Fix #38

Author: OpenByteDev

Cargo.toml

@@ -28,6 +28,7 @@ widestring = { version = "1.2", features = ["std"], default-features = false }
 
 [target.'cfg(not(windows))'.dependencies]
 cstr = { version = "0.2", default-features = false }
+libc = { version = "0.2", default-features = false, optional = true }
 
 [dev-dependencies]
 trybuild = "1.0"
@@ -37,11 +38,15 @@ widestring = "1.2"
 rusty-fork = "0.3"
 path-absolutize = "3.1"
 
+[target.'cfg(not(windows))'.dev-dependencies]
+libc = { version = "0.2", default-features = false }
+
 [features]
-default = ["nethost-download", "net10_0"]
+default = ["nethost-download", "net10_0", "utils"]
 nethost-download = ["nethost", "nethost-sys/download-nuget"]
 nethost = ["nethost-sys"]
 nightly = []
+utils = ["libc"]
 doc-cfg = []
 netcore1_0 = ["hostfxr-sys/netcore1_0"]
 netcore2_0 = ["hostfxr-sys/netcore2_0", "netcore1_0"]

src/lib.rs

@@ -186,3 +186,6 @@ pub mod error;
 
 #[doc(hidden)]
 pub use hostfxr_sys::dlopen2;
+
+/// Module containing additional utilities. (currently unix-only)
+pub mod utils;

src/utils.rs

@@ -0,0 +1,98 @@
+#![cfg(unix)]
+
+/// Utilities for configuring the alternate signal stack on Unix platforms.
+///
+/// Rust installs a small alternate signal stack for handling certain signals such as `SIGSEGV`.
+/// When embedding or hosting the .NET CoreCLR inside Rust, this small stack may be insufficient
+/// for the CLR exception-handling mechanisms. Increasing or disabling the alternate signal stack
+/// may be necessary to avoid a segfault in such cases.
+///
+/// See https://github.com/OpenByteDev/netcorehost/issues/38 for more details.
+pub mod altstack {
+    use libc::{
+        mmap, sigaltstack, stack_t, MAP_ANON, MAP_FAILED, MAP_PRIVATE, PROT_READ, PROT_WRITE,
+        SS_DISABLE,
+    };
+    use std::{io, mem::MaybeUninit, ptr};
+
+    /// Represents the desired configuration of the alternate signal stack.
+    pub enum State {
+        /// Disables Rust's alternate signal stack.
+        Disabled,
+
+        /// Enables and sets the alternate signal stack to a given size in bytes.
+        Enabled {
+            /// Target altstack size
+            size: usize,
+        },
+    }
+
+    /// Configures the alternate signal stack according to the provided status.
+    pub fn set(state: State) -> io::Result<()> {
+        match state {
+            State::Disabled => {
+                let ss = stack_t {
+                    ss_flags: SS_DISABLE,
+                    ss_sp: ptr::null_mut(),
+                    ss_size: 0,
+                };
+
+                let result = unsafe { sigaltstack(&ss, ptr::null_mut()) };
+                if result != 0 {
+                    return Err(io::Error::last_os_error());
+                }
+            }
+
+            State::Enabled { size } => {
+                let ptr = unsafe {
+                    mmap(
+                        ptr::null_mut(),
+                        size,
+                        PROT_READ | PROT_WRITE,
+                        MAP_PRIVATE | MAP_ANON,
+                        -1,
+                        0,
+                    )
+                };
+
+                if ptr == MAP_FAILED {
+                    return Err(io::Error::last_os_error());
+                }
+
+                let ss = stack_t {
+                    ss_sp: ptr,
+                    ss_size: size,
+                    ss_flags: 0,
+                };
+
+                let result = unsafe { sigaltstack(&ss, ptr::null_mut()) };
+                if result != 0 {
+                    return Err(io::Error::last_os_error());
+                }
+            }
+        }
+
+        Ok(())
+    }
+
+    /// Returns the current altstack status.
+    pub fn get() -> io::Result<State> {
+        let mut current = MaybeUninit::uninit();
+        let result = unsafe { sigaltstack(ptr::null(), current.as_mut_ptr()) };
+        if result != 0 {
+            return Err(io::Error::last_os_error());
+        }
+
+        let current = unsafe { current.assume_init() };
+        let enabled = current.ss_flags & SS_DISABLE == 0;
+        let state = if enabled {
+            State::Enabled {
+                size: current.ss_size,
+            }
+        } else {
+            State::Disabled
+        };
+
+        Ok(state)
+    }
+}

tests/Test/Program.cs

@@ -30,5 +30,12 @@ public static int UnmanagedHello() {
         }
 
         public static int Main() => Hello(default, default);
+
+        class Foo { public int bar; }
+        [UnmanagedCallersOnly]
+        public static void Throw() {
+            Foo foo = null!;
+            foo.bar = 42;
+        }
     } 
 }

