IOCTL_ATA_PASS_THROUGH的使用

最新推荐文章于 2024-07-15 15:25:30 发布
最新推荐文章于 2024-07-15 15:25:30 发布
阅读量5.7k 收藏 7
点赞数
分类专栏: # Winodws应用 文章标签: IOCTL
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/u011164819/article/details/52043678
版权
IOCTL_ATA_PASS_THROUGH的使用

控制代码功能:像ATA硬盘发送ATA指令。
IDE/ATA:接口,一个串行,一个并行,一般叫做IDE接口的硬盘和ATA接口的硬盘。
ATA指令:可以操作ATA硬盘的指令,
常用ATAPI指令介绍:
IDENTIFYDEVICE 0xec
READSECTOR 0x20
READMULTIPLE 0xc4
READDMA 0xc8
WRITESECTOR 0x30
WRITEMULTIPLE 0xc5
WRITEDMA 0xca
SETFEATURES 0xef 


typedef struct _ATA_PASS_THROUGH_EX {
USHORT Length;	
USHORT AtaFlags;
UCHAR PathId;
UCHAR TargetId;
UCHAR Lun;
UCHAR ReservedAsUchar;
ULONG DataTransferLength;
ULONG TimeOutValue;
ULONG ReservedAsUlong;
ULONG_PTR DataBufferOffset;
UCHAR PreviousTaskFile[8];
UCHAR CurrentTaskFile[8];
} ATA_PASS_THROUGH_EX, *PATA_PASS_THROUGH_EX;//对应的结构体

Length
Specifies the length in bytes of the ATA_PASS_THROUGH_EX structure.
结构体的大小
AtaFlags
Indicates the direction of data transfer and specifies the kind of operation to be performed. The value of this member must be some combination of the following flags:
ATA flags Meaning
ATA_FLAGS_DRDY_REQUIRED Wait for DRDY status from the device before sending the command to the device.
ATA_FLAGS_DATA_IN Read data from the device.
ATA_FLAGS_DATA_OUT Write data to the device.
ATA_FLAGS_48BIT_COMMAND The ATA command to be sent uses the 48-bit logical block address (LBA) feature set. When this flag is set, the contents of the PreviousTaskFile member in the ATA_PASS_THROUGH_EX structure should be valid.
ATA_FLAGS_USE_DMA Set the transfer mode to DMA.
ATA_FLAGS_NO_MULTIPLE Read single sector only.
 读写标志
PathId
Contains an integer that indicates the IDE port or bus for the request. This value is set by the port driver.
TargetId
Contains an integer that indicates the target device on the bus. This value is set by the port driver.
Lun
Indicates the logical unit number of the device. This value is set by the port driver.
这三个值会在分区位置显示。

ReservedAsUchar
Reserved for future use.
DataTransferLength
Indicates the size, in bytes, of the data buffer. If an underrun occurs, the miniport driver must update this member to the number of bytes that were actually transferred.
通信的数据的总大小
TimeOutValue
Indicates the number of seconds that are allowed for the request to execute before the OS-specific port driver determines that the request has timed out.
超时时间
ReservedAsUlong
Reserved for future use.
DataBufferOffset
Specifies the offset, in bytes, from the beginning of this structure to the data buffer.
|-----------------|-----------------------------                                                 这个值为开始数据到传送BUFF的大小,也就是结构体的大小。
     结构体的大小       需要传送的BUFF大小
PreviousTaskFile
Specifies the contents of the task file input registers prior to the current pass-through command. This member is not used when the ATA_FLAGS_48BIT_COMMAND flag is not set.
CurrentTaskFile
Specifies the content of the task file register on both input and output. On input, the array values in  CurrentTaskFile  map to the task file input registers in the following manner.
各个寄存器
Byte Input Register
0 Features register
1 Sector count register
2 Sector number register
3 Cylinder low register
4 Cylinder high register
5 Device/head register
6 Command register
7 Reserved
 
When  IOCTL_ATA_PASS_THROUGH  completes, the port driver updates  CurrentTaskFile  with the values that are present in the device's output registers at the completion of the embedded command. The array values in  CurrentTaskFile  correspond to the following task file output registers.
Byte Output Register
0 Error register
1 Sector count register
2 Sector number register
3 Cylinder low register
4 Cylinder high register
5 Device/head register
6 Status register
7 Reserved


#include "stdafx.h"
#include <windows.h>
#include <conio.h>
#include <stdio.h>
#include <tchar.h>
#include <winioctl.h>
#include <ntddscsi.h>


// 以CreateFile方式读取扇区开关
//#define SECTOR 

VOID __cdecl _tmain (INT Argc, _TCHAR *Argv[])
{
int i = 0;


HANDLE hDevice = CreateFile("\\\\.\\PhysicalDrive0", GENERIC_READ|GENERIC_WRITE, 
FILE_SHARE_READ | FILE_SHARE_WRITE, NULL, OPEN_EXISTING, 0, NULL); 
if (hDevice == INVALID_HANDLE_VALUE)
{
printf("CreateFile Error\n");
DWORD ret = GetLastError();
printf("aaaaaaaaaaaaaaaaaaaaaaaaaaaaaa%x\n",ret);
scanf("%d",&i);
goto error_return;
}
// 这一步是成功的,我可以打开Port 


void* AtaPassThroughExBufferIn = (void*)malloc(sizeof(ATA_PASS_THROUGH_EX));
if (AtaPassThroughExBufferIn == NULL){
printf("IN buffer Error\n");
return ;
}
memset(AtaPassThroughExBufferIn, 0, sizeof(ATA_PASS_THROUGH_EX));
void *AtaPassThroughExBufferOut = (void *)malloc(sizeof(ATA_PASS_THROUGH_EX)+512);
if (AtaPassThroughExBufferOut == NULL){
printf("IN buffer Error\n");
return ;
}
memset(AtaPassThroughExBufferOut, 0, sizeof(ATA_PASS_THROUGH_EX) +512);


ATA_PASS_THROUGH_EX *inputBuffer = ( ATA_PASS_THROUGH_EX * )AtaPassThroughExBufferIn;
ATA_PASS_THROUGH_EX *outputBuffer = ( ATA_PASS_THROUGH_EX * )AtaPassThroughExBufferOut;


inputBuffer->Length = sizeof(ATA_PASS_THROUGH_EX); 
inputBuffer->AtaFlags = ATA_FLAGS_DATA_IN|ATA_FLAGS_NO_MULTIPLE; 
inputBuffer->DataTransferLength = 0; // 1 sector 
inputBuffer->DataBufferOffset = sizeof(ATA_PASS_THROUGH_EX); 




outputBuffer->Length = sizeof(ATA_PASS_THROUGH_EX); 
outputBuffer->AtaFlags = ATA_FLAGS_DATA_OUT; 
outputBuffer->DataTransferLength = 512; // 1 sector 
outputBuffer->DataBufferOffset = sizeof(ATA_PASS_THROUGH_EX); 




//memset(inputBuffer->CurrentTaskFile,0,sizeof(inputBuffer->CurrentTaskFile));
//memset(inputBuffer->PreviousTaskFile,0,sizeof(inputBuffer->PreviousTaskFile));
//inputBuffer->CurrentTaskFile[5] = 0xA0; // Identify Device
//inputBuffer->CurrentTaskFile[6] = 0xEC; // Identify Device




inputBuffer->CurrentTaskFile[0] = 0; // feature reg 
inputBuffer->CurrentTaskFile[1] = 1; // sector count reg 
inputBuffer->CurrentTaskFile[2] = 1; // sector number reg 
inputBuffer->CurrentTaskFile[3] = 1; // cyl low reg 
inputBuffer->CurrentTaskFile[4] = 1; // cyl high reg 
inputBuffer->CurrentTaskFile[5] = 0x0; // device reg 
inputBuffer->CurrentTaskFile[6] = 0x20; // commang reg 
inputBuffer->CurrentTaskFile[7] = 0; 
//操作哪个扇区,多少 等信息

/*inputBuffer->CurrentTaskFile[1] = 1;
inputBuffer->CurrentTaskFile[3] = inputBuffer->CurrentTaskFile[4] = 0;
inputBuffer->CurrentTaskFile[6] = 0xEC;*/


DWORD returned = 0;
BOOL status; 
status = DeviceIoControl(hDevice, 
IOCTL_ATA_PASS_THROUGH, 
inputBuffer, 
sizeof(ATA_PASS_THROUGH_EX), 
AtaPassThroughExBufferOut, 
sizeof(ATA_PASS_THROUGH_EX) + 512, 
&returned, 
NULL); 






if(status == 0) { 
ULONG errorcode = GetLastError();
status = GetLastError();
printf("status:%d,%x\n",status,outputBuffer->CurrentTaskFile[0]);
} 








/*
struct ATA_PASS_THROUGH_EX_WITH_BUFFERS
{
ATA_PASS_THROUGH_EX apt;
BYTE ucDataBuf[512];
};


