Handling IRPs 3: Passing an IRP to the Next Lower Driver

最新推荐文章于 2016-06-27 11:25:26 发布
最新推荐文章于 2016-06-27 11:25:26 发布
阅读量680 收藏
点赞数
分类专栏: 驱动开发
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/sunboyhch/article/details/9102297
版权

Passing an IRP to the next lower driver (also called forwarding an IRP) is the IRP equivalent of a subroutine call. When a driver forwards an IRP, it must populate the next I/O stack location with parameters, advance the IRP stack pointer, and invoke the next driver’s dispatch routine. In essence, the driver is calling down the IRP stack.

To pass an IRP, a driver typically takes the following steps:

1.   Set up the parameters for the next I/O stack location. The driver can either:

·         Call the IoGetNextIrpStackLocation routine to get a pointer to the next I/O stack location, and then copy the required parameters to that location.

·         Call the IoCopyCurrentIrpStackLocationToNext routine (if the driver sets an IoCompletion routine in step 2), or the IoSkipCurrentIrpStackLocation routine (if the driver does not set an IoCompletion routine in step 2) to pass the same parameters used for the current location.

Note: Drivers must not use the RtlCopyMemory routine to copy the current parameters. This routine copies the pointer to the current driver’s IoCompletion routine, thus causing the IoCompletion routine to be called more than once.

2.   Set an IoCompletion routine for post-processing, if necessary, by calling the IoSetCompletionRoutine routine. If the driver sets an IoCompletion routine, it must call IoCopyCurrentIrpStackLocationToNext in step 1.

3.   Pass the request to the next driver by calling the IoCallDriver routine. This routine automatically advances the IRP stack pointer and invokes the next driver’s dispatch routine.

After a driver passes the IRP to the next driver, it no longer owns the IRP and must not attempt to access it. The IRP could be freed or completed by another driver or on another thread. Attempting to access an IRP in such a situation can cause a system crash. If the driver requires access to the IRP after passing it down the stack, the driver must set an IoCompletion routine. When the I/O Manager calls the IoCompletion routine, the driver regains ownership of the IRP for the duration of the IoCompletion routine. Thus the IoCompletion routine can access the fields in the IRP. 

If the driver’s dispatch routine must also process the IRP after lower drivers have completed it, the IoCompletion routine must return STATUS_MORE_PROCESSING_REQUIRED, which returns ownership of the IRP to the dispatch routine. As a result, the I/O Manager stops processing the IRP and leaves the ultimate completion of the IRP to the dispatch routine. The dispatch routine can later call IoCompleteRequest to finish completion or can mark the IRP pending for further processing.

