archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
4.9 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/base/wow64/mscpu/fraglib/suspend.c

926 lines
23 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1999-1998 Microsoft Corporation
  5. Module Name:
  7. suspend.c
  9. Abstract:
  11. This module implements CpuSuspendThread, CpuGetContext and CpuSetContext.
  13. Author:
  15. 14-Dec-1999 SamerA
  17. Revision History:
  19. --*/
  21. #include <nt.h>
  22. #include <ntrtl.h>
  23. #include <nturtl.h>
  24. #include <windows.h>
  25. #include <stdio.h>
  27. #define _WX86CPUAPI_
  28. #include "wx86.h"
  29. #include "wx86nt.h"
  30. #include "wx86cpu.h"
  31. #include "cpuassrt.h"
  32. #ifdef MSCCPU
  33. #include "ccpu.h"
  34. #include "msccpup.h"
  35. #undef GET_BYTE
  36. #undef GET_SHORT
  37. #undef GET_LONG
  38. #else
  39. #include "threadst.h"
  40. #include "instr.h"
  41. #include "frag.h"
  42. ASSERTNAME;
  43. #endif
  44. #include "fragp.h"
  45. #include "cpunotif.h"
  48. VOID
  49. RemoteSuspendAtNativeCode (
  50. VOID);
  55. NTSTATUS
  56. CpupFreeSuspendMsg(
  57. PCPU_SUSPEND_MSG CpuSuspendMsg)
  58. /*++
  60. Routine Description:
  62. This routine frees the resources associated with the suspend message structure on
  63. the remote side.
  65. Arguments:
  67. CpuSuspendMsg - Address of Suspend message structure
  69. Return Value:
  71. NTSTATUS.
  73. --*/
  74. {
  75. SIZE_T RegionSize;
  77. NtClose(CpuSuspendMsg->StartSuspendCallEvent);
  78. NtClose(CpuSuspendMsg->EndSuspendCallEvent);
  80. RegionSize = sizeof(*CpuSuspendMsg);
  81. NtFreeVirtualMemory(NtCurrentProcess(),
  82. &CpuSuspendMsg,
  83. &RegionSize,
  84. MEM_RELEASE);
  86. return STATUS_SUCCESS;
  87. }
  90. VOID
  91. CpupSuspendAtNativeCode(
  92. PCONTEXT Context,
  93. PCPU_SUSPEND_MSG SuspendMsg)
  94. /*++
  96. Routine Description:
  98. Prepares the current to get suspended. This routine is executed as a result
  99. of calling RtlRemoteCall on this current thread. This routine will
  100. update the CPUCONTEXT of the current thread with the passed SuspendM Message
  101. and notify the CPU that the current thread needs to be suspended.
  102. This routine must call NtContinue at the end to continue execution at
  103. the point where it has been interrupted.
  105. NOTE : Any change to the parameter list of this function must accompany
  106. a change to the RtlRemoteCall in CpuSuspendThread() and
  107. RemoteSuspendAtNativeCode().
  109. Arguments:
  111. Context - Context to return to execute at
  112. SuspendMsg - Suspend message address
  114. Return Value:
  116. NONE
  118. --*/
  119. {
  120. DECLARE_CPU;
  123. InterlockedCompareExchangePointer(&cpu->SuspendMsg,
  124. SuspendMsg,
  125. NULL);
  127. if (cpu->SuspendMsg == SuspendMsg)
  128. {
  129. cpu->CpuNotify |= CPUNOTIFY_SUSPEND;
  130. }
  131. else
  132. {
  133. CpupFreeSuspendMsg(SuspendMsg);
  134. }
  136. if (Context)
  137. {
  138. NtContinue(Context,FALSE);
  139. }
  141. CPUASSERT(FALSE);
  143. return;
  144. }
  148. NTSTATUS
  149. CpupSuspendCurrentThread(
  150. VOID)
  151. /*++
  153. Routine Description:
  155. This routine is called from the main CPU loop after leaving the translation cache,
  156. and start running native code.
