Software & Application Miscellaneous: ZwReadFile returns STATUS_INVALID_HANDLE in DriverIOControl ,Software & Application Miscellaneous.

I have written a device driver and I have a problem with ZwCreateFile and ZwReadFile.
ZwReadFile always returns STATUS_INVALID_HANDLE in DriverIOControl.

The DriveEntry opens a file with ZwCreateFile.

#pragma alloc_text(INIT,DriverEntry)
#pragma alloc_text(PAGE,DriverCreateClose)
#pragma alloc_text(PAGE,DriverIOControl)
#pragma alloc_text(PAGE,DriverUnload)

typedef struct _DEVICE_EXTENSION {
HANDLE filehandle;
} DEVICE_EXTENSION, *PDEVICE_EXTENSION;

NTSTATUS DriverEntry(IN PDRIVER_OBJECT DriverObject,IN PUNICODE_STRING RegistryPath)
{
...
NTSTATUS status;
IO_STATUS_BLOCK info;
UNICODE_STRING ucfilename;
OBJECT_ATTRIBUTES objectattributes;
WCHAR filename[]=L"\\'\\L:\\test.dat";

DbgPrint("DriveEntry:\n");
...

status=IoCreateDevice(DriverObject,sizeof(DEVICE_EXTENSION),&ucdevicename,FI LE_DEVICE_UNKNOWN,0,false,&deviceobject);
...
status=IoCreateSymbolicLink(&ucdevicelink,&ucdevicename);
...
deviceextension=(PDEVICE_EXTENSION) deviceobject->DeviceExtension;
deviceextension->filehandle=NULL;

deviceobject->Flags |= DO_DIRECT_IO;
...
RtlInitUnicodeString(&ucfilename,filename);

InitializeObjectAttributes(&objectattributes,&ucfilename,OBJ_CASE_INSENSITIV E,NULL,NULL);

status=ZwCreateFile(&deviceextension->filehandle,GENERIC_READ,&objectattribu tes,&info, NULL, 0, FILE_SHARE_READ, FILE_OPEN,FILE_SYNCHRONOUS_IO_NONALERT,NULL,0);
...
DriverObject->MajorFunction[IRP_MJ_CREATE] = DriverCreateClose;
DriverObject->MajorFunction[IRP_MJ_CLOSE] = DriverCreateClose;
DriverObject->MajorFunction[IRP_MJ_DEVICE_CONTROL] = DriverIOControl;
DriverObject->DriverUnload = DriverUnload;

return STATUS_SUCCESS;
}

NTSTATUS DriverCreateClose(IN PDEVICE_OBJECT DeviceObject,IN PIRP Irp)
{
DbgPrint("DriveCreateClose:\n");

Irp->IoStatus.Status=STATUS_SUCCESS;
Irp->IoStatus.Information=0;
IoCompleteRequest(Irp,IO_NO_INCREMENT);

return STATUS_SUCCESS;
}

VOID DriverUnload(IN PDRIVER_OBJECT DriverObject)
{
PDEVICE_EXTENSION deviceextension;
PDEVICE_OBJECT deviceobject;

DbgPrint("DriveUnload:\n");

deviceobject=DriverObject->DeviceObject;
deviceextension=(PDEVICE_EXTENSION) deviceobject->DeviceExtension; ZwCloseHandle(deviceextension->filehandle);

return;
}

In DriverIOControl I have programmed a new IoControlCode.

#define FILE_DEVICE_FILE 0x8000
#define IOCTL_FILE_READ CTL_CODE(FILE_DEVICE_FILE,0x800,METHOD_BUFFERED, FILE_READ_ACCESS|FILE_WRITE_ACCESS)

NTSTATUS DriverIOControl(IN PDEVICE_OBJECT DeviceObject,IN PIRP Irp)
{
PDEVICE_EXTENSION deviceextension;
PIO_STACK_LOCATION iostack;
IO_STATUS_BLOCK stat;
LARGE_INTEGER ofs;
NTSTATUS status;

char rbuf[20];

DbgPrint("DriverIOControl:\n");

deviceextension=(PDEVICE_EXTENSION) DeviceObject->DeviceExtension; iostack=IoGetCurrentIrpStackLocation(Irp);

switch (iostack->Parameters.DeviceIoControl.IoControlCode)
{

case IOCTL_FILE_READ:
{
ofs.QuadPart=0;

status=ZwReadFile(deviceextension->filehandle,NULL,NULL,NULL, &stat,&rbuf[0],10,&ofs,NULL);
if (status==STATUS_SUCCESS) {
DbgPrint(" INFO: data readed\n");

status=STATUS_SUCCESS;

