mirror-ac/driver/driver.h

#ifndef DRIVER_H
#define DRIVER_H

#include <ntifs.h>
#include <wdftypes.h>
#include <wdf.h>

/*
* This structure is strictly for driver related stuff
* that should only be written at driver entry.
* 
* Note that the lock isnt really needed here but Im using one
* just in case c:
*/
typedef struct _DRIVER_CONFIG
{
	CHAR driver_name[ 128 ];
	UNICODE_STRING device_name;
	UNICODE_STRING device_symbolic_link;
	UNICODE_STRING driver_path;
	UNICODE_STRING registry_path;
	KGUARDED_MUTEX lock;

}DRIVER_CONFIG, *PDRIVER_CONFIG;

/*
* This structure can change at anytime based on whether
* the target process to protect is open / closed / changes etc.
*/
typedef struct _PROCESS_CONFIG
{
	BOOLEAN initialised;
	LONG protected_process_id;
	PEPROCESS protected_process_eprocess;
	KGUARDED_MUTEX lock;

}PROCESS_CONFIG, *PPROCESS_CONFIG;

NTSTATUS InitialiseDriverConfigOnProcessLaunch(
	_In_ PIRP Irp
);

VOID GetProtectedProcessEProcess(
	_Out_ PEPROCESS* Process
);


VOID GetProtectedProcessId(
	_Out_ PLONG ProcessId
);

VOID ReadProcessInitialisedConfigFlag(
	_Out_ PBOOLEAN Flag
);


VOID TerminateProtectedProcessOnViolation();

VOID ClearProcessConfigOnProcessTermination();

#endif
e 2023-08-17 10:45:50 +02:00			`#ifndef DRIVER_H`
			`#define DRIVER_H`

			`#include <ntifs.h>`
			`#include <wdftypes.h>`
			`#include <wdf.h>`

config stuff wip 2023-09-01 14:30:32 +02:00			`/*`
			`* This structure is strictly for driver related stuff`
			`* that should only be written at driver entry.`
			`*`
			`* Note that the lock isnt really needed here but Im using one`
			`* just in case c:`
			`*/`
e 2023-08-24 15:12:49 +02:00			`typedef struct _DRIVER_CONFIG`
			`{`
break time C: 2023-09-01 13:46:31 +02:00			`CHAR driver_name[ 128 ];`
config stuff wip 2023-09-01 14:30:32 +02:00			`UNICODE_STRING device_name;`
			`UNICODE_STRING device_symbolic_link;`
break time C: 2023-09-01 13:46:31 +02:00			`UNICODE_STRING driver_path;`
config stuff wip 2023-09-01 14:30:32 +02:00			`UNICODE_STRING registry_path;`
e 2023-08-24 15:12:49 +02:00			`KGUARDED_MUTEX lock;`

			`}DRIVER_CONFIG, *PDRIVER_CONFIG;`

config stuff wip 2023-09-01 14:30:32 +02:00			`/*`
			`* This structure can change at anytime based on whether`
			`* the target process to protect is open / closed / changes etc.`
			`*/`
			`typedef struct _PROCESS_CONFIG`
			`{`
			`BOOLEAN initialised;`
			`LONG protected_process_id;`
			`PEPROCESS protected_process_eprocess;`
			`KGUARDED_MUTEX lock;`

			`}PROCESS_CONFIG, *PPROCESS_CONFIG;`

e 2023-08-24 15:12:49 +02:00			`NTSTATUS InitialiseDriverConfigOnProcessLaunch(`
			`_In_ PIRP Irp`
excellent progress :) 2023-08-20 16:12:04 +02:00			`);`

e 2023-08-24 15:12:49 +02:00			`VOID GetProtectedProcessEProcess(`
testing fixes 2023-08-30 15:23:04 +02:00			`_Out_ PEPROCESS* Process`
excellent progress :) 2023-08-20 16:12:04 +02:00			`);`

e 2023-08-24 15:12:49 +02:00
			`VOID GetProtectedProcessId(`
BLAH 2023-08-24 17:10:40 +02:00			`_Out_ PLONG ProcessId`
			`);`

config stuff wip 2023-09-01 14:30:32 +02:00			`VOID ReadProcessInitialisedConfigFlag(`
BLAH 2023-08-24 17:10:40 +02:00			`_Out_ PBOOLEAN Flag`
excellent progress :) 2023-08-20 16:12:04 +02:00			`);`

e 2023-08-24 15:12:49 +02:00
break time C: 2023-09-01 13:46:31 +02:00			`VOID TerminateProtectedProcessOnViolation();`

config stuff wip 2023-09-01 14:30:32 +02:00			`VOID ClearProcessConfigOnProcessTermination();`
break time C: 2023-09-01 13:46:31 +02:00
e 2023-08-17 10:45:50 +02:00			`#endif`