win32/uwinapi/win95sys.h

*b1cdbd2cSJim Jagielski#pragma once
*b1cdbd2cSJim Jagielski// *************************************************************
*b1cdbd2cSJim Jagielski//
*b1cdbd2cSJim Jagielski//  Licensed to the Apache Software Foundation (ASF) under one
*b1cdbd2cSJim Jagielski//  or more contributor license agreements.  See the NOTICE file
*b1cdbd2cSJim Jagielski//  distributed with this work for additional information
*b1cdbd2cSJim Jagielski//  regarding copyright ownership.  The ASF licenses this file
*b1cdbd2cSJim Jagielski//  to you under the Apache License, Version 2.0 (the
*b1cdbd2cSJim Jagielski//  "License"); you may not use this file except in compliance
*b1cdbd2cSJim Jagielski//  with the License.  You may obtain a copy of the License at
*b1cdbd2cSJim Jagielski//
*b1cdbd2cSJim Jagielski//    http://www.apache.org/licenses/LICENSE-2.0
*b1cdbd2cSJim Jagielski//
*b1cdbd2cSJim Jagielski//  Unless required by applicable law or agreed to in writing,
*b1cdbd2cSJim Jagielski//  software distributed under the License is distributed on an
*b1cdbd2cSJim Jagielski//  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
*b1cdbd2cSJim Jagielski//  KIND, either express or implied.  See the License for the
*b1cdbd2cSJim Jagielski//  specific language governing permissions and limitations
*b1cdbd2cSJim Jagielski//  under the License.
*b1cdbd2cSJim Jagielski//
*b1cdbd2cSJim Jagielski// *************************************************************
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski//Kernel32 objects
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski#define K32OBJ_SEMAPHORE			0x1
*b1cdbd2cSJim Jagielski#define K32OBJ_EVENT				0x2
*b1cdbd2cSJim Jagielski#define K32OBJ_MUTEX				0x3
*b1cdbd2cSJim Jagielski#define K32OBJ_CRITICAL_SECTION     0x4
*b1cdbd2cSJim Jagielski#define K32OBJ_PROCESS				0x5
*b1cdbd2cSJim Jagielski#define K32OBJ_THREAD				0x6
*b1cdbd2cSJim Jagielski#define K32OBJ_FILE					0x7
*b1cdbd2cSJim Jagielski#define K32OBJ_CHANGE				0x8
*b1cdbd2cSJim Jagielski#define K32OBJ_CONSOLE				0x9
*b1cdbd2cSJim Jagielski#define K32OBJ_SCREEN_BUFFER	    0xA
*b1cdbd2cSJim Jagielski#define K32OBJ_MEM_MAPPED_FILE	    0xB
*b1cdbd2cSJim Jagielski#define K32OBJ_SERIAL				0xC
*b1cdbd2cSJim Jagielski#define K32OBJ_DEVICE_IOCTL			0xD
*b1cdbd2cSJim Jagielski#define K32OBJ_PIPE					0xE
*b1cdbd2cSJim Jagielski#define K32OBJ_MAILSLOT 			0xF
*b1cdbd2cSJim Jagielski#define K32OBJ_TOOLHELP_SNAPSHOT    0x10
*b1cdbd2cSJim Jagielski#define K32OBJ_SOCKET				0x11
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski//Process Database flags
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski#define fDebugSingle		0x00000001
*b1cdbd2cSJim Jagielski#define fCreateProcessEvent	0x00000002
*b1cdbd2cSJim Jagielski#define fExitProcessEvent	0x00000004
*b1cdbd2cSJim Jagielski#define fWin16Process		0x00000008
*b1cdbd2cSJim Jagielski#define fDosProcess			0x00000010
