yberreby · June 28, 2015 14:03
diff --git a/mod.rs b/mod.rs
 // Copyright 2013 The Rust Project Developers. See the COPYRIGHT
 // file at the top-level directory of this distribution and at
 // http://rust-lang.org/COPYRIGHT.
 //
 // Licensed under the Apache License, Version 2.0 <LICENSE-APACHE or
 // http://www.apache.org/licenses/LICENSE-2.0> or the MIT license
 // <LICENSE-MIT or http://opensource.org/licenses/MIT>, at your
 // option. This file may not be copied, modified, or distributed
 // except according to those terms.

 //! Implementation of Rust stack unwinding
 //!
 //! For background on exception handling and stack unwinding please see
 //! "Exception Handling in LLVM" (llvm.org/docs/ExceptionHandling.html) and
 //! documents linked from it.
 //! These are also good reads:
 //!     http://theofilos.cs.columbia.edu/blog/2013/09/22/base_abi/
 //!     http://monoinfinito.wordpress.com/series/exception-handling-in-c/
 //!     http://www.airs.com/blog/index.php?s=exception+frames
 //!
 //! ## A brief summary
 //!
 //! Exception handling happens in two phases: a search phase and a cleanup phase.
 //!
 //! In both phases the unwinder walks stack frames from top to bottom using
 //! information from the stack frame unwind sections of the current process's
 //! modules ("module" here refers to an OS module, i.e. an executable or a
 //! dynamic library).
 //!
 //! For each stack frame, it invokes the associated "personality routine", whose
 //! address is also stored in the unwind info section.
 //!
 //! In the search phase, the job of a personality routine is to examine exception
 //! object being thrown, and to decide whether it should be caught at that stack
 //! frame.  Once the handler frame has been identified, cleanup phase begins.
 //!
 //! In the cleanup phase, personality routines invoke cleanup code associated
 //! with their stack frames (i.e. destructors).  Once stack has been unwound down
 //! to the handler frame level, unwinding stops and the last personality routine
 //! transfers control to its catch block.
 //!
 //! ## Frame unwind info registration
 //!
 //! Each module has its own frame unwind info section (usually ".eh_frame"), and
 //! unwinder needs to know about all of them in order for unwinding to be able to
 //! cross module boundaries.
 //!
 //! On some platforms, like Linux, this is achieved by dynamically enumerating
 //! currently loaded modules via the dl_iterate_phdr() API and finding all
 //! .eh_frame sections.
 //!
 //! Others, like Windows, require modules to actively register their unwind info
 //! sections by calling __register_frame_info() API at startup.  In the latter
 //! case it is essential that there is only one copy of the unwinder runtime in
 //! the process.  This is usually achieved by linking to the dynamic version of
 //! the unwind runtime.
 //!
 //! Currently Rust uses unwind runtime provided by libgcc.

 #![allow(dead_code)]
 #![allow(unused_imports)]

 use prelude::v1::*;

 use any::Any;
 use boxed;
 use cell::Cell;
 use cmp;
 use panicking;
 use fmt;
 use intrinsics;
 use libc::c_void;
 use mem;
 use sync::atomic::{self, Ordering};
 use sys_common::mutex::Mutex;

 // The actual unwinding implementation is cfg'd here, and we've got two current
 // implementations. One goes through SEH on Windows and the other goes through
 // libgcc via the libunwind-like API.
 #[cfg(target_env = "msvc")] #[path = "seh.rs"] #[doc(hidden)]
 pub mod imp;
 #[cfg(not(target_env = "msvc"))] #[path = "gcc.rs"] #[doc(hidden)]
 pub mod imp;

 pub type Callback = fn(msg: &(Any + Send), file: &'static str, line: u32);

 // Variables used for invoking callbacks when a thread starts to unwind.
 //
 // For more information, see below.
 const MAX_CALLBACKS: usize = 16;
 static CALLBACKS: [atomic::AtomicUsize; MAX_CALLBACKS] =
        [atomic::AtomicUsize::new(0), atomic::AtomicUsize::new(0),
         atomic::AtomicUsize::new(0), atomic::AtomicUsize::new(0),
         atomic::AtomicUsize::new(0), atomic::AtomicUsize::new(0),
         atomic::AtomicUsize::new(0), atomic::AtomicUsize::new(0),
         atomic::AtomicUsize::new(0), atomic::AtomicUsize::new(0),
         atomic::AtomicUsize::new(0), atomic::AtomicUsize::new(0),
         atomic::AtomicUsize::new(0), atomic::AtomicUsize::new(0),
         atomic::AtomicUsize::new(0), atomic::AtomicUsize::new(0)];
 static CALLBACK_CNT: atomic::AtomicUsize = atomic::AtomicUsize::new(0);

 thread_local! { static PANICKING: Cell<bool> = Cell::new(false) }
 thread_local! { static ON_PANIC: Cell<Callback> = Cell::new(panicking::on_panic) }


