mir/PowerToys
2
0
Fork 0
mirror of https://github.com/microsoft/PowerToys synced 2025-08-22 10:07:37 +00:00
Code Issues Actions 21 Packages Projects Releases Wiki Activity
PowerToys/src/common/Telemetry/EtwTrace/EtwTrace.cpp
Stefan Markovic 133aa85f2b
[General]Add an option for telemetry opt-in and visualization(#34078) 
* Data diagnostics opt-in

* [c++] Drop DROP_PII flag

* Bump telemtry package to 2.0.2

* Drop DropPii from custom actions

* Cleanup

* Do not start manually C# EtwTrace. FZ engine exit event.

* ImageResizer, PowerRename, FileLocksmith prev handlers

* Revert C# handlers exe logging

* Revert "Revert C# handlers exe logging"

This reverts commit 4c75a3953b085aeffaefe8e9e20c39cebb899ea1.

* Do not recreate EtwTrace

* consume package

* xaml formatting

* Fix deps.json audit

* Update telem package paths

* Address PR comments

* Fix AdvancedPaste close on PT close

* Override etl file name for explorer loaded dlls
Start/stop tracer when needed for explorer loaded dlls to prevent explorer overload

* Fix setting desc

* Fix missing events

* Add infobar to restart when enable data viewing

* Flush on timer every 30s

* [Settings] Update View Data diagnostic description text
[New+] Add tracer

* Show Restart info bar for both enable/disable data viewer

* Fix newplus

* Fix stuck on restart and terminate AdvPaste exe on destroy()

