#include <stdarg.h>#include "initguid.h"#include "windef.h"#include "winbase.h"#include "winerror.h"#include "winnt.h"#include "winreg.h"#include "sddl.h"#include "wmistr.h"#include "evntprov.h"#include "evntrace.h"#include "netevent.h"#include "wine/test.h"
Include dependency graph for eventlog.c:
Go to the source code of this file.
Functions | |
| static | BOOL (WINAPI *pCreateWellKnownSid)(WELL_KNOWN_SID_TYPE |
| static | ULONG (WINAPI *pEventRegister)(const GUID * |
| static void | init_function_pointers (void) |
| static BOOL | create_backup (const char *filename) |
| static void | test_open_close (void) |
| static void | test_info (void) |
| static void | test_count (void) |
| static void | test_oldest (void) |
| static void | test_backup (void) |
| static void | test_read (void) |
| static void | test_openbackup (void) |
| static void | test_clear (void) |
| static BOOL | create_new_eventlog (void) |
| static void | test_readwrite (void) |
| static void | test_autocreation (void) |
| static void | cleanup_eventlog (void) |
| static void | test_trace_event_params (void) |
| static void | test_start_trace (void) |
| static BOOL | read_record (HANDLE handle, DWORD flags, DWORD offset, EVENTLOGRECORD **record, DWORD *size) |
| static void | test_eventlog_start (void) |
| START_TEST (eventlog) | |
Variables | |
| static | PSID |
| static DWORD *static | DWORD |
| static DWORD *static | LPVOID |
| static DWORD *static | LPDWORD |
| static | PENABLECALLBACK |
| static | UCHAR |
| static | ULONGLONG |
| static const WCHAR *static | LPSTR |
| static const char | eventlogsvc [] = "SYSTEM\\CurrentControlSet\\Services\\Eventlog" |
| static const char | eventlogname [] = "Wine" |
| static const char | eventsources [][11] = { "WineSrc", "WineSrc1", "WineSrc20", "WineSrc300" } |
| static const char * | one_string [] = { "First string" } |
| static const char * | two_strings [] = { "First string", "Second string" } |
| struct { | |
| const char * evt_src | |
| WORD evt_type | |
| WORD evt_cat | |
| DWORD evt_id | |
| BOOL evt_sid | |
| WORD evt_numstrings | |
| const char ** evt_strings | |
| } | read_write [] |
| static char | eventlogfile [MAX_PATH] |
Function Documentation
◆ BOOL()
◆ cleanup_eventlog()
Definition at line 1168 of file eventlog.c.
1169{
1170 BOOL bret;
1171 LONG lret;
1175
1176 /* Delete the registry tree */
1180
1188
1189 /* A handle to the eventlog is locked by services.exe. We can only
1190 * delete the eventlog file after reboot.
1191 */
1194}
LONG WINAPI RegOpenKeyA(HKEY hKey, LPCSTR lpSubKey, PHKEY phkResult)
Definition: reg.c:3234
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248
Definition: nsiface.idl:2307
BOOL WINAPI MoveFileExA(IN LPCSTR lpExistingFileName, IN LPCSTR lpNewFileName OPTIONAL, IN DWORD dwFlags)
Definition: moveansi.c:39
Referenced by START_TEST().
◆ create_backup()
Definition at line 63 of file eventlog.c.
64{
67
69 if (!handle && (GetLastError() == ERROR_ACCESS_DENIED || GetLastError() == RPC_S_SERVER_UNAVAILABLE))
70 {
73 }
75
79 {
83 }
86
88 todo_wine
89 ok(attribs != INVALID_FILE_ATTRIBUTES, "Expected a backup file attribs=%#lx le=%lu\n", attribs, GetLastError());
91}
HANDLE WINAPI OpenEventLogA(IN LPCSTR lpUNCServerName, IN LPCSTR lpSourceName)
Definition: eventlog.c:919
BOOL WINAPI BackupEventLogA(IN HANDLE hEventLog, IN LPCSTR lpBackupFileName)
Definition: eventlog.c:177
Definition: rpc_generic.c:61
Referenced by test_clear(), test_count(), test_oldest(), and test_openbackup().
◆ create_new_eventlog()
Definition at line 698 of file eventlog.c.
699{
702 LONG lret;
704
705 /* First create our eventlog */
708 {
711 }
714 {
717 }
718
719 /* Create some event sources, the registry value 'Sources' is updated automatically */
721 {
722 HKEY srckey;
723
726 {
729 }
730 RegFlushKey(srckey);
731 RegCloseKey(srckey);
732 }
733
734 bret = TRUE;
735
736 /* The flushing of the registry (here and above) gives us some assurance
737 * that we are not to quickly writing events as 'Sources' could still be
738 * not updated.
739 */
740 RegFlushKey(eventkey);
741cleanup:
742 RegCloseKey(eventkey);
744
745 return bret;
746}
LONG WINAPI RegCreateKeyA(HKEY hKey, LPCSTR lpSubKey, PHKEY phkResult)
Definition: reg.c:1179
Referenced by START_TEST().
◆ init_function_pointers()
Definition at line 47 of file eventlog.c.
48{
51
57
59 pWow64DisableWow64FsRedirection = (void*)GetProcAddress(hkernel32, "Wow64DisableWow64FsRedirection");
60 pWow64RevertWow64FsRedirection = (void*)GetProcAddress(hkernel32, "Wow64RevertWow64FsRedirection");
61}
HMODULE WINAPI DECLSPEC_HOTPATCH GetModuleHandleA(LPCSTR lpModuleName)
Definition: loader.c:812
Referenced by START_TEST().