 #[link(name = "rustrt_native", kind = "static")]
 #[cfg(not(test))]
 extern {}

 /// Invoke a closure, capturing the cause of panic if one occurs.
 ///
 /// This function will return `Ok(())` if the closure did not panic, and will
 /// return `Err(cause)` if the closure panics. The `cause` returned is the
 /// object with which panic was originally invoked.
 ///
 /// This function also is unsafe for a variety of reasons:
 ///
 /// * This is not safe to call in a nested fashion. The unwinding
 ///   interface for Rust is designed to have at most one try/catch block per
 ///   thread, not multiple. No runtime checking is currently performed to uphold
 ///   this invariant, so this function is not safe. A nested try/catch block
 ///   may result in corruption of the outer try/catch block's state, especially
 ///   if this is used within a thread itself.
 ///
 /// * It is not sound to trigger unwinding while already unwinding. Rust threads
 ///   have runtime checks in place to ensure this invariant, but it is not
 ///   guaranteed that a rust thread is in place when invoking this function.
 ///   Unwinding twice can lead to resource leaks where some destructors are not
 ///   run.
 pub unsafe fn try<F: FnOnce()>(f: F) -> Result<(), Box<Any + Send>> {
    let mut f = Some(f);
    return inner_try(try_fn::<F>, &mut f as *mut _ as *mut c_void);

    // If an inner function were not used here, then this generic function `try`
    // uses the native symbol `rust_try`, for which the code is statically
    // linked into the standard library. This means that the DLL for the
    // standard library must have `rust_try` as an exposed symbol that
    // downstream crates can link against (because monomorphizations of `try` in
    // downstream crates will have a reference to the `rust_try` symbol).
    //
    // On MSVC this requires the symbol `rust_try` to be tagged with
    // `dllexport`, but it's easier to not have conditional `src/rt/rust_try.ll`
    // files and instead just have this non-generic shim the compiler can take
    // care of exposing correctly.
    unsafe fn inner_try(f: extern fn(*mut c_void), data: *mut c_void)
                        -> Result<(), Box<Any + Send>> {
        let prev = PANICKING.with(|s| s.get());
        PANICKING.with(|s| s.set(false));
        let ep = rust_try(f, data);
        PANICKING.with(|s| s.set(prev));
        if ep.is_null() {
            Ok(())
        } else {
            Err(imp::cleanup(ep))
        }
    }

    extern fn try_fn<F: FnOnce()>(opt_closure: *mut c_void) {
        let opt_closure = opt_closure as *mut Option<F>;
        unsafe { (*opt_closure).take().unwrap()(); }
    }

    extern {
        // Rust's try-catch
        // When f(...) returns normally, the return value is null.
        // When f(...) throws, the return value is a pointer to the caught
        // exception object.
        fn rust_try(f: extern fn(*mut c_void),
                    data: *mut c_void) -> *mut c_void;
    }
 }

 /// Determines whether the current thread is unwinding because of panic.
 pub fn panicking() -> bool {
    PANICKING.with(|s| s.get())
 }

 // An uninlined, unmangled function upon which to slap yer breakpoints
 #[inline(never)]
 #[no_mangle]
 #[allow(private_no_mangle_fns)]
 fn rust_panic(cause: Box<Any + Send + 'static>) -> ! {
    rtdebug!("begin_unwind()");
    unsafe {
        imp::panic(cause)
    }
 }

 #[cfg(not(test))]
 /// Entry point of panic from the libcore crate.
 #[lang = "panic_fmt"]
 pub extern fn rust_begin_unwind(msg: fmt::Arguments,
                                file: &'static str, line: u32) -> ! {
    begin_unwind_fmt(msg, &(file, line))
 }

 /// The entry point for unwinding with a formatted message.
 ///
 /// This is designed to reduce the amount of code required at the call
 /// site as much as possible (so that `panic!()` has as low an impact
 /// on (e.g.) the inlining of other functions as possible), by moving
 /// the actual formatting into this shared place.
 #[inline(never)] #[cold]
 pub fn begin_unwind_fmt(msg: fmt::Arguments, file_line: &(&'static str, u32)) -> ! {
    use fmt::Write;