Irp->IoStatus.Information=0;

}
else if (status==STATUS_INVALID_HANDLE)
DbgPrint(" ERROR: status_invalid_handle\n");
else DbgPrint(" ERROR: other error\n");
}
break;
default:
{
DbgPrint(" ERROR: invalid device request\n");
status=INVALID_DEVICE_REQUEST;
}
break;
}

Irp->IoStatus.Status=status;
Irp->IoStatus.Information=0;
IoCompleteRequest(Irp,IO_NO_INCREMENT);

return status;
}

In my user program I use CreateFile to connect to the driver and DeviceIoControl to send a IOCTL message.

HANDLE driver;
DWORD dwSize=0;

...
driver=CreateFile("\\\\.\\mydriver",GENERIC_READ | GENERIC_WRITE,
FILE_SHARE_READ | FILE_SHARE_WRITE, NULL,
OPEN_EXISTING,
FILE_FLAG_NO_BUFFERING, NULL);
...
ret=DeviceIoControl(driver,IOCTL_VDISK_READ,NULL,0,NULL,dwSize,&dwSize,NULL)
;
...
CloseHandle(driver);

ZwReadFile returns STATUS_INVALID_HANDLE all the time. But the filehandle of the driverfile (L:\test.dat) is not closed. The driverfile is big enough (10MB).

The program Handle shows me that the driverfilehandle is allocated to the system.

Handle v2.10
Copyright (C) 1997-2003 Mark Russinovich
Sysinternals - www.sysinternals.com
System pid: 4 L:\test.dat
If I open a file in DriverIOControl the file will allocate to the user
program.

Handle v2.10
Copyright (C) 1997-2003 Mark Russinovich
Sysinternals - www.sysinternals.com

control.exe pid: 252 L:\test.dat

This handle is only available for this user program. After a new start of the program I have to create a new handle.

It seems that I have no access to the system handle in DriverIOControl.

How can I fix this problem without open the driverfile every IOCTL_VDISK_READ message?

Keywords & Tags: zwreadfile, returns, status_invalid_handle, driveriocontrol, software, application

URL: http://software.itags.org/software-application/240751/

«« Prev - Next »» 3 helpful answers below.

How many times has the question been asked and answered? Care to try
for a guess? Read about 'context'.

Why use an Ioctl to do a read? There are read and write requests
defined already. They have specific access checks with standard
implementation rules and trying to reinvent the wheel is not a good use
of time and resources. I don't see a buffer for the Ioctl read to
provide data.