centos-com
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
C/C++ 实现文件透明加解密
尹成的技术博客
11-05 1万+
    今日遇见一个开超市的朋友,真没想到在高校开超市一个月可以达到月净利润50K,相比起我们程序员的工资,真是不可同日而语,这个世道啊,真是做程序员不如经商开超市,我们高科技的从业者,真是造原子弹不如卖茶叶蛋。请见代码详细注释   //  修复涉及后视列表的Win2K兼容性//  Fixes Win2K compatibility regarding lookaside
Handling IRPs.pdf
11-10
Handling IRPs.pdf
DDK样例toaster分析(2)
lixiangminghate的专栏
06-18 1927
前一篇 DDK样例toaster分析(1) 主要讨论了toaster样例中的busenum总线驱动。本篇将讨论从总线驱动过渡到功能驱动,也就是toaster.sys。     成功安装busenum.sys后,运行toaster/exe/enum目录下的enum程序模拟一个toaster设备插入: enum -p 1    前面busenum.sys!Bus_AddDevice创建Fdo的同时
Windows驱动_文件系统过滤驱动之九
Z18_28_19的专栏
08-22 1829
越是现在这个时候,就越应该加油,我不应该昏昏的过,我不想以后后面的自己跟现在一样,我不应该跟别人一样。吃得苦上苦,方为人上人,我应该跟之前一样。现在蛮好,不受别人的重视,其实也无所谓,我正想要这样的时间,宝贵的时间,可以自己做点东西出来。还是千万不要浮躁,还是用之前自己喜欢的那句话吧。总有一天,我也会破解成蝶,飞向天空。           文件系统过滤驱动的派遣例程:
What Every Driver Writer Needs to Know
lionzl的专栏
05-06 734
Handling IRPs: What Every Driver Writer Needs to Know  Microsoft CorporationJuly 2004The current version of this information is maintained at http://www.microsoft.com/whdc/driver/kernel/IR
(转载)ms 的 Filter Driver Development Guide
无限天空
11-01 3032
File System FilTer ManagerFilter Driver Development Guide   SummaryThis specification includes, but is not limited to, the following topic areas:·          Description of the new File
Locks, Deadlocks, and Synchronization
求索
06-27 514
Locks, Deadlocks, and Synchronization   Microsoft Corporation June 2004 The current version of this information is maintained at http://www.microsoft.com/whdc/driver/kernel/locks.mspx. Applie
IFS FAQ
keilsi的专栏
06-29 1471
IFS FAQ Q1 How difficult is it to port a Windows 9x based file system or file system filter driver to Windows NT/2000/XP?Q2 Is there a WDM model for file systems or file system filter drivers?Q3
IFS FAQ(转自OSR)
人是会思考的一棵苇草
08-24 3661
IFS FAQ Q1 How difficult is it to port a Windows 9x based file system or file system filter driver to Windows NT/2000/XP?Q2 Is there a WDM model for file systems or file system filter drivers?Q3 H
文件透明加解密的源代码
it技术学习
03-13 2284
//  修复涉及后视列表的Win2K兼容性 //  Fixes Win2K compatibility regarding lookaside lists. // #ifndef _WIN2K_COMPAT_SLIST_USAGE // Add content(增加内容) #define _WIN2K_COMPAT_SLIST_USAGE  #endif #includ
IRPs.rar_IRP
最新发布
09-20
IRP手册,理解IRP,操作IRP英文原版,不过网上有中文翻译版,请自己找
Handling IRPs.doc
11-10
Handling IRPs.doc
英飞凌科技推出一款完全整合的PMIC解决方案“IRPS5401”
01-20
IRPS5401是一款完全整合的PMIC解决方案,采用7mm x 7mm 56 pin QFN小型封装,以单一装置取代多个稳压器,非常适合用于目前与未来的高密度ASIC与FPGA应用。  英飞凌科技(Infineon Technologies)推出IRPS5401五输出...
wdk irp specification
06-10
Because the data structure serves two purposes, an IRP can be defined as: • a container for an I/O request – or – • a thread-independent call stack <br>Considering IRPs from these two...
Couldn't resolve error 的问题
静故了群动
01-14 4765
1. 若符号存在D:\pathSymbols,输入命令: .sympath SRV*d:\pathSymbols*http://msdl.microsoft.com/download/symbols 2 .[使用!sym noisy命令希望WinDBG在获得符号的时候取得更多的信息,接着使用!lmi命令让WinDBG查看Windows的ntoskrnl模块。然后使用.reload /f
windebug 指令详解
静故了群动
07-17 2529
1. 线程相关 线程命令是以~开始,后面跟线程id(不是tid,是windbg从0开始的一个编号),或者.,#,*等 ~. 表示当前线程 ~# 表示异常或者产生调试事件的线程 ~* 表示所有线程 ~1 表示一号线程 ~2 s 表示选择2号线程作为当前线程 ~3 f 冻结三号线程 ~3 u 解冻三号线程 ~2 n 挂起二号线程 ~2 m 恢复二线程 线程指令还可以与其他指令混合
windbg 和 vmware 单机调试步骤
静故了群动
01-11 1131
转载请注明出处:http://blog.csdn.net/sunboyhch 1 先在vmware里选择调试模式让虚拟机停止,等待windbg发出 g命令。 2 打开windbg,出现断点提示,输入g,虚拟机继续运行。 3 编辑你要调试的源代码,在你需要调试的代码中添加硬断点。如果不添加硬断点,将没有办法进入所调试的程序中。在你需要调试的程序中加入以下代码:  DbgBre
引入内核模式安全字符串函数
静故了群动
01-15 1077
原文地址 http://www.osronline.com/ddkx/kmarch/other_0vfr.htm 一、在内核驱动代码中引入安全字符串函数     有两种方式可以引入安全字符串函数:     如果代码需要在系统为Windows XP及以后版本运行时,可以使用内联的方式;     如果代码需要运行在早于Windows XP时,则必须使用链接库的方式。
Handling IRPs 7: IoCompletion Routines and Asynchronous I/O Responses
静故了群动
06-15 1071
IoCompletion Routines and Asynchronous I/O Responses If a driver sets an IoCompletion routine for an IRP, the IoCompletion routine can check the value of the Irp->PendingReturned field to determine

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值