ReactOS  0.4.15-dev-3446-g30010a5
Classes | Macros | Typedefs | Functions | Variables
kdb_symbols.c File Reference
#include <ntoskrnl.h>
#include <debug.h>
Include dependency graph for kdb_symbols.c:

Go to the source code of this file.

Classes

struct  _IMAGE_SYMBOL_INFO_CACHE
 

Macros

#define NDEBUG
 

Typedefs

typedef struct _IMAGE_SYMBOL_INFO_CACHE IMAGE_SYMBOL_INFO_CACHE
 
typedef struct _IMAGE_SYMBOL_INFO_CACHEPIMAGE_SYMBOL_INFO_CACHE
 

Functions

static BOOLEAN KdbpSymSearchModuleList (IN PLIST_ENTRY current_entry, IN PLIST_ENTRY end_entry, IN PLONG Count, IN PVOID Address, IN INT Index, OUT PLDR_DATA_TABLE_ENTRY *pLdrEntry)
 
BOOLEAN KdbpSymFindModule (IN PVOID Address OPTIONAL, IN INT Index OPTIONAL, OUT PLDR_DATA_TABLE_ENTRY *pLdrEntry)
 Find a module... More...
 
static PCHAR NTAPI KdbpSymUnicodeToAnsi (IN PUNICODE_STRING Unicode, OUT PCHAR Ansi, IN ULONG Length)
 
BOOLEAN KdbSymPrintAddress (IN PVOID Address, IN PCONTEXT Context)
 Print address... More...
 
_Use_decl_annotations_ VOID NTAPI LoadSymbolsRoutine (_In_ PVOID Context)
 The symbol loader thread routine. This opens the image file for reading and loads the symbols section from there. More...
 
VOID KdbSymProcessSymbols (_Inout_ PLDR_DATA_TABLE_ENTRY LdrEntry, _In_ BOOLEAN Load)
 Load symbols from image mapping. If this fails,. More...
 
VOID NTAPI KdbDebugPrint (PCH Message, ULONG Length)
 
VOID NTAPI KdbInitialize (PKD_DISPATCH_TABLE DispatchTable, ULONG BootPhase)
 Initializes the KDB symbols implementation. More...
 

Variables

static BOOLEAN LoadSymbols
 
static LIST_ENTRY SymbolsToLoad
 
static KSPIN_LOCK SymbolsToLoadLock
 
static KEVENT SymbolsToLoadEvent
 
static KSTART_ROUTINE LoadSymbolsRoutine
 

Macro Definition Documentation

◆ NDEBUG

#define NDEBUG

Definition at line 15 of file kdb_symbols.c.

Typedef Documentation

◆ IMAGE_SYMBOL_INFO_CACHE

typedef struct _IMAGE_SYMBOL_INFO_CACHE IMAGE_SYMBOL_INFO_CACHE

◆ PIMAGE_SYMBOL_INFO_CACHE

typedef struct _IMAGE_SYMBOL_INFO_CACHE * PIMAGE_SYMBOL_INFO_CACHE

Function Documentation

◆ KdbDebugPrint()

VOID NTAPI KdbDebugPrint ( PCH  Message,
ULONG  Length 
)

Definition at line 335 of file kdb_symbols.c.

338 {
339  /* Nothing here */
340 }

Referenced by KdbInitialize().

◆ KdbInitialize()

VOID NTAPI KdbInitialize ( PKD_DISPATCH_TABLE  DispatchTable,
ULONG  BootPhase 
)

Initializes the KDB symbols implementation.

Parameters
DispatchTablePointer to the KD dispatch table
BootPhasePhase of initialization

Definition at line 350 of file kdb_symbols.c.

