[收藏]在Win9x/NT下获取硬盘物理序列号

天云上人 · 发表于 2005-8-11 11:42:04

#include <WinIOCtl.h>
- G. Y: T5 Q& t6 T# a) U. t
#include <stdio.h>
5 r3 s& ~" t, E' T% U" a5 H5 O
) \6 C2 [/ n+ }( h8 s$ |
#pragma inline3 A0 c% ?: i* I8 o$ _" b: z
//---------------------------------------------------------------------------
$ R2 }; z7 ?' J! {5 M: _' U5 o
// IDE NT/2000/XP专用变量
8 Y7 S; m3 P5 p; B
#define GETVERSIONOUTPARAMS GETVERSIONINPARAMS$ p8 o; c# Q5 c2 I
#define DFP_GET_VERSION SMART_GET_VERSION# C, L% z/ L% U/ T$ u) |6 B
#define DFP_SEND_DRIVE_COMMAND SMART_SEND_DRIVE_COMMAND) l- V; W$ P" s% E- F8 u
#define DFP_RCV_DRIVE_DATA SMART_RCV_DRIVE_DATA
! y8 E- @+ G% \8 q# \- W' \
2 U0 x; S6 M- ]: c0 z1 M5 z- }
const WORD IDE_ATAPI_IDENTIFY = 0xA1; // 读取ATAPI设备的命令
; K$ y, w5 F7 Z7 t( }
const WORD IDE_ATA_IDENTIFY = 0xEC; // 读取ATA设备的命令
2 d# i1 s; c5 j
9 j% l6 Z! @+ \) Y
const int MAX_IDE_DRIVES = 4;
# @( H( {( t: R' k \7 x: }; d
! y! \6 g4 `: g7 E. L) {% ]
// SCSI专用变量1 X- J5 A: w, N! a; ?3 u! N/ S
const DWORD FILE_DEVICE_SCSI = 0x0000001B;
/ V- Z3 B: B- E7 {1 a8 h( {
const DWORD IOCTL_SCSI_MINIPORT_IDENTIFY = ((FILE_DEVICE_SCSI << 16) + 0x0501);
1 \- E) \$ W. u: L
const DWORD IOCTL_SCSI_MINIPORT = 0x0004D008; // see NTDDSCSI.H for definition
; u! I2 w3 f2 ~, P% U
const DWORD SENDIDLENGTH = sizeof(SENDCMDOUTPARAMS) + IDENTIFY_BUFFER_SIZE;
' P8 D5 r. o2 W- Y
0 Z8 K! \8 Y- s
typedef struct _SRB_IO_CONTROL
1 g& G, E+ E# }7 H% Y3 {- g# ^" P
{5 o5 C* j& w2 ~" L& E
ULONG HeaderLength;, k/ t8 K. p1 t( R6 h- x) h1 X
UCHAR Signature[8];
0 _/ m& k4 E; b6 C3 u4 }
ULONG Timeout;
% B. U% W% z+ i n6 z k
ULONG ControlCode;4 Y' k# T; C* R; D4 W
ULONG ReturnCode;, Y* q+ Z! p3 c, I
ULONG Length;8 p8 v+ G: s( F! D
}SRB_IO_CONTROL, *PSRB_IO_CONTROL;4 P2 V# C y2 x+ f
& }) H' {8 I0 ^! _1 q/ L
// 读取的主函数- E6 c& [* I) P- U
void __fastcall ReadPhysicalDrive(TStrings *pSerList, TStrings *pModeList);+ e, `/ p, r: M6 e) M$ Q
M5 i/ F1 d4 P
// 辅助函数& c! d6 ?" j" M/ }1 E
char *__fastcall ConvertToString(DWORD dwDiskData[256], int nFirstIndex, int nLastIndex);
, }9 r0 O% g2 L1 F0 Y4 \( K
// NT/2000/XP函数+ V9 Q1 D H t5 O. _& f. f: ]. x
void __fastcall ReadPhysicalDriveOnNT(TStrings *pSerList, TStrings *pModeList);: }1 Z7 {" u" X( B+ k, B+ p" g
bool __fastcall DoIdentify(HANDLE hPhysicalDriveIOCTL, PSENDCMDINPARAMS pSCIP,4 q2 m& k7 i9 q: S
PSENDCMDOUTPARAMS pSCOP, BYTE btIDCmd,4 h7 O2 d! ?( E7 H+ Q0 U0 G9 j
BYTE btDriveNum, PDWORD lpcbBYTEsReturned);
4 i5 O8 o l3 h% z" `& t
// Windows 9X函数
; @- y/ v( ]5 W" O F9 g+ } G
void __fastcall ReadPhysicalDriveOnW9X(TStrings *pSerList, TStrings *pModeList);- d4 Q) N% j+ t2 a* y
void __fastcall ReadPhysicalDriveOnW9X_Ring0(bool IsFirst, WORD BaseAddress,
6 n" \4 S- j9 B3 ^' ?9 ~+ J4 I
BYTE MoS, bool &IsIDEExist, bool &IsDiskExist, WORD *OutData);
9 x z* w2 w5 _& x
9 ]4 q+ B* z: P" d- o
// SCSI读取函数(for NT/2000/XP)
) S, |4 [+ l' b2 U; p; Y) l ?
