none
Tool to view the DEBUGP() in the NDIS miniport driver RRS feed

  • Question

  • Hi Experts,

    How can I capture the debug prints in the Virtual NDIS Miniport driver sample ?

    The sample driver link is https://code.msdn.microsoft.com/windowshardware/NDIS-Virtual-Miniport-58d27f0f#content

    I went through WPP and Windbg but not able to relate it..


    lyf4sci

    Saturday, October 18, 2014 1:56 PM

Answers

  • Have you tried TraceView?  The driver assuming you built it correctly supports WPP tracing.  Using TraceView and pointing it to the pdb file of you sample is the easiest way to go.


    Don Burn Windows Filesystem and Driver Consulting Website: http://www.windrvr.com

    Saturday, October 18, 2014 2:03 PM
  • For more generic NDIS tracing, look here

     -Brian


    Azius Developer Training www.azius.com Windows device driver, internals, security, & forensics training and consulting. Blog at www.azius.com/blog

    Saturday, October 18, 2014 7:39 PM
    Moderator

All replies

  • Have you tried TraceView?  The driver assuming you built it correctly supports WPP tracing.  Using TraceView and pointing it to the pdb file of you sample is the easiest way to go.


    Don Burn Windows Filesystem and Driver Consulting Website: http://www.windrvr.com

    Saturday, October 18, 2014 2:03 PM
  • For more generic NDIS tracing, look here

     -Brian


    Azius Developer Training www.azius.com Windows device driver, internals, security, & forensics training and consulting. Blog at www.azius.com/blog

    Saturday, October 18, 2014 7:39 PM
    Moderator
  • Hi Don,

    Thanks for the reply.

    I am able to invoke traceview and tried to point GUID but I am not able to point the .tmf file. When I simply point to the some random path for tmf file path and sarted the capture session but the trace file(format is "Windows Performance Analyzer Trace File") remains empty.

    Where could we find the .pdb file format for the installed virtual driver in the target machine ?


    lyf4sci

    Sunday, October 19, 2014 2:00 PM
  • You should be able to copy the PDB file from the development system where you built it to the test system, then just point Traceview to where you copied it.


    Don Burn Windows Filesystem and Driver Consulting Website: http://www.windrvr.com

    Sunday, October 19, 2014 2:05 PM
  • Hi Don,

    Thanks for the help.

    When I try to load the same PDB file the error message appears as "PDB file does not contain the provider information".


    lyf4sci

    Sunday, October 19, 2014 6:30 PM
  • Hi Don,

    Also I tried to convert pdb to tmf using the tool "tracepdb.exe" the error message is  displayed as

    tracepdb: info BNP0000: WPPFMT No Trace entries found in <driver.pdb>


    lyf4sci

    Sunday, October 19, 2014 6:50 PM
  • Check your project settings to see that the trace preprocessor is run.


    Don Burn Windows Filesystem and Driver Consulting Website: http://www.windrvr.com

    Sunday, October 19, 2014 7:34 PM
  • Yeah Don it is in trace pre-processor run is selected as yes.

    lyf4sci

    Sunday, October 19, 2014 9:25 PM
  • Hi Donald,

    Sorry I just chose the wrong PDB file. Now its up and running.

    Thank you so much for your reply. Its been pleasure working with you.


    lyf4sci

    Sunday, October 19, 2014 9:49 PM