mirror of
https://github.com/VSadov/Satori.git
synced 2025-06-08 03:27:04 +09:00
Add some basic guidelines around using C++ standard headers now that our build allows us to (#101088)
This commit is contained in:
Jeremy Koritzinsky
parent
68511fd27f
commit
0074d77112
GPG key ID:
B5690EEEBB952194
1 changed files with 36 additions and 2 deletions
|
|
@ -83,7 +83,11 @@ Written in 2006, by:
|
|||
* [2.10.4 When is it safe to use a runtime contract?](#2.10.4)
|
||||
* [2.10.5 Do not make unscoped changes to the ClrDebugState](#2.10.5)
|
||||
* [2.10.6 For more details...](#2.10.6)
|
||||
* [2.11 Is your code DAC compliant?](#2.11)
|
||||
* [2.11 Using standard headers](#2.11)
|
||||
* [2.11.1 Do not use wchar_t](#2.11.1)
|
||||
* [2.11.2 Do not use C++ Standard-defined exceptions](#2.11.2)
|
||||
* [2.11.3 Do not use getenv on Unix platforms](#2.11.3)
|
||||
* [2.12 Is your code DAC compliant?](#2.12)
|
||||
|
||||
# <a name="1"></a>1 Why you must read this document
|
||||
|
||||
|
|
@ -1252,10 +1256,40 @@ This data is meant to be changed in a scoped manner only. In particular, the CON
|
|||
|
||||
See the big block comment at the start of [src\inc\contract.h][contract.h].
|
||||
|
||||
## <a name="2.11"></a>2.11 Is your code DAC compliant?
|
||||
## <a name="2.11"></a>2.11 Using standard headers
|
||||
|
||||
The C and C++ standard headers are available for usage in the CoreCLR code-base. However, there are restrictions on using the standard-provided APIs for code that will run as part of CoreCLR.
|
||||
|
||||
Code that will only run in other processes, such as `createdump` or other extraneous tools, do not have the same set of restrictions.
|
||||
|
||||
### <a name="2.11.1"></a> 2.11.1 Do not use wchar_t
|
||||
|
||||
The `wchar_t` type is implementation-defined, with Windows and Unix-based platforms using different definitions (2 byte vs 4 byte). Use the `WCHAR` alias instead, which is always 2 bytes. The CoreCLR PAL provides implementations of a variety of the C standard `wchar_t` APIs with the `WCHAR` type instead. These methods, as well as the methods in the [CoreCLR minipal](https://github.com/dotnet/runtime/tree/main/src/coreclr/minipal) and in the [repo minipal](https://github.com/dotnet/runtime/tree/main/src/native/minipal) should be used. In these minipals, the APIs may use `char16_t` or a locally-defined `CHAR16_T` type. In both cases, these types are compatible with the `WCHAR` alias in CoreCLR. If a minipal API exists, it should be used instead of the PAL API.
|
||||
|
||||
### <a name="2.11.2"></a> 2.11.2 Do not use C++ Standard-defined exceptions
|
||||
|
||||
The exception handling mechanisms in CoreCLR only handle `Exception`-derived types and `PAL_SEHException`. As a result, standard C++ exceptions, derived from `std::exception`, will cause runtime instability and should never be used. There is one standard C++ exception type the CoreCLR infrastructure supports, `std::bad_alloc`. Since CoreCLR supports `std::bad_alloc`, the standard container allocators, `std::allocator<T>` and the standard C++ containers, can be used as long as only the non-throwing members are used.
|
||||
|
||||
For example, `std::vector<T>::at()` should not be used as it may throw an `std::out_of_range` exception. Check the C++ standard or [cppreference.com](https://en.cppreference.com) for each member you plan to use to ensure that it will not throw a C++ standard exception other than `std::bad_alloc`.
|
||||
|
||||
### <a name="2.11.3"></a> 2.11.3 Do not use getenv on Unix platforms
|
||||
|
||||
The POSIX API `setenv` is not thread safe with `getenv` and can lead to crashes. CoreCLR provides a `PAL_getenv` API that is thread-safe. This API should be used instead when on non-Windows platforms.
|
||||
|
||||
### <a name="2.11.4"></a> 2.11.4 Limit usage of standard template types in shipping executables
|
||||
|
||||
For Linux x64 and amd64 platforms, we build against a very old libstdc++, the version that shipped with Ubuntu 16.04. As a result, we strive to reduce our usage of template types (where code from the headers will be inserted into our binaries) in shipping executables and libraries.
|
||||
|
||||
This rule applies to both `coreclr` as well as shipping external executables like `createdump`.
|
||||
|
||||
For non-shipping native code, like the `superpmi` tools suite, standard headers can be used without limitation.
|
||||
|
||||
## <a name="2.12"></a>2.12 Is your code DAC compliant?
|
||||
|
||||
At a high level, DAC is a technique to enable execution of CLR algorithms from out-of-process (eg. on a memory dump). Core CLR code is compiled in a special mode (with DACCESS_COMPILE defined) where all pointer dereferences are intercepted.
|
||||
|
||||
Various tools (most notably the debugger and SOS) rely on portions of the CLR code being properly "DACized". Writing code in this way can be tricky and error-prone. Use the following references for more details:
|
||||
|
||||
- The best documentation is in the code itself. See the large comments at the top of [src\inc\daccess.h](https://github.com/dotnet/runtime/blob/main/src/coreclr/inc/daccess.h).
|
||||
|
||||
C++ standard collections are not DAC-ized and cannot be DAC-ized, so they should never be used as fields in data structures or in global variables that need to be read by the DAC, even when using a CoreCLR compatible allocator. They can be used as intermediate values; however. See [2.11](#2.11) for more rules about using C++ standard headers.
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue