zjgcjy/pykd
1
0
Fork 0
mirror of https://github.com/ivellioscolin/pykd.git synced 2025-04-21 04:13:22 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

git-svn-id: https://pykd.svn.codeplex.com/svn@64017 9b283d60-5439-405e-af05-b73fd8c4d996

Browse Source
This commit is contained in:
SND\kernelnet_cp 2011-04-15 06:18:25 +00:00
parent de82f9d737
commit 1b715fbafa
3 changed files with 28 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
changelog
View File

@ -1,3 +1,21 @@
version 0.0.17 15/04/2011
[+] added: isDumpAnalyzing function. Check if it is a dump analyzing or live debuggiv
[+] added : loadChars routine. Load raw buffer.
[+] added : docstrings for all functions and classes
[+] added : checksum() and timestamp() methods for dbgModuleClass
[+] added : callbacks for bp class ( breakpoint )
[~] removed : isSessionStart() function
[~] updated : typedVarList can parse lists with LIST_ENTRY and lists with links pointing to the head of the next element
[!] fixed : issue 8470 ( python.exe crashes after first pykd call )
[!] fixed : issue 8614 ( go() works incorrectly while process is terminating )
[!] fixed : issue 8499 ( !py command crashs with wrong script's path )
[!] fixed : issue 8578 ( findModule returns None for WOW64 process )
[!] fixed : issue 8493 ( loadPtrs returns dict instead list )
[!] fixed : issue 8469 ( dprintln does not work in console mode )
version 0.0.16 03/03/2011 version 0.0.16 03/03/2011
[+] added : isValid() routine; it validates virtual address [+] added : isValid() routine; it validates virtual address
[+] added : image() and pdb() method for dbgModuleClass class. They return paths to pdb and image files. [+] added : image() and pdb() method for dbgModuleClass class. They return paths to pdb and image files.

8
pykd/pykd.rc
View File

@ -53,8 +53,8 @@ END
// //
VS_VERSION_INFO VERSIONINFO VS_VERSION_INFO VERSIONINFO
FILEVERSION 0,0,16,0 FILEVERSION 0,0,17,0
PRODUCTVERSION 0,0,16,0 PRODUCTVERSION 0,0,17,0
FILEFLAGSMASK 0x17L FILEFLAGSMASK 0x17L
#ifdef _DEBUG #ifdef _DEBUG
FILEFLAGS 0x1L FILEFLAGS 0x1L
@ -70,11 +70,11 @@ BEGIN
BLOCK "041904b0" BLOCK "041904b0"
BEGIN BEGIN
VALUE "FileDescription", "pykd - python extension for windbg" VALUE "FileDescription", "pykd - python extension for windbg"
VALUE "FileVersion", "0, 0, 16, 0" VALUE "FileVersion", "0, 0, 17, 0"
VALUE "InternalName", "pykd" VALUE "InternalName", "pykd"
VALUE "OriginalFilename", "pykd.dll" VALUE "OriginalFilename", "pykd.dll"
VALUE "ProductName", "pykd - python extension for windbg" VALUE "ProductName", "pykd - python extension for windbg"
VALUE "ProductVersion", "0, 0, 16, 0" VALUE "ProductVersion", "0, 0, 17, 0"
END END
END END
BLOCK "VarFileInfo" BLOCK "VarFileInfo"

9
samples/break.py
View File

@ -16,8 +16,7 @@ def bpCallback():
dprintln( "NtCreateFile: " + name ) dprintln( "NtCreateFile: " + name )
return DEBUG_STATUS_NO_CHANGE return DEBUG_STATUS_GO_HANDLED
@ -25,15 +24,17 @@ if not isWindbgExt():
startProcess("notepad.exe") startProcess("notepad.exe")
if not isDumpAnalyzing() and not isKernelDebugging(): if not isDumpAnalyzing() and not isKernelDebugging():
nt = loadModule("ntdll") nt = loadModule("ntdll")
b1 = bp( nt.NtCreateFile, bpCallback ) b1 = bp( nt.NtCreateFile, bpCallback )
while go(): pass # wait for user break, exceptions or process exit
go()
dprintln( "exit process" ) dprintln( "stopped" )
else: else: