archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/sdktools/trace/evntrprv/glogger.cpp

394 lines
13 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*****************************************************************************\
  3. Author: Insung Park (insungp)
  5. Copyright (c) 1998-2000 Microsoft Corporation
  7. \*****************************************************************************/
  9. #include <stdio.h>
  10. #include <stdlib.h>
  11. #include <nt.h>
  12. #include <ntrtl.h>
  13. #include <nturtl.h>
  14. #include <windows.h>
  15. #include <shellapi.h>
  16. #include <tchar.h>
  17. #include <wmistr.h>
  18. #include <initguid.h>
  19. #include <evntrace.h>
  20. #include <wmiguid.h>
  21. #include <ntwmi.h>
  22. #include <ntperf.h>
  23. #include <fwcommon.h>
  25. LPCWSTR cszGlobalLoggerKey = L"\\REGISTRY\\MACHINE\\SYSTEM\\CurrentControlSet\\Control\\WMI\\GlobalLogger";
  26. LPCWSTR cszStartValue = L"Start";
  27. LPCWSTR cszBufferSizeValue = L"BufferSize";
  28. LPCWSTR cszMaximumBufferValue = L"MaximumBuffers";
  29. LPCWSTR cszMinimumBufferValue = L"MinimumBuffers";
  30. LPCWSTR cszFlushTimerValue = L"FlushTimer";
  31. LPCWSTR cszFileNameValue = L"FileName";
  32. LPCWSTR cszEnableKernelValue = L"EnableKernelFlags";
  33. LPCWSTR cszClockTypeValue = L"ClockType";
  35. GUID gHeapGuid = HeapGuid;
  36. GUID gCritSecGuid = CritSecGuid;
  38. HRESULT
  39. SetGlobalLoggerSettings(
  40. DWORD StartValue,
  41. PEVENT_TRACE_PROPERTIES LoggerInfo,
  42. DWORD ClockType
  43. )
  44. /*++
  46. Since it is a standalone utility, there is no need for extensive comments.
  48. Routine Description:
  50. Depending on the value given in "StartValue", it sets or resets event
  51. trace registry. If the StartValue is 0 (Global logger off), it deletes
  52. all the keys (that the user may have set previsouly).
  54. Users are allowed to set or reset individual keys using this function,
  55. but only when "-start GlobalLogger" is used.
  57. The section that uses non NTAPIs is not guaranteed to work.
  59. Arguments:
  61. StartValue - The "Start" value to be set in the registry.
  62. 0: Global logger off
  63. 1: Global logger on
  64. LoggerInfo - The poniter to the resident EVENT_TRACE_PROPERTIES instance.
  65. whose members are used to set registry keys.
  67. ClockType - The type of the clock to be set. Use pLoggerInfo->Wnode.ClientContext
  69. Return Value:
  71. Error Code defined in winerror.h : If the function succeeds,
  72. it returns ERROR_SUCCESS.
  75. --*/
  76. {
  78. DWORD dwValue;
  79. NTSTATUS status;
  80. HANDLE KeyHandle;
  81. OBJECT_ATTRIBUTES ObjectAttributes;
  82. UNICODE_STRING UnicodeLoggerKey, UnicodeString;
  83. ULONG Disposition, TitleIndex;
  85. RtlZeroMemory(&ObjectAttributes, sizeof(OBJECT_ATTRIBUTES));
  86. RtlInitUnicodeString((&UnicodeLoggerKey),(cszGlobalLoggerKey));
  87. InitializeObjectAttributes(
  88. &ObjectAttributes,
  89. &UnicodeLoggerKey,
  90. OBJ_CASE_INSENSITIVE,
  91. NULL,
  92. NULL
  93. );
  95. // instead of opening, create a new key because it may not exist.
  96. // if one exists already, that handle will be passed.
  97. // if none exists, it will create one.
  98. status = NtCreateKey(&KeyHandle,
  99. KEY_QUERY_VALUE | KEY_SET_VALUE,
  100. &ObjectAttributes,
  101. 0L, // not used within this call anyway.