353 {
354  PCHAR p1, p2;
355  SHORT Found = FALSE;
356  CHAR YesNo;
357 
358  DPRINT("KdbSymInit() BootPhase=%d\n", BootPhase);
359 
360  LoadSymbols = FALSE;
361 
362 #if DBG
363  /* Load symbols only if we have 96Mb of RAM or more */
364  if (MmNumberOfPhysicalPages >= 0x6000)
365  LoadSymbols = TRUE;
366 #endif
367 
368  if (BootPhase == 0)
369  {
370  /* Write out the functions that we support for now */
371  DispatchTable->KdpInitRoutine = KdpKdbgInit;
372  DispatchTable->KdpPrintRoutine = KdbDebugPrint;
373 
374  /* Register as a Provider */
375  InsertTailList(&KdProviders, &DispatchTable->KdProvidersList);
376 
377  /* Perform actual initialization of symbol module */
378  //NtoskrnlModuleObject->PatchInformation = NULL;
379  //LdrHalModuleObject->PatchInformation = NULL;
380 
381  /* Check the command line for /LOADSYMBOLS, /NOLOADSYMBOLS,
382  * /LOADSYMBOLS={YES|NO}, /NOLOADSYMBOLS={YES|NO} */
383  ASSERT(KeLoaderBlock);
384  p1 = KeLoaderBlock->LoadOptions;
385  while('\0' != *p1 && NULL != (p2 = strchr(p1, '/')))
386  {
387  p2++;
388  Found = 0;
389  if (0 == _strnicmp(p2, "LOADSYMBOLS", 11))
390  {
391  Found = +1;
392  p2 += 11;
393  }
394  else if (0 == _strnicmp(p2, "NOLOADSYMBOLS", 13))
395  {
396  Found = -1;
397  p2 += 13;
398  }
399  if (0 != Found)
400  {
401  while (isspace(*p2))
402  {
403  p2++;
404  }
405  if ('=' == *p2)
406  {
407  p2++;
408  while (isspace(*p2))
409  {
410  p2++;
411  }
412  YesNo = toupper(*p2);
413  if ('N' == YesNo || 'F' == YesNo || '0' == YesNo)
414  {
415  Found = -1 * Found;
416  }
417  }
418  LoadSymbols = (0 < Found);
419  }
420  p1 = p2;
421  }
422  }
423  else if ((BootPhase == 1) && LoadSymbols)
424  {
425  HANDLE Thread;
426  NTSTATUS Status;
427  KIRQL OldIrql;
428 
429  /* Launch our worker thread */
430  InitializeListHead(&SymbolsToLoad);
431  KeInitializeSpinLock(&SymbolsToLoadLock);
432  KeInitializeEvent(&SymbolsToLoadEvent, SynchronizationEvent, FALSE);
433 
434  Status = PsCreateSystemThread(&Thread, THREAD_ALL_ACCESS, NULL, NULL, NULL, LoadSymbolsRoutine, NULL);
435  if (!NT_SUCCESS(Status))
436  {
437  DPRINT1("Failed starting symbols loader thread: 0x%08x\n", Status);
438  LoadSymbols = FALSE;
439  return;
440  }
441 
442  RosSymInitKernelMode();
443 
444  KeAcquireSpinLock(&PsLoadedModuleSpinLock, &OldIrql);
445 
446  PLIST_ENTRY ListEntry = PsLoadedModuleList.Flink;
447  while (ListEntry != &PsLoadedModuleList)
448  {
449  PLDR_DATA_TABLE_ENTRY LdrEntry = CONTAINING_RECORD(ListEntry, LDR_DATA_TABLE_ENTRY, InLoadOrderLinks);
450  KdbSymProcessSymbols(LdrEntry, TRUE);
451  ListEntry = ListEntry->Flink;
452  }
453 
454  KeReleaseSpinLock(&PsLoadedModuleSpinLock, OldIrql);
455  }
456 }
PCHAR
signed char * PCHAR
Definition: retypes.h:7
isspace
#define isspace(c)
Definition: acclib.h:69
RosSymInitKernelMode
VOID RosSymInitKernelMode(VOID)
Definition: initkm.c:32
THREAD_ALL_ACCESS
#define THREAD_ALL_ACCESS
Definition: nt_native.h:1339
KdpKdbgInit
VOID NTAPI KdpKdbgInit(PKD_DISPATCH_TABLE DispatchTable, ULONG BootPhase)
Definition: kdbg.c:21
TRUE
#define TRUE
Definition: types.h:120
CHAR
char CHAR
Definition: xmlstorage.h:175
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
KeAcquireSpinLock
VOID NTAPI KeAcquireSpinLock(PKSPIN_LOCK SpinLock, PKIRQL OldIrql)
Definition: spinlock.c:50
SymbolsToLoad
static LIST_ENTRY SymbolsToLoad
Definition: kdb_symbols.c:30
LoadSymbolsRoutine
static KSTART_ROUTINE LoadSymbolsRoutine
Definition: kdb_symbols.c:196
InsertTailList
#define InsertTailList(ListHead, Entry)
Definition: env_spec_w32.h:1003
KIRQL
UCHAR KIRQL
Definition: env_spec_w32.h:591
PsLoadedModuleSpinLock
KSPIN_LOCK PsLoadedModuleSpinLock
Definition: sysldr.c:36
FALSE
#define FALSE
Definition: types.h:117
SHORT
short SHORT
Definition: pedump.c:59
KeInitializeSpinLock
FORCEINLINE VOID KeInitializeSpinLock(_Out_ PKSPIN_LOCK SpinLock)
Definition: kefuncs.h:238
KdbSymProcessSymbols
VOID KdbSymProcessSymbols(_Inout_ PLDR_DATA_TABLE_ENTRY LdrEntry, _In_ BOOLEAN Load)
Load symbols from image mapping. If this fails,.
Definition: kdb_symbols.c:298
Found
return Found
Definition: dirsup.c:1270
KeLoaderBlock
PLOADER_PARAMETER_BLOCK KeLoaderBlock
Definition: krnlinit.c:29
CONTAINING_RECORD
PFLT_MESSAGE_WAITER_QUEUE CONTAINING_RECORD(Csq, DEVICE_EXTENSION, IrpQueue)) -> WaiterQ.mLock) _IRQL_raises_(DISPATCH_LEVEL) VOID NTAPI FltpAcquireMessageWaiterLock(_In_ PIO_CSQ Csq, _Out_ PKIRQL Irql)
Definition: Messaging.c:560
KdbDebugPrint
VOID NTAPI KdbDebugPrint(PCH Message, ULONG Length)
Definition: kdb_symbols.c:335
Status
Status
Definition: gdiplustypes.h:24
_LIST_ENTRY::Flink
struct _LIST_ENTRY * Flink
Definition: typedefs.h:121
toupper
int toupper(int c)
Definition: utclib.c:881
ASSERT
#define ASSERT(a)
Definition: mode.c:44
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
PsLoadedModuleList
LIST_ENTRY PsLoadedModuleList
Definition: sysldr.c:34
SymbolsToLoadLock
static KSPIN_LOCK SymbolsToLoadLock
Definition: kdb_symbols.c:31
Thread
_In_opt_ PFILE_OBJECT _In_opt_ PETHREAD Thread
Definition: fltkernel.h:2652
_strnicmp
#define _strnicmp(_String1, _String2, _MaxCount)
Definition: compat.h:23
OldIrql
_Requires_lock_held_ Interrupt _Releases_lock_ Interrupt _In_ _IRQL_restores_ KIRQL OldIrql
Definition: kefuncs.h:790
_LDR_DATA_TABLE_ENTRY
Definition: btrfs_drv.h:1922
_LIST_ENTRY
Definition: typedefs.h:119
MmNumberOfPhysicalPages
PFN_COUNT MmNumberOfPhysicalPages
Definition: init.c:48
KeInitializeEvent
#define KeInitializeEvent(pEvt, foo, foo2)
Definition: env_spec_w32.h:477
InitializeListHead
#define InitializeListHead(ListHead)
Definition: env_spec_w32.h:944
PsCreateSystemThread
NTSTATUS NTAPI PsCreateSystemThread(OUT PHANDLE ThreadHandle, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes, IN HANDLE ProcessHandle, IN PCLIENT_ID ClientId, IN PKSTART_ROUTINE StartRoutine, IN PVOID StartContext)
Definition: thread.c:602
NULL
#define NULL
Definition: types.h:112
_LOADER_PARAMETER_BLOCK::LoadOptions
PSTR LoadOptions
Definition: arc.h:507
KeReleaseSpinLock
#define KeReleaseSpinLock(sl, irql)
Definition: env_spec_w32.h:627
strchr
char * strchr(const char *String, int ch)
Definition: utclib.c:501
DPRINT1
#define DPRINT1
Definition: precomp.h:8
LoadSymbols
static BOOLEAN LoadSymbols
Definition: kdb_symbols.c:29
DPRINT
#define DPRINT
Definition: sndvol32.h:71
SymbolsToLoadEvent
static KEVENT SymbolsToLoadEvent
Definition: kdb_symbols.c:32
DispatchTable
_In_ PWDFDEVICE_INIT _In_ PWDF_PDO_EVENT_CALLBACKS DispatchTable
Definition: wdfpdo.h:245
KdProviders
LIST_ENTRY KdProviders
Definition: kdio.c:49