    // We do two allocations here, unfortunately. But (a) they're
    // required with the current scheme, and (b) we don't handle
    // panic + OOM properly anyway (see comment in begin_unwind
    // below).

    let mut s = String::new();
    let _ = s.write_fmt(msg);
    begin_unwind_inner(Box::new(s), file_line)
 }

 /// This is the entry point of unwinding for panic!() and assert!().
 #[inline(never)] #[cold] // avoid code bloat at the call sites as much as possible
 pub fn begin_unwind<M: Any + Send>(msg: M, file_line: &(&'static str, u32)) -> ! {
    // Note that this should be the only allocation performed in this code path.
    // Currently this means that panic!() on OOM will invoke this code path,
    // but then again we're not really ready for panic on OOM anyway. If
    // we do start doing this, then we should propagate this allocation to
    // be performed in the parent of this thread instead of the thread that's
    // panicking.

    // see below for why we do the `Any` coercion here.
    begin_unwind_inner(Box::new(msg), file_line)
 }

 /// The core of the unwinding.
 ///
 /// This is non-generic to avoid instantiation bloat in other crates
 /// (which makes compilation of small crates noticeably slower). (Note:
 /// we need the `Any` object anyway, we're not just creating it to
 /// avoid being generic.)
 ///
 /// Doing this split took the LLVM IR line counts of `fn main() { panic!()
 /// }` from ~1900/3700 (-O/no opts) to 180/590.
 #[inline(never)] #[cold] // this is the slow path, please never inline this
 fn begin_unwind_inner(msg: Box<Any + Send>,
                      file_line: &(&'static str, u32)) -> ! {
    let (file, line) = *file_line;
    ON_PANIC.with(|cb_cell| cb_cell.get()(&*msg, file, line));

    // First, invoke call the user-defined callbacks triggered on thread panic.
    //
    // By the time that we see a callback has been registered (by reading
    // MAX_CALLBACKS), the actual callback itself may have not been stored yet,
    // so we just chalk it up to a race condition and move on to the next
    // callback. Additionally, CALLBACK_CNT may briefly be higher than
    // MAX_CALLBACKS, so we're sure to clamp it as necessary.
    let callbacks = {
        let amt = CALLBACK_CNT.load(Ordering::SeqCst);
        &CALLBACKS[..cmp::min(amt, MAX_CALLBACKS)]
    };
    for cb in callbacks {
        match cb.load(Ordering::SeqCst) {
            0 => {}
            n => {
                let f: Callback = unsafe { mem::transmute(n) };
                let (file, line) = *file_line;
                f(&*msg, file, line);
            }
        }
    };

    // Now that we've run all the necessary unwind callbacks, we actually
    // perform the unwinding.
    if panicking() {
        // If a thread panics while it's already unwinding then we
        // have limited options. Currently our preference is to
        // just abort. In the future we may consider resuming
        // unwinding or otherwise exiting the thread cleanly.
        rterrln!("thread panicked while panicking. aborting.");
        unsafe { intrinsics::abort() }
    }
    PANICKING.with(|s| s.set(true));
    rust_panic(msg);
 }

 /// Register a callback to be invoked when a thread unwinds.
 ///
 /// This is an unsafe and experimental API which allows for an arbitrary
 /// callback to be invoked when a thread panics. This callback is invoked on both
 /// the initial unwinding and a double unwinding if one occurs. Additionally,
 /// the local `Thread` will be in place for the duration of the callback, and
 /// the callback must ensure that it remains in place once the callback returns.
 ///
 /// Only a limited number of callbacks can be registered, and this function
 /// returns whether the callback was successfully registered or not. It is not
 /// currently possible to unregister a callback once it has been registered.
 pub unsafe fn register(f: Callback) -> bool {
    match CALLBACK_CNT.fetch_add(1, Ordering::SeqCst) {
        // The invocation code has knowledge of this window where the count has
        // been incremented, but the callback has not been stored. We're
        // guaranteed that the slot we're storing into is 0.
        n if n < MAX_CALLBACKS => {
            let prev = CALLBACKS[n].swap(mem::transmute(f), Ordering::SeqCst);
            rtassert!(prev == 0);
            true
        }
        // If we accidentally bumped the count too high, pull it back.
        _ => {
            CALLBACK_CNT.store(MAX_CALLBACKS, Ordering::SeqCst);
            false
        }
    }
 }

 pub fn set_panic_handler(new_handler: Callback) {
  ON_PANIC.with(|cb_cell| cb_cell.set(new_handler));
 }
	// Copyright 2013 The Rust Project Developers. See the COPYRIGHT
	// file at the top-level directory of this distribution and at
	// http://rust-lang.org/COPYRIGHT.
	//
	// Licensed under the Apache License, Version 2.0 <LICENSE-APACHE or
	// http://www.apache.org/licenses/LICENSE-2.0> or the MIT license
	// <LICENSE-MIT or http://opensource.org/licenses/MIT>, at your
	// option. This file may not be copied, modified, or distributed
	// except according to those terms.

