archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
4.9 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/windows/appcompat/appverifier/userdump.cpp

584 lines
16 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  2. #include "precomp.h"
  4. #include <crash.h>
  6. #include "Debugger.h"
  7. #include "UserDumpp.h"
  9. #define MEM_SIZE (64*1024)
  12. //
  13. // Private data structure used for communcating
  14. // crash dump data to the callback function.
  15. //
  16. typedef struct _CRASH_DUMP_INFO
  17. {
  18. PPROCESS_INFO pProcess;
  19. EXCEPTION_DEBUG_INFO* ExceptionInfo;
  20. DWORD MemoryCount;
  21. DWORD_PTR Address;
  22. PUCHAR MemoryData;
  23. MEMORY_BASIC_INFORMATION mbi;
  24. SIZE_T MbiOffset;
  25. SIZE_T MbiRemaining;
  26. PTHREAD_INFO pCurrentThread;
  27. IMAGEHLP_MODULE mi;
  28. PCRASH_MODULE CrashModule;
  29. } CRASH_DUMP_INFO, *PCRASH_DUMP_INFO;
  31. //
  32. // Local function prototypes
  33. //
  35. DWORD_PTR GetTeb( HANDLE hThread )
  36. {
  37. NTSTATUS Status;
  38. THREAD_BASIC_INFORMATION ThreadBasicInfo;
  39. DWORD_PTR Address = 0;
  41. Status = NtQueryInformationThread( hThread,
  42. ThreadBasicInformation,
  43. &ThreadBasicInfo,
  44. sizeof( ThreadBasicInfo ),
  45. NULL );
  46. if ( NT_SUCCESS(Status) )
  47. {
  48. Address = (DWORD_PTR)ThreadBasicInfo.TebBaseAddress;
  49. }
  51. return Address;
  52. }
  56. BOOL
  57. CrashDumpCallback(
  58. IN DWORD DataType, // requested data type
  59. OUT PVOID* DumpData, // pointer to a pointer to the data
  60. OUT LPDWORD DumpDataLength, // pointer to the data length
  61. IN OUT PVOID cdi // private data
  62. )
  63. /*++
  64. Return: TRUE on success, FALSE otherwise.
  66. Desc: This function is the callback used by crashlib.
  67. Its purpose is to provide data to CreateUserDump()
  68. for writting to the crashdump file.
  69. --*/
  71. {
  72. PCRASH_DUMP_INFO CrashdumpInfo = (PCRASH_DUMP_INFO)cdi;
  74. switch ( DataType )
  75. {
  76. case DMP_DEBUG_EVENT:
  77. *DumpData = &CrashdumpInfo->pProcess->DebugEvent;
  78. *DumpDataLength = sizeof(DEBUG_EVENT);
  79. break;
  81. case DMP_THREAD_STATE:
  82. {
  83. static CRASH_THREAD CrashThread;
  84. PTHREAD_INFO pCurrentThread;
  86. *DumpData = &CrashThread;
  88. if ( CrashdumpInfo->pCurrentThread == NULL )
  89. {
  90. pCurrentThread = CrashdumpInfo->pProcess->pFirstThreadInfo;
  91. }
  92. else
  93. {
  94. pCurrentThread = CrashdumpInfo->pCurrentThread->pNext;
  95. }
  97. CrashdumpInfo->pCurrentThread = pCurrentThread;
  99. if ( pCurrentThread == NULL )
  100. {
  101. return FALSE;
  102. }
  104. ZeroMemory(&CrashThread, sizeof(CrashThread));
  106. CrashThread.ThreadId = pCurrentThread->dwThreadId;
  107. CrashThread.SuspendCount = SuspendThread(pCurrentThread->hThread);
