Jump to content
MaxCheaters Official Group at Discord
--> Place your ad text here <--

Better Crash Report for General Protection Fault

eressea

By eressea
in Client Development Discussion

 Share

Recommended Posts

eressea Newbie

eressea

Posted
Posted

Hi, I've found a nice way to get better GPF crash reports from the client:

crashreport1.png.2b31a2d39653d6b7d6fc2e30d5f9970c.pngcrashreport2.png.401790f57b210237725a6a1b43b91b48.png

It's simple, there are just few things that must be done to get it working.

1. Create buffer for register and modules dump and function that fills it: 

wchar_t MyExceptionBuffer[0x1000];

LONG WINAPI MyUnhandledExceptionFilter(_In_ struct _EXCEPTION_POINTERS *ExceptionInfo)
{
	if (ExceptionInfo->ExceptionRecord->ExceptionCode == EXCEPTION_ACCESS_VIOLATION) {
		wsprintf(
			MyExceptionBuffer,
			L"EAX=0x%08X CS=0x%04X EIP=0x%08X EFLGS=0x%08X\r\n"
			L"EBX=0x%08X SS=0x%04X ESP=0x%08X EBP=0x%08X\r\n"
			L"ECX=0x%08X DS=0x%04X ESI=0x%08X FS=0x%04X\r\n"
			L"EDX=0x%08X ES=0x%04X EDI=0x%08X GS=0x%04X\r\n"
			L"\r\n"
			L"l2.exe:      0x%08X\r\n"
			L"core.dll:    0x%08X\r\n"
			L"engine.dll:  0x%08X\r\n"
			L"nwindow.dll: 0x%08X\r\n",
			ExceptionInfo->ContextRecord->Eax,
			ExceptionInfo->ContextRecord->SegCs,
			ExceptionInfo->ContextRecord->Eip,
			ExceptionInfo->ContextRecord->EFlags,
			ExceptionInfo->ContextRecord->Ebx,
			ExceptionInfo->ContextRecord->SegSs,
			ExceptionInfo->ContextRecord->Esp,
			ExceptionInfo->ContextRecord->Ebp,
			ExceptionInfo->ContextRecord->Ecx,
			ExceptionInfo->ContextRecord->SegDs,
			ExceptionInfo->ContextRecord->Esi,
			ExceptionInfo->ContextRecord->SegFs,
			ExceptionInfo->ContextRecord->Edx,
			ExceptionInfo->ContextRecord->SegEs,
			ExceptionInfo->ContextRecord->Edi,
			ExceptionInfo->ContextRecord->SegGs,
			GetModuleHandleA("l2.exe"),
			GetModuleHandleA("core.dll"),
			GetModuleHandleA("engine.dll"),
			GetModuleHandleA("nwindow.dll"));
	}
	return 0;
}

2. Call AddVectoredExceptionHandler: 

AddVectoredExceptionHandler(1, MyUnhandledExceptionFilter);

3. Don't forget to initialize the buffer 

MyExceptionBuffer[0] = 0;

4. Now if it crashes, MyExceptionBuffer will be filled with register dump - now we have to hack it so it will be shown. Create function that wraps appStrncat: 

wchar_t* appStrncatWrapper(wchar_t *destination, const wchar_t *source, int maxCount)
{
	if (std::wstring(L"MainLoop") != source || !MyExceptionBuffer[0]) {
		return wcsncat(destination, source, maxCount);
	}
	std::wstring data(source);
	data += L"\r\n\r\n";
	data += MyExceptionBuffer;
	return wcsncat(destination, data.c_str(), maxCount);
}

5. Hook our appStrncatWrapper function to the right place - this example is for interlude, for other clients you have to use IDA and find the same code: 

WriteInstructionCall(reinterpret_cast<UINT32>(GetModuleHandle(L"core.dll")) + 0x52287, reinterpret_cast<UINT32>(appStrncatWrapper));

Now when the client crashes with GPF error (access violation) and the code is called from MainLoop, you'll see nice crash info with details :)

Enjoy!

  • Like 3
  • Upvote 2
Link to comment
Share on other sites
  • 8 months later...
DimensionalGames Newbie

DimensionalGames

Posted
Posted
On 10/4/2017 at 6:37 PM, eressea said:

Hi, I've found a nice way to get better GPF crash reports from the client:

crashreport1.png.2b31a2d39653d6b7d6fc2e30d5f9970c.pngcrashreport2.png.401790f57b210237725a6a1b43b91b48.png

It's simple, there are just few things that must be done to get it working.