◆ read_record()
|
static |
Definition at line 1324 of file eventlog.c.
1325{
1328
1329 SetLastError(0xdeadbeef);
1331 needed = 0;
1334 {
1337 SetLastError(0xdeadbeef);
1339 *size = needed;
1341 }
1342
1344}
BOOL WINAPI ReadEventLogW(IN HANDLE hEventLog, IN DWORD dwReadFlags, IN DWORD dwRecordOffset, OUT LPVOID lpBuffer, IN DWORD nNumberOfBytesToRead, OUT DWORD *pnBytesRead, OUT DWORD *pnMinNumberOfBytesNeeded)
Definition: eventlog.c:1154
Definition: wbemprox_private.h:148
Referenced by test_eventlog_start().
◆ START_TEST()
| START_TEST | ( | eventlog | ) |
Definition at line 1748 of file eventlog.c.
1749{
1750 SetLastError(0xdeadbeef);
1753 {
1755 return;
1756 }
1757
1758 init_function_pointers();
1759
1760 /* Parameters only */
1761 test_open_close();
1762 test_info();
1763 test_count();
1764 test_oldest();
1765 test_backup();
1766 test_openbackup();
1767 test_read();
1768 test_clear();
1769 test_trace_event_params();
1770
1771 /* Functional tests */
1773 {
1774 test_readwrite();
1775 test_autocreation();
1776 cleanup_eventlog();
1777 }
1778
1779 /* Trace tests */
1780 test_start_trace();
1781
1782 test_eventlog_start();
1783}
◆ test_autocreation()
Definition at line 1112 of file eventlog.c.
1113{
1121 void *redir = 0;
1122
1125
1127 sources[0] = 0;
1130 {
1132
1134
1135 /* Build the expected string */
1137 p = sources_verify;
1139 {
1142 }
1144
1147 }
1148
1149 RegCloseKey(eventkey);
1151
1152 /* The directory that holds the eventlog files could be redirected */
1153 if (pWow64DisableWow64FsRedirection)
1154 pWow64DisableWow64FsRedirection(&redir);
1155
1156 /* On Windows we also automatically get an eventlog file */
1158
1163
1164 if (pWow64RevertWow64FsRedirection)
1165 pWow64RevertWow64FsRedirection(redir);
1166}
LONG WINAPI RegQueryValueExA(_In_ HKEY hkeyorg, _In_ LPCSTR name, _In_ LPDWORD reserved, _Out_opt_ LPDWORD type, _Out_opt_ LPBYTE data, _Inout_opt_ LPDWORD count)
Definition: reg.c:4009
UINT WINAPI GetSystemDirectoryA(OUT LPSTR lpBuffer, IN UINT uSize)
Definition: path.c:2202
Referenced by START_TEST().
◆ test_backup()
Definition at line 323 of file eventlog.c.
324{
328 const char backup2[] = "backup2.evt";
329
330 SetLastError(0xdeadbeef);
333 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
334
335 SetLastError(0xdeadbeef);
339
341 if (!handle && (GetLastError() == ERROR_ACCESS_DENIED || GetLastError() == RPC_S_SERVER_UNAVAILABLE))
342 {
344 return;
345 }
347
348 SetLastError(0xdeadbeef);
351 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
352
355 {
358 return;
359 }
361 todo_wine
363
364 /* Try to overwrite */
365 SetLastError(0xdeadbeef);
367 todo_wine
368 {
370 ok(GetLastError() == ERROR_ALREADY_EXISTS, "Expected ERROR_ALREADY_EXISTS, got %ld\n", GetLastError());
371 }
372
374
375 /* Can we make a backup of a backup? */
377 todo_wine
379
381 todo_wine
382 {
385 }
386
389 DeleteFileA(backup2);
390}
HANDLE WINAPI OpenBackupEventLogA(IN LPCSTR lpUNCServerName, IN LPCSTR lpFileName)
Definition: eventlog.c:725
Referenced by START_TEST().
◆ test_clear()
Definition at line 641 of file eventlog.c.
642{
646 const char backup2[] = "backup2.evt";
647
648 SetLastError(0xdeadbeef);
651 ok(GetLastError() == ERROR_INVALID_HANDLE, "Expected ERROR_INVALID_HANDLE, got %ld\n", GetLastError());
652
653 /* Make a backup eventlog to work with */
655 return;
656
657 SetLastError(0xdeadbeef);
660 ok(GetLastError() == ERROR_INVALID_HANDLE, "Expected ERROR_INVALID_HANDLE, got %ld\n", GetLastError());
661
663 todo_wine
665
666 /* A real eventlog would fail with ERROR_ALREADY_EXISTS */
667 SetLastError(0xdeadbeef);
670 /* The eventlog service runs under an account that doesn't have the necessary
671 * permissions on the users home directory on a default Vista+ system.
672 */
676
677 /* Show that ClearEventLog only works for real eventlogs. */
678 SetLastError(0xdeadbeef);
681 ok(GetLastError() == ERROR_INVALID_HANDLE, "Expected ERROR_INVALID_HANDLE, got %ld\n", GetLastError());
683
684 SetLastError(0xdeadbeef);
687 ok(GetLastError() == ERROR_INVALID_HANDLE, "Expected ERROR_INVALID_HANDLE, got %ld\n", GetLastError());
688
690 todo_wine
692}
BOOL WINAPI ClearEventLogA(IN HANDLE hEventLog, IN LPCSTR lpBackupFileName)
Definition: eventlog.c:305
Referenced by START_TEST(), and test_HTMLDocument_hlink().
◆ test_count()
Definition at line 208 of file eventlog.c.
209{
214
215 SetLastError(0xdeadbeef);
218 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
219
220 SetLastError(0xdeadbeef);
221 count = 0xdeadbeef;
224 ok(GetLastError() == ERROR_INVALID_HANDLE, "Expected ERROR_INVALID_HANDLE, got %ld\n", GetLastError());
226
229
230 SetLastError(0xdeadbeef);
233 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
234
235 count = 0xdeadbeef;
239
241
242 /* Make a backup eventlog to work with */
244 {
246 todo_wine
248
249 /* Does GetNumberOfEventLogRecords work with backup eventlogs? */
250 count = 0xdeadbeef;
252 todo_wine
253 {
256 }
257
260 }
261}
BOOL WINAPI GetNumberOfEventLogRecords(IN HANDLE hEventLog, OUT PDWORD NumberOfRecords)
Definition: eventlog.c:570
Referenced by START_TEST().
◆ test_eventlog_start()
Definition at line 1346 of file eventlog.c.
1347{
1352 WCHAR *sourcename, *computername, *localcomputer;
1353 char *sourcenameA, *computernameA, *localcomputerA;
1354
1355 /* ReadEventLogW */
1357 if (!handle && (GetLastError() == ERROR_ACCESS_DENIED || GetLastError() == RPC_S_SERVER_UNAVAILABLE))
1358 {
1360 return;
1361 }
1365 CloseEventLog(handle2);
1366
1369 CloseEventLog(handle2);
1370
1374
1376 found = FALSE;
1378 {
1379 read = needed = 0;
1384 {
1389 }
1391 {
1398#ifdef __REACTOS__
1399 ok(record->NumStrings == 0 || broken(GetNTVersion() <= _WIN32_WINNT_WS03), "Expected 0, got %d\n", record->NumStrings);
1400#else
1402#endif
1408#ifdef __REACTOS__
1409 ok(record->DataLength == 24 || broken(GetNTVersion() <= _WIN32_WINNT_WS03), "Expected 24, got %ld\n", record->DataLength);
1410 ok(record->DataOffset == record->UserSidOffset || broken(GetNTVersion() <= _WIN32_WINNT_WS03), "Expected offsets to be the same\n");
1411#else
1414#endif
1415
1418 "Expected 'EventLog', got '%ls'\n", sourcename);
1419
1420 computername = sourcename + sizeof("EventLog");
1422 localcomputer, computername);
1423
1427#ifdef __REACTOS__
1429 broken(record->DataOffset == (sizeof(EVENTLOGRECORD) + sizeof(L"EventLog") + (lstrlenW(computername) + 1) * sizeof(WCHAR))) /* Vista */ ||
1430#else
1432#endif
1435
1436 found = TRUE;
1437 }
1439 }
1442 free(localcomputer);
1443
1444 /* ReadEventLogA */
1448
1452 CloseEventLog(handle2);
1453
1455 found = FALSE;
1457 {
1458 read = needed = 0;
1463 {
1468 }
1470 {
1477#ifdef __REACTOS__
1478 ok(record->NumStrings == 0 || broken(GetNTVersion() <= _WIN32_WINNT_WS03), "Expected 0, got %d\n", record->NumStrings);
1479#else
1481#endif
1487#ifdef __REACTOS__
1488 ok(record->DataLength == 24 || broken(GetNTVersion() <= _WIN32_WINNT_WS03), "Expected 24, got %ld\n", record->DataLength);
1489 ok(record->DataOffset == record->UserSidOffset || broken(GetNTVersion() <= _WIN32_WINNT_WS03), "Expected offsets to be the same\n");
1490#else
1493#endif
1494
1497 "Expected 'EventLog', got '%s'\n", sourcenameA);
1498
1499 computernameA = sourcenameA + sizeof("EventLog");
1501 localcomputerA, computernameA);
1502
1505#ifdef __REACTOS__
1507 broken(record->DataOffset == (sizeof(EVENTLOGRECORD) + sizeof("EventLog") + strlen(computernameA) + 1)) /* Vista */ ||
1508#else
1510#endif
1513
1514 found = TRUE;
1515 }
1517 }
1520 free(localcomputerA);
1521
1522 /* SEQUENTIAL | FORWARDS - dwRecordOffset is ignored */
1526 todo_wine {
1527 ret = read_record(handle, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_FORWARDS_READ, 100, &record, &size);
1529#ifndef __REACTOS__ // Flaky on WS03 and Vista
1531#endif
1532 ret = read_record(handle, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_FORWARDS_READ, 200, &record, &size);
1534#ifndef __REACTOS__ // Flaky on WS03 and Vista
1536#endif
1537
1538 /* change direction sequentially */
1539 ret = read_record(handle, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_BACKWARDS_READ, 300, &record, &size);
1541#ifndef __REACTOS__ // Flaky on WS03 and Vista
1543#endif
1544 ret = read_record(handle, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_BACKWARDS_READ, 400, &record, &size);
1546#ifndef __REACTOS__ // Flaky on WS03 and Vista
1548#endif
1549 }
1550
1551 /* changing how is an error */
1552 SetLastError(0xdeadbeef);
1555 todo_wine
1556 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
1558
1559 /* SEQUENTIAL | BACKWARDS - dwRecordOffset is ignored */
1561 count = 0xdeadbeef;
1564 todo_wine
