Legends-of-Azeroth-Pandaria-5.4.8
1051 строка · 37.5 Кб
1/*2* This file is part of the Pandaria 5.4.8 Project. See THANKS file for Copyright information3*4* This program is free software; you can redistribute it and/or modify it5* under the terms of the GNU General Public License as published by the6* Free Software Foundation; either version 2 of the License, or (at your7* option) any later version.8*9* This program is distributed in the hope that it will be useful, but WITHOUT10* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or11* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for12* more details.13*14* You should have received a copy of the GNU General Public License along15* with this program. If not, see <http://www.gnu.org/licenses/>.16*/17//==========================================19// Matt Pietrek20// MSDN Magazine, 200221// FILE: WheatyExceptionReport.CPP22//==========================================23#include "CompilerDefs.h"24#if PLATFORM == PLATFORM_WINDOWS && !defined(__MINGW32__)26#define WIN32_LEAN_AND_MEAN27#pragma warning(disable:4996)28#pragma warning(disable:4312)29#pragma warning(disable:4311)30#include <windows.h>31#include <tlhelp32.h>32#include <stdio.h>33#include <tchar.h>34#include "WheatyExceptionReport.h"36#include "Common.h"38#include "SystemConfig.h"39#include "revision.h"40#define CrashFolder _T("Crashes")42#pragma comment(linker, "/DEFAULTLIB:dbghelp.lib")43inline LPTSTR ErrorMessage(DWORD dw)45{46LPVOID lpMsgBuf;47FormatMessage(48FORMAT_MESSAGE_ALLOCATE_BUFFER |49FORMAT_MESSAGE_FROM_SYSTEM,50NULL,51dw,52MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT),53(LPTSTR) &lpMsgBuf,540, NULL);55return (LPTSTR)lpMsgBuf;56}57//============================== Global Variables =============================59//61// Declare the static variables of the WheatyExceptionReport class62//63TCHAR WheatyExceptionReport::m_szLogFileName[MAX_PATH];64TCHAR WheatyExceptionReport::m_szDumpFileName[MAX_PATH];65LPTOP_LEVEL_EXCEPTION_FILTER WheatyExceptionReport::m_previousFilter;66HANDLE WheatyExceptionReport::m_hReportFile;67HANDLE WheatyExceptionReport::m_hDumpFile;68HANDLE WheatyExceptionReport::m_hProcess;69// Declare global instance of class71WheatyExceptionReport g_WheatyExceptionReport;72//============================== Class Methods =============================74WheatyExceptionReport::WheatyExceptionReport() // Constructor76{77// Install the unhandled exception filter function78m_previousFilter = SetUnhandledExceptionFilter(WheatyUnhandledExceptionFilter);79m_hProcess = GetCurrentProcess();80}81//============83// Destructor84//============85WheatyExceptionReport::~WheatyExceptionReport()86{87if (m_previousFilter)88SetUnhandledExceptionFilter(m_previousFilter);89}90//===========================================================92// Entry point where control comes on an unhandled exception93//===========================================================94LONG WINAPI WheatyExceptionReport::WheatyUnhandledExceptionFilter(95PEXCEPTION_POINTERS pExceptionInfo)96{97TCHAR module_folder_name[MAX_PATH];98GetModuleFileName(0, module_folder_name, MAX_PATH);99TCHAR* pos = _tcsrchr(module_folder_name, '\\');100if (!pos)101return 0;102pos[0] = '\0';103++pos;104TCHAR crash_folder_path[MAX_PATH];106auto n = snprintf(crash_folder_path, MAX_PATH, "%s\\%s", module_folder_name, CrashFolder);107if (n == -1)108return 0;109if (!CreateDirectory(crash_folder_path, NULL))110{111if (GetLastError() != ERROR_ALREADY_EXISTS)112return 0;113}114SYSTEMTIME systime;116GetLocalTime(&systime);117sprintf(m_szDumpFileName, "%s\\%s_%s_[%u-%u_%u-%u-%u].dmp",118crash_folder_path, _HASH, pos, systime.wDay, systime.wMonth, systime.wHour, systime.wMinute, systime.wSecond);119sprintf(m_szLogFileName, "%s\\%s_%s_[%u-%u_%u-%u-%u].txt",121crash_folder_path, _HASH, pos, systime.wDay, systime.wMonth, systime.wHour, systime.wMinute, systime.wSecond);122m_hDumpFile = CreateFile(m_szDumpFileName,124GENERIC_WRITE,1250,1260,127OPEN_ALWAYS,128FILE_FLAG_WRITE_THROUGH,1290);130m_hReportFile = CreateFile(m_szLogFileName,132GENERIC_WRITE,1330,1340,135OPEN_ALWAYS,136FILE_FLAG_WRITE_THROUGH,1370);138if (m_hDumpFile)140{141MINIDUMP_EXCEPTION_INFORMATION info;142info.ClientPointers = FALSE;143info.ExceptionPointers = pExceptionInfo;144info.ThreadId = GetCurrentThreadId();145MiniDumpWriteDump(GetCurrentProcess(), GetCurrentProcessId(),147m_hDumpFile, MiniDumpWithIndirectlyReferencedMemory, &info, 0, 0);148CloseHandle(m_hDumpFile);150}151if (m_hReportFile)153{154SetFilePointer(m_hReportFile, 0, 0, FILE_END);155GenerateExceptionReport(pExceptionInfo);157CloseHandle(m_hReportFile);159m_hReportFile = 0;160}161if (m_previousFilter)163return m_previousFilter(pExceptionInfo);164else165return EXCEPTION_EXECUTE_HANDLER;/*EXCEPTION_CONTINUE_SEARCH*/166}167BOOL WheatyExceptionReport::_GetProcessorName(TCHAR* sProcessorName, DWORD maxcount)169{170if (!sProcessorName)171return FALSE;172HKEY hKey;174LONG lRet;175lRet = ::RegOpenKeyEx(HKEY_LOCAL_MACHINE, _T("HARDWARE\\DESCRIPTION\\System\\CentralProcessor\\0"),1760, KEY_QUERY_VALUE, &hKey);177if (lRet != ERROR_SUCCESS)178return FALSE;179TCHAR szTmp[2048];180DWORD cntBytes = sizeof(szTmp);181lRet = ::RegQueryValueEx(hKey, _T("ProcessorNameString"), NULL, NULL,182(LPBYTE)szTmp, &cntBytes);183if (lRet != ERROR_SUCCESS)184return FALSE;185::RegCloseKey(hKey);186sProcessorName[0] = '\0';187// Skip spaces188TCHAR* psz = szTmp;189while (iswspace(*psz))190++psz;191_tcsncpy(sProcessorName, psz, maxcount);192return TRUE;193}194BOOL WheatyExceptionReport::_GetWindowsVersion(TCHAR* szVersion, DWORD cntMax)196{197// Try calling GetVersionEx using the OSVERSIONINFOEX structure.198// If that fails, try using the OSVERSIONINFO structure.199OSVERSIONINFOEX osvi = { 0 };200osvi.dwOSVersionInfoSize = sizeof(OSVERSIONINFOEX);201BOOL bOsVersionInfoEx;202bOsVersionInfoEx = ::GetVersionEx((LPOSVERSIONINFO)(&osvi));203if (!bOsVersionInfoEx)204{205osvi.dwOSVersionInfoSize = sizeof(OSVERSIONINFO);206if (!::GetVersionEx((OSVERSIONINFO*)&osvi))207return FALSE;208}209*szVersion = _T('\0');210TCHAR wszTmp[128];211switch (osvi.dwPlatformId)212{213// Windows NT product family.214case VER_PLATFORM_WIN32_NT:215{216#if WINVER < 0x0500217BYTE suiteMask = osvi.wReserved[0];218BYTE productType = osvi.wReserved[1];219#else220WORD suiteMask = osvi.wSuiteMask;221BYTE productType = osvi.wProductType;222#endif // WINVER < 0x0500223// Test for the specific product family.225if (osvi.dwMajorVersion == 6)226{227if (productType == VER_NT_WORKSTATION)228{229if (osvi.dwMinorVersion == 2)230_tcsncat(szVersion, _T("Windows 8 "), cntMax);231else if (osvi.dwMinorVersion == 1)232_tcsncat(szVersion, _T("Windows 7 "), cntMax);233else234_tcsncat(szVersion, _T("Windows Vista "), cntMax);235}236else if (osvi.dwMinorVersion == 2)237_tcsncat(szVersion, _T("Windows Server 2012 "), cntMax);238else if (osvi.dwMinorVersion == 1)239_tcsncat(szVersion, _T("Windows Server 2008 R2 "), cntMax);240else241_tcsncat(szVersion, _T("Windows Server 2008 "), cntMax);242}243else if (osvi.dwMajorVersion == 5 && osvi.dwMinorVersion == 2)244_tcsncat(szVersion, _T("Microsoft Windows Server 2003 "), cntMax);245else if (osvi.dwMajorVersion == 5 && osvi.dwMinorVersion == 1)246_tcsncat(szVersion, _T("Microsoft Windows XP "), cntMax);247else if (osvi.dwMajorVersion == 5 && osvi.dwMinorVersion == 0)248_tcsncat(szVersion, _T("Microsoft Windows 2000 "), cntMax);249else if (osvi.dwMajorVersion <= 4)250_tcsncat(szVersion, _T("Microsoft Windows NT "), cntMax);251// Test for specific product on Windows NT 4.0 SP6 and later.253if (bOsVersionInfoEx)254{255// Test for the workstation type.256if (productType == VER_NT_WORKSTATION)257{258if (osvi.dwMajorVersion == 4)259_tcsncat(szVersion, _T("Workstation 4.0 "), cntMax);260else if (suiteMask & VER_SUITE_PERSONAL)261_tcsncat(szVersion, _T("Home Edition "), cntMax);262else if (suiteMask & VER_SUITE_EMBEDDEDNT)263_tcsncat(szVersion, _T("Embedded "), cntMax);264else265_tcsncat(szVersion, _T("Professional "), cntMax);266}267// Test for the server type.268else if (productType == VER_NT_SERVER)269{270if (osvi.dwMajorVersion == 5 && osvi.dwMinorVersion == 2)271{272if (suiteMask & VER_SUITE_DATACENTER)273_tcsncat(szVersion, _T("Datacenter