"Steffen" <anonym...anonymnospam.com> wrote in message
news:%2308C%23Pj0DHA.1576...TK2MSFTNGP11.phx.gbl...
> I have written a device driver and I have a problem with ZwCreateFile
and
> ZwReadFile.
> ZwReadFile always returns STATUS_INVALID_HANDLE in DriverIOControl.
>
> The DriveEntry opens a file with ZwCreateFile.
> #pragma alloc_text(INIT,DriverEntry)
> #pragma alloc_text(PAGE,DriverCreateClose)
> #pragma alloc_text(PAGE,DriverIOControl)
> #pragma alloc_text(PAGE,DriverUnload)
>
> typedef struct _DEVICE_EXTENSION {
> HANDLE filehandle;
> } DEVICE_EXTENSION, *PDEVICE_EXTENSION;
>
> NTSTATUS DriverEntry(IN PDRIVER_OBJECT DriverObject,IN PUNICODE_STRING
> RegistryPath)
> {
> ...
> NTSTATUS status;
> IO_STATUS_BLOCK info;
> UNICODE_STRING ucfilename;
> OBJECT_ATTRIBUTES objectattributes;
> WCHAR filename[]=L"\\'\\L:\\test.dat";
> DbgPrint("DriveEntry:\n");
> ...
>
status=IoCreateDevice(DriverObject,sizeof(DEVICE_EXTENSION),&ucdevicenam
e,FI
> LE_DEVICE_UNKNOWN,0,false,&deviceobject);
> ...
> status=IoCreateSymbolicLink(&ucdevicelink,&ucdevicename);
> ...
> deviceextension=(PDEVICE_EXTENSION) deviceobject->DeviceExtension;
> deviceextension->filehandle=NULL;
> deviceobject->Flags |= DO_DIRECT_IO;
> ...
> RtlInitUnicodeString(&ucfilename,filename);
>
InitializeObjectAttributes(&objectattributes,&ucfilename,OBJ_CASE_INSENS
ITIV
> E,NULL,NULL);
>
status=ZwCreateFile(&deviceextension->filehandle,GENERIC_READ,&objectatt
ribu
> tes,&info,
> NULL, 0, FILE_SHARE_READ,
> FILE_OPEN,FILE_SYNCHRONOUS_IO_NONALERT,NULL,0);
> ...
> DriverObject->MajorFunction[IRP_MJ_CREATE] =DriverCreateClose;
> DriverObject->MajorFunction[IRP_MJ_CLOSE] =DriverCreateClose;
> DriverObject->MajorFunction[IRP_MJ_DEVICE_CONTROL] = DriverIOControl;
> DriverObject->DriverUnload = DriverUnload;
> return STATUS_SUCCESS;
> }
> NTSTATUS DriverCreateClose(IN PDEVICE_OBJECT DeviceObject,IN PIRP Irp)
> {
> DbgPrint("DriveCreateClose:\n");
> Irp->IoStatus.Status=STATUS_SUCCESS;
> Irp->IoStatus.Information=0;
> IoCompleteRequest(Irp,IO_NO_INCREMENT);
> return STATUS_SUCCESS;
> }
> VOID DriverUnload(IN PDRIVER_OBJECT DriverObject)
> {
> PDEVICE_EXTENSION deviceextension;
> PDEVICE_OBJECT deviceobject;
> DbgPrint("DriveUnload:\n");
> deviceobject=DriverObject->DeviceObject;
> deviceextension=(PDEVICE_EXTENSION) deviceobject->DeviceExtension;
> ZwCloseHandle(deviceextension->filehandle);
> return;
> }
>
> In DriverIOControl I have programmed a new IoControlCode.
> #define FILE_DEVICE_FILE 0x8000
> #define IOCTL_FILE_READ
CTL_CODE(FILE_DEVICE_FILE,0x800,METHOD_BUFFERED,
> FILE_READ_ACCESS|FILE_WRITE_ACCESS)
> NTSTATUS DriverIOControl(IN PDEVICE_OBJECT DeviceObject,IN PIRP Irp)
> {
> PDEVICE_EXTENSION deviceextension;
> PIO_STACK_LOCATION iostack;
> IO_STATUS_BLOCK stat;
> LARGE_INTEGER ofs;
> NTSTATUS status;
> char rbuf[20];
>
> DbgPrint("DriverIOControl:\n");
> deviceextension=(PDEVICE_EXTENSION) DeviceObject->DeviceExtension;
> iostack=IoGetCurrentIrpStackLocation(Irp);
> switch (iostack->Parameters.DeviceIoControl.IoControlCode)
> {
> case IOCTL_FILE_READ:
> {
> ofs.QuadPart=0;
> status=ZwReadFile(deviceextension->filehandle,NULL,NULL,NULL,
> &stat,&rbuf[0],10,&ofs,NULL);
> if (status==STATUS_SUCCESS) {
> DbgPrint(" INFO: data readed\n");
> status=STATUS_SUCCESS;
> Irp->IoStatus.Information=0;
> }
> else if (status==STATUS_INVALID_HANDLE)
> DbgPrint(" ERROR: status_invalid_handle\n");
> else DbgPrint(" ERROR: other
error\n");
> }
> break;
> default:
> {
> DbgPrint(" ERROR: invalid device
request\n");
> status=INVALID_DEVICE_REQUEST;
> }
> break;
> }
>
> Irp->IoStatus.Status=status;
> Irp->IoStatus.Information=0;
> IoCompleteRequest(Irp,IO_NO_INCREMENT);
> return status;
> }
>
> In my user program I use CreateFile to connect to the driver and
> DeviceIoControl
> to send a IOCTL message.
> HANDLE driver;
> DWORD dwSize=0;
> ...
> driver=CreateFile("\\\\.\\mydriver",GENERIC_READ | GENERIC_WRITE,
> FILE_SHARE_READ | FILE_SHARE_WRITE,
NULL,
> OPEN_EXISTING,
> FILE_FLAG_NO_BUFFERING, NULL);
> ...
>
ret=DeviceIoControl(driver,IOCTL_VDISK_READ,NULL,0,NULL,dwSize,&dwSize,N
ULL)
> ;
> ...
> CloseHandle(driver);
>
> ZwReadFile returns STATUS_INVALID_HANDLE all the time. But the
filehandle of
> the
> driverfile (L:\test.dat) is not closed. The driverfile is big enough
(10MB).
>
> The program Handle shows me that the driverfilehandle is allocated to
the
> system.
> Handle v2.10
> Copyright (C) 1997-2003 Mark Russinovich
> Sysinternals - www.sysinternals.com
> System pid: 4 L:\test.dat
>
> If I open a file in DriverIOControl the file will allocate to the user
> program.
> Handle v2.10
> Copyright (C) 1997-2003 Mark Russinovich
> Sysinternals - www.sysinternals.com
> control.exe pid: 252 L:\test.dat
> This handle is only available for this user program. After a new start
of
> the program
> I have to create a new handle.
>
> It seems that I have no access to the system handle in
DriverIOControl.
>
> How can I fix this problem without open the driverfile every
> IOCTL_VDISK_READ message?
>