Referenced by KdpKdbgInit().

◆ KdbpSymFindModule()

BOOLEAN KdbpSymFindModule ( IN PVOID Address  OPTIONAL,
IN INT Index  OPTIONAL,
OUT PLDR_DATA_TABLE_ENTRY pLdrEntry 
)

Find a module...

Parameters
AddressIf Address is not NULL the module containing Address is searched.
NameIf Name is not NULL the module named Name will be searched.
IndexIf Index is >= 0 the Index'th module will be returned.
pLdrEntryPointer to a PLDR_DATA_TABLE_ENTRY which is filled.
Return values
TRUEModule was found, pLdrEntry was filled.
FALSENo module was found.

Definition at line 75 of file kdb_symbols.c.

79 {
80  LONG Count = 0;
81  PEPROCESS CurrentProcess;
82 
83  /* First try to look up the module in the kernel module list. */
84  KeAcquireSpinLockAtDpcLevel(&PsLoadedModuleSpinLock);
85  if(KdbpSymSearchModuleList(PsLoadedModuleList.Flink,
86  &PsLoadedModuleList,
87  &Count,
88  Address,
89  Index,
90  pLdrEntry))
91  {
92  KeReleaseSpinLockFromDpcLevel(&PsLoadedModuleSpinLock);
93  return TRUE;
94  }
95  KeReleaseSpinLockFromDpcLevel(&PsLoadedModuleSpinLock);
96 
97  /* That didn't succeed. Try the module list of the current process now. */
98  CurrentProcess = PsGetCurrentProcess();
99 
100  if(!CurrentProcess || !CurrentProcess->Peb || !CurrentProcess->Peb->Ldr)
101  return FALSE;
102 
103  return KdbpSymSearchModuleList(CurrentProcess->Peb->Ldr->InLoadOrderModuleList.Flink,
104  &CurrentProcess->Peb->Ldr->InLoadOrderModuleList,
105  &Count,
106  Address,
107  Index,
108  pLdrEntry);
109 }
TRUE
#define TRUE
Definition: types.h:120
KeAcquireSpinLockAtDpcLevel
VOID NTAPI KeAcquireSpinLockAtDpcLevel(IN PKSPIN_LOCK SpinLock)
Definition: spinlock.c:198
_EPROCESS
Definition: pstypes.h:1260
PsLoadedModuleSpinLock
KSPIN_LOCK PsLoadedModuleSpinLock
Definition: sysldr.c:36
FALSE
#define FALSE
Definition: types.h:117
LONG
long LONG
Definition: pedump.c:60
PsGetCurrentProcess
#define PsGetCurrentProcess
Definition: psfuncs.h:17
Address
static WCHAR Address[46]
Definition: ping.c:68
_LIST_ENTRY::Flink
struct _LIST_ENTRY * Flink
Definition: typedefs.h:121
Count
int Count
Definition: noreturn.cpp:7
CurrentProcess
ULONG CurrentProcess
Definition: shell.c:125
Index
_In_ WDFCOLLECTION _In_ ULONG Index
Definition: wdfcollection.h:179
PsLoadedModuleList
LIST_ENTRY PsLoadedModuleList
Definition: sysldr.c:34
KeReleaseSpinLockFromDpcLevel
VOID NTAPI KeReleaseSpinLockFromDpcLevel(IN PKSPIN_LOCK SpinLock)
Definition: spinlock.c:221
KdbpSymSearchModuleList
static BOOLEAN KdbpSymSearchModuleList(IN PLIST_ENTRY current_entry, IN PLIST_ENTRY end_entry, IN PLONG Count, IN PVOID Address, IN INT Index, OUT PLDR_DATA_TABLE_ENTRY *pLdrEntry)
Definition: kdb_symbols.c:38