  102. NULL,
  103. REG_OPTION_NON_VOLATILE,
  104. &Disposition);
  105. RtlFreeUnicodeString(&UnicodeLoggerKey);
  107. if(!NT_SUCCESS(status)) {
  108. return RtlNtStatusToDosError(status);
  109. }
  111. TitleIndex = 0L;
  114. if (StartValue == 1) { // ACTION_START: set filename only when it is given by a user.
  115. // setting BufferSize
  116. if (LoggerInfo->BufferSize > 0) {
  117. dwValue = LoggerInfo->BufferSize;
  118. RtlInitUnicodeString((&UnicodeString),(cszBufferSizeValue));
  119. status = NtSetValueKey(
  120. KeyHandle,
  121. &UnicodeString,
  122. TitleIndex,
  123. REG_DWORD,
  124. (LPBYTE)&dwValue,
  125. sizeof(dwValue)
  126. );
  127. RtlFreeUnicodeString(&UnicodeString);
  128. if (!NT_SUCCESS(status)) {
  129. NtClose(KeyHandle);
  130. return RtlNtStatusToDosError(status);
  131. }
  132. TitleIndex++;
  133. }
  134. // setting MaximumBuffers
  135. if (LoggerInfo->MaximumBuffers > 0) {
  136. dwValue = LoggerInfo->MaximumBuffers;
  137. RtlInitUnicodeString((&UnicodeString),(cszMaximumBufferValue));
  138. status = NtSetValueKey(
  139. KeyHandle,
  140. &UnicodeString,
  141. TitleIndex,
  142. REG_DWORD,
  143. (LPBYTE)&dwValue,
  144. sizeof(dwValue)
  145. );
  146. RtlFreeUnicodeString(&UnicodeString);
  147. if (!NT_SUCCESS(status)) {
  148. NtClose(KeyHandle);
  149. return RtlNtStatusToDosError(status);
  150. }
  151. TitleIndex++;
  152. }
  153. // setting MinimumBuffers
  154. if (LoggerInfo->MinimumBuffers > 0) {
  155. dwValue = LoggerInfo->MinimumBuffers;
  156. RtlInitUnicodeString((&UnicodeString),(cszMinimumBufferValue));
  157. status = NtSetValueKey(
  158. KeyHandle,
  159. &UnicodeString,
  160. TitleIndex,
  161. REG_DWORD,
  162. (LPBYTE)&dwValue,
  163. sizeof(dwValue)
  164. );
  165. RtlFreeUnicodeString(&UnicodeString);
  166. if (!NT_SUCCESS(status)) {
  167. NtClose(KeyHandle);
  168. return RtlNtStatusToDosError(status);
  169. }
  170. TitleIndex++;
  171. }
  172. // setting FlushTimer
  173. if (LoggerInfo->FlushTimer > 0) {
  174. dwValue = LoggerInfo->FlushTimer;
  175. RtlInitUnicodeString((&UnicodeString),(cszFlushTimerValue));
  176. status = NtSetValueKey(
  177. KeyHandle,
  178. &UnicodeString,
  179. TitleIndex,
  180. REG_DWORD,
  181. (LPBYTE)&dwValue,
  182. sizeof(dwValue)
  183. );
  184. RtlFreeUnicodeString(&UnicodeString);
  185. if (!NT_SUCCESS(status)) {
  186. NtClose(KeyHandle);
  187. return RtlNtStatusToDosError(status);
  188. }
  189. TitleIndex++;
  190. }
  191. // setting EnableFlags
  192. if (LoggerInfo->EnableFlags > 0) {
  193. dwValue = LoggerInfo->EnableFlags;
  194. RtlInitUnicodeString((&UnicodeString),(cszEnableKernelValue));
  195. status = NtSetValueKey(
  196. KeyHandle,
  197. &UnicodeString,
  198. TitleIndex,
  199. REG_DWORD,
  200. (LPBYTE)&dwValue,