  109. if ( CrashThread.SuspendCount != (DWORD)-1 )
  110. {
  111. ResumeThread(pCurrentThread->hThread);
  112. }
  114. CrashThread.PriorityClass = GetPriorityClass(CrashdumpInfo->pProcess->hProcess);
  115. CrashThread.Priority = GetThreadPriority(pCurrentThread->hThread);
  116. CrashThread.Teb = GetTeb(pCurrentThread->hThread);
  118. *DumpDataLength = sizeof(CRASH_THREAD);
  119. break;
  120. }
  122. case DMP_MEMORY_BASIC_INFORMATION:
  123. while ( TRUE )
  124. {
  125. CrashdumpInfo->Address += CrashdumpInfo->mbi.RegionSize;
  127. if ( !VirtualQueryEx(CrashdumpInfo->pProcess->hProcess,
  128. (LPVOID)CrashdumpInfo->Address,
  129. &CrashdumpInfo->mbi,
  130. sizeof(MEMORY_BASIC_INFORMATION)) )
  131. {
  132. return FALSE;
  133. }
  135. if ( (CrashdumpInfo->mbi.Protect & PAGE_GUARD) ||
  136. (CrashdumpInfo->mbi.Protect & PAGE_NOACCESS) )
  137. {
  138. continue;
  139. }
  141. if ( (CrashdumpInfo->mbi.State & MEM_FREE) ||
  142. (CrashdumpInfo->mbi.State & MEM_RESERVE) )
  143. {
  144. continue;
  145. }
  147. break;
  148. }
  150. *DumpData = &CrashdumpInfo->mbi;
  151. *DumpDataLength = sizeof(MEMORY_BASIC_INFORMATION);
  152. break;
  154. case DMP_THREAD_CONTEXT:
  155. {
  156. PTHREAD_INFO pCurrentThread;
  158. if ( CrashdumpInfo->pCurrentThread == NULL )
  159. {
  160. pCurrentThread = CrashdumpInfo->pProcess->pFirstThreadInfo;
  161. }
  162. else
  163. {
  164. pCurrentThread = CrashdumpInfo->pCurrentThread->pNext;
  165. }
  167. CrashdumpInfo->pCurrentThread = pCurrentThread;
  169. if ( pCurrentThread == NULL )
  170. {
  171. return FALSE;
  172. }
  174. *DumpData = &CrashdumpInfo->pCurrentThread->Context;
  175. *DumpDataLength = sizeof(CONTEXT);
  176. break;
  177. }
  179. case DMP_MODULE:
  180. if ( CrashdumpInfo->mi.BaseOfImage == 0 )
  181. {
  182. return FALSE;
  183. }
  185. CrashdumpInfo->CrashModule->BaseOfImage = CrashdumpInfo->mi.BaseOfImage;
  186. CrashdumpInfo->CrashModule->SizeOfImage = CrashdumpInfo->mi.ImageSize;
  187. CrashdumpInfo->CrashModule->ImageNameLength = strlen(CrashdumpInfo->mi.ImageName) + 1;
  188. strcpy( CrashdumpInfo->CrashModule->ImageName, CrashdumpInfo->mi.ImageName );
  190. *DumpData = CrashdumpInfo->CrashModule;
  191. *DumpDataLength = sizeof(CRASH_MODULE) + CrashdumpInfo->CrashModule->ImageNameLength;
  193. if ( !SymGetModuleInfo(CrashdumpInfo->pProcess->hProcess,
  194. (DWORD_PTR)-1,
  195. &CrashdumpInfo->mi) )
  196. {
  197. CrashdumpInfo->mi.BaseOfImage = 0;
  198. }
  199. break;
  201. case DMP_MEMORY_DATA:
  202. if ( !CrashdumpInfo->MemoryCount )
  203. {
  205. CrashdumpInfo->Address = 0;
  206. CrashdumpInfo->MbiOffset = 0;
  207. CrashdumpInfo->MbiRemaining = 0;
  209. ZeroMemory( &CrashdumpInfo->mbi, sizeof(MEMORY_BASIC_INFORMATION) );
  211. CrashdumpInfo->MemoryData = (PUCHAR)VirtualAlloc(NULL,
