[cDAC] Implement core stackwalking (#111759)

* Adds IStackWalk contract
* Implements core of cDAC stackwalking mechanics
* Support for targeting amd64 and arm64 architectures
* Support Windows amd64 host

Author: max-charlamb

docs/design/datacontracts/ExecutionManager.md

@@ -23,6 +23,10 @@ struct CodeBlockHandle
     TargetPointer GetMethodDesc(CodeBlockHandle codeInfoHandle);
     // Get the instruction pointer address of the start of the code block
     TargetCodePointer GetStartAddress(CodeBlockHandle codeInfoHandle);
+    // Gets the unwind info of the code block at the specified code pointer
+    TargetPointer GetUnwindInfo(CodeBlockHandle codeInfoHandle, TargetCodePointer ip);
+    // Gets the base address the UnwindInfo of codeInfoHandle is relative to.
+    TargetPointer GetUnwindInfoBaseAddress(CodeBlockHandle codeInfoHandle);
 ```
 
 ## Version 1
@@ -53,6 +57,8 @@ Data descriptors used:
 | `CodeHeapListNode` | `MapBase` | Start of the map - start address rounded down based on OS page size |
 | `CodeHeapListNode` | `HeaderMap` | Bit array used to find the start of methods - relative to `MapBase` |
 | `RealCodeHeader` | `MethodDesc` | Pointer to the corresponding `MethodDesc` |
+| `RealCodeHeader` | `NumUnwindInfos` | Number of Unwind Infos |
+| `RealCodeHeader` | `UnwindInfos` | Start address of Unwind Infos |
 | `Module` | `ReadyToRunInfo` | Pointer to the `ReadyToRunInfo` for the module |
 | `ReadyToRunInfo` | `CompositeInfo` | Pointer to composite R2R info - or itself for non-composite |
 | `ReadyToRunInfo` | `NumRuntimeFunctions` | Number of `RuntimeFunctions` |
@@ -214,7 +220,7 @@ class CodeBlock
 }
 ```
 
-The remaining contract APIs extract fields of the `CodeBlock`:
+The `GetMethodDesc` and `GetStartAddress` APIs extract fields of the `CodeBlock`:
 
 ```csharp
     TargetPointer IExecutionManager.GetMethodDesc(CodeBlockHandle codeInfoHandle)
@@ -230,6 +236,15 @@ The remaining contract APIs extract fields of the `CodeBlock`:
     }
 ```
 
+`GetUnwindInfo` gets the Windows style unwind data in the form of `RUNTIME_FUNCTION` which has a platform dependent implementation. The ExecutionManager delegates to the JitManager implementations as the unwind infos (`RUNTIME_FUNCTION`) are stored differently on jitted and R2R code.
+
+* For jitted code (`EEJitManager`) a list of sorted `RUNTIME_FUNCTION` are stored on the `RealCodeHeader` which is accessed in the same was as `GetMethodInfo` described above. The correct `RUNTIME_FUNCTION` is found by binary searching the list based on IP.
+
+* For R2R code (`ReadyToRunJitManager`), a list of sorted `RUNTIME_FUNCTION` are stored on the module's `ReadyToRunInfo`. This is accessed as described above for `GetMethodInfo`. Again, the relevant `RUNTIME_FUNCTION` is found by binary searching the list based on IP.
+
+Unwind info (`RUNTIME_FUNCTION`) use relative addressing. For managed code, these values are relative to the start of the code's containing range in the RangeSectionMap (described below). This could be the beginning of a `CodeHeap` for jitted code or the base address of the loaded image for ReadyToRun code.
+`GetUnwindInfoBaseAddress` finds this base address for a given `CodeBlockHandle`.
+
 ### RangeSectionMap
 
 The range section map logically partitions the entire 32-bit or 64-bit addressable space into chunks.

