Std :: runtime_error :: what () causes access violation when using nested exceptions

Question

Std :: runtime_error :: what () causes access violation when using nested exceptions

I'm not looking for a way to solve this problem, just to understand the reason for this. A colleague showed me the code that caused access violation when compiling Visual Studio 2008 to work under Windows Mobile 6 ARMV4I. The same code worked fine under x86 Windows, and it claims to work under Linux, compiled by GCC (I haven't confirmed this yet). I brought the question to the code below:

int main( int argc, char* argv[] ) { try { throw std::runtime_error( "a" ); } catch( std::runtime_error& e1 ) { try { try { throw std::runtime_error( "b" ); } catch( std::runtime_error& e11 ) { throw; } } catch( std::runtime_error& e12 ) { e12.what(); // access violation } } return 0; }

Aside from questions about whether this code is reasonable, can someone explain what causes an access violation when std::runtime_error::what() is called in the code above?

Thanks PaulH

Edit: Column:

 test.exe!wmain(int argc = 1, wchar_t** argv = 0x00040080) Line: 169, Byte Offsets: 0xd8 C++ _CallSettingFrame test.exe!CallCatchBlock(EHExceptionRecord* pExcept = 0x1803eb0c, unsigned long int* pRN = 0x1803fc18, _CONTEXT* pContext = 0x1803f014, _s_FuncInfo* pFuncInfo = 0x00023960, void* handlerAddress = 0x00011494, int CatchDepth = 0, unsigned long int NLGCode = 256) Line: 878, Byte Offsets: 0x258 C++ test.exe!__InternalCxxFrameHandler(EHExceptionRecord* pExcept = 0x1803eb0c, unsigned long int* pRN = 0x1803f2f8, _CONTEXT* pContext = 0x1803f014, _DISPATCHER_CONTEXT* pDC = 0x1803e824, _s_FuncInfo* pFuncInfo = 0x00023960, int CatchDepth = 0) Line: 179, Byte Offsets: 0xfc C++ test.exe!__CxxFrameHandler3(EHExceptionRecord* pExcept = 0x1803eb0c, unsigned long int* pRN = 0x1803f2f8, _CONTEXT* pContext = 0x1803f014, _DISPATCHER_CONTEXT* pDC = 0x1803e824) Line: 242, Byte Offsets: 0x54 C++ 0xf000fffc = 0x1803eb0c, unsigned long int * pRN = 0x1803f2f8, _CONTEXT * pContext = 0x1803f014, _DISPATCHER_CONTEXT * pDC = 0x1803e824, _s_FuncInfo * pFuncInfo = 0x00023960, int CatchDepth = test.exe!wmain(int argc = 1, wchar_t** argv = 0x00040080) Line: 169, Byte Offsets: 0xd8 C++ _CallSettingFrame test.exe!CallCatchBlock(EHExceptionRecord* pExcept = 0x1803eb0c, unsigned long int* pRN = 0x1803fc18, _CONTEXT* pContext = 0x1803f014, _s_FuncInfo* pFuncInfo = 0x00023960, void* handlerAddress = 0x00011494, int CatchDepth = 0, unsigned long int NLGCode = 256) Line: 878, Byte Offsets: 0x258 C++ test.exe!__InternalCxxFrameHandler(EHExceptionRecord* pExcept = 0x1803eb0c, unsigned long int* pRN = 0x1803f2f8, _CONTEXT* pContext = 0x1803f014, _DISPATCHER_CONTEXT* pDC = 0x1803e824, _s_FuncInfo* pFuncInfo = 0x00023960, int CatchDepth = 0) Line: 179, Byte Offsets: 0xfc C++ test.exe!__CxxFrameHandler3(EHExceptionRecord* pExcept = 0x1803eb0c, unsigned long int* pRN = 0x1803f2f8, _CONTEXT* pContext = 0x1803f014, _DISPATCHER_CONTEXT* pDC = 0x1803e824) Line: 242, Byte Offsets: 0x54 C++ 0xf000fffc