  157. Now it's the best time to suspend the currently executing thread.
  159. Arguments:
  161. None.
  163. Return Value:
  165. NTSTATUS.
  167. --*/
  168. {
  169. NTSTATUS NtStatus;
  170. LARGE_INTEGER TimeOut;
  171. PCPU_SUSPEND_MSG CpuSuspendMsg;
  172. SIZE_T RegionSize;
  173. DECLARE_CPU;
  176. CpuSuspendMsg = cpu->SuspendMsg;
  178. NtStatus = NtSetEvent(CpuSuspendMsg->StartSuspendCallEvent, NULL);
  180. if (NT_SUCCESS(NtStatus))
  181. {
  182. TimeOut.QuadPart = UInt32x32To64( 40000, 10000 );
  183. TimeOut.QuadPart *= -1;
  185. NtStatus = NtWaitForSingleObject(CpuSuspendMsg->EndSuspendCallEvent,
  186. FALSE,
  187. &TimeOut);
  188. }
  189. else
  190. {
  191. LOGPRINT((TRACELOG, "CpupSuspendCurrentThread: Couldn't signal Start suspendcall event (%lx) -%lx\n",
  192. CpuSuspendMsg->StartSuspendCallEvent, NtStatus));
  194. }
  196. CpupFreeSuspendMsg(CpuSuspendMsg);
  198. cpu->SuspendMsg = NULL;
  200. return NtStatus;
  201. }
  204. NTSTATUS CpupReadBuffer(
  205. IN HANDLE ProcessHandle,
  206. IN PVOID Source,
  207. OUT PVOID Destination,
  208. IN ULONG Size)
  209. /*++
  211. Routine Description:
  213. This routine reads the source buffer into the destination buffer. It
  214. optimizes calls to NtReadVirtualMemory by checking whether the
  215. source buffer is in the currnt process or not.
  217. Arguments:
  219. ProcessHandle - Target process handle to read data from
  220. Source - Target base address to read data from
  221. Destination - Address of buffer to receive data read from the specified address space
  222. Size - Size of data to read
  224. Return Value:
  226. NTSTATUS.
  228. --*/
  229. {
  230. NTSTATUS NtStatus = STATUS_SUCCESS;
  232. return NtReadVirtualMemory(ProcessHandle,
  233. Source,
  234. Destination,
  235. Size,
  236. NULL);
  237. }
  239. NTSTATUS
  240. CpupWriteBuffer(
  241. IN HANDLE ProcessHandle,
  242. IN PVOID Target,
  243. IN PVOID Source,
  244. IN ULONG Size)
  245. /*++
  247. Routine Description:
  249. Writes data to memory taken into consideration if the write is cross-process
  250. or not
  252. Arguments:
  254. ProcessHandle - Target process handle to write data into
  255. Target - Target base address to write data at
  256. Source - Address of contents to write in the specified address space
  257. Size - Size of data to write
  259. Return Value:
  261. NTSTATUS.
  263. --*/
  264. {
  265. return NtWriteVirtualMemory(ProcessHandle,
  266. Target,
  267. Source,
  268. Size,
  269. NULL);
  270. }
  274. NTSTATUS
  275. CpupSetupSuspendCallParamters(
  276. IN HANDLE RemoteProcessHandle,
  277. IN PCPU_SUSPEND_MSG SuspendMsg,
  278. OUT PVOID *Arguments)
  279. /*++
  281. Routine Description:
  283. This routine setup the arguments for the remoted call to
  284. CpupSuspendAtNativeCode.
  286. Arguments:
  288. RemoteProcessHandle - Handle of process to setup the arguments in
  289. SuspendMsg - Suspend message to remote to the target process
  290. Arguments - Pointer to an array of parameters
  292. Return Value:
  294. NTSTATUS.
  296. --*/
  297. {
  298. NTSTATUS NtStatus = STATUS_SUCCESS;
  299. CPU_SUSPEND_MSG RemoteSuspendMsg;
  300. SIZE_T RegionSize;
  303. NtStatus = NtDuplicateObject(NtCurrentProcess(),
  304. SuspendMsg->StartSuspendCallEvent,
  305. RemoteProcessHandle,
  306. &RemoteSuspendMsg.StartSuspendCallEvent,
  307. 0,
  308. 0,
  309. DUPLICATE_SAME_ACCESS);
  310. if (!NT_SUCCESS(NtStatus))
  311. {
  312. LOGPRINT((ERRORLOG, "CpupSetupSuspendCallParamters: Couldn't duplicate event (%lx) into %lx -%lx\n",
  313. SuspendMsg->StartSuspendCallEvent, RemoteProcessHandle, NtStatus));
  315. return NtStatus;
  316. }
  318. NtStatus = NtDuplicateObject(NtCurrentProcess(),
  319. SuspendMsg->EndSuspendCallEvent,
  320. RemoteProcessHandle,
  321. &RemoteSuspendMsg.EndSuspendCallEvent,
  322. 0,
  323. 0,
  324. DUPLICATE_SAME_ACCESS);
  325. if (!NT_SUCCESS(NtStatus))
  326. {
  327. LOGPRINT((ERRORLOG, "CpupSetupSuspendCallParamters: Couldn't duplicate event (%lx) into %lx -%lx\n",
  328. SuspendMsg->EndSuspendCallEvent, RemoteProcessHandle, NtStatus));
  329. return NtStatus;
  330. }
  332. RegionSize = sizeof(RemoteSuspendMsg);
  333. *Arguments = NULL;
  334. NtStatus = NtAllocateVirtualMemory(RemoteProcessHandle,
  335. Arguments,
  336. 0,
  337. &RegionSize,
  338. MEM_RESERVE | MEM_COMMIT,
  339. PAGE_READWRITE);
  340. if (NT_SUCCESS(NtStatus))
  341. {
  342. NtStatus = NtWriteVirtualMemory(RemoteProcessHandle,
  343. *Arguments,
  344. &RemoteSuspendMsg,
  345. sizeof(RemoteSuspendMsg),
  346. NULL);
  347. if (!NT_SUCCESS(NtStatus))
  348. {
  349. LOGPRINT((ERRORLOG, "CpupSetupSuspendCallParamters: Couldn't write parameters in target process (%lx) -%lx\n",
  350. RemoteProcessHandle,NtStatus));
  352. NtFreeVirtualMemory(RemoteProcessHandle,
  353. Arguments,
  354. &RegionSize,
  355. MEM_RELEASE);
  356. }
  357. }
  358. else
  359. {
  360. LOGPRINT((ERRORLOG, "CpupSetupSuspendCallParamters: Couldn't allocate parameters space in target process (%lx) -%lx\n",
  361. RemoteProcessHandle,NtStatus));
  362. }
  364. return NtStatus;
  365. }
  368. NTSTATUS
  369. CpuSuspendThread(
  370. IN HANDLE ThreadHandle,
  371. IN HANDLE ProcessHandle,
  372. IN PTEB Teb,
  373. OUT PULONG PreviousSuspendCount OPTIONAL)
  374. /*++
  376. Routine Description:
  378. This routine is entered while the target thread is actually suspended, however, it's
  379. not known if the target thread is in a consistent state relative to
  380. the CPU. This routine guarantees that the target thread to suspend isn't the
  381. currently executing thread. It will establish a handshake protocol to suspend the
  382. target thread at a consistent cpu state.
