Add recursion / thread interaction guard in LogInfoForFatalError

[trylek]

Based on local instrumentation I introduced while investigating
issues related to the switch-over to compile System.Private.CoreLib
using Crossgen2 I'm proposing to harden fatal exception handling
against nested and concurrent fatal error occurrences.

Thanks

Tomas

[jkotas]

This should be user-centric error message, without references to internal implementation details like LogInfoForFatalError

[trylek]

Thanks Jan for the suggestion. I have reformulated it to Repeated fatal crash, please let me know if you have additional suggestions on improving the message.

[janvorli]

I would slightly prefer "Fatal error while logging another fatal error" or "Fatal error while logging fatal error". @jkotas what do you prefer?

[jkotas]

I agree with @janvorli suggestion if we still need error message after addressing the feedback,

[jkotas]

Can we end up with Repeated fatal crash skipped to avoid infinite recursion and interaction between crashing threads. printed by this thread, and nothing printed by the primary crashing thread here?

Do we need to wait for the first thread to finish logging the error here, similar to what the stack overflow logging does?

[trylek]

I have further refined the logging and locking and I've created a simple unit test for the parallel crash case. I'm not sure whether there's any easy way to unit test the recursive case, I guess that would require somehow artificially crash the stack unwinder or something. Can you please take another look when you have a chance?

[jkotas]

It may be useful to test this with artificially induced crash to verify that it really works as intended.

[AntonLapounov]

Interlocked.Increment should be used to avoid race condition.

[AntonLapounov]

Also I would move the increment below the string.Format call.

[trylek]

I have changed the increment operator to Interlocked.Increment in 4th commit but I left it above the string.Format call because I need the value returned from the method as the thread ID to print.

[AntonLapounov]

Nit: not necessary.

[trylek]

Copy & paste - removed in 4th commit, thanks for spotting.

[AntonLapounov]

Since the threadMap array is not used anywhere, you could simplify to:

        for (int threadIndex = ThreadCount; --threadIndex >= 0; )
        {
            new Thread(CrashInParallel).Start();
        }

[trylek]

Good point, thanks, removed in 4th commit.

[janvorli]

I would remove this message, it would just mess up the logged error details below.

[trylek]

Removed in 4th commit.

[janvorli]

We don't want to sleep forever. If this was the main thread, the application would hang. So we'll need some special value in the s_crashingThread or an extra static local to indicate that the logging has completed. If you prefer using the special value in s_crashingThread, then since the thread id can be anything, I would switch to using the Thread* instead (the result from GetCurrentThread) and use InterlockedCompareExchangeT. The special value can then be either some value that cannot be a pointer like "1", the original value with the lowest bit set to 1 or something along these lines.

I would also use much smaller sleep value so that the process exit is not visibly delayed once the logging is done. The stack overflow uses Sleep(50), so it would be nice to use the same wait here.

[trylek]

Fixed in 4th commit, thanks for the detailed explanation.

[janvorli]

Can you please change the message based on one of my suggestion?

[trylek]

Fixed in 4th commit.

[janvorli]

It would be good to also have another test to exercise the case when the failfast comes from several secondary threads.

[trylek]

Well, as of the 3rd commit that's exactly what the test does - it hangs on the main thread and crashes all the worker threads in parallel. I have added two more variations - one to just crash the main thread and another to crash both the main thread and the worker threads. Please let me know if you believe we need to further improve the test coverage.