Output Window:

 RaiseException: Thread=96ec78d0 Proc=80096c70 'test.exe' AKY=00000801 PC=03f91e7c(coredll.dll+0x00043e7c) RA=88037538(NK.EXE+0x00007538) BVA=00000000 FSR=00000000 RaiseException: Thread=96ec78d0 Proc=80096c70 'test.exe' AKY=00000801 PC=03f91e7c(coredll.dll+0x00043e7c) RA=88037538(NK.EXE+0x00007538) BVA=00000000 FSR=00000000 RaiseException: Thread=96ec78d0 Proc=80096c70 'test.exe' AKY=00000801 PC=03f91e7c(coredll.dll+0x00043e7c) RA=88037538(NK.EXE+0x00007538) BVA=00000000 FSR=00000000 Data Abort: Thread=96ec78d0 Proc=80096c70 'test.exe' AKY=00000801 PC=000114ac(test.exe+0x000014ac) RA=0002095c(test.exe+0x0001095c) BVA=5061654c FSR=00000405 First-chance exception at 0x000114ac in test.exe: 0xC0000005: Access violation reading location 0x5061654c.

Edit2: This article contains a defect report report in Microsoft Connect.

+4

c ++ arm exception windows-mobile

Paulh Apr 28 '11 at 14:27

source share

1 answer

Johann Gerell · Answer 1 · 2011-04-28T20:24:31+0000

This is not an answer, but a list too long to be in the comments.

I looked at the assembly to build the Release code. See below. I marked AV on the correct line of the instruction 5 lines below.

 int _tmain(int argc, _TCHAR* argv[]) { 000116E8 mov r12, sp 000116EC stmdb sp!, {r11, r12, lr} 000116F0 add r11, sp, #0xC 000116F4 sub sp, sp, #0x98 000116F8 ldr r3, [pc, #0x10C] 000116FC ldr r3, [r3] 00011700 str r3, [r11, #-0x10] try { throw std::runtime_error( "a" ); 00011704 mov r2, #0 00011708 mov r1, #0 0001170C sub r0, r11, #0x84 00011710 bl |std::basic_string<char,std::char_traits<char>,std::allocator<char> >::_Tidy ( 11118h )| 00011714 ldr r1, [pc, #0xEC] 00011718 mov r2, #1 0001171C sub r0, r11, #0x84 00011720 bl |std::basic_string<char,std::char_traits<char>,std::allocator<char> >::assign ( 114d0h ) 00011724 sub r1, r11, #0x84 00011728 sub r0, r11, #0x68 0001172C bl |std::runtime_error::runtime_error ( 115ach )| 00011730 ldr r1, [pc, #0xC4] 00011734 sub r0, r11, #0x68 00011738 bl 000118F0 return 0; 0001173C ldr r0, [r11, #-0x10] 00011740 bl 00011C70 00011744 mov r0, #0 } 00011748 sub sp, r11, #0xC 0001174C ldmia sp, {r11, sp, pc} 00011750 andeq r3, r1, r8, ror r0 00011754 andeq r4, r1, r0, ror #3 } catch( std::runtime_error& e11 ) 00011758 str lr, [sp, #-4]! { throw; 0001175C mov r1, #0 00011760 mov r0, #0 00011764 bl 000118F0 00011768 andeq r3, r1, r8, ror r0 0001176C andeq r4, r1, r0, ror #3 } } catch( std::runtime_error& e12 ) 00011770 str lr, [sp, #-4]! { e12.what(); // access violation 00011774 ldr r0, e12, #-0xA4 00011778 ldr r3, [r0] // AV 0001177C mov lr, pc 00011780 ldr pc, [r3, #4] 00011784 ldr r0, [pc, #0x78] 00011788 ldr pc, [sp], #4

Std :: runtime_error :: what () causes access violation when using nested exceptions

More articles: