archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/admin/pchealth/client/dumprep/dumprep.cpp

910 lines
27 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /****************************************************************************
  2. Copyright (c) 2000 Microsoft Corporation
  4. Module Name:
  5. dumprep.cpp
  7. Abstract:
  8. hang manager intermediate app
  9. *** IMPORTANT NOTE: this links with the single threaded CRT static lib. If
  10. it is changed to be multithreaded for some odd reason,
  11. then the sources file must be modified to link to
  12. libcmt.lib.
  14. Revision History:
  16. DerekM created 08/16/00
  18. ****************************************************************************/
  20. /////////////////////////////////////////////////////////////////////////////
  21. // tracing
  23. #ifdef THIS_FILE
  24. #undef THIS_FILE
  25. #endif
  26. static char __szTraceSourceFile[] = __FILE__;
  27. #define THIS_FILE __szTraceSourceFile
  30. #include "stdafx.h"
  31. #include "malloc.h"
  32. #include "faultrep.h"
  33. #include "pfrcfg.h"
  34. #include <shlwapi.h>
  35. #include <strsafe.h>
  38. enum EOp
  39. {
  40. eopNone = 0,
  41. eopHang,
  42. eopDump,
  43. eopEvent
  44. };
  46. enum ECheckType
  47. {
  48. ctNone = -1,
  49. ctKernel = 0,
  50. ctUser,
  51. ctShutdown,
  52. ctNumChecks
  53. };
  55. struct SCheckData
  56. {
  57. LPCWSTR wszRegPath;
  58. LPCWSTR wszRunVal;
  59. LPCWSTR wszEventName;
  60. LPCSTR szFnName;
  61. BOOL fUseData;
  62. BOOL fDelDump;
  63. };
  65. struct SQueuePruneData
  66. {
  67. LPWSTR wszVal;
  68. FILETIME ftFault;
  69. };
  71. char *eopStr[] =
  72. {
  73. "eopNone",
  74. "eopHang",
  75. "eopDump",
  76. "eopEvent"
  77. };
  80. //////////////////////////////////////////////////////////////////////////////
  81. // constants
  83. const char c_szKSFnName[] = "ReportEREventDW";
  84. const char c_szUserFnName[] = "ReportFaultFromQueue";
  86. SCheckData g_scd[ctNumChecks] =
  87. {
  88. { c_wszRKKrnl, c_wszRVKFC, c_wszMutKrnlName, c_szKSFnName, FALSE, FALSE },
  89. { c_wszRKUser, c_wszRVUFC, c_wszMutUserName, c_szUserFnName, TRUE, TRUE },
  90. { c_wszRKShut, c_wszRVSEC, c_wszMutShutName, c_szKSFnName, FALSE, FALSE },
  91. };
  93. #define EV_ACCESS_ALL GENERIC_ALL | STANDARD_RIGHTS_ALL
  94. #define EV_ACCESS_RS GENERIC_READ | SYNCHRONIZE
  96. #define pfn_VALONLY pfn_REPORTEREVENTDW
  97. #define pfn_VALDATA pfn_REPORTFAULTFROMQ
  100. //////////////////////////////////////////////////////////////////////////////
  101. // globals
  103. BOOL g_fDeleteReg = TRUE;
  106. //////////////////////////////////////////////////////////////////////////////
  107. // misc
  109. // **************************************************************************
  110. LONG __stdcall ExceptionTrap(_EXCEPTION_POINTERS *ExceptionInfo)
  111. {
  112. return EXCEPTION_EXECUTE_HANDLER;
  113. }
  116. // **************************************************************************
  117. HRESULT PruneQ(HKEY hkeyQ, DWORD cQSize, DWORD cMaxQSize, DWORD cchMaxVal,
  118. DWORD cbMaxData)
  119. {
  120. USE_TRACING("PruneQ");
  122. SQueuePruneData *pqpd = NULL;
