delve/proc/syscall_windows.go

//go:generate go run $GOROOT/src/syscall/mksyscall_windows.go -output zsyscall_windows.go syscall_windows.go

package proc

import (
	"syscall"
)

type _NTSTATUS int32

type _CLIENT_ID struct {
	UniqueProcess syscall.Handle
	UniqueThread  syscall.Handle
}

type _THREAD_BASIC_INFORMATION struct {
	ExitStatus     _NTSTATUS
	TebBaseAddress uintptr
	ClientId       _CLIENT_ID
	AffinityMask   uintptr
	Priority       int32
	BasePriority   int32
}

type _CREATE_PROCESS_DEBUG_INFO struct {
	File                syscall.Handle
	Process             syscall.Handle
	Thread              syscall.Handle
	BaseOfImage         uintptr
	DebugInfoFileOffset uint32
	DebugInfoSize       uint32
	ThreadLocalBase     uintptr
	StartAddress        uintptr
	ImageName           uintptr
	Unicode             uint16
}

type _CREATE_THREAD_DEBUG_INFO struct {
	Thread          syscall.Handle
	ThreadLocalBase uintptr
	StartAddress    uintptr
}

type _EXIT_PROCESS_DEBUG_INFO struct {
	ExitCode uint32
}

type _LOAD_DLL_DEBUG_INFO struct {
	File                syscall.Handle
	BaseOfDll           uintptr
	DebugInfoFileOffset uint32
	DebugInfoSize       uint32
	ImageName           uintptr
	Unicode             uint16
}

const (
	_ThreadBasicInformation = 0

	_DBG_CONTINUE              = 0x00010002
	_DBG_EXCEPTION_NOT_HANDLED = 0x80010001

	_EXCEPTION_DEBUG_EVENT      = 1
	_CREATE_THREAD_DEBUG_EVENT  = 2
	_CREATE_PROCESS_DEBUG_EVENT = 3
	_EXIT_THREAD_DEBUG_EVENT    = 4
	_EXIT_PROCESS_DEBUG_EVENT   = 5
	_LOAD_DLL_DEBUG_EVENT       = 6
	_UNLOAD_DLL_DEBUG_EVENT     = 7
	_OUTPUT_DEBUG_STRING_EVENT  = 8
	_RIP_EVENT                  = 9
)

func _NT_SUCCESS(x _NTSTATUS) bool {
	return x >= 0
}

//sys	_NtQueryInformationThread(threadHandle syscall.Handle, infoclass int32, info uintptr, infolen uint32, retlen *uint32) (status _NTSTATUS) = ntdll.NtQueryInformationThread
//sys	_GetThreadContext(thread syscall.Handle, context *_CONTEXT) (err error) = kernel32.GetThreadContext
//sys	_SetThreadContext(thread syscall.Handle, context *_CONTEXT) (err error) = kernel32.SetThreadContext
//sys	_SuspendThread(threadid syscall.Handle) (prevsuspcount uint32, err error) [failretval==0xffffffff] = kernel32.SuspendThread
//sys	_ResumeThread(threadid syscall.Handle) (prevsuspcount uint32, err error) [failretval==0xffffffff] = kernel32.ResumeThread
//sys	_ContinueDebugEvent(processid uint32, threadid uint32, continuestatus uint32) (err error) = kernel32.ContinueDebugEvent
//sys	_WriteProcessMemory(process syscall.Handle, baseaddr uintptr, buffer *byte, size uintptr, byteswritten *uintptr) (err error) = kernel32.WriteProcessMemory
//sys	_ReadProcessMemory(process syscall.Handle, baseaddr uintptr, buffer *byte, size uintptr, bytesread *uintptr) (err error) = kernel32.ReadProcessMemory
//sys	_DebugBreakProcess(process syscall.Handle) (err error) = kernel32.DebugBreakProcess
//sys	_WaitForDebugEvent(debugevent *_DEBUG_EVENT, milliseconds uint32) (err error) = kernel32.WaitForDebugEvent
[proc] use syscall package to call NtQueryInformationThread I was hoping this will fix the issue below. But there is more code that break new cgo rules. Fixes #409 (partial) 2016-02-09 06:24:14 +00:00			`//go:generate go run $GOROOT/src/syscall/mksyscall_windows.go -output zsyscall_windows.go syscall_windows.go`

			`package proc`

			`import (`
			`"syscall"`
			`)`

			`type _NTSTATUS int32`

			`type _CLIENT_ID struct {`
			`UniqueProcess syscall.Handle`
			`UniqueThread syscall.Handle`
			`}`

