Yep. To tell the truth, I use both and like VMWare better. But if you have
MSDN, you have Virtual PC – VMWare costs $$.
Ken
-----Original Message-----
From: xxxxx@lists.osr.com
[mailto:xxxxx@lists.osr.com] On Behalf Of Bill Wandel
Sent: Wednesday, June 09, 2004 7:46 PM
To: Windows System Software Devs Interest List
Subject: RE: [ntdev] DebugView
I am using the same setup but I don’t think that it “works pretty well”,
especially compared to using VMWare instead of Virtual PC. The
communications between the Virtual PC virtual machine and Windbg seems to be
real slow. Single stepping is especially slow.
Bill Wandel
-----Original Message-----
From: xxxxx@lists.osr.com [mailto:xxxxx@lists.osr.com]
On Behalf Of Ken Cross
Sent: Wednesday, June 09, 2004 7:00 PM
To: Windows System Software Devs Interest List
Subject: RE: [ntdev] DebugView
I use WinDbg in my development machine connected via a pipe to a Virtual PC,
where my test driver is running. It’s all on one machine and if the test
system crashes (hey, it happens…), my development machine isn’t touched.
Virtual PC is part of the MSDN distribution. Works pretty well.
HTH,
Ken
-----Original Message-----
From: xxxxx@lists.osr.com
[mailto:xxxxx@lists.osr.com] On Behalf Of Greg Jacklin
Sent: Wednesday, June 09, 2004 6:03 PM
To: Windows System Software Devs Interest List
Subject: Re: [ntdev] DebugView
Yes I’ve heard of WinDbg. Just was hoping there was a tool that would allow
me to forgoe hooking up a remote debugger.
Thanks,
Greg
----- Original Message -----
From: “Mathieu Routhier”
To: “Windows System Software Devs Interest List”
Sent: Wednesday, June 09, 2004 2:14 PM
Subject: RE: [ntdev] DebugView
> Ever heard of WinDbg? Over a serial connection, a DbgPrint string is
> sent over the cable before the function returns. So if you print
> something in your Unload routine and it gets called, you’ll see it.
>
> Things are different when using DbgMon (or your favorite debug console
> viewer).
>
> Mat
>
> -----Original Message-----
> From: xxxxx@lists.osr.com
> [mailto:xxxxx@lists.osr.com] On Behalf Of Greg Jacklin
> Sent: Wednesday, June 09, 2004 4:52 PM
> To: Windows System Software Devs Interest List
> Subject: [ntdev] DebugView
>
> Will DebugView capture or log the shutdown of a driver or will it be
> shutdown before the drivers get unloaded? Is there a tool to do this
> sort
> of thing?.. other than remote kd ;-}
>
>
> ----- Original Message -----
> From: “Ron Field”
> Newsgroups: ntdev
> To: “Windows System Software Devs Interest List”
> Sent: Wednesday, June 09, 2004 12:23 PM
> Subject: Re:[ntdev] Process creation callbacks
>
>
> > Don. Thanks to your kind help, I’m almost there! There seems to be
> one
> > last (?) problem though. In my LoadImageNotify routine I use the
> handle
> > returned from ZwOpenProcess as the first argument to
> > ZwAllocateVirtualMemory, as follows:
> >
> > HANDLE hProcess;
> > PVOID pvBaseAddr = NULL;
> > ULONG ulRegionSz = 1000; // 1000 bytes
> >
> > ntStatus = ZwAllocateVirtualMemory (hProcess,
> > &pvBaseAddr,
> > 0, // don’t
> care
> > about alignment
> > &ulRegionSz,
> > MEM_COMMIT,
> >
> PAGE_EXECUTE_READWRITE);
> >
> > No error return, but the process doesn’t seem to run. I can’t even
> get
> > TaskMgr to open. If I remove this call, all is ok. Perhaps the args
> are
> > incorrect? If I can get past this, I think we’re in good shape.
> >
> >
> > “Don Burn” wrote in message news:xxxxx@ntdev…
> > >
> > > “Ron Field” wrote in message
> news:xxxxx@ntdev…
> > > > Actually, renaming the app on disk is ok with us – we publish the
> fact
> > > that
> > > > renaming the app will cause our system not to work for that app
> any
> > > longer,
> > > > and if that’s what the user wants to do then it’s fine. Regarding
> > > > allocating the VM, if I can’t do it in the CreateProcessNotify
> routine,
> > > > where can I do it? In the LoadImageNotify routine? Or do I have
> to
> do
> > it
> > > > via a user mode partner? It is imperative that the additional
> memory
> be
> > > > allocated before the app starts to run. Also, is the first
> parameter
> to
> > > > ZwAllocateVirtualMemory something other than a PID and, if so,
> what is
> > it,
> > > > and do I get it via something like ObReferenceObjectByHandle?
> Note
> that
> > > of
> > > > the term HANDLE used for the first two parameters to the
> > > CreateProcessNotify
> > > > callback is confusing, since they are actually PIDs. In user
> mode, a
> > > handle
> > > > is a handle, and a PID is a DWORD. Are things different in KM?
> Thanks.
> > > >
> > > You can allocate in LoadImageNotify this is in the context of the
> user
> > > process.
> > > To get the handle:
> > >
> > > NTSYSAPI
> > > NTSTATUS
> > > NTAPI
> > > ZwOpenProcess(
> > > OUT PHANDLE ProcessHandle,
> > > IN ACCESS_MASK DesiredAccess,
> > > IN POBJECT_ATTRIBUTES ObjectAttributes,
> > > IN PCLIENT_ID ClientId OPTIONAL
> > > );
> > >
> > > Where ClientId is defined in the DDK and the handles in the
> structure
> > > represent what
> > > comes from CreateProcessNotify
> > >
> > >
> > > –
> > > Don Burn (MVP, Windows DDK)
> > > Windows 2k/XP/2k3 Filesystem and Driver Consulting
> > >
> > >
> > >
> > >
> > >
> > >
> > >
> >
> >
> >
> > —
> > Questions? First check the Kernel Driver FAQ at
> http://www.osronline.com/article.cfm?id=256
> >
> > You are currently subscribed to ntdev as: xxxxx@hotmail.com
> > To unsubscribe send a blank email to xxxxx@lists.osr.com
> >
>
> —
> Questions? First check the Kernel Driver FAQ at
> http://www.osronline.com/article.cfm?id=256
>
> You are currently subscribed to ntdev as: xxxxx@cvds.com
> To unsubscribe send a blank email to xxxxx@lists.osr.com
>
>
> —
> Questions? First check the Kernel Driver FAQ at
http://www.osronline.com/article.cfm?id=256
>
> You are currently subscribed to ntdev as: xxxxx@hotmail.com
> To unsubscribe send a blank email to xxxxx@lists.osr.com
>
—
Questions? First check the Kernel Driver FAQ at
http://www.osronline.com/article.cfm?id=256
You are currently subscribed to ntdev as: xxxxx@comcast.net
To unsubscribe send a blank email to xxxxx@lists.osr.com
—
Questions? First check the Kernel Driver FAQ at
http://www.osronline.com/article.cfm?id=256
You are currently subscribed to ntdev as: xxxxx@bwandel.com
To unsubscribe send a blank email to xxxxx@lists.osr.com
—
Questions? First check the Kernel Driver FAQ at
http://www.osronline.com/article.cfm?id=256
You are currently subscribed to ntdev as: xxxxx@comcast.net
To unsubscribe send a blank email to xxxxx@lists.osr.com
SoftICE and put breakpoint to exit of your unload routine or to some code which is called later.