Debug Dump file

dump file is a snapshot of the processs memeory. to debug it, we need use its corresponding executive to help restore the scenario
pdb and source file are also needed to help analyze it.ios

create dump filewindows

// header file, to generate a dll that will cause crash
#pragma once #ifndef _DLL_TUTORIAL_H_ #define _DLL_TUTORIAL_H_ #include <iostream>

#if defined DLL_EXPORT
#define DECLDIR __declspec(dllexport)
#define DECLDIR __declspec(dllimport)

extern "C" { DECLDIR int crash(int a, int b); DECLDIR void Function(void); } #endif

// source file

#define DLL_EXPORT #include <iostream> #include "Header.h"

void func2(int a) { int * p = NULL; *p = a; } void func1(int a) { func2(a); } extern "C" { DECLDIR int crash(int a, int b) { int b1 = a * b; func1(b1); return 1; } DECLDIR void Function(void) { std::cout << "DLL Called!" << std::endl; } }
// header file. call functions from above dll and create dump file
#pragma once #ifndef _DLL_TUTORIAL_H_ #define _DLL_TUTORIAL_H_ #include <iostream>

#if defined DLL_EXPORT
#define DECLDIR __declspec(dllexport)
#define DECLDIR __declspec(dllimport)

extern "C" { DECLDIR int crash(int a, int b); DECLDIR void Function(void); } #endif

// source file
#include"Header.h" #include <Windows.h> #include <DbgHelp.h>

#pragma comment(lib, "DbgHelp.lib")
#pragma comment(lib,"dlls.lib")

void call_func(int d) { int a = 7; crash(a, d); } LONG WINAPI MyUnhandledExceptionFilter(_In_ struct _EXCEPTION_POINTERS *ExceptionInfo); void MyDumpGenerate(); void MyDumpGenerate() { SetUnhandledExceptionFilter(MyUnhandledExceptionFilter); } LONG WINAPI MyUnhandledExceptionFilter(_In_ struct _EXCEPTION_POINTERS *ExceptionInfo) { MessageBox(0, "DumpGenerate", 0, 0); HANDLE lhDumpFile = CreateFile("C:\\data\\test.dmp", GENERIC_WRITE, 0, NULL, CREATE_ALWAYS, FILE_ATTRIBUTE_NORMAL, NULL); MINIDUMP_EXCEPTION_INFORMATION loExceptionInfo; loExceptionInfo.ExceptionPointers = ExceptionInfo; loExceptionInfo.ThreadId = GetCurrentThreadId(); loExceptionInfo.ClientPointers = TRUE; MiniDumpWriteDump(GetCurrentProcess(), GetCurrentProcessId(), lhDumpFile, MiniDumpNormal, &loExceptionInfo, NULL, NULL); CloseHandle(lhDumpFile); return EXCEPTION_EXECUTE_HANDLER; } int main() { MyDumpGenerate(); int a = 6; call_func(a); return 1; } // run this binary from command line to create dump file

Debug dump filevisual-studio

Visual Studio
Set symbol path :
Crash dump analysis using the Windows debuggers (WinDbg) :


windbg commands
.help show all internal commands
!help show all external commands
.hh open chm file
sympath //search path
symfix //fixed symbol path
reload /i xx.dll ignore versrion