  201. sizeof(dwValue)
  202. );
  203. RtlFreeUnicodeString(&UnicodeString);
  204. if (!NT_SUCCESS(status)) {
  205. NtClose(KeyHandle);
  206. return RtlNtStatusToDosError(status);
  207. }
  208. TitleIndex++;
  209. }
  211. dwValue = 0;
  212. if (LoggerInfo->LogFileNameOffset > 0) {
  213. UNICODE_STRING UnicodeFileName;
  214. RtlInitUnicodeString((&UnicodeFileName), (PWCHAR)(LoggerInfo->LogFileNameOffset + (PCHAR) LoggerInfo));
  215. RtlInitUnicodeString((&UnicodeString),(cszFileNameValue));
  216. status = NtSetValueKey(
  217. KeyHandle,
  218. &UnicodeString,
  219. TitleIndex,
  220. REG_SZ,
  221. UnicodeFileName.Buffer,
  222. UnicodeFileName.Length + sizeof(UNICODE_NULL)
  223. );
  224. RtlFreeUnicodeString(&UnicodeString);
  225. RtlFreeUnicodeString(&UnicodeFileName);
  226. if (!NT_SUCCESS(status)) {
  227. NtClose(KeyHandle);
  228. return RtlNtStatusToDosError(status);
  229. }
  230. TitleIndex++;
  231. }
  232. }
  233. else { // if ACTION_STOP then delete the keys that users might have set previously.
  234. // delete buffer size
  235. RtlInitUnicodeString((&UnicodeString),(cszBufferSizeValue));
  236. status = NtDeleteValueKey(
  237. KeyHandle,
  238. &UnicodeString
  239. );
  240. RtlFreeUnicodeString(&UnicodeString);
  241. if (!NT_SUCCESS(status) && status != STATUS_OBJECT_NAME_NOT_FOUND) {
  242. NtClose(KeyHandle);
  243. return RtlNtStatusToDosError(status);
  244. }
  245. // delete maximum buffers
  246. RtlInitUnicodeString((&UnicodeString),(cszMaximumBufferValue));
  247. status = NtDeleteValueKey(
  248. KeyHandle,
  249. &UnicodeString
  250. );
  251. RtlFreeUnicodeString(&UnicodeString);
  252. if (!NT_SUCCESS(status) && status != STATUS_OBJECT_NAME_NOT_FOUND) {
  253. NtClose(KeyHandle);
  254. return RtlNtStatusToDosError(status);
  255. }
  256. // delete minimum buffers
  257. RtlInitUnicodeString((&UnicodeString),(cszMinimumBufferValue));
  258. status = NtDeleteValueKey(
  259. KeyHandle,
  260. &UnicodeString
  261. );
  262. RtlFreeUnicodeString(&UnicodeString);
  263. if (!NT_SUCCESS(status) && status != STATUS_OBJECT_NAME_NOT_FOUND) {
  264. NtClose(KeyHandle);
  265. return RtlNtStatusToDosError(status);
  266. }
  267. // delete flush timer
  268. RtlInitUnicodeString((&UnicodeString),(cszFlushTimerValue));
  269. status = NtDeleteValueKey(
  270. KeyHandle,
  271. &UnicodeString
  272. );
  273. RtlFreeUnicodeString(&UnicodeString);
  274. if (!NT_SUCCESS(status) && status != STATUS_OBJECT_NAME_NOT_FOUND) {
  275. NtClose(KeyHandle);
  276. return RtlNtStatusToDosError(status);
  277. }
  278. // delete enable falg
  279. RtlInitUnicodeString((&UnicodeString),(cszEnableKernelValue));
  280. status = NtDeleteValueKey(
  281. KeyHandle,
  282. &UnicodeString
  283. );
  284. RtlFreeUnicodeString(&UnicodeString);