  123. FILETIME ft;
  124. HRESULT hr = NOERROR;
  125. LPWSTR pwsz, pwszCurrent = NULL;
  126. DWORD cchVal, cbData, dwType, cToDel = 0, cInDelList = 0;
  127. DWORD i, iEntry, dw, cValid = 0;
  129. VALIDATEPARM(hr, (hkeyQ == NULL));
  130. if (FAILED(hr))
  131. goto done;
  133. if (cMaxQSize > cQSize)
  134. goto done;
  136. // don't need to do a +1 here (as in user faults) because we're not going
  137. // to add anything to the queue after this. This just ensures that we
  138. // don't report too many things
  139. cToDel = cQSize - cMaxQSize;
  141. // alloc the various buffers that we'll need:
  142. // the delete list
  143. // the current file we're working with
  144. // the data blob associated with the current file
  145. cbData = (sizeof(SQueuePruneData) + (cchMaxVal * sizeof(WCHAR))) * cToDel;
  146. pwszCurrent = (LPWSTR)MyAlloc(cchMaxVal * sizeof(WCHAR));
  147. pqpd = (SQueuePruneData *)MyAlloc(cbData);
  148. if (pwszCurrent == NULL || pqpd == NULL)
  149. {
  150. SetLastError(ERROR_OUTOFMEMORY);
  151. hr = E_OUTOFMEMORY;
  152. goto done;
  153. }
  155. // intiailize all the string pointers in the delete list
  156. pwsz = (LPWSTR)((BYTE *)pqpd + (sizeof(SQueuePruneData) * cToDel));
  157. for (i = 0; i < cToDel; i++)
  158. {
  159. pqpd[i].ftFault.dwHighDateTime = 0;
  160. pqpd[i].ftFault.dwLowDateTime = 0;
  161. pqpd[i].wszVal = pwsz;
  162. pqpd[i].wszVal[0] = L'\0';
  163. pwsz += cchMaxVal;
  164. }
  167. // ok, get a list of all the valid items and build an array in sorted order
  168. // so that we can easily pick off the top n items
  169. for(iEntry = 0; iEntry < cQSize; iEntry++)
  170. {
  171. cchVal = cchMaxVal;
  172. cbData = sizeof(ft);
  173. dw = RegEnumValueW(hkeyQ, iEntry, pwszCurrent, &cchVal, 0, &dwType,
  174. (PBYTE)&ft, &cbData);
  175. if (dw == ERROR_NO_MORE_ITEMS)
  176. break;
  177. else if (dw != ERROR_SUCCESS)
  178. continue;
  179. else if (dwType != REG_BINARY || cbData != sizeof(ft))
  180. {
  181. RegDeleteValueW(hkeyQ, pwszCurrent);
  182. continue;
  183. }
  185. for (i = 0; i < cInDelList; i++)
  186. {
  187. if ((ft.dwHighDateTime < pqpd[i].ftFault.dwHighDateTime) ||
  188. (ft.dwHighDateTime == pqpd[i].ftFault.dwHighDateTime &&
  189. ft.dwLowDateTime < pqpd[i].ftFault.dwLowDateTime))
  190. break;
  191. }
  193. // if it's in the middle of the current list, then we gotta move
  194. // stuff around
  195. if (cInDelList > 0 && i < cInDelList - 1)
  196. {
  197. LPWSTR pwszTemp = pqpd[cInDelList - 1].wszVal;
  199. MoveMemory(&pqpd[i], &pqpd[i + 1],
  200. (cInDelList - i) * sizeof(SQueuePruneData));
  202. pqpd[i].wszVal = pwszTemp;
  203. }
  205. if (i < cToDel)
  206. {
  207. // note that this copy is safe cuz each string slot is the same
  208. // size as the buffer pointed to by pwszCurrent and that buffer is
  209. // protected from overflow by the size we pass into
  210. // RegEnumValueW()
  211. StringCbCopyW(pqpd[i].wszVal, cchMaxVal * sizeof(WCHAR), pwszCurrent);
  212. pqpd[i].ftFault = ft;
  214. if (cInDelList < cToDel)
  215. cInDelList++;
  216. }
  218. cValid++;
  219. }
  221. // if there aren't enuf valid entries to warrant a purge, then don't purge