ATA_PASS_THROUGH_EX_WITH_BUFFERS ab;


memset(&ab, 0, sizeof(ab));
ab.apt.Length = sizeof(ATA_PASS_THROUGH_EX);
ab.apt.TimeOutValue = 10;
unsigned size = sizeof(ATA_PASS_THROUGH_EX_WITH_BUFFERS) + 512;
ab.apt.DataBufferOffset = size;
ab.apt.AtaFlags = ATA_FLAGS_DATA_IN;
ab.apt.DataTransferLength = 512;
size = 512;
ab.ucDataBuf[0] = 0xcf;
ab.apt.CurrentTaskFile[1] = 1;
ab.apt.CurrentTaskFile[3] = ab.apt.CurrentTaskFile[4] = 0;
ab.apt.CurrentTaskFile[6] = 0xEC;


DWORD rByte = 0;
DWORD status = DeviceIoControl( hDevice,
IOCTL_ATA_PASS_THROUGH,
&ab,
size,
&ab,
size,
&rByte,
NULL);
if (status == 0)
{
status = GetLastError();
printf("%d, %x\n", status, ab.apt.CurrentTaskFile);
}
*/








error_return:
scanf("%d",&i);
return;
}





Length
Specifies the length in bytes of the ATA_PASS_THROUGH_EX structure.
结构体的大小
AtaFlags
Indicates the direction of data transfer and specifies the kind of operation to be performed. The value of this member must be some combination of the following flags:
ATA flags Meaning
ATA_FLAGS_DRDY_REQUIRED Wait for DRDY status from the device before sending the command to the device.
ATA_FLAGS_DATA_IN Read data from the device.
ATA_FLAGS_DATA_OUT Write data to the device.
ATA_FLAGS_48BIT_COMMAND The ATA command to be sent uses the 48-bit logical block address (LBA) feature set. When this flag is set, the contents of the PreviousTaskFile member in the ATA_PASS_THROUGH_EX structure should be valid.
ATA_FLAGS_USE_DMA Set the transfer mode to DMA.
ATA_FLAGS_NO_MULTIPLE Read single sector only.
 读写标志
PathId
Contains an integer that indicates the IDE port or bus for the request. This value is set by the port driver.
TargetId
Contains an integer that indicates the target device on the bus. This value is set by the port driver.
Lun
Indicates the logical unit number of the device. This value is set by the port driver.
这三个值会在分区位置显示。
ReservedAsUchar
Reserved for future use.
DataTransferLength
Indicates the size, in bytes, of the data buffer. If an underrun occurs, the miniport driver must update this member to the number of bytes that were actually transferred.
通信的数据的总大小
TimeOutValue
Indicates the number of seconds that are allowed for the request to execute before the OS-specific port driver determines that the request has timed out.
超时时间
ReservedAsUlong
Reserved for future use.
DataBufferOffset
Specifies the offset, in bytes, from the beginning of this structure to the data buffer.
|-----------------|-----------------------------                                                 这个值为开始数据到传送BUFF的大小,也就是结构体的大小。
     结构体的大小       需要传送的BUFF大小
PreviousTaskFile
Specifies the contents of the task file input registers prior to the current pass-through command. This member is not used when the ATA_FLAGS_48BIT_COMMAND flag is not set.
CurrentTaskFile
Specifies the content of the task file register on both input and output. On input, the array values in  CurrentTaskFile  map to the task file input registers in the following manner.
各个寄存器
Byte Input Register
0 Features register
1 Sector count register
2 Sector number register
3 Cylinder low register
4 Cylinder high register
5 Device/head register
6 Command register
7 Reserved
 
