| blob | 3b5b63b77e28c7bc26d7cface886a72c40e2980c |
7 <para>
9 </para>
10 <para>
12 </para>
14 <sect2>
17 <para>
18 Before going into the depths of debugging in Wine, here's
19 a small overview of process and thread handling in Wine.
20 It has to be clear that there are two different beasts:
21 processes/threads from the Unix point of view and
22 processes/threads from a Windows point of view.
23 </para>
24 <para>
25 Each Windows' thread is implemented as a Unix process (under
27 that all threads of a same Windows' process share the same
28 (unix) address space.
29 </para>
30 <para>
31 In the following:
32 </para>
33 <itemizedlist>
34 <listitem>
36 </listitem>
37 <listitem>
39 </listitem>
40 <listitem>
42 </listitem>
43 </itemizedlist>
44 <para>
51 </para>
52 <para>
53 Each Unix process can be identified by two values:
54 </para>
55 <itemizedlist>
56 <listitem>
58 </listitem>
59 <listitem>
61 </listitem>
62 </itemizedlist>
63 <para>
64 Each Windows' process has also a Windows' process id
67 different and shall not be used instead of the other.
68 </para>
69 <para>
71 defined (Windows) system wide. They must not be confused
72 with process or thread handles which, as any handle, is an
73 indirection to a system object (in this case process or
74 thread). A same process can have several different handles
75 on the same kernel object. The handles can be defined as
76 local (the values is only valid in a process), or system
77 wide (the same handle can be used by any
79 </para>
80 </sect2>
82 <sect2>
85 <para>
86 When talking of debugging in Wine, there are at least two
87 levels to think of:
88 </para>
89 <itemizedlist>
90 <listitem>
92 </listitem>
93 <listitem>
94 <para>the Wine integrated debugger, dubbed
96 </listitem>
97 </itemizedlist>
98 <para>
99 Wine implements most the the Windows' debugging API (the
100 part in KERNEL32, not the one in
102 (emulated or WineLib) using that API to debug a
104 </para>
105 <para>
107 use of this API to allow debugging both any Wine or WineLib
108 applications as well as Wine itself (kernel and all DLLs).
109 </para>
110 </sect2>
111 </sect1>
116 <sect2>
119 <para>
120 Any application (either a Windows' native executable, or a
121 WineLib application) can be run through
123 are the same as for wine:
124 </para>
125 <screen>
126 winedbg telnet.exe
127 winedbg "hl.exe -windowed"
128 </screen>
129 </sect2>
131 <sect2>
134 <para>
137 without any attached process. You can get a list of running
140 process</command> command, and then, with the
143 you want to debug. This is (for now) a neat feature for the
144 following reasons:
145 </para>
146 <itemizedlist>
147 <listitem>
149 </listitem>
150 </itemizedlist>
151 </sect2>
153 <sect2>
156 <para>
157 When something goes wrong, Windows tracks this as an
158 exception. Exceptions exist for segmentation violation,
159 stack overflow, division by zero...
160 </para>
161 <para>
163 debugged. If so, the exception event is sent to the
164 debugger, which takes care of it: end of the story. This
165 mechanism is part of the standard Windows' debugging API.
166 </para>
167 <para>
169 tries to launch a debugger. This debugger (normally
171 details), at startup, attaches to the
173 event. In this case, you are able to look at the causes of
174 the exception, and either fix the causes (and continue
175 further the execution) or dig deeper to understand what went
176 wrong.
177 </para>
178 <para>
181 are the two ways to let the process go further for the
182 handling of the exception event.
183 </para>
184 <para>
185 To be more precise on the way Wine (and Windows) generates
186 exception events, when a fault occurs (segmentation
187 violation, stack overflow...), the event is first sent to
188 the debugger (this is known as a first chance exception).
189 The debugger can give two answers:
190 </para>
192 <variablelist>
193 <varlistentry>
195 <listitem>
196 <para>
197 the debugger had the ability to correct what's
198 generated the exception, and is now able to continue
199 process execution.
200 </para>
201 </listitem>
202 </varlistentry>
203 <varlistentry>
205 <listitem>
206 <para>
207 the debugger couldn't correct the cause of the
208 first chance exception. Wine will now try to walk
209 the list of exception handlers to see if one of them
210 can handle the exception. If no exception handler is
211 found, the exception is sent once again to the
212 debugger to indicate the failure of the exception
213 handling.