String __fastcall ReadIDEDriveAsScsiDriveOnNT();
. Q) {" x" T$ R
//---------------------------------------------------------------------------+ w5 M: t% Y% n! x3 G
// ReadPhysicalDrive" V8 l4 L4 w1 f
void __fastcall ReadPhysicalDrive(TStrings *pSerList, TStrings *pModeList)
" Z5 X; ~* ]" z9 I" e
{
! ^ E0 `, C& A( o( N
switch(Win32Platform)
b* U; _" ^# o. | \
{) K+ a3 e& \7 n, j; d
case VER_PLATFORM_WIN32_WINDOWS:
" B( ]0 W9 x' w# M1 q$ [6 e* j
ReadPhysicalDriveOnW9X(pSerList, pModeList);
6 S7 x/ A# a, j. Y- _% [- f, B
break;6 O, z7 W' f# g2 Y4 D
case VER_PLATFORM_WIN32_NT:
* l$ B7 T2 h) v! [8 V6 {8 z
ReadPhysicalDriveOnNT(pSerList, pModeList);) C. m. o: N. U1 A t. x6 v
break; y* t( Q t" l1 D* k1 ^
default:
2 H; U# `9 S4 p5 [, v3 s
break;2 ^2 j+ _ y- j2 Y& H
}; n. _/ K$ ~4 Y5 q) ~ i) v/ \% I+ M
}( P0 O9 D& X4 [2 K: ?! S, @
//---------------------------------------------------------------------------5 ~! ?+ }% y0 p8 U8 H2 u- Q
// ConvertToString
) b$ R3 e. c2 E- K) v
char *__fastcall ConvertToString(DWORD dwDiskData[256], int nFirstIndex, int nLastIndex). w1 |7 J+ f& x {
{: s! d8 _8 x- @: a4 a6 f
static char szResBuf[1024];
1 I$ r7 o! d. ]) C5 a! |. @, d( L
int nIndex = 0;
6 {0 h: e- p9 e& @$ V) z; Z6 h+ k. ]
int nPosition = 0;/ Q9 E3 h8 [1 o/ ?8 K
. H( q$ ?; f( |! S3 ~0 @; L, p7 I! K
// Each integer has two characters stored in it backwards
3 R/ R4 {( _2 O3 Y. `& s" p
for(nIndex = nFirstIndex; nIndex <= nLastIndex; nIndex++)
% w; h) W; Y+ L& K3 D% y3 W& e
{
, S) P0 Z' }' |
// Get high BYTE for 1st character+ T% c' v( z$ X0 W v
szResBuf[nPosition] = (char)(dwDiskData[nIndex] / 256);
' t4 z2 k {; t
nPosition++;
, s( Y. k0 e/ g3 |
# q. [6 [' u9 D* K0 | G
// Get low BYTE for 2nd character* ?6 t* O- s+ r% O2 x, m
szResBuf[nPosition] = (char)(dwDiskData[nIndex] % 256);$ h. h# V6 W2 r* G$ S) K6 w3 E9 D$ m
nPosition++;" }. }& T( ~4 d7 E2 ~
}- U9 j8 j% }* Q% S: m+ e
* m; w& [. f1 h! W5 ?: ^
// End the string
3 G" O8 M- U* t8 W7 {
szResBuf[nPosition] = '\0';7 B2 G; L* R) f1 z; Q1 C& T: p% O
0 F- X/ u& ?6 c$ A* w# w
// Cut off the trailing blanks
' |; M) m& B8 r: w
for(nIndex = nPosition - 1; nIndex > 0 && ' ' == szResBuf[nIndex]; nIndex--)
1 s* I! W& U4 G- o! ^
szResBuf[nIndex] = '\0';
; l/ R5 c( m; [! J( Q
7 {: G7 g9 K' {1 R' v" l# p
return szResBuf;4 A3 f" {: v' K; [7 o# Y3 E! @( \
