對於驅動程式的安裝工具,司徒目前使用NuMega公司製作的EzDriverInstaller,將main.sys和main.inf放在同一個目錄並執行EzDriverInstaller,選擇File => Open...(開啟main.inf檔案),接著按Add New Device就可以在DbgView上面看到輸出訊息
Device Manager
Device Object
參考資訊:
https://wasm.in/
http://four-f.narod.ru/
https://github.com/steward-fu/ddk
main.cpp
#define VDW_MAIN
#define DRIVER_FUNCTION_PNP
#define DRIVER_FUNCTION_UNLOAD
#define DRIVER_FUNCTION_ADD_DEVICE
#include <vdw.h>
class MyDevice : public KPnpDevice
{
SAFE_DESTRUCTORS
public:
MyDevice(PDEVICE_OBJECT PDO);
DEVMEMBER_DISPATCHERS
NTSTATUS OnRemoveDevice(KIrp pIrp) const;
NTSTATUS DefaultPnp(KIrp pIrp);
NTSTATUS DefaultPower(KIrp pIrp);
protected:
KPnpLowerDevice m_pDevObj;
};
class MyDriver : public KDriver
{
SAFE_DESTRUCTORS
public:
NTSTATUS DriverEntry(PUNICODE_STRING RegistryPath);
NTSTATUS AddDevice(PDEVICE_OBJECT PDO);
VOID Unload(void);
};
MyDevice::MyDevice(PDEVICE_OBJECT PDO) : KPnpDevice(PDO, L"MyDriver", FILE_DEVICE_UNKNOWN)
{
m_pDevObj.Initialize(this, PDO);
SetLowerDevice(&m_pDevObj);
SetPnpPolicy();
}
NTSTATUS MyDevice::OnRemoveDevice(KIrp pIrp) const
{
return STATUS_SUCCESS;
}
NTSTATUS MyDevice::DefaultPnp(KIrp pIrp)
{
pIrp.ForceReuseOfCurrentStackLocationInCalldown();
return m_pDevObj.PnpCall(this, pIrp);
}
NTSTATUS MyDevice::DefaultPower(KIrp pIrp)
{
return STATUS_SUCCESS;
}
KDebugOnlyTrace T("");
DECLARE_DRIVER_CLASS(MyDriver, NULL)
NTSTATUS MyDriver::DriverEntry(PUNICODE_STRING RegistryPath)
{
T << "Hello, world!";
return STATUS_SUCCESS;
}
NTSTATUS MyDriver::AddDevice(PDEVICE_OBJECT PDO)
{
MyDevice *t = new (NonPagedPool) MyDevice(PDO);
return STATUS_SUCCESS;
}
VOID MyDriver::Unload(void)
{
KDriver::Unload();
}
sources
TARGETNAME=main TARGETTYPE=DRIVER TARGETPATH=obj DRIVERTYPE=WDM TARGETLIBS=$(DRIVERWORKS)\lib\*\checked\vdw_wdm.lib INCLUDES=$(DRIVERWORKS)\include;$(DRIVERWORKS)\source;C:\winddk\inc\ddk\wdm\wxp C_DEFINES=-DNTVERSION='WDM' LINK_LIB_IGNORE=4210 SOURCES=main.cpp
makefile
!INCLUDE $(NTMAKEENV)\makefile.def
main.inf
[Version] Signature=$CHICAGO$ Class=Unknown Provider=%MFGNAME% DriverVer=8/21/2019,1.0.0.0 [Manufacturer] %MFGNAME%=DeviceList [DeviceList] %DESCRIPTION%=DriverInstall, *MyDriver [DestinationDirs] DefaultDestDir=10,System32\Drivers [SourceDisksFiles] main.sys=1,,, [SourceDisksNames] 1=%INSTDISK%,,, [DriverInstall.NT] CopyFiles=DriverCopyFiles [DriverCopyFiles] main.sys,,,2 [DriverInstall.NT.Services] AddService=FILEIO,2,DriverService [DriverService] ServiceType=1 StartType=3 ErrorControl=1 ServiceBinary=%10%\system32\drivers\main.sys [DriverInstall.NT.HW] AddReg=DriverHwAddReg [DriverHwAddReg] HKR,,SampleInfo,,"" [DriverInstall] AddReg=DriverAddReg CopyFiles=DriverCopyFiles [DriverAddReg] HKR,,DevLoader,,*ntkern HKR,,NTMPDriver,,main.sys [DriverInstall.HW] AddReg=DriverHwAddReg [Strings] MFGNAME="MyDriver" INSTDISK="MyDriver Disc" DESCRIPTION="MyDriver"
編譯
c:\winddk\bin\setenv.bat c:\winddk chk build -cefw
在開始安裝驅動程式之前,需要先下載除錯工具,讓驅動程式的Debug訊息可以顯示在除錯工具上面,目前最佳的Debug輸出訊息工具是DbgView,該公司目前已經被Microsoft併購,所以可以從Microsoft網站下載,下載完後執行DbgView並將Capture => Capture Kernel選項打勾,接著重啟DbgView
對於驅動程式的安裝工具,司徒目前使用NuMega公司製作的EzDriverInstaller,將main.sys和main.inf放在同一個目錄並執行EzDriverInstaller,選擇File => Open...(開啟main.inf檔案),接著按Add New Device就可以在DbgView上面看到輸出訊息
Device Manager
Device Object