*b1cdbd2cSJim Jagielski#define fConsoleProcess 	0x00000020
*b1cdbd2cSJim Jagielski#define fFileApisAreOem 	0x00000040
*b1cdbd2cSJim Jagielski#define fNukeProcess		0x00000080
*b1cdbd2cSJim Jagielski#define fServiceProcess 	0x00000100
*b1cdbd2cSJim Jagielski#define fLoginScriptHack	0x00000800
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski//Thread Database flags
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski#define fCreateThreadEvent		0x00000001
*b1cdbd2cSJim Jagielski#define fCancelExceptionAbort	0x00000002
*b1cdbd2cSJim Jagielski#define fOnTempStack			0x00000004
*b1cdbd2cSJim Jagielski#define fGrowableStack			0x00000008
*b1cdbd2cSJim Jagielski#define fDelaySingleStep		0x00000010
*b1cdbd2cSJim Jagielski#define fOpenExeAsImmovableFile 0x00000020
*b1cdbd2cSJim Jagielski#define fCreateSuspended		0x00000040
*b1cdbd2cSJim Jagielski#define fStackOverflow			0x00000080
*b1cdbd2cSJim Jagielski#define fNestedCleanAPCs		0x00000100
*b1cdbd2cSJim Jagielski#define fWasOemNowAnsi			0x00000200
*b1cdbd2cSJim Jagielski#define fOKToSetThreadOem		0x00000400
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski#ifdef _MSC_VER
*b1cdbd2cSJim Jagielski#pragma warning(disable:4103)
*b1cdbd2cSJim Jagielski#endif
*b1cdbd2cSJim Jagielski#pragma pack(1)
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski//MODREF and IMTE structures
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielskitypedef struct _MODREF {
*b1cdbd2cSJim Jagielski    struct _MODREF *pNextModRef;    // 00h
*b1cdbd2cSJim Jagielski    DWORD	    un1;	    // 04h
*b1cdbd2cSJim Jagielski    DWORD	    un2;	    // 08h
*b1cdbd2cSJim Jagielski    DWORD	    un3;	    // 0Ch
*b1cdbd2cSJim Jagielski    WORD	    mteIndex;	// 10h
*b1cdbd2cSJim Jagielski    WORD	    un4;	    // 12h
*b1cdbd2cSJim Jagielski    DWORD	    un5;	    // 14h
*b1cdbd2cSJim Jagielski    PVOID	    ppdb;	    // 18h Pointer to process database
*b1cdbd2cSJim Jagielski    DWORD	    un6;	    // 1Ch
*b1cdbd2cSJim Jagielski    DWORD	    un7;	    // 20h
*b1cdbd2cSJim Jagielski    DWORD	    un8;	    // 24h
*b1cdbd2cSJim Jagielski} MODREF, *PMODREF;
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielskitypedef struct _IMTE {
*b1cdbd2cSJim Jagielski    DWORD	    un1;			// 00h
*b1cdbd2cSJim Jagielski    PIMAGE_NT_HEADERS	pNTHdr; // 04h
*b1cdbd2cSJim Jagielski    DWORD	    un2;			// 08h
*b1cdbd2cSJim Jagielski    PSTR	    pszFileName;    // 0Ch
*b1cdbd2cSJim Jagielski    PSTR	    pszModName;     // 10h
*b1cdbd2cSJim Jagielski    WORD	    cbFileName;     // 14h
*b1cdbd2cSJim Jagielski    WORD	    cbModName;	    // 16h
*b1cdbd2cSJim Jagielski    DWORD	    un3;			// 18h
*b1cdbd2cSJim Jagielski    DWORD	    cSections;	    // 1Ch
*b1cdbd2cSJim Jagielski    DWORD	    un5;			// 20h
*b1cdbd2cSJim Jagielski    DWORD	    baseAddress;    // 24h
*b1cdbd2cSJim Jagielski    WORD	    hModule16;	    // 28h
*b1cdbd2cSJim Jagielski    WORD	    cUsage;			// 2Ah