}* S1 i! J* }) Z# J2 ]/ t; ?4 D
//---------------------------------------------------------------------------
( S, U- B% c* m
// Winndows NT4/2000/XP 代码, S! ~( k! m' a# |% g
//---------------------------------------------------------------------------
" Q n4 G$ o# C& j6 _4 C
// ReadPhysicalDriveOnNT
3 L: u% X- {6 R$ ~" Q: { q
void __fastcall ReadPhysicalDriveOnNT(TStrings *pSerList, TStrings *pModeList)
$ z+ b3 w; F' `. q# K$ [
{
- y0 e# L4 f% W Z4 V6 j& I
// 输出参数
# T0 ]4 L' H% s, I( [
BYTE btIDOutCmd[sizeof(SENDCMDOUTPARAMS) + IDENTIFY_BUFFER_SIZE - 1];
: }0 w& b2 i7 o0 ^6 E. |
# Q' ?0 j% h) K' ~* d
for(int nDrive=0; nDrive < MAX_IDE_DRIVES; nDrive++)
4 A2 i: v; @0 l) b
{; t$ n( {+ V9 ?+ c1 A4 `: Q6 V
HANDLE hPhysicalDriveIOCTL;: U6 G3 x: }1 k- K3 \2 b
char szDriveName[32];+ p+ z- R) ?7 o: l' Y+ g! v# x3 |
" f% J- C& d) y! _& Z; B& }
sprintf(szDriveName, "\\\\.\\PhysicalDrive%d", nDrive);
9 o F+ ~/ O, `! Q% ]
hPhysicalDriveIOCTL = CreateFile(szDriveName,+ i& b2 w+ g5 o; b3 P) N# p6 K
GENERIC_READ | GENERIC_WRITE,, t3 {4 p3 I! g& G" k
FILE_SHARE_READ | FILE_SHARE_WRITE, NULL,3 o* ~. C$ {8 V: G1 m, R: d- E) w8 B
OPEN_EXISTING, 0, NULL);
3 u! e0 a3 v z5 S
0 C6 I" ]# j7 T, y0 P
if(hPhysicalDriveIOCTL != INVALID_HANDLE_VALUE)/ a6 ~% |0 F Y2 K
{- Q+ F2 Y3 x4 q! B& b4 W! O C. d
DWORD dwBytesReturned = 0;
' r+ k9 s0 X/ Z/ V3 E0 G& J
GETVERSIONOUTPARAMS gvopVersionParams;
" J0 U1 i" P; D. p
: y* b; p% h6 E( V# G
// Get the version, etc of PhysicalDrive IOCTL. K+ P- w! u$ L" a
ZeroMemory(&gvopVersionParams, sizeof(GETVERSIONOUTPARAMS));, I" L* f. { } f+ }# J
Z; F5 ?! P) B L. R
if(!DeviceIoControl(hPhysicalDriveIOCTL, DFP_GET_VERSION,9 }( |4 @1 o% s: e
NULL, 0, &gvopVersionParams, sizeof(gvopVersionParams),. o) F% T2 z) h4 u" `
&dwBytesReturned, NULL))) N6 D: X- y2 |9 m& L' D: m
{1 e& K" Y x. b4 L I( @
continue;
- E2 S! T; h$ N+ ~# e( |1 m
}
; C4 k1 w" m$ h. P8 }- e2 v2 P+ G; D
3 ]) K6 x, S' m3 Y e
if(gvopVersionParams.bIDEDeviceMap > 0)8 @/ |3 f% L. @9 K1 C. D
{" G- U5 `/ }) t5 p* R! w
// IDE or ATAPI IDENTIFY cmd$ [" ]8 h0 b* P1 f5 J+ h) g
BYTE btIDCmd = 0;/ q7 ?6 \2 S) J4 f
SENDCMDINPARAMS InParams;
" |8 o, Q7 k, ~
// Now, get the ID sector for all IDE devices in the system.' l/ F2 Q8 L) g% h8 n- ]" n. Y