Edition "), cntMax);274else if (suiteMask & VER_SUITE_ENTERPRISE)275_tcsncat(szVersion, _T("Enterprise Edition "), cntMax);276else if (suiteMask == VER_SUITE_BLADE)277_tcsncat(szVersion, _T("Web Edition "), cntMax);278else279_tcsncat(szVersion, _T("Standard Edition "), cntMax);280}281else if (osvi.dwMajorVersion == 5 && osvi.dwMinorVersion == 0)282{283if (suiteMask & VER_SUITE_DATACENTER)284_tcsncat(szVersion, _T("Datacenter Server "), cntMax);285else if (suiteMask & VER_SUITE_ENTERPRISE)286_tcsncat(szVersion, _T("Advanced Server "), cntMax);287else288_tcsncat(szVersion, _T("Server "), cntMax);289}290else // Windows NT 4.0291{292if (suiteMask & VER_SUITE_ENTERPRISE)293_tcsncat(szVersion, _T("Server 4.0, Enterprise Edition "), cntMax);294else295_tcsncat(szVersion, _T("Server 4.0 "), cntMax);296}297}298}299// Display service pack (if any) and build number.301if (osvi.dwMajorVersion == 4 && _tcsicmp(osvi.szCSDVersion, _T("Service Pack 6")) == 0)302{303HKEY hKey;304LONG lRet;305// Test for SP6 versus SP6a.307lRet = ::RegOpenKeyEx(HKEY_LOCAL_MACHINE, _T("SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Hotfix\\Q246009"), 0, KEY_QUERY_VALUE, &hKey);308if (lRet == ERROR_SUCCESS)309{310_stprintf(wszTmp, _T("Service Pack 6a (Version %d.%d, Build %d)"),311osvi.dwMajorVersion, osvi.dwMinorVersion, osvi.dwBuildNumber & 0xFFFF);312_tcsncat(szVersion, wszTmp, cntMax);313}314else // Windows NT 4.0 prior to SP6a315{316_stprintf(wszTmp, _T("%s (Version %d.%d, Build %d)"),317osvi.szCSDVersion, osvi.dwMajorVersion, osvi.dwMinorVersion, osvi.dwBuildNumber & 0xFFFF);318_tcsncat(szVersion, wszTmp, cntMax);319}320::RegCloseKey(hKey);321}322else // Windows NT 3.51 and earlier or Windows 2000 and later323{324if (!_tcslen(osvi.szCSDVersion))325_stprintf(wszTmp, _T("(Version %d.%d, Build %d)"),326osvi.dwMajorVersion, osvi.dwMinorVersion, osvi.dwBuildNumber & 0xFFFF);327else328_stprintf(wszTmp, _T("%s (Version %d.%d, Build %d)"),329osvi.szCSDVersion, osvi.dwMajorVersion, osvi.dwMinorVersion, osvi.dwBuildNumber & 0xFFFF);330_tcsncat(szVersion, wszTmp, cntMax);331}332break;333}334default:335_stprintf(wszTmp, _T("%s (Version %d.%d, Build %d)"),336osvi.szCSDVersion, osvi.dwMajorVersion, osvi.dwMinorVersion, osvi.dwBuildNumber & 0xFFFF);337_tcsncat(szVersion, wszTmp, cntMax);338break;339}340return TRUE;342}343void WheatyExceptionReport::PrintSystemInfo()345{346SYSTEM_INFO SystemInfo;347::GetSystemInfo(&SystemInfo);348MEMORYSTATUS MemoryStatus;350MemoryStatus.dwLength = sizeof (MEMORYSTATUS);351::GlobalMemoryStatus(&MemoryStatus);352TCHAR sString[1024];353_tprintf(_T("//=====================================================\r\n"));354if (_GetProcessorName(sString, countof(sString)))355_tprintf(_T("*** Hardware ***\r\nProcessor: %s\r\nNumber Of Processors: %d\r\nPhysical Memory: %d KB (Available: %d KB)\r\nCommit Charge Limit: %d KB\r\n"),356sString, SystemInfo.dwNumberOfProcessors, MemoryStatus.dwTotalPhys/0x400, MemoryStatus.dwAvailPhys/0x400, MemoryStatus.dwTotalPageFile/0x400);357else358_tprintf(_T("*** Hardware ***\r\nProcessor: <unknown>\r\nNumber Of Processors: %d\r\nPhysical Memory: %d KB (Available: %d KB)\r\nCommit Charge Limit: %d KB\r\n"),359SystemInfo.dwNumberOfProcessors, MemoryStatus.dwTotalPhys/0x400, MemoryStatus.dwAvailPhys/0x400, MemoryStatus.dwTotalPageFile/0x400);360if (_GetWindowsVersion(sString, countof(sString)))362_tprintf(_T("\r\n*** Operation System ***\r\n%s\r\n"), sString);363else364_tprintf(_T("\r\n*** Operation System:\r\n<unknown>\r\n"));365}366//===========================================================================368void WheatyExceptionReport::printTracesForAllThreads()369{370THREADENTRY32 te32;371DWORD dwOwnerPID = GetCurrentProcessId();373m_hProcess = GetCurrentProcess();374// Take a snapshot of all running threads375HANDLE hThreadSnap = CreateToolhelp32Snapshot(TH32CS_SNAPTHREAD, 0);376if (hThreadSnap == INVALID_HANDLE_VALUE)377return;378// Fill in the size of the structure before using it.380te32.dwSize = sizeof(THREADENTRY32);381// Retrieve information about the first thread,383// and