archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/sdktools/appverif/userdump.cpp

592 lines
16 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 1989-2000 Microsoft Corporation
  5. Module Name:
  7. UserDump.cpp
  9. Abstract:
  11. This module implements the code for generating a user mode dump.
  13. Author:
  15. clupu created 01/31/2001
  17. Revision History:
  19. --*/
  21. #include "stdafx.h"
  23. #include <crash.h>
  25. #include "Debugger.h"
  26. #include "UserDumpp.h"
  28. #define MEM_SIZE (64*1024)
  31. //
  32. // Private data structure used for communcating
  33. // crash dump data to the callback function.
  34. //
  35. typedef struct _CRASH_DUMP_INFO
  36. {
  37. PPROCESS_INFO pProcess;
  38. EXCEPTION_DEBUG_INFO* ExceptionInfo;
  39. DWORD MemoryCount;
  40. DWORD_PTR Address;
  41. PUCHAR MemoryData;
  42. MEMORY_BASIC_INFORMATION mbi;
  43. SIZE_T MbiOffset;
  44. SIZE_T MbiRemaining;
  45. PTHREAD_INFO pCurrentThread;
  46. IMAGEHLP_MODULE mi;
  47. PCRASH_MODULE CrashModule;
  48. } CRASH_DUMP_INFO, *PCRASH_DUMP_INFO;
  50. //
  51. // Local function prototypes
  52. //
  54. DWORD_PTR GetTeb( HANDLE hThread )
  55. {
  56. NTSTATUS Status;
  57. THREAD_BASIC_INFORMATION ThreadBasicInfo;
  58. DWORD_PTR Address = 0;
  60. Status = NtQueryInformationThread( hThread,
  61. ThreadBasicInformation,
  62. &ThreadBasicInfo,
  63. sizeof( ThreadBasicInfo ),
  64. NULL );
  65. if ( NT_SUCCESS(Status) )
  66. {
  67. Address = (DWORD_PTR)ThreadBasicInfo.TebBaseAddress;
  68. }
  70. return Address;
  71. }
  75. BOOL
  76. CrashDumpCallback(
  77. IN DWORD DataType, // requested data type
  78. OUT PVOID* DumpData, // pointer to a pointer to the data
  79. OUT LPDWORD DumpDataLength, // pointer to the data length
  80. IN OUT PVOID cdi // private data
  81. )
  82. /*++
  83. Return: TRUE on success, FALSE otherwise.
  85. Desc: This function is the callback used by crashlib.
  86. Its purpose is to provide data to CreateUserDump()
  87. for writting to the crashdump file.
  88. --*/
  90. {
  91. PCRASH_DUMP_INFO CrashdumpInfo = (PCRASH_DUMP_INFO)cdi;
  93. switch ( DataType )
  94. {
  95. case DMP_DEBUG_EVENT:
  96. *DumpData = &CrashdumpInfo->pProcess->DebugEvent;
  97. *DumpDataLength = sizeof(DEBUG_EVENT);
  98. break;
  100. case DMP_THREAD_STATE:
  101. {
  102. static CRASH_THREAD CrashThread;
  103. PTHREAD_INFO pCurrentThread;
  105. *DumpData = &CrashThread;
  107. if ( CrashdumpInfo->pCurrentThread == NULL )
  108. {
  109. pCurrentThread = CrashdumpInfo->pProcess->pFirstThreadInfo;
  110. }
  111. else
  112. {
  113. pCurrentThread = CrashdumpInfo->pCurrentThread->pNext;
  114. }
  116. CrashdumpInfo->pCurrentThread = pCurrentThread;
  118. if ( pCurrentThread == NULL )
  119. {
  120. return FALSE;
  121. }
  123. ZeroMemory(&CrashThread, sizeof(CrashThread));
