📄 deviceextension.txt

📁 驱动开发过程中要注意的一些要点以及一些基本资料

💻 TXT

字号:

typedef struct _DEVICE_EXTENSION 
{
    PDEVICE_OBJECT DeviceObject;
    HANDLE  ProcessHandle;
    PKEVENT ProcessEvent;
    HANDLE  ThreadHandle;
    PKEVENT ThreadEvent;
    HANDLE  ImageHandle;
    PKEVENT ImageEvent;

    HANDLE  PParentId;
    HANDLE  PProcessId;
    BOOLEAN PCreate;

    HANDLE  TProcessId;
    HANDLE  TThreadId;
    BOOLEAN TCreate;

    UCHAR   ImageNameA[255];
    HANDLE  IProcessId;
    IMAGE_INFO ImageInfo;
} DEVICE_EXTENSION, *PDEVICE_EXTENSION;

PDEVICE_OBJECT gpDeviceObject;

NTSTATUS DriverEntry(IN PDRIVER_OBJECT DriverObject, 
                     IN PUNICODE_STRING RegistryPath)
{
    PDEVICE_OBJECT    pDeviceObject;
    PDEVICE_EXTENSION extension;
// Create and initialize device object
    ntStatus = IoCreateDevice(DriverObject,
                              sizeof(DEVICE_EXTENSION),
                              &uszDriverString,
                              FILE_DEVICE_UNKNOWN,
                              0,
                              FALSE,
                              &pDeviceObject);
	extension = pDeviceObject->DeviceExtension;
	gpDeviceObject = pDeviceObject;
	RtlInitUnicodeString(&uszProcessEventString, 
                         L"\\BaseNamedObjects\\ProcViewProcessEvent");
    	extension->ProcessEvent = IoCreateNotificationEvent(&uszProcessEventString,&extension->ProcessHandle);

	KeClearEvent(extension->ProcessEvent);
  }

VOID ProcViewProcessCallback(IN HANDLE ParentId, IN HANDLE ProcessId, 
                             IN BOOLEAN Create)
{
    PDEVICE_EXTENSION extension;
// Assign extension variable...
    extension = gpDeviceObject->DeviceExtension;

KeSetEvent(extension->ProcessEvent, 0, FALSE);
    KeClearEvent(extension->ProcessEvent);
}

💿 文件大小 91 K

👤 上传用户 SAMDUK

📂 所属分类其他书籍

🏷️ 相关标签

#驱动开发 #过程

⌨️ 快捷键说明

复制代码 Ctrl + C

搜索代码 Ctrl + F

全屏模式 F11

切换主题 Ctrl + Shift + D

显示快捷键 ?

增大字号 Ctrl + =

减小字号 Ctrl + -