  222. if (cValid < cMaxQSize)
  223. goto done;
  225. cToDel = MyMin(cToDel, cValid - cMaxQSize + 1);
  227. // purge enuf entries that we go down to 1 below our max (since we have to
  228. // be adding 1 to get here- don't want that 1 to drive us over the limit
  229. for(i = 0; i < cToDel; i++)
  230. {
  231. if (pqpd[i].wszVal != NULL)
  232. RegDeleteValueW(hkeyQ, pqpd[i].wszVal);
  233. }
  235. done:
  236. if (pqpd != NULL)
  237. MyFree(pqpd);
  238. if (pwszCurrent != NULL)
  239. MyFree(pwszCurrent);
  241. return hr;
  242. }
  244. // **************************************************************************
  245. HRESULT CheckQSizeAndPrune(HKEY hkeyQ)
  246. {
  247. USE_TRACING("CheckQueueSizeAndPrune");
  249. CPFFaultClientCfg oCfg;
  250. HRESULT hr = NOERROR;
  251. DWORD cMaxQSize = 0, cDefMaxQSize = 10;
  252. DWORD cQSize, cchMaxVal, cbMaxData, dwType;
  253. DWORD cb, dw;
  254. HKEY hkey = NULL;
  256. VALIDATEPARM(hr, (hkeyQ == NULL));
  257. if (FAILED(hr))
  258. goto done;
  260. // read the policy settings for UI and reporting
  261. TESTHR(hr, oCfg.Read(eroPolicyRO));
  263. cMaxQSize = oCfg.get_MaxUserQueueSize();
  265. if (FAILED(hr))
  266. {
  267. cMaxQSize = cDefMaxQSize;
  268. hr = NOERROR;
  269. }
  270. else
  271. {
  272. // there are other ways of disabling these reporting modes, so don't
  273. // honor a like we would for user faults
  274. if (cMaxQSize == 0)
  275. cMaxQSize = 1;
  277. // -1 means there is no limit
  278. else if (cMaxQSize == (DWORD)-1)
  279. {
  280. hr = NOERROR;
  281. goto done;
  282. }
  284. else if (cMaxQSize > c_cMaxQueue)
  285. cMaxQSize = c_cMaxQueue;
  286. }
  288. __try
  289. {
  290. // determine what the Q size is.
  291. TESTERR(hr, RegQueryInfoKey(hkeyQ, NULL, NULL, NULL, NULL, NULL, NULL,
  292. &cQSize, &cchMaxVal, &cbMaxData, NULL, NULL));
  293. if (SUCCEEDED(hr) && (cQSize >= cMaxQSize))
  294. {
  295. cchMaxVal++;
  296. TESTHR(hr, PruneQ(hkeyQ, cQSize, cMaxQSize, cchMaxVal, cbMaxData));
  297. }
  298. else
  299. {
  300. hr = NOERROR;
  301. }
  302. }
  303. __except(EXCEPTION_EXECUTE_HANDLER)
  304. {
  305. }
  307. done:
  308. return hr;
  309. }
  312. // **************************************************************************
  313. void DeleteQueuedEvents(HKEY hkey, LPWSTR wszVal, DWORD cchMaxVal,
  314. ECheckType ct)
  315. {
  316. DWORD cchVal, dw;
  317. HKEY hkeyRun = NULL;
  318. HRESULT hr = NOERROR;
  320. USE_TRACING("DeleteQueuedEvents");
  322. VALIDATEPARM(hr, (hkey == NULL || wszVal == NULL));
  323. if (FAILED(hr))
  324. {
  325. SetLastError(ERROR_INVALID_PARAMETER);
  326. goto done;
  327. }
  329. for(;;)
  330. {
  331. cchVal = cchMaxVal;
  332. dw = RegEnumValueW(hkey, 0, wszVal, &cchVal, NULL, NULL,
  333. NULL, NULL);
  334. if (dw != ERROR_SUCCESS && dw != ERROR_NO_MORE_ITEMS)
  335. {
  336. SetLastError(dw);
  337. goto done;
  338. }
  340. if (dw == ERROR_NO_MORE_ITEMS)
  341. break;
  343. RegDeleteValueW(hkey, wszVal);
  344. if (ct == ctUser)
  345. DeleteFullAndTriageMiniDumps(wszVal);
  346. }
  348. // gotta delete our value out of the Run key so we don't run
  349. // unnecessarily again...
