Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 WDM (Windows Driver Model) Y.C. Hua 2005-04-29.

Published byElfrieda Richardson Modified over 9 years ago

Similar presentations

Presentation on theme: "1 WDM (Windows Driver Model) Y.C. Hua 2005-04-29."— Presentation transcript:

1 1 WDM (Windows Driver Model) Y.C. Hua 2005-04-29

2 2 Requirements Familiar with c, c++ programming Somewhat familiar with windows programming

3 3 Driver Model used on various OS NT4 KMD (Kernel Model Driver) Win95 VxD (Virtual Device Driver) Win98/Me VxD, WDM Win2000/XP KMD, WDM

4 4 Use driver to access hardware application User mode Kernel mode driver I/O portPhysical memory hardware

5 5 Driver building environment Visual studio 6 compiler, linker, editor Win98/Me/2000/XP DDK library, header file for driver

6 6 Driver loading Static load, boot-time load - Load driver when os booting - Win98/Me only Dynamic load, run-time load - Load driver when application open driver - Win2k/Xp can static or dynamic

7 7 Static load 1. Copy driver to \system32\drivers 98/Me/XP = c:\windows, 2k = c:\winnt 2. Add Registry key HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\TESTDRV 3. Add Registry value under added TESTDRV key ErrorControl = 1 (DWORD) Type = 1 (DWORD) Start = 1 (DWORD) 4. Restart computer

8 8 Service Only on win2k/xp. Service is a special program independent from multi-user session. It can be running before user login. 2 kind of service. Application service and driver service. Driver service is for dynamic load.

9 9 Application call driver main() { CreateDriverService(); // for dynamic load only HANDLE h=OpenDriver(); DeviceIoControl(h,,,); // ask driver do something CloseHandle(h); DeleteDriverService(); // for dynamic load only } Green color is Win32 API. Yellow color is sub function.

10 10 DeviceIoControl() BOOL DeviceIoControl( HANDLE hDevice, // in - handle to device DWORD dwIoControlCode, // in - operation control code LPVOID lpInBuffer, // in - input data buffer DWORD nInBufferSize, // in - size of input data buffer LPVOID lpOutBuffer, // out - output data buffer DWORD nOutBufferSize, // in - size of output data buffer LPDWORD lpBytesReturned, // out - byte count LPOVERLAPPED lpOverlapped // in - overlapped information ); Control code : ask driver to do different work Input buffer : data for driver Output buffer : result return from driver Bytes returned : result byte count return from driver

11 11 Prepare driver file makefile : same for all drivers sources driver source code

12 12 Build driver Launch Build Environment of DDK Change to the folder containing driver source files Type 'build'.

13 13 Launch build environment of DDK

14 14 Type ‘build’ command

15 15 Contains of sources TARGETNAME=TESTDRV TARGETTYPE=DRIVER DRIVERTYPE=WDM TARGETPATH=. SOURCES = prog.cpp Check documents or samples of DDK for more detailed information.

16 16 Control code in devio.h #define CTL_CODE( DeviceType,Function,Method,Access ) \ (((DeviceType) << 16) | ((Access) << 14) | \ ((Function) << 2) | (Method)) #define DEVIO_CallInt15 CTL_CODE( \ FILE_DEVICE_UNKNOWN, \ 0x801, \ METHOD_BUFFERED, \ FILE_ANY_ACCESS) #define DEVIO_Test CTL_CODE( \ FILE_DEVICE_UNKNOWN, \ 0x802, \ METHOD_BUFFERED, \ FILE_ANY_ACCESS)

17 17 DriverEntry (main of the driver) NTSTATUS DriverEntry(IN PDRIVER_OBJECT DriverObject, IN PUNICODE_STRING RegistryPath) { 1. Create device 2. Create symbolic link 3. Set major function }

18 18 Create device/symbolic link in DriverEntry UNICODE_STRING uniNtNameString; UNICODE_STRING uniWin32NameString; // create device RtlInitUnicodeString(&uniNtNameString, L"\\Device\\TESTDRV"); IoCreateDevice(DriverObject, 0, &uniNtNameString, FILE_DEVICE_UNKNOWN, 0, FALSE, &deviceObject); // create symbolic link RtlInitUnicodeString(&uniWin32NameString, L"\\DosDevices\\TESTDRV"); IoCreateSymbolicLink(&uniWin32NameString, &uniNtNameString);

19 19 Set major function in DriverEntry // set major function DriverObject->MajorFunction[IRP_MJ_CREATE] = A::Create; DriverObject->MajorFunction[IRP_MJ_DEVICE_CONTROL] = A::DeviceControl; DriverObject->MajorFunction[IRP_MJ_CLOSE] = A::Close; DriverObject->DriverUnload = A::Unload; OS load driver  DriverEntry application open driver  A::Create application call DeviceIoControl  A::DeviceControl application close driver  A::Close OS unload driver  A::Unload

20 20 Unload function UNICODE_STRING uniWin32NameString; RtlInitUnicodeString(&uniWin32NameString, L"\\DosDevices\\TESTDRV"); IoDeleteSymbolicLink( &uniWin32NameString ); IoDeleteDevice( DriverObject->DeviceObject );

