Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

AttachConsole and 64 bit application

Tags:

winapi

delphi

The WinAPI function AttachConsole always returns true when the program is compiled as 64-bit.

First of all, I've declared the function as following:

function AttachConsole(dwProcessId: DWORD): Bool; stdcall; external KERNEL32 name 'AttachConsole';

Then I call my function:

if AttachConsole(DWORD(-1)) then
   ....

This works fine when compiled as a 32-bit application, but when compiled as 64-bit it always returns true.

The documentation doesn't mention doing something special for a 64-bit application.

How to reproduce:

  1. Create a new VCL Application
  2. Set Target platform to Win64
  3. Edit the DPR file to look like this:

program Project1;

uses
  System.Types,
  WinApi.windows,
  Vcl.Forms,
  Unit1 in 'Unit1.pas' {Form1};

{$R *.res}

function AttachConsole(dwProcessId: DWORD): Bool; stdcall; external KERNEL32 name 'AttachConsole';


begin
  if AttachConsole(DWORD(-1)) then
  begin
    writeLN('Hello world');
    Exit;
  end;

  Application.Initialize;
  Application.MainFormOnTaskbar := True;
  Application.CreateForm(TForm1, Form1);
  Application.Run;
end.

When running under Win64, AttachConsole retruns true even when run from Explorer.

like image 411
Jens Borrisholt Avatar asked Apr 17 '19 11:04

Jens Borrisholt

1 Answers

From the documenation link, dwProcessId [in] can take two types of values - either a PID of the target process or the special argument :

ATTACH_PARENT_PROCESS (DWORD)-1

Use the console of the parent of the current process.

Here you are using the value ATTACH_PARENT_PROCESS.

In the case of a 64-bit debug, it appears that the IDE is creating a console for the 64-bit debugger, which hosts the debugged application as a child, and so electing to attach to the parent console succeeds.

For a 32-bit debug session the application is spawned as a child of the IDE. We can guess that this is because the IDE itself is a 32-bit application and can hook into the 32-bit process directly while the 64-bit application must be attached to a 64-bit debugger.

Using process explorer we can see the difference in the process hierarchy when launching the process for debugging within the IDE :

enter image description here

enter image description here

Here we can see the 64-bit process is hosted as a child in the debugger kernel while the 32-bit process is not.

Running the (64-bit) application outside of the debugger produces the expected result where AttachConsole(ATTACH_PARENT_PROCESS) fails.

like image 70
J... Avatar answered Oct 23 '22 20:10

J...
Sign in to Comment

Related questions

Parameters in SQL - Delphi 7
Can I annotate class of some object as type?
Why make a class with only 1 static function?
Convert ISO 3166-1 alpha-2 Country Code to localized Country Name
How to load custom cursor in Firemonkey?
TStringGrid merge cell drawing
TryStrToFloat converts incorrect string
How do I implement two interfaces that have methods with the same name?
TObjectList<> Get item error
Does "enable runtime themes" affect performance?
Send e-mail using gmail and Indy
Any way to speed up SaveToStream on TPNGImage?
How to avoid function result being destroyed by Free inside function?
What's the benefit of implement interface at runtime?
How to avoid 100% CPU in Delphi multithreading?
Delphi package not Loading when i start Delphi
Cannot catch all clicks when using onmousedown, onmouseup and click events
How to correctly declare an array property in Delphi?
How to change the order of fields in an already opened TADODataSet?
What is the equivalent of dynamic_cast in Delphi?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!