read PC from kernel mode

kutty_banerjee · July 27, 2004, 3:32pm

Hi,
is there a documented way to read the program counter value from inside the
kernel at a certain instance of time?

kutty

Don_Burn_1 · July 27, 2004, 3:37pm

No, there are API’s for profiling, but there is no API for kernel debugging
which is what the equivalent in user mode is.

–
Don Burn (MVP, Windows DDK)
Windows 2k/XP/2k3 Filesystem and Driver Consulting
Remove StopSpam from the email to reply

“Kutty Banerjee” wrote in message news:xxxxx@ntdev…
> Hi,
> is there a documented way to read the program counter value from inside
the
> kernel at a certain instance of time?
>
> kutty
>
>
>

kutty_banerjee · July 27, 2004, 3:49pm

apis for profiling. can you name something that i can search up on for
profiling?

kutty
“Don Burn” wrote in message news:xxxxx@ntdev…
> No, there are API’s for profiling, but there is no API for kernel
debugging
> which is what the equivalent in user mode is.
>
>
> –
> Don Burn (MVP, Windows DDK)
> Windows 2k/XP/2k3 Filesystem and Driver Consulting
> Remove StopSpam from the email to reply
>
> “Kutty Banerjee” wrote in message news:xxxxx@ntdev…
> > Hi,
> > is there a documented way to read the program counter value from inside
> the
> > kernel at a certain instance of time?
> >
> > kutty
> >
> >
> >
>
>
>

Don_Burn_1 · July 27, 2004, 3:58pm

Find a copy of Gray Nebbett’s “Windows NT/2000 Native API Reference” there
are a set of calls, ZwCreateProfile,
ZwStartProfile,ZwStopProfile,ZwSetIntervalProfile that do the work. The
book even gives some sample code for profiling the kernel.

–
Don Burn (MVP, Windows DDK)
Windows 2k/XP/2k3 Filesystem and Driver Consulting

“Kutty Banerjee” wrote in message news:xxxxx@ntdev…
> apis for profiling. can you name something that i can search up on for
> profiling?
>
> kutty
> “Don Burn” wrote in message news:xxxxx@ntdev…
> > No, there are API’s for profiling, but there is no API for kernel
> debugging
> > which is what the equivalent in user mode is.
> >
> >
> > –
> > Don Burn (MVP, Windows DDK)
> > Windows 2k/XP/2k3 Filesystem and Driver Consulting
> > Remove StopSpam from the email to reply
> >
> > “Kutty Banerjee” wrote in message news:xxxxx@ntdev…
> > > Hi,
> > > is there a documented way to read the program counter value from
inside
> > the
> > > kernel at a certain instance of time?
> > >
> > > kutty
> > >
> > >
> > >
> >
> >
> >
>
>
>