21 21 DeviceControl funciton NTSTATUS A::DeviceControl(IN PDEVICE_OBJECT fdo, IN PIRP irp) { PIO_STACK_LOCATION irpStack = IoGetCurrentIrpStackLocation(irp); ULONG ControlCode = irpStack->Parameters.DeviceIoControl.IoControlCode; ULONG InputLength = irpStack-> Parameters.DeviceIoControl.InputBufferLength; ULONG OutputLength = irpStack-> Parameters.DeviceIoControl.OutputBufferLength; PVOID WorkBuffer = (PVOID)irp->AssociatedIrp.SystemBuffer; switch(ControlCode) { case DEVIO_CallInt15: return DoCallInt15(irp); case DEVIO_Test: return DoTest(irp); default: irp->IoStatus.Status = STATUS_INVALID_DEVICE_REQUEST; irp->IoStatus.Information = 0; // return byte information IoCompleteRequest(irp,IO_NO_INCREMENT); return STATUS_INVALID_DEVICE_REQUEST; }

22 22 Buffer flow User modeKernel mode Application Input buffer Application Output buffer Driver Work buffer

23 23 Last Can not use run-time library in Driver The sample is in wdmprog.zip

Download ppt "1 WDM (Windows Driver Model) Y.C. Hua 2005-04-29."

Similar presentations

WDM 드라이버의 기본 구조 What is WDM?

WDM 드라이버의 기본 구조 What is WDM?
Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition Chapter 2: Operating-System Structures.

Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition Chapter 2: Operating-System Structures.
Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition, Chapter 2: Operating-System Structures.

Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition, Chapter 2: Operating-System Structures.
1 Module 11 Supporting Applications. 2  Overview Subsystems Overview Supporting Win32-based Applications Supporting MS-DOS-based and Win16-based Applications.

1 Module 11 Supporting Applications. 2  Overview Subsystems Overview Supporting Win32-based Applications Supporting MS-DOS-based and Win16-based Applications.
COSC 120 Computer Programming

COSC 120 Computer Programming
2: OS Structures 1 Jerry Breecher OPERATING SYSTEMS STRUCTURES.

2: OS Structures 1 Jerry Breecher OPERATING SYSTEMS STRUCTURES.
1 CE6130 現代作業系統核心 Modern Operating System Kernels 許 富 皓.

1 CE6130 現代作業系統核心 Modern Operating System Kernels 許 富 皓.
Operating Systems 1 K. Salah Module 1.2: Fundamental Concepts Interrupts System Calls.

Operating Systems 1 K. Salah Module 1.2: Fundamental Concepts Interrupts System Calls.
1 JMH Associates © 2004, All rights reserved Chapter 1 Getting Started with Win32/64.

1 JMH Associates © 2004, All rights reserved Chapter 1 Getting Started with Win32/64.
Starting Out with C++: Early Objects 5/e © 2006 Pearson Education. All Rights Reserved Starting Out with C++: Early Objects 5 th Edition Chapter 1 Introduction.

Starting Out with C++: Early Objects 5/e © 2006 Pearson Education. All Rights Reserved Starting Out with C++: Early Objects 5 th Edition Chapter 1 Introduction.
Chapter 6 - Implementing Processes, Threads and Resources Kris Hansen Shelby Davis Jeffery Brass 3/7/05 & 3/9/05 Kris Hansen Shelby Davis Jeffery Brass.

Chapter 6 - Implementing Processes, Threads and Resources Kris Hansen Shelby Davis Jeffery Brass 3/7/05 & 3/9/05 Kris Hansen Shelby Davis Jeffery Brass.
Operating Systems Concepts 1. A Computer Model An operating system has to deal with the fact that a computer is made up of a CPU, random access memory.

Operating Systems Concepts 1. A Computer Model An operating system has to deal with the fact that a computer is made up of a CPU, random access memory.
Chapter 3.1:Operating Systems Concepts 1. A Computer Model An operating system has to deal with the fact that a computer is made up of a CPU, random access.

Chapter 3.1:Operating Systems Concepts 1. A Computer Model An operating system has to deal with the fact that a computer is made up of a CPU, random access.
Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition, Chapter 2: Operating-System Structures.

Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition, Chapter 2: Operating-System Structures.
CSC 125 Introduction to C++ Programming Chapter 1 Introduction to Computers and Programming.

CSC 125 Introduction to C++ Programming Chapter 1 Introduction to Computers and Programming.
Computer Organization

Computer Organization
How to Add WMI Interfaces to SCSIPort and Storport Miniports

How to Add WMI Interfaces to SCSIPort and Storport Miniports
DOS  In the 1980s or early 1990s, the operating system that shipped with most PCs was a version of the Disk Operating System (DOS) created by Microsoft:

DOS  In the 1980s or early 1990s, the operating system that shipped with most PCs was a version of the Disk Operating System (DOS) created by Microsoft:
Computing and the Web Operating Systems. Overview n What is an Operating System n Booting the Computer n User Interfaces n Files and File Management n.

Computing and the Web Operating Systems. Overview n What is an Operating System n Booting the Computer n User Interfaces n Files and File Management n.
Chapter 2: Operating-System Structures. 2.2 Silberschatz, Galvin and Gagne ©2005 Operating System Concepts Chapter 2: Operating-System Structures Operating.

Chapter 2: Operating-System Structures. 2.2 Silberschatz, Galvin and Gagne ©2005 Operating System Concepts Chapter 2: Operating-System Structures Operating.

Similar presentations

Ads by Google