  125. CrashThread.ThreadId = pCurrentThread->dwThreadId;
  126. CrashThread.SuspendCount = SuspendThread(pCurrentThread->hThread);
  128. if ( CrashThread.SuspendCount != (DWORD)-1 )
  129. {
  130. ResumeThread(pCurrentThread->hThread);
  131. }
  133. CrashThread.PriorityClass = GetPriorityClass(CrashdumpInfo->pProcess->hProcess);
  134. CrashThread.Priority = GetThreadPriority(pCurrentThread->hThread);
  135. CrashThread.Teb = GetTeb(pCurrentThread->hThread);
  137. *DumpDataLength = sizeof(CRASH_THREAD);
  138. break;
  139. }
  141. case DMP_MEMORY_BASIC_INFORMATION:
  142. while ( TRUE )
  143. {
  144. CrashdumpInfo->Address += CrashdumpInfo->mbi.RegionSize;
  146. if ( !VirtualQueryEx(CrashdumpInfo->pProcess->hProcess,
  147. (LPVOID)CrashdumpInfo->Address,
  148. &CrashdumpInfo->mbi,
  149. sizeof(MEMORY_BASIC_INFORMATION)) )
  150. {
  151. return FALSE;
  152. }
  154. if ( (CrashdumpInfo->mbi.Protect & PAGE_GUARD) ||
  155. (CrashdumpInfo->mbi.Protect & PAGE_NOACCESS) )
  156. {
  157. continue;
  158. }
  160. if ( (CrashdumpInfo->mbi.State & MEM_FREE) ||
  161. (CrashdumpInfo->mbi.State & MEM_RESERVE) )
  162. {
  163. continue;
  164. }
  166. break;
  167. }
  169. *DumpData = &CrashdumpInfo->mbi;
  170. *DumpDataLength = sizeof(MEMORY_BASIC_INFORMATION);
  171. break;
  173. case DMP_THREAD_CONTEXT:
  174. {
  175. PTHREAD_INFO pCurrentThread;
  177. if ( CrashdumpInfo->pCurrentThread == NULL )
  178. {
  179. pCurrentThread = CrashdumpInfo->pProcess->pFirstThreadInfo;
  180. }
  181. else
  182. {
  183. pCurrentThread = CrashdumpInfo->pCurrentThread->pNext;
  184. }
  186. CrashdumpInfo->pCurrentThread = pCurrentThread;
  188. if ( pCurrentThread == NULL )
  189. {
  190. return FALSE;
  191. }
  193. *DumpData = &CrashdumpInfo->pCurrentThread->Context;
  194. *DumpDataLength = sizeof(CONTEXT);
  195. break;
  196. }
  198. case DMP_MODULE:
  199. if ( CrashdumpInfo->mi.BaseOfImage == 0 )
  200. {
  201. return FALSE;
  202. }
  204. CrashdumpInfo->CrashModule->BaseOfImage = CrashdumpInfo->mi.BaseOfImage;
  205. CrashdumpInfo->CrashModule->SizeOfImage = CrashdumpInfo->mi.ImageSize;
  206. CrashdumpInfo->CrashModule->ImageNameLength = strlen(CrashdumpInfo->mi.ImageName) + 1;
  207. strcpy( CrashdumpInfo->CrashModule->ImageName, CrashdumpInfo->mi.ImageName );
  209. *DumpData = CrashdumpInfo->CrashModule;
  210. *DumpDataLength = sizeof(CRASH_MODULE) + CrashdumpInfo->CrashModule->ImageNameLength;
  212. if ( !SymGetModuleInfo(CrashdumpInfo->pProcess->hProcess,
  213. (DWORD_PTR)-1,
  214. &CrashdumpInfo->mi) )
  215. {
  216. CrashdumpInfo->mi.BaseOfImage = 0;
  217. }
  218. break;
  220. case DMP_MEMORY_DATA:
  221. if ( !CrashdumpInfo->MemoryCount )
  222. {
  224. CrashdumpInfo->Address = 0;
  225. CrashdumpInfo->MbiOffset = 0;
  226. CrashdumpInfo->MbiRemaining = 0;
  228. ZeroMemory( &CrashdumpInfo->mbi, sizeof(MEMORY_BASIC_INFORMATION) );