1. Create buffer for register and modules dump and function that fills it: 


wchar_t MyExceptionBuffer[0x1000];

LONG WINAPI MyUnhandledExceptionFilter(_In_ struct _EXCEPTION_POINTERS *ExceptionInfo)
{
	if (ExceptionInfo->ExceptionRecord->ExceptionCode == EXCEPTION_ACCESS_VIOLATION) {
		wsprintf(
			MyExceptionBuffer,
			L"EAX=0x%08X CS=0x%04X EIP=0x%08X EFLGS=0x%08X\r\n"
			L"EBX=0x%08X SS=0x%04X ESP=0x%08X EBP=0x%08X\r\n"
			L"ECX=0x%08X DS=0x%04X ESI=0x%08X FS=0x%04X\r\n"
			L"EDX=0x%08X ES=0x%04X EDI=0x%08X GS=0x%04X\r\n"
			L"\r\n"
			L"l2.exe:      0x%08X\r\n"
			L"core.dll:    0x%08X\r\n"
			L"engine.dll:  0x%08X\r\n"
			L"nwindow.dll: 0x%08X\r\n",
			ExceptionInfo->ContextRecord->Eax,
			ExceptionInfo->ContextRecord->SegCs,
			ExceptionInfo->ContextRecord->Eip,
			ExceptionInfo->ContextRecord->EFlags,
			ExceptionInfo->ContextRecord->Ebx,
			ExceptionInfo->ContextRecord->SegSs,
			ExceptionInfo->ContextRecord->Esp,
			ExceptionInfo->ContextRecord->Ebp,
			ExceptionInfo->ContextRecord->Ecx,
			ExceptionInfo->ContextRecord->SegDs,
			ExceptionInfo->ContextRecord->Esi,
			ExceptionInfo->ContextRecord->SegFs,
			ExceptionInfo->ContextRecord->Edx,
			ExceptionInfo->ContextRecord->SegEs,
			ExceptionInfo->ContextRecord->Edi,
			ExceptionInfo->ContextRecord->SegGs,
			GetModuleHandleA("l2.exe"),
			GetModuleHandleA("core.dll"),
			GetModuleHandleA("engine.dll"),
			GetModuleHandleA("nwindow.dll"));
	}
	return 0;
}

2. Call AddVectoredExceptionHandler: 


AddVectoredExceptionHandler(1, MyUnhandledExceptionFilter);

3. Don't forget to initialize the buffer 


MyExceptionBuffer[0] = 0;

4. Now if it crashes, MyExceptionBuffer will be filled with register dump - now we have to hack it so it will be shown. Create function that wraps appStrncat: 


wchar_t* appStrncatWrapper(wchar_t *destination, const wchar_t *source, int maxCount)
{
	if (std::wstring(L"MainLoop") != source || !MyExceptionBuffer[0]) {
		return wcsncat(destination, source, maxCount);
	}
	std::wstring data(source);
	data += L"\r\n\r\n";
	data += MyExceptionBuffer;
	return wcsncat(destination, data.c_str(), maxCount);
}

5. Hook our appStrncatWrapper function to the right place - this example is for interlude, for other clients you have to use IDA and find the same code: 


WriteInstructionCall(reinterpret_cast<UINT32>(GetModuleHandle(L"core.dll")) + 0x52287, reinterpret_cast<UINT32>(appStrncatWrapper));

Now when the client crashes with GPF error (access violation) and the code is called from MainLoop, you'll see nice crash info with details :)

Enjoy!

sorry for the dumb question, but in which file am i adding this and how?

Link to comment
Share on other sites
sepultribe Newbie

sepultribe

Posted
Posted
3 hours ago, DimensionalGames said:

sorry for the dumb question, but in which file am i adding this and how?

 

should be the l2.exe you would inject with this code.

 

great stuff OP, hadn't seen this one.

Link to comment
Share on other sites
eressea Newbie

eressea

Posted
  • Author
Posted
6 hours ago, DimensionalGames said:

yeah but how is it possible to do this?? ive never worked with client :/

 

Get Visual Studio (with support for Windows XP if you want to support players with this obsolete system), create new C++ Win32 project -> choose DLL. Implement those bits I've posted and build DLL. Then edit l2.exe to load this DLL.

Link to comment
Share on other sites
DimensionalGames Newbie

DimensionalGames

Posted
Posted
On 6/21/2018 at 8:21 AM, eressea said:

 

Get Visual Studio (with support for Windows XP if you want to support players with this obsolete system), create new C++ Win32 project -> choose DLL. Implement those bits I've posted and build DLL. Then edit l2.exe to load this DLL.

i know about the first, but how do i edit the l2.exe? btw thx for answering. This way i can add more too? also are there any dependencies for the dll (other dlls?)