docs/design/datacontracts/StackWalk.md

@@ -0,0 +1,246 @@
+# Contract StackWalk
+
+This contract encapsulates support for walking the stack of managed threads.
+
+## APIs of contract
+
+```csharp
+public interface IStackDataFrameHandle { };
+```
+
+```csharp
+// Creates a stack walk and returns a handle
+IEnumerable<IStackDataFrameHandle> CreateStackWalk(ThreadData threadData);
+
+// Gets the thread context at the given stack dataframe.
+byte[] GetRawContext(IStackDataFrameHandle stackDataFrameHandle);
+// Gets the Frame address at the given stack dataframe. Returns TargetPointer.Null if the current dataframe does not have a valid Frame.
+TargetPointer GetFrameAddress(IStackDataFrameHandle stackDataFrameHandle);
+```
+
+## Version 1
+To create a full walk of the managed stack, two types of 'stacks' must be read.
+
+1. True call frames on the thread's stack
+2. Capital "F" Frames (referred to as Frames as opposed to frames) which are used by the runtime for book keeping purposes.
+
+Capital "F" Frames are pushed and popped to a singly-linked list on the runtime's Thread object and are accessible using the [IThread](./Thread.md) contract. These capital "F" Frames are allocated within a functions call frame, meaning they also live on the stack. A subset of Frame types store extra data allowing us to recover a portion of the context from when they were created For our purposes, these are relevant because they mark every transition where managed code calls native code. For more information about Frames see: [BOTR Stack Walking](https://github.com/dotnet/runtime/blob/44b7251f94772c69c2efb9daa7b69979d7ddd001/docs/design/coreclr/botr/stackwalking.md).
+
+Unwinding call frames on the stack usually requires an OS specific implementation. However, in our particular circumstance of unwinding only **managed function** call frames, the runtime uses Windows style unwind logic/codes for all platforms (this isn't true for NativeAOT). Therefore we can delegate to the existing native unwinding code located in `src/coreclr/unwinder/`. For more information on the Windows unwinding algorithm and unwind codes see the following docs:
+
+* [Windows x64](https://learn.microsoft.com/en-us/cpp/build/exception-handling-x64)
+* [Windows ARM64](https://learn.microsoft.com/en-us/cpp/build/arm64-exception-handling)
+
+This contract depends on the following descriptors:
+
+| Data Descriptor Name | Field | Meaning |
+| --- | --- | --- |
+| `Frame` | `Next` | Pointer to next from on linked list |
+| `InlinedCallFrame` | `CallSiteSP` | SP saved in Frame |
+| `InlinedCallFrame` | `CallerReturnAddress` | Return address saved in Frame |
+| `InlinedCallFrame` | `CalleeSavedFP` | FP saved in Frame |
+| `SoftwareExceptionFrame` | `TargetContext` | Context object saved in Frame |
+| `SoftwareExceptionFrame` | `ReturnAddress` | Return address saved in Frame |
+
+Global variables used:
+| Global Name | Type | Purpose |
+| --- | --- | --- |
+| For each FrameType `<frameType>`, `<frameType>##Identifier` | FrameIdentifier enum value | Identifier used to determine concrete type of Frames |
+
+Contracts used:
+| Contract Name |
+| --- |
+| `ExecutionManager` |
+| `Thread` |
+
+
+### Stackwalk Algorithm
+The intuition for walking a managed stack is relatively simply: unwind managed portions of the stack until we hit native code then use capital "F" Frames as checkpoints to get into new sections of managed code. Because Frames are added at each point before managed code (higher SP value) calls native code (lower SP values), we are guaranteed that a Frame exists at the top (lower SP value) of each managed call frame run.
+
+In reality, the actual algorithm is a little more complex fow two reasons. It requires pausing to return the current context and Frame at certain points and it checks for "skipped Frames" which can occur if an capital "F" Frame is allocated in a managed stack frame (e.g. an inlined P/Invoke call).
+
+1. Setup
+    1. Set the current context `currContext` to be the thread's context. Fetched as part of the [ICorDebugDataTarget](https://learn.microsoft.com/en-us/dotnet/framework/unmanaged-api/debugging/icordebugdatatarget-getthreadcontext-method) COM interface.
+    2. Create a stack of the thread's capital "F" Frames `frameStack`.
+2. **Return the current context**.
+3. While the `currContext` is in managed code or `frameStack` is not empty:
+    1. If `currContext` is native code, pop the top Frame from `frameStack` update the context using the popped Frame. **Return the updated context** and **go to step 3**.
+    2. If `frameStack` is not empty, check for skipped Frames. Peek `frameStack` to find a Frame `frame`. Compare the address of `frame` (allocated on the stack) with the caller of the current context's stack pointer (found by unwinding current context one iteration).
+    If the address of the `frame` is less than the caller's stack pointer, **return the current context**, pop the top Frame from `frameStack`, and **go to step 3**.
+    3. Unwind `currContext` using the Windows style unwinder. **Return the current context**.
+
+
+#### Simple Example
+
+In this example we walk through the algorithm without instances of skipped Frames.
+
+Given the following call stack and capital "F" Frames linked list, we can apply the above algorithm.
+<table>
+<tr>
+<th> Call Stack (growing down)</th>
+<th> Capital "F" Frames Linked List </th>
+</tr>
+<tr>
+<td>
+
+```
+Managed Call:   -----------
+
+   |  Native   | <- <A>'s SP
+ - |           |
+   |-----------| <- <B>'s SP
+   |           |
+   |  Managed  |
+   |           |
+   |-----------| <- <C>'s SP
+   |           |
+   |  Native   |
+ + |           |
+   | StackBase |
+```
+</td>
+<td>
+
+```
+SoftwareExceptionFrame
+   (Context = <B>)
+
+          ||
+          \/
+
+   NULL TERMINATOR
+```
+
+</td>
+</tr>
+</table>
+
+1. (1) Set `currContext` to the thread context `<A>`. Create a stack of Frames `frameStack`.
+2. (2) Return the `currContext` which has the threads context.
+3. (3) `currContext` is in unmanaged code (native) however, because `frameStack` is not empty, we begin processing the context.
+4. (3.1) Since `currContext` is unmanaged. We pop the SoftwareExceptionFrame from `frameStack` and use it to update `currContext`. The SoftwareExceptionFrame is holding context `<B>` which we set `currContext` to. Return the current context and go back to step 3.
+5. (3) Now `currContext` is in managed code as shown by `<B>`'s SP. Therefore, we begin to process the context.
+6. (3.1) Since `currContext` is managed, skip step 3.1.
+7. (3.2) Since `frameStack` is empty, we do not check for skipped Frames.
+8. (3.3) Unwind `currContext` a single iteration to `<C>` and return the current context.
+9. (3) `currContext` is now at unmanaged (native) code and `frameStack` is empty. Therefore we are done.
+
+The following C# code could yield a stack similar to the example above:
+```csharp
+void foo()
+{
+    // Call native code or function that calls down to native.
+    Console.ReadLine();
+    // Capture stack trace while inside native code.
+}
+```
+
+#### Skipped Frame Example
+The skipped Frame check is important when managed code calls managed code through an unmanaged boundary.
+This occurs when calling a function marked with `[UnmanagedCallersOnly]` as an unmanaged delegate from a managed caller.
+In this case, if we ignored the skipped Frame check we would miss the unmanaged boundary.
+
+Given the following call stack and capital "F" Frames linked list, we can apply the above algorithm.
+<table>
+<tr>
+<th> Call Stack (growing down)</th>
+<th> Capital "F" Frames Linked List </th>
+</tr>
+<tr>
+<td>
+
+```
+Unmanaged Call: -X-X-X-X-X-
+Managed Call:   -----------
+InlinedCallFrame location: [ICF]
+
+   |  Managed  | <- <A>'s SP
+ - |           |
+   |           |
+   |-X-X-X-X-X-| <- <B>'s SP
+   |   [ICF]   |
+   |  Managed  |
+   |           |
+   |-----------| <- <C>'s SP
+   |           |
+   |  Native   |
+ + |           |
+   | StackBase |