david | Tue, 20 May 2008 08:09:00 GMT |

Use OBJ_KERNEL_HANDLE flag (read InitizlizeObjectAttributes documentation).

"Steffen" <anonym...anonymnospam.com> wrote in message
news:%2308C%23Pj0DHA.1576...TK2MSFTNGP11.phx.gbl...
> I have written a device driver and I have a problem with ZwCreateFile and
> ZwReadFile.
> ZwReadFile always returns STATUS_INVALID_HANDLE in DriverIOControl.
>
> The DriveEntry opens a file with ZwCreateFile.
> #pragma alloc_text(INIT,DriverEntry)
> #pragma alloc_text(PAGE,DriverCreateClose)
> #pragma alloc_text(PAGE,DriverIOControl)
> #pragma alloc_text(PAGE,DriverUnload)
>
> typedef struct _DEVICE_EXTENSION {
> HANDLE filehandle;
> } DEVICE_EXTENSION, *PDEVICE_EXTENSION;
>
> NTSTATUS DriverEntry(IN PDRIVER_OBJECT DriverObject,IN PUNICODE_STRING
> RegistryPath)
> {
> ...
> NTSTATUS status;
> IO_STATUS_BLOCK info;
> UNICODE_STRING ucfilename;
> OBJECT_ATTRIBUTES objectattributes;
> WCHAR filename[]=L"\\'\\L:\\test.dat";
> DbgPrint("DriveEntry:\n");
> ...
>
status=IoCreateDevice(DriverObject,sizeof(DEVICE_EXTENSION),&ucdevicename,FI
> LE_DEVICE_UNKNOWN,0,false,&deviceobject);
> ...
> status=IoCreateSymbolicLink(&ucdevicelink,&ucdevicename);
> ...
> deviceextension=(PDEVICE_EXTENSION) deviceobject->DeviceExtension;
> deviceextension->filehandle=NULL;
> deviceobject->Flags |= DO_DIRECT_IO;
> ...
> RtlInitUnicodeString(&ucfilename,filename);
>
InitializeObjectAttributes(&objectattributes,&ucfilename,OBJ_CASE_INSENSITIV
> E,NULL,NULL);
>
status=ZwCreateFile(&deviceextension->filehandle,GENERIC_READ,&objectattribu
> tes,&info,
> NULL, 0, FILE_SHARE_READ,
> FILE_OPEN,FILE_SYNCHRONOUS_IO_NONALERT,NULL,0);
> ...
> DriverObject->MajorFunction[IRP_MJ_CREATE] = DriverCreateClose;
> DriverObject->MajorFunction[IRP_MJ_CLOSE] = DriverCreateClose;
> DriverObject->MajorFunction[IRP_MJ_DEVICE_CONTROL] = DriverIOControl;
> DriverObject->DriverUnload = DriverUnload;
> return STATUS_SUCCESS;
> }
> NTSTATUS DriverCreateClose(IN PDEVICE_OBJECT DeviceObject,IN PIRP Irp)
> {
> DbgPrint("DriveCreateClose:\n");
> Irp->IoStatus.Status=STATUS_SUCCESS;
> Irp->IoStatus.Information=0;
> IoCompleteRequest(Irp,IO_NO_INCREMENT);
> return STATUS_SUCCESS;
> }
> VOID DriverUnload(IN PDRIVER_OBJECT DriverObject)
> {
> PDEVICE_EXTENSION deviceextension;
> PDEVICE_OBJECT deviceobject;
> DbgPrint("DriveUnload:\n");
> deviceobject=DriverObject->DeviceObject;
> deviceextension=(PDEVICE_EXTENSION) deviceobject->DeviceExtension;
> ZwCloseHandle(deviceextension->filehandle);
> return;
> }
>
> In DriverIOControl I have programmed a new IoControlCode.
> #define FILE_DEVICE_FILE 0x8000
> #define IOCTL_FILE_READ CTL_CODE(FILE_DEVICE_FILE,0x800,METHOD_BUFFERED,
> FILE_READ_ACCESS|FILE_WRITE_ACCESS)