Referenced by KdbpCmdMod(), KdbSymPrintAddress(), and KdSendPacket().

◆ KdbpSymSearchModuleList()

static BOOLEAN KdbpSymSearchModuleList ( IN PLIST_ENTRY  current_entry,
IN PLIST_ENTRY  end_entry,
IN PLONG  Count,
IN PVOID  Address,
IN INT  Index,
OUT PLDR_DATA_TABLE_ENTRY pLdrEntry 
)
static

Definition at line 38 of file kdb_symbols.c.

45 {
46  while (current_entry && current_entry != end_entry)
47  {
48  *pLdrEntry = CONTAINING_RECORD(current_entry, LDR_DATA_TABLE_ENTRY, InLoadOrderLinks);
49 
50  if ((Address && Address >= (PVOID)(*pLdrEntry)->DllBase && Address < (PVOID)((ULONG_PTR)(*pLdrEntry)->DllBase + (*pLdrEntry)->SizeOfImage)) ||
51  (Index >= 0 && (*Count)++ == Index))
52  {
53  return TRUE;
54  }
55 
56  current_entry = current_entry->Flink;
57  }
58 
59  return FALSE;
60 }
TRUE
#define TRUE
Definition: types.h:120
ULONG_PTR
uint32_t ULONG_PTR
Definition: typedefs.h:65
FALSE
#define FALSE
Definition: types.h:117
Address
static WCHAR Address[46]
Definition: ping.c:68
CONTAINING_RECORD
PFLT_MESSAGE_WAITER_QUEUE CONTAINING_RECORD(Csq, DEVICE_EXTENSION, IrpQueue)) -> WaiterQ.mLock) _IRQL_raises_(DISPATCH_LEVEL) VOID NTAPI FltpAcquireMessageWaiterLock(_In_ PIO_CSQ Csq, _Out_ PKIRQL Irql)
Definition: Messaging.c:560
Count
int Count
Definition: noreturn.cpp:7
Index
_In_ WDFCOLLECTION _In_ ULONG Index
Definition: wdfcollection.h:179
_LDR_DATA_TABLE_ENTRY
Definition: btrfs_drv.h:1922

Referenced by KdbpSymFindModule().

◆ KdbpSymUnicodeToAnsi()

static PCHAR NTAPI KdbpSymUnicodeToAnsi ( IN PUNICODE_STRING  Unicode,
OUT PCHAR  Ansi,
IN ULONG  Length 
)
static

Definition at line 114 of file kdb_symbols.c.

117 {
118  PCHAR p;
119  PWCHAR pw;
120  ULONG i;
121 
122  /* Set length and normalize it */
123  i = Unicode->Length / sizeof(WCHAR);
124  i = min(i, Length - 1);
125 
126  /* Set source and destination, and copy */
127  pw = Unicode->Buffer;
128  p = Ansi;
129  while (i--) *p++ = (CHAR)*pw++;
130 
131  /* Null terminate and return */
132  *p = ANSI_NULL;
133  return Ansi;
134 }
PCHAR
signed char * PCHAR
Definition: retypes.h:7
Length
_In_ ULONG _In_ ULONG _In_ ULONG Length
Definition: ntddpcm.h:101
PWCHAR
uint16_t * PWCHAR
Definition: typedefs.h:56
ANSI_NULL
#define ANSI_NULL
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180
i
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248
min
#define min(a, b)
Definition: monoChain.cc:55
ULONG
unsigned int ULONG
Definition: retypes.h:1
p
GLfloat GLfloat p
Definition: glext.h:8902
CHAR
#define CHAR(Char)

Referenced by KdbSymPrintAddress().

◆ KdbSymPrintAddress()

BOOLEAN KdbSymPrintAddress ( IN PVOID  Address,
IN PCONTEXT  Context 
)

Print address...