exit if unsuccessful384if (!Thread32First(hThreadSnap, &te32))385{386CloseHandle(hThreadSnap); // Must clean up the387// snapshot object!388return;389}390// Now walk the thread list of the system,392// and display information about each thread393// associated with the specified process394do395{396if (te32.th32OwnerProcessID == dwOwnerPID)397{398CONTEXT context;399context.ContextFlags = 0xffffffff;400HANDLE threadHandle = OpenThread(THREAD_GET_CONTEXT | THREAD_QUERY_INFORMATION, false, te32.th32ThreadID);401if (threadHandle)402{403if (GetThreadContext(threadHandle, &context))404WriteStackDetails(&context, false, threadHandle);405CloseHandle(threadHandle);406}407}408} while (Thread32Next(hThreadSnap, &te32));409// Don't forget to clean up the snapshot object.411CloseHandle(hThreadSnap);412}413//===========================================================================415// Open the report file, and write the desired information to it. Called by416// WheatyUnhandledExceptionFilter417//===========================================================================418void WheatyExceptionReport::GenerateExceptionReport(419PEXCEPTION_POINTERS pExceptionInfo)420{421SYSTEMTIME systime;422GetLocalTime(&systime);423// Start out with a banner425_tprintf(_T("Revision: %s\r\n"), _FULLVERSION);426_tprintf(_T("Date %u:%u:%u. Time %u:%u \r\n"), systime.wDay, systime.wMonth, systime.wYear, systime.wHour, systime.wMinute);427PEXCEPTION_RECORD pExceptionRecord = pExceptionInfo->ExceptionRecord;428PrintSystemInfo();430// First print information about the type of fault431_tprintf(_T("\r\n//=====================================================\r\n"));432_tprintf(_T("Exception code: %08X %s\r\n"),433pExceptionRecord->ExceptionCode,434GetExceptionString(pExceptionRecord->ExceptionCode));435// Now print information about where the fault occured437TCHAR szFaultingModule[MAX_PATH];438DWORD section;439DWORD_PTR offset;440GetLogicalAddress(pExceptionRecord->ExceptionAddress,441szFaultingModule,442sizeof(szFaultingModule),443section, offset);444#ifdef _M_IX86446_tprintf(_T("Fault address: %08X %02X:%08X %s\r\n"),447pExceptionRecord->ExceptionAddress,448section, offset, szFaultingModule);449#endif450#ifdef _M_X64451_tprintf(_T("Fault address: %016I64X %02X:%016I64X %s\r\n"),452pExceptionRecord->ExceptionAddress,453section, offset, szFaultingModule);454#endif455PCONTEXT pCtx = pExceptionInfo->ContextRecord;457// Show the registers459#ifdef _M_IX86 // X86 Only!460_tprintf(_T("\r\nRegisters:\r\n"));461_tprintf(_T("EAX:%08X\r\nEBX:%08X\r\nECX:%08X\r\nEDX:%08X\r\nESI:%08X\r\nEDI:%08X\r\n"),463pCtx->Eax, pCtx->Ebx, pCtx->Ecx, pCtx->Edx,464pCtx->Esi, pCtx->Edi);465_tprintf(_T("CS:EIP:%04X:%08X\r\n"), pCtx->SegCs, pCtx->Eip);467_tprintf(_T("SS:ESP:%04X:%08X EBP:%08X\r\n"),468pCtx->SegSs, pCtx->Esp, pCtx->Ebp);469_tprintf(_T("DS:%04X ES:%04X FS:%04X GS:%04X\r\n"),470pCtx->SegDs, pCtx->SegEs, pCtx->SegFs, pCtx->SegGs);471_tprintf(_T("Flags:%08X\r\n"), pCtx->EFlags);472#endif473#ifdef _M_X64475_tprintf(_T("\r\nRegisters:\r\n"));476_tprintf(_T("RAX:%016I64X\r\nRBX:%016I64X\r\nRCX:%016I64X\r\nRDX:%016I64X\r\nRSI:%016I64X\r\nRDI:%016I64X\r\n")477_T("R8: %016I64X\r\nR9: %016I64X\r\nR10:%016I64X\r\nR11:%016I64X\r\nR12:%016I64X\r\nR13:%016I64X\r\nR14:%016I64X\r\nR15:%016I64X\r\n"),478pCtx->Rax, pCtx->Rbx, pCtx->Rcx, pCtx->Rdx,479pCtx->Rsi, pCtx->Rdi, pCtx->R9, pCtx->R10, pCtx->R11, pCtx->R12, pCtx->R13, pCtx->R14, pCtx->R15);480_tprintf(_T("CS:RIP:%04X:%016I64X\r\n"), pCtx->SegCs, pCtx->Rip);481_tprintf(_T("SS:RSP:%04X:%016X RBP:%08X\r\n"),482pCtx->SegSs, pCtx->Rsp, pCtx->Rbp);483_tprintf(_T("DS:%04X ES:%04X FS:%04X GS:%04X\r\n"),484pCtx->SegDs, pCtx->SegEs, pCtx->SegFs, pCtx->SegGs);485_tprintf(_T("Flags:%08X\r\n"), pCtx->EFlags);486#endif487SymSetOptions(SYMOPT_DEFERRED_LOADS);489// Initialize DbgHelp491if (!SymInitialize(GetCurrentProcess(), 0, TRUE))492{493_tprintf(_T("\n\rCRITICAL ERROR.\n\r Couldn't initialize the symbol handler for process.\n\rError [%s].