master/src/cxa_exception.cpp#L183C7-L183C31
This function here from the try-catch internals depends on malloc, if that fails well you get std::terminate,
with gdb I was able to tweak the local variables to simulate a malloc failure easily.

How does this make sense?

@keen raven

Try catch isn't being ignored here.

in the throw statement, after the expression is deep copied, the debugger shows that the program steps into the function I linked, that function
runs __aligned_malloc_with_fallback, and if that allocation fails, we get std::terminate

so try-catch can fail to catch what the developer expected

how does this make sense?

An allocation failure is a critical failure. The catch is not being ignored because the throw doesn't actually happen - this failure happens too early on in the exception internals that get triggered when __cxa_throw is called. The best thing for the implementation to do here is exit out, which is what it does. Arguably the implementation should use an abnormal termination, but they choose to go the route of std::terminate so that resources are cleaned up properly.

so, why does operator new decide to throw std::bad_alloc instead of std::terminate?

if std::bad_alloc is supposed to the thrown and caught to handle out of memory errors, but here throwing std::bad_alloc can lead to std::terminate being called, this is a contradiction

It's not. It is possible for an allocation to fail but for an allocation of std::bad_alloc to succeed, and that's how things normally work.

it's not about probability, allocating an instance of std::bad_alloc can also fail

⁨std::bad_alloc⁩ is tiny, and might not need allocation at all keep in mind (it can be placed in EH storage)

the source code uses malloc, it is an allocation of sizeof(std::bad_alloc) + sizeof(other metadata needed)

I'm not sure what you're trying to get from this conversation

I posted here to ask, is this legal, and is there a workaround

like, can we create a thread-local global buffer of char elements with fixed length to bypass malloc when running throw something?

If an implementation needs to allocate space for std::bad_alloc but can't, that's a catestrophic failure that can't be recovered from. This is legal. This is sensible. There is no need to work around it.

See above comment about eh storage

what does the abbreviation EH stand for?

Error handling

std::bad_alloc by itself is just a regular exception type, and not necessarily caused by critical allocation failures (custom allocators that operate with a set of contraints can choose to throw it to be consistent)

plus, if even the smallest of exception objects that std::bad_alloc is can't be allocated then something has gone really wrong

@keen raven just use MSVC,
exceptions are not heap allocated there 😎
(oh no but what if we stack overflow when allocating the exception :O)

so msvc actually did something right for once huh?
so can you briefly explain what global storage they make before main runs, and what the source code of throw try and catch does there?

oh no but what if we stack overflow when allocating the exception if some program runs the CPU instruction push to add bytes onto the stack frame and we run out, then some signal would be sent thus killing the program, so that should be okay

why is it okay to terminate the program for stack-allocated exception allocation failure, but not for heap-allocated exception allocation failure 😛

this is kinda like compalining that try-catch doesn't handle your infinite recursion data-structure-copy-constructor

but, if you were running push_back in a std::list in some while loop, well you really expect try catch to be able to handle that in all cases.

so pls explain what msvc++ does with try catch

it puts the exception on the stack, that's it

and how the hell does that survive when stack unwinding runs?

just don't destroy it

like

ez

HOW???

by being the compiler?

you're msvc, you know how your stack unwinding works

put the exception object somewhere where stack unwinding doesn't know about it and can't unwind it

ez

so like... some fixed size buffer created before main starts hidden around where argv is stored?

just put it after the end of the stack

do you just not know the assembler details or are you just hiding the answer?

I know nothing about the implementation details, but it seems easy to me

the stack grows

when unwinding, you're un-growing it

so just put it somewhere deep down beyond the last stackframe or something?

maybe it's not that easy but idk 🤷

do you happen to have a Visual Studio IDE installed somewhere, can you run the GUI debugger and step in the throw expression?

nope but I can see that the exception object lives close to local variables in the stack

I mean I think it should be easy, because the compiler is the one emitting the destructor invocations in the first place,
so just don't do it for the exception object,
then stack unwinding can't clean it up

this implies that later on when new local variables are created in the catch statement they will override the memory on the address where the thrown value lives leading to horrible corruption?

🤷

there's no way msvc++ are that dumb, there's something else hidden in here

https://accu.org/journals/overload/12/63/orr_245/
this article seems to try to explain it

The upshot is that, when the catch body is executed, the complete stack down to the location of the throw is still available in memory. The raw stack pointer will only be reset when the body of the stack completes, and before this point the call stack will not be touched. So if we can obtain the address of the context record that was passed into each exception handler as the third argument, the pointer will still be valid inside the body of the catch .

What msvc does is valid, what libstdc++ does is valid. MSVC's approach can actually cause quite a lot of problems.

One key thing about the way MSVC exception handling works is that it involves making extra calls down the stack. At point (2) the C++ runtime calls RaiseException , which snapshots the exception and thread state and then it in turn calls the code to work along the exception chain calling exception handlers.

So, do you have the source code of RaiseException somewhere?
The article author from 2004 suggests readers to go and read the cited sources which include, a dead link
[Pietrek1] Matt Pietrek, A Crash Course on the Depths of Win32™ Structured Exception Handling , http://www.microsoft.com/msj/0197/Exception/Exception.aspx
and a large book about assembler
[Gordon] Jeremy Gordon, Win32 Exception handling for assembler programmers , http://www.jorgon.freeserve.co.uk/Except/Except.htm

With MinGW-g++.exe I see this:

Breakpoint 2, 0x0000000000419cc0 in malloc ()
(gdb) bt
#0  0x0000000000419cc0 in malloc ()
#1  0x000000000040f883 in __shmem_grab (name=<optimized out>, size=8, initfunc=0x4718b0 <__shmem_init_init>)
    at ../../../../../src/gcc-4.9.2/libgcc/../libgcc/config/i386/shmem-win32.c:79
#2  0x00000000004712b8 in __cxa_get_globals ()
#3  0x0000000000471675 in __cxa_throw ()
#4  0x00000000004015ba in f1 () at main.cpp:607
#5  0x000000000040164a in main () at main.cpp:615
(gdb)

which based on the __cxa prefix are definitely not running RaiseException, these are just GCC-s re-written algorithm for Windows

so, I found this
#windows message

The insanity of windows is that, when an exception is thrown the goddamn windows kernel gets involved in capturing that thing and selecting an appropriate exception handler, in some kind of horrific singly linked list embedded in the stack frame

I cannot evaluate if VirtualAlloc is used somewhere in there, a.k.a. if we again depend on the heap

so, I guess I have reached my skill limits

!solved