  384. Arguments:
  386. ThreadHandle - Handle of target thread to suspend
  387. ProcessHandle - Handle of target thread's process
  388. Teb - Address of the target thread's TEB
  389. PreviousSuspendCount - Previous suspend count
  391. Return Value:
  393. NTSTATUS.
  395. --*/
  396. {
  397. NTSTATUS NtStatus = STATUS_SUCCESS, WaitStatus;
  398. ULONG_PTR CpuSimulationFlag;
  399. CPU_SUSPEND_MSG CpuSuspendMsg;
  400. PVOID Arguments;
  401. LARGE_INTEGER TimeOut;
  405. CpuSuspendMsg.StartSuspendCallEvent = INVALID_HANDLE_VALUE;
  406. CpuSuspendMsg.EndSuspendCallEvent = INVALID_HANDLE_VALUE;
  408. //
  409. // Are we in CPU simulation
  410. //
  411. NtStatus = CpupReadBuffer(ProcessHandle,
  412. ((PCHAR)Teb + FIELD_OFFSET(TEB, TlsSlots[WOW64_TLS_INCPUSIMULATION])),
  413. &CpuSimulationFlag,
  414. sizeof(CpuSimulationFlag));
  416. if (!NT_SUCCESS(NtStatus))
  417. {
  418. LOGPRINT((ERRORLOG, "CpuSuspendThread: Couldn't read INCPUSIMULATION flag (%lx) -%lx\n",
  419. CpuSimulationFlag, NtStatus));
  420. goto Cleanup;
  421. }
  423. if (!CpuSimulationFlag)
  424. {
  425. LOGPRINT((TRACELOG, "CpuSuspendThread: Thread is not running simulated code, so leave it suspended (%lx)",
  426. ThreadHandle));
  427. goto Cleanup;
  428. }
  430. NtStatus = NtCreateEvent(&CpuSuspendMsg.StartSuspendCallEvent,
  431. EVENT_ALL_ACCESS,
  432. NULL,
  433. SynchronizationEvent,
  434. FALSE);
  435. if (!NT_SUCCESS(NtStatus))
  436. {
  437. LOGPRINT((ERRORLOG, "CpuSuspendThread: Couldn't create StartSuspendCallEvent -%lx\n",
  438. NtStatus));
  439. goto Cleanup;
  440. }
  442. NtStatus = NtCreateEvent(&CpuSuspendMsg.EndSuspendCallEvent,
  443. EVENT_ALL_ACCESS,
  444. NULL,
  445. SynchronizationEvent,
  446. FALSE);
  447. if (!NT_SUCCESS(NtStatus))
  448. {
  449. LOGPRINT((ERRORLOG, "CpuSuspendThread: Couldn't create EndSuspendCallEvent -%lx\n",
  450. NtStatus));
  451. goto Cleanup;
  452. }
  454. NtStatus = CpupSetupSuspendCallParamters(ProcessHandle,
  455. &CpuSuspendMsg,
  456. &Arguments);
  457. if (NT_SUCCESS(NtStatus))
  458. {
  459. NtStatus = RtlRemoteCall(ProcessHandle,
  460. ThreadHandle,
  461. (PVOID)RemoteSuspendAtNativeCode,
  462. 1,
  463. (PULONG_PTR)&Arguments,
  464. TRUE,
  465. TRUE);
  466. if (NT_SUCCESS(NtStatus))
  467. {
  468. NtStatus = NtResumeThread(ThreadHandle, NULL);
  469. if (!NT_SUCCESS(NtStatus))
  470. {
  471. LOGPRINT((ERRORLOG, "CpuSuspendThread: Couldn't resume thread (%lx) -%lx\n",
  472. ThreadHandle, NtStatus));
  473. goto Cleanup;
  474. }
  476. TimeOut.QuadPart = UInt32x32To64( 20000, 10000 );
  477. TimeOut.QuadPart *= -1;
  479. WaitStatus = NtWaitForSingleObject(CpuSuspendMsg.StartSuspendCallEvent,
  480. FALSE,
  481. &TimeOut);
  483. NtStatus = NtSuspendThread(ThreadHandle, PreviousSuspendCount);
  485. if (!NT_SUCCESS(WaitStatus))
  486. {
  487. LOGPRINT((ERRORLOG, "CpuSuspendThread: Couldn't wait for StartSuspendCallEvent -%lx\n",
  488. NtStatus));
  489. goto Cleanup;
  490. }
  492. if (WaitStatus == STATUS_TIMEOUT)
  493. {
  494. LOGPRINT((ERRORLOG, "CpuSuspendThread: Timeout on StartSuspendCallEvent -%lx. Thread %lx may already be waiting.\n",
  495. NtStatus, ThreadHandle));
  496. }
  499. if (NT_SUCCESS(NtStatus))
  500. {
  501. NtSetEvent(CpuSuspendMsg.EndSuspendCallEvent, NULL);
  502. }
  503. }
  504. else
  505. {
  506. LOGPRINT((ERRORLOG, "CpuSuspendThread: RtlRemoteCall failed -%lx\n",
  507. NtStatus));
  508. }
  509. }
  511. Cleanup:
  512. ;
  514. if (CpuSuspendMsg.StartSuspendCallEvent != INVALID_HANDLE_VALUE)
  515. {
  516. NtClose(CpuSuspendMsg.StartSuspendCallEvent);
  517. }
  519. if (CpuSuspendMsg.EndSuspendCallEvent != INVALID_HANDLE_VALUE)
  520. {
  521. NtClose(CpuSuspendMsg.EndSuspendCallEvent);
  522. }
  524. return NtStatus;
  525. }
  528. NTSTATUS
  529. GetContextRecord(
  530. PCPUCONTEXT cpu,
  531. PCONTEXT_WX86 Context
  532. )