  350. dw = RegOpenKeyExW(HKEY_LOCAL_MACHINE, c_wszRKRun, 0,
  351. KEY_ALL_ACCESS, &hkeyRun);
  352. if (dw != ERROR_SUCCESS)
  353. goto done;
  355. RegDeleteValueW(hkeyRun, g_scd[ct].wszRunVal);
  357. done:
  358. if (hkeyRun != NULL)
  359. RegCloseKey(hkeyRun);
  361. return;
  362. }
  364. // **************************************************************************
  365. void ReportEvents(HMODULE hmod, ECheckType ct)
  366. {
  367. CPFFaultClientCfg oCfg;
  368. EFaultRepRetVal frrv;
  369. pfn_VALONLY pfnVO = NULL;
  370. pfn_VALDATA pfnVD = NULL;
  371. EEventType eet = eetKernelFault;
  372. HRESULT hr = NOERROR;
  373. HANDLE hmut = NULL;
  374. LPWSTR wszVal = NULL;
  375. LPBYTE pbData = NULL, pbDataToUse = NULL;
  376. EEnDis eedReport, eedUI;
  377. DWORD cchVal = 0, cchMaxVal = 0, cbMaxData = 0, cVals = 0;
  378. DWORD dw, cbData = 0, *pcbData = NULL, iRegRead = 0;
  379. DWORD dwType;
  380. HKEY hkey;
  382. USE_TRACING("ReportEvents");
  384. VALIDATEPARM(hr, ((ct <= ctNone && ct >= ctNumChecks) || hmod == NULL));
  385. if (FAILED(hr))
  386. return;
  388. // assume hmod is valid cuz we do a check in wWinMain to make sure it is
  389. // before calling this fn
  390. if (g_scd[ct].fUseData)
  391. pfnVD = (pfn_VALDATA)GetProcAddress(hmod, g_scd[ct].szFnName);
  392. else
  393. pfnVO = (pfn_VALONLY)GetProcAddress(hmod, g_scd[ct].szFnName);
  395. VALIDATEPARM(hr, (pfnVD == NULL && pfnVO == NULL));
  396. if (FAILED(hr))
  397. return;
  399. // read the policy settings for UI and reporting
  400. TESTHR(hr, oCfg.Read(eroPolicyRO));
  401. if (FAILED(hr))
  402. return;
  404. eedReport = oCfg.get_DoReport();
  405. eedUI = oCfg.get_ShowUI();
  407. if (eedUI != eedEnabled && eedUI != eedDisabled &&
  408. eedUI != eedEnabledNoCheck)
  409. eedUI = eedEnabled;
  411. if (eedReport != eedEnabled && eedReport != eedDisabled)
  412. eedReport = eedEnabled;
  414. // only want one user at a time going thru this
  415. hmut = OpenMutexW(SYNCHRONIZE, FALSE, g_scd[ct].wszEventName);
  416. VALIDATEPARM(hr, (hmut == NULL));
  417. if (FAILED(hr))
  418. return;
  420. // the default value above is eetKernelFault, so only need to change if
  421. // it's a shutdown
  422. if (ct == ctShutdown)
  423. eet = eetShutdown;
  425. __try
  426. {
  427. __try
  428. {
  429. // give this wait five minutes. If the code doesn't complete by
  430. // then, then we're either held up by DW (which means an admin
  431. // aleady passed thru here) or something has barfed and is holding
  432. // the mutex.
  433. dw = WaitForSingleObject(hmut, 300000);
  434. if (dw != WAIT_OBJECT_0 && dw != WAIT_ABANDONED)
  435. __leave;
  437. dw = RegOpenKeyExW(HKEY_LOCAL_MACHINE, g_scd[ct].wszRegPath, 0,
  438. KEY_ALL_ACCESS, &hkey);
  439. if (dw != ERROR_SUCCESS)
  440. __leave;
  442. // make sure we only have a fixed number of errors to report.