> NTSTATUS DriverIOControl(IN PDEVICE_OBJECT DeviceObject,IN PIRP Irp)
> {
> PDEVICE_EXTENSION deviceextension;
> PIO_STACK_LOCATION iostack;
> IO_STATUS_BLOCK stat;
> LARGE_INTEGER ofs;
> NTSTATUS status;
> char rbuf[20];
>
> DbgPrint("DriverIOControl:\n");
> deviceextension=(PDEVICE_EXTENSION) DeviceObject->DeviceExtension;
> iostack=IoGetCurrentIrpStackLocation(Irp);
> switch (iostack->Parameters.DeviceIoControl.IoControlCode)
> {
> case IOCTL_FILE_READ:
> {
> ofs.QuadPart=0;
> status=ZwReadFile(deviceextension->filehandle,NULL,NULL,NULL,
> &stat,&rbuf[0],10,&ofs,NULL);
> if (status==STATUS_SUCCESS) {
> DbgPrint(" INFO: data readed\n");
> status=STATUS_SUCCESS;
> Irp->IoStatus.Information=0;
> }
> else if (status==STATUS_INVALID_HANDLE)
> DbgPrint(" ERROR: status_invalid_handle\n");
> else DbgPrint(" ERROR: other
error\n");
> }
> break;
> default:
> {
> DbgPrint(" ERROR: invalid device request\n");
> status=INVALID_DEVICE_REQUEST;
> }
> break;
> }
>
> Irp->IoStatus.Status=status;
> Irp->IoStatus.Information=0;
> IoCompleteRequest(Irp,IO_NO_INCREMENT);
> return status;
> }
>
> In my user program I use CreateFile to connect to the driver and
> DeviceIoControl
> to send a IOCTL message.
> HANDLE driver;
> DWORD dwSize=0;
> ...
> driver=CreateFile("\\\\.\\mydriver",GENERIC_READ | GENERIC_WRITE,
> FILE_SHARE_READ | FILE_SHARE_WRITE, NULL,
> OPEN_EXISTING,
> FILE_FLAG_NO_BUFFERING, NULL);
> ...
>
ret=DeviceIoControl(driver,IOCTL_VDISK_READ,NULL,0,NULL,dwSize,&dwSize,NULL)
> ;
> ...
> CloseHandle(driver);
>
> ZwReadFile returns STATUS_INVALID_HANDLE all the time. But the filehandle
of
> the
> driverfile (L:\test.dat) is not closed. The driverfile is big enough
(10MB).
>
> The program Handle shows me that the driverfilehandle is allocated to the
> system.
> Handle v2.10
> Copyright (C) 1997-2003 Mark Russinovich
> Sysinternals - www.sysinternals.com
> System pid: 4 L:\test.dat
>
> If I open a file in DriverIOControl the file will allocate to the user
> program.
> Handle v2.10
> Copyright (C) 1997-2003 Mark Russinovich
> Sysinternals - www.sysinternals.com
> control.exe pid: 252 L:\test.dat
> This handle is only available for this user program. After a new start of
> the program
> I have to create a new handle.
>
> It seems that I have no access to the system handle in DriverIOControl.
>
> How can I fix this problem without open the driverfile every
> IOCTL_VDISK_READ message?
>

alexander | Tue, 20 May 2008 08:10:00 GMT |

File handle must be used within the same process context as it was openned
in. If you are creating a file handle inside system process, but using it
in DeviceIoCtrl that is running in a user application process context, then
this handle value has no meaning inside user process. :(