tests/unhandled_managed_exeptions.rs

@@ -0,0 +1,165 @@
+#![cfg(all(feature = "netcore3_0", feature = "utils", unix))]
+// see https://github.com/OpenByteDev/netcorehost/issues/38
+
+#[path = "common.rs"]
+mod common;
+
+use netcorehost::{nethost, pdcstr, utils::altstack::{self, State}};
+use rusty_fork::{ChildWrapper, ExitStatusWrapper, fork, rusty_fork_id};
+use std::{process::Stdio, io::Read};
+
+macro_rules! function_name {
+    () => {{
+        fn f() {}
+        fn type_name_of<T>(_: T) -> &'static str {
+            std::any::type_name::<T>()
+        }
+        type_name_of(f)
+            .rsplit("::")
+            .find(|&part| part != "f" && part != "{{closure}}")
+            .expect("faled to get function name")
+    }};
+}
+
+macro_rules! assert_contains {
+    ($string:expr, $substring:expr $(,)?) => {{
+        let string_ref: &str = &$string;
+        let substring_ref: &str = &$substring;
+        assert!(
+            string_ref.contains(substring_ref),
+            "Expected `{}` to contain `{}`",
+            string_ref,
+            substring_ref
+        );
+    }};
+}
+
+macro_rules! assert_not_contains {
+    ($string:expr, $substring:expr $(,)?) => {{
+        let string_ref: &str = &$string;
+        let substring_ref: &str = &$substring;
+        assert!(
+            !string_ref.contains(substring_ref),
+            "Expected `{}` NOT to contain `{}`",
+            string_ref,
+            substring_ref
+        );
+    }};
+}
+
+const MANAGED_HANDLER_OUTPUT: &str = "Unhandled exception. System.NullReferenceException: Object reference not set to an instance of an object.";
+
+#[test]
+fn segfault_with_small_altstack() {
+    common::setup();
+    altstack_test(
+        function_name!(),
+        || {
+            altstack::set(State::Enabled { size: 2 * 1024 }).unwrap();
+        },
+        |status, _, stderr| {
+            assert_eq!(status.unix_signal(), Some(libc::SIGSEGV));
+            assert_not_contains!(stderr, MANAGED_HANDLER_OUTPUT);
+        }
+    );
+}
+
+#[test]
+fn no_segfault_with_large_altstack() {
+    common::setup();
+    altstack_test(
+        function_name!(),
+        || {
+            altstack::set(State::Enabled { size: 16 * 1024 }).unwrap();
+        },
+        |status, _, stderr| {
+            assert_ne!(status.unix_signal(), Some(libc::SIGSEGV));
+            assert_contains!(stderr, MANAGED_HANDLER_OUTPUT);
+        }
+    );
+}
+
+#[test]
+fn no_segfault_with_altstack_disabled() {
+    common::setup();
+    altstack_test(
+        function_name!(),
+        || {
+            altstack::set(State::Disabled).unwrap();
+        },
+        |status, _, stderr| {
+            assert_ne!(status.unix_signal(), Some(libc::SIGSEGV));
+            assert_contains!(stderr, MANAGED_HANDLER_OUTPUT);
+        }
+    );
+}
+
+fn altstack_test(
+    test_name: &str,
+    configure_altstack: impl FnOnce(),
+    verify: impl FnOnce(ExitStatusWrapper, /* stdout */ String, /* stderr */String)
+) {
+    common::setup();
+
+    let body = || {
+        configure_altstack();
+
+        let hostfxr = nethost::load_hostfxr().unwrap();
+
+        let context = hostfxr
+            .initialize_for_runtime_config(common::test_runtime_config_path())
+            .unwrap();
+        let fn_loader = context
+            .get_delegate_loader_for_assembly(common::test_dll_path())
+            .unwrap();
+
+        let throw_fn = fn_loader
+            .get_function_with_unmanaged_callers_only::<unsafe fn()>(
+                pdcstr!("Test.Program, Test"),
+                pdcstr!("Throw"),
+            )
+            .unwrap();
+        unsafe { throw_fn() };
+    };
+
+    fn configure_child(child: &mut std::process::Command) {
+        child.stdout(Stdio::piped());
+        child.stderr(Stdio::piped());
+    }
+
+    // Define how to supervise the child process
+    let supervise = |child: &mut ChildWrapper, _file: &mut std::fs::File| {
+        let mut stdout = String::new();
+        child
+            .inner_mut()
+            .stdout
+            .as_mut()
+            .unwrap()
+            .read_to_string(&mut stdout)
+            .unwrap();
+        
+        let mut stderr = String::new();
+        child
+            .inner_mut()
+            .stderr
+            .as_mut()
+            .unwrap()
+            .read_to_string(&mut stderr)
+            .unwrap();
+
+        let status = child.wait().expect("unable to wait for child");
+        println!("status: {status}");
+        println!("stdout: {stdout}");
+        println!("stderr: {stderr}");
+        verify(status, stdout, stderr);
+    };
+
+    // Run the test in a forked child
+    fork(
+        test_name,
+        rusty_fork_id!(),
+        configure_child,
+        supervise,
+        body,
+    ).expect("fork failed");
+}