	//! Implementation of Rust stack unwinding
	//!
	//! For background on exception handling and stack unwinding please see
	//! "Exception Handling in LLVM" (llvm.org/docs/ExceptionHandling.html) and
	//! documents linked from it.
	//! These are also good reads:
	//! http://theofilos.cs.columbia.edu/blog/2013/09/22/base_abi/
	//! http://monoinfinito.wordpress.com/series/exception-handling-in-c/
	//! http://www.airs.com/blog/index.php?s=exception+frames
	//!
	//! ## A brief summary
	//!
	//! Exception handling happens in two phases: a search phase and a cleanup phase.
	//!
	//! In both phases the unwinder walks stack frames from top to bottom using
	//! information from the stack frame unwind sections of the current process's
	//! modules ("module" here refers to an OS module, i.e. an executable or a
	//! dynamic library).
	//!
	//! For each stack frame, it invokes the associated "personality routine", whose
	//! address is also stored in the unwind info section.
	//!
	//! In the search phase, the job of a personality routine is to examine exception
	//! object being thrown, and to decide whether it should be caught at that stack
	//! frame. Once the handler frame has been identified, cleanup phase begins.
	//!
	//! In the cleanup phase, personality routines invoke cleanup code associated
	//! with their stack frames (i.e. destructors). Once stack has been unwound down
	//! to the handler frame level, unwinding stops and the last personality routine
	//! transfers control to its catch block.
	//!
	//! ## Frame unwind info registration
	//!
	//! Each module has its own frame unwind info section (usually ".eh_frame"), and
	//! unwinder needs to know about all of them in order for unwinding to be able to
	//! cross module boundaries.
	//!
	//! On some platforms, like Linux, this is achieved by dynamically enumerating
	//! currently loaded modules via the dl_iterate_phdr() API and finding all
	//! .eh_frame sections.
	//!
	//! Others, like Windows, require modules to actively register their unwind info
	//! sections by calling __register_frame_info() API at startup. In the latter
	//! case it is essential that there is only one copy of the unwinder runtime in
	//! the process. This is usually achieved by linking to the dynamic version of
	//! the unwind runtime.
	//!
	//! Currently Rust uses unwind runtime provided by libgcc.

	#![allow(dead_code)]
	#![allow(unused_imports)]

	use prelude::v1::*;

	use any::Any;
	use boxed;
	use cell::Cell;
	use cmp;
	use panicking;
	use fmt;
	use intrinsics;
	use libc::c_void;
	use mem;
	use sync::atomic::{self, Ordering};
	use sys_common::mutex::Mutex;

	// The actual unwinding implementation is cfg'd here, and we've got two current
	// implementations. One goes through SEH on Windows and the other goes through
	// libgcc via the libunwind-like API.
	#[cfg(target_env = "msvc")] #[path = "seh.rs"] #[doc(hidden)]
	pub mod imp;
	#[cfg(not(target_env = "msvc"))] #[path = "gcc.rs"] #[doc(hidden)]
	pub mod imp;

	pub type Callback = fn(msg: &(Any + Send), file: &'static str, line: u32);

	// Variables used for invoking callbacks when a thread starts to unwind.
	//
	// For more information, see below.
	const MAX_CALLBACKS: usize = 16;
	static CALLBACKS: [atomic::AtomicUsize; MAX_CALLBACKS] =
	[atomic::AtomicUsize::new(0), atomic::AtomicUsize::new(0),
	atomic::AtomicUsize::new(0), atomic::AtomicUsize::new(0),
	atomic::AtomicUsize::new(0), atomic::AtomicUsize::new(0),
	atomic::AtomicUsize::new(0), atomic::AtomicUsize::new(0),
	atomic::AtomicUsize::new(0), atomic::AtomicUsize::new(0),
	atomic::AtomicUsize::new(0), atomic::AtomicUsize::new(0),
	atomic::AtomicUsize::new(0), atomic::AtomicUsize::new(0),
	atomic::AtomicUsize::new(0), atomic::AtomicUsize::new(0)];
	static CALLBACK_CNT: atomic::AtomicUsize = atomic::AtomicUsize::new(0);

	thread_local! { static PANICKING: Cell<bool> = Cell::new(false) }
	thread_local! { static ON_PANIC: Cell<Callback> = Cell::new(panicking::on_panic) }