Tries to lookup line number, file name and function name for the given address and prints it. If no such information is found the address is printed in the format <module: offset>, otherwise the format will be <module: offset (filename:linenumber (functionname))>

Return values
TRUEModule containing Address was found, Address was printed.
FALSENo module containing Address was found, nothing was printed.

Definition at line 148 of file kdb_symbols.c.

151 {
152  PLDR_DATA_TABLE_ENTRY LdrEntry;
153  ULONG_PTR RelativeAddress;
154  BOOLEAN Printed = FALSE;
155  CHAR ModuleNameAnsi[64];
156 
157  if (!KdbpSymFindModule(Address, -1, &LdrEntry))
158  return FALSE;
159 
160  RelativeAddress = (ULONG_PTR)Address - (ULONG_PTR)LdrEntry->DllBase;
161 
162  KdbpSymUnicodeToAnsi(&LdrEntry->BaseDllName,
163  ModuleNameAnsi,
164  sizeof(ModuleNameAnsi));
165 
166  if (LdrEntry->PatchInformation)
167  {
168  ULONG LineNumber;
169  CHAR FileName[256];
170  CHAR FunctionName[256];
171 
172  if (RosSymGetAddressInformation(LdrEntry->PatchInformation, RelativeAddress, &LineNumber, FileName, FunctionName))
173  {
174  STRING str;
175  /* Use KdpPrintString because KdpDprintf is limited wrt string size */
176  KdpDprintf("<%s:%x (", ModuleNameAnsi, RelativeAddress);
177  str.Buffer = FileName;
178  str.Length = strnlen(FileName, sizeof(FileName));
179  str.MaximumLength = sizeof(FileName);
180  KdpPrintString(&str);
181  KdpDprintf(":%d (%s))>", LineNumber, FunctionName);
182 
183  Printed = TRUE;
184  }
185  }
186 
187  if (!Printed)
188  {
189  /* Just print module & address */
190  KdpDprintf("<%s:%x>", ModuleNameAnsi, RelativeAddress);
191  }
192 
193  return TRUE;
194 }
KdpPrintString
BOOLEAN NTAPI KdpPrintString(_In_ PSTRING Output)
Definition: kdprint.c:22
TRUE
#define TRUE
Definition: types.h:120
CHAR
char CHAR
Definition: xmlstorage.h:175
ULONG_PTR
uint32_t ULONG_PTR
Definition: typedefs.h:65
_LDR_DATA_TABLE_ENTRY::DllBase
PVOID DllBase
Definition: btrfs_drv.h:1926
FALSE
#define FALSE
Definition: types.h:117
str
const WCHAR * str
Definition: rpc_transport.c:2472
BOOLEAN
unsigned char BOOLEAN
Definition: ProcessorBind.h:185
Address
static WCHAR Address[46]
Definition: ping.c:68
RosSymGetAddressInformation
BOOLEAN RosSymGetAddressInformation(PROSSYM_INFO RosSymInfo, ULONG_PTR RelativeAddress, ULONG *LineNumber, char *FileName, char *FunctionName)
Definition: find.c:94
_FileName
Definition: filecomp.c:347
KdbpSymUnicodeToAnsi
static PCHAR NTAPI KdbpSymUnicodeToAnsi(IN PUNICODE_STRING Unicode, OUT PCHAR Ansi, IN ULONG Length)
Definition: kdb_symbols.c:114
_LDR_DATA_TABLE_ENTRY::PatchInformation
PVOID PatchInformation
Definition: ldrtypes.h:164
STRING
std::wstring STRING
Definition: fontsub.cpp:33
_LDR_DATA_TABLE_ENTRY
Definition: btrfs_drv.h:1922
KdbpSymFindModule
BOOLEAN KdbpSymFindModule(IN PVOID Address OPTIONAL, IN INT Index OPTIONAL, OUT PLDR_DATA_TABLE_ENTRY *pLdrEntry)
Find a module...
Definition: kdb_symbols.c:75
FileName
struct _FileName FileName
Definition: fatprocs.h:893
LineNumber
ACPI_BUFFER *RetBuffer ACPI_BUFFER *RetBuffer char ACPI_WALK_RESOURCE_CALLBACK void *Context ACPI_BUFFER *RetBuffer UINT16 ACPI_RESOURCE **ResourcePtr ACPI_GENERIC_ADDRESS *Reg UINT32 *ReturnValue UINT8 UINT8 *Slp_TypB ACPI_PHYSICAL_ADDRESS PhysicalAddress64 UINT32 UINT32 *TimeElapsed UINT32 LineNumber
Definition: acpixf.h:1216
_LDR_DATA_TABLE_ENTRY::BaseDllName
UNICODE_STRING BaseDllName
Definition: ldrtypes.h:145
FunctionName
ACPI_BUFFER *RetBuffer ACPI_BUFFER *RetBuffer char ACPI_WALK_RESOURCE_CALLBACK void *Context ACPI_BUFFER *RetBuffer UINT16 ACPI_RESOURCE **ResourcePtr ACPI_GENERIC_ADDRESS *Reg UINT32 *ReturnValue UINT8 UINT8 *Slp_TypB ACPI_PHYSICAL_ADDRESS PhysicalAddress64 UINT32 UINT32 *TimeElapsed UINT32 ACPI_STATUS const char UINT32 ACPI_STATUS const char UINT32 const char * FunctionName
Definition: acpixf.h:1274
ULONG
unsigned int ULONG
Definition: retypes.h:1
ULONG_PTR
#define ULONG_PTR
Definition: config.h:101
KdpDprintf
#define KdpDprintf(...)
Definition: mmdbg.c:19

Referenced by KdbpCliMainLoop(), KdbpCmdBackTrace(), KdbpCmdDisassembleX(), KdbpPrintAddressInCode(), and KeRosDumpStackFrameArray().