When  IOCTL_ATA_PASS_THROUGH  completes, the port driver updates  CurrentTaskFile  with the values that are present in the device's output registers at the completion of the embedded command. The array values in  CurrentTaskFile  correspond to the following task file output registers.
Byte Output Register
0 Error register
1 Sector count register
2 Sector number register
3 Cylinder low register
4 Cylinder high register
5 Device/head register
6 Status register
7 Reserved
刘仕豪
关注
专栏目录
[Win32] 直接读写磁盘扇区(磁盘绝对读写)
zuishikonghuan的博客
01-03 2万+
本博文由CSDN博主zuishikonghuan所作,版权归zuishikonghuan所有,转载请注明出处: 正讲着驱动开发呢,这里突然插一篇Win32的博文,其实,还是做引子,上一篇博文“IRP与派遣函数”中,我们知道了驱动程序需要处理I/O请求,我们先来看看怎么发出一个I/O请求。 一般的程序不会直接去访问磁盘,毕竟有文件系统(FileSystem)帮助我们轻松地组织文件,但是有
DISK-ATA_Command_Pass_Through.pdf
03-19
ATA命令透传协议,包括ata-12和ata-16Command Pass Through
IOCTL_ATA_PASS_THROUGH
firewild的专栏
03-20 2902
必须要写,全是英文的看的脑子都大了,从msdn上的说明直接翻译。 If a class driver for the target type of device exists, the application must send the request to the class driver. Thus, an application can send this request directly
UEFI中的PassThru()
最新发布
Kev1nnn的博客
07-15 885
UEFI中的Passthru
如何通过IOCTL_ATA_PASS_THROUGH发送ATA命令并获取ASTS(ATA task file status)
poet_lj的专栏
11-19 979
如何发送ATA cmd?如何发送ATA cmd后如何获取ASTS状态? 发送了fd命令后想获取这里固件返回的ASTS里面的数据,该怎么做呢? 直接上代码: HANDLE GetIoCtrlHandle(BYTE index) { char szDevicPath[255]={0}; sprintf(szDevicPath,"\\\\.\\PhysicalDrive%d", index); return ::CreateFile(szDevicPath, GENERIC_READ | GE
不同WINDOWS平台下磁盘逻辑扇区的直接读写
weixin_33910385的博客
04-29 963
不同WINDOWS平台下磁盘逻辑扇区的直接读写  关键字:VWIN32、中断、DeviceIoControl  一、概述   在DOS操作系统下,通过BIOS的INT13、DOS的INT25(绝对读)、INT26(绝对写)等功能调用实现对磁盘逻辑扇区或物理扇区的读写是很方便的,C语言中还有对应上述功能调用的函数:biosdisk、absread和absw...
pass_through
08-24
这是一个使用Vivado HLS建立的最简单的图片显示的例子。可以作为初学者的第一个例程来使用!这是一个使用Vivado HLS建立的最简单的图片显示的例子。可以作为初学者的第一个例程来使用!这是一个使用Vivado HLS建立的最简单的图片显示的例子。可以作为初学者的第一个例程来使用
IOCTL_SCSI_PASS_THROUGH如何查看ATA命令结果
05-25
使用IOCTL_ATA_PASS_THROUGH API发送ATA命令后,可以通过检查输出的ATA_PASS_THROUGH_EX结构体中的DataBuffer字段来查看命令结果。DataBuffer字段包含了命令的输出数据。具体来说,它是一个指向16字节缓冲区的指针...
IOCTL_SCSI_PASS_THROUGH查看ATA命令的STATUS
05-25
使用 IOCTL_SCSI_PASS_THROUGH 发送 ATA 命令时,可以通过检查返回的 SCSI_STATUS 的值来确定 ATA 命令的执行状态。在 ATA 设备上执行的命令将被映射到 SCSI 命令,并且设备将返回一个 SCSI_STATUS 字段以指示命令...
NTSTATUS my_disk_handle_control(PDEVICE_OBJECT device, PIRP irp) { PIO_STACK_LOCATION ioc = IoGetCurrentIrpStackLocation(irp); const unsigned long code = ioc->Parameters.DeviceIoControl.IoControlCode; if (code == IOCTL_STORAGE_QUERY_PROPERTY) { if (StorageDeviceProperty == ((PSTORAGE_PROPERTY_QUERY)irp->AssociatedIrp.SystemBuffer)->PropertyId) n_util::change_ioc(ioc, irp, my_storage_query_ioc); } else if (code == IOCTL_ATA_PASS_THROUGH) n_util::change_ioc(ioc, irp, my_ata_pass_ioc); else if (code == SMART_RCV_DRIVE_DATA) n_util::change_ioc(ioc, irp, my_smart_data_ioc); return g_original_disk_control(device, irp); } NTSTATUS my_disk_handle_control(PDEVICE_OBJECT device, PIRP irp) { PIO_STACK_LOCATION ioc = IoGetCurrentIrpStackLocation(irp); const unsigned long code = ioc->Parameters.DeviceIoControl.IoControlCode; if (code == IOCTL_STORAGE_QUERY_PROPERTY) { if (StorageDeviceProperty == ((PSTORAGE_PROPERTY_QUERY)irp->AssociatedIrp.SystemBuffer)->PropertyId) n_util::change_ioc(ioc, irp, my_storage_query_ioc); } else if (code == IOCTL_ATA_PASS_THROUGH) n_util::change_ioc(ioc, irp, my_ata_pass_ioc); else if (code == SMART_RCV_DRIVE_DATA) n_util::change_ioc(ioc, irp, my_smart_data_ioc); return g_original_disk_control(device, irp); }
07-15
类似地,如果 `code` 的值等于 `IOCTL_ATA_PASS_THROUGH` 或者 `SMART_RCV_DRIVE_DATA`,则分别执行相应的逻辑操作。 最后,函数返回调用 `g_original_disk_control` 函数,并传入 `device` 和 `irp`。 整体来说,...
SCSI Pass-Through Interface Tool
10-03
when you want to access and Control the ATA Driver in Windows You use the SCSI Driver and structure this code provide you how to use SCSI structure very simply
smartctl/hdparm对usb 硬盘识别的原因
waityoualife的专栏
06-08 6852
最近使用smartctl对usb硬盘获取smart信息识别。所以就仔细查了看原因。同时又记起一起使用hdparm对硬盘休眠时,usb硬盘也是有问题,使用了什么pass through方法?那时没有深入的去了解,这次正好仔细看了看代码和相关问题。关键字hdparm、smartctl、ATA/ATAPI command set、scsi command set、SAT、ATACB要解决的问题1:为什么smartctl对usb设备会失败?能否有解决的方法?2:hdparm对usb失败后,采取的方法能否对smart
ATA读取磁盘扇区数据
qq_41490873的博客
03-14 584
#include <stdio.h> #include <windows.h> #include <winioctl.h> #include <ntddscsi.h> int main(int argc, char* argv[]) { HANDLE hDevice; ATA_PASS_THROUGH_DIRECT aptd; BYTE DataBuffer[512] = { 0 }; DWORD ByteReturned; hDevice =.
DeviceIoControl 直接从磁盘扇区读文件
flyingleo1981的专栏
11-10 1233
好久没写博客了,最近看了下DeviceIoControl  关于磁盘的应用,特记一文,以备久后查阅。 首先介绍下,文件在磁盘的存储结构(具体可以到网上查询NTFS文件系统相关的教程后者数据恢复方面教程的介绍)。下面介绍的仅与此文相关。 文件属性(头): (Ps: 截图摘自[数据重现文件系统原理精解与数据恢复最佳实践].(马林))
操作系统 实验十一:读/写磁盘指定位置信息(只需完成读取)
weixin_44775375的博客
08-06 1520
实验十一:读/写磁盘指定位置信息(只需完成读取) 一、实验目的 (1)了解磁盘的物理知识。 (2)掌握Windows系统提供的有关对磁盘操作API。 (3)根据输入的扇区号读/写指定扇区。 二、实验准备知识:相关API函数介绍 1.设置读/写操作的位置 函数SetFilePointer()用于移动一个打开文件中的读/写指针,这里磁盘设备被当作文件处理,因此用于移动文件读/写指针在磁盘上的位置。 原型: DWORD SetFilePointer( HANDLE hFile, LONG lpdistanceTo
The Linux SCSI Generic (sg) Driver(使用说明)
热门推荐
OpenWrt/WLAN/驱动/Android/嵌入式开发总结
03-07 2万+
The Linux SCSI Generic (sg) Driver: 在工作中,由于要对写的代码进行测试,主要需要判断数据包返回值的正确性。测试命令如:SES,SPC,SSP,SMP中涉及到的命令。觉得上面的网址挺好的,现在就来看看,整理整理,以备后用。下面主要针对sg上面的三个命令集进行说明。 1:Utilities: sg3_utils and sg_utils The sg3_u
【实战经验分享】如何对SSD固态硬盘下发SCSI command?
存储随笔
07-18 4505
最近在处理SSD客户端case时,需要在Windows环境直接下发SCSI command来复现客户问题, 这下可为难了小编, 小编之前并未深入了解SCSI相关内容。话说,事在人为,知识啃下来就是自己的。 将研读之后的内容结合实战的经验加以整理,终成此文。 鉴于小编在这方面还不是很精通,如有不足的地方,敬请见谅!
SD3.0协议解读二
u014286440的博客
11-03 725
在阅读本文章之前,请先思考一下什么是总线,总线的作用是什么?相信大家都学过I2C总线,它由SCL和SDA两条线组成,通过这两条线就能完成各种通信。同样地,SD卡通信也需要有自己的总线模式。SD卡还比较牛逼,支持SD总线和SPI总线,老衲接触的比较多的是SD总线,所以这篇文章仅介绍SD总线,对于SPI总线老衲以后有机会再介绍。 SD总线: 大家都知道总线一般支持多种频率,在默认的频率下,SD总线支持一(主)对多...
评论 3
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包

打赏作者

刘仕豪

IT发展快就是因为有开源精神

¥1 ¥2 ¥4 ¥6 ¥10 ¥20
扫码支付:¥1
获取中
扫码支付

您的余额不足,请更换扫码支付或充值

打赏作者

实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值