//OFFSET(CONTEXT_FLOAT_SAVE_CONTROL_WORD CONTEXT_FLOAT_SAVE + FP_CONTROL_WORD
//OFFSET(CONTEXT_FLOAT_SAVE_STATUS_WORD CONTEXT_FLOAT_SAVE + FP_STATUS_WORD
//OFFSET(CONTEXT_FLOAT_SAVE_TAG_WORD CONTEXT_FLOAT_SAVE + FP_TAG_WORD
-//OFFSET(CONTEXT_ALIGNED_SIZE 0x2CC
//OFFSET(CONTEXT_FRAME_LENGTH 0x2D0
SIZE(CONTEXT_FRAME_LENGTH, CONTEXT),
OFFSET(EXCEPTION_RECORD_EXCEPTION_RECORD, EXCEPTION_RECORD, ExceptionRecord),
OFFSET(EXCEPTION_RECORD_EXCEPTION_ADDRESS, EXCEPTION_RECORD, ExceptionAddress),
OFFSET(EXCEPTION_RECORD_NUMBER_PARAMETERS, EXCEPTION_RECORD, NumberParameters),
+OFFSET(EXCEPTION_RECORD_EXCEPTION_ADDRESS, EXCEPTION_RECORD, ExceptionAddress),
SIZE(SIZEOF_EXCEPTION_RECORD, EXCEPTION_RECORD),
+CONSTANT(EXCEPTION_RECORD_LENGTH),
+
//#define EXCEPTION_RECORD_LENGTH 0x50
HEADER("KTHREAD"),
CONSTANT(CBSTACK_CALLBACK_STACK),
SIZE(SIZEOF_FX_SAVE_AREA, FX_SAVE_AREA),
OFFSET(TEB_EXCEPTION_LIST, TEB, NtTib.ExceptionList),
+OFFSET(TEB_STACK_LIMIT, TEB, NtTib.StackLimit),
+OFFSET(TEB_STACK_BASE, TEB, NtTib.StackBase),
+OFFSET(TEB_PEB, TEB, ProcessEnvironmentBlock),
+OFFSET(TEB_EXCEPTION_CODE, TEB, ExceptionCode),
+OFFSET(PEB_KERNEL_CALLBACK_TABLE, PEB, KernelCallbackTable),
CONSTANT(KUSER_SHARED_SYSCALL),
+CONSTANT(EXCEPTION_EXECUTE_HANDLER),
+CONSTANT(STATUS_CALLBACK_POP_STACK),
+CONSTANT(CONTEXT_ALIGNED_SIZE),
+
+
+
+
+