*b1cdbd2cSJim Jagielski    DWORD	    un7;			// 2Ch
*b1cdbd2cSJim Jagielski    PSTR	    pszFileName2;   // 30h
*b1cdbd2cSJim Jagielski    WORD	    cbFileName2;    // 34h
*b1cdbd2cSJim Jagielski    DWORD	    pszModName2;    // 36h
*b1cdbd2cSJim Jagielski    WORD	    cbModName2;     // 3Ah
*b1cdbd2cSJim Jagielski} IMTE, *PIMTE;
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski//Process Database structure
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielskitypedef struct _ENVIRONMENT_DATABASE {
*b1cdbd2cSJim JagielskiPSTR	pszEnvironment;     // 00h Pointer to Environment
*b1cdbd2cSJim JagielskiDWORD	un1;				// 04h
*b1cdbd2cSJim JagielskiPSTR	pszCmdLine;			// 08h Pointer to command line
*b1cdbd2cSJim JagielskiPSTR	pszCurrDirectory;   // 0Ch Pointer to current directory
*b1cdbd2cSJim JagielskiLPSTARTUPINFOA pStartupInfo;// 10h Pointer to STARTUPINFOA struct
*b1cdbd2cSJim JagielskiHANDLE	hStdIn; 			// 14h Standard Input
*b1cdbd2cSJim JagielskiHANDLE	hStdOut;			// 18h Standard Output
*b1cdbd2cSJim JagielskiHANDLE	hStdErr;			// 1Ch Standard Error
*b1cdbd2cSJim JagielskiDWORD	un2;				// 20h
*b1cdbd2cSJim JagielskiDWORD	InheritConsole;     // 24h
*b1cdbd2cSJim JagielskiDWORD	BreakType;			// 28h
*b1cdbd2cSJim JagielskiDWORD	BreakSem;			// 2Ch
*b1cdbd2cSJim JagielskiDWORD	BreakEvent;			// 30h
*b1cdbd2cSJim JagielskiDWORD	BreakThreadID;	    // 34h
*b1cdbd2cSJim JagielskiDWORD	BreakHandlers;	    // 38h
*b1cdbd2cSJim Jagielski} ENVIRONMENT_DATABASE, *PENVIRONMENT_DATABASE;
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielskitypedef struct _KERNEL_OBJECT {
*b1cdbd2cSJim JagielskiDWORD	Type;		    // 00h KERNEL32 object type (5)
*b1cdbd2cSJim JagielskiDWORD	cReference;	    // 04h Number of references to process
*b1cdbd2cSJim Jagielski} KERNEL_OBJECT, *PKERNEL_OBJECT;
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielskitypedef struct _HANDLE_TABLE_ENTRY {
*b1cdbd2cSJim Jagielski    DWORD   flags;		// Valid flags depend on what type of object this is
*b1cdbd2cSJim Jagielski    PKERNEL_OBJECT   pObject;	// Pointer to the object that the handle refers to
*b1cdbd2cSJim Jagielski} HANDLE_TABLE_ENTRY, *PHANDLE_TABLE_ENTRY;
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielskitypedef struct _HANDLE_TABLE {
*b1cdbd2cSJim Jagielski    DWORD   cEntries;				// Max number of handles in table
*b1cdbd2cSJim Jagielski    HANDLE_TABLE_ENTRY array[1];    // An array (number is given by cEntries)
*b1cdbd2cSJim Jagielski} HANDLE_TABLE, *PHANDLE_TABLE;
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielskitypedef struct _PROCESS_DATABASE {
*b1cdbd2cSJim JagielskiDWORD	Type;		    // 00h KERNEL32 object type (5)
*b1cdbd2cSJim JagielskiDWORD	cReference;	    // 04h Number of references to process
*b1cdbd2cSJim JagielskiDWORD	un1;		    // 08h
*b1cdbd2cSJim JagielskiDWORD	someEvent;	    // 0Ch An event object (What's it used for???)
*b1cdbd2cSJim JagielskiDWORD	TerminationStatus;  // 10h Returned by GetExitCodeProcess
*b1cdbd2cSJim JagielskiDWORD	un2;		    // 14h
*b1cdbd2cSJim JagielskiDWORD	DefaultHeap;	    // 18h Address of the process heap
*b1cdbd2cSJim JagielskiDWORD	MemoryContext;	    // 1Ch pointer to the process's context
*b1cdbd2cSJim JagielskiDWORD	flags;		    // 20h
*b1cdbd2cSJim Jagielski			    // 0x00000001 - fDebugSingle
*b1cdbd2cSJim Jagielski			    // 0x00000002 - fCreateProcessEvent
*b1cdbd2cSJim Jagielski			    // 0x00000004 - fExitProcessEvent
*b1cdbd2cSJim Jagielski			    // 0x00000008 - fWin16Process
*b1cdbd2cSJim Jagielski			    // 0x00000010 - fDosProcess
*b1cdbd2cSJim Jagielski			    // 0x00000020 - fConsoleProcess
*b1cdbd2cSJim Jagielski			    // 0x00000040 - fFileApisAreOem
*b1cdbd2cSJim Jagielski			    // 0x00000080 - fNukeProcess
*b1cdbd2cSJim Jagielski			    // 0x00000100 - fServiceProcess
*b1cdbd2cSJim Jagielski			    // 0x00000800 - fLoginScriptHack
*b1cdbd2cSJim JagielskiDWORD	pPSP;		    // 24h Linear address of PSP?
*b1cdbd2cSJim JagielskiWORD	PSPSelector;	    // 28h
*b1cdbd2cSJim JagielskiWORD	MTEIndex;	    // 2Ah
*b1cdbd2cSJim JagielskiWORD	cThreads;	    // 2Ch
*b1cdbd2cSJim JagielskiWORD	cNotTermThreads;    // 2Eh
*b1cdbd2cSJim JagielskiWORD	un3;		    // 30h
*b1cdbd2cSJim JagielskiWORD	cRing0Threads;	    // 32h number of ring 0 threads
*b1cdbd2cSJim JagielskiHANDLE	HeapHandle;	    // 34h Heap to allocate handle tables out of
*b1cdbd2cSJim Jagielski			    //	   This seems to always be the KERNEL32 heap
*b1cdbd2cSJim JagielskiHTASK	W16TDB; 	    // 38h Win16 Task Database selector
*b1cdbd2cSJim JagielskiDWORD	MemMapFiles;	    // 3Ch memory mapped file list (?)
*b1cdbd2cSJim JagielskiPENVIRONMENT_DATABASE pEDB; // 40h Pointer to Environment Database
*b1cdbd2cSJim JagielskiPHANDLE_TABLE pHandleTable; // 44h Pointer to process handle table
*b1cdbd2cSJim Jagielskistruct _PROCESS_DATABASE *ParentPDB;   // 48h Parent process database
*b1cdbd2cSJim JagielskiPMODREF MODREFlist;	    // 4Ch Module reference list
*b1cdbd2cSJim JagielskiDWORD	ThreadList;	    // 50h Threads in this process
*b1cdbd2cSJim JagielskiDWORD	DebuggeeCB;	    // 54h Debuggee Context block?
*b1cdbd2cSJim JagielskiDWORD	LocalHeapFreeHead;  // 58h Head of free list in process heap
*b1cdbd2cSJim JagielskiDWORD	InitialRing0ID;     // 5Ch
*b1cdbd2cSJim JagielskiCRITICAL_SECTION    crst;   // 60h
*b1cdbd2cSJim JagielskiDWORD	un4[3]; 	    // 78h
*b1cdbd2cSJim JagielskiDWORD	pConsole;	    // 84h Pointer to console for process
*b1cdbd2cSJim JagielskiDWORD	tlsInUseBits1;	    // 88h  // Represents TLS indices 0 - 31
*b1cdbd2cSJim JagielskiDWORD	tlsInUseBits2;	    // 8Ch  // Represents TLS indices 32 - 63
*b1cdbd2cSJim JagielskiDWORD	ProcessDWORD;	    // 90h
*b1cdbd2cSJim Jagielskistruct _PROCESS_DATABASE *ProcessGroup;    // 94h
*b1cdbd2cSJim JagielskiDWORD	pExeMODREF;	    // 98h pointer to EXE's MODREF
*b1cdbd2cSJim JagielskiDWORD	TopExcFilter;	    // 9Ch Top Exception Filter?