+```
+</td>
+<td>
+
+```
+InlinedCallFrame
+ (Context = <B>)
+
+      ||
+      \/
+
+ NULL TERMINATOR
+```
+
+</td>
+</tr>
+</table>
+
+1. (1) Set `currContext` to the thread context `<A>`. Create a stack of Frames `frameStack`.
+2. (2) Return the `currContext` which has the threads context.
+3. (3) Since `currContext` is in managed code, we begin to process the context.
+4. (3.1) Since `currContext` is managed, skip step 3.1.
+5. (3.2) Check for skipped Frames. Copy `currContext` into `parentContext` and unwind `parentContext` once using the Windows style unwinder. As seen from the call stack, unwinding `currContext=<A>` will yield `<C>`. We peek the top of `frameStack` and find an InlinedCallFrame (shown in call stack above as `[ICF]`). Since `parentContext`'s SP is greater than the address of `[ICF]` there are no skipped Frames.
+6. (3.3) Unwind `currContext` a single iteration to `<B>` and return the current context.
+7. (3) Since `currContext` is still in managed code, we continue processing the context.
+8. (3.1) Since `currContext` is managed, skip step 3.1.
+9. (3.2) Check for skipped Frames. Copy `currContext` into `parentContext` and unwind `parentContext` once using the Windows style unwinder. As seen from the call stack, unwinding `currContext=<B>` will yield `<C>`. We peek the top of `frameStack` and find an InlinedCallFrame (shown in call stack above as `[ICF]`). This time the the address of `[ICF]` is less than `parentContext`'s SP. Therefore we return the current context then pop the InlinedCallFrame from `frameStack` which is now empty and return to step 3.
+10. (3) Since `currContext` is still in managed code, we continue processing the context.
+11. (3.1) Since `currContext` is managed, skip step 3.1.
+12. (3.2) Since `frameStack` is empty, we do not check for skipped Frames.
+13. (3.3) Unwind `currContext` a single iteration to `<C>` and return the current context.
+14. (3) `currContext` is now at unmanaged (native) code and `frameStack` is empty. Therefore we are done.
+
+The following C# code could yield a stack similar to the example above:
+```csharp
+void foo()
+{
+    var fptr = (delegate* unmanaged<void>)&bar;
+    fptr();
+}
+
+[UnmanagedCallersOnly]
+private static void bar()
+{
+    // Do something
+    // Capture stack trace while in here
+}
+```
+
+### APIs
+
+The majority of the contract's complexity is the stack walking algorithm (detailed above) implemented as part of `CreateStackWalk`.
+The `IEnumerable<IStackDataFrame>` return value is computed lazily.
+
+```csharp
+IEnumerable<IStackDataFrameHandle> CreateStackWalk(ThreadData threadData);
+```
+
+The rest of the APIs convey state about the stack walk at a given point which fall out of the stack walking algorithm relatively simply.
+
+`GetRawContext` Retrieves the raw Windows style thread context of the current frame as a byte array. The size and shape of the context is platform dependent.
+
+* On Windows the context is defined directly in Windows header `winnt.h`. See [CONTEXT structure](https://learn.microsoft.com/en-us/windows/win32/api/winnt/ns-winnt-context) for more info.
+* On non-Windows platform the context's are defined in `src/coreclr/pal/inc/pal.h` and should mimic the Windows structure.
+
+This context is not guaranteed to be complete. Not all capital "F" Frames store the entire context, some only store the IP/SP/FP. Therefore, at points where the context is based on these Frames it will be incomplete.
+```csharp
+byte[] GetRawContext(IStackDataFrameHandle stackDataFrameHandle);
+```
+
+
+`GetFrameAddress` gets the address of the current capital "F" Frame. This is only valid if the `IStackDataFrameHandle` is at a point where the context is based on a capital "F" Frame. For example, it is not valid when when the current context was created by using the stack frame unwinder.
+If the Frame is not valid, returns `TargetPointer.Null`.
+
+```csharp
+TargetPointer GetFrameAddress(IStackDataFrameHandle stackDataFrameHandle);
+```
+