  212. MEM_SIZE,
  213. MEM_COMMIT,
  214. PAGE_READWRITE);
  215. }
  217. if ( !CrashdumpInfo->MbiRemaining )
  218. {
  219. while ( TRUE )
  220. {
  221. CrashdumpInfo->Address += CrashdumpInfo->mbi.RegionSize;
  223. if ( !VirtualQueryEx(CrashdumpInfo->pProcess->hProcess,
  224. (LPVOID)CrashdumpInfo->Address,
  225. &CrashdumpInfo->mbi,
  226. sizeof(MEMORY_BASIC_INFORMATION)) )
  227. {
  229. if ( CrashdumpInfo->MemoryData )
  230. {
  231. VirtualFree(CrashdumpInfo->MemoryData, MEM_SIZE, MEM_RELEASE);
  232. }
  234. return FALSE;
  235. }
  237. if ( (CrashdumpInfo->mbi.Protect & PAGE_GUARD) ||
  238. (CrashdumpInfo->mbi.Protect & PAGE_NOACCESS) )
  239. {
  240. continue;
  241. }
  243. if ( (CrashdumpInfo->mbi.State & MEM_FREE) ||
  244. (CrashdumpInfo->mbi.State & MEM_RESERVE) )
  245. {
  246. continue;
  247. }
  249. CrashdumpInfo->MbiOffset = 0;
  250. CrashdumpInfo->MbiRemaining = CrashdumpInfo->mbi.RegionSize;
  251. CrashdumpInfo->MemoryCount += 1;
  252. break;
  253. }
  254. }
  256. *DumpDataLength = (DWORD)__min( CrashdumpInfo->MbiRemaining, MEM_SIZE );
  257. CrashdumpInfo->MbiRemaining -= *DumpDataLength;
  259. ReadProcessMemory(CrashdumpInfo->pProcess->hProcess,
  260. (PUCHAR)((DWORD_PTR)CrashdumpInfo->mbi.BaseAddress + CrashdumpInfo->MbiOffset),
  261. CrashdumpInfo->MemoryData,
  262. *DumpDataLength,
  263. NULL);
  265. *DumpData = CrashdumpInfo->MemoryData;
  266. CrashdumpInfo->MbiOffset += *DumpDataLength;
  267. break;
  268. }
  270. return TRUE;
  271. }
  273. BOOL
  274. CreateUserDump(
  275. IN LPTSTR pszFileName,
  276. IN PDBGHELP_CREATE_USER_DUMP_CALLBACK DmpCallback,
  277. IN PVOID lpv
  278. )
  280. /*++
  281. Return: TRUE on success, FALSE otherwise.
  283. Desc: Creates the dump file.
  284. --*/
  285. {
  286. #if 0
  287. OSVERSIONINFOW OsVersion = {0};
  288. USERMODE_CRASHDUMP_HEADER DumpHeader = {0};
  289. DWORD cb;
  290. HANDLE hFile = INVALID_HANDLE_VALUE;
  291. BOOL rval;
  292. PVOID DumpData;
  293. DWORD DumpDataLength;
  294. SECURITY_ATTRIBUTES SecAttrib;
  295. SECURITY_DESCRIPTOR SecDescript;
  297. //
  298. // Create a DACL that allows all access to the directory.
  299. //
  300. SecAttrib.nLength = sizeof(SECURITY_ATTRIBUTES);
  301. SecAttrib.lpSecurityDescriptor = &SecDescript;
  302. SecAttrib.bInheritHandle = FALSE;
  304. InitializeSecurityDescriptor(&SecDescript, SECURITY_DESCRIPTOR_REVISION);
  305. SetSecurityDescriptorDacl(&SecDescript, TRUE, NULL, FALSE);
  307. hFile = CreateFile(pszFileName,
  308. GENERIC_READ | GENERIC_WRITE,
  309. 0,
  310. &SecAttrib,
  311. CREATE_ALWAYS,
  312. FILE_ATTRIBUTE_NORMAL,
  313. NULL);
  315. if ( hFile == NULL || hFile == INVALID_HANDLE_VALUE )
  316. {
  317. return FALSE;
  318. }
  320. //
  321. // Write out an empty header.