*b1cdbd2cSJim JagielskiDWORD	BasePriority;	    // A0h Base scheduling priority for process
*b1cdbd2cSJim JagielskiDWORD	HeapOwnList;	    // A4h Head of the list of process heaps
*b1cdbd2cSJim JagielskiDWORD	HeapHandleBlockList;// A8h Pointer to head of heap handle block list
*b1cdbd2cSJim JagielskiDWORD	pSomeHeapPtr;	    // ACh normally zero, but can a pointer to a
*b1cdbd2cSJim Jagielski			    // moveable handle block in the heap
*b1cdbd2cSJim JagielskiDWORD	pConsoleProvider;   // B0h Process that owns the console we're using?
*b1cdbd2cSJim JagielskiWORD	EnvironSelector;    // B4h Selector containing process environment
*b1cdbd2cSJim JagielskiWORD	ErrorMode;	    // B6H SetErrorMode value (also thunks to Win16)
*b1cdbd2cSJim JagielskiDWORD	pevtLoadFinished;   // B8h Pointer to event LoadFinished?
*b1cdbd2cSJim JagielskiWORD	UTState;	    // BCh
*b1cdbd2cSJim Jagielski} PROCESS_DATABASE, *PPROCESS_DATABASE;
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski//TIB (Thread Information Block) structure
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielskitypedef struct _SEH_record {
*b1cdbd2cSJim Jagielski    struct _SEH_record *pNext;
*b1cdbd2cSJim Jagielski    FARPROC		pfnHandler;
*b1cdbd2cSJim Jagielski} SEH_record, *PSEH_record;
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski// This is semi-documented in the NTDDK.H file from the NT DDK
*b1cdbd2cSJim Jagielskitypedef struct _TIB {
*b1cdbd2cSJim JagielskiPSEH_record pvExcept;	    // 00h Head of exception record list
*b1cdbd2cSJim JagielskiPVOID	pvStackUserTop;     // 04h Top of user stack
*b1cdbd2cSJim JagielskiPVOID	pvStackUserBase;    // 08h Base of user stack
*b1cdbd2cSJim JagielskiWORD	pvTDB;		    // 0Ch TDB
*b1cdbd2cSJim JagielskiWORD	pvThunksSS;	    // 0Eh SS selector used for thunking to 16 bits
*b1cdbd2cSJim JagielskiDWORD	SelmanList;	    // 10h
*b1cdbd2cSJim JagielskiPVOID	pvArbitrary;	    // 14h Available for application use
*b1cdbd2cSJim Jagielskistruct _tib *ptibSelf;	    // 18h Linear address of TIB structure
*b1cdbd2cSJim JagielskiWORD	TIBFlags;	    // 1Ch
*b1cdbd2cSJim JagielskiWORD	Win16MutexCount;    // 1Eh
*b1cdbd2cSJim JagielskiDWORD	DebugContext;	    // 20h
*b1cdbd2cSJim JagielskiDWORD	pCurrentPriority;   // 24h
*b1cdbd2cSJim JagielskiDWORD	pvQueue;	    // 28h Message Queue selector
*b1cdbd2cSJim JagielskiPVOID  *pvTLSArray;	    // 2Ch Thread Local Storage array
*b1cdbd2cSJim Jagielski} TIB, *PTIB;
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski//TDBX structure
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielskitypedef struct _TDBX {
*b1cdbd2cSJim Jagielski    DWORD   ptdb;		// 00h	// PTHREAD_DATABASE
*b1cdbd2cSJim Jagielski    DWORD   ppdb;		// 04h	// PPROCESDS_DATABASE
