EVNTRACE.H

The public symbol file NTKRPAMP.PDB for the original release of Windows 10 tells that the kernel is built with the EVNTRACE.H header at

d:\th.public.fre\internal\minwin\priv_sdk\inc

and draws from it the following type definitions:

Line Number Type
653 struct _TRACE_LOGFILE_HEADER
657 unnamed struct VersionDetail in _TRACE_LOGFILE_HEADER
876 struct _ETW_BUFFER_CONTEXT
901 struct _TRACE_ENABLE_INFO

A header named EVNTRACE.H is among the headers in the publicly available Windows Driver Kit (WDK) for Windows 10. It is there in the “shared” subdirectory with many other headers that are intended for use in both kernel-mode and user-mode programming.