Re[2]: Need some info related to Antivirus,Folder lock drivers?

> I have downloaded WDK and it has DDK 3790.1830, but after read few

chapters i found WDF is more easy and next recommended from
microsoft for its driver development.

That’s true, but there is one word missing:

WDF is more easy and next recommended from microsoft
for its DEVICE driver development.

So unless you creating RAMDISK, or network card driver,
WDF is not for you. File systems and file systems
(mini)filters cannot be written using WDF.

L.

So should i use??? WDM for creating drivers like my required functionalities?? but on microsoft site its written WDM cant be use for writing filter drivers?? You guys are saying WDF is not for writing filter driver then should i use simple core DDK for my filter driver…I am still confuse :frowning: Please guide me.

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
But i am very confuse from where to start , I have seen and read few articles
related WDF,WDM etc,. Since you said WDF is not supported for Filter driver and
on msdn its written WDM is also not a choice for filter driver.
http://msdn2.microsoft.com/en-us/library/ms790737.aspx

Please clearify me which Driver library for which driver model is suitable. I
used to create security application in usermode using VC++(hooking etc) etc.But
i was always limited to control the system like i couldnt take dekstop snapshot
having running Video picture as well, Getting HTTP get and response data without
any third party API, Locking and hiding the files out from its file system etc.
These kinds of work i need to do using system drivers.

I have downloaded WDK and it has DDK 3790.1830, but after read few chapters i
found WDF is more easy and next recommended from microsoft for its driver
development. Thats why i was thinking to download WDF for making drivers.

Please guide me from all above confusion i have.

Regards

>So should i use??? WDM for creating drivers like my required functionalities?? but on microsoft site its written WDM cant be use for writing filter >drivers?? You guys are saying WDF is not for writing filter driver then should i use simple core DDK for my filter driver…I am still confuse :frowning: Please >guide me.

You neither have to use WDF nor WDM.
You have to implement a File system minifilter.
Or in the worst case a legacy filter. But I would not recommend you to go for it.
Read the WDK documentation carefully. You will get an idea then.

Regards,
Ayush Gupta.

There has been IFS kit for writing file system filters which is now part of
WDK. Last build of WDK is 6001.17121.071212-1922 . There are examples for
filter drivers and mini-filter drivers included in WDK which may be good
starting point.

More info at

http://www.microsoft.com/whdc/driver/filterdrv/default.mspx
http://msdn2.microsoft.com/en-us/library/ms793583.aspx

Jan

wrote in message news:xxxxx@ntfsd…
> So should i use??? WDM for creating drivers like my required
functionalities?? but on microsoft site its written WDM cant be use for
writing filter drivers?? You guys are saying WDF is not for writing filter
driver then should i use simple core DDK for my filter driver…I am still
confuse :frowning: Please guide me.
>

There are many different models for drivers. No single model will do what
you want to accomplish.

Filtering files and locking folders you should use a File System Mini Filter
Driver.

I’m not sure what you want to do with video, but WDF (aka KMDF) would be
your best bet here.

Network Traffic, that depends. I don’t know what your seeking to do here,
but I figure you should read about NDIS Intermediate drivers. Depending on
where you are in the network stack, you could be a legacy driver or a WDM
driver… kinda depends

Good Luck,
Matt

----- Original Message -----
From:
To: “Windows File Systems Devs Interest List”
Sent: Thursday, January 10, 2008 5:44 AM
Subject: RE:[ntfsd] Re[2]: Need some info related to Antivirus,Folder lock
drivers?

> So should i use??? WDM for creating drivers like my required
> functionalities?? but on microsoft site its written WDM cant be use for
> writing filter drivers?? You guys are saying WDF is not for writing filter
> driver then should i use simple core DDK for my filter driver…I am still
> confuse :frowning: Please guide me.
>
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
> But i am very confuse from where to start , I have seen and read few
> articles
> related WDF,WDM etc,. Since you said WDF is not supported for Filter
> driver and
> on msdn its written WDM is also not a choice for filter driver.
> http://msdn2.microsoft.com/en-us/library/ms790737.aspx
>
> Please clearify me which Driver library for which driver model is
> suitable. I
> used to create security application in usermode using VC++(hooking etc)
> etc.But
> i was always limited to control the system like i couldnt take dekstop
> snapshot
> having running Video picture as well, Getting HTTP get and response data
> without
> any third party API, Locking and hiding the files out from its file system
> etc.
> These kinds of work i need to do using system drivers.
>
> I have downloaded WDK and it has DDK 3790.1830, but after read few
> chapters i
> found WDF is more easy and next recommended from microsoft for its driver
> development. Thats why i was thinking to download WDF for making drivers.
>
> Please guide me from all above confusion i have.
>
> Regards
>
>
>
> —
> NTFSD is sponsored by OSR
>
> For our schedule debugging and file system seminars
> (including our new fs mini-filter seminar) visit:
> http://www.osr.com/seminars
>
> You are currently subscribed to ntfsd as: matt-martin@tx.rr.com
> To unsubscribe send a blank email to xxxxx@lists.osr.com
>

Matthew Martin wrote:

There are many different models for drivers. No single model will do
what you want to accomplish.

Filtering files and locking folders you should use a File System Mini
Filter Driver.

I’m not sure what you want to do with video, but WDF (aka KMDF) would be
your best bet here.

Network Traffic, that depends. I don’t know what your seeking to do
here, but I figure you should read about NDIS Intermediate drivers.
Depending on where you are in the network stack, you could be a legacy
driver or a WDM driver… kinda depends

It’s also worth adding that all this is a large project with a steep
learning curve. Set aside at least 12-18 months for it. If possible go
on an OSR course.

Tony

thanks all for your help and guidence, i will first work on ddk for filter driver.