*b1cdbd2cSJim Jagielski    DWORD   ContextHandle;	// 08h
*b1cdbd2cSJim Jagielski    DWORD   un1;		// 0Ch
*b1cdbd2cSJim Jagielski    DWORD   TimeOutHandle;	// 10h
*b1cdbd2cSJim Jagielski    DWORD   WakeParam;		// 14h
*b1cdbd2cSJim Jagielski    DWORD   BlockHandle;	// 18h
*b1cdbd2cSJim Jagielski    DWORD   BlockState; 	// 1Ch
*b1cdbd2cSJim Jagielski    DWORD   SuspendCount;	// 20h
*b1cdbd2cSJim Jagielski    DWORD   SuspendHandle;	// 24h
*b1cdbd2cSJim Jagielski    DWORD   MustCompleteCount;	// 28h
*b1cdbd2cSJim Jagielski    DWORD   WaitExFlags;	// 2Ch
*b1cdbd2cSJim Jagielski				// 0x00000001 - WAITEXBIT
*b1cdbd2cSJim Jagielski				// 0x00000002 - WAITACKBIT
*b1cdbd2cSJim Jagielski				// 0x00000004 - SUSPEND_APC_PENDING
*b1cdbd2cSJim Jagielski				// 0x00000008 - SUSPEND_TERMINATED
*b1cdbd2cSJim Jagielski				// 0x00000010 - BLOCKED_FOR_TERMINATION
*b1cdbd2cSJim Jagielski				// 0x00000020 - EMULATE_NPX
*b1cdbd2cSJim Jagielski				// 0x00000040 - WIN32_NPX
*b1cdbd2cSJim Jagielski				// 0x00000080 - EXTENDED_HANDLES
*b1cdbd2cSJim Jagielski				// 0x00000100 - FROZEN
*b1cdbd2cSJim Jagielski				// 0x00000200 - DONT_FREEZE
*b1cdbd2cSJim Jagielski				// 0x00000400 - DONT_UNFREEZE
*b1cdbd2cSJim Jagielski				// 0x00000800 - DONT_TRACE
*b1cdbd2cSJim Jagielski				// 0x00001000 - STOP_TRACING
*b1cdbd2cSJim Jagielski				// 0x00002000 - WAITING_FOR_CRST_SAFE
*b1cdbd2cSJim Jagielski				// 0x00004000 - CRST_SAFE
*b1cdbd2cSJim Jagielski				// 0x00040000 - BLOCK_TERMINATE_APC
*b1cdbd2cSJim Jagielski    DWORD   SyncWaitCount;	// 30h
*b1cdbd2cSJim Jagielski    DWORD   QueuedSyncFuncs;	// 34h
*b1cdbd2cSJim Jagielski    DWORD   UserAPCList;	// 38h
*b1cdbd2cSJim Jagielski    DWORD   KernAPCList;	// 3Ch
*b1cdbd2cSJim Jagielski    DWORD   pPMPSPSelector;	// 40h
*b1cdbd2cSJim Jagielski    DWORD   BlockedOnID;	// 44h
*b1cdbd2cSJim Jagielski    DWORD   un2[7];		// 48h
*b1cdbd2cSJim Jagielski    DWORD   TraceRefData;	// 64h
*b1cdbd2cSJim Jagielski    DWORD   TraceCallBack;	// 68h
*b1cdbd2cSJim Jagielski    DWORD   TraceEventHandle;	// 6Ch
*b1cdbd2cSJim Jagielski    WORD    TraceOutLastCS;	// 70h
*b1cdbd2cSJim Jagielski    WORD    K16TDB;		// 72h
*b1cdbd2cSJim Jagielski    WORD    K16PDB;		// 74h
*b1cdbd2cSJim Jagielski    WORD    DosPDBSeg;		// 76h
*b1cdbd2cSJim Jagielski    WORD    ExceptionCount;	// 78h
*b1cdbd2cSJim Jagielski} TDBX, *PTDBX;
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski//Thread Database structure
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielskitypedef struct _THREAD_DATABASE {
*b1cdbd2cSJim JagielskiDWORD	Type;		    // 00h
*b1cdbd2cSJim JagielskiDWORD	cReference;	    // 04h
*b1cdbd2cSJim JagielskiPPROCESS_DATABASE pProcess; // 08h
*b1cdbd2cSJim JagielskiDWORD	someEvent;	    // 0Ch An event object (What's it used for???)