	#[link(name = "rustrt_native", kind = "static")]
	#[cfg(not(test))]
	extern {}

	/// Invoke a closure, capturing the cause of panic if one occurs.
	///
	/// This function will return `Ok(())` if the closure did not panic, and will
	/// return `Err(cause)` if the closure panics. The `cause` returned is the
	/// object with which panic was originally invoked.
	///
	/// This function also is unsafe for a variety of reasons:
	///
	/// * This is not safe to call in a nested fashion. The unwinding
	/// interface for Rust is designed to have at most one try/catch block per
	/// thread, not multiple. No runtime checking is currently performed to uphold
	/// this invariant, so this function is not safe. A nested try/catch block
	/// may result in corruption of the outer try/catch block's state, especially
	/// if this is used within a thread itself.
	///
	/// * It is not sound to trigger unwinding while already unwinding. Rust threads
	/// have runtime checks in place to ensure this invariant, but it is not
	/// guaranteed that a rust thread is in place when invoking this function.
	/// Unwinding twice can lead to resource leaks where some destructors are not
	/// run.
	pub unsafe fn try<F: FnOnce()>(f: F) -> Result<(), Box<Any + Send>> {
	let mut f = Some(f);
	return inner_try(try_fn::<F>, &mut f as mut _ as mut c_void);

	// If an inner function were not used here, then this generic function `try`
	// uses the native symbol `rust_try`, for which the code is statically
	// linked into the standard library. This means that the DLL for the
	// standard library must have `rust_try` as an exposed symbol that
	// downstream crates can link against (because monomorphizations of `try` in
	// downstream crates will have a reference to the `rust_try` symbol).
	//
	// On MSVC this requires the symbol `rust_try` to be tagged with
	// `dllexport`, but it's easier to not have conditional `src/rt/rust_try.ll`
	// files and instead just have this non-generic shim the compiler can take
	// care of exposing correctly.
	unsafe fn inner_try(f: extern fn(mut c_void), data: mut c_void)
	-> Result<(), Box<Any + Send>> {
	let prev = PANICKING.with(\|s\| s.get());
	PANICKING.with(\|s\| s.set(false));
	let ep = rust_try(f, data);
	PANICKING.with(\|s\| s.set(prev));
	if ep.is_null() {
	Ok(())
	} else {
	Err(imp::cleanup(ep))
	}
	}

	extern fn try_fn<F: FnOnce()>(opt_closure: *mut c_void) {
	let opt_closure = opt_closure as *mut Option<F>;
	unsafe { (*opt_closure).take().unwrap()(); }
	}

	extern {
	// Rust's try-catch
	// When f(...) returns normally, the return value is null.
	// When f(...) throws, the return value is a pointer to the caught
	// exception object.
	fn rust_try(f: extern fn(*mut c_void),
	data: mut c_void) -> mut c_void;
	}
	}

	/// Determines whether the current thread is unwinding because of panic.
	pub fn panicking() -> bool {
	PANICKING.with(\|s\| s.get())
	}

	// An uninlined, unmangled function upon which to slap yer breakpoints
	#[inline(never)]
	#[no_mangle]
	#[allow(private_no_mangle_fns)]
	fn rust_panic(cause: Box<Any + Send + 'static>) -> ! {
	rtdebug!("begin_unwind()");
	unsafe {
	imp::panic(cause)
	}
	}

	#[cfg(not(test))]
	/// Entry point of panic from the libcore crate.
	#[lang = "panic_fmt"]
	pub extern fn rust_begin_unwind(msg: fmt::Arguments,
	file: &'static str, line: u32) -> ! {
	begin_unwind_fmt(msg, &(file, line))
	}

	/// The entry point for unwinding with a formatted message.
	///
	/// This is designed to reduce the amount of code required at the call
	/// site as much as possible (so that `panic!()` has as low an impact
	/// on (e.g.) the inlining of other functions as possible), by moving
	/// the actual formatting into this shared place.
	#[inline(never)] #[cold]
	pub fn begin_unwind_fmt(msg: fmt::Arguments, file_line: &(&'static str, u32)) -> ! {
	use fmt::Write;