* [Installer] Add tracer

* Address PR comment

* Add missing tracers

* Exclude etw dir from BugReport

* Fix bad merge

* [Hosts] Proper exit on initial dialog

* [OOBE] Make Data diagnostic setting visible without scroll

* [OOBE] Add hiperlynk to open general settings

* Disable data view on disabling data diagnostics

* Don't disable View data button

* Fix disabling data viewing

* Add missing dot

* Revert formatting
2024-10-24 21:04:32 +01:00

310 lines
10 KiB
C++
Raw Blame History

//
// Copyright (c) Microsoft Corporation. All rights reserved.
//
#pragma once
#include "pch.h"
#include "ETWTrace.h"
#include <thread>
#include <wil\stl.h>
#include <wil\win32_helpers.h>
namespace fs = std::filesystem;
namespace
{
constexpr inline const wchar_t* DataDiagnosticsRegKey = L"Software\\Classes\\PowerToys";
constexpr inline const wchar_t* DataDiagnosticsRegValueName = L"AllowDataDiagnostics";
constexpr inline const wchar_t* ViewDataDiagnosticsRegValueName = L"DataDiagnosticsViewEnabled";
inline std::wstring get_root_save_folder_location()
{
PWSTR local_app_path;
winrt::check_hresult(SHGetKnownFolderPath(FOLDERID_LocalAppData, 0, NULL, &local_app_path));
std::wstring result{ local_app_path };
CoTaskMemFree(local_app_path);
result += L"\\Microsoft\\PowerToys";
std::filesystem::path save_path(result);
if (!std::filesystem::exists(save_path))
{
std::filesystem::create_directories(save_path);
}
return result;
}
bool IsDataDiagnosticsEnabled()
{
HKEY key{};
if (RegOpenKeyExW(HKEY_CURRENT_USER,
DataDiagnosticsRegKey,
0,
KEY_READ,
&key) != ERROR_SUCCESS)
{
return false;
}
DWORD isDataDiagnosticsEnabled = 0;
DWORD size = sizeof(isDataDiagnosticsEnabled);
if (RegGetValueW(
HKEY_CURRENT_USER,
DataDiagnosticsRegKey,
DataDiagnosticsRegValueName,
RRF_RT_REG_DWORD,
nullptr,
&isDataDiagnosticsEnabled,
&size) != ERROR_SUCCESS)
{
RegCloseKey(key);
return false;
}
RegCloseKey(key);
return isDataDiagnosticsEnabled;
}
bool isViewDataDiagnosticEnabled()
{
HKEY key{};
if (RegOpenKeyExW(HKEY_CURRENT_USER,
DataDiagnosticsRegKey,
0,
KEY_READ,
&key) != ERROR_SUCCESS)
{
return false;
}
DWORD isDataDiagnosticsEnabled = 0;
DWORD size = sizeof(isDataDiagnosticsEnabled);
if (RegGetValueW(
HKEY_CURRENT_USER,
DataDiagnosticsRegKey,
ViewDataDiagnosticsRegValueName,
RRF_RT_REG_DWORD,
nullptr,
&isDataDiagnosticsEnabled,
&size) != ERROR_SUCCESS)
{
RegCloseKey(key);
return false;
}
RegCloseKey(key);
return isDataDiagnosticsEnabled == 1;
}
}
namespace Shared
{
namespace Trace
{
ETWTrace::ETWTrace()
{
GUID id;
if (SUCCEEDED(CLSIDFromString(PowerToysProviderGUID, &id)))
{
m_providerGUID = id;
}
fs::path outputFolder = get_root_save_folder_location();
m_etwFolder = (outputFolder / c_etwFolderName);
}
ETWTrace::ETWTrace(const std::wstring& etlFileNameOverride) :
ETWTrace()
{
m_etlFileNameOverride = etlFileNameOverride;
}
ETWTrace::~ETWTrace()
{
Flush();
Stop();
m_etwFolder.clear();
m_providerGUID = {};
}
void ETWTrace::UpdateState(bool tracing)
{
if (tracing)
{
Start();
}
else
{
Stop();
}
}
void ETWTrace::Flush()
{
if (m_tracing)
{
Control(EVENT_TRACE_CONTROL_FLUSH);
// Control(EVENT_TRACE_CONTROL_INCREMENT_FILE);
}
}
void ETWTrace::CreateEtwFolderIfNeeded()
{
if (!std::filesystem::exists(m_etwFolder))
{
std::filesystem::create_directories(m_etwFolder);
}
else if (!std::filesystem::is_directory(m_etwFolder))
{
std::filesystem::remove(m_etwFolder);
std::filesystem::create_directory(m_etwFolder);
}
THROW_HR_IF(E_UNEXPECTED, !std::filesystem::exists(m_etwFolder));
}
void ETWTrace::InitEventTraceProperties()
{
const std::filesystem::path exePath(wil::GetModuleFileNameW<std::wstring>(nullptr));
const auto exeName = exePath.stem().wstring();
auto now = std::chrono::system_clock::now();
auto timeNow = std::chrono::system_clock::to_time_t(now);
std::wstringstream dateTime;
struct tm timeInfo
{
};
errno_t err = localtime_s(&timeInfo, &timeNow);
if (err == 0)
{
dateTime << std::put_time(&timeInfo, L"-%m-%d-%Y__%H_%M_%S");
}
if (m_etlFileNameOverride.empty())
{
m_sessionName = wil::str_printf<std::wstring>(L"%ws-%d%ws", exeName.c_str(), GetCurrentProcessId(), dateTime.str().c_str());
}
else
{
m_sessionName = wil::str_printf<std::wstring>(L"%ws-%d%ws", m_etlFileNameOverride.c_str(), GetCurrentProcessId(), dateTime.str().c_str());
