Changeset 86244 in vbox

Timestamp:

Sep 23, 2020 3:35:16 PM (4 years ago)

Author:

vboxsync

Message:

Debugger/DBGCRemoteKd: Implement search memory request

File:

• trunk/src/VBox/Debugger/DBGCRemoteKd.cpp (modified) (8 diffs)

trunk/src/VBox/Debugger/DBGCRemoteKd.cpp

@@ -51 +51 @@
 /** NT status code - Success. */
 #define NTSTATUS_SUCCESS                            0
+/** NT status code - buffer overflow. */
+#define NTSTATUS_BUFFER_OVERFLOW                    UINT32_C(0x80000005)
 /** NT status code - operation unsuccesful. */
 #define NTSTATUS_UNSUCCESSFUL                       UINT32_C(0xc0000001)
 /** NT status code - operation not implemented. */
 #define NTSTATUS_NOT_IMPLEMENTED                    UINT32_C(0xc0000002)
+/** NT status code - Object not found. */
+#define NTSTATUS_NOT_FOUND                          UINT32_C(0xc0000225)
 
 /** Offset where the KD version block pointer is stored in the KPCR.
@@ -970 +974 @@
 
 /**
+ * Search memory payload.
+ */
+typedef struct KDPACKETMANIPULATE_SEARCHMEMORY
+{
+    /** The address to start searching at on input, found address on output. */
+    uint64_t                    u64GCPtr;
+    /** Number of bytes to search. */
+    uint64_t                    cbSearch;
+    /** Length of the pattern to search for following the payload. */
+    uint32_t                    cbPattern;
+    /** Padding to the required size. */
+    uint32_t                    au32Pad[5];
+} KDPACKETMANIPULATE_SEARCHMEMORY;
+AssertCompileSize(KDPACKETMANIPULATE_SEARCHMEMORY, 40);
+/** Pointer to a search memory properties payload. */
+typedef KDPACKETMANIPULATE_SEARCHMEMORY *PKDPACKETMANIPULATE_SEARCHMEMORY;
+/** Pointer to a const search memory properties payload. */
+typedef const KDPACKETMANIPULATE_SEARCHMEMORY *PCKDPACKETMANIPULATE_SEARCHMEMORY;
+
+
+/**
  * Manipulate request packet header (Same for 32bit and 64bit).
  */
@@ -1022 +1047 @@
         /** Query memory. */
         KDPACKETMANIPULATE_QUERYMEMORY     QueryMemory;
+        /** Search memory. */
+        KDPACKETMANIPULATE_SEARCHMEMORY    SearchMemory;
     } u;
 } KDPACKETMANIPULATE64;
@@ -1087 +1114 @@
 #define KD_PACKET_MANIPULATE_REQ_CAUSE_BUGCHECK             UINT32_C(0x00003149)
 /** @todo */
+/** Search memory for a pattern request. */
+#define KD_PACKET_MANIPULATE_REQ_SEARCH_MEMORY              UINT32_C(0x00003156)
+/** @todo */
 /** Clear all internal breakpoints request. */
 #define KD_PACKET_MANIPULATE_REQ_CLEAR_ALL_INTERNAL_BKPT    UINT32_C(0x0000315a)
@@ -1282 +1312 @@
         case KD_PACKET_MANIPULATE_REQ_QUERY_MEMORY:             return "QueryMemory";
         case KD_PACKET_MANIPULATE_REQ_CAUSE_BUGCHECK:           return "CauseBugCheck";
+        case KD_PACKET_MANIPULATE_REQ_SEARCH_MEMORY:            return "SearchMemory";
         default:                                                break;
     }
@@ -1417 +1448 @@
                 break;
             }
+            case KD_PACKET_MANIPULATE_REQ_SEARCH_MEMORY:
+            {
+                KDPACKETMANIPULATE_SEARCHMEMORY SearchMemory;
+                cbCopied = RTSgBufCopyToBuf(pSgBuf, &SearchMemory, sizeof(SearchMemory));
+                if (cbCopied == sizeof(SearchMemory))
+                {
+                    Log3(("        u64GCPtr:     %RX64\n"
+                          "        cbSearch:     %RX64\n"
+                          "        cbPattern:    %RX32\n",
+                          SearchMemory.u64GCPtr, SearchMemory.cbSearch, SearchMemory.cbPattern));
+                }
+                else
+                    Log3(("        Payload to small, expected %u, got %zu\n", sizeof(SearchMemory), cbCopied));
+                break;
+            }
             default:
                 break;
@@ -3282 +3328 @@
 
