Hacker Read

millstone | karma 6895 | avg karma 3.52 · 2017-08-23 18:07:07+00:00

Why does RAII require exceptions? RAII is routinely used in C++ with -fno-exceptions.

WalterBright | karma 71923 | avg karma 2.96 · 2017-08-23 14:05:39

Because D code may sit in between code that throws and exception and code that handles it. Without EH support, the RAII destructor won't get called when the stack is unwound.

millstone | karma 6895 | avg karma 3.52 · 2017-08-23 14:51:01

Gotcha. C++ has the same problem when its exceptions are thrown through C or -fno-exceptions C++ frames.

If that's the only hold-up, IMO the way to go is to abort at the boundary, when an exception would propagate into frames without unwind tables. RAII is too valuable to do without!

reply

dbaupp | karma 10204 | avg karma 4.33 · 2017-08-23 16:22:00

Isn't it generally undefined behaviour to have exceptions pass through code that isn't compiled with support for them? I.e. not running some destructors is the least of your worries if an exception hits C/-fno-exceptions/-betterC code.

WalterBright | karma 71923 | avg karma 2.96 · 2017-08-23 17:58:07

Undefined behavior or not, implementations of languages in gcc and Windows tend to support it, even if the language itself does not. I consider it my job to make this work if at all practical, because users do not like ugly surprises.

I don't know how Rust's RAII deals with exceptions thrown by lower level code. If someone better acquainted with Rust could chime in here, it would be interesting.

reply

fasquoika | karma 586 | avg karma 2.94 · 2017-08-23 23:28:25+00:00

If you mean lower level Rust code, there are no exceptions. Errors are just regular values encoded in the type system. If you're familiar with OCaml optionals and results, it's the same thing

dbaupp | karma 10204 | avg karma 4.33 · 2017-08-24 00:03:51+00:00

There's a subtlety here: panics are exceptions, but they can be disabled without also disabling RAII.

steveklabnik | karma 91260 | avg karma 5.08 · 2017-08-23 23:34:51+00:00

> I don't know how Rust's RAII deals with exceptions thrown by lower level code.

Unwinding across an FFI boundary is considered undefined behavior.

https://doc.rust-lang.org/reference/behavior-considered-unde... last bullet point.

reply

WalterBright | karma 71923 | avg karma 2.96 · 2017-08-23 19:56:05

That's exactly what I wanted to know. Thanks!

Full D is compatible with foreign exceptions and unwinding. I'll see about making D as Better C also compatible, but I suppose Rust's precedent makes it acceptable to not handle it.

reply

steveklabnik | karma 91260 | avg karma 5.08 · 2017-08-24 00:59:49+00:00

No problem!

This isn't my super strong area of expertise, but don't you have to specify how the unwinding works? I believe this is part of the reason why Rust punted; you'd have to specify exactly what kind is supported. (Rust uses libunwind for panics, incidentally.)

reply

WalterBright | karma 71923 | avg karma 2.96 · 2017-08-24 01:10:04+00:00

The how is handled by providing a language-specific "personality" function in the generated exception tables. The D runtime library has one for D. But with D as Better C, I'd have to find a way to make the C personality function work for D.

steveklabnik | karma 91260 | avg karma 5.08 · 2017-08-24 02:51:48+00:00

Ah right, makes sense. Thanks :)

dbaupp | karma 10204 | avg karma 4.33 · 2017-08-24 00:10:50+00:00

How does it work if an exception gets thrown through a C stack frame that has outstanding resources (for instance, pointers that are freed later in the frame)? Are you referring to manual SJLJ?

In any case, it seems like C manual destruction has exactly the same problems as with RAII, because fundamentally the issue is passing exceptions through something that doesn't understand it, rather than with RAII.

reply