Cheers,

"Steffen" <anonym...anonymnospam.com> wrote in message
news:%2308C%23Pj0DHA.1576...TK2MSFTNGP11.phx.gbl...
> I have written a device driver and I have a problem with ZwCreateFile and
> ZwReadFile.
> ZwReadFile always returns STATUS_INVALID_HANDLE in DriverIOControl.
>
> The DriveEntry opens a file with ZwCreateFile.
> #pragma alloc_text(INIT,DriverEntry)
> #pragma alloc_text(PAGE,DriverCreateClose)
> #pragma alloc_text(PAGE,DriverIOControl)
> #pragma alloc_text(PAGE,DriverUnload)
>
> typedef struct _DEVICE_EXTENSION {
> HANDLE filehandle;
> } DEVICE_EXTENSION, *PDEVICE_EXTENSION;
>
> NTSTATUS DriverEntry(IN PDRIVER_OBJECT DriverObject,IN PUNICODE_STRING
> RegistryPath)
> {
> ...
> NTSTATUS status;
> IO_STATUS_BLOCK info;
> UNICODE_STRING ucfilename;
> OBJECT_ATTRIBUTES objectattributes;
> WCHAR filename[]=L"\\'\\L:\\test.dat";
> DbgPrint("DriveEntry:\n");
> ...
>
status=IoCreateDevice(DriverObject,sizeof(DEVICE_EXTENSION),&ucdevicename,FI
> LE_DEVICE_UNKNOWN,0,false,&deviceobject);
> ...
> status=IoCreateSymbolicLink(&ucdevicelink,&ucdevicename);
> ...
> deviceextension=(PDEVICE_EXTENSION) deviceobject->DeviceExtension;
> deviceextension->filehandle=NULL;
> deviceobject->Flags |= DO_DIRECT_IO;
> ...
> RtlInitUnicodeString(&ucfilename,filename);
>
InitializeObjectAttributes(&objectattributes,&ucfilename,OBJ_CASE_INSENSITIV
> E,NULL,NULL);
>
status=ZwCreateFile(&deviceextension->filehandle,GENERIC_READ,&objectattribu
> tes,&info,
> NULL, 0, FILE_SHARE_READ,
> FILE_OPEN,FILE_SYNCHRONOUS_IO_NONALERT,NULL,0);
> ...
> DriverObject->MajorFunction[IRP_MJ_CREATE] = DriverCreateClose;
> DriverObject->MajorFunction[IRP_MJ_CLOSE] = DriverCreateClose;
> DriverObject->MajorFunction[IRP_MJ_DEVICE_CONTROL] = DriverIOControl;
> DriverObject->DriverUnload = DriverUnload;
> return STATUS_SUCCESS;
> }
> NTSTATUS DriverCreateClose(IN PDEVICE_OBJECT DeviceObject,IN PIRP Irp)
> {
> DbgPrint("DriveCreateClose:\n");
> Irp->IoStatus.Status=STATUS_SUCCESS;
> Irp->IoStatus.Information=0;
> IoCompleteRequest(Irp,IO_NO_INCREMENT);
> return STATUS_SUCCESS;
> }
> VOID DriverUnload(IN PDRIVER_OBJECT DriverObject)
> {
> PDEVICE_EXTENSION deviceextension;
> PDEVICE_OBJECT deviceobject;
> DbgPrint("DriveUnload:\n");
> deviceobject=DriverObject->DeviceObject;
> deviceextension=(PDEVICE_EXTENSION) deviceobject->DeviceExtension;
> ZwCloseHandle(deviceextension->filehandle);
> return;
> }
>
> In DriverIOControl I have programmed a new IoControlCode.
> #define FILE_DEVICE_FILE 0x8000
> #define IOCTL_FILE_READ CTL_CODE(FILE_DEVICE_FILE,0x800,METHOD_BUFFERED,
> FILE_READ_ACCESS|FILE_WRITE_ACCESS)
> NTSTATUS DriverIOControl(IN PDEVICE_OBJECT DeviceObject,IN PIRP Irp)
> {
> PDEVICE_EXTENSION deviceextension;
> PIO_STACK_LOCATION iostack;
> IO_STATUS_BLOCK stat;
> LARGE_INTEGER ofs;
> NTSTATUS status;
> char rbuf[20];
>
> DbgPrint("DriverIOControl:\n");
> deviceextension=(PDEVICE_EXTENSION) DeviceObject->DeviceExtension;
> iostack=IoGetCurrentIrpStackLocation(Irp);
> switch (iostack->Parameters.DeviceIoControl.IoControlCode)
> {
> case IOCTL_FILE_READ:
> {
> ofs.QuadPart=0;
> status=ZwReadFile(deviceextension->filehandle,NULL,NULL,NULL,
> &stat,&rbuf[0],10,&ofs,NULL);
> if (status==STATUS_SUCCESS) {
> DbgPrint(" INFO: data readed\n");
> status=STATUS_SUCCESS;
> Irp->IoStatus.Information=0;
> }
> else if (status==STATUS_INVALID_HANDLE)
> DbgPrint(" ERROR: status_invalid_handle\n");
> else DbgPrint(" ERROR: other
error\n");
> }
> break;
> default:
> {
> DbgPrint(" ERROR: invalid device request\n");
> status=INVALID_DEVICE_REQUEST;
> }
> break;
> }
>
> Irp->IoStatus.Status=status;
> Irp->IoStatus.Information=0;
> IoCompleteRequest(Irp,IO_NO_INCREMENT);
> return status;
> }
>
> In my user program I use CreateFile to connect to the driver and
> DeviceIoControl
> to send a IOCTL message.
> HANDLE driver;
> DWORD dwSize=0;
> ...
> driver=CreateFile("\\\\.\\mydriver",GENERIC_READ | GENERIC_WRITE,
> FILE_SHARE_READ | FILE_SHARE_WRITE, NULL,
> OPEN_EXISTING,
> FILE_FLAG_NO_BUFFERING, NULL);
> ...
>
ret=DeviceIoControl(driver,IOCTL_VDISK_READ,NULL,0,NULL,dwSize,&dwSize,NULL)
> ;
> ...
> CloseHandle(driver);
>
> ZwReadFile returns STATUS_INVALID_HANDLE all the time. But the filehandle
of
> the
> driverfile (L:\test.dat) is not closed. The driverfile is big enough
(10MB).
>
> The program Handle shows me that the driverfilehandle is allocated to the
> system.
> Handle v2.10
> Copyright (C) 1997-2003 Mark Russinovich
> Sysinternals - www.sysinternals.com
> System pid: 4 L:\test.dat
>
> If I open a file in DriverIOControl the file will allocate to the user
> program.
> Handle v2.10
> Copyright (C) 1997-2003 Mark Russinovich
> Sysinternals - www.sysinternals.com
> control.exe pid: 252 L:\test.dat
> This handle is only available for this user program. After a new start of
> the program
> I have to create a new handle.
>
> It seems that I have no access to the system handle in DriverIOControl.
>
> How can I fix this problem without open the driverfile every
> IOCTL_VDISK_READ message?
>