	// We do two allocations here, unfortunately. But (a) they're
	// required with the current scheme, and (b) we don't handle
	// panic + OOM properly anyway (see comment in begin_unwind
	// below).

	let mut s = String::new();
	let _ = s.write_fmt(msg);
	begin_unwind_inner(Box::new(s), file_line)
	}

	/// This is the entry point of unwinding for panic!() and assert!().
	#[inline(never)] #[cold] // avoid code bloat at the call sites as much as possible
	pub fn begin_unwind<M: Any + Send>(msg: M, file_line: &(&'static str, u32)) -> ! {
	// Note that this should be the only allocation performed in this code path.
	// Currently this means that panic!() on OOM will invoke this code path,
	// but then again we're not really ready for panic on OOM anyway. If
	// we do start doing this, then we should propagate this allocation to
	// be performed in the parent of this thread instead of the thread that's
	// panicking.

	// see below for why we do the `Any` coercion here.
	begin_unwind_inner(Box::new(msg), file_line)
	}

	/// The core of the unwinding.
	///
	/// This is non-generic to avoid instantiation bloat in other crates
	/// (which makes compilation of small crates noticeably slower). (Note:
	/// we need the `Any` object anyway, we're not just creating it to
	/// avoid being generic.)
	///
	/// Doing this split took the LLVM IR line counts of `fn main() { panic!()
	/// }` from ~1900/3700 (-O/no opts) to 180/590.
	#[inline(never)] #[cold] // this is the slow path, please never inline this
	fn begin_unwind_inner(msg: Box<Any + Send>,
	file_line: &(&'static str, u32)) -> ! {
	let (file, line) = *file_line;
	ON_PANIC.with(\|cb_cell\| cb_cell.get()(&*msg, file, line));

	// First, invoke call the user-defined callbacks triggered on thread panic.
	//
	// By the time that we see a callback has been registered (by reading
	// MAX_CALLBACKS), the actual callback itself may have not been stored yet,
	// so we just chalk it up to a race condition and move on to the next
	// callback. Additionally, CALLBACK_CNT may briefly be higher than
	// MAX_CALLBACKS, so we're sure to clamp it as necessary.
	let callbacks = {
	let amt = CALLBACK_CNT.load(Ordering::SeqCst);
	&CALLBACKS[..cmp::min(amt, MAX_CALLBACKS)]
	};
	for cb in callbacks {
	match cb.load(Ordering::SeqCst) {
	0 => {}
	n => {
	let f: Callback = unsafe { mem::transmute(n) };
	let (file, line) = *file_line;
	f(&*msg, file, line);
	}
	}
	};

	// Now that we've run all the necessary unwind callbacks, we actually
	// perform the unwinding.
	if panicking() {
	// If a thread panics while it's already unwinding then we
	// have limited options. Currently our preference is to
	// just abort. In the future we may consider resuming
	// unwinding or otherwise exiting the thread cleanly.
	rterrln!("thread panicked while panicking. aborting.");
	unsafe { intrinsics::abort() }
	}
	PANICKING.with(\|s\| s.set(true));
	rust_panic(msg);
	}

	/// Register a callback to be invoked when a thread unwinds.
	///
	/// This is an unsafe and experimental API which allows for an arbitrary
	/// callback to be invoked when a thread panics. This callback is invoked on both
	/// the initial unwinding and a double unwinding if one occurs. Additionally,
	/// the local `Thread` will be in place for the duration of the callback, and
	/// the callback must ensure that it remains in place once the callback returns.
	///
	/// Only a limited number of callbacks can be registered, and this function
	/// returns whether the callback was successfully registered or not. It is not
	/// currently possible to unregister a callback once it has been registered.
	pub unsafe fn register(f: Callback) -> bool {
	match CALLBACK_CNT.fetch_add(1, Ordering::SeqCst) {
	// The invocation code has knowledge of this window where the count has
	// been incremented, but the callback has not been stored. We're
	// guaranteed that the slot we're storing into is 0.
	n if n < MAX_CALLBACKS => {
	let prev = CALLBACKS[n].swap(mem::transmute(f), Ordering::SeqCst);
	rtassert!(prev == 0);
	true
	}
	// If we accidentally bumped the count too high, pull it back.
	_ => {
	CALLBACK_CNT.store(MAX_CALLBACKS, Ordering::SeqCst);
	false
	}
	}
	}

	pub fn set_panic_handler(new_handler: Callback) {
	ON_PANIC.with(\|cb_cell\| cb_cell.set(new_handler));
	}