Windows error 0x0000021E, 542

Detailed Error Information

UNWIND^[1]

Message	Unwind exception code.
Declared in	winerror.h

This appears to be a raw Win32 error. More information may be available in error 0x8007021E.

HRESULT analysis^[2]

This is probably not the correct interpretation of this error. The Win32 error above is more likely to indicate the actual problem.

Flags	Severity	Success This code indicates success, rather than an error. This may not be the correct interpretation of this code, or possibly the program is handling errors incorrectly.
	Reserved (R)	false
	Origin	Microsoft
	NTSTATUS	false
	Reserved (X)	false
Facility	Code	0 (0x000)
	Name	FACILITY_NULL^[2]^[1]
	Description	The default facility code.^[2]^[1]
Error Code		542 (0x021e)

Questions

ETW: seeing an access violation error when calling TdhGetEventInformation

I am attempting to get a working ETW consumer of events from the Microsoft-Windows-Kernel-Process provider. I am mostly following Microsoft's "Using TdhGetProperty to Consume Event Data" example, found here. The session starts, I can see it in the output of logman query -ets. My problem is when I get to [...] read more

c++

windows

etw

Comments

Sources

winerror.h from Windows SDK 10.0.14393.0
https://msdn.microsoft.com/en-us/library/cc231198.aspx

User contributions licensed under CC BY-SA 3.0