}
std::replace(m_sessionName.begin(), m_sessionName.end(), '.', '_');
const ULONG etwSessionNameCharCount = static_cast<ULONG>(m_sessionName.size() + 1);
const ULONG etwSessionNameByteSize = etwSessionNameCharCount * sizeof(m_sessionName[0]);
auto etlFileNameFormattedCounter = m_sessionName + c_etwNewFileFormattedCounter;
std::filesystem::path etlFilePath = m_etwFolder / etlFileNameFormattedCounter;
etlFilePath.replace_extension(c_etwFileNameEnd);
THROW_HR_IF(E_UNEXPECTED, etlFilePath.empty());
const auto etlFilePathStr = etlFilePath.wstring();
// std::string/wstring returns number of characters not including the null terminator, so add +1 for that.
const ULONG etwFilePathCharCount = static_cast<ULONG>(etlFilePathStr.size() + 1);
const ULONG etwFilePathByteSize = etwFilePathCharCount * sizeof(etlFilePathStr[0]);
const ULONG bufferSizeInBytes = sizeof(EVENT_TRACE_PROPERTIES) + etwSessionNameByteSize + etwFilePathByteSize;
auto eventTracePropertiesBuffer = std::make_unique<unsigned char[]>(bufferSizeInBytes);
ZeroMemory(eventTracePropertiesBuffer.get(), bufferSizeInBytes);
auto eventTraceProperties = reinterpret_cast<EVENT_TRACE_PROPERTIES*>(eventTracePropertiesBuffer.get());
eventTraceProperties->Wnode.BufferSize = bufferSizeInBytes;
eventTraceProperties->Wnode.Flags = WNODE_FLAG_TRACED_GUID;
eventTraceProperties->Wnode.ClientContext = 1;
eventTraceProperties->Wnode.Guid = m_providerGUID;
eventTraceProperties->BufferSize = 4; // 4KB, the minimum size
eventTraceProperties->LogFileMode = EVENT_TRACE_PRIVATE_LOGGER_MODE | EVENT_TRACE_PRIVATE_IN_PROC | EVENT_TRACE_FILE_MODE_NEWFILE;
eventTraceProperties->MaximumFileSize = 1; // 1 MB
// LoggerName is placed at the end of EVENT_TRACE_PROPERTIES structure
eventTraceProperties->LoggerNameOffset = sizeof(EVENT_TRACE_PROPERTIES);
wcsncpy_s(reinterpret_cast<LPWSTR>(eventTracePropertiesBuffer.get() + eventTraceProperties->LoggerNameOffset), etwSessionNameCharCount, m_sessionName.c_str(), etwSessionNameCharCount);
// LogFileName is placed at the end of the Logger Name
eventTraceProperties->LogFileNameOffset = eventTraceProperties->LoggerNameOffset + etwSessionNameByteSize;
wcsncpy_s(reinterpret_cast<LPWSTR>(eventTracePropertiesBuffer.get() + eventTraceProperties->LogFileNameOffset), etwFilePathCharCount, etlFilePathStr.c_str(), etwFilePathCharCount);
m_eventTracePropertiesBuffer = std::move(eventTracePropertiesBuffer);
}
void ETWTrace::Start()
{
if (m_tracing)
{
return;
}
if (!IsDataDiagnosticsEnabled())
{
return;
}
if (!isViewDataDiagnosticEnabled())
{
return;
}
CreateEtwFolderIfNeeded();
InitEventTraceProperties();
auto eventTraceProperties = reinterpret_cast<EVENT_TRACE_PROPERTIES*>(m_eventTracePropertiesBuffer.get());
THROW_IF_WIN32_ERROR(StartTrace(&m_traceHandle, m_sessionName.c_str(), eventTraceProperties));
Enable(EVENT_CONTROL_CODE_ENABLE_PROVIDER);
m_tracing = true;
m_flushing_thread = std::thread([this] { FlushWorker(); });
}
void ETWTrace::Stop()
{
if (!m_tracing)
{
return;
}
Enable(EVENT_CONTROL_CODE_DISABLE_PROVIDER);
// ControlTrace with EVENT_TRACE_CONTROL_STOP on the trace handle,
// which is equivalent to calling CloseTrace() on the trace handle.
Control(EVENT_TRACE_CONTROL_STOP);
m_traceHandle = INVALID_PROCESSTRACE_HANDLE;
m_eventTracePropertiesBuffer.reset();
m_tracing = false;
m_terminate_flushing_thread.notify_one();
m_flushing_thread.join();
}
void ETWTrace::Control(ULONG traceControlCode)
{
auto eventTraceProperties = reinterpret_cast<EVENT_TRACE_PROPERTIES*>(m_eventTracePropertiesBuffer.get());
const ULONG result = ControlTrace(m_traceHandle, m_sessionName.c_str(), eventTraceProperties, traceControlCode);
THROW_IF_FAILED(HRESULT_FROM_WIN32(result));
}
void ETWTrace::Enable(ULONG eventControlCode)
{
// Control the main provider
THROW_IF_WIN32_ERROR(EnableTraceEx2(m_traceHandle, &m_providerGUID, eventControlCode, TRACE_LEVEL_VERBOSE, 0, 0, 0, nullptr));
}
void ETWTrace::FlushWorker()
{
std::unique_lock<std::mutex> lock(m_mutex);
while (m_tracing)
{
m_terminate_flushing_thread.wait_for(lock,
std::chrono::seconds(30),
[this]() { return !m_tracing.load(); });
Flush();
}
}
}
}
Reference in New Issue View Git Blame Copy Permalink