  443. if (ct == ctShutdown || ct == ctKernel)
  444. CheckQSizeAndPrune(hkey);
  446. // determine how big the valuename is & allocate a buffer for it
  447. dw = RegQueryInfoKeyW(hkey, NULL, NULL, NULL, NULL, NULL, NULL,
  448. &cVals, &cchMaxVal, &cbMaxData, NULL, NULL);
  449. if (dw != ERROR_SUCCESS || cVals == 0 || cchMaxVal == 0)
  450. __leave;
  452. cchMaxVal++;
  454. // get us some buffers to hold the data bits we're interested in...
  455. wszVal = (LPWSTR)MyAlloc(cchMaxVal * sizeof(WCHAR));
  456. if (wszVal == NULL)
  457. __leave;
  459. // if we're completely disabled, then nuke all the queued stuff
  460. // and bail
  461. if (eedUI == eedDisabled && eedReport == eedDisabled)
  462. {
  463. DeleteQueuedEvents(hkey, wszVal, cchMaxVal, ct);
  464. __leave;
  465. }
  467. if (g_scd[ct].fUseData)
  468. {
  469. pbData = (LPBYTE) MyAlloc(cbMaxData);
  470. if (pbData == NULL)
  471. __leave;
  473. pbDataToUse = pbData;
  474. pcbData = &cbData;
  475. }
  477. iRegRead = 0;
  479. do
  480. {
  481. HANDLE hFile = INVALID_HANDLE_VALUE;
  483. cchVal = cchMaxVal;
  484. cbData = cbMaxData;
  485. dw = RegEnumValueW(hkey, iRegRead, wszVal, &cchVal, NULL,
  486. &dwType, pbDataToUse, pcbData);
  487. if (dw != ERROR_SUCCESS && dw != ERROR_NO_MORE_ITEMS)
  488. __leave;
  490. if (dw == ERROR_NO_MORE_ITEMS)
  491. break;
  493. // make sure that the file exists
  494. hFile = CreateFileW(wszVal, GENERIC_READ,
  495. FILE_SHARE_READ | FILE_SHARE_WRITE, NULL,
  496. OPEN_EXISTING, 0, NULL);
  497. if (hFile == INVALID_HANDLE_VALUE)
  498. {
  499. BOOL fInc = TRUE;
  501. if (GetLastError() == ERROR_FILE_NOT_FOUND ||
  502. GetLastError() == ERROR_PATH_NOT_FOUND)
  503. {
  504. dw = RegDeleteValueW(hkey, wszVal);
  505. if (dw == ERROR_SUCCESS ||
  506. dw == ERROR_FILE_NOT_FOUND ||
  507. dw == ERROR_PATH_NOT_FOUND)
  508. fInc = FALSE;
  509. }
  511. if (fInc)
  512. iRegRead++;
  514. continue;
  515. }
  516. CloseHandle(hFile);
  517. hFile = INVALID_HANDLE_VALUE;
  519. if (g_scd[ct].fUseData)
  520. {
  521. // if the type isn't REG_BINARY, then someone wrote an
  522. // invalid blob to the registry. We have to ignore it.
