mirror of
https://github.com/chromium/crashpad.git
synced 2025-03-13 08:59:47 +00:00
6a6a0c27ed
Adds a new client API which allows causing an exception in another process. This is accomplished by injecting a thread that calls RaiseException(). A special exception code is used that indicates to the handler that the exception arguments contain a thread id and exception code, which are in turn used to fabricate an exception record. This is so that the API can allow the client to "blame" a particular thread in the target process. The target process must also be a registered Crashpad client, as the normal exception mechanism is used to handle the exception. The injection of a thread is used instead of DebugBreakProcess() which does not cause the UnhandledExceptionFilter() to be executed. NtCreateThreadEx() is used in lieu of CreateRemoteThread() as it allows passing of a flag which avoids calling DllMain()s. This is necessary to allow thread creation to succeed even when the target process is deadlocked on the loader lock. BUG=crashpad:103 Change-Id: I797007bd2b1e3416afe3f37a6566c0cdb259b106 Reviewed-on: https://chromium-review.googlesource.com/339263 Reviewed-by: Mark Mentovai <mark@chromium.org>
97 lines
3.4 KiB
C++
97 lines
3.4 KiB
C++
// Copyright 2015 The Crashpad Authors. All rights reserved.
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
#include <windows.h>
|
|
#include <winternl.h>
|
|
|
|
#include "util/win/process_structs.h"
|
|
|
|
namespace crashpad {
|
|
|
|
NTSTATUS NtClose(HANDLE handle);
|
|
|
|
// http://processhacker.sourceforge.net/doc/ntpsapi_8h_source.html
|
|
#define THREAD_CREATE_FLAGS_SKIP_THREAD_ATTACH 0x00000002
|
|
NTSTATUS
|
|
NtCreateThreadEx(PHANDLE thread_handle,
|
|
ACCESS_MASK desired_access,
|
|
POBJECT_ATTRIBUTES object_attributes,
|
|
HANDLE process_handle,
|
|
PVOID start_routine,
|
|
PVOID argument,
|
|
ULONG create_flags,
|
|
SIZE_T zero_bits,
|
|
SIZE_T stack_size,
|
|
SIZE_T maximum_stack_size,
|
|
PVOID /*PPS_ATTRIBUTE_LIST*/ attribute_list);
|
|
|
|
// Copied from ntstatus.h because um/winnt.h conflicts with general inclusion of
|
|
// ntstatus.h.
|
|
#define STATUS_BUFFER_TOO_SMALL ((NTSTATUS)0xC0000023L)
|
|
#define STATUS_INFO_LENGTH_MISMATCH ((NTSTATUS)0xC0000004L)
|
|
|
|
// winternal.h defines THREADINFOCLASS, but not all members.
|
|
enum { ThreadBasicInformation = 0 };
|
|
|
|
// winternal.h defines SYSTEM_INFORMATION_CLASS, but not all members.
|
|
enum { SystemExtendedHandleInformation = 64 };
|
|
|
|
NTSTATUS NtQuerySystemInformation(
|
|
SYSTEM_INFORMATION_CLASS system_information_class,
|
|
PVOID system_information,
|
|
ULONG system_information_length,
|
|
PULONG return_length);
|
|
|
|
NTSTATUS NtQueryInformationThread(HANDLE thread_handle,
|
|
THREADINFOCLASS thread_information_class,
|
|
PVOID thread_information,
|
|
ULONG thread_information_length,
|
|
PULONG return_length);
|
|
|
|
template <class Traits>
|
|
NTSTATUS NtOpenThread(PHANDLE thread_handle,
|
|
ACCESS_MASK desired_access,
|
|
POBJECT_ATTRIBUTES object_attributes,
|
|
const process_types::CLIENT_ID<Traits>* client_id);
|
|
|
|
NTSTATUS NtQueryObject(HANDLE handle,
|
|
OBJECT_INFORMATION_CLASS object_information_class,
|
|
void* object_information,
|
|
ULONG object_information_length,
|
|
ULONG* return_length);
|
|
|
|
// From https://msdn.microsoft.com/en-us/library/bb432428(VS.85).aspx and
|
|
// http://processhacker.sourceforge.net/doc/struct___r_t_l___u_n_l_o_a_d___e_v_e_n_t___t_r_a_c_e.html
|
|
#define RTL_UNLOAD_EVENT_TRACE_NUMBER 64
|
|
|
|
template <class Traits>
|
|
struct RTL_UNLOAD_EVENT_TRACE {
|
|
typename Traits::Pointer BaseAddress;
|
|
typename Traits::UnsignedIntegral SizeOfImage;
|
|
ULONG Sequence;
|
|
ULONG TimeDateStamp;
|
|
ULONG CheckSum;
|
|
WCHAR ImageName[32];
|
|
ULONG Version0;
|
|
union {
|
|
ULONG Version1;
|
|
typename Traits::Pad alignment_for_x64;
|
|
};
|
|
};
|
|
|
|
template <class Traits>
|
|
RTL_UNLOAD_EVENT_TRACE<Traits>* RtlGetUnloadEventTrace();
|
|
|
|
} // namespace crashpad
|