*b1cdbd2cSJim JagielskiDWORD	pvExcept;	    // 10h This field through field 3CH is a TIB
*b1cdbd2cSJim Jagielski			    //	    structure (see TIB.H)
*b1cdbd2cSJim JagielskiDWORD	TopOfStack;	    // 14h
*b1cdbd2cSJim JagielskiDWORD	StackLow;	    // 18h
*b1cdbd2cSJim JagielskiWORD	W16TDB; 	    // 1Ch
*b1cdbd2cSJim JagielskiWORD	StackSelector16;    // 1Eh Used when thunking down to 16 bits
*b1cdbd2cSJim JagielskiDWORD	SelmanList;	    // 20h
*b1cdbd2cSJim JagielskiDWORD	UserPointer;	    // 24h
*b1cdbd2cSJim JagielskiPTIB	pTIB;		    // 28h
*b1cdbd2cSJim JagielskiWORD	TIBFlags;	    // 2Ch  TIBF_WIN32 = 1, TIBF_TRAP = 2
*b1cdbd2cSJim JagielskiWORD	Win16MutexCount;    // 2Eh
*b1cdbd2cSJim JagielskiDWORD	DebugContext;	    // 30h
*b1cdbd2cSJim JagielskiPDWORD	pCurrentPriority;   // 34h
*b1cdbd2cSJim JagielskiDWORD	MessageQueue;	    // 38h
*b1cdbd2cSJim JagielskiDWORD	pTLSArray;	    // 3Ch
*b1cdbd2cSJim JagielskiPPROCESS_DATABASE pProcess2;// 40h Another copy of the thread's process???
*b1cdbd2cSJim JagielskiDWORD	Flags;		    // 44h
*b1cdbd2cSJim Jagielski			    // 0x00000001 - fCreateThreadEvent
*b1cdbd2cSJim Jagielski			    // 0x00000002 - fCancelExceptionAbort
*b1cdbd2cSJim Jagielski			    // 0x00000004 - fOnTempStack
*b1cdbd2cSJim Jagielski			    // 0x00000008 - fGrowableStack
*b1cdbd2cSJim Jagielski			    // 0x00000010 - fDelaySingleStep
*b1cdbd2cSJim Jagielski			    // 0x00000020 - fOpenExeAsImmovableFile
*b1cdbd2cSJim Jagielski			    // 0x00000040 - fCreateSuspended
*b1cdbd2cSJim Jagielski			    // 0x00000080 - fStackOverflow
*b1cdbd2cSJim Jagielski			    // 0x00000100 - fNestedCleanAPCs
*b1cdbd2cSJim Jagielski			    // 0x00000200 - fWasOemNowAnsi
*b1cdbd2cSJim Jagielski			    // 0x00000400 - fOKToSetThreadOem
*b1cdbd2cSJim JagielskiDWORD	TerminationStatus;  // 48h Returned by GetExitCodeThread
*b1cdbd2cSJim JagielskiWORD	TIBSelector;	    // 4Ch
*b1cdbd2cSJim JagielskiWORD	EmulatorSelector;   // 4Eh
*b1cdbd2cSJim JagielskiDWORD	cHandles;	    // 50h
*b1cdbd2cSJim JagielskiDWORD	WaitNodeList;	    // 54h
*b1cdbd2cSJim JagielskiDWORD	un4;		    // 58h
*b1cdbd2cSJim JagielskiDWORD	Ring0Thread;	    // 5Ch
*b1cdbd2cSJim JagielskiPTDBX	pTDBX;		    // 60