  533. /*++
  535. Routine Description:
  537. This routine extracts the context record out of the specified cpu context.
  539. Arguments:
  541. cpu - CPU context structure
  542. Context - Context record to fill
  544. Return Value:
  546. NTSTATUS.
  548. --*/
  549. {
  550. NTSTATUS NtStatus = STATUS_SUCCESS;
  551. ULONG ContextFlags;
  553. try
  554. {
  555. ContextFlags = Context->ContextFlags;
  557. if ((ContextFlags & CONTEXT_CONTROL_WX86) == CONTEXT_CONTROL_WX86)
  558. {
  559. Context->EFlags = GetEfl(cpu);
  560. Context->SegCs = CS;
  561. Context->Esp = esp;
  562. Context->SegSs = SS;
  563. Context->Ebp = ebp;
  564. Context->Eip = eip;
  565. //Context->Eip = cpu->eipReg.i4;
  566. }
  568. if ((ContextFlags & CONTEXT_SEGMENTS_WX86) == CONTEXT_SEGMENTS_WX86)
  569. {
  570. Context->SegGs = GS;
  571. Context->SegFs = FS;
  572. Context->SegEs = ES;
  573. Context->SegDs = DS;
  574. }
  576. if ((ContextFlags & CONTEXT_INTEGER_WX86) == CONTEXT_INTEGER_WX86)
  577. {
  578. Context->Eax = eax;
  579. Context->Ebx = ebx;
  580. Context->Ecx = ecx;
  581. Context->Edx = edx;
  582. Context->Edi = edi;
  583. Context->Esi = esi;
  584. }
  586. if ((ContextFlags & CONTEXT_FLOATING_POINT_WX86) == CONTEXT_FLOATING_POINT_WX86)
  587. {
  588. //
  589. // FpuSaveContext() is the same as FNSAVE, except FNSAVE resets the
  590. // FPU when its done.
  591. //
  592. CALLFRAG1(FpuSaveContext, (PBYTE)&Context->FloatSave);
  593. Context->FloatSave.Cr0NpxState = 1; // (Math Present)
  594. }
  596. // if ((ContextFlags & CONTEXT_DEBUG_WX86) == CONTEXT_DEBUG_WX86)
  597. // {
  598. // }
  599. }
  600. except (EXCEPTION_EXECUTE_HANDLER)
  601. {
  602. NtStatus = GetExceptionCode();
  603. }
  605. return NtStatus;
  606. }
  609. NTSTATUS
  610. CpupGetContextRecord(
  611. IN PCPUCONTEXT cpu,
  612. IN OUT PCONTEXT_WX86 Context)
  613. /*++
  615. Routine Description:
  617. This routine extracts the context record out of the specified cpu context.
  619. Arguments:
  621. cpu - CPU context structure
  622. Context - Context record to fill
  624. Return Value:
  626. NTSTATUS.
  628. --*/
  629. {
  630. return GetContextRecord(cpu, Context);
  631. }
  634. NTSTATUS
  635. MsCpuGetContext(
  636. IN OUT PCONTEXT_WX86 Context
  637. )
  638. /*++
  640. Routine Description:
  642. This routine extracts the context record for the currently
  643. executing thread.