Link to comment
Share on other sites
eressea Newbie

eressea

Posted
  • Author
Posted
6 hours ago, DimensionalGames said:

i know about the first, but how do i edit the l2.exe? btw thx for answering. This way i can add more too? also are there any dependencies for the dll (other dlls?)

 

There are tools like CFF Explorer etc, you just open l2.exe there and add an import to import table.

If you write your DLL, it's up to you what it will depend on. If it depends on other DLLs, it will automatically load them so you still need just to add your DLL to import table of l2.exe and system will do the rest for you.

Link to comment
Share on other sites
DimensionalGames Newbie

DimensionalGames

Posted
Posted
On 6/23/2018 at 10:36 AM, eressea said:

 

There are tools like CFF Explorer etc, you just open l2.exe there and add an import to import table.

If you write your DLL, it's up to you what it will depend on. If it depends on other DLLs, it will automatically load them so you still need just to add your DLL to import table of l2.exe and system will do the rest for you.

one last question :D is it possible to write the dll in C#?

Link to comment
Share on other sites
eressea Newbie

eressea

Posted
  • Author
Posted
8 hours ago, DimensionalGames said:

one last question :D is it possible to write the dll in C#?

 

Short answer: No.

Long answer: There's some chance it could be done (somehow) but it would be very very hard (and maybe you would still have to write some parts in assembly).

Link to comment
Share on other sites
DimensionalGames Newbie

DimensionalGames

Posted
Posted
On 6/25/2018 at 12:22 PM, eressea said:

 

Short answer: No.

Long answer: There's some chance it could be done (somehow) but it would be very very hard (and maybe you would still have to write some parts in assembly).

ah ok thx

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing


  • Posts

    • rookie23
      wts pack classic intelrude 166 protocol lucera files ratex30

      By rookie23 · Posted

      not trusted.
    • bomarket
      ⭐️BUYING CSGO SKINS⭐️INSTANT CRYPTO / BANK

      By bomarket · Posted

      Bump
    • ULTRASTORE
      Stop searching, all accounts are available with email acces

      By ULTRASTORE · Posted

      to my store : https://topestore.mysellix.io/fr/ 2015-2022 Aged Discord Account 2015 Discord Account : 50.99 $ 2016 Discord Account : 10$ 2017 Discord Account :3.99 $ 2018 Discord Account : 3.50$ 2019 Discord Account : 2.70 $ 2020 Discord Account :1.50$ 2021 Discord Account :0.99$ 2022 Discord Account :0.70$ Warranty :Lifetime Payment Methods : Crypto/ PayPal Contact Me On Discord Or Telegram Discord : @ultrasstore11 Telegram : https://t.me/ultrastore11 Whatsapp ; +212614849119  to my store : https://topestore.mysellix.io/fr/ 2015-2022 Aged Discord Account 2015 Discord Account : 50.99 $ 2016 Discord Account : 10$ 2017 Discord Account :3.99 $ 2018 Discord Account : 3.50$ 2019 Discord Account : 2.70 $ 2020 Discord Account :1.50$ 2021 Discord Account :0.99$ 2022 Discord Account :0.70$ Warranty :Lifetime Payment Methods : Crypto/ PayPal Contact Me On Discord Or Telegram Discord : @ultrasstore11 Telegram : https://t.me/ultrastore11 Whatsapp ; +212614849119
    • eyecarezone
      Facebook Reinstated Accounts And BMs | Unlimited Spending

      By eyecarezone · Posted

      2 Factor Authentication Code for 100% secure login. Account provided with full information (email, password, dob, gender, etc).
    • zerohero
      wts pack classic intelrude 166 protocol lucera files ratex30