*b1cdbd2cSJim JagielskiDWORD	StackBase;	    // 64h
*b1cdbd2cSJim JagielskiDWORD	TerminationStack;   // 68h
*b1cdbd2cSJim JagielskiDWORD	EmulatorData;	    // 6Ch
*b1cdbd2cSJim JagielskiDWORD	GetLastErrorCode;   // 70h
*b1cdbd2cSJim JagielskiDWORD	DebuggerCB;	    // 74h
*b1cdbd2cSJim JagielskiDWORD	DebuggerThread;     // 78h
*b1cdbd2cSJim JagielskiPCONTEXT    ThreadContext;  // 7Ch  // register context defined in WINNT.H
*b1cdbd2cSJim JagielskiDWORD	Except16List;	    // 80h
*b1cdbd2cSJim JagielskiDWORD	ThunkConnect;	    // 84h
*b1cdbd2cSJim JagielskiDWORD	NegStackBase;	    // 88h
*b1cdbd2cSJim JagielskiDWORD	CurrentSS;	    // 8Ch
*b1cdbd2cSJim JagielskiDWORD	SSTable;	    // 90h
*b1cdbd2cSJim JagielskiDWORD	ThunkSS16;	    // 94h
*b1cdbd2cSJim JagielskiDWORD	TLSArray[64];	    // 98h
*b1cdbd2cSJim JagielskiDWORD	DeltaPriority;	    // 198h
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim Jagielski// The retail version breaks off somewhere around here.
*b1cdbd2cSJim Jagielski// All the remaining fields are most likely only in the debug version
*b1cdbd2cSJim Jagielski
*b1cdbd2cSJim JagielskiDWORD	un5[7]; 	    // 19Ch
*b1cdbd2cSJim JagielskiDWORD	pCreateData16;	    // 1B8h
*b1cdbd2cSJim JagielskiDWORD	APISuspendCount;    // 1BCh # of times SuspendThread has been called
*b1cdbd2cSJim JagielskiDWORD	un6;		    // 1C0h
*b1cdbd2cSJim JagielskiDWORD	WOWChain;	    // 1C4h
*b1cdbd2cSJim JagielskiWORD	wSSBig; 	    // 1C8h
*b1cdbd2cSJim JagielskiWORD	un7;		    // 1CAh
*b1cdbd2cSJim JagielskiDWORD	lp16SwitchRec;	    // 1CCh
*b1cdbd2cSJim JagielskiDWORD	un8[6]; 	    // 1D0h
*b1cdbd2cSJim JagielskiDWORD	pSomeCritSect1;     // 1E8h
*b1cdbd2cSJim JagielskiDWORD	pWin16Mutex;	    // 1ECh
*b1cdbd2cSJim JagielskiDWORD	pWin32Mutex;	    // 1F0h
*b1cdbd2cSJim JagielskiDWORD	pSomeCritSect2;     // 1F4h
*b1cdbd2cSJim JagielskiDWORD	un9;		    // 1F8h
*b1cdbd2cSJim JagielskiDWORD	ripString;	    // 1FCh
*b1cdbd2cSJim JagielskiDWORD	LastTlsSetValueEIP[64]; // 200h (parallel to TlsArray, contains EIP
*b1cdbd2cSJim Jagielski				//	where TLS value was last set from)
*b1cdbd2cSJim Jagielski} THREAD_DATABASE, *PTHREAD_DATABASE;
*b1cdbd2cSJim Jagielski