搜索论坛 帖子排序:  Oldest to newest Newest to oldest

2009-11-05, 17:04 下午 Jane1970 注册: 2009-08-28 发 贴: 3 请教：在windbg中使用!lpc port命令失败！ 环境：XP professional 2002 sp3,windbg 6.11.0001 使用kernel debug 到本地的模式，现场： lkd>  .sympath SRV*C:\WINDOWS\Symbols*http://msdl.microsoft.com/download/symbols DBGHELP: Symbol Search Path: srv*c:\windows\symbols*http://msdl.microsoft.com/download/symbols DBGHELP: Symbol Search Path: srv*c:\windows\symbols*http://msdl.microsoft.com/download/symbols Symbol search path is: SRV*C:\WINDOWS\Symbols*http://msdl.microsoft.com/download/symbols Expanded Symbol search path is: srv*c:\windows\symbols*http://msdl.microsoft.com/download/symbols Symbol search path is: SRV*C:\WINDOWS\Symbols*http://msdl.microsoft.com/download/symbols Expanded Symbol search path is: srv*c:\windows\symbols*http://msdl.microsoft.com/download/symbols lkd> !sym noisy lkd> !sym noisy noisy mode - symbol prompts on noisy mode - symbol prompts on lkd>  !lmi nt lkd>  !lmi nt Loaded Module Info: [nt]          Module: ntkrnlmp    Base Address: 804d8000      Image Name: ntkrnlmp.exe    Machine Type: 332 (I386)      Time Stamp: 4a783d8a Tue Aug 04 21:54:18 2009            Size: 228000        CheckSum: 20fd8d Characteristics: 10e  perf Debug Data Dirs: Type  Size     VA  Pointer              CODEVIEW    25, 76ad0,   760d0 RSDS - GUID: {79D38DEF-79B7-454A-9D61-504200179432}                Age: 2, Pdb: ntkrnlmp.pdb                 CLSID     4, 76acc,   760cc [Data not mapped]      Image Type: MEMORY   - Image read successfully from loaded memory.     Symbol Type: PDB      - Symbols loaded successfully from symbol server.                  c:\windows\symbols\ntkrnlmp.pdb\79D38DEF79B7454A9D615042001794322\ntkrnlmp.pdb     Load Report: public symbols , not source indexed                  c:\windows\symbols\ntkrnlmp.pdb\79D38DEF79B7454A9D615042001794322\ntkrnlmp.pdb Loaded Module Info: [nt]          Module: ntkrnlmp    Base Address: 804d8000      Image Name: ntkrnlmp.exe    Machine Type: 332 (I386)      Time Stamp: 4a783d8a Tue Aug 04 21:54:18 2009            Size: 228000        CheckSum: 20fd8d Characteristics: 10e  perf Debug Data Dirs: Type  Size     VA  Pointer              CODEVIEW    25, 76ad0,   760d0 RSDS - GUID: {79D38DEF-79B7-454A-9D61-504200179432}                Age: 2, Pdb: ntkrnlmp.pdb                 CLSID     4, 76acc,   760cc [Data not mapped]      Image Type: MEMORY   - Image read successfully from loaded memory.     Symbol Type: PDB      - Symbols loaded successfully from symbol server.                  c:\windows\symbols\ntkrnlmp.pdb\79D38DEF79B7454A9D615042001794322\ntkrnlmp.pdb     Load Report: public symbols , not source indexed                  c:\windows\symbols\ntkrnlmp.pdb\79D38DEF79B7454A9D615042001794322\ntkrnlmp.pdb lkd> .reload /f nt lkd> .reload /f nt DBGHELP: nt - public symbols           c:\windows\symbols\ntkrnlmp.pdb\79D38DEF79B7454A9D615042001794322\ntkrnlmp.pdb DBGHELP: nt - public symbols           c:\windows\symbols\ntkrnlmp.pdb\79D38DEF79B7454A9D615042001794322\ntkrnlmp.pdb lkd> !lpc port lkd> !lpc port Port type     Port address  Connection port  Connected port  Name ------------------------------------------------------------------------------- *** objects of the same type are only linked together if the 4000 flag is set in NtGlobalFlags *** objects of the same type are only linked together if the 4000 flag is set in NtGlobalFlags Scanned 829 port objects Port type     Port address  Connection port  Connected port  Name ------------------------------------------------------------------------------- *** objects of the same type are only linked together if the 4000 flag is set in NtGlobalFlags *** objects of the same type are only linked together if the 4000 flag is set in NtGlobalFlags Scanned 829 port objects IP 地址: 已记录   报告