  645. Arguments:
  647. Context - Context record to fill
  649. Return Value:
  651. NTSTATUS.
  653. --*/
  654. {
  655. DECLARE_CPU;
  657. return CpupGetContextRecord(cpu, Context);
  658. }
  661. NTSTATUS
  662. MsCpuGetContextThread(
  663. IN HANDLE ProcessHandle,
  664. IN PTEB Teb,
  665. IN OUT PCONTEXT_WX86 Context)
  666. /*++
  668. Routine Description:
  670. This routine extracts the context record of any thread. This is a generic routine.
  671. When entered, if the target thread isn't the currently executing thread, then it should be
  672. guaranteed that the target thread is suspended at a proper CPU state.
  674. Arguments:
  676. ProcessHandle - Open handle to the process that the thread runs in
  677. Teb - Pointer to the target's thread TEB
  678. optimization purposes.
  679. Context - Context record to fill
  681. Return Value:
  683. NTSTATUS.
  685. --*/
  686. {
  687. NTSTATUS NtStatus = STATUS_SUCCESS;
  688. PCPUCONTEXT CpuRemoteContext;
  689. CPUCONTEXT CpuContext;
  692. NtStatus = CpupReadBuffer(ProcessHandle,
  693. ((PCHAR)Teb + FIELD_OFFSET(TEB, TlsSlots[WOW64_TLS_CPURESERVED])),
  694. &CpuRemoteContext,
  695. sizeof(CpuRemoteContext));
  697. if (NT_SUCCESS(NtStatus))
  698. {
  699. NtStatus = CpupReadBuffer(ProcessHandle,
  700. CpuRemoteContext,
  701. &CpuContext,
  702. FIELD_OFFSET(CPUCONTEXT, FpData));
  704. if (NT_SUCCESS(NtStatus))
  705. {
  706. NtStatus = CpupGetContextRecord(&CpuContext, Context);
  707. }
  708. else
  709. {
  710. LOGPRINT((ERRORLOG, "MsCpuGetContextThread: Couldn't read CPU context %lx -%lx\n",
  711. CpuRemoteContext, NtStatus));
  712. }
  713. }
  714. else
  715. {
  716. LOGPRINT((ERRORLOG, "MsCpuGetContextThread: Couldn't read CPU context address-%lx\n",
  717. NtStatus));
  718. }
  720. return NtStatus;
  721. }
  724. NTSTATUS
  725. SetContextRecord(
  726. PCPUCONTEXT cpu,
  727. PCONTEXT_WX86 Context
  728. )
  729. /*++
  731. Routine Description:
  733. This routine sets the passed context record for the specified CPUCONTEXT.
  735. Arguments:
  737. cpu - CPU context structure
  738. Context - Context record to set
  740. Return Value:
  742. NTSTATUS.
  744. --*/
  745. {
  746. NTSTATUS NtStatus = STATUS_SUCCESS;
  747. ULONG ContextFlags;
  749. try
  750. {
  751. ContextFlags = Context->ContextFlags;
  753. if ((ContextFlags & CONTEXT_CONTROL_WX86) == CONTEXT_CONTROL_WX86)
  754. {
  755. SetEfl(cpu, Context->EFlags);
  756. CS = (USHORT)Context->SegCs;
  757. esp = Context->Esp;
  758. SS = (USHORT)Context->SegSs;
  759. ebp = Context->Ebp;
  760. eip = Context->Eip;
  761. #if MSCCPU
  762. eipTemp = Context->Eip;
  763. #endif
  764. }
  766. if ((ContextFlags & CONTEXT_SEGMENTS_WX86) == CONTEXT_SEGMENTS_WX86)
  767. {
  768. GS = (USHORT)Context->SegGs;
  769. FS = (USHORT)Context->SegFs;
  770. ES = (USHORT)Context->SegEs;
  771. DS = (USHORT)Context->SegDs;
  772. }
  774. if ((ContextFlags & CONTEXT_INTEGER_WX86) == CONTEXT_INTEGER_WX86)
  775. {
  776. eax = Context->Eax;
  777. ebx = Context->Ebx;
  778. ecx = Context->Ecx;
  779. edx = Context->Edx;
  780. edi = Context->Edi;
  781. esi = Context->Esi;
  782. }
  784. if ((ContextFlags & CONTEXT_FLOATING_POINT_WX86) == CONTEXT_FLOATING_POINT_WX86)
  785. {
  786. CALLFRAG1(FRSTOR, (PBYTE)&Context->FloatSave);
  787. // Ignore: Context->FloatSave.Cr0NpxState
  788. }
  790. // if ((ContextFlags & CONTEXT_DEBUG_WX86) == CONTEXT_DEBUG_WX86)
  791. // {
  792. // }
  793. }
  794. except (EXCEPTION_EXECUTE_HANDLER)
  795. {
  796. NtStatus = GetExceptionCode();
  797. }
  799. return NtStatus;
  800. }
  803. NTSTATUS
  804. CpupSetContextRecord(
  805. PCPUCONTEXT cpu,
  806. PCONTEXT_WX86 Context
  807. )
