用windbg下条件断点, 断点断下来后提示语法错误, 请大牛指点
一天了都在搞这个问题,windbg文档翻了n遍还没找到答案,里面也没有个例子...
kd> bl
0 e f9748e01 0001 (0001) Ntfs!NtfsFsdCreate "r $t1=poi(poi(poi(esp+8)+64)+34); as /mu $FileName $t1; .block{ .if ($spat(\"${$FileName}\",\"*a.txt\")) { ad ${/v:$FileName} } .else { ad ${/v:$FileName} ; gc } }"
kd> g
Syntax error at '("\RECYCLER\S-1-5-21-1123561945-362288127-725345543-500\","*a.txt")) { ad ${/v:$FileName} } .else { ad ${/v:$FileName} ; gc } '
该来该去有时候还有这样提示
Numeric expression missing from 'and Settings\All Users\Application Data\VMware\VMware Tools\ $t1;'
还有强制转换伪寄存器数据类型一节中文档上说:
A pseudo-register is always typed as an integer, unless you use the ? switch together with the r command. If you use this switch, the pseudo-register acquires the type of whatever is assigned to it. For example, the following command assigns the UNICODE_STRING** type and the 0x0012FFBC value to $t15.
