C# 中的 SymLoadModule64 和 GetCurrentProcess

发布于 2024-12-11 21:51:40 字数 1424 浏览 0 评论 0原文

我想使用 dbghelp 库从 pdb 文件中获取一些类型和程序信息。现在，因为我比 C++ 更喜欢 C#，所以我目前正在尝试让它在 C# 中运行。我目前陷入对 SymLoadModule64 的调用。我在 C++ 中有一个工作调用，如下所示：

const TCHAR* pModName = argv[1]; 
HANDLE currentProcHandle = GetCurrentProcess();

DWORD64 ModBase = ::SymLoadModule64 ( 
            currentProcHandle,
            NULL,
            pModName,
            NULL,
            0, 
            0);

但是，当尝试以某种方式从 C# 调用该调用时，我不断收到错误：

    [DllImport("dbghelp.dll", SetLastError = true)]
    public static extern ulong SymLoadModule64(IntPtr hProcess, IntPtr hFile,
    string ImageName, string ModuleName,
    ulong BaseOfDll, uint SizeOfDll);

[...]

            var loadedModule = SymLoadModule64(
                currentProcHandle,
                System.IntPtr.Zero,
                "C:\\Path\\To\\Executable.exe",
                string.Empty,
                0,
                0);

导致 loadModule 设置为 0 且 Marshal.GetLastWin32Error() 返回 6 (ERROR_INVALID_HANDLE)。现在，我认为这似乎是句柄的问题，我可以使用本机函数来检索它（以避免由于 c# 句柄检索内容与 c++ 期望的内容不兼容而导致的任何陷阱）。然而，虽然托管

Process.GetCurrentProcess().Handle;

总是返回一些或多或少有意义的东西（1008、1036，...），但调用

[DllImport("kernel32.dll")]
static extern IntPtr GetCurrentProcess();
GetCurrentProcess();

总是返回-1。

所以：由于我很欣赏关于“主要”问题的任何想法（如何让 SymLoadModule64() 从 C# 工作），我当然也很想知道为什么调用 GetCurrentProcess() 失败。提前致谢。

原文

I want to use the dbghelp library to get some type and program information from a pdb file. Now, because I like C# much more than C++, I'm currently trying to get it working from within C#. I'm currently stuck at a call to SymLoadModule64. I've got a working call in C++, looking like this:

const TCHAR* pModName = argv[1]; 
HANDLE currentProcHandle = GetCurrentProcess();

DWORD64 ModBase = ::SymLoadModule64 ( 
            currentProcHandle,
            NULL,
            pModName,
            NULL,
            0, 
            0);

However, when trying to somehow call that from C#, I keep getting errors:

    [DllImport("dbghelp.dll", SetLastError = true)]
    public static extern ulong SymLoadModule64(IntPtr hProcess, IntPtr hFile,
    string ImageName, string ModuleName,
    ulong BaseOfDll, uint SizeOfDll);

[...]

            var loadedModule = SymLoadModule64(
                currentProcHandle,
                System.IntPtr.Zero,
                "C:\\Path\\To\\Executable.exe",
                string.Empty,
                0,
                0);

results in loadedModule being set to 0 and Marshal.GetLastWin32Error() returning 6 (ERROR_INVALID_HANDLE). Now, I thought that as it seems to be a problem with the handle, I could just use the native function for retrieving it (to avoid any pitfalls due to incompatibilities from c# handle retrieving stuff to what c++ expects etc.). However, while the managed

Process.GetCurrentProcess().Handle;

always returns something more or less meaningful (1008, 1036, ...), a call to

[DllImport("kernel32.dll")]
static extern IntPtr GetCurrentProcess();
GetCurrentProcess();

always returns -1.

So: As I'd appreciate any ideas on the "major" question (how can I get the SymLoadModule64() working from C#), I'd of course really like to know as well why the call to the GetCurrentProcess() fails. Thanks in advance.

分享到QQ

分享到微博