#include <ntoskrnl.h>#include <debug.h>
Include dependency graph for debug.c:
Go to the source code of this file.
Macros | |
| #define | NDEBUG |
Functions | |
| NTSTATUS NTAPI | PsGetContextThread (IN PETHREAD Thread, IN OUT PCONTEXT ThreadContext, IN KPROCESSOR_MODE PreviousMode) |
| NTSTATUS NTAPI | PsSetContextThread (IN PETHREAD Thread, IN OUT PCONTEXT ThreadContext, IN KPROCESSOR_MODE PreviousMode) |
| NTSTATUS NTAPI | NtGetContextThread (IN HANDLE ThreadHandle, IN OUT PCONTEXT ThreadContext) |
| NTSTATUS NTAPI | NtSetContextThread (IN HANDLE ThreadHandle, IN PCONTEXT ThreadContext) |
Macro Definition Documentation
◆ NDEBUG
Function Documentation
◆ NtGetContextThread()
Definition at line 350 of file debug.c.
352{
356 PAGED_CODE();
357
358 /* Get the Thread Object */
360 THREAD_GET_CONTEXT,
361 PsThreadType,
362 PreviousMode,
364 NULL);
365
367
368 /* Make sure it's not a system thread */
370 {
371 /* Fail */
373 }
374 else
375 {
376 /* Call the kernel API */
378 }
379
380 /* Dereference it and return */
383}
_In_ PVOID _In_ ULONG _Out_ PVOID _In_ ULONG _Inout_ PULONG _In_ KPROCESSOR_MODE PreviousMode
Definition: KdSystemDebugControl.c:35
#define THREAD_GET_CONTEXT
Definition: nsiface.idl:2307
NTSTATUS NTAPI PsGetContextThread(IN PETHREAD Thread, IN OUT PCONTEXT ThreadContext, IN KPROCESSOR_MODE PreviousMode)
Definition: debug.c:119
NTSTATUS NTAPI ObReferenceObjectByHandle(IN HANDLE Handle, IN ACCESS_MASK DesiredAccess, IN POBJECT_TYPE ObjectType, IN KPROCESSOR_MODE AccessMode, OUT PVOID *Object, OUT POBJECT_HANDLE_INFORMATION HandleInformation OPTIONAL)
Definition: obref.c:494
Definition: pstypes.h:1191
Referenced by GetThreadContext(), and Wow64GetThreadContext().
◆ NtSetContextThread()
Definition at line 387 of file debug.c.
389{
393 PAGED_CODE();
394
395 /* Get the Thread Object */
397 THREAD_SET_CONTEXT,
398 PsThreadType,
399 PreviousMode,
401 NULL);
402
404
405 /* Make sure it's not a system thread */
407 {
408 /* Fail */
410 }
411 else
412 {
413 /* Call the kernel API */
415 }
416
417 /* Dereference it and return */
420}
#define THREAD_SET_CONTEXT
NTSTATUS NTAPI PsSetContextThread(IN PETHREAD Thread, IN OUT PCONTEXT ThreadContext, IN KPROCESSOR_MODE PreviousMode)
Definition: debug.c:241
Referenced by SetThreadContext(), and Wow64SetThreadContext().
◆ PsGetContextThread()
| NTSTATUS NTAPI PsGetContextThread | ( | IN PETHREAD | Thread, |
| IN OUT PCONTEXT | ThreadContext, | ||
| IN KPROCESSOR_MODE | PreviousMode | ||
| ) |
Definition at line 119 of file debug.c.