  230. CrashdumpInfo->MemoryData = (PUCHAR)VirtualAlloc(NULL,
  231. MEM_SIZE,
  232. MEM_COMMIT,
  233. PAGE_READWRITE);
  234. }
  236. if ( !CrashdumpInfo->MbiRemaining )
  237. {
  238. while ( TRUE )
  239. {
  240. CrashdumpInfo->Address += CrashdumpInfo->mbi.RegionSize;
  242. if ( !VirtualQueryEx(CrashdumpInfo->pProcess->hProcess,
  243. (LPVOID)CrashdumpInfo->Address,
  244. &CrashdumpInfo->mbi,
  245. sizeof(MEMORY_BASIC_INFORMATION)) )
  246. {
  248. if ( CrashdumpInfo->MemoryData )
  249. {
  250. VirtualFree(CrashdumpInfo->MemoryData, MEM_SIZE, MEM_RELEASE);
  251. }
  253. return FALSE;
  254. }
  256. if ( (CrashdumpInfo->mbi.Protect & PAGE_GUARD) ||
  257. (CrashdumpInfo->mbi.Protect & PAGE_NOACCESS) )
  258. {
  259. continue;
  260. }
  262. if ( (CrashdumpInfo->mbi.State & MEM_FREE) ||
  263. (CrashdumpInfo->mbi.State & MEM_RESERVE) )
  264. {
  265. continue;
  266. }
  268. CrashdumpInfo->MbiOffset = 0;
  269. CrashdumpInfo->MbiRemaining = CrashdumpInfo->mbi.RegionSize;
  270. CrashdumpInfo->MemoryCount += 1;
  271. break;
  272. }
  273. }
  275. *DumpDataLength = (DWORD)__min( CrashdumpInfo->MbiRemaining, MEM_SIZE );
  276. CrashdumpInfo->MbiRemaining -= *DumpDataLength;
  278. ReadProcessMemory(CrashdumpInfo->pProcess->hProcess,
  279. (PUCHAR)((DWORD_PTR)CrashdumpInfo->mbi.BaseAddress + CrashdumpInfo->MbiOffset),
  280. CrashdumpInfo->MemoryData,
  281. *DumpDataLength,
  282. NULL);
  284. *DumpData = CrashdumpInfo->MemoryData;
  285. CrashdumpInfo->MbiOffset += *DumpDataLength;
  286. break;
  287. }
  289. return TRUE;
  290. }
  292. BOOL
  293. CreateUserDump(
  294. IN LPTSTR pszFileName,
  295. IN PDBGHELP_CREATE_USER_DUMP_CALLBACK DmpCallback,
  296. IN PVOID lpv
  297. )
  299. /*++
  300. Return: TRUE on success, FALSE otherwise.
  302. Desc: Creates the dump file.
  303. --*/
  304. {
  305. OSVERSIONINFOW OsVersion = {0};
  306. USERMODE_CRASHDUMP_HEADER DumpHeader = {0};
  307. DWORD cb;
  308. HANDLE hFile = INVALID_HANDLE_VALUE;
  309. BOOL rval;
  310. PVOID DumpData;
  311. DWORD DumpDataLength;
  312. SECURITY_ATTRIBUTES SecAttrib;
  313. SECURITY_DESCRIPTOR SecDescript;
  315. //
  316. // Create a DACL that allows all access to the directory.
  317. //
  318. SecAttrib.nLength = sizeof(SECURITY_ATTRIBUTES);
  319. SecAttrib.lpSecurityDescriptor = &SecDescript;
  320. SecAttrib.bInheritHandle = FALSE;
  322. InitializeSecurityDescriptor(&SecDescript, SECURITY_DESCRIPTOR_REVISION);
  323. SetSecurityDescriptorDacl(&SecDescript, TRUE, NULL, FALSE);
  325. hFile = CreateFile(pszFileName,
  326. GENERIC_READ | GENERIC_WRITE,
  327. 0,
  328. &SecAttrib,
  329. CREATE_ALWAYS,
  330. FILE_ATTRIBUTE_NORMAL,
  331. NULL);
  333. if ( hFile == NULL || hFile == INVALID_HANDLE_VALUE )
  334. {
  335. return FALSE;
  336. }
  338. //
  339. // Write out an empty header.