◆ KdbSymProcessSymbols()

VOID KdbSymProcessSymbols ( _Inout_ PLDR_DATA_TABLE_ENTRY  LdrEntry,
_In_ BOOLEAN  Load 
)

Load symbols from image mapping. If this fails,.

Parameters
LdrEntryThe entry to load symbols from

Definition at line 298 of file kdb_symbols.c.

301 {
302  if (!LoadSymbols)
303  return;
304 
305  /* Check if this is unload */
306  if (!Load)
307  {
308  /* Did we process it */
309  if (LdrEntry->PatchInformation)
310  {
311  RosSymDelete(LdrEntry->PatchInformation);
312  LdrEntry->PatchInformation = NULL;
313  }
314  return;
315  }
316 
317  if (RosSymCreateFromMem(LdrEntry->DllBase, LdrEntry->SizeOfImage, (PROSSYM_INFO*)&LdrEntry->PatchInformation))
318  {
319  return;
320  }
321 
322  /* Add a ref until we really process it */
323  LdrEntry->LoadCount++;
324 
325  /* Tell our worker thread to read from it */
326  KeAcquireSpinLockAtDpcLevel(&SymbolsToLoadLock);
327  InsertTailList(&SymbolsToLoad, &LdrEntry->InInitializationOrderLinks);
328  KeReleaseSpinLockFromDpcLevel(&SymbolsToLoadLock);
329 
330  KeSetEvent(&SymbolsToLoadEvent, IO_NO_INCREMENT, FALSE);
331 }
RosSymCreateFromMem
BOOLEAN RosSymCreateFromMem(PVOID ImageStart, ULONG_PTR ImageSize, PROSSYM_INFO *RosSymInfo)
Definition: frommem.c:20
KeAcquireSpinLockAtDpcLevel
VOID NTAPI KeAcquireSpinLockAtDpcLevel(IN PKSPIN_LOCK SpinLock)
Definition: spinlock.c:198
RosSymDelete
VOID RosSymDelete(PROSSYM_INFO RosSymInfo)
Definition: delete.c:16
SymbolsToLoad
static LIST_ENTRY SymbolsToLoad
Definition: kdb_symbols.c:30
InsertTailList
#define InsertTailList(ListHead, Entry)
Definition: env_spec_w32.h:1003
KeSetEvent
LONG NTAPI KeSetEvent(IN PKEVENT Event, IN KPRIORITY Increment, IN BOOLEAN Wait)
Definition: eventobj.c:159
FALSE
#define FALSE
Definition: types.h:117
_ROSSYM_INFO
Definition: rossym.h:122
SymbolsToLoadLock
static KSPIN_LOCK SymbolsToLoadLock
Definition: kdb_symbols.c:31
KeReleaseSpinLockFromDpcLevel
VOID NTAPI KeReleaseSpinLockFromDpcLevel(IN PKSPIN_LOCK SpinLock)
Definition: spinlock.c:221
NULL
#define NULL
Definition: types.h:112
IO_NO_INCREMENT
#define IO_NO_INCREMENT
Definition: iotypes.h:598
LoadSymbols
static BOOLEAN LoadSymbols
Definition: kdb_symbols.c:29
SymbolsToLoadEvent
static KEVENT SymbolsToLoadEvent
Definition: kdb_symbols.c:32

Referenced by KdbInitialize(), and KdSendPacket().

◆ LoadSymbolsRoutine()

_Use_decl_annotations_ VOID NTAPI LoadSymbolsRoutine ( _In_ PVOID  Context)

The symbol loader thread routine. This opens the image file for reading and loads the symbols section from there.

Note
We must do this because KdbSymProcessSymbols is called at high IRQL and we can't set the event from here
Parameters
ContextUnused

Definition at line 209 of file kdb_symbols.c.