122{
123 GET_SET_CTX_CONTEXT GetSetContext;
126
127 /* Enter SEH */
128 _SEH2_TRY
129 {
130 /* Set default length */
132
133 /* Read the flags */
135
136#ifdef _M_IX86
137 /* Check if the caller wanted extended registers */
140 {
141 /* Cut them out of the size */
143 }
144#endif
145
146 /* Check if we came from user mode */
148 {
149 /* Probe the context */
151 }
152 }
154 {
155 /* Return the exception code */
157 }
158 _SEH2_END;
159
160 /* Initialize the wait event */
162
163 /* Set the flags and previous mode */
167
168 /* Check if we're running in the same thread */
170 {
171 /* Setup APC parameters manually */
174
175 /* Enter a guarded region to simulate APC_LEVEL */
176 KeEnterGuardedRegion();
177
178 /* Manually call the APC */
180 NULL,
181 NULL,
184
185 /* Leave the guarded region */
186 KeLeaveGuardedRegion();
187
188 /* We are done */
190 }
191 else
192 {
193 /* Initialize the APC */
198 NULL,
199 NULL,
200 KernelMode,
201 NULL);
202
203 /* Queue it as a Get APC */
205 {
206 /* It was already queued, so fail */
208 }
209 else
210 {
211 /* Wait for the APC to complete */
213 0,
214 KernelMode,
215 FALSE,
216 NULL);
217 }
218 }
219
220 _SEH2_TRY
221 {
222 /* Copy the context */
224 }
226 {
227 /* Get the exception code */
229 }
230 _SEH2_END;
231
232 /* Return status */
234}
#define KeWaitForSingleObject(pEvt, foo, a, b, c)
Definition: env_spec_w32.h:478
VOID NTAPI ProbeForWrite(IN PVOID Address, IN SIZE_T Length, IN ULONG Alignment)
Definition: exintrin.c:143
struct _CONTEXT CONTEXT
BOOLEAN NTAPI KeInsertQueueApc(IN PKAPC Apc, IN PVOID SystemArgument1, IN PVOID SystemArgument2, IN KPRIORITY PriorityBoost)
Definition: apc.c:735
VOID NTAPI KeInitializeApc(IN PKAPC Apc, IN PKTHREAD Thread, IN KAPC_ENVIRONMENT TargetEnvironment, IN PKKERNEL_ROUTINE KernelRoutine, IN PKRUNDOWN_ROUTINE RundownRoutine OPTIONAL, IN PKNORMAL_ROUTINE NormalRoutine, IN KPROCESSOR_MODE Mode, IN PVOID Context)
Definition: apc.c:651
VOID NTAPI PspGetOrSetContextKernelRoutine(IN PKAPC Apc, IN OUT PKNORMAL_ROUTINE *NormalRoutine, IN OUT PVOID *NormalContext, IN OUT PVOID *SystemArgument1, IN OUT PVOID *SystemArgument2)
Definition: psctx.c:38
#define CONTEXT_EXTENDED_REGISTERS
Definition: nt_native.h:1409
Definition: ps.h:83
_Must_inspect_result_ _In_ WDFDEVICE _In_ PWDF_DEVICE_PROPERTY_DATA _In_ DEVPROPTYPE _In_ ULONG Size
Definition: wdfdevice.h:4539
Referenced by NtGetContextThread().
◆ PsSetContextThread()
| NTSTATUS NTAPI PsSetContextThread | ( | IN PETHREAD | Thread, |
| IN OUT PCONTEXT | ThreadContext, | ||
| IN KPROCESSOR_MODE | PreviousMode | ||
| ) |
Definition at line 241 of file debug.c.
244{
245 GET_SET_CTX_CONTEXT GetSetContext;
248
249 /* Enter SEH */
250 _SEH2_TRY
251 {
252 /* Set default length */
254
255 /* Read the flags */
257
258#ifdef _M_IX86
259 /* Check if the caller wanted extended registers */
262 {
263 /* Cut them out of the size */
265 }
266#endif
267
268 /* Check if we came from user mode */
270 {
271 /* Probe the context */
273 }
274
275 /* Copy the context */
277 }
279 {
280 /* Return the exception code */
282 }
283 _SEH2_END;
284
285 /* Initialize the wait event */
287
288 /* Set the flags and previous mode */
291
292 /* Check if we're running in the same thread */
294 {
295 /* Setup APC parameters manually */
298
299 /* Enter a guarded region to simulate APC_LEVEL */
300 KeEnterGuardedRegion();
301
302 /* Manually call the APC */
304 NULL,
305 NULL,
308
309 /* Leave the guarded region */
310 KeLeaveGuardedRegion();
311
312 /* We are done */
314 }
315 else
316 {
317 /* Initialize the APC */
322 NULL,
323 NULL,
324 KernelMode,
325 NULL);
326
327 /* Queue it as a Get APC */
329 {
330 /* It was already queued, so fail */
332 }
333 else
334 {
335 /* Wait for the APC to complete */
337 0,
338 KernelMode,
339 FALSE,
340 NULL);
341 }
342 }
343
344 /* Return status */
346}
VOID NTAPI ProbeForRead(IN CONST VOID *Address, IN SIZE_T Length, IN ULONG Alignment)
Definition: exintrin.c:102
Referenced by NtSetContextThread().
