windbg命令示例

Device Tree 那的顯示僅僅是個名字而已 ( 它們都是 _DEVICE_OBJECT )，我還是喜歡 Windbg 的原汁原味：

0: kd> !drvobj atapi
Driver object (89de2b60) is for:
 \Driver\atapi
Driver Extension List: (id , addr)
(b9f1fcd8 89dea4f8)  
Device Object list:
89da8940  89db8940  89dc5030  89daa030
89db9030  

0: kd> !devstack 89db8940
  !DevObj   !DrvObj            !DevExt   ObjectName
  89be33f0  \Driver\redbook    89be34a8  
  89be2030  \Driver\Cdrom      89be20e8  CdRom0
  89be37b0  \Driver\Imapi      89be3868  
  89e59030  \Driver\ACPI       89dfd6a8  00000093
> 89db8940  \Driver\atapi      89db89f8  IdeDeviceP0T0L0-3
!DevNode 89e592e0 :
  DeviceInst is ""
  ServiceName is ""

0: kd> !devobj 89be2030
Device object (89be2030) is for:
 CdRom0 \Driver\Cdrom DriverObject 89be5218
Current Irp 00000000 RefCount 2 Type 00000002 Flags 00002050
Vpb 89d6be90 DevExt 89be20e8 DevObjExt 89be2668 Dope 89ddf9c8 
ExtensionFlags (0000000000)  
AttachedDevice (Upper) 89be33f0 \Driver\redbook
AttachedTo (Lower) 89be37b0 \Driver\Imapi
Device queue is not busy.

0: kd> dt _VPB 89d6be90
ntdll!_VPB
   +0x000 Type             : 10
   +0x002 Size             : 88
   +0x004 Flags            : 1
   +0x006 VolumeLabelLength : 0x18
   +0x008 DeviceObject     : 0x89afcda8 _DEVICE_OBJECT
   +0x00c RealDevice       : 0x89be2030 _DEVICE_OBJECT
   +0x010 SerialNumber     : 0x3b6761ae
   +0x014 ReferenceCount   : 3
   +0x018 VolumeLabel      : [32] 0x39

0: kd> !devobj 89afcda8
Device object (89afcda8) is for:
  \FileSystem\Cdfs DriverObject 89a5a298
Current Irp 00000000 RefCount 0 Type 00000003 Flags 00000000
DevExt 89afce60 DevObjExt 89afcfd0 
ExtensionFlags (0000000000)  
AttachedDevice (Upper) 89a3e2a0 \FileSystem\Sfilter
Device queue is not busy.

0: kd> !devstack 89afcda8
  !DevObj   !DrvObj            !DevExt   ObjectName
  89655c98  \Driver\SymEvent   89655d50  
  89a3e2a0  \FileSystem\Sfilter89a3e358  
> 89afcda8  \FileSystem\Cdfs   89afce60