\n\r\n\r"),494ErrorMessage(GetLastError()));495}496CONTEXT trashableContext = *pCtx;498WriteStackDetails(&trashableContext, false, NULL);500printTracesForAllThreads();501// #ifdef _M_IX86 // X86 Only!503_tprintf(_T("========================\r\n"));505_tprintf(_T("Local Variables And Parameters\r\n"));506trashableContext = *pCtx;508WriteStackDetails(&trashableContext, true, NULL);509_tprintf(_T("========================\r\n"));511_tprintf(_T("Global Variables\r\n"));512SymEnumSymbols(GetCurrentProcess(),514(UINT_PTR)GetModuleHandle(szFaultingModule),5150, EnumerateSymbolsCallback, 0);516// #endif // X86 Only!517SymCleanup(GetCurrentProcess());519_tprintf(_T("\r\n"));521}522//======================================================================524// Given an exception code, returns a pointer to a static string with a525// description of the exception526//======================================================================527LPTSTR WheatyExceptionReport::GetExceptionString(DWORD dwCode)528{529#define EXCEPTION(x) case EXCEPTION_##x: return (LPTSTR)_T(#x);530switch (dwCode)532{533EXCEPTION(ACCESS_VIOLATION)534EXCEPTION(DATATYPE_MISALIGNMENT)535EXCEPTION(BREAKPOINT)536EXCEPTION(SINGLE_STEP)537EXCEPTION(ARRAY_BOUNDS_EXCEEDED)538EXCEPTION(FLT_DENORMAL_OPERAND)539EXCEPTION(FLT_DIVIDE_BY_ZERO)540EXCEPTION(FLT_INEXACT_RESULT)541EXCEPTION(FLT_INVALID_OPERATION)542EXCEPTION(FLT_OVERFLOW)543EXCEPTION(FLT_STACK_CHECK)544EXCEPTION(FLT_UNDERFLOW)545EXCEPTION(INT_DIVIDE_BY_ZERO)546EXCEPTION(INT_OVERFLOW)547EXCEPTION(PRIV_INSTRUCTION)548EXCEPTION(IN_PAGE_ERROR)549EXCEPTION(ILLEGAL_INSTRUCTION)550EXCEPTION(NONCONTINUABLE_EXCEPTION)551EXCEPTION(STACK_OVERFLOW)552EXCEPTION(INVALID_DISPOSITION)553EXCEPTION(GUARD_PAGE)554EXCEPTION(INVALID_HANDLE)555}556// If not one of the "known" exceptions, try to get the string558// from NTDLL.DLL's message table.559static TCHAR szBuffer[512] = { 0 };561FormatMessage(FORMAT_MESSAGE_IGNORE_INSERTS | FORMAT_MESSAGE_FROM_HMODULE,563GetModuleHandle(_T("NTDLL.DLL")),564dwCode, 0, szBuffer, sizeof(szBuffer), 0);565return szBuffer;567}568//=============================================================================570// Given a linear address, locates the module, section, and offset containing571// that address.572//573// Note: the szModule paramater buffer is an output buffer of length specified574// by the len parameter (in characters!)575//=============================================================================576BOOL WheatyExceptionReport::GetLogicalAddress(577PVOID addr, PTSTR szModule, DWORD len, DWORD& section, DWORD_PTR& offset)578{579MEMORY_BASIC_INFORMATION mbi;580if (!VirtualQuery(addr, &mbi, sizeof(mbi)))582return FALSE;583DWORD_PTR hMod = (DWORD_PTR)mbi.AllocationBase;585if (!GetModuleFileName((HMODULE)hMod, szModule, len))587return FALSE;588// Point to the DOS header in memory590PIMAGE_DOS_HEADER pDosHdr = (PIMAGE_DOS_HEADER)hMod;591// From the DOS header, find the NT (PE) header593PIMAGE_NT_HEADERS pNtHdr = (PIMAGE_NT_HEADERS)(hMod + DWORD_PTR(pDosHdr->e_lfanew));594PIMAGE_SECTION_HEADER pSection = IMAGE_FIRST_SECTION(pNtHdr);596DWORD_PTR rva = (DWORD_PTR)addr - hMod; // RVA is offset from module load address598// Iterate through the section table, looking for the one that encompasses600// the linear address.601for (unsigned i = 0;602i < pNtHdr->FileHeader.NumberOfSections;603i++, pSection++)604{605DWORD_PTR sectionStart = pSection->VirtualAddress;606DWORD_PTR sectionEnd = sectionStart607+ DWORD_PTR(std::max(pSection->SizeOfRawData, pSection->Misc.VirtualSize));608// Is the address in this section???610if ((rva >= sectionStart) && (rva <= sectionEnd))611{612// Yes, address is in the section. Calculate section and offset,613// and store in the "section" & "offset" params, which were614// passed by reference.615section = i+1;616offset = rva - sectionStart;617return TRUE;618}619}620return FALSE; // Should never get here!622}623// It contains SYMBOL_INFO structure plus additional625// space for the name of the symbol626struct CSymbolInfoPackage : public SYMBOL_INFO_PACKAGE627{628CSymbolInfoPackage()629{630si.SizeOfStruct = sizeof(SYMBOL_INFO);631si.MaxNameLen = sizeof(name);632}633};634//============================================================636// Walks