archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/sdktools/pfmon/module.c

369 lines
9.1 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 1992 Microsoft Corporation
  5. Module Name:
  7. module.c
  9. Abstract:
  11. This module maintains the module (symbol) information for the pfmon application
  13. Author:
  15. Mark Lucovsky (markl) 27-Jan-1995
  17. Revision History:
  19. --*/
  21. #include "pfmonp.h"
  23. BOOL
  24. AddModule(
  25. LPDEBUG_EVENT DebugEvent
  26. )
  27. {
  28. PMODULE_INFO Module;
  29. LPVOID BaseAddress;
  30. HANDLE Handle;
  31. IMAGEHLP_MODULE ModuleInfo;
  33. if (DebugEvent->dwDebugEventCode == CREATE_PROCESS_DEBUG_EVENT) {
  34. Handle = DebugEvent->u.CreateProcessInfo.hFile;
  35. BaseAddress = DebugEvent->u.CreateProcessInfo.lpBaseOfImage;
  36. }
  37. else {
  38. Handle = DebugEvent->u.LoadDll.hFile;
  39. BaseAddress = DebugEvent->u.LoadDll.lpBaseOfDll;
  40. }
  42. Module = FindModuleContainingAddress(BaseAddress);
  44. if (Module) {
  45. DeleteModule(Module);
  46. }
  48. Module = LocalAlloc(LMEM_ZEROINIT, sizeof( *Module ) );
  50. if (Module == NULL) {
  51. return FALSE;
  52. }
  54. Module->Handle = Handle;
  55. Module->BaseAddress = BaseAddress;
  57. if (!Module->Handle) {
  58. LocalFree(Module);
  59. return FALSE;
  60. }
  62. if (!SymLoadModule (hProcess,Handle,NULL,NULL,(DWORD_PTR)BaseAddress,0)) {
  63. LocalFree(Module);
  64. return FALSE;
  65. }
  67. ModuleInfo.SizeOfStruct = sizeof(ModuleInfo);
  68. if (!SymGetModuleInfo (hProcess, (DWORD_PTR)BaseAddress, &ModuleInfo)) {
  69. LocalFree(Module);
  70. return FALSE;
  71. }
  73. Module->VirtualSize = ModuleInfo.ImageSize;
  74. Module->ModuleName = _strdup(ModuleInfo.ModuleName);
  76. InsertTailList( &ModuleListHead, &Module->Entry );
  78. return TRUE;
  79. }
  81. BOOL
  82. DeleteModule(
  83. PMODULE_INFO Module
  84. )
  85. {
  86. CHAR Line[256];
  88. if ( Module ) {
  89. RemoveEntryList(&Module->Entry);
  91. sprintf(Line,"%16s Caused %6d faults had %6d Soft %6d Hard faulted VA's\n",
  92. Module->ModuleName ? Module->ModuleName : "Unknown",
  93. Module->NumberCausedFaults,
  94. Module->NumberFaultedSoftVas,
  95. Module->NumberFaultedHardVas
  96. );
  98. if ( !fLogOnly ) {
  99. fprintf(stdout,"%s",Line);
  100. }
  102. if ( LogFile ) {
  103. fprintf(LogFile,"%s",Line);
  104. }
  106. if (Module->ModuleName) {
  107. free (Module->ModuleName);
  108. }
  110. LocalFree(Module);
  111. }
  113. return TRUE;
  114. }
  117. PMODULE_INFO
  118. FindModuleContainingAddress(
  119. LPVOID Address
  120. )
  121. {
  122. PLIST_ENTRY Next;
  123. PMODULE_INFO Module;