  340. //
  341. if ( !WriteFile(hFile, &DumpHeader, sizeof(DumpHeader), &cb, NULL) )
  342. {
  343. goto bad_file;
  344. }
  346. //
  347. // Write the debug event.
  348. //
  349. DumpHeader.DebugEventOffset = SetFilePointer(hFile, 0, NULL, FILE_CURRENT);
  351. DmpCallback(DMP_DEBUG_EVENT, &DumpData, &DumpDataLength, lpv);
  353. if ( !WriteFile(hFile, DumpData, sizeof(DEBUG_EVENT), &cb, NULL) )
  354. {
  355. goto bad_file;
  356. }
  358. //
  359. // Write the memory map.
  360. //
  361. DumpHeader.MemoryRegionOffset = SetFilePointer(hFile, 0, NULL, FILE_CURRENT);
  363. do
  364. {
  365. __try {
  366. rval = DmpCallback(DMP_MEMORY_BASIC_INFORMATION,
  367. &DumpData,
  368. &DumpDataLength,
  369. lpv);
  371. } __except (EXCEPTION_EXECUTE_HANDLER) {
  372. rval = FALSE;
  373. }
  375. if ( rval )
  376. {
  377. DumpHeader.MemoryRegionCount += 1;
  379. if ( !WriteFile(hFile, DumpData, sizeof(MEMORY_BASIC_INFORMATION), &cb, NULL) )
  380. {
  381. goto bad_file;
  382. }
  383. }
  384. } while ( rval );
  386. //
  387. // Write the thread contexts.
  388. //
  389. DumpHeader.ThreadOffset = SetFilePointer(hFile, 0, NULL, FILE_CURRENT);
  391. do
  392. {
  393. __try {
  394. rval = DmpCallback(DMP_THREAD_CONTEXT,
  395. &DumpData,
  396. &DumpDataLength,
  397. lpv);
  399. } __except (EXCEPTION_EXECUTE_HANDLER) {
  400. rval = FALSE;
  401. }
  403. if ( rval )
  404. {
  405. if ( !WriteFile(hFile, DumpData, DumpDataLength, &cb, NULL) )
  406. {
  407. goto bad_file;
  408. }
  410. DumpHeader.ThreadCount += 1;
  411. }
  413. } while ( rval );
  415. //
  416. // Write the thread states.
  417. //
  418. DumpHeader.ThreadStateOffset = SetFilePointer(hFile, 0, NULL, FILE_CURRENT);
  420. do
  421. {
  422. __try {
  423. rval = DmpCallback(DMP_THREAD_STATE,
  424. &DumpData,
  425. &DumpDataLength,
  426. lpv);
  428. } __except (EXCEPTION_EXECUTE_HANDLER) {
  429. rval = FALSE;
  430. }
  432. if ( rval )
  433. {
  434. if ( !WriteFile(hFile, DumpData, sizeof(CRASH_THREAD), &cb, NULL) )
  435. {
  436. goto bad_file;
  437. }
  438. }
  440. } while ( rval );
  442. //
  443. // Write the module table.