1566
1567 ret = read_record(handle, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_BACKWARDS_READ, 100, &record, &size);
1568 todo_wine
1570#ifndef __REACTOS__ // Flaky on WS03 and Vista
1572#endif
1573 ret = read_record(handle, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_BACKWARDS_READ, 100, &record, &size);
1574 todo_wine {
1576#ifndef __REACTOS__ // Flaky on WS03 and Vista
1577 ok(record->RecordNumber == count - 1, "Expected %lu, got %lu\n", count - 1, record->RecordNumber);
1578#endif
1579 }
1581
1583 /* SEEK | FORWARDS */
1584 /* bogus offset */
1587 todo_wine
1588 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
1589
1590 count = 0xdeadbeef;
1593 ret = read_record(handle, EVENTLOG_SEEK_READ | EVENTLOG_FORWARDS_READ, count + 1, &record, &size);
1594#ifdef __REACTOS__
1596 todo_wine ok(GetLastError() == ERROR_INVALID_PARAMETER || broken(GetLastError() == ERROR_SUCCESS) /* Vista */, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
1597#else
1599 todo_wine
1600 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
1601#endif
1602
1603 todo_wine {
1605#ifdef __REACTOS__
1606 ok(ret || broken(GetLastError() == ERROR_INVALID_PARAMETER) /* Vista */, "Expected success : %ld\n", GetLastError());
1607 ok(record->RecordNumber == 2 || broken(GetLastError() == ERROR_INVALID_PARAMETER) /* Vista */, "Expected 2, got %lu\n", record->RecordNumber);
1608#else
1611#endif
1612 /* skip one */
1614#ifdef __REACTOS__
1615 ok(ret || broken(GetLastError() == ERROR_INVALID_PARAMETER) /* Vista */, "Expected success : %ld\n", GetLastError());
1616 ok(record->RecordNumber == 4 || broken(GetLastError() == ERROR_INVALID_PARAMETER) /* Vista */, "Expected 4, got %lu\n", record->RecordNumber);
1617#else
1620#endif
1621 /* seek an earlier one */
1623#ifdef __REACTOS__
1624 ok(ret || broken(GetLastError() == ERROR_INVALID_PARAMETER) /* Vista */, "Expected success : %ld\n", GetLastError());
1625 ok(record->RecordNumber == 3 || broken(GetLastError() == ERROR_INVALID_PARAMETER) /* Vista */, "Expected 3, got %lu\n", record->RecordNumber);
1626#else
1629#endif
1630 /* change how */
1631 ret = read_record(handle, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_FORWARDS_READ, 100, &record, &size);
1633#ifndef __REACTOS__ // Flaky on WS03 and Vista
1636#endif
1637 /* change direction */
1639#ifdef __REACTOS__
1640 ok(ret || broken(GetLastError() == ERROR_INVALID_PARAMETER) /* Vista */, "Expected success : %ld\n", GetLastError());
1641 ok(record->RecordNumber == 10 || broken(GetLastError() == ERROR_INVALID_PARAMETER) /* Vista */, "Expected 10, got %lu\n", record->RecordNumber);
1642#else
1645#endif
1646 }
1648
1649 /* SEEK | BACKWARDS */
1651 /* bogus offset */
1654 todo_wine
1655 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
1656
1657 todo_wine {
1659#ifdef __REACTOS__
1660 ok(ret || broken(GetLastError() == ERROR_INVALID_PARAMETER) /* Vista */, "Expected success : %ld\n", GetLastError());
1661 ok(record->RecordNumber == 5 || broken(GetLastError() == ERROR_INVALID_PARAMETER) /* Vista */, "Expected 5, got %lu\n", record->RecordNumber);
1662#else
1665#endif
1666 /* skip one */
1668#ifdef __REACTOS__
1669 ok(ret || broken(GetLastError() == ERROR_INVALID_PARAMETER) /* Vista */, "Expected success : %ld\n", GetLastError());
1670 ok(record->RecordNumber == 3 || broken(GetLastError() == ERROR_INVALID_PARAMETER) /* Vista */, "Expected 3, got %lu\n", record->RecordNumber);
1671#else
1674#endif
1675 /* seek a later one */
1677#ifdef __REACTOS__
1678 ok(ret || broken(GetLastError() == ERROR_INVALID_PARAMETER) /* Vista */, "Expected success : %ld\n", GetLastError());
1679 ok(record->RecordNumber == 4 || broken(GetLastError() == ERROR_INVALID_PARAMETER) /* Vista */, "Expected 4, got %lu\n", record->RecordNumber);
1680#else
1683#endif
1684 /* change how */
1685 ret = read_record(handle, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_BACKWARDS_READ, 100, &record, &size);
1687#ifndef __REACTOS__ // Flaky on WS03 and Vista
1690#endif
1691 /* change direction */
1693#ifdef __REACTOS__
1694 ok(ret || broken(GetLastError() == ERROR_INVALID_PARAMETER) /* Vista */, "Expected success : %ld\n", GetLastError());
1695 ok(record->RecordNumber == 10 || broken(GetLastError() == ERROR_INVALID_PARAMETER) /* Vista */, "Expected 10, got %lu\n", record->RecordNumber);
1696#else