the stack, and writes the results to the report file637//============================================================638void WheatyExceptionReport::WriteStackDetails(639PCONTEXT pContext,640bool bWriteVariables, HANDLE pThreadHandle) // true if local/params should be output641{642_tprintf(_T("\r\nCall stack:\r\n"));643_tprintf(_T("Address Frame Function SourceFile\r\n"));645DWORD dwMachineType = 0;647// Could use SymSetOptions here to add the SYMOPT_DEFERRED_LOADS flag648STACKFRAME64 sf;650memset(&sf, 0, sizeof(sf));651#ifdef _M_IX86653// Initialize the STACKFRAME structure for the first call. This is only654// necessary for Intel CPUs, and isn't mentioned in the documentation.655sf.AddrPC.Offset = pContext->Eip;656sf.AddrPC.Mode = AddrModeFlat;657sf.AddrStack.Offset = pContext->Esp;658sf.AddrStack.Mode = AddrModeFlat;659sf.AddrFrame.Offset = pContext->Ebp;660sf.AddrFrame.Mode = AddrModeFlat;661dwMachineType = IMAGE_FILE_MACHINE_I386;663#endif664#ifdef _M_X64666sf.AddrPC.Offset = pContext->Rip;667sf.AddrPC.Mode = AddrModeFlat;668sf.AddrStack.Offset = pContext->Rsp;669sf.AddrStack.Mode = AddrModeFlat;670sf.AddrFrame.Offset = pContext->Rbp;671sf.AddrFrame.Mode = AddrModeFlat;672dwMachineType = IMAGE_FILE_MACHINE_AMD64;673#endif674while (1)676{677// Get the next stack frame678if (! StackWalk64(dwMachineType,679m_hProcess,680pThreadHandle != NULL ? pThreadHandle : GetCurrentThread(),681&sf,682pContext,6830,684SymFunctionTableAccess64,685SymGetModuleBase64,6860))687break;688if (0 == sf.AddrFrame.Offset) // Basic sanity check to make sure689break; // the frame is OK. Bail if not.690#ifdef _M_IX86691_tprintf(_T("%08X %08X "), sf.AddrPC.Offset, sf.AddrFrame.Offset);692#endif693#ifdef _M_X64694_tprintf(_T("%016I64X %016I64X "), sf.AddrPC.Offset, sf.AddrFrame.Offset);695#endif696DWORD64 symDisplacement = 0; // Displacement of the input address,698// relative to the start of the symbol699// Get the name of the function for this stack frame entry701CSymbolInfoPackage sip;702if (SymFromAddr(703m_hProcess, // Process handle of the current process704sf.AddrPC.Offset, // Symbol address705&symDisplacement, // Address of the variable that will receive the displacement706&sip.si)) // Address of the SYMBOL_INFO structure (inside "sip" object)707{708_tprintf(_T("%hs+%I64X"), sip.si.Name, symDisplacement);709}711else // No symbol found. Print out the logical address instead.712{713TCHAR szModule[MAX_PATH] = _T("");714DWORD section = 0;715DWORD_PTR offset = 0;716GetLogicalAddress((PVOID)sf.AddrPC.Offset,718szModule, sizeof(szModule), section, offset);719#ifdef _M_IX86720_tprintf(_T("%04X:%08X %s"), section, offset, szModule);721#endif722#ifdef _M_X64723_tprintf(_T("%04X:%016I64X %s"), section, offset, szModule);724#endif725}726// Get the source line for this stack frame entry728IMAGEHLP_LINE64 lineInfo = { sizeof(IMAGEHLP_LINE) };729DWORD dwLineDisplacement;730if (SymGetLineFromAddr64(m_hProcess, sf.AddrPC.Offset,731&dwLineDisplacement, &lineInfo))732{733_tprintf(_T(" %s line %u"), lineInfo.FileName, lineInfo.LineNumber);734}735_tprintf(_T("\r\n"));737// Write out the variables, if desired739if (bWriteVariables)740{741// Use SymSetContext to get just the locals/params for this frame742IMAGEHLP_STACK_FRAME imagehlpStackFrame;743imagehlpStackFrame.InstructionOffset = sf.AddrPC.Offset;744SymSetContext(m_hProcess, &imagehlpStackFrame, 0);745// Enumerate the locals/parameters747SymEnumSymbols(m_hProcess, 0, 0, EnumerateSymbolsCallback, &sf);748_tprintf(_T("\r\n"));750}751}752}754//////////////////////////////////////////////////////////////////////////////756// The function invoked by SymEnumSymbols757//////////////////////////////////////////////////////////////////////////////758BOOL CALLBACK760WheatyExceptionReport::EnumerateSymbolsCallback(761PSYMBOL_INFO pSymInfo,762ULONG /*SymbolSize*/,763PVOID UserContext)764{765char szBuffer[2048];767__try769{770if (FormatSymbolValue(pSymInfo, (STACKFRAME*)UserContext,771szBuffer, sizeof(szBuffer)))772_tprintf(_T("\t%s\r\n"), szBuffer);773}774__except(1)775{776_tprintf(_T("punting