Calling Other Windows Filtering Platform Functions
来源:互联网 发布:淘宝买港版ipad 编辑:程序博客网 时间:2024/06/05 06:34
Many of the other Windows Filtering Platform functions that are available to user-mode management applications are also available to callout drivers. This enables a callout driver to perform management tasks, such as adding filters to the filter engine. The only difference between the user-mode and kernel-mode versions of these functions is the data type that is returned. The user-mode functions return Win32 error codes, whereas the kernel-mode functions return the equivalent NTSTATUS codes.
许多用户模式使用的WFP函数对于callout driver也是可以使用的,这使callout driver可以执行向过滤引擎添加过滤器的操作。这些函数在用户模式和内核模式之间的不同仅仅是返回类型不同,用户模式返回win32错误码,而内核返回NTSTATUS值。
Most of the Windows Filtering Platform management functions require a handle to an open session to the filter engine as a parameter. The following topics discuss how a callout driver can open and close a session to the filter engine.
许多WFP管理函数需要一个打开过滤引擎的会话句柄。
A callout driver must open a session to the filter engine to perform management tasks such as adding filters to the filter engine. A callout driver opens a session to the filter engine by calling theFwpmEngineOpen0 function. For example:
callout驱动可以调用FwpmEngineOpen0函数打开一个会话,然后可以后续执行添加过滤器的操作。
NTSTATUS status;
// Open a session to the filter engine
status =
FwpmEngineOpen0(
NULL, // The filter engine on the local system
RPC_C_AUTHN_WINNT, // Use the Windows authentication service
NULL, // Use the calling thread's credentials
NULL, // There are no session-specific parameters
&engineHandle // Pointer to a variable to receive the handle
);
After a callout driver has successfully opened a session to the filter engine, it can use the returned handle to call the other Windows Filtering Platform management functions.
After a callout driver has performed the desired management tasks, it should close the session to the filter engine. A callout driver does this by calling theFwpmEngineClose0 function. For example:
执行完必须的操作后,应该关闭会话。调用FwpmEngineClose0关闭会话。
FwpmEngineClose0(
engineHandle // An handle to the open session
);
- Calling Other Windows Filtering Platform Functions
- Windows Filtering Platform 结构和简介
- Windows Filtering Platform 结构和简介
- Windows Filtering Platform 结构和简介
- Introduction to Windows Filtering Platform Callout Drivers
- Calling Up Program Functions
- funciton/procedure calling each other
- Calling API functions using C#
- WFP-Windows Filtering Platform Traffic Inspection Sample 启动时候 发生系统错误87
- Calling Functions in LINQ to Entities Queries
- Calling Flex / Actionscript functions from Javascript
- Calling Lua functions : using C++ language
- Calling C/C++ functions from C#
- calling conventions on x86 platform --- 转载
- Morphological Filtering Dilate, erode, reconstruct, and perform other morphological operations
- Windows Network Data Filtering Techniques
- Calling C++ Functions From Lua(lua调用c/c++)
- Calling Fortran functions from C++ by means of shared libraries
- PHP书籍推荐TOP10排行榜
- iOS push时 tabbar隐藏的问题
- java分页查询接口的实现
- CMake Overview
- 基于JQuery的简单咖啡订单管理应用
- Calling Other Windows Filtering Platform Functions
- 目录结构
- 例题:找出字符串中最长数字串
- 图论之图的遍历做题报告
- Java绘制PNG图片时的黑色背景问题
- Spring4+Hibernate4
- Android LayoutParams用法解析
- 蓝桥杯 矩阵翻硬币
- 继承访问权限