			`type _THREAD_BASIC_INFORMATION struct {`
			`ExitStatus _NTSTATUS`
			`TebBaseAddress uintptr`
			`ClientId _CLIENT_ID`
			`AffinityMask uintptr`
			`Priority int32`
			`BasePriority int32`
			`}`

proc: replace cgo with syscalls on windows Unrelated to conversion, I have also changed (*Thread).readMemory to return only first count bytes of memory just as advised by ReadProcessMemory. Fixes #409 Fixes #412 Fixes #416 2016-02-17 10:23:17 +00:00			`type _CREATE_PROCESS_DEBUG_INFO struct {`
			`File syscall.Handle`
			`Process syscall.Handle`
			`Thread syscall.Handle`
			`BaseOfImage uintptr`
			`DebugInfoFileOffset uint32`
			`DebugInfoSize uint32`
			`ThreadLocalBase uintptr`
			`StartAddress uintptr`
			`ImageName uintptr`
			`Unicode uint16`
			`}`

			`type _CREATE_THREAD_DEBUG_INFO struct {`
			`Thread syscall.Handle`
			`ThreadLocalBase uintptr`
			`StartAddress uintptr`
			`}`

			`type _EXIT_PROCESS_DEBUG_INFO struct {`
			`ExitCode uint32`
			`}`

			`type _LOAD_DLL_DEBUG_INFO struct {`
			`File syscall.Handle`
			`BaseOfDll uintptr`
			`DebugInfoFileOffset uint32`
			`DebugInfoSize uint32`
			`ImageName uintptr`
			`Unicode uint16`
			`}`

[proc] use syscall package to call NtQueryInformationThread I was hoping this will fix the issue below. But there is more code that break new cgo rules. Fixes #409 (partial) 2016-02-09 06:24:14 +00:00			`const (`
[proc] do not export ThreadBasicInformation 2016-02-10 04:35:34 +00:00			`_ThreadBasicInformation = 0`
proc: replace cgo with syscalls on windows Unrelated to conversion, I have also changed (*Thread).readMemory to return only first count bytes of memory just as advised by ReadProcessMemory. Fixes #409 Fixes #412 Fixes #416 2016-02-17 10:23:17 +00:00
			`_DBG_CONTINUE = 0x00010002`
			`_DBG_EXCEPTION_NOT_HANDLED = 0x80010001`

			`_EXCEPTION_DEBUG_EVENT = 1`
			`_CREATE_THREAD_DEBUG_EVENT = 2`
			`_CREATE_PROCESS_DEBUG_EVENT = 3`
			`_EXIT_THREAD_DEBUG_EVENT = 4`
			`_EXIT_PROCESS_DEBUG_EVENT = 5`
			`_LOAD_DLL_DEBUG_EVENT = 6`
			`_UNLOAD_DLL_DEBUG_EVENT = 7`
			`_OUTPUT_DEBUG_STRING_EVENT = 8`
			`_RIP_EVENT = 9`
[proc] use syscall package to call NtQueryInformationThread I was hoping this will fix the issue below. But there is more code that break new cgo rules. Fixes #409 (partial) 2016-02-09 06:24:14 +00:00			`)`

			`func _NT_SUCCESS(x _NTSTATUS) bool {`
			`return x >= 0`
			`}`

			`//sys _NtQueryInformationThread(threadHandle syscall.Handle, infoclass int32, info uintptr, infolen uint32, retlen *uint32) (status _NTSTATUS) = ntdll.NtQueryInformationThread`
proc: replace cgo with syscalls on windows Unrelated to conversion, I have also changed (*Thread).readMemory to return only first count bytes of memory just as advised by ReadProcessMemory. Fixes #409 Fixes #412 Fixes #416 2016-02-17 10:23:17 +00:00			`//sys _GetThreadContext(thread syscall.Handle, context *_CONTEXT) (err error) = kernel32.GetThreadContext`
			`//sys _SetThreadContext(thread syscall.Handle, context *_CONTEXT) (err error) = kernel32.SetThreadContext`
			`//sys _SuspendThread(threadid syscall.Handle) (prevsuspcount uint32, err error) [failretval==0xffffffff] = kernel32.SuspendThread`
			`//sys _ResumeThread(threadid syscall.Handle) (prevsuspcount uint32, err error) [failretval==0xffffffff] = kernel32.ResumeThread`
			`//sys _ContinueDebugEvent(processid uint32, threadid uint32, continuestatus uint32) (err error) = kernel32.ContinueDebugEvent`
			`//sys _WriteProcessMemory(process syscall.Handle, baseaddr uintptr, buffer byte, size uintptr, byteswritten uintptr) (err error) = kernel32.WriteProcessMemory`
			`//sys _ReadProcessMemory(process syscall.Handle, baseaddr uintptr, buffer byte, size uintptr, bytesread uintptr) (err error) = kernel32.ReadProcessMemory`
			`//sys _DebugBreakProcess(process syscall.Handle) (err error) = kernel32.DebugBreakProcess`
			`//sys _WaitForDebugEvent(debugevent *_DEBUG_EVENT, milliseconds uint32) (err error) = kernel32.WaitForDebugEvent`