  523. if (dwType == REG_BINARY)
  524. frrv = (*pfnVD)(wszVal, pbData, cbData);
  525. else
  526. {
  527. SetLastError(ERROR_INVALID_PARAMETER);
  528. frrv = frrvOk;
  529. }
  530. }
  531. else
  532. {
  533. frrv = (*pfnVO)(eet, wszVal, NULL);
  534. }
  536. // if the call succeeds (or the data we fed to it was invalid)
  537. // then nuke the reg key & dump file
  538. if (GetLastError() == ERROR_INVALID_PARAMETER ||
  539. (g_fDeleteReg && frrv == frrvOk))
  540. {
  541. dw = RegDeleteValueW(hkey, wszVal);
  542. if (dw != ERROR_SUCCESS && dw != ERROR_FILE_NOT_FOUND &&
  543. dw != ERROR_PATH_NOT_FOUND)
  544. {
  545. iRegRead++;
  546. continue;
  547. }
  549. if (g_scd[ct].fDelDump && g_fDeleteReg)
  550. DeleteFullAndTriageMiniDumps(wszVal);
  551. }
  552. #if 0
  553. // if we timed out, then clean up the reg key. If this is the
  554. // last report we're gonna make, also clean up the Run key
  555. else if (g_fDeleteReg && frrv == frrvErrTimeout)
  556. {
  557. RegDeleteValueW(hkey, wszVal);
  558. dw = RegQueryInfoKeyW(hkey, NULL, NULL, NULL, NULL, NULL, NULL,
  559. &cVals, NULL, NULL, NULL, NULL);
  560. if (dw != ERROR_SUCCESS || cVals > 0)
  561. __leave;
  562. else
  563. break;
  565. }
  566. #endif
  567. else
  568. {
  569. // don't delete the Run key if we got an error and didn't
  570. // delete the fault key
  571. if (frrv != frrvOk)
  572. __leave;
  573. }
  574. }
  575. while(1);
  577. RegCloseKey(hkey);
  578. hkey = NULL;
  580. // gotta delete our value out of the Run key so we don't run
  581. // unnecessarily again...
  582. dw = RegOpenKeyExW(HKEY_LOCAL_MACHINE, c_wszRKRun, 0,
  583. KEY_ALL_ACCESS, &hkey);
  584. if (dw != ERROR_SUCCESS)
  585. __leave;
  587. RegDeleteValueW(hkey, g_scd[ct].wszRunVal);
  588. }
  590. __finally
  591. {
  592. }
  593. }
  595. __except(EXCEPTION_EXECUTE_HANDLER)
  596. {
  597. }
  599. if (hmut != NULL)
  600. {
  601. ReleaseMutex(hmut);
  602. CloseHandle(hmut);
  603. }
  604. if (hkey != NULL)
  605. RegCloseKey(hkey);
  606. if (pbData != NULL)
  607. MyFree(pbData);
  608. if (wszVal != NULL)
  609. MyFree(wszVal);
  610. }
  613. //////////////////////////////////////////////////////////////////////////////
  614. // wmain
  616. // **************************************************************************
  617. int __cdecl wmain(int argc, WCHAR **argv)
  618. {
  619. EFaultRepRetVal frrv = frrvErrNoDW;
  620. SMDumpOptions smdo, *psmdo = &smdo;
  621. ECheckType ct = ctNone;
  622. HMODULE hmod = NULL;
  623. HANDLE hevNotify = NULL, hproc = NULL, hmem = NULL;
  624. LPWSTR wszDump = NULL;
  625. WCHAR wszMod[MAX_PATH];
  626. WCHAR wszCmdLine[MAX_PATH];
  628. DWORD dwpid, dwtid;
  629. BOOL f64bit = FALSE;
  630. int i;
  631. EOp eop = eopNone;
  632. HRESULT hr = NOERROR;
  634. // we don't want to have any faults get trapped anywhere.
  635. SetErrorMode(SEM_NOGPFAULTERRORBOX | SEM_NOALIGNMENTFAULTEXCEPT |
  636. SEM_FAILCRITICALERRORS | SEM_NOOPENFILEERRORBOX);
  637. SetUnhandledExceptionFilter(ExceptionTrap);
  639. INIT_TRACING
  641. USE_TRACING("DumpRep.wmain");
  643. VALIDATEPARM(hr, (argc < 2 || argc > 8));
  644. if (FAILED(hr))
  645. goto done;
  647. dwpid = _wtol(argv[1]);
  649. ZeroMemory(&smdo, sizeof(smdo));
  651. for (i = 2; i < argc; i++)
  652. {
  653. if (argv[i][0] != L'-')
  654. continue;
  656. switch(argv[i][1])
  657. {
  658. // debug flag to prevent deletion of reg entries
  659. case L'E':
  660. case L'e':
  661. #if defined(NO_WAY_DEBUG) || defined(NO_WAY__DEBUG)
  662. g_fDeleteReg = FALSE;
  663. #endif
  664. break;
  666. // user or kernel faults or shutdowns
  667. case L'K':
  668. case L'k':
  669. case L'U':
  670. case L'u':
  671. case L'S':
  672. case L's':
  673. if (eop != eopNone)
  674. goto done;
  676. eop = eopEvent;
  678. ErrorTrace(0, " eopEvent = %S", argv[i] );
  681. // to workaround the desktop hanging while all Run processes
  682. // do their thing, we spawn a another copy of ourselves and
  683. // immediately exit.