1699#endif
1700 }
1702
1703 /* reading same log with different handles */
1706 todo_wine {
1707 ret = read_record(handle, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_FORWARDS_READ, 0, &record, &size);
1709#ifndef __REACTOS__ // Flaky on WS03 and Vista
1711#endif
1712 ret = read_record(handle2, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_FORWARDS_READ, 0, &record, &size);
1714#ifndef __REACTOS__ // Flaky on WS03 and Vista
1716#endif
1717 }
1718 CloseEventLog(handle2);
1720
1721 /* using source name */
1722 size2 = size;
1723 record2 = malloc(size2);
1726 todo_wine {
1727 ret = read_record(handle, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_FORWARDS_READ, 0, &record, &size);
1729 ret = read_record(handle2, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_FORWARDS_READ, 0, &record2, &size2);
1731 }
1734 count = 0xdeadbeef;
1735 count2 = 0xdeadbeef;
1741 CloseEventLog(handle2);
1743
1744 free(record2);
1746}
BOOL WINAPI GetComputerNameW(LPWSTR lpBuffer, LPDWORD lpnSize)
Definition: compname.c:446
HANDLE WINAPI OpenEventLogW(IN LPCWSTR lpUNCServerName, IN LPCWSTR lpSourceName)
Definition: eventlog.c:985
BOOL WINAPI ReadEventLogA(IN HANDLE hEventLog, IN DWORD dwReadFlags, IN DWORD dwRecordOffset, OUT LPVOID lpBuffer, IN DWORD nNumberOfBytesToRead, OUT DWORD *pnBytesRead, OUT DWORD *pnMinNumberOfBytesNeeded)
Definition: eventlog.c:1061
static BOOL read_record(HANDLE handle, DWORD flags, DWORD offset, EVENTLOGRECORD **record, DWORD *size)
Definition: eventlog.c:1324
BOOL WINAPI SHIM_OBJ_NAME() GetComputerNameA(LPSTR lpBuffer, LPDWORD lpnSize)
Definition: shimtest.c:21
Definition: winnt_old.h:3081
struct _EVENTLOGRECORD EVENTLOGRECORD
Referenced by START_TEST().
◆ test_info()
Definition at line 146 of file eventlog.c.
147{
150 DWORD needed;
153
154 if (!pGetEventLogInformation)
155 {
156 /* NT4 */
158 return;
159 }
160 SetLastError(0xdeadbeef);
163 ok(GetLastError() == ERROR_INVALID_LEVEL, "Expected ERROR_INVALID_LEVEL, got %ld\n", GetLastError());
164
165 SetLastError(0xdeadbeef);
168 ok(GetLastError() == ERROR_INVALID_HANDLE, "Expected ERROR_INVALID_HANDLE, got %ld\n", GetLastError());
169
172
173 SetLastError(0xdeadbeef);
176 ok(GetLastError() == RPC_X_NULL_REF_POINTER, "Expected RPC_X_NULL_REF_POINTER, got %ld\n", GetLastError());
177
178 SetLastError(0xdeadbeef);
181 ok(GetLastError() == RPC_X_NULL_REF_POINTER, "Expected RPC_X_NULL_REF_POINTER, got %ld\n", GetLastError());
182
183 SetLastError(0xdeadbeef);
186 ok(GetLastError() == RPC_X_NULL_REF_POINTER, "Expected RPC_X_NULL_REF_POINTER, got %ld\n", GetLastError());
187
188 SetLastError(0xdeadbeef);
189 needed = 0xdeadbeef;
190 efi->dwFull = 0xdeadbeef;
193 ok(GetLastError() == ERROR_INSUFFICIENT_BUFFER, "Expected ERROR_INSUFFICIENT_BUFFER, got %ld\n", GetLastError());
194 ok(needed == sizeof(EVENTLOG_FULL_INFORMATION), "Expected sizeof(EVENTLOG_FULL_INFORMATION), got %ld\n", needed);
196
197 /* Not that we care, but on success last error is set to ERROR_IO_PENDING */
198 efi->dwFull = 0xdeadbeef;
202 ok(needed == sizeof(EVENTLOG_FULL_INFORMATION), "Expected sizeof(EVENTLOG_FULL_INFORMATION), got %ld\n", needed);
203 ok(efi->dwFull == 0 || efi->dwFull == 1, "Expected 0 (not full) or 1 (full), got %ld\n", efi->dwFull);
204
206}
Definition: winbase.h:886
struct _EVENTLOG_FULL_INFORMATION EVENTLOG_FULL_INFORMATION
Referenced by START_TEST().
◆ test_oldest()
Definition at line 263 of file eventlog.c.
264{
267 DWORD oldest;
269
270 SetLastError(0xdeadbeef);
273 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
274
275 SetLastError(0xdeadbeef);
276 oldest = 0xdeadbeef;
279 ok(GetLastError() == ERROR_INVALID_HANDLE, "Expected ERROR_INVALID_HANDLE, got %ld\n", GetLastError());
281
283 if (!handle && (GetLastError() == ERROR_ACCESS_DENIED || GetLastError() == RPC_S_SERVER_UNAVAILABLE))
284 {
286 return;
287 }
289
290 SetLastError(0xdeadbeef);
293 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
294
295 oldest = 0xdeadbeef;
299
301
302 /* Make a backup eventlog to work with */
304 {
306 todo_wine
308
309 /* Does GetOldestEventLogRecord work with backup eventlogs? */
310 oldest = 0xdeadbeef;
312 todo_wine
313 {
316 }
317
320 }
321}
BOOL WINAPI GetOldestEventLogRecord(IN HANDLE hEventLog, OUT PDWORD OldestRecord)
Definition: eventlog.c:619
Referenced by START_TEST().