214 </para>
215 </listitem>
216 </varlistentry>
217 </variablelist>
218 <note>
219 <para>
220 since some of Wine's code uses exceptions and
223 in such cases with segv exceptions. This happens, for
226 used, to let the handling of the exception to be done by
229 </para>
230 </note>
231 </sect2>
233 <sect2>
236 <para>
237 Unfortunately, Windows doesn't provide a detach kind of API,
238 meaning that once you started debugging a process, you must
239 do so until the process dies. Killing (or stopping/aborting)
240 the debugger will also kill the debugged process. This will
241 be true for any Windows' debugging API compliant debugger,
243 </para>
244 </sect2>
245 </sect1>
250 <sect2>
253 <para>
254 The Windows' debugging API uses a registry entry to know
255 with debugger to invoke when an unhandled exception
256 occurs (see II.3 for some details). Two values in key
257 </para>
258 <programlisting>
259 "MACHINE\\Software\\Microsoft\\Windows NT\\CurrentVersion\\AeDebug"
260 </programlisting>
261 <para>
262 Determine the behavior:
263 </para>
264 <variablelist>
265 <varlistentry>
267 <listitem>
268 <para>
269 this is the command line used to launch the debugger
272 information to the debugger). You should put here a
273 complete path to your debugger
275 any other Windows' debugging API aware debugger will
276 do).
277 </para>
278 </listitem>
279 </varlistentry>
280 <varlistentry>
282 <listitem>
283 <para>
284 if this value is zero, a message box will ask the
285 user if he/she wishes to launch the debugger when an
286 unhandled exception occurs. Otherwise, the debugger
287 is automatically started.
288 </para>
289 </listitem>
290 </varlistentry>
291 </variablelist>
293 <para>
294 A regular Wine registry looks like:
295 </para>
296 <programlisting>
297 [MACHINE\\Software\\Microsoft\\Windows NT\\CurrentVersion\\AeDebug] 957636538
300 </programlisting>
302 <note>
304 <para>
305 creating this key is mandatory. Not doing so will not
306 fire the debugger when an exception occurs.
307 </para>
308 </note>
309 <note>
311 <para>
313 However, due to some limitation of the registry installed,
314 if a previous Wine installation exists, it's safer to
315 remove the whole
316 </para>
317 <programlisting>
318 [MACHINE\\Software\\Microsoft\\Windows NT\\CurrentVersion\\AeDebug]
319 </programlisting>
320 <para>
322 regenerate this key.
323 </para>
324 </note>
325 </sect2>
327 <sect2>
330 <para>
332 of options. Those options are stored in the registry, on a
333 per user basis. The key is (in *my* registry)
334 </para>
335 <programlisting>
336 [eric\\Software\\Wine\\WineDbg]
337 </programlisting>
338 <para>
339 Those options can be read/written while inside
341 expressions. To refer to one of this option, its name must
343 </para>
344 <programlisting>
345 set $BreakAllThreadsStartup = 1
346 </programlisting>
347 <para>
350 </para>
351 <para>
352 All the options are read from the registry when
354 is found, a default value is used), and are written back to
356 all modifications to those options are automatically saved
358 </para>
359 <para>
360 Here's the list of all options:
361 </para>
363 <sect3>
366 <variablelist>
367 <varlistentry>
369 <listitem>
370 <para>
372 start-up the debugger stops set to
374 startup of a given process the debugger stops.
376 </para>
377 </listitem>
378 </varlistentry>
379 <varlistentry>
381 <listitem>
382 <para>
384 when a critical section times out (5 minutes);
386 </para>
387 </listitem>
388 </varlistentry>
389 <varlistentry>
391 <listitem>
392 <para>
395 process after an unhandled exception,
397 first attach event. Since the attach event is
398 meaningless in the context of an exception event
399 (the next event which is the exception event is of
400 course relevant), that option is likely to be
402 </para>
403 </listitem>
404 </varlistentry>
405 <varlistentry>
407 <listitem>
408 <para>
409 An exception can generate two debug events. The
410 first one is passed to the debugger (known as a
411 first chance) just after the exception. The debugger
412 can then decides either to resume execution (see
414 command) or pass the exception up to the exception
415 handler chain in the program (if it exists)
418 exception handlers takes care of the exception, the
419 exception event is sent again to the debugger (known
420 as last chance exception). You cannot pass on a last
421 exception. When the
424 both first and last chance execptions (to
426 chance exceptions).