paul | Tue, 20 May 2008 08:11:00 GMT |

Software & Application Miscellaneous Related Links

Software & Application Miscellaneous Hot Answers

ZwReadFile slows after a few hundred MBs
I've got a thread that processes IRP_MJ_READ/WRITEs. From the code that follows, if I use pReadBuffer with ZwReadFile then everything is smooth but if I simply use pCurrentAddress then my whole system slows to a crawl after a few hundred megs. Can anyone shed some light? Writes don't seem to be...
ZwReadFile failed on Vista with files on udf formated DVD
The following snippet shows some calls to ZwCreateFile and ZwReadFile which work fine on 2000,2003, XP. But on Vista ZwReadFile will fail with STATUS_INVALID_PARAMETER. It only fails, if the file is located on an UDF formated DVD. If file is located on a physical disk, USB device or CD, everything...
ZwQueryValueKey
Hello, I'm trying to query the computer name from the following registry key: L"\\Registry\\Machine\\System\\CurrentControlSet\\Control\\ComputerName\\Act iveComputerName The key is: ComputerName I can successfully pull this value out of the registry. However, it is in the following format:...
ZwQueryDirectoryFile
Question about ZwQueryDirectoryFile: The declaration of this funct is def'd as ....OUT PVOID FileInformation.... and FileInformation is said to be a pointer to a buffer... Should not this be the address of a pointer to a buffer... The returned buffer is to be freed with EXFreePool. I guess...
ZwOpenFile helppppppppp
Hi all ! I must Open a file in my Driver , The fragment code as below . But it always can not be opened .. Pls tell me why ' Thanks in advance ! HANDLE fileOpen; OBJECT_ATTRIBUTES objAttr; UNICODE_STRING sLinkName; #define FILE_NAME L"C:\\test.out" RtlInitUnicodeString( &sLinkName, FILE_NAME);...