2009-11-06, 09:26 上午 guozf 注册: 2008-12-06 HK 发 贴: 68 Re: 请教：在windbg中使用!lpc port命令失败！ 楼主好像用local debug吧。 可以拭拭双机调试或者用虚拟机调试. IP 地址: 已记录   报告

2009-11-06, 15:03 下午 Jane1970 注册: 2009-08-28 发 贴: 3 Re: 用虚拟机调试也不行AH！ 现场： kd> !lpc port Port type Port address Connection port Connected port Name *** objects of the same type are only linked together if the 4000 flag is set in NtGlobalFlags *** objects of the same type are only linked together if the 4000 flag is set in NtGlobalFlags Scanned 254 port objects kd>!gflag Current NtGlobalFlag contents :0x00000000 kd>!gflag +0x4000 New NtGlobalFlag contents: 0x00004000 otl - Maintain a list of objects for each type kd> !lpc port Port type Port address Connection port Connected port Name *** objects of the same type are only linked together if the 4000 flag is set in NtGlobalFlags *** objects of the same type are only linked together if the 4000 flag is set in NtGlobalFlags Scanned 254 port objects IP 地址: 已记录   报告

高端调试 » 软件调试 » Windows内核调试 » Re: 用虚拟机调试也不行AH！

请选择 论坛首页 |- 论坛搜索 |- 热门主题 |- 未回复的主题 用户选项 |- 登录 |- 注册 |- 找回密码 软件调试 |- Windows内核调试 |- C/C++本地代码调试 |- .Net程序调试 |- 脚本程序调试 |- Java程序调试 |- Linux内核调试 |- 《程序员》杂志调试专栏 |- WinDbg |- GDB |- 远程调试 |- 调试ACPI和BIOS |- 特殊的调试任务 |- 转储分析 |- GDK7 内核探秘 |- Windows内核 |- Linux内核 系统架构 |- CPU架构 |- PCI/PCI Express架构 程序人生 |- 软件物语 |- 社区活动 |- 名人逸事 联盟论坛 |- 欢迎使用CnForums 没有银弹 |- BUG也精彩 |- 豆腐工程 |- 软件圈里十大怪 Windows Vista |- 用调试利剑剖析VISTA内幕 |- 老专家如何破解新问题 |- 我的电脑谁说了算？ |- 资源 Office开发 |- Visio 驱动程序开发 |- Windows驱动开发 |- Linux驱动开发 |- Windows CE驱动开发 用户态开发 |- Windows本地代码（native）高级开发 |- Web应用开发 |- WinFX和.Net |- Office开发 本站建设 |- 高端调试团队 |- 版面布局 |- 活动建议 |- 网站维护 64位计算 |- 64-bit Windows |- 64-bit CPU 图书 |- 《软件调试》的示例程序 |- 《软件调试》的工具 |- 《软件调试》书友 |- 《软件调试》答疑 |- 《软件调试》勘误和意见 |- 《格蠹汇编》 |- 《软件调试》第二版卷1 |- 《软件调试》第二版卷2 云计算 |- IaaS |- 云存储 |- 大数据 |- PaaS和SaaS GPU |- CUDA |- OpenCL |- HSA |- 游戏开发与调试