  808. /*++
  810. Routine Description:
  812. This routine sets the passed context record for the specified CPU.
  814. Arguments:
  816. cpu - CPU context structure
  817. Context - Context record to set
  819. Return Value:
  821. NTSTATUS.
  823. --*/
  824. {
  825. return SetContextRecord(cpu, Context);
  826. }
  829. NTSTATUS
  830. MsCpuSetContext(
  831. PCONTEXT_WX86 Context
  832. )
  833. /*++
  835. Routine Description:
  837. This routine sets the context record for the currently executing thread.
  839. Arguments:
  841. Context - Context record to fill
  843. Return Value:
  845. NTSTATUS.
  847. --*/
  848. {
  849. DECLARE_CPU;
  851. return CpupSetContextRecord(cpu, Context);
  852. }
  856. NTSTATUS
  857. MsCpuSetContextThread(
  858. IN HANDLE ProcessHandle,
  859. IN PTEB Teb,
  860. IN OUT PCONTEXT_WX86 Context)
  861. /*++
  863. Routine Description:
  865. This routine sets the context record of any thread. This is a generic routine.
  866. When entered, if the target thread isn't the currently executing thread, then it should be
  867. guaranteed that the target thread is suspended at a proper CPU state.
  869. Arguments:
  871. ProcessHandle - Open handle to the process that the thread runs in
  872. Teb - Pointer to the target's thread TEB
  873. Context - Context record to set
  875. Return Value:
  877. NTSTATUS.
  879. --*/
  880. {
  881. NTSTATUS NtStatus = STATUS_SUCCESS;
  882. PCPUCONTEXT CpuRemoteContext;
  883. CPUCONTEXT CpuContext;
  887. NtStatus = CpupReadBuffer(ProcessHandle,
  888. ((PCHAR)Teb + FIELD_OFFSET(TEB, TlsSlots[WOW64_TLS_CPURESERVED])),
  889. &CpuRemoteContext,
  890. sizeof(CpuRemoteContext));
  892. if (NT_SUCCESS(NtStatus))
  893. {
  894. NtStatus = CpupReadBuffer(ProcessHandle,
  895. CpuRemoteContext,
  896. &CpuContext,
  897. FIELD_OFFSET(CPUCONTEXT, FpData));
  899. if (NT_SUCCESS(NtStatus))
  900. {
  901. NtStatus = CpupSetContextRecord(&CpuContext, Context);
  903. if (NT_SUCCESS(NtStatus))
  904. {
  905. NtStatus = CpupWriteBuffer(ProcessHandle,
  906. CpuRemoteContext,
  907. &CpuContext,
  908. FIELD_OFFSET(CPUCONTEXT, FpData));
  910. if (!NT_SUCCESS(NtStatus))
  911. {
  912. LOGPRINT((ERRORLOG, "MsCpuSetContextThread: Couldn't write CPU context %lx -%lx\n",
  913. CpuRemoteContext, NtStatus));
  914. }
  915. }
  916. }
  917. }
  918. else
  919. {
  920. LOGPRINT((ERRORLOG, "MsCpuSetContextThread: Couldn't read CPU context address-%lx\n",
  921. NtStatus));
  922. }
  924. return NtStatus;
  925. }