◆ test_open_close()
Definition at line 93 of file eventlog.c.
94{
97
98 SetLastError(0xdeadbeef);
104
105 SetLastError(0xdeadbeef);
108 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
109
110 SetLastError(0xdeadbeef);
113 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
114
115 SetLastError(0xdeadbeef);
121
122 /* This one opens the Application log */
127 /* Close a second time */
128 SetLastError(0xdeadbeef);
130 todo_wine
131 {
133 ok(GetLastError() == ERROR_INVALID_HANDLE, "Expected ERROR_INVALID_HANDLE, got %ld\n", GetLastError());
134 }
135
136 /* Empty servername should be read as local server */
140
144}
Referenced by START_TEST().
◆ test_openbackup()
Definition at line 546 of file eventlog.c.
547{
549 DWORD written;
552
553 SetLastError(0xdeadbeef);
556 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
557
558 SetLastError(0xdeadbeef);
565
566 SetLastError(0xdeadbeef);
569 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
570
571 SetLastError(0xdeadbeef);
577
578 /* Make a backup eventlog to work with */
580 {
581 /* FIXME: Wine stops here */
583 {
585 return;
586 }
587
588 SetLastError(0xdeadbeef);
594
595 /* Empty servername should be read as local server */
599
602
603 /* Can we open that same backup eventlog more than once? */
607 CloseEventLog(handle2);
608
611 }
612
613 /* Is there any content checking done? */
616 SetLastError(0xdeadbeef);
626
630 SetLastError(0xdeadbeef);
639}
BOOL WINAPI WriteFile(IN HANDLE hFile, IN LPCVOID lpBuffer, IN DWORD nNumberOfBytesToWrite OPTIONAL, OUT LPDWORD lpNumberOfBytesWritten, IN LPOVERLAPPED lpOverlapped OPTIONAL)
Definition: rw.c:24
Referenced by START_TEST().
◆ test_read()
Definition at line 392 of file eventlog.c.
393{
398
399 SetLastError(0xdeadbeef);
402 todo_wine
403 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
404
405 read = 0xdeadbeef;
406 SetLastError(0xdeadbeef);
410 todo_wine
411 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
412
413 needed = 0xdeadbeef;
414 SetLastError(0xdeadbeef);
418 todo_wine
419 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
420
421 /* 'read' and 'needed' are only filled when the needed buffer size is passed back or when the call succeeds */
422 SetLastError(0xdeadbeef);
425 todo_wine
426 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
427
428 SetLastError(0xdeadbeef);
429 ret = ReadEventLogA(NULL, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_FORWARDS_READ, 0, NULL, 0, NULL, NULL);
431 todo_wine
432 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
433
434 SetLastError(0xdeadbeef);
435 ret = ReadEventLogA(NULL, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_FORWARDS_READ, 0, NULL, 0, &read, &needed);
437 todo_wine
438 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
439
441 SetLastError(0xdeadbeef);
445 todo_wine
446 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
447
449 SetLastError(0xdeadbeef);
453 todo_wine
454 ok(GetLastError() == ERROR_INVALID_HANDLE, "Expected ERROR_INVALID_HANDLE, got %ld\n", GetLastError());
456
458 if (!handle && (GetLastError() == ERROR_ACCESS_DENIED || GetLastError() == RPC_S_SERVER_UNAVAILABLE))
459 {
461 return;
462 }
464
465 /* Show that we need the proper dwFlags with a (for the rest) proper call */
467
468 SetLastError(0xdeadbeef);
471 todo_wine
472 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
473
474 SetLastError(0xdeadbeef);
475 ret = ReadEventLogA(handle, EVENTLOG_SEQUENTIAL_READ, 0, buf, sizeof(EVENTLOGRECORD), &read, &needed);
477 todo_wine
478 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
479
480 SetLastError(0xdeadbeef);
481 ret = ReadEventLogA(handle, EVENTLOG_SEEK_READ, 0, buf, sizeof(EVENTLOGRECORD), &read, &needed);
483 todo_wine
484 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
485
486 SetLastError(0xdeadbeef);
487 ret = ReadEventLogA(handle, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_FORWARDS_READ | EVENTLOG_BACKWARDS_READ,
490 todo_wine
491 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
492
493 SetLastError(0xdeadbeef);
494 ret = ReadEventLogA(handle, EVENTLOG_SEEK_READ | EVENTLOG_FORWARDS_READ | EVENTLOG_BACKWARDS_READ,
497 todo_wine
498 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
499
500 SetLastError(0xdeadbeef);
501 ret = ReadEventLogA(handle, EVENTLOG_SEEK_READ | EVENTLOG_SEQUENTIAL_READ | EVENTLOG_FORWARDS_READ,
504 todo_wine
505 ok(GetLastError() == ERROR_INVALID_PARAMETER, "Expected ERROR_INVALID_PARAMETER, got %ld\n", GetLastError());
506
508
509 /* First check if there are any records (in practice only on Wine: FIXME) */
510 count = 0;
513 {
516 return;
517 }
518
519 /* Get the buffer size for the first record */
521 read = needed = 0xdeadbeef;
522 SetLastError(0xdeadbeef);
527 ok(needed > sizeof(EVENTLOGRECORD), "Expected the needed buffersize to be bigger than sizeof(EVENTLOGRECORD)\n");
528 ok(GetLastError() == ERROR_INSUFFICIENT_BUFFER, "Expected ERROR_INSUFFICIENT_BUFFER, got %ld\n", GetLastError());
529
530 /* Read the first record */
531 toread = needed;
533 read = needed = 0xdeadbeef;
534 SetLastError(0xdeadbeef);
535 ret = ReadEventLogA(handle, EVENTLOG_SEQUENTIAL_READ | EVENTLOG_FORWARDS_READ, 0, buf, toread, &read, &needed);
539 "Expected the requested size to be read\n");
542
544}
Referenced by START_TEST().