  322. //
  323. if ( !WriteFile(hFile, &DumpHeader, sizeof(DumpHeader), &cb, NULL) )
  324. {
  325. goto bad_file;
  326. }
  328. //
  329. // Write the debug event.
  330. //
  331. DumpHeader.DebugEventOffset = SetFilePointer(hFile, 0, NULL, FILE_CURRENT);
  333. DmpCallback(DMP_DEBUG_EVENT, &DumpData, &DumpDataLength, lpv);
  335. if ( !WriteFile(hFile, DumpData, sizeof(DEBUG_EVENT), &cb, NULL) )
  336. {
  337. goto bad_file;
  338. }
  340. //
  341. // Write the memory map.
  342. //
  343. DumpHeader.MemoryRegionOffset = SetFilePointer(hFile, 0, NULL, FILE_CURRENT);
  345. do
  346. {
  347. __try {
  348. rval = DmpCallback(DMP_MEMORY_BASIC_INFORMATION,
  349. &DumpData,
  350. &DumpDataLength,
  351. lpv);
  353. } __except (EXCEPTION_EXECUTE_HANDLER) {
  354. rval = FALSE;
  355. }
  357. if ( rval )
  358. {
  359. DumpHeader.MemoryRegionCount += 1;
  361. if ( !WriteFile(hFile, DumpData, sizeof(MEMORY_BASIC_INFORMATION), &cb, NULL) )
  362. {
  363. goto bad_file;
  364. }
  365. }
  366. } while ( rval );
  368. //
  369. // Write the thread contexts.
  370. //
  371. DumpHeader.ThreadOffset = SetFilePointer(hFile, 0, NULL, FILE_CURRENT);
  373. do
  374. {
  375. __try {
  376. rval = DmpCallback(DMP_THREAD_CONTEXT,
  377. &DumpData,
  378. &DumpDataLength,
  379. lpv);
  381. } __except (EXCEPTION_EXECUTE_HANDLER) {
  382. rval = FALSE;
  383. }
  385. if ( rval )
  386. {
  387. if ( !WriteFile(hFile, DumpData, DumpDataLength, &cb, NULL) )
  388. {
  389. goto bad_file;
  390. }
  392. DumpHeader.ThreadCount += 1;
  393. }
  395. } while ( rval );
  397. //
  398. // Write the thread states.
  399. //
  400. DumpHeader.ThreadStateOffset = SetFilePointer(hFile, 0, NULL, FILE_CURRENT);
  402. do
  403. {
  404. __try {
  405. rval = DmpCallback(DMP_THREAD_STATE,
  406. &DumpData,
  407. &DumpDataLength,
  408. lpv);
  410. } __except (EXCEPTION_EXECUTE_HANDLER) {
  411. rval = FALSE;
  412. }
  414. if ( rval )
  415. {
  416. if ( !WriteFile(hFile, DumpData, sizeof(CRASH_THREAD), &cb, NULL) )
  417. {
  418. goto bad_file;
  419. }
  420. }
  422. } while ( rval );
  424. //
  425. // Write the module table.
  426. //
  427. DumpHeader.ModuleOffset = SetFilePointer(hFile, 0, NULL, FILE_CURRENT);
  429. do
  430. {
  431. __try {
  432. rval = DmpCallback(DMP_MODULE,
  433. &DumpData,
  434. &DumpDataLength,
  435. lpv);
  437. } __except (EXCEPTION_EXECUTE_HANDLER) {
  438. rval = FALSE;
  439. }
  441. if ( rval )
  442. {
  443. if ( !WriteFile(hFile,
  444. DumpData,
  445. sizeof(CRASH_MODULE) + ((PCRASH_MODULE)DumpData)->ImageNameLength,
  446. &cb,
  447. NULL) )
  448. {
  449. goto bad_file;
  450. }
  452. DumpHeader.ModuleCount += 1;
  453. }
  454. } while ( rval );
  456. //
  457. // Write the virtual memory
  458. //
  459. DumpHeader.DataOffset = SetFilePointer(hFile, 0, NULL, FILE_CURRENT);
  461. do
  462. {
  463. __try {
  464. rval = DmpCallback(DMP_MEMORY_DATA,
  465. &DumpData,
  466. &DumpDataLength,
  467. lpv);
  469. } __except (EXCEPTION_EXECUTE_HANDLER) {
  470. rval = FALSE;
  471. }
  473. if ( rval )
  474. {
  475. if ( !WriteFile(hFile, DumpData, DumpDataLength, &cb, NULL) )
  476. {
  477. goto bad_file;
  478. }
  479. }
  480. } while ( rval );
  482. //
  483. // The VersionInfo is optional.