427 </para>
428 </listitem>
429 </varlistentry>
430 </variablelist>
431 </sect3>
433 <sect3>
436 <variablelist>
437 <varlistentry>
439 <listitem>
440 <para>
441 Mask of active debugger output channels on console
442 </para>
443 </listitem>
444 </varlistentry>
445 <varlistentry>
447 <listitem>
448 <para>
450 </para>
451 </listitem>
452 </varlistentry>
453 <varlistentry>
455 <listitem>
456 <para>
460 the debugger uses the current Unix console for
461 input/output
462 </para>
463 </listitem>
464 </varlistentry>
465 </variablelist>
467 <para>
468 Those last 3 variables are jointly used in two generic ways:
469 </para>
471 <orderedlist>
472 <listitem>
474 <programlisting>
475 ConChannelMask = DBG_CHN_MESG (1)
476 StdChannelMask = 0
477 UseXTerm = 1
478 </programlisting>
479 <para>
480 In this case, all input/output goes into a specific
484 wine is run from).
485 </para>
486 </listitem>
487 <listitem>
488 <para>
489 to have all input/output go into the tty where Wine
490 was started from (to be used in a X11-free
491 environment)
492 </para>
493 <screen>
494 ConChannelMask = 0
495 StdChannelMask = DBG_CHN_MESG (1)
496 UseXTerm = 1
497 </screen>
498 </listitem>
499 </orderedlist>
500 <para>
501 Those variables also allow, for example for debugging
502 purposes, to use:
503 </para>
504 <screen>
505 ConChannelMask = 0xfff
506 StdChannelMask = 0xfff
507 UseXTerm = 1
508 </screen>
509 <para>
511 output to both tty Wine was started from, and
516 example >& shell redirect command), you'll get in that
517 file both outputs. It may be interesting to look in the
518 relay trace for specific values which the process segv'ed
519 on.
520 </para>
521 </sect3>
523 <sect3>
526 <variablelist>
527 <varlistentry>
529 <listitem>
531 examined by the debugger</para>
532 </listitem>
533 </varlistentry>
534 <varlistentry>
536 <listitem>
538 examined by the debugger</para>
539 </listitem>
540 </varlistentry>
541 <varlistentry>
543 <listitem>
545 </listitem>
546 </varlistentry>
547 </variablelist>
549 <para>
552 conditional breakpoints on a given thread or process.
553 </para>
554 </sect3>
555 </sect2>
556 </sect1>
561 <sect2>
564 <screen>
565 abort aborts the debugger
566 quit exits the debugger
568 attach N attach to a W-process (N is its ID). IDs can be
569 obtained thru walk process command
570 </screen>
571 <screen>
572 help prints some help on the commands
573 help info prints some help on info commands
574 </screen>
575 <screen>
578 </screen>
579 </sect2>
581 <sect2>
584 <screen>
585 cont continue execution until next breakpoint or exception.
586 pass pass the exception event up to the filter chain.
587 step continue execution until next C line of code (enters
588 function call)
589 next continue execution until next C line of code (doesn't
590 enter function call)
591 stepi execute next assembly instruction (enters function
592 call)
593 nexti execute next assembly instruction (doesn't enter
594 function call)
595 finish do nexti commands until current function is exited
596 </screen>
597 <para>
598 cont, step, next, stepi, nexti can be postfixed by a
599 number (N), meaning that the command must be executed N
600 times.
601 </para>
602 </sect2>
604 <sect2>
607 <screen>
608 enable N enables (break|watch)point #N
609 disable N disables (break|watch)point #N
610 delete N deletes (break|watch)point #N
611 cond N removes any a existing condition to (break|watch)point N
613 will be evaluated each time the breakpoint is hit. If
614 the result is a zero value, the breakpoint isn't
615 triggered
616 break * N adds a breakpoint at address N
619 break N adds a breakpoint at line N of current source file
620 break adds a breakpoint at current $pc address
621 watch * N adds a watch command (on write) at address N (on 4 bytes)
624 info break lists all (break|watch)points (with state)
625 </screen>
626 </sect2>
628 <sect2>
631 <screen>
632 bt print calling stack of current thread
633 up goes up one frame in current thread's stack
634 up N goes up N frames in current thread's stack
635 dn goes down one frame in current thread's stack
636 dn N goes down N frames in current thread's stack
637 frame N set N as the current frame
638 info local prints information on local variables for current
639 function
640 </screen>
641 </sect2>
643 <sect2>
646 <screen>
647 show dir
649 dir
651 </screen>
652 <screen>
653 list lists 10 source lines from current position
654 list - lists 10 source lines before current position
655 list N lists 10 source lines from line N in current file
658 list * N lists 10 source lines from address N
659 </screen>
660 <para>
661 You can specify the end target (to change the 10 lines
662 value) using the ','. For example:
663 </para>
664 <screen>
666 current file
668 </screen>
669 </sect2>
671 <sect2>
674 <para>
675 A display is an expression that's evaluated and printed
677 command.