on symbol %s\r\n"), pSymInfo->Name);777}778return TRUE;780}781//////////////////////////////////////////////////////////////////////////////783// Given a SYMBOL_INFO representing a particular variable, displays its784// contents. If it's a user defined type, display the members and their785// values.786//////////////////////////////////////////////////////////////////////////////787bool WheatyExceptionReport::FormatSymbolValue(788PSYMBOL_INFO pSym,789STACKFRAME * sf,790char * pszBuffer,791unsigned /*cbBuffer*/)792{793char * pszCurrBuffer = pszBuffer;794// Indicate if the variable is a local or parameter796if (pSym->Flags & IMAGEHLP_SYMBOL_INFO_PARAMETER)797pszCurrBuffer += sprintf(pszCurrBuffer, "Parameter ");798else if (pSym->Flags & IMAGEHLP_SYMBOL_INFO_LOCAL)799pszCurrBuffer += sprintf(pszCurrBuffer, "Local ");800// If it's a function, don't do anything.802if (pSym->Tag == 5) // SymTagFunction from CVCONST.H from the DIA SDK803return false;804DWORD_PTR pVariable = 0; // Will point to the variable's data in memory806if (pSym->Flags & IMAGEHLP_SYMBOL_INFO_REGRELATIVE)808{809// if (pSym->Register == 8) // EBP is the value 8 (in DBGHELP 5.1)810{ // This may change!!!811pVariable = sf->AddrFrame.Offset;812pVariable += (DWORD_PTR)pSym->Address;813}814// else815// return false;816}817else if (pSym->Flags & IMAGEHLP_SYMBOL_INFO_REGISTER)818{819return false; // Don't try to report register variable820}821else822{823pVariable = (DWORD_PTR)pSym->Address; // It must be a global variable824}825// Determine if the variable is a user defined type (UDT). IF so, bHandled827// will return true.828bool bHandled;829pszCurrBuffer = DumpTypeIndex(pszCurrBuffer, pSym->ModBase, pSym->TypeIndex,8300, pVariable, bHandled, pSym->Name);831if (!bHandled)833{834// The symbol wasn't a UDT, so do basic, stupid formatting of the835// variable. Based on the size, we're assuming it's a char, WORD, or836// DWORD.837BasicType basicType = GetBasicType(pSym->TypeIndex, pSym->ModBase);838pszCurrBuffer += sprintf(pszCurrBuffer, rgBaseType[basicType]);839// Emit the variable name841pszCurrBuffer += sprintf(pszCurrBuffer, "\'%s\'", pSym->Name);842pszCurrBuffer = FormatOutputValue(pszCurrBuffer, basicType, pSym->Size,844(PVOID)pVariable);845}846return true;848}849//////////////////////////////////////////////////////////////////////////////851// If it's a user defined type (UDT), recurse through its members until we're852// at fundamental types. When he hit fundamental types, return853// bHandled = false, so that FormatSymbolValue() will format them.854//////////////////////////////////////////////////////////////////////////////855char * WheatyExceptionReport::DumpTypeIndex(856char * pszCurrBuffer,857DWORD64 modBase,858DWORD dwTypeIndex,859unsigned nestingLevel,860DWORD_PTR offset,861bool & bHandled,862char* Name)863{864bHandled = false;865// Get the name of the symbol. This will either be a Type name (if a UDT),867// or the structure member name.868WCHAR * pwszTypeName;869if (SymGetTypeInfo(m_hProcess, modBase, dwTypeIndex, TI_GET_SYMNAME,870&pwszTypeName))871{872pszCurrBuffer += sprintf(pszCurrBuffer, " %ls", pwszTypeName);873LocalFree(pwszTypeName);874}875// Determine how many children this type has.877DWORD dwChildrenCount = 0;878SymGetTypeInfo(m_hProcess, modBase, dwTypeIndex, TI_GET_CHILDRENCOUNT,879&dwChildrenCount);880if (!dwChildrenCount) // If no children, we're done882return pszCurrBuffer;883// Prepare to get an array of "TypeIds", representing each of the children.885// SymGetTypeInfo(TI_FINDCHILDREN) expects more memory than just a886// TI_FINDCHILDREN_PARAMS struct has. Use derivation to accomplish this.887struct FINDCHILDREN : TI_FINDCHILDREN_PARAMS888{889ULONG MoreChildIds[1024];890FINDCHILDREN(){Count = sizeof(MoreChildIds) / sizeof(MoreChildIds[0]);}891} children;892children.Count = dwChildrenCount;894children.Start= 0;895// Get the array of TypeIds, one for each child type897if (!SymGetTypeInfo(m_hProcess, modBase, dwTypeIndex, TI_FINDCHILDREN,898&children))899{900return pszCurrBuffer;901}902// Append a line feed904pszCurrBuffer += sprintf(pszCurrBuffer, "\r\n");905// Iterate through each of the children907for (unsigned i = 0; i < dwChildrenCount; i++)908{909// Add appropriate indentation level (since this routine is recursive)910for (unsigned j = 0; j <= nestingLevel+1; j++)911pszCurrBuffer += sprintf(pszCurrBuffer, "\t");912// Recurse for each of the child types914bool bHandled2;915BasicType basicType = GetBasicType(children.ChildId[i], modBase);916pszCurrBuffer += sprintf(pszCurrBuffer, rgBaseType[basicType]);917pszCurrBuffer = DumpTypeIndex(pszCurrBuffer, modBase,919children.ChildId[i], nestingLevel+1,920offset, bHandled2, Name);921// If the child wasn't a UDT, format it appropriately923if (!bHandled2)924{925// Get the offset of the child member, relative to its parent926DWORD dwMemberOffset;927SymGetTypeInfo(m_hProcess, modBase, children.ChildId[i],928TI_GET_OFFSET, &dwMemberOffset);929// Get the real "TypeId" of the child. We need this for the931// SymGetTypeInfo(TI_GET_TYPEID) call below.932DWORD typeId;933SymGetTypeInfo(m_hProcess, modBase, children.ChildId[i],934TI_GET_TYPEID, &typeId);935// Get the size of the child member937ULONG64 length;938SymGetTypeInfo(m_hProcess, modBase, typeId, TI_GET_LENGTH, &length);939// Calculate the address of the member941DWORD_PTR dwFinalOffset = offset + dwMemberOffset;942// BasicType basicType = GetBasicType(children.ChildId[i], modBase);944//945// pszCurrBuffer += sprintf(pszCurrBuffer, rgBaseType[basicType]);946//947// Emit the variable name948// pszCurrBuffer += sprintf(pszCurrBuffer, "\'%s\'", Name);949pszCurrBuffer = FormatOutputValue(pszCurrBuffer, basicType,951length, (PVOID)dwFinalOffset);952pszCurrBuffer += sprintf(pszCurrBuffer, "\r\n");954}955}956bHandled = true;958return pszCurrBuffer;959}960char * WheatyExceptionReport::FormatOutputValue(char * pszCurrBuffer,962BasicType basicType,963DWORD64 length,964PVOID pAddress)965{966// Format appropriately (assuming it's a 1, 2, or 4 bytes (!!!)967if (length == 1)968pszCurrBuffer += sprintf(pszCurrBuffer, " = %X", *(PBYTE)pAddress);969else if (length == 2)970pszCurrBuffer += sprintf(pszCurrBuffer, " = %X", *(PWORD)pAddress);971else if (length == 4)972{973if (basicType == btFloat)974{975pszCurrBuffer += sprintf(pszCurrBuffer, " = %f", *(PFLOAT)pAddress);976}977else if (basicType == btChar)978{979if (!IsBadStringPtr(*(PSTR*)pAddress, 32))980{981pszCurrBuffer += sprintf(pszCurrBuffer, " = \"%.31s\"",982*(PSTR*)pAddress);983}984else985pszCurrBuffer += sprintf(pszCurrBuffer, " = %X",986*(PDWORD)pAddress);987}988else989pszCurrBuffer += sprintf(pszCurrBuffer, " = %X", *(PDWORD)pAddress);990}991else if (length == 8)992{993if (basicType == btFloat)994{995pszCurrBuffer += sprintf(pszCurrBuffer, " = %lf",996*(double *)pAddress);997}998else999pszCurrBuffer += sprintf(pszCurrBuffer, " = %I64X",1000*(DWORD64*)pAddress);1001}1002return pszCurrBuffer;1004}1005BasicType1007WheatyExceptionReport::GetBasicType(DWORD typeIndex, DWORD64 modBase)1008{1009BasicType basicType;1010if (SymGetTypeInfo(m_hProcess, modBase, typeIndex,1011TI_GET_BASETYPE, &basicType))1012{1013return basicType;1014}1015// Get the real "TypeId" of the child. We need this for the1017// SymGetTypeInfo(TI_GET_TYPEID) call below.1018DWORD typeId;1019if (SymGetTypeInfo(m_hProcess, modBase, typeIndex, TI_GET_TYPEID, &typeId))1020{1021if (SymGetTypeInfo(m_hProcess, modBase, typeId, TI_GET_BASETYPE,1022&basicType))1023{1024return basicType;1025}1026}1027return btNoType;1029}1030//============================================================================1032// Helper function that writes to the report file, and allows the user to use1033// printf style formating1034//============================================================================1035int __cdecl WheatyExceptionReport::_tprintf(const TCHAR * format, ...)1036{1037TCHAR szBuff[1024];1038int retValue;1039DWORD cbWritten;1040va_list argptr;1041va_start(argptr, format);1043retValue = vsprintf(szBuff, format, argptr);1044va_end(argptr);1045WriteFile(m_hReportFile, szBuff, retValue * sizeof(TCHAR), &cbWritten, 0);1047return retValue;1049}1050#endif // _WIN321052