// If the device is ATAPI use the IDE_ATAPI_IDENTIFY command," i+ ~6 e8 d! v5 k2 j" l
// otherwise use the IDE_ATA_IDENTIFY command
4 p; b2 a' b: h1 t1 N2 v
// 具体所得结果请参考头文件中的说明$ [1 D6 g, m6 c4 B4 ~# f- Z5 t
btIDCmd = (gvopVersionParams.bIDEDeviceMap >> nDrive & 0x10) ?: {$ t6 {) ]2 R0 R/ b, T& w P
IDE_ATAPI_IDENTIFY : IDE_ATA_IDENTIFY;& E; T1 M- q4 V1 b
ZeroMemory(&InParams, sizeof(SENDCMDINPARAMS));3 S5 P \) J, k8 y. X: l+ i) U
ZeroMemory(btIDOutCmd, sizeof(btIDOutCmd));# s9 z. C/ M% b6 q$ f# u% A
. N6 X$ V0 ?% X) S% w( n4 Q
if(DoIdentify(hPhysicalDriveIOCTL,+ p, b3 j3 B& J1 M
&InParams, (PSENDCMDOUTPARAMS)btIDOutCmd,* l# Y! I& Z7 V4 A
(BYTE)btIDCmd, (BYTE)nDrive, &dwBytesReturned))
# j/ k! @+ g1 |
{" d6 [, P# b5 e# W0 e: s6 X
DWORD dwDiskData[256];
5 z0 X7 N# Q( U; l; [
USHORT *pIDSector; // 对应结构IDSECTOR，见头文件* [: {# H- y, T8 U4 t- |
char szSerialNumber[21];1 U" [: ~: z3 X, w- L1 k# ^4 g
char szModelNumber[41];
5 q0 v3 J) F. k! j! n; i9 O. O
% ~2 d- s& t( h. b
pIDSector = (USHORT*)((SENDCMDOUTPARAMS*)btIDOutCmd)->bBuffer;# B; k& ?" X s; o/ C X- c& k
for(int i=0; i < 256; i++)
- }8 e. @) ]2 _, Z
dwDiskData = pIDSector;
8 m; |' P# w# [- n) m4 `
// 取系列号
, o: b/ w& w. J
ZeroMemory(szSerialNumber, sizeof(szSerialNumber));
3 |# z$ N: [4 {, K2 w' z( b) @
strcpy(szSerialNumber, ConvertToString(dwDiskData, 10, 19));
4 ~" a- K p) w3 v1 h; E
. [) [; Z5 o& h9 o. {+ u
// 取模型号
1 N; W6 P" Q4 n F# j" R' X
ZeroMemory(szModelNumber, sizeof(szModelNumber));# J, T i1 l& K
strcpy(szModelNumber, ConvertToString(dwDiskData, 27, 46));. R. M: f' O& U, `
* v& G$ C# N$ T
pSerList->Add(szSerialNumber);9 ] A7 [$ u9 K+ o6 {. ]
pModeList->Add(szModelNumber);
' n+ d; `" ^$ v8 z
}
6 g* C- b7 W1 m2 {9 Y% ^
}
6 U1 L* f3 c6 d7 Y% D# h% ?
CloseHandle (hPhysicalDriveIOCTL);& A* C9 N$ b" O' F0 h e
}" Z) Z$ f- y/ U8 K/ u& N7 [+ b
}
9 g5 X) J( t6 X8 a$ q
}: S8 T- X: T$ F! Z
//---------------------------------------------------------------------------" s, d! A% l3 h, l k @6 M
// DoIdentify/ ]' D. S# ]0 ~1 B( k( V3 j @
bool __fastcall DoIdentify(HANDLE hPhysicalDriveIOCTL, PSENDCMDINPARAMS pSCIP,' h, ~+ }& m1 ?' U( u# x& O5 q$ A
PSENDCMDOUTPARAMS pSCOP, BYTE btIDCmd, BYTE btDriveNum,) ^; z) A+ x9 O4 E) G/ _9 w
PDWORD pdwBytesReturned)
& g: R& D$ C( w6 w' D7 Q) {1 u0 t
{! s+ A$ ^' s0 G
// Set up data structures for IDENTIFY command.
