#define NT_ASSERT(_exp) \     ((!(_exp)) ? \         (__annotation(L"Debug", L"AssertFail", L#_exp), \          DbgRaiseAssertionFailure(), FALSE) : \         TRUE)  Figure 1 - NT_ASSERT

NTSTATUS DriverEntry(PDRIVER_OBJECT DriverObj, PUNICODE_STRING RegPath) {     NTSTATUS            code;     PNOTHING_DEVICE_EXT devExt;     PDEVICE_OBJECT      devObj;     UNICODE_STRING      devName, linkName;     DbgPrint("\nOSR NT4 DO NOTHING Driver -- Compiled %s %s\n",         __DATE__, __TIME__);     __annotation(L"Annotatin' like a mother.");     ... Figure 2 - Adding Annotation to "Nothing" Driver

** Module: g:\projects\nothing\driver\objchk_wlh_x86\i386\nothing.obj CompilandEnv   : obj = "g:\projects\nothing\driver\objchk_wlh_x86\i386\nothing.obj" CompilandDetails:        Language: C        Target Processor: Pentium III        Compiled for EnC: No        Compiler Version: FE 14.0.50727 BE 14.0.50727 ... CompilandEnv   : src = ".\nothing.c" ... Function       :   static, [0x00004010]..., len = 00000123, _DriverEntry@8 FuncDebugStart :   static, [0x00004018]... FuncDebugEnd   :   static, [0x0000412d]... Annotation     :   static, [0x0000402f]...        Data :     constant "Annotatin' like a mother...", Constant, (none) Data :   ..., Param, Type: struct _DRIVER_OBJECT *, DriverObj Data :   ..., Param, Type: struct _UNICODE_STRING *, RegistryPath Data :   ..., Local, Type: struct _DEVICE_OBJECT *, devObj Data :   ..., Local, Type: struct _UNICODE_STRING, devName ... Function      : static, [0x00001010]..., len = 00000044, NothingCreateClose@8 ... ** Module: f:\nt.obj.x86fre\base\tools\gs_support\kmode\objfre\i386\gs_support.obj Figure 3 - Our Annotation in the Output

NTSTATUS DriverEntry(PDRIVER_OBJECT DriverObj, PUNICODE_STRING RegistryPath) {     NTSTATUS            code;     PNOTHING_DEVICE_EXT devExt;     PDEVICE_OBJECT      devObj;     UNICODE_STRING      devName, linkName;     DbgPrint("\nOSR NT4 DO NOTHING Driver -- Compiled %s %s\n",         __DATE__, __TIME__);     DbgRaiseAssertionFailure(); Figure 4 - Adding DbgRaiseAssertionFailure to Driver

Nothing too shocking here. The inline function embedded an INT 2C in our code, which resulted in an assert exception being raised. However, hitting GO at this point reveals an interesting set of commands that were added to the debugger for handling the new assertions (see below).

kd> g
Continuing an assertion failure can result in the
debuggee being terminated (bugchecking for kernel
debuggees).
If you want to ignore this assertion, use 'ahi'.
If you want to force continuation, use 'gh' or 'gn'.

So, one advantage to using DbgRaiseAssertionFailure over DbgBreakPoint (or __debugbreak) is that the debugger has built-in support for ignoring the asserts it generates. Anyone who has been stuck having to NOP out a bogus ASSERT knows what a rockin' feature this is.

It turns out that there are several options available to the 'ah' command for dealing with individual asserts. There's even a new option to the 'sx' command for global assert handling. The WinDBG docs have all the details, so we won't bother duplicating that information here.

The Result
Now that we know the players involved, let's look again at the part of the NT_ASSERT macro that does the work:

_annotation(L"Debug", L"AssertFail", L#_exp), \
         DbgRaiseAssertionFailure()

The comma means this is going to expand out into a single line. Therefore, the code above is adding an annotation for this instruction address with the assert information and then emitting an inline INT 2C.

At this point the astute reader will realize an important side effect - the expression string that indicates the reason of the assert is not in the driver image. Because the expression is added as an annotation, the only way to find the reason for this assert is through querying the PDB for any annotation information available for the location of the INT 2C instruction.

Let's check out what the new assert looks like in the debugger. Look at the assembly around this breakpoint (Figure 5) and notice that the expression string is nowhere to be found.

Thus, the debugger is clearly aware of the new assert semantics and is querying the PDB for annotation information in order to display the reason for the assert.

What About the "Not So Good?"
Earlier, I alluded to the fact that there was something not so good about the new assert and, no, I haven't forgotten. Remember when we saw the location of the annotation information in the PDB? At that point I noted it was in the same location as the parameter and locals information. This should be a slight tip-off to anyone who is familiar with the public symbols provided by Microsoft.

That's right folks, annotations are not present in public PDB files. If you're used to running the checked build of Windows to get extra assert information, I hope your assembly skills are up to snuff because you will be tracking down the reason for the assert yourself. For example, let's check out the previous assert again, but this time we'll use symbols generated with the /PDBSTRIPPED linker option:

Assertion failure - code c0000420 (first chance)
NOTHING!DriverEntry+0x2c:
8d2f203c cd2c            int     2Ch

Not so good, eh?

You Take the Good, You Take the Bad...
Even though it's entirely depressing that the checked build of Windows is now full of mysterious asserts, the built-in debugger support is convenient if you're not in the habit of using stripped PDBs in your development. Just remember that support for this new assert is not available in the down level platforms.