osloader!BdInitDebugger函数的第一次调用--NTLDR源代码分析--NTLDR源代码分析可以调试----全网首发

Microsoft (R) Windows Debugger Version 10.0.19041.1 AMD64
Copyright (c) Microsoft Corporation. All rights reserved.

Opened \\\\.\\com3
Waiting to reconnect...
BD: Boot Debugger Initialized
BD: osloader.exe base address 00400000
Connected to Windows Boot Debugger 3790 x86 compatible target at (Wed Jul 30 23:35:50.261 2025 (UTC + 8:00)), ptr64 FALSE
Kernel Debugger connection established.

************* Path validation summary **************
Response                         Time (ms)     Location
OK                                             D:\\symbols.pri\\retail
Symbol search path is: D:\\symbols.pri\\retail
Executable search path is:
Module List address is NULL - debugger not initialized properly.
WARNING: .reload failed, module list may be incomplete
KdDebuggerData.KernBase < SystemRangeStart
ReadVirtual() failed in GetXStateConfiguration() first read attempt (error == 997.)
Windows Boot Debugger Kernel Version 3790 UP Checked x86 compatible
Machine Name:
Primary image base = 0x00000000 Loaded module list = 0x00000000
System Uptime: not available

************* Path validation summary **************
Response                         Time (ms)     Location
OK                                             D:\\symbols.pri\\retail
Break instruction exception - code 80000003 (first chance)
*** WARNING: Unable to verify timestamp for osloader.exe
osloader!DbgBreakPoint:
004239ec cc              int     3
kd> KC
 #
00 osloader!DbgBreakPoint
01 osloader!BdInitDebugger
02 osloader!MempCopyGdt
03 osloader!InitializeMemorySubsystem
04 osloader!DoGlobalInitialization
05 osloader!NtProcessStartup
WARNING: Frame IP not in any known module. Following frames may be wrong.
06 0x0
07 osloader!`string\'
08 0x0