tags:

views:

61

answers:

2
+1  Q: 

Call Tracing Windows Driver

I wish to be able to record, in real time, the activity of a kernel mode driver (I have the full symbols for it). It's a HID miniclass driver. I wish to record the execution of calls in this driver (stacktraces every time an IRP enters and leaves the driver).

Is this possible (maybe with EWT and/or WPT)?

+1  A: 

If you need to monitor only IRPs you can use Irp Tracker utility.

Sergius  2009-12-03 07:25:24
Not really what I want, but this seems to be an awesome tool. Very useful, thanks! Too bad it seems to be 32 bit only.
Aram Hăvărneanu  2009-12-03 10:11:25
+1  A: 

How about ETW tracing? MS uses it all over inside windows. It will give you call-stacks also.

Here is the link

Naveen  2010-04-06 13:34:39
ETW tracing seems to be what I want, but the complexity requires a SMP brain to use it effectively. I finished that project long time ago, but I should learn to use ETW for my current projects!
Aram Hăvărneanu  2010-04-06 14:21:58
I have been using ETW for some of the code I write and I have seen great benefits of using it.
Naveen  2010-04-06 14:38:09

related questions

any good tool for makefile generation?
How do you pass a function as a parameter in C?
Where should a veteran C programmer start in order to master Java ?
Any good book on best practice and guidelines in developing a SDK in C?
How do you determine the size of a file in C?
Decoding printf statements in C (Printf Primer)
Shift operator in C
How to avoid redefining VERSION, PACKAGE, etc.
Alpha blending sprites in Nintendo DS Homebrew
When should I use type abstraction in embedded systems
How to implement continuations?
What are the barriers to understanding pointers and what can be done to overcome them?
Anyone have experience creating a shared library in MATLAB?
String.indexOf function in C
Passing multidimensional arrays as function arguments in C
C/C++ library for reading MIDI signals from a USB MIDI device
Choosing a static code analysis tool
How do you printf an unsigned long long int?
Good STL-like library for C.
Rockbox audio format
Why am I getting a malloc: double free error with realloc()?
Should I learn C?
GTK implementation of MessageBox
Is gettimeofday() guaranteed to be of microsecond resolution?
How to use the C socket API in C++ on z/OS