      By zerohero · Posted

      ready server for sale, also available for testing with ready and beautiful npc zone pvp with custom 2 epic core orfen lvl2 with all maps ready all quests work at 100% ready comm  board with buffer teleport gm shop service anyone interested send me a pm many more that I forget  Exp/Sp : x30 (Premium: x40)    Adena : x7 (Premium: x10)   Drop : x7 (Premium: 10)   Spoil : x7 (Premium: 10)   Seal Stones : x7 (Premium: 10)   Raid Boss EXP/SP : x10   Raid Boss Drop : x3 (Premium: x5)   Epic Boss Drop : x1 Enchants   Safe Enchant : +3   Max Enchant : +16   Normal Scroll of Enchant Chance : 55%   Blessed Scroll of Enchant Chance : 60% Game Features   GMShop (Max. B-Grade)   Mana Potions (1000 MP, 10 sec Cooldown)   NPC Buffer (Include all buffs, 2h duration)   Auto-learn skills (Except Divine Inspiration)   Global Gatekeeper   Skill Escape: 15 seconds or /unstuck   1st Class Transfer (Free)   2nd Class Transfer (Free)   3rd Class Transfer (700 halisha mark)   Subclass (Items required from Cabrio / Hallate / Kernon / Golkonda + Top B Weapon + 984 Cry B)   Subclass 5 Subclasses + Main (Previous subclasses to level 75 to add new one)   Noblesse (Full Retail Quest)   Buff Slots: 24 (28 with Divine Inspiration LVL 4)   Skill Sweeper Festival added (Scavenger level 36)   Skill Block Buff added   Maximum delevel to keep Skills: 10 Levels   Shift + Click to see Droplist   Global Shout & Trade Chat   Retail Geodata and Pathnodes   Seven Signs Retail   Merchant and Blacksmith of Mammon at towns   Dimensional Rift (Min. 3 people in party to enter - Instance)   Tyrannosaurus drop Top LS with fixed 50% chance   Fast Augmentation System (Using Life Stones from Inventory)   Chance of getting skills (Normal 1%, Mid 3%, High 5%, Top 10%)   Wedding System with 30 seconds teleport to husband/wife Olympiad & Siege   Olympiad circle 14 days. (Maximum Enchant +6)   Olympiads time 18:00 - 00:00 (GMT +3)   Non-class 5 minimum participants to begin   Class based disabled   Siege every week.   To gain the reward you need to keep the Castle 2 times. Clans, Alliances & Limits   Max Clients/PC: 2   Max Clan Members: 36   Alliances allowed (Max 1 Clans)   24H Clan Penalties   Alliance penalty reset at daily restart (3-5 AM)   To bid for a Clan Hall required Clan Level 6 Quests x3   Alliance with the Ketra Orcs   Alliance with the Varka Silenos   War with Ketra Orcs   War with the Varka Silenos   The Finest Food   A Powerful Primeval Creature   Legacy of Insolence   Exploration of Giants Cave Part 1   Exploration of Giants Cave Part 2   Seekers of the Holy Grail   Guardians of the Holy Grail   Hunt of the Golden Ram Mercenary Force   The Zero Hour   Delicious Top Choice Meat   Heart in Search of Power   Rise and Fall of the Elroki Tribe   Yoke of the Past     Renegade Boss (Monday to Friday 20:00)   All Raid Boss 18+1 hours random respawn   Core (Jewel +1 STR +1 DEX) Monday, Wednesday and Friday 20:00 - 21:00 (Maximum level allowed to enter Cruma Tower: 80)   Orfen (Jewel +1 INT +1 WIT) Monday to Friday, 20:00 - 21:00 (Maximum level allowed to enter Sea of Spores: 80)   Ant Queen Monday and Friday 21:00 - 22:00 (Maximum level allowed to enter Ant Nest: 80)   Zaken Monday,Wednesday,Friday 22:00 - 23:00 (Maximum level allowed to enter Devil's Isle: 80)   Frintezza Tuesday, Thursday and Sunday 22:00 – 23:00 (Need CC of 4 party and 7 people in each party min to join the lair, max is 8 party of 9 people each)   Baium (lvl80) Saturday 22:00 – 23:00   Antharas Every 2 Saturdays 22:00 - 23:00 Every 2 Sundays (alternating with Valakas) 22:00 – 23:00   Valakas Every 2 Saturdays 22:00 - 23:00 Every 2 Sundays (alternating with Antharas) 22:00 – 23:00   Subclass Raids (Cabrio, Kernon, Hallate, Golkonda) 18hours + 1 random   Noblesse Raid (Barakiel) 6 hours + 15min random   Varka’s Hero Shadith 8 hours + 30 mins random (4th lvl of alliance with Ketra)   Ketra’s Hero Hekaton 8 hours + 30 mins random (4th lvl of alliance with Varka)   Varka’s Commander Mos 8 hours + 30 mins random (5th lvl of alliance with Ketra)   Ketra’s Commander Tayr 8 hours + 30 mins random (5th lvl of alliance with Varka)

  • Topics

×
×
  • Create New...

AdBlock Extension Detected!

Our website is made possible by displaying online advertisements to our members.

Please disable AdBlock browser extension first, to be able to use our community.

I've Disabled AdBlock