 /**
+ * Processes a search memory 64 request.
+ *
+ * @returns VBox status code.
+ * @param   pThis               The KD context.
+ * @param   pPktManip           The manipulate packet request.
+ */
+static int dbgcKdCtxPktManipulate64SearchMemory(PKDCTX pThis, PCKDPACKETMANIPULATE64 pPktManip)
+{
+    KDPACKETMANIPULATEHDR RespHdr;
+    KDPACKETMANIPULATE_SEARCHMEMORY SearchMemory;
+    RT_ZERO(RespHdr); RT_ZERO(SearchMemory);
+
+    RTSGSEG aRespSegs[2];
+    RespHdr.idReq       = KD_PACKET_MANIPULATE_REQ_SEARCH_MEMORY;
+    RespHdr.u16CpuLvl   = pPktManip->Hdr.u16CpuLvl;
+    RespHdr.idCpu       = pPktManip->Hdr.idCpu;
+    RespHdr.u32NtStatus = NTSTATUS_SUCCESS;
+
+    SearchMemory.u64GCPtr  = pPktManip->u.SearchMemory.u64GCPtr;
+    SearchMemory.cbSearch  = pPktManip->u.SearchMemory.cbSearch;
+    SearchMemory.cbPattern = pPktManip->u.SearchMemory.cbPattern;
+
+    /* Validate the pattern length and start searching. */
+    if (pPktManip->u.SearchMemory.cbPattern < sizeof(pThis->abBody) - sizeof(*pPktManip))
+    {
+        DBGFADDRESS StartAddress;
+        DBGFADDRESS HitAddress;
+        VMCPUID idCpu = pPktManip->Hdr.idCpu;
+        DBGFR3AddrFromFlat(pThis->Dbgc.pUVM, &StartAddress, pPktManip->u.SearchMemory.u64GCPtr);
+
+        /** @todo WindDbg sends CPU ID 32 sometimes, maybe that means continue search on last used CPU?. */
+        if (idCpu >= DBGFR3CpuGetCount(pThis->Dbgc.pUVM))
+            idCpu = pThis->Dbgc.idCpu;
+
+        int rc = DBGFR3MemScan(pThis->Dbgc.pUVM, idCpu, &StartAddress, pPktManip->u.SearchMemory.cbSearch, 1,
+                               &pThis->abBody[sizeof(*pPktManip)], pPktManip->u.SearchMemory.cbPattern, &HitAddress);
+        if (RT_SUCCESS(rc))
+            SearchMemory.u64GCPtr = HitAddress.FlatPtr;
+        else if (rc == VERR_DBGF_MEM_NOT_FOUND)
+            RespHdr.u32NtStatus = NTSTATUS_NOT_FOUND;
+        else
+            RespHdr.u32NtStatus = NTSTATUS_UNSUCCESSFUL;
+    }
+    else
+        RespHdr.u32NtStatus = NTSTATUS_BUFFER_OVERFLOW;
+
+    aRespSegs[0].pvSeg = &RespHdr;
+    aRespSegs[0].cbSeg = sizeof(RespHdr);
+    aRespSegs[1].pvSeg = &SearchMemory;
+    aRespSegs[1].cbSeg = sizeof(SearchMemory);
+
+    return dbgcKdCtxPktSendSg(pThis, KD_PACKET_HDR_SIGNATURE_DATA, KD_PACKET_HDR_SUB_TYPE_STATE_MANIPULATE,
+                              &aRespSegs[0], RT_ELEMENTS(aRespSegs), true /*fAck*/);
+}
+
+
+/**
  * Processes a cause bugcheck 64 request.
  *
@@ -3376 +3479 @@
         {
             rc = dbgcKdCtxPktManipulate64QueryMemory(pThis, pPktManip);
+            break;
+        }
+        case KD_PACKET_MANIPULATE_REQ_SEARCH_MEMORY:
+        {
+            rc = dbgcKdCtxPktManipulate64SearchMemory(pThis, pPktManip);
             break;
         }