I have been unable to figure out how to see NDIS traces / logs. I have tried a kernel debug session via WinDbg, following the instructions for debug settings in the registry, but that doesn't seem to work.
The option to set the same through the debugger extensions doesn't work for me, either.
Can someone nudge me in the right direction?
Do you mean logs produced by NdisWriteEventLogEntry, or traces of NDIS itself?
You know, I am not sure. I am just looking to debug the NDIS MUX driver in the driver samples. My entire stack goes down when I install it as a protocol (as described in the README).
I would just like to get some insight into what is going on.
They recommend debugging by turning on tracing here. I can't seem to find a way to look at these traces. I've tried a kernel debug session like they recommend.
learn microsoft com/en-us/windows-hardware/drivers/debugger/overview-of-ndis-debugging
Then there is DBGPRINT() / DbgPrint() used all over the code. I'd like to be able to see that as well, and don't know how.
Do you have any pointers?
The docs are a mess of obsolete suggestions about enabling debug prints which no longer exist in the ndis drivers. They use WPP instead.
See this message here: Win10 Checked version of NDIS.sys - #12 by mksp10
You need to enable wpp tracing.