Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Prevent loading sources from specific domains #215

Open
pmisik opened this issue Aug 16, 2024 · 0 comments
Open

Prevent loading sources from specific domains #215

pmisik opened this issue Aug 16, 2024 · 0 comments

Comments

@pmisik
Copy link

pmisik commented Aug 16, 2024

Recently I noticed multiple Microsoft pdb indexed with sourcelink with links that points to Microsoft internal infrastructure like in case msvcp140.amd64.pdb

llvm-pdbutil.exe export --stream="sourcelink$1" --out=msvcp140.amd64.sourcelink1 msvcp140.amd64.pdb

{"documents": { 
"D:\\a\\_work\\1\\s\\src\\*" : "https://devdiv.visualstudio.com/DevDiv/_apis/git/repositories/msvc/items?path=src/*&versionDescriptor[versionOptions]=0&versionDescriptor[versionType]=2&versionDescriptor[version]=be7e8fe4cbe14414b2345e00c44353cbd232b10c&resolveLfs=true&$format=octetStream&api-version=5.0&download=false", 
"D:\\a\\_work\\1\\s\\src\\vctools\\asan\\llvm\\*" : "https://devdiv.visualstudio.com/DefaultCollection/DevDiv/_apis/git/repositories/AddressSanitizer/items?path=*&versionDescriptor[versionOptions]=0&versionDescriptor[versionType]=2&versionDescriptor[version]=3f198a27d20c545d19c465efedd5e27841ba98fd&resolveLfs=true&$format=octetStream&api-version=5.0&download=false", 
"D:\\a\\_work\\1\\s\\src\\vctools\\gsl\\*" : "https://raw.githubusercontent.com/microsoft/GSL/43d60c5e3891dab6491a76d0bac554a4a89d57f6/*" }}

When I open memory dump with related dll in stack trace WinDbg shows that WinDbg Finding source file for ...
image

In background is launched process
"C:\Windows\SystemApps\Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy\Microsoft.AAD.BrokerPlugin.exe" -ServerName:App.AppXg.....mca
By background I mean that the authentication window does not have windbg set as a parent window and most of the time I don't see it and I have to gradually minimize open programs to find it.

image

After windows is closed, there is launched another authentication process (again in background)
"C:\Windows\System32\CredentialUIBroker.exe" NonAppContainerFailedMip -Embedding
image

We have configured symbols by environment like this
_NT_SOURCE_PATH=srv*
_NT_SYMBOL_PATH=srv*d:\symbolcache\internal*\\internal.server\symbols\symsrv;srv*d:\symbolcache\microsoft*http://msdl.microsoft.com/download/symbols

Problem here is quite annoying search for that background authentication window.
In our case there is no reason to access third-party (Microsoft) internal infrastructure.
Is there a way how to configure WinDbg to not try to download sources from specific domain

  • devdiv.visualstudio.com
  • raw.githubusercontent.com
  • tfsprodeussu6.app.visualstudio.com
    or by wildcard like *.visualstudio.com

If there is, can you advise how to set up such exclusions or direct us to the documentation where it is documented.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@pmisik