◆ test_readwrite()
Definition at line 773 of file eventlog.c.
774{
784
785 if (pCreateWellKnownSid)
786 {
787 sidsize = SECURITY_MAX_SID_SIZE;
789 SetLastError(0xdeadbeef);
791 sidavailable = TRUE;
792 }
793 else
794 {
796 sidavailable = FALSE;
798 }
799
800 /* Write an event with an incorrect event type. This will fail on Windows 7
801 * but succeed on all others, hence it's not part of the struct.
802 */
805 {
806 /* Intermittently seen on NT4 when tests are run immediately after boot */
809 }
810
811 count = 0xdeadbeef;
814 {
815 /* Needed for W2K3 without a service pack */
818 Sleep(2000);
819
822 count = 0xdeadbeef;
825 {
829 }
830 }
831
832 SetLastError(0xdeadbeef);
835 {
839 }
840 else
841 {
845
847
848 /* Needed to catch earlier Vista (with no ServicePack for example) */
853 {
857 }
859 {
861
862 /* Vista and W2K8 return EVENTLOG_SUCCESS, Windows versions before return
863 * the written eventtype (0x20 in this case).
864 */
866 on_vista = TRUE;
867 }
869 }
870
871 /* This will clear the eventlog. The record numbering for new
872 * events however differs on Vista SP1+. Before Vista the first
873 * event would be numbered 1, on Vista SP1+ it's higher as we already
874 * had at least one event (more in case of multiple test runs without
875 * a reboot).
876 */
879
880 /* Write a bunch of events while using different event sources */
882 {
883 DWORD oldest;
885
887
888 /* We don't need to use RegisterEventSource to report events */
891 else
894
895 SetLastError(0xdeadbeef);
900
901 count = 0xdeadbeef;
902 SetLastError(0xdeadbeef);
905 todo_wine
907
908 oldest = 0xdeadbeef;
911 todo_wine
912 ok(oldest == 1 ||
913 (oldest > 1 && oldest != 0xdeadbeef), /* Vista SP1+, W2K8 and Win7 */
914 "Expected oldest to be 1 or higher, got %ld\n", oldest);
915 if (oldest > 1 && oldest != 0xdeadbeef)
916 on_vista = TRUE;
917
918 SetLastError(0xdeadbeef);
921 else
924 winetest_pop_context();
925 }
926
929 count = 0xdeadbeef;
932 todo_wine
935
937 {
940 }
941
942 /* Report only once */
943 if (on_vista)
945
946 if (on_vista && pGetComputerNameExA)
947 {
948 /* New Vista+ behavior */
949 size = 0;
950 SetLastError(0xdeadbeef);
953 pGetComputerNameExA(ComputerNameDnsFullyQualified, localcomputer, &size);
954 }
955 else
956 {
960 }
961
962 /* Read all events from our created eventlog, one by one */
965 i = 0;
968 for (;;)
969 {
972 char *sourcename, *computername;
976
978
979 SetLastError(0xdeadbeef);
984 {
986 winetest_pop_context();
987 break;
988 }
989
991 {
993 size = needed;
995 }
1000 {
1001 winetest_pop_context();
1002 break;
1003 }
1005
1021
1025
1028 localcomputer, computername);
1029
1030 /* Before Vista, UserSid was aligned on a DWORD boundary. Next to that if
1031 * no padding was actually required a 0 DWORD was still used for padding. No
1032 * application should be relying on the padding as we are working with offsets
1033 * anyway.
1034 */
1035
1036 if (!on_vista)
1037 {
1038 DWORD calculated_sidoffset = sizeof(EVENTLOGRECORD) + lstrlenA(sourcename) + 1 + lstrlenA(computername) + 1;
1039
1040 /* We are already DWORD aligned, there should still be some padding */
1043
1044 ok((((UINT_PTR)buf + record->UserSidOffset) % sizeof(DWORD)) == 0, "Expected DWORD alignment\n");
1045 }
1046
1047 if (run_sidtests)
1048 {
1049 ok(record->UserSidLength == sidsize, "Expected %ld, got %ld\n", sidsize, record->UserSidLength);
1050 }
1051 else
1052 {
1055 }
1056
1058
1061 {
1064 }
1065
1067 "Expected the closing DWORD to contain the length of the record\n");
1068
1069 winetest_pop_context();
1070 i++;
1071 }
1074
1075 /* Test clearing a real eventlog */
1078
1079 SetLastError(0xdeadbeef);
1082
1083 count = 0xdeadbeef;
1087
1089
1090cleanup:
1091 free(localcomputer);
1093}
BOOL WINAPI ReportEventA(IN HANDLE hEventLog, IN WORD wType, IN WORD wCategory, IN DWORD dwEventID, IN PSID lpUserSid, IN WORD wNumStrings, IN DWORD dwDataSize, IN LPCSTR *lpStrings, IN LPVOID lpRawData)
Definition: eventlog.c:1377
BOOL WINAPI DeregisterEventSource(IN HANDLE hEventLog)
Definition: eventlog.c:473
HANDLE WINAPI RegisterEventSourceA(IN LPCSTR lpUNCServerName, IN LPCSTR lpSourceName)
Definition: eventlog.c:1224
void __cdecl void __cdecl void __cdecl void __cdecl void __cdecl winetest_push_context(const char *fmt,...) __WINE_PRINTF_ATTR(1
void __cdecl void __cdecl void __cdecl void __cdecl void __cdecl void winetest_pop_context(void)
static const struct @1753 read_write[]
Definition: ms-dtyp.idl:198
Referenced by START_TEST().