  484. //
  485. DumpHeader.VersionInfoOffset = SetFilePointer(hFile, 0, NULL, FILE_CURRENT);
  487. //
  488. // re-write the dump header with some valid data.
  489. //
  490. GetVersionEx(&OsVersion);
  492. DumpHeader.Signature = USERMODE_CRASHDUMP_SIGNATURE;
  493. DumpHeader.MajorVersion = OsVersion.dwMajorVersion;
  494. DumpHeader.MinorVersion = OsVersion.dwMinorVersion;
  496. #if defined(_X86_)
  497. DumpHeader.MachineImageType = IMAGE_FILE_MACHINE_I386;
  498. DumpHeader.ValidDump = USERMODE_CRASHDUMP_VALID_DUMP32;
  500. #elif defined(_AMD64_)
  501. DumpHeader.MachineImageType = IMAGE_FILE_MACHINE_AMD64;
  502. DumpHeader.ValidDump = USERMODE_CRASHDUMP_VALID_DUMP64;
  504. #elif defined(_IA64_)
  505. DumpHeader.MachineImageType = IMAGE_FILE_MACHINE_IA64;
  506. DumpHeader.ValidDump = USERMODE_CRASHDUMP_VALID_DUMP64;
  508. #else
  509. #error "No Target Architecture"
  510. #endif
  512. SetFilePointer(hFile, 0, 0, FILE_BEGIN);
  514. if ( !WriteFile(hFile, &DumpHeader, sizeof(DumpHeader), &cb, NULL) )
  515. {
  516. goto bad_file;
  517. }
  519. CloseHandle(hFile);
  521. return TRUE;
  523. bad_file:
  525. CloseHandle(hFile);
  527. DeleteFile(pszFileName);
  529. #endif
  530. return FALSE;
  531. }
  535. BOOL
  536. GenerateUserModeDump(
  537. LPTSTR pszFileName,
  538. PPROCESS_INFO pProcess,
  539. LPEXCEPTION_DEBUG_INFO ed
  540. )
  541. {
  542. CRASH_DUMP_INFO CrashdumpInfo = {0};
  543. BOOL bRet;
  544. PTHREAD_INFO pThread;
  546. CrashdumpInfo.mi.SizeOfStruct = sizeof(CrashdumpInfo.mi);
  547. CrashdumpInfo.pProcess = pProcess;
  548. CrashdumpInfo.ExceptionInfo = ed;
  550. //
  551. // Get the thread context for all the threads.
  552. //
  553. pThread = pProcess->pFirstThreadInfo;
  555. while ( pThread != NULL )
  556. {
  557. pThread->Context.ContextFlags = CONTEXT_FULL;
  558. GetThreadContext(pThread->hThread, &pThread->Context);
  559. pThread = pThread->pNext;
  560. }
  562. //
  563. // Get first entry in the module list.
  564. //
  565. if ( !SymInitialize(pProcess->hProcess, NULL, FALSE) )
  566. {
  567. return FALSE;
  568. }
  570. if ( !SymGetModuleInfo(pProcess->hProcess, 0, &CrashdumpInfo.mi) )
  571. {
  572. return FALSE;
  573. }
  575. CrashdumpInfo.CrashModule = (PCRASH_MODULE)LocalAlloc(LPTR, 4096);
  577. bRet = CreateUserDump(pszFileName, CrashDumpCallback, &CrashdumpInfo);
  579. LocalFree(CrashdumpInfo.CrashModule);
  581. return bRet;
  582. }