211 {
212  UNREFERENCED_PARAMETER(Context);
213 
214  while (TRUE)
215  {
216  PLIST_ENTRY ListEntry;
217  NTSTATUS Status = KeWaitForSingleObject(&SymbolsToLoadEvent, WrKernel, KernelMode, FALSE, NULL);
218  if (!NT_SUCCESS(Status))
219  {
220  DPRINT1("KeWaitForSingleObject failed?! 0x%08x\n", Status);
221  LoadSymbols = FALSE;
222  return;
223  }
224 
225  while ((ListEntry = ExInterlockedRemoveHeadList(&SymbolsToLoad, &SymbolsToLoadLock)))
226  {
227  PLDR_DATA_TABLE_ENTRY LdrEntry = CONTAINING_RECORD(ListEntry, LDR_DATA_TABLE_ENTRY, InInitializationOrderLinks);
228  HANDLE FileHandle;
229  OBJECT_ATTRIBUTES Attrib;
230  IO_STATUS_BLOCK Iosb;
231  InitializeObjectAttributes(&Attrib, &LdrEntry->FullDllName, OBJ_CASE_INSENSITIVE | OBJ_KERNEL_HANDLE, NULL, NULL);
232  DPRINT1("Trying %wZ\n", &LdrEntry->FullDllName);
233  Status = ZwOpenFile(&FileHandle,
234  FILE_READ_ACCESS | SYNCHRONIZE,
235  &Attrib,
236  &Iosb,
237  FILE_SHARE_READ,
238  FILE_SYNCHRONOUS_IO_NONALERT);
239  if (!NT_SUCCESS(Status))
240  {
241  /* Try system paths */
242  static const UNICODE_STRING System32Dir = RTL_CONSTANT_STRING(L"\\SystemRoot\\system32\\");
243  UNICODE_STRING ImagePath;
244  WCHAR ImagePathBuffer[256];
245  RtlInitEmptyUnicodeString(&ImagePath, ImagePathBuffer, sizeof(ImagePathBuffer));
246  RtlCopyUnicodeString(&ImagePath, &System32Dir);
247  RtlAppendUnicodeStringToString(&ImagePath, &LdrEntry->BaseDllName);
248  InitializeObjectAttributes(&Attrib, &ImagePath, OBJ_CASE_INSENSITIVE | OBJ_KERNEL_HANDLE, NULL, NULL);
249  DPRINT1("Trying %wZ\n", &ImagePath);
250  Status = ZwOpenFile(&FileHandle,
251  FILE_READ_ACCESS | SYNCHRONIZE,
252  &Attrib,
253  &Iosb,
254  FILE_SHARE_READ,
255  FILE_SYNCHRONOUS_IO_NONALERT);
256  if (!NT_SUCCESS(Status))
257  {
258  static const UNICODE_STRING DriversDir= RTL_CONSTANT_STRING(L"\\SystemRoot\\system32\\drivers\\");
259 
260  RtlInitEmptyUnicodeString(&ImagePath, ImagePathBuffer, sizeof(ImagePathBuffer));
261  RtlCopyUnicodeString(&ImagePath, &DriversDir);
262  RtlAppendUnicodeStringToString(&ImagePath, &LdrEntry->BaseDllName);
263  InitializeObjectAttributes(&Attrib, &ImagePath, OBJ_CASE_INSENSITIVE | OBJ_KERNEL_HANDLE, NULL, NULL);
264  DPRINT1("Trying %wZ\n", &ImagePath);
265  Status = ZwOpenFile(&FileHandle,
266  FILE_READ_ACCESS | SYNCHRONIZE,
267  &Attrib,
268  &Iosb,
269  FILE_SHARE_READ,
270  FILE_SYNCHRONOUS_IO_NONALERT);
271  }
272  }
273 
274  if (!NT_SUCCESS(Status))
275  {
276  DPRINT1("Failed opening file %wZ (%wZ) for reading symbols (0x%08x)\n", &LdrEntry->FullDllName, &LdrEntry->BaseDllName, Status);
277  /* We took a ref previously */
278  MmUnloadSystemImage(LdrEntry);
279  continue;
280  }
281 
282  /* Hand it to Rossym */
283  if (!RosSymCreateFromFile(&FileHandle, (PROSSYM_INFO*)&LdrEntry->PatchInformation))
284  LdrEntry->PatchInformation = NULL;
285 
286  /* We're done for this one. */
287  NtClose(FileHandle);
288  MmUnloadSystemImage(LdrEntry);
289  }
290  }
291 }
FILE_READ_ACCESS
#define FILE_READ_ACCESS
Definition: nt_native.h:610
OBJ_CASE_INSENSITIVE
#define OBJ_CASE_INSENSITIVE
Definition: winternl.h:228
TRUE
#define TRUE
Definition: types.h:120
UNREFERENCED_PARAMETER
#define UNREFERENCED_PARAMETER(P)
Definition: ntbasedef.h:317
_OBJECT_ATTRIBUTES
Definition: umtypes.h:181
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
RosSymCreateFromFile
BOOLEAN RosSymCreateFromFile(PVOID FileContext, PROSSYM_INFO *RosSymInfo)
Definition: fromfile.c:20
SymbolsToLoad
static LIST_ENTRY SymbolsToLoad
Definition: kdb_symbols.c:30
KeWaitForSingleObject
NTSTATUS NTAPI KeWaitForSingleObject(IN PVOID Object, IN KWAIT_REASON WaitReason, IN KPROCESSOR_MODE WaitMode, IN BOOLEAN Alertable, IN PLARGE_INTEGER Timeout OPTIONAL)