2 w" \. `0 N) h1 h/ R
pSCIP->cBufferSize = IDENTIFY_BUFFER_SIZE;
$ y2 c' v+ Z) x* n
pSCIP->irDriveRegs.bFeaturesReg = 0;
6 [5 c8 h D$ l" S9 {& X5 D
pSCIP->irDriveRegs.bSectorCountReg = 1;
( `9 {' C; X, d- m1 R# W0 W
pSCIP->irDriveRegs.bSectorNumberReg = 1;
! {+ i" ^+ t f& O7 P0 }
pSCIP->irDriveRegs.bCylLowReg = 0;+ U/ I0 \+ |& P% c- d$ |$ b
pSCIP->irDriveRegs.bCylHighReg = 0;
& l; k9 Z9 C( ]& m/ {$ \# l
, w1 h9 ]- j0 s o
// Compute the drive number.（主盘和从盘所对应的值是不一样的）4 y6 k" V+ w# c7 ]
pSCIP->irDriveRegs.bDriveHeadReg = (btDriveNum & 1) ? 0xB0 : 0xA0;
. x$ F. f6 u, _/ S1 d
# ^( N3 Y s1 L: o. y! }' V- i
// The command can either be IDE identify or ATAPI identify.. \, v3 l% }& B9 h, [' Y
pSCIP->irDriveRegs.bCommandReg = btIDCmd;
x3 o) v6 E& d+ h6 j$ E0 p+ Q/ t
pSCIP->bDriveNumber = btDriveNum;
% G' S3 w+ P3 J6 \9 y, Q- U
pSCIP->cBufferSize = IDENTIFY_BUFFER_SIZE;% V6 c" \1 A' U: g$ k
5 V- f+ `& c% V6 J4 b9 }
return DeviceIoControl(hPhysicalDriveIOCTL, DFP_RCV_DRIVE_DATA, K! t0 V( M3 X L
(LPVOID)pSCIP,
3 p: R# H+ i( P2 T5 I8 B$ Y
sizeof(SENDCMDINPARAMS) - 1,
1 N8 [+ y7 }; G! ^; r1 o) O6 E
(LPVOID)pSCOP,
% |0 T8 y9 |1 L' Z# h% C( J
sizeof(SENDCMDOUTPARAMS) + IDENTIFY_BUFFER_SIZE - 1,/ C$ ?0 l& m F0 u" \
pdwBytesReturned, NULL);# Z) d ^# G& ]/ o: v
}
! y0 F# @' ^9 s7 U! K- L3 W; W9 B
//---------------------------------------------------------------------------
5 a$ \ [; R# I5 B
// Windows 95/98/ME 代码4 ]+ v4 q) ~3 _3 b
//---------------------------------------------------------------------------
8 G! }5 A# s2 I5 k$ ?) @# U+ G
// ReadPhysicalDriveOnW9X
# o0 Y: z9 @" w* C0 q# a
void __fastcall ReadPhysicalDriveOnW9X(TStrings *pSerList, TStrings *pModeList)
: v1 U f" s$ Q. d& m: K' ^% f
{3 {- n! G! P! D' _8 B0 ]+ G
WORD wOutData[256];
) V% S0 F' D6 y) f9 h. a
SetPriorityClass(GetCurrentProcess(), REALTIME_PRIORITY_CLASS);
8 P, ~5 ~* q$ h$ s3 y
. S2 Z4 N3 r$ E9 n w* f9 I
// 经过测试，发现第一次调用而且Drive >= 2时会在Ring0代码中出现错误，导致蓝屏。; [& A* J5 z! W( h, p8 y
// 经过N（N > 15）次的蓝屏后仍找不到原因：（，不得不在这里增加一段无用代码以6 x+ z1 T) Q# n
// 避免蓝屏的出现。（期待高人能指出原因）. o: X& n9 j9 g+ B
for(int nDrive = 0; nDrive < 8; nDrive++)2 p' r* l* C2 F4 C
{
+ z& k) Q. ? P0 O" F. _
WORD dwBaseAddress;! M1 `% v) J# Y$ m
BYTE btMasterSlave; // Master Or Slave b; {- y( c' t8 D9 M
bool bIsIDEExist;: c* R8 h5 _* B8 H0 x
bool IsDiskExist;
9 e" x/ p- j3 ?