eng/native/functions.cmake

@@ -554,11 +554,11 @@ function(install_static_library targetName destination component)
   endif()
 endfunction()
 
-# install_clr(TARGETS targetName [targetName2 ...] [DESTINATIONS destination [destination2 ...]] [COMPONENT componentName])
+# install_clr(TARGETS targetName [targetName2 ...] [DESTINATIONS destination [destination2 ...]] [COMPONENT componentName] [INSTALL_ALL_ARTIFACTS])
 function(install_clr)
   set(multiValueArgs TARGETS DESTINATIONS)
   set(singleValueArgs COMPONENT)
-  set(options "")
+  set(options INSTALL_ALL_ARTIFACTS)
   cmake_parse_arguments(INSTALL_CLR "${options}" "${singleValueArgs}" "${multiValueArgs}" ${ARGV})
 
   if ("${INSTALL_CLR_TARGETS}" STREQUAL "")
@@ -594,9 +594,14 @@ function(install_clr)
     endif()
 
     foreach(destination ${destinations})
-      # We don't need to install the export libraries for our DLLs
-      # since they won't be directly linked against.
-      install(PROGRAMS $<TARGET_FILE:${targetName}> DESTINATION ${destination} COMPONENT ${INSTALL_CLR_COMPONENT})
+        # Install the export libraries for static libraries.
+      if (${INSTALL_CLR_INSTALL_ALL_ARTIFACTS})
+        install(TARGETS ${targetName} DESTINATION ${destination} COMPONENT ${INSTALL_CLR_COMPONENT})
+      else()
+        # We don't need to install the export libraries for our DLLs
+        # since they won't be directly linked against.
+        install(PROGRAMS $<TARGET_FILE:${targetName}> DESTINATION ${destination} COMPONENT ${INSTALL_CLR_COMPONENT})
+      endif()
       if (NOT "${symbolFile}" STREQUAL "")
         install_symbol_file(${symbolFile} ${destination} COMPONENT ${INSTALL_CLR_COMPONENT})
       endif()

eng/pipelines/runtime-official.yml

@@ -367,7 +367,7 @@ extends:
           - windows_x64
           jobParameters:
             templatePath: 'templates-official'
-            buildArgs: -s tools+libs -pack -c $(_BuildConfig) /p:TestAssemblies=false /p:TestPackages=true
+            buildArgs: -s tools.illink+libs -pack -c $(_BuildConfig) /p:TestAssemblies=false /p:TestPackages=true
             nameSuffix: Libraries_WithPackages
             isOfficialBuild: ${{ variables.isOfficialBuild }}
             postBuildSteps:

eng/pipelines/runtime.yml

@@ -1244,7 +1244,7 @@ extends:
           platforms:
           - windows_x64
           jobParameters:
-            buildArgs: -test -s tools+libs+libs.tests -pack -c $(_BuildConfig) /p:TestAssemblies=false /p:TestPackages=true
+            buildArgs: -test -s tools.illink+libs+libs.tests -pack -c $(_BuildConfig) /p:TestAssemblies=false /p:TestPackages=true
             nameSuffix: Libraries_WithPackages
             timeoutInMinutes: 150
             condition: >-

src/coreclr/debug/daccess/cdac.cpp

@@ -25,7 +25,15 @@ namespace
         iter++;
         path.Truncate(iter);
         path.Append(CDAC_LIB_NAME);
+
+#ifdef HOST_WINDOWS
+        // LOAD_LIBRARY_SEARCH_DLL_LOAD_DIR tells the native windows loader to load dependencies
+        // from the same directory as cdacreader.dll. Once the native portions of the cDAC
+        // are statically linked, this won't be required.
+        *phCDAC = CLRLoadLibraryEx(path.GetUnicode(), NULL, LOAD_LIBRARY_SEARCH_DLL_LOAD_DIR);
+#else // !HOST_WINDOWS
         *phCDAC = CLRLoadLibrary(path.GetUnicode());
+#endif // HOST_WINDOWS
         if (*phCDAC == NULL)
             return false;
 
@@ -41,6 +49,26 @@ namespace
 
         return S_OK;
     }
+
+    int ReadThreadContext(uint32_t threadId, uint32_t contextFlags, uint32_t contextBufferSize, uint8_t* contextBuffer, void* context)
+    {
+        ICorDebugDataTarget* target = reinterpret_cast<ICorDebugDataTarget*>(context);
+        HRESULT hr = target->GetThreadContext(threadId, contextFlags, contextBufferSize, contextBuffer);
+        if (FAILED(hr))
+            return hr;
+
+        return S_OK;
+    }
+
+    int GetPlatform(uint32_t* platform, void* context)
+    {
+        ICorDebugDataTarget* target = reinterpret_cast<ICorDebugDataTarget*>(context);
+        HRESULT hr = target->GetPlatform((CorDebugPlatform*)platform);
+        if (FAILED(hr))
+            return hr;
+
+        return S_OK;
+    }
 }
 
 CDAC CDAC::Create(uint64_t descriptorAddr, ICorDebugDataTarget* target, IUnknown* legacyImpl)
@@ -53,7 +81,7 @@ CDAC CDAC::Create(uint64_t descriptorAddr, ICorDebugDataTarget* target, IUnknown
     _ASSERTE(init != nullptr);
 
     intptr_t handle;
-    if (init(descriptorAddr, &ReadFromTargetCallback, target, &handle) != 0)
+    if (init(descriptorAddr, &ReadFromTargetCallback, &ReadThreadContext, &GetPlatform, target, &handle) != 0)
     {
         ::FreeLibrary(cdacLib);
         return {};