Definition: wait.c:416
OBJ_KERNEL_HANDLE
#define OBJ_KERNEL_HANDLE
Definition: winternl.h:231
FILE_SHARE_READ
#define FILE_SHARE_READ
Definition: compat.h:136
RtlCopyUnicodeString
NTSYSAPI VOID NTAPI RtlCopyUnicodeString(PUNICODE_STRING DestinationString, PUNICODE_STRING SourceString)
FileHandle
HANDLE FileHandle
Definition: stats.c:38
ExInterlockedRemoveHeadList
PLIST_ENTRY NTAPI ExInterlockedRemoveHeadList(IN OUT PLIST_ENTRY ListHead, IN OUT PKSPIN_LOCK Lock)
Definition: interlocked.c:166
L
#define L(x)
Definition: ntvdm.h:50
FALSE
#define FALSE
Definition: types.h:117
_ROSSYM_INFO
Definition: rossym.h:122
CONTAINING_RECORD
PFLT_MESSAGE_WAITER_QUEUE CONTAINING_RECORD(Csq, DEVICE_EXTENSION, IrpQueue)) -> WaiterQ.mLock) _IRQL_raises_(DISPATCH_LEVEL) VOID NTAPI FltpAcquireMessageWaiterLock(_In_ PIO_CSQ Csq, _Out_ PKIRQL Irql)
Definition: Messaging.c:560
MmUnloadSystemImage
NTSTATUS NTAPI MmUnloadSystemImage(IN PVOID ImageHandle)
Definition: sysldr.c:911
Status
Status
Definition: gdiplustypes.h:24
_LDR_DATA_TABLE_ENTRY::PatchInformation
PVOID PatchInformation
Definition: ldrtypes.h:164
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180
Iosb
return Iosb
Definition: create.c:4402
NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32
SymbolsToLoadLock
static KSPIN_LOCK SymbolsToLoadLock
Definition: kdb_symbols.c:31
NtClose
NTSTATUS NTAPI NtClose(IN HANDLE Handle)
Definition: obhandle.c:3398
ZwOpenFile
NTSYSAPI NTSTATUS NTAPI ZwOpenFile(_Out_ PHANDLE FileHandle, _In_ ACCESS_MASK DesiredAccess, _In_ POBJECT_ATTRIBUTES ObjectAttributes, _Out_ PIO_STATUS_BLOCK IoStatusBlock, _In_ ULONG ShareAccess, _In_ ULONG OpenOptions)
_LDR_DATA_TABLE_ENTRY
Definition: btrfs_drv.h:1922
_LIST_ENTRY
Definition: typedefs.h:119
SYNCHRONIZE
#define SYNCHRONIZE
Definition: nt_native.h:61
_IO_STATUS_BLOCK
Definition: env_spec_w32.h:870
_UNICODE_STRING
Definition: env_spec_w32.h:368
RtlAppendUnicodeStringToString
NTSYSAPI NTSTATUS NTAPI RtlAppendUnicodeStringToString(PUNICODE_STRING Destination, PUNICODE_STRING Source)
_LDR_DATA_TABLE_ENTRY::FullDllName
UNICODE_STRING FullDllName
Definition: btrfs_drv.h:1928
_LDR_DATA_TABLE_ENTRY::BaseDllName
UNICODE_STRING BaseDllName
Definition: ldrtypes.h:145
NULL
#define NULL
Definition: types.h:112
DPRINT1
#define DPRINT1
Definition: precomp.h:8
FILE_SYNCHRONOUS_IO_NONALERT
#define FILE_SYNCHRONOUS_IO_NONALERT
Definition: from_kernel.h:31
InitializeObjectAttributes
#define InitializeObjectAttributes(p, n, a, r, s)
Definition: reg.c:106
LoadSymbols
static BOOLEAN LoadSymbols
Definition: kdb_symbols.c:29
SymbolsToLoadEvent
static KEVENT SymbolsToLoadEvent
Definition: kdb_symbols.c:32
RTL_CONSTANT_STRING
#define RTL_CONSTANT_STRING(s)
Definition: tunneltest.c:14

Variable Documentation

◆ LoadSymbols

BOOLEAN LoadSymbols
static

Definition at line 29 of file kdb_symbols.c.

Referenced by KdbInitialize(), KdbSymProcessSymbols(), LoadSymbolsRoutine(), and MiLoadImageSection().

◆ LoadSymbolsRoutine

KSTART_ROUTINE LoadSymbolsRoutine
static

Definition at line 196 of file kdb_symbols.c.

Referenced by KdbInitialize().

◆ SymbolsToLoad

LIST_ENTRY SymbolsToLoad
static

Definition at line 30 of file kdb_symbols.c.

Referenced by KdbInitialize(), KdbSymProcessSymbols(), and LoadSymbolsRoutine().

◆ SymbolsToLoadEvent

KEVENT SymbolsToLoadEvent
static

Definition at line 32 of file kdb_symbols.c.

Referenced by KdbInitialize(), KdbSymProcessSymbols(), and LoadSymbolsRoutine().

◆ SymbolsToLoadLock

KSPIN_LOCK SymbolsToLoadLock
static

Definition at line 31 of file kdb_symbols.c.

Referenced by KdbInitialize(), KdbSymProcessSymbols(), and LoadSymbolsRoutine().