1 ]! S) i( w c7 ]3 F" l% m4 U* _
switch(nDrive / 2)1 ?8 S% Y4 T9 a( u* A% K# v4 Q3 O
{
( d+ j: ?% n; c: E3 x2 l9 I
case 0: dwBaseAddress = 0x01F0; break;
! b- m6 E7 |$ T% ~: i
case 1: dwBaseAddress = 0x0170; break;. d2 F& w& Q; h, m" e
case 2: dwBaseAddress = 0x01E8; break;) c1 V5 H9 J$ l, ?# O
case 3: dwBaseAddress = 0x0168; break;! m$ S! x4 Q, {. j
}# \+ ^0 u0 n9 a2 h$ ~6 r
" @1 I* v: B* J: S4 {2 w, z
btMasterSlave = (BYTE)(((nDrive % 2) == 0) ? 0xA0 : 0xB0);0 D7 K r5 @/ `8 R
5 }8 T- I2 a3 G7 G6 M
// 进入Ring0$ J) P) a' v& A1 H R0 G
ReadPhysicalDriveOnW9X_Ring0(true, dwBaseAddress, btMasterSlave,' U! N$ G0 x- N* u+ t) y. b, C
bIsIDEExist, IsDiskExist, wOutData);
: [- [1 w0 i6 Q* k, a
}+ r2 H/ _4 V0 U+ p1 I/ |
9 b. {$ D) {& w6 o% D
// 开始读取 p( f' R' y+ e) {* y3 s& \& X
for(int nDrive = 0; nDrive < 8; nDrive++)6 z, B8 u$ C; U! `) a) H6 j
{
/ f5 S! |) W9 u3 n4 h% ^) R
WORD dwBaseAddress;- z& K6 B2 t4 c( F3 p5 Y$ O/ t1 q
BYTE btMasterSlave; // Master Or Slave
' m6 E* R9 _3 F/ l' `- A/ t6 ]
bool bIsIDEExist;6 m& e n9 M3 ^0 J' D
bool bIsDiskExist;
. a+ ]) a+ B/ z
switch(nDrive / 2). ~& G0 Z K4 V' N4 @
{! p. i5 a \2 F) `* a" H6 n3 U
case 0: dwBaseAddress = 0x01F0; break;
3 m5 S( S6 p' l$ W9 T, \$ H
case 1: dwBaseAddress = 0x0170; break;
9 V1 G, }* e& s6 T+ b- A) x, |& P
case 2: dwBaseAddress = 0x01E8; break;1 g2 Y! M. _+ i# \5 W5 t1 u
case 3: dwBaseAddress = 0x0168; break;1 V% S+ `. m) e; f. f1 ^
}
: p& o/ }- u/ h' D
/ A0 ~7 Z8 ]0 |/ ?1 ?4 _) B
btMasterSlave = (BYTE)(((nDrive % 2) == 0) ? 0xA0 : 0xB0);. N9 u8 T; w5 {" K; a
) A; j' s/ t& i* M
// 进入Ring0
) ]4 {, l1 S$ S! H5 K
bIsIDEExist = false;8 p. A Z0 t- a. m! R
bIsDiskExist = false;' v7 U' l) _( |& E7 R, a
ZeroMemory(wOutData, sizeof(wOutData));
; D" D8 _/ }6 ]" u. J1 K
6 t# E/ g+ {2 p$ G
ReadPhysicalDriveOnW9X_Ring0(false, dwBaseAddress, btMasterSlave,7 A, Q- i m1 m
bIsIDEExist, bIsDiskExist, wOutData);
' d) U4 M: u. ~- v: p
. N7 \+ T: |, l$ z" h5 w
if(bIsIDEExist && bIsDiskExist)- ^- w, r$ H& P7 F2 k2 r; p& q
{& Z, ]4 Q7 ~1 D/ m8 M
DWORD dwDiskData[256];
) s, Y8 L0 H5 g& @
char szSerialNumber[21];
1 p! D. {7 g9 j) v+ O
char szModelNumber[41];* d, U. w2 ~) b6 |, T' Z. q
+ o2 n" `( X6 z6 t
for(int k=0; k < 256; k++)
2 G9 x- u( J* d5 h. \
dwDiskData[k] = wOutData[k];
: ]/ d: V3 w, F% }
$ l) M* k! Z# b% y/ E0 q; W
// 取系列号% a2 F# s# R1 j% k) t# N7 f, C: N7 F
