aboutsummaryrefslogtreecommitdiff

Gitlab-CI Circle-CI

Mingw64 Driver Plus Plus

A demonstration on how to compile Windows kernel drivers using Mingw64.

It provides also an example with a feature complete STL including your beloved containers.

You will need an modern Mingw64-GCC toolchain. Do not use any broken toolchains like the one shipped with debian-10. Instead either use Zeranoe's build script with make deps or use your own.

What?

  1. ddk-template: plain and stupid ddk C example
  2. ddk-template-cplusplus: same, but written in C++, including a very complex class and some MT
  3. ddk-template-cplusplus-EASTL: C++ example w/ (EA)STL integration, basicially everything usable except for SEH and assertions.

Build and Test

Build all examples with a Mingw64 toolchain using Zeranoe's build script:

make all

Build all examples with your own Mingw64 toolchain:

make all CC=path/to/bin/x86_64-w64-mingw32-gcc DDK_INCLUDE_DIR=path/to/include/ddk

Build Mingw64 only:

make deps

HowTo use it in your own project

At the moment only a GMake build system is supported. A minimal working Makefile for your own project could look alike:

DRIVER_NAME = Driver
DRIVER_OBJECTS = $(DRIVER_NAME).opp
DRIVER_TARGET = $(DRIVER_NAME).sys

ifndef DPP_ROOT
$(error DPP_ROOT is undefined)
endif

include $(DPP_ROOT)/Makefile.inc

%.opp: %.cpp
    $(call BUILD_CPP_OBJECT,$<,$@)

$(DRIVER_TARGET): $(DRIVER_OBJECTS)
    $(call LINK_CPP_KERNEL_TARGET,$(DRIVER_OBJECTS),$@)

Build it with: make Driver.sys DPP_ROOT=[path/to/this/repository]

It also possible to (self-)sign your driver and install your driver with:

install: $(DRIVER_TARGET)
    $(call INSTALL_EXEC_SIGN,$(DRIVER_TARGET))

The CRT and CRT++

This project uses a very very rudimentary CRT for C and C++ projects. Please keep in mind that depending on what you want to do the CRT may lack features you are familiar with. Usually copy&pasting them from various online sources should be sufficient.

Remember: The CRT and CRT++ sets a driver unload function meaning that code .e.g.:

NTSTATUS MyDriverEntry(_In_ struct _DRIVER_OBJECT * DriverObject, _In_ PUNICODE_STRING RegistryPath)
{
    DriverObject->DriverUnload = MyDriverUnload;
}

must not used. Overwriting DriverObject->DriverUnload with your own function may BSOD. Instead the function DriverUnload will be called. Make sure that the symbol DriverUnload exists and has the usual ddk function signature: void DriverUnload(_In_ struct _DRIVER_OBJECT * DriverObject). This is required to make ctors/dtors work without calling additional functions in DriverEntry / DriverUnload.

Thanks!

  • Zeranoe for the Mingw64 build script
  • sidyhe for some copy paste ready CRT code ;)
  • liupengs helped me to fix the ctor/dtor issue

and last but not least:

  • EA, bad company, good STL
Powered by cgit, Themed by Ted Yin.