几个实用的WinDBG命令

  几个实用的WinDBG命令
WinDbg单独下载地址http://www.windbg.org/
kn command

---

dump current stack
1: kd> kn  # ChildEBP RetAddr 00 81e33c6c 81898d7c nt!RtlpBreakWithStatusInstruction 01 81e33c74 81898d2e nt!KdCheckForDebugBreak+0x22 02 81e33d20 8183ddd5 nt!KeUpdateRunTime+0x270 03 81e33d50 8187dba2 nt!PopIdleDefaultHandler+0x239 04 81e33d54 00000000 nt!KiIdleLoop+0xa
.frame N command

---

where N is the frame number to navigate to that frame
1: kd> .frame 3 03 81e33d50 8187dba2 nt!PopIdleDefaultHandler+0x239 1: kd> dv [...]
f+ and .f- command

---

1: kd> .f- 02 81e33d20 8183ddd5 nt!KeUpdateRunTime+0x270 1: kd> .f+ 03 81e33d50 8187dba2 nt!PopIdleDefaultHandler+0x239
set as default debugger

---

Go into WinDbg directory (Debugging Tools for Windows) and type
windbg -I
use microsoft debug info

---

f:\BusObjSymbols;SRV*f:\localsymbols*http://msdl.microsoft.com/download/symbols
sombols其他用法可参见http://support.microsoft.com/kb/311503