  124. BOOL LazyLoadStatus;
  126. Next = ModuleListHead.Flink;
  127. while ( Next != &ModuleListHead ) {
  128. Module = CONTAINING_RECORD(Next,MODULE_INFO,Entry);
  129. if ( Address >= Module->BaseAddress &&
  130. Address < (LPVOID)((PUCHAR)(Module->BaseAddress)+Module->VirtualSize) ) {
  131. return Module;
  132. }
  133. Next = Next->Flink;
  134. }
  136. Module = NULL;
  138. //
  139. // if address is a kernel mode address and we have lazy loaded
  140. // kernel symbols, then try to load a kernel symbol file
  141. //
  143. if ( fKernel && (ULONG_PTR)Address >= SystemRangeStart && LazyModuleInformation ) {
  144. fKernel = FALSE;
  145. LazyLoadStatus = LazyLoad(Address);
  147. if ( LazyLoadStatus ) {
  148. Module = FindModuleContainingAddress(Address);
  149. }
  150. fKernel = TRUE;
  151. }
  154. return Module;
  155. }
  157. VOID
  158. SetSymbolSearchPath(
  159. VOID
  160. )
  161. {
  162. LPSTR lpSymPathEnv, lpAltSymPathEnv, lpSystemRootEnv;
  163. ULONG cbSymPath;
  164. DWORD dw;
  166. cbSymPath = 18;
  167. if (lpSymPathEnv = getenv("_NT_SYMBOL_PATH")) {
  168. cbSymPath += strlen(lpSymPathEnv) + 1;
  169. }
  170. if (lpAltSymPathEnv = getenv("_NT_ALT_SYMBOL_PATH")) {
  171. cbSymPath += strlen(lpAltSymPathEnv) + 1;
  172. }
  174. if (lpSystemRootEnv = getenv("SystemRoot")) {
  175. cbSymPath += strlen(lpSystemRootEnv) + 1;
  176. }
  178. SymbolSearchPath = LocalAlloc(LMEM_ZEROINIT,cbSymPath);
  179. if (!SymbolSearchPath) {
  180. return;
  181. }
  183. if (lpAltSymPathEnv) {
  184. dw = GetFileAttributes(lpAltSymPathEnv);
  185. if ( dw != 0xffffffff && dw & FILE_ATTRIBUTE_DIRECTORY ) {
  186. strcat(SymbolSearchPath,lpAltSymPathEnv);
  187. strcat(SymbolSearchPath,";");
  188. }
  189. }
  190. if (lpSymPathEnv) {
  191. dw = GetFileAttributes(lpSymPathEnv);
  192. if ( dw != 0xffffffff && dw & FILE_ATTRIBUTE_DIRECTORY ) {
  193. strcat(SymbolSearchPath,lpSymPathEnv);
  194. strcat(SymbolSearchPath,";");
  195. }
  196. }
  198. if (lpSystemRootEnv) {
  199. dw = GetFileAttributes(lpSystemRootEnv);
  200. if ( dw != 0xffffffff && dw & FILE_ATTRIBUTE_DIRECTORY ) {
  201. strcat(SymbolSearchPath,lpSystemRootEnv);
  202. strcat(SymbolSearchPath,";");
  203. }
  204. }
  206. strcat(SymbolSearchPath,".;");
  207. }
  210. LONG
  211. AddKernelDrivers(VOID)
  213. /************************************************************\
  214. This function is used to load the symbol information for
  215. the system files that are loaded so that the page faults
  216. in the kernal can be displayed.
  218. Setting of the environmental variables are important for
  219. ensuring that the symbols load up correctly.