  684. if (argv[i][2] != L'G' && argv[i][2] != L'g')
  685. {
  686. PROCESS_INFORMATION pi;
  687. STARTUPINFOW si;
  688. PWCHAR pFileName;
  690. if (GetModuleFileNameW(NULL, wszMod, sizeofSTRW(wszMod)) == 0)
  691. {
  692. goto done;
  693. }
  695. // Now create commandline to be passed to CreateProcessW
  696. if (!(pFileName = wcschr(wszMod,L'\\')))
  697. {
  698. pFileName = wszMod;
  699. }
  700. StringCbCopyW(wszCmdLine, sizeof(wszCmdLine), pFileName);
  702. if (argv[i][1] == L'K' || argv[i][1] == L'k')
  703. StringCbCatW(wszCmdLine, sizeof(wszMod), L" 0 -KG");
  704. else if (argv[i][1] == L'U' || argv[i][1] == L'u')
  705. StringCbCatW(wszCmdLine, sizeof(wszMod), L" 0 -UG");
  706. else
  707. StringCbCatW(wszCmdLine, sizeof(wszMod), L" 0 -SG");
  709. ZeroMemory(&si, sizeof(si));
  710. si.cb = sizeof(si);
  712. ErrorTrace(0, " spawning \'%S\'", wszCmdLine );
  714. if (CreateProcessW(wszMod, wszCmdLine, NULL, NULL, FALSE, 0, NULL,
  715. NULL, &si, &pi))
  716. {
  717. CloseHandle(pi.hThread);
  718. CloseHandle(pi.hProcess);
  719. }
  721. goto done;
  722. }
  724. else
  725. {
  726. if (argv[i][1] == L'K' || argv[i][1] == L'k')
  727. ct = ctKernel;
  728. else if (argv[i][1] == L'U' || argv[i][1] == L'u')
  729. ct = ctUser;
  730. else
  731. ct = ctShutdown;
  732. }
  733. break;
  735. // hangs
  736. case L'H':
  737. case L'h':
  738. if (i + 1 >= argc || eop != eopNone)
  739. goto done;
  741. eop = eopHang;
  743. #ifdef _WIN64
  744. if (argv[i][2] == L'6')
  745. f64bit = TRUE;
  746. #endif
  747. dwtid = _wtol(argv[++i]);
  749. if (argc > i + 1)
  750. {
  751. hevNotify = OpenEventW(EVENT_MODIFY_STATE | SYNCHRONIZE,
  752. FALSE, argv[++i]);
  753. }
  754. break;
  756. // dumps
  757. case L'D':
  758. case L'd':
  759. if (i + 3 >= argc || wszDump != NULL || eop != eopNone)
  760. goto done;
  762. eop = eopDump;
  764. ZeroMemory(&smdo, sizeof(smdo));
  765. smdo.ulMod = _wtol(argv[++i]);
  766. smdo.ulThread = _wtol(argv[++i]);
  767. wszDump = argv[++i];
  769. if (argv[i - 3][2] == L'T' || argv[i - 3][2] == L't')
  770. {
  771. if (i + 1 >= argc)
  772. goto done;
  774. smdo.dwThreadID = _wtol(argv[++i]);
  775. smdo.dfOptions = dfFilterThread;
  776. }
  777. else if (argv[i - 3][2] == L'S' || argv[i - 3][2] == L's')
  778. {
  779. if (i + 2 >= argc)
  780. goto done;
  782. smdo.dwThreadID = _wtol(argv[++i]);
  783. smdo.ulThreadEx = _wtol(argv[++i]);
  784. smdo.dfOptions = dfFilterThreadEx;
  785. }
  786. else if (argv[i - 3][2] == L'M' || argv[i - 3][2] == L'm')
  787. {
  788. HANDLE hmemRemote = NULL;
  789. LPVOID pvMem = NULL;