ZeroMemory(szSerialNumber, sizeof(szSerialNumber));; M6 W# c! Y' Z9 E
strcpy(szSerialNumber, ConvertToString(dwDiskData, 10, 19));, i: [2 p/ k& k8 W, H
8 q8 W( M2 A- L6 f% Q
// 取模型号5 ]/ G' q0 g. C( ^ `3 Y
ZeroMemory(szModelNumber, sizeof(szModelNumber));8 A0 L4 v U. x2 L. l+ C2 I5 L/ H
strcpy(szModelNumber, ConvertToString(dwDiskData, 27, 46));
) f" H! j2 b3 R" E) f! z9 Y
% X* p5 i d: v' a. L8 F' k
pSerList->Add(szSerialNumber);" Y# d( \- v6 ~4 ?/ S
pModeList->Add(szModelNumber);
- n: X0 I, j, F
}
! g7 l7 I* R6 P4 |/ q. N: h
}
2 o" `" Q2 ^" q2 x& I# l' h
SetPriorityClass(GetCurrentProcess(), NORMAL_PRIORITY_CLASS);
6 E/ |' m$ U! y$ `/ S' _
}
% k( u. j5 ?) \7 a. [7 |, F$ m7 x
//---------------------------------------------------------------------------
) g9 h4 N" m3 }5 S; ?8 ^/ q
// ReadPhysicalDriveOnW9X_Ring0()- B( \; b: t+ z9 k; L, ]
//4 c( `' ^# E4 U9 @' t7 F, M; ?: W
// dwBaseAddress = IDE(0,1,2,3) : 1F0h, 170h, 1E8h, 168h2 \ n& ^! G# Z8 [8 d
// btMasterSlave = Master(0xA0) Or Slave(0xB0)+ c( u: v V6 v/ n4 v) s
//---------------------------------------------------------------------------
- K9 w6 {. y" l% p: p: y* t
void __fastcall ReadPhysicalDriveOnW9X_Ring0(bool bIsFirst, WORD dwBaseAddress,+ z' Z1 d9 b+ N* g9 y6 h+ u9 ^- @
BYTE btMasterSlave, bool &bIsIDEExist, bool &bIsDiskExist, WORD *pOutData)$ Y0 U) R& N. r8 h- y
{. A3 g v8 N( z9 U
BYTE btIDTR1[6];
6 B% z+ T1 r+ `% V! n# C9 c; M( P& i
DWORD dwOldExceptionHook;
: G4 F$ c% ~! _2 R8 G8 j
const int nHookExceptionNo = 5;8 i' U8 T2 c: L# w
3 R& \. x' t% @6 u! _1 n- p
BYTE btIsIDEExist = 0;
d- M3 I A, v) ~6 |3 T# h p
BYTE btIsDiskExist = 0;
& Y C1 c% L# ]8 N1 |
WORD wOutDataBuf[256];
7 g( I; b. d! _9 J1 \2 Q5 f
0 O. b/ z9 Z m9 x* _: A
BYTE btIsFirst = (BYTE)bIsFirst;
; F) X0 g2 V) _3 n3 L# V+ A- I
! K: z# _6 E6 N# @
const BYTE btBit00 = 0x01;
9 w% C4 w/ U0 G) G k5 u
// const BYTE btBit02 = 0x04;
( X5 E4 {. @, e& c5 k3 ^
const BYTE btBit06 = 0x40;/ A5 u. n9 F. O4 v6 }8 _
const BYTE btBit07 = 0x80;2 o+ J' ~ E& S: w) H1 P! L
// const BYTE btERR = btBit00;! w- l$ g. ~( h4 |! }, `) L
const BYTE btBusy = btBit07;) h9 Q* Q2 u% {2 Y/ @4 E$ d0 K L
const BYTE btAtaCmd = 0xEC;
, l9 {& _* a9 b' S9 l& L
const BYTE btAtapiCmd = 0xA1;% j- }4 Q7 ?- w' r; F% k
8 V; ^8 G% h1 a* ]- k
__asm1 l3 F" {1 Y5 }* w
{
% ^/ n0 P+ B) `& q0 ?" Q& R
// 必须先执行这条语句
- y: D$ [1 R0 L
JMP EnterRing0+ W' p4 B4 ?* |& y, O8 G