678 </para>
679 <screen>
680 display lists the active displays
681 info display (same as above command)
685 print command for more on formats)
686 del display N deletes display #N
687 undisplay N (same as del display)
688 </screen>
689 </sect2>
691 <sect2>
694 <screen>
695 disas disassemble from current position
699 </screen>
700 </sect2>
702 <sect2>
705 <screen>
707 walk class lists all Windows' class registered in Wine
708 info share lists all the dynamic libraries loaded the debugged
709 program (including .so files, NE and PE DLLs)
710 info module N prints information on module of handle N
711 walk module lists all modules loaded by debugged program
712 info queue N prints information on Wine's queue N
713 walk queue lists all queues allocated in Wine
714 info regs prints the value of CPU register
715 info segment N prints information on segment N
716 info segment lists all allocated segments
717 info stack prints the values on top of the stack
718 info map lists all virtual mappings used by the debugged
719 program
720 info wnd N prints information of Window of handle N
721 walk wnd lists all the window hierarchy starting from the
722 desktop window
723 walk wnd N lists all the window hierarchy starting from the
724 window of handle N
725 walk process lists all w-processes in Wine session
726 walk thread lists all w-threads in Wine session
727 walk modref (no longer avail)
728 </screen>
729 </sect2>
731 <sect2>
734 <screen>
739 type)
742 </screen>
743 <para>
746 </para>
747 <screen>
748 s => an ASCII string
749 u => an Unicode UTF16 string
750 i => instructions (disassemble)
755 printed)
757 </screen>
758 </sect2>
759 </sect1>
764 <sect2>
767 <para>
768 You can also use other debuggers (like
770 items:
771 </para>
772 <para>
773 You need to attach the unix debugger to the correct unix
774 process (representing the correct windows thread) (you can
776 When running the emulator, usually the first two
778 running the desktop, the first thread of the application is
780 WineLib program, the first thread of the application is
782 </para>
783 <note>
784 <para>
786 notion of threads, it won't work with Wine because the
787 thread abstraction used for implementing Windows' thread
788 is not 100% mapped onto the linux posix threads
789 implementation. It means that you'll have to spawn a
791 thread you wish to debug.
792 </para>
793 </note>
794 </sect2>
796 <sect2>
799 <para>
800 You can use any Windows' debugging API compliant debugger
801 with Wine. Some reports have been made of success with
802 VisualStudio debugger (in remote mode, only the hub runs
803 in Wine). GoVest fully runs in Wine.
804 </para>
805 </sect2>
807 <sect2>
810 <!-- FIXME: convert this into a table -->
811 <screen>
812 +----------------------------------+---------------------------------+
813 | WineDbg | gdb |
814 +----------------------------------+---------------------------------+
815 |WineDbg debugs a Windows' process:|gdb debugs a Windows' thread: |
816 |+ the various threads will be |+ a separate gdb session is |
817 | handled by the same WineDbg | needed for each thread of |
818 | session | Windows' process |
819 |+ a breakpoint will be triggered |+ a breakpoint will be triggered |
820 | for any thread of the w-process | only for the w-thread debugged |
821 +----------------------------------+---------------------------------+
822 |WineDbg supports debug information|gdb supports debug information |
823 |from: |from: |
824 |+ stabs (standard Unix format) |+ stabs (standard Unix format) |
825 |+ Microsoft's C, CodeView, .DBG | |
826 +----------------------------------+---------------------------------+
827 </screen>
828 </sect2>
829 </sect1>
834 <para>
836 in 32 bit applications are).
837 </para>
839 </sect1>
840 </chapter>
842 <!-- Keep this comment at the end of the file
843 Local variables:
844 mode: sgml
845 sgml-parent-document:("wine-doc.sgml" "book" "part" "chapter" "")
846 End:
847 -->