  790. LPWSTR wszShareSdmoName;
  792. if (i + 1 >= argc)
  793. goto done;
  795. hproc = OpenProcess(PROCESS_ALL_ACCESS, FALSE, dwpid);
  796. if (hproc == NULL)
  797. {
  798. DWORD dwAwShit = GetLastError();
  799. goto done;
  800. }
  802. #ifdef _WIN64
  803. // hmemRemote = (HANDLE)_wtoi64(argv[++i]);
  804. #else
  805. // hmemRemote = (HANDLE)_wtol(argv[++i]);
  806. #endif
  807. wszShareSdmoName = argv[++i];
  808. if (wszShareSdmoName == NULL)
  809. {
  810. goto done;
  811. }
  812. hmem = OpenFileMappingW(FILE_MAP_WRITE,
  813. FALSE,
  814. wszShareSdmoName);
  815. if ((hmem == NULL) ||
  816. (hmem == INVALID_HANDLE_VALUE))
  817. {
  818. DWORD dwAwShit = GetLastError();
  819. goto done;
  820. }
  822. pvMem = MapViewOfFile(hmem, FILE_MAP_WRITE,
  823. 0, 0, 0);
  824. if (pvMem == NULL)
  825. goto done;
  827. psmdo = (SMDumpOptions *)pvMem;
  828. }
  830. break;
  832. default:
  833. goto done;
  834. }
  835. }
  837. ErrorTrace(0, " eop = %s", eopStr[eop]);
  839. // if we didn't get an operation, no point in doing anything else...
  840. if (eop == eopNone)
  841. goto done;
  843. if (GetSystemDirectoryW(wszMod, sizeofSTRW(wszMod)) == 0)
  844. {
  845. goto done;
  846. }
  847. StringCbCatW(wszMod, sizeof(wszMod), L"\\faultrep.dll");
  849. hmod = LoadLibraryExW(wszMod, NULL, 0);
  850. VALIDATEPARM(hr, (hmod == NULL));
  851. if (FAILED(hr))
  852. goto done;
  854. switch(eop)
  855. {
  856. // user or kernel faults:
  857. case eopEvent:
  858. ReportEvents(hmod, ct);
  859. break;
  861. // dumps
  862. case eopDump:
  863. {
  864. pfn_CREATEMINIDUMPW pfnCM;
  866. VALIDATEPARM(hr, (wszDump == NULL));
  867. if (FAILED(hr))
  868. goto done;
  870. pfnCM = (pfn_CREATEMINIDUMPW)GetProcAddress(hmod,
  871. "CreateMinidumpW");
  872. VALIDATEPARM(hr, (pfnCM == NULL));
  873. if (SUCCEEDED(hr))
  874. frrv = (*pfnCM)(dwpid, wszDump, psmdo) ? frrvOk : frrvErr;
  876. break;
  877. }
  879. // hangs
  880. case eopHang:
  881. {
  882. pfn_REPORTHANG pfnRH;
  884. pfnRH = (pfn_REPORTHANG)GetProcAddress(hmod, "ReportHang");
  885. VALIDATEPARM(hr, (pfnRH == NULL));
  886. if (SUCCEEDED(hr))
  887. frrv = (*pfnRH)(dwpid, dwtid, f64bit, hevNotify);
  889. break;
  890. }
  892. // err, shouldn't get here
  893. default:
  894. break;
  895. }
  897. done:
  898. if (hmod != NULL)
  899. FreeLibrary(hmod);
  900. if (hproc != NULL)
  901. CloseHandle(hproc);
  902. if (hmem != NULL)
  903. CloseHandle(hmem);
  904. if (hevNotify != NULL)
  905. CloseHandle(hevNotify);
  906. if (psmdo != NULL && psmdo != &smdo)
  907. UnmapViewOfFile((LPVOID)psmdo);
  909. return frrv;
  910. }