  221. returns: The success of the function
  222. \*************************************************************/
  225. {
  227. NTSTATUS status;
  228. PVOID pModuleInfo;
  229. ULONG lDataSize;
  230. ULONG lRetSize;
  231. PRTL_PROCESS_MODULES pModuleInformation;
  234. //First we need to get a list of all the modules currently
  235. //running
  237. //Allocate an initial sized buffer
  239. lDataSize = 1024 * 12;
  240. pModuleInfo = (PVOID) LocalAlloc (LMEM_FIXED, lDataSize);
  242. if (!pModuleInfo) {
  243. return ERROR_NOT_ENOUGH_MEMORY;
  244. }
  246. //Keep querying the system and incrementing the
  247. //size of the buffer until we can get all the information back
  249. do {
  250. //Query for modules loaded up
  252. status = NtQuerySystemInformation(SystemModuleInformation,
  253. pModuleInfo,
  254. lDataSize,
  255. &lRetSize);
  258. if (status == STATUS_INFO_LENGTH_MISMATCH) {
  259. LocalFree (pModuleInfo);
  260. lDataSize += 1024 * 4;
  261. pModuleInfo = (PVOID) LocalAlloc (LMEM_FIXED, lDataSize);
  262. }
  264. if (!pModuleInfo) {
  265. return ERROR_NOT_ENOUGH_MEMORY;
  266. }
  268. } while (status == STATUS_INFO_LENGTH_MISMATCH);
  270. LazyModuleInformation = (PRTL_PROCESS_MODULES) pModuleInfo;
  272. return 1;
  273. }
  277. BOOL
  278. LazyLoad(
  279. LPVOID Address
  280. )
  281. {
  282. PRTL_PROCESS_MODULES pModuleInformation;
  283. DWORD i;
  284. BYTE szImageFilePath[ MAX_PATH ];
  285. PMODULE_INFO Module;
  286. ULONG_PTR BaseAddress;
  287. HANDLE hFile;
  288. LPSTR szFileName;
  289. IMAGEHLP_MODULE ModuleInfo;
  291. pModuleInformation = (PRTL_PROCESS_MODULES) LazyModuleInformation;
  293. //Loop through all the items in the structure and
  294. //and add their symbols to the module structures kept by pfmon.
  296. for (i = 0; i < pModuleInformation->NumberOfModules; i += 1) {
  298. BaseAddress = (ULONG_PTR)pModuleInformation->Modules[i].ImageBase;
  300. //Only look at the kernel space modules
  302. if (BaseAddress >= SystemRangeStart) {
  304. if ( (ULONG_PTR)Address > BaseAddress &&
  305. (ULONG_PTR)Address <= BaseAddress+pModuleInformation->Modules[i].ImageSize ) {
  307. szFileName = pModuleInformation->Modules[i].FullPathName +
  308. pModuleInformation->Modules[i].OffsetToFileName;
  310. strcpy (szImageFilePath,
  311. pModuleInformation->Modules[i].FullPathName);
  313. hFile = FindExecutableImage (szFileName,
  314. SymbolSearchPath,
  315. (PCHAR) szImageFilePath );
  317. if (!hFile) {
  318. fprintf(stdout,"Failed to get Executable Image - ");
  319. return FALSE;
  320. }
  322. //Check to make sure this hasn't already been loaded
  324. Module = FindModuleContainingAddress((LPVOID)BaseAddress);
  326. if ( Module ) {
  327. fprintf(stdout,"Item has been loaded already: %s",szFileName);
  328. DeleteModule(Module);
  329. }
  331. //Now create the module record and fill in its fields
  333. Module = LocalAlloc(LMEM_ZEROINIT, sizeof( *Module ) );
  335. if (Module == NULL) {
  336. return FALSE;
  337. }
  339. Module->Handle = hFile;
  340. Module->BaseAddress = (LPVOID)BaseAddress;
  342. if (!SymLoadModule (hProcess, hFile, NULL, NULL, BaseAddress, 0)) {
  343. LocalFree(Module);
  344. fprintf(stdout, "Failed to load -- ");
  345. return FALSE;
  346. }
  348. ModuleInfo.SizeOfStruct = sizeof(ModuleInfo);
  349. if (!SymGetModuleInfo (hProcess, BaseAddress, &ModuleInfo)) {
  350. LocalFree(Module);
  351. fprintf(stdout, "Failed to load -- ");
  352. return FALSE;
  353. }
  355. Module->VirtualSize = ModuleInfo.ImageSize;
  357. fprintf(stdout, "Loaded %s, size %u\n", szImageFilePath, Module->VirtualSize);
  359. InsertTailList( &ModuleListHead, &Module->Entry );
  361. CloseHandle(hFile);
  363. return TRUE;
  364. }
  365. }
  366. }
  368. return FALSE;
  369. }