◆ test_start_trace()
Definition at line 1232 of file eventlog.c.
1233{
1234 const char sessionname[] = "wine";
1235 const char filepath[] = "wine.etl";
1236 const char filepath2[] = "eniw.etl";
1237 EVENT_TRACE_PROPERTIES *properties;
1239 LONG buffersize;
1241
1243 properties = calloc(1, buffersize);
1250
1253 todo_wine
1258
1260 todo_wine
1262
1264 todo_wine
1266
1268 todo_wine
1270
1271 properties->LogFileNameOffset = 1;
1273 todo_wine
1276
1277 properties->LoggerNameOffset = 1;
1279 todo_wine
1282
1285 todo_wine
1288 /* XP creates a file we can't delete, so change the filepath to something else */
1290
1293 todo_wine
1296
1297 properties->LogFileNameOffset = 0;
1299 todo_wine
1302
1305 {
1307 goto done;
1308 }
1310
1312 todo_wine
1316
1317 /* clean up */
1319done:
1320 free(properties);
1321 DeleteFileA(filepath);
1322}
struct _EVENT_TRACE_PROPERTIES EVENT_TRACE_PROPERTIES
EXTERN_C ULONG WMIAPI StartTraceA(OUT PTRACEHANDLE TraceHandle, IN LPCSTR InstanceName, IN OUT PEVENT_TRACE_PROPERTIES Properties)
EXTERN_C ULONG WMIAPI ControlTraceA(IN TRACEHANDLE TraceHandle, IN LPCSTR InstanceName OPTIONAL, IN OUT PEVENT_TRACE_PROPERTIES Properties, IN ULONG ControlCode)
Definition: evntrace.h:570
Referenced by START_TEST().
◆ test_trace_event_params()
Definition at line 1196 of file eventlog.c.
1197{
1199 static const GUID test_guid = {0x57696E65, 0x0000, 0x0000, {0x00,0x00, 0x00,0x00,0x00,0x00,0x00,0x01}};
1200
1201 REGHANDLE reg_handle;
1202 ULONG uret;
1203
1204 if (!pEventRegister)
1205 {
1207 return;
1208 }
1209
1212
1215
1218
1219 uret = pEventWriteString(0, 0, 0, emptyW);
1221
1222 uret = pEventWriteString(reg_handle, 0, 0, NULL);
1223 todo_wine ok(uret == ERROR_INVALID_PARAMETER, "EventWriteString gave wrong error: %#lx\n", uret);
1224
1225 uret = pEventUnregister(0);
1227
1228 uret = pEventUnregister(reg_handle);
1230}
Definition: shobjidl.idl:3021
Referenced by START_TEST().
◆ ULONG()
Variable Documentation
◆ DWORD
Definition at line 38 of file eventlog.c.
◆ eventlogfile
Definition at line 1111 of file eventlog.c.
Referenced by cleanup_eventlog(), and test_autocreation().
◆ eventlogname
Definition at line 695 of file eventlog.c.
Referenced by cleanup_eventlog(), create_new_eventlog(), test_autocreation(), and test_readwrite().
◆ eventlogsvc
Definition at line 694 of file eventlog.c.
Referenced by cleanup_eventlog(), create_new_eventlog(), and test_autocreation().
◆ eventsources
Definition at line 696 of file eventlog.c.
Referenced by cleanup_eventlog(), create_new_eventlog(), and test_autocreation().
◆ evt_cat
| WORD evt_cat |
Definition at line 754 of file eventlog.c.
Referenced by test_readwrite().
◆ evt_id
| DWORD evt_id |
Definition at line 755 of file eventlog.c.
Referenced by test_readwrite().
◆ evt_numstrings
| WORD evt_numstrings |
Definition at line 757 of file eventlog.c.
Referenced by test_readwrite().
◆ evt_sid
| BOOL evt_sid |
Definition at line 756 of file eventlog.c.
◆ evt_src
Definition at line 752 of file eventlog.c.
Referenced by test_readwrite().
◆ evt_strings
Definition at line 758 of file eventlog.c.
Referenced by test_readwrite().
◆ evt_type
| WORD evt_type |
Definition at line 753 of file eventlog.c.
Referenced by test_readwrite(), and UDFEjectReqWaiter().
◆ LPDWORD
Definition at line 38 of file eventlog.c.
◆ LPSTR
Definition at line 43 of file eventlog.c.
◆ LPVOID
Definition at line 38 of file eventlog.c.
◆ one_string
Definition at line 748 of file eventlog.c.
◆ PENABLECALLBACK
| PENABLECALLBACK |
Definition at line 39 of file eventlog.c.
◆ PSID
Definition at line 37 of file eventlog.c.
◆
| const struct { ... } read_write[] |
Initial value:
=
{
}
Referenced by _CrtIsValidPointer(), and test_readwrite().
◆ two_strings
Definition at line 749 of file eventlog.c.
Referenced by test_readwrite().
◆ UCHAR
Definition at line 41 of file eventlog.c.
◆ ULONGLONG
Definition at line 41 of file eventlog.c.