  444. //
  445. DumpHeader.ModuleOffset = SetFilePointer(hFile, 0, NULL, FILE_CURRENT);
  447. do
  448. {
  449. __try {
  450. rval = DmpCallback(DMP_MODULE,
  451. &DumpData,
  452. &DumpDataLength,
  453. lpv);
  455. } __except (EXCEPTION_EXECUTE_HANDLER) {
  456. rval = FALSE;
  457. }
  459. if ( rval )
  460. {
  461. if ( !WriteFile(hFile,
  462. DumpData,
  463. sizeof(CRASH_MODULE) + ((PCRASH_MODULE)DumpData)->ImageNameLength,
  464. &cb,
  465. NULL) )
  466. {
  467. goto bad_file;
  468. }
  470. DumpHeader.ModuleCount += 1;
  471. }
  472. } while ( rval );
  474. //
  475. // Write the virtual memory
  476. //
  477. DumpHeader.DataOffset = SetFilePointer(hFile, 0, NULL, FILE_CURRENT);
  479. do
  480. {
  481. __try {
  482. rval = DmpCallback(DMP_MEMORY_DATA,
  483. &DumpData,
  484. &DumpDataLength,
  485. lpv);
  487. } __except (EXCEPTION_EXECUTE_HANDLER) {
  488. rval = FALSE;
  489. }
  491. if ( rval )
  492. {
  493. if ( !WriteFile(hFile, DumpData, DumpDataLength, &cb, NULL) )
  494. {
  495. goto bad_file;
  496. }
  497. }
  498. } while ( rval );
  500. //
  501. // The VersionInfo is optional.
  502. //
  503. DumpHeader.VersionInfoOffset = SetFilePointer(hFile, 0, NULL, FILE_CURRENT);
  505. //
  506. // re-write the dump header with some valid data.
  507. //
  508. GetVersionEx(&OsVersion);
  510. DumpHeader.Signature = USERMODE_CRASHDUMP_SIGNATURE;
  511. DumpHeader.MajorVersion = OsVersion.dwMajorVersion;
  512. DumpHeader.MinorVersion = OsVersion.dwMinorVersion;
  513. #ifdef _X86_
  514. DumpHeader.MachineImageType = IMAGE_FILE_MACHINE_I386;
  515. DumpHeader.ValidDump = USERMODE_CRASHDUMP_VALID_DUMP32;
  516. #else
  517. DumpHeader.MachineImageType = IMAGE_FILE_MACHINE_IA64;
  518. DumpHeader.ValidDump = USERMODE_CRASHDUMP_VALID_DUMP64;
  519. #endif
  521. SetFilePointer(hFile, 0, 0, FILE_BEGIN);
  523. if ( !WriteFile(hFile, &DumpHeader, sizeof(DumpHeader), &cb, NULL) )
  524. {
  525. goto bad_file;
  526. }
  528. CloseHandle(hFile);
  530. return TRUE;
  532. bad_file:
  534. CloseHandle(hFile);
  536. DeleteFile(pszFileName);
  538. return FALSE;
  539. }
  543. BOOL
  544. GenerateUserModeDump(
  545. LPTSTR pszFileName,
  546. PPROCESS_INFO pProcess,
  547. LPEXCEPTION_DEBUG_INFO ed
  548. )
  549. {
  550. CRASH_DUMP_INFO CrashdumpInfo = {0};
  551. BOOL bRet;
  552. PTHREAD_INFO pThread;
  554. CrashdumpInfo.mi.SizeOfStruct = sizeof(CrashdumpInfo.mi);
  555. CrashdumpInfo.pProcess = pProcess;
  556. CrashdumpInfo.ExceptionInfo = ed;
  558. //
  559. // Get the thread context for all the threads.
  560. //
  561. pThread = pProcess->pFirstThreadInfo;
  563. while ( pThread != NULL )
  564. {
  565. pThread->Context.ContextFlags = CONTEXT_FULL;
  566. GetThreadContext(pThread->hThread, &pThread->Context);
  567. pThread = pThread->pNext;
  568. }
  570. //
  571. // Get first entry in the module list.
  572. //
  573. if ( !SymInitialize(pProcess->hProcess, NULL, FALSE) )
  574. {
  575. return FALSE;
  576. }
  578. if ( !SymGetModuleInfo(pProcess->hProcess, 0, &CrashdumpInfo.mi) )
  579. {
  580. return FALSE;
  581. }
  583. CrashdumpInfo.CrashModule = (PCRASH_MODULE)LocalAlloc(LPTR, 4096);
  585. bRet = CreateUserDump(pszFileName, CrashDumpCallback, &CrashdumpInfo);
  587. LocalFree(CrashdumpInfo.CrashModule);
  589. return bRet;
  590. }