最近根据梦织未来论坛的驱动教程学习了一下Windows下的驱动编程，做个笔记备忘。这是第03课《驱动的编程规范》。

驱动部分包括基本的驱动卸载函数、驱动打开关闭读取写入操作最简单的分发例程。代码如下：

//CreateDevice.c
//2016.07.14

#include "ntddk.h"

//驱动卸载函数Self
VOID MyDriverUnload(PDRIVER_OBJECT pDriverObject)
{ 
    UNICODE_STRING usSymName;
    RtlInitUnicodeString(&usSymName, L"\\??\\FirstDevice");
    
    //先删除符号链接，后删除设备对象
    if (pDriverObject->DeviceObject != NULL)
    {
        IoDeleteSymbolicLink(&usSymName);                //删除符号链接
        IoDeleteDevice(pDriverObject->DeviceObject);    //删除设备对象
        KdPrint(("Delete Device Sucess."));
    }
}

//创建设备函数Self
NTSTATUS CreateDevice(PDRIVER_OBJECT pDriverObject)
{
    NTSTATUS Status;
    UNICODE_STRING usDevName;
    UNICODE_STRING usSymName;
    PDEVICE_OBJECT pDevObj;        //设备对象，用于指向创建的设备
    
    //DDK API    为UNICODE_STRING赋值的函数
    RtlInitUnicodeString(&usDevName, L"\\Device\\FirstDevice");
    
    //创建设备函数API    创建设备"\\Device\\FirstDevice"
    //设备创建后，会返回给pDevObj，同时给pDriverObject->DeviceObject赋值
    //The IoCreateDevice routine creates a device object for use by a driver.
    /*
        NTSTATUS IoCreateDevice(
        _In_     PDRIVER_OBJECT  DriverObject,
        _In_     ULONG           DeviceExtensionSize,
        _In_opt_ PUNICODE_STRING DeviceName,
        _In_     DEVICE_TYPE     DeviceType,
        _In_     ULONG           DeviceCharacteristics,
        _In_     BOOLEAN         Exclusive,
        _Out_    PDEVICE_OBJECT  *DeviceObject
        );
    */
    Status = IoCreateDevice(pDriverObject,         
                            0, 
                            &usDevName, 
                            FILE_DEVICE_UNKNOWN, 
                            FILE_DEVICE_SECURE_OPEN, 
                            TRUE, 
                            &pDevObj);
    if (!NT_SUCCESS(Status))    //检查返回值
    {
        return Status;
    }
    
    //DO_BUFFERED_IO or DO_DIRECT_IO 
    //Specifies the type of buffering that is used by the I/O manager for I/O requests that are sent to the device stack. 
    //Higher-level drivers OR this member with the same value as the next-lower driver in the stack, except possibly for highest-level drivers.
    pDevObj->Flags |= DO_BUFFERED_IO;
    
    RtlInitUnicodeString(&usSymName, L"\\??\\FirstDevice");
    
    //The IoCreateSymbolicLink routine sets up a symbolic link between a device object name and a user-visible name for the device.
    /*
        NTSTATUS IoCreateSymbolicLink(
        _In_ PUNICODE_STRING SymbolicLinkName,
        _In_ PUNICODE_STRING DeviceName
        );
    */
    Status = IoCreateSymbolicLink(&usSymName, &usDevName);    //DDK API    创建符号链接
    if (!NT_SUCCESS(Status))
    {
        IoDeleteDevice(pDevObj);    //删除设备对象
        return Status;
    }
    
    return STATUS_SUCCESS; 
}

//打开设备的函数
NTSTATUS CreateCompleteRoutine(PDRIVER_OBJECT pDriverObject, PIRP pIrp)
{
    NTSTATUS Status;
    
    Status = STATUS_SUCCESS;
    
    KdPrint(("Create"));
    
    //A driver sets an IRP's I/O status block to indicate the final status of an I/O request, before calling IoCompleteRequest for the IRP.
    
    //This is the completion status, either STATUS_SUCCESS if the requested operation was completed successfully or an informational, warning, or error STATUS_ XXX value.
    //For more information, see Using NTSTATUS values.
    pIrp->IoStatus.Status = Status;
    //This is the completion status, either STATUS_SUCCESS if the requested operation was completed successfu