No, what you see here isn't the source code to Windows XP Beta 2, nor do I even have access to source code. This is the source tree layout of the Windows XP Beta 2 sources, complete with file names.
The source tree layout above probably represents about 90% of the tree for the NTOSKRNL.EXE (multiprocessor version) image file, the NTFS file system driver (NTFS.SYS), the TCP/IP driver (TCPIP.SYS) and the multiprocessor HAL (HALMPS.DLL).
NTOSKRNL.EXE contains all of Windows XP's executive subsystems, including the Cache Manager, Memory Manager, Process Manager, Object Manager, and I/O Manager. It also contains the Kernel, which implements NTs synchronization mechanisms. I threw in the other drivers so that the relationship of the HAL tree and key drivers with respect to the main NTOSKRNL source would be apparent.
So how did I get the information used to build the tree? I extracted file names from the checked (debug) build images of various operating system image files. The checked build version of the Windows XP (and Windows NT and Windows 2000, for that matter) operating system includes many "assert" statements. An assert statement is simply a run-time expression that should be true. If it isn't, then some program variable has attained a value considered impossible by the program and the assert statement flags the condition in some way visible to a programmer. Developers sprinkle code with assertions to catch faulty assumptions and programming errors.
In Windows XP, device drivers and kernel-mode subsystems include assertions by using the ASSERT macro. This is an example ASSERT from the keyboard class driver, the source of which comes with the Windows 2000 Device Driver Kit (DDK):
ASSERT(0 < deviceExtension->TrustedSubsystemCount);
The ASSERT macro is defined in the NTDDK.H DDK header file as:
#if DBG #define ASSERT( exp ) \ if (!(exp)) \ RtlAssert( #exp, __FILE__, __LINE__, NULL ) #else #define ASSERT( exp ) #endif
This means that the ASSERT is a no-op in release builds, but if the assertion test fails in a debug build the function RtlAssert is invoked. RtlAssert prints the expression, file, and line number information as a debug output, and causes a debug break so that a developer can examine the conditions that lead to the assertion failure from inside a kernel debugger. The file name parameter causes the source file's file name to be embedded in its image file, and it can be extracted with a string-search utility like my own Strings.