  285. if (!NT_SUCCESS(status) && status != STATUS_OBJECT_NAME_NOT_FOUND) {
  286. NtClose(KeyHandle);
  287. return RtlNtStatusToDosError(status);
  288. }
  289. // delete filename
  290. RtlInitUnicodeString((&UnicodeString),(cszFileNameValue));
  291. status = NtDeleteValueKey(
  292. KeyHandle,
  293. &UnicodeString
  294. );
  295. RtlFreeUnicodeString(&UnicodeString);
  296. if (!NT_SUCCESS(status) && status != STATUS_OBJECT_NAME_NOT_FOUND) {
  297. NtClose(KeyHandle);
  298. return RtlNtStatusToDosError(status);
  299. }
  300. }
  302. // setting ClockType
  303. if (ClockType > 0) {
  304. dwValue = ClockType;
  305. RtlInitUnicodeString((&UnicodeString),(cszClockTypeValue));
  306. status = NtSetValueKey(
  307. KeyHandle,
  308. &UnicodeString,
  309. TitleIndex,
  310. REG_DWORD,
  311. (LPBYTE)&dwValue,
  312. sizeof(dwValue)
  313. );
  314. RtlFreeUnicodeString(&UnicodeString);
  315. if (!NT_SUCCESS(status)) {
  316. NtClose(KeyHandle);
  317. return RtlNtStatusToDosError(status);
  318. }
  319. TitleIndex++;
  320. }
  322. // Setting StartValue
  323. dwValue = StartValue;
  324. RtlInitUnicodeString((&UnicodeString),(cszStartValue));
  325. status = NtSetValueKey(
  326. KeyHandle,
  327. &UnicodeString,
  328. TitleIndex,
  329. REG_DWORD,
  330. (LPBYTE)&dwValue,
  331. sizeof(dwValue)
  332. );
  333. RtlFreeUnicodeString(&UnicodeString);
  334. if (!NT_SUCCESS(status)) {
  335. NtClose(KeyHandle);
  336. return RtlNtStatusToDosError(status);
  337. }
  338. TitleIndex++;
  340. NtClose(KeyHandle);
  341. return 0;
  342. }
  344. ULONG
  345. EtsGetMaxEnableFlags ()
  346. {
  347. return PERF_NUM_MASKS;
  348. }
  351. HRESULT
  352. EtsSetExtendedFlags(
  353. SAFEARRAY *saFlags,
  354. PEVENT_TRACE_PROPERTIES pLoggerInfo,
  355. ULONG offset
  356. )
  358. {
  359. LONG lBound, uBound;
  360. ULONG HUGEP *pFlagData;
  362. if( NULL != saFlags ){
  363. SafeArrayGetLBound( saFlags, 1, &lBound );
  364. SafeArrayGetUBound( saFlags, 1, &uBound );
  365. SafeArrayAccessData( saFlags, (void HUGEP **)&pFlagData );
  366. pLoggerInfo->EnableFlags = pFlagData[lBound];
  367. if (pLoggerInfo->EnableFlags & EVENT_TRACE_FLAG_EXTENSION) {
  368. USHORT i;
  369. PTRACE_ENABLE_FLAG_EXTENSION FlagExt;
  370. UCHAR nFlag = (UCHAR) (uBound - lBound);
  371. if ( nFlag <= PERF_NUM_MASKS ) {
  372. PULONG pFlags;
  374. pLoggerInfo->EnableFlags = EVENT_TRACE_FLAG_EXTENSION;
  375. FlagExt = (PTRACE_ENABLE_FLAG_EXTENSION)
  376. &pLoggerInfo->EnableFlags;
  377. FlagExt->Offset = offset;
  378. FlagExt->Length = (UCHAR) nFlag;
  380. pFlags = (PULONG) ( offset + (PCHAR) pLoggerInfo );
  381. for (i=1; i<=nFlag; i++) {
  382. pFlags[i-1] = pFlagData[lBound + i];
  383. }
  384. }
  385. }
  386. SafeArrayUnaccessData( saFlags );
  387. }
  388. return ERROR_SUCCESS;
  389. }