Software & Application Miscellaneous New questions

ZwSetValueKey and registry replication in MSCS
Hi, I'm using the win32 reg function: ZwSetValueKey (from my driver) to set a key registered with a cluster resource. According to Microsoft documentation when a change to the local registry is made the checkpoint on the quorum is updated as well. Can I assume that the registry write and the...
ZwQueryKey with not opened handle?
Using Regmon I have watched registry operations during a process' initialization time.The weired thing is "ZwQueryKey's input handle and the result" Sometimes, ZwQueryKey uses not-yet-opened handle values and get SUCCESSFUL return value. how is this possible?(I am sure that my tests are correct,...
ZwQueryInformationFile(..FileAlignmentInformation..) always returns FILE_WORD_ALIGNMENT
GreetingsI'am assuming ZwQueryInformationFile(..FileAlignmentInformation..) to always return FILE_BYTE_ALIGNMENT(0) for files opened without FILE_NO_INTERMEDIATE_BUFFERING and FILE_512_BYTE_ALIGNMENT(0x1ff) for files opened with FILE_NO_INTERMEDIATE_BUFFERING on sector size = 512but for me the...
ZwQueryInformationFile Returns Wrong File Size
I am using ZwQueryInformationFile to obtain the size of a binary file that contains firmware. Problem is that 3 of the files return the correct size, however two files return a file size off-by-one (-1). So currently I am just doing a cheap hack. I use StandardInformation.EndOfFile.LowPart to...
ZwQueryInformationFile
Hello I'm using ZwQueryInformationFile to retreive a file name from a file handle. So i use the FileNameInformation class. Unfortunately the filename always begins with / (for example /Windows). My question is: how am i supposed to make a difference between C:\Windows and D:\Windows?...
ZwOpenFile issue
I have a filter driver that filters the UDF. When the UDF mounts the filter looks for certain files on the DVD to verify if it is something that I want to "filter". I use ZwOpenFile in the SetupCallback routine. This works fine except for one problem. If the last disc to be in the drive was one...
ZwMapViewOfSection() fails in free build driver on Windows XP x6
&SectionHaHi, I used shared memory object to share memory between multiple processes and a kernel mode driver. The application created the shared object using CreateFileMapping() and the driver maps it using ZwMapViewOfSection(). Application in this case is a 32bit application. Driver function...
ZwLockVirtualMemory Load-time error.
Hello, I couldnt find the solution to this anywhere. I am writing a kernel mode driver that needs to lock a particular page of an user-mode process (since I dont have the source for this, I can't use API calls from within the user-space process) so that it doesn't get paged out. I am u...
ZWiki with Zope 2.7, OS X Server 10.4.x
I installed ZWiki by unpacking and putting the folder into my ZopeProducts directory. I restarted Zope and ZWiki shows up as a validproduct. However, when I actually try to add a ZWiki from the "selecttype to add" pulldown menu, I get this error:Time2006/06/22 09:05:41.911 GMT-4User Name (User I...
zwiki users - own color text?
hi allI've had a search thro the mailing list, but can't find out how to set up zwiki so that each user's contribution to a wiki automatically shows up in a particular color, or failing that how the user themselves can change the color of their contributioni have access to a serve...

'ZwReadFile returns STATUS_INVALID_HANDLE in DriverIOControl', With 3 answers.

Software & Application Miscellaneous: ZwReadFile returns STATUS_INVALID_HANDLE in DriverIOControl

Keywords & Tags: zwreadfile, returns, status_invalid_handle, driveriocontrol, software, application

Software & Application Miscellaneous Related Links

Software & Application Miscellaneous Hot Answers

Software & Application Miscellaneous New questions

Software & Application Miscellaneous Related Categories

Apache

BEA/Weblogic

Berkeley Software Design (BSD)

Business & Enterprise Application

Cisco

Computer Game Development

Crm

Debian

Desktop Environment (KDE)

Email Servers Technologies

Game Technologies

IBM/Websphere

Linux & Unix

Mac OS

Mozilla

Multimedia Technologies

Open Source Software

Oracle Technologies

PocketPC Developer

Samba

Software & Application Miscellaneous

Solaris Operating System