( [7 G, J- Y( g# b, F
// 定义过程
, c& e* W' p- V6 b. j& H% \
// 等待IDE设备直到其不为忙为止, k. x) K" y6 G7 J
WaitWhileBusy proc
U6 A$ P/ A" Q5 b
: j7 C+ ~- c7 h, j; v
MOV EBX, 100000' c7 L; F6 I8 [4 D- {2 E
MOV DX, dwBaseAddress
' X M5 ?- W* q4 b' O5 F; h1 X
ADD DX, 72 {5 O/ l* r$ p* l/ B
* `! t6 [5 ~; @! s3 s
LoopWhileBusy:
- c% Z' v8 a. V$ c2 b' t$ h! }
5 T5 n' w2 j8 t. \, {
DEC EBX
1 ?! D" t( j& [
CMP EBX, 06 Y* B- u1 y& A% J+ ] H% m7 J( P# y
JZ Timeout- n) \0 h8 P& J1 M) O( S1 P' p
in AL, DX
, M& {+ n5 ^# c+ ~# N/ ^/ r
TEST AL, btBusy
6 P9 } m- R+ p. H
JNZ LoopWhileBusy
2 }- f& n$ r: M4 v) g+ n1 g: H
JMP DriveReady' Z4 _- \( c" q2 a
2 X( |: z# i" b; q6 v
// 超时，直接退出% l( B/ J# T: l
Timeout:" i l* P8 u. O( M
JMP LeaveRing0' o3 i }# N' e* k x
DriveReady:
, q+ y( T# i. K; g- B, H- \
RET
, Y O+ n+ U/ Z7 l4 m
ENDP // End of WaitWhileBusy Procedure) f8 Y4 I- r4 Y1 }
% ]% Z( m5 ~0 J" a1 I' `. W& p
// 设置主盘和从盘标志/ ~5 K X4 f/ @/ n5 I, h" L
SelectDevice proc! V$ K7 F8 d+ D+ z6 [1 l
) K M3 N* d. ?7 N f+ \/ D7 r
MOV DX, dwBaseAddress* A1 Y% r& ^1 p8 t$ y0 j) |8 J! n
ADD DX, 6
" x1 I3 B9 [) b2 M# H4 W
MOV AL, btMasterSlave
, x" i$ x5 V9 m' o. ]! g& ]) T6 j
/ p; s$ u- Q8 J8 {! j
out DX, AL* f1 S3 Y& I8 S* n, V/ c/ f
RET
0 L" r" Y5 }* A
* g8 ` k* b6 I. C% I
ENDP // End of SelectDevice Procedure
3 t, Q9 V s8 f5 Q2 P2 w1 U
! g4 h* n# ^# Q$ h# z
// 向IDE设备发送存取指令
* y' J( m+ q$ m% X
SendCmd proc
% u: r8 i% K F" ~4 Y5 v8 [) W
l1 m F6 V/ C5 H0 K- N, ~% E
MOV DX, dwBaseAddress9 R# c" X8 L7 w; ~
ADD DX, 7; I4 v/ d$ z8 ]5 w; u( x
MOV AL, BL // BL是主从盘标识，在过程外设置
; x9 p1 y# x+ Z& U( ^: j8 k+ M$ B9 z
out DX, AL0 E) j- d" p9 h) o3 |' U
RET4 t: z: i9 f+ |/ @5 [9 l V
ENDP // End of SendCmd Procedure
: e5 A+ P+ R2 W+ Z0 v: ?+ B3 Q
H& v. @0 i# d
// Ring0代码( }, b0 V3 c2 X( i. c3 m* ?. C7 V
Ring0Proc:- @3 c0 Q" Q2 C" A
PUSHAD8 g m0 s; @3 K! z
// 查询IDE设备是否存在
/ f3 s/ l: s. E
MOV DX, dwBaseAddress
1 u! b/ L4 V' j# T( B9 Y+ ~# q* N
ADD DX, 7
5 P* `' E% q- K3 W, c* Y
in AL,DX
6 |8 Z) |( X* f% \- h& E" K
% k/ n0 {4 ?, [$ w& f# M- W7 K
// 当AL的值是0xFF或者0x7F时，IDE设备不存在，这时候直接返回* ?* L8 b) ~* n/ }
CMP AL,0xFF
" K, W# e% s- Q! t! m
JZ LeaveRing0
) o# F0 T \4 |1 C9 R
CMP AL, 0x7F9 U' k; h! U f2 R, m: I( q
JZ LeaveRing0$ m, W: M3 z2 O3 I
1 M0 J5 X& Q: t4 p$ t/ F5 a' l
// 设置IDE设备存在标志
& [9 J3 \* t8 ?
MOV btIsIDEExist, 1
/ g) Q1 K1 i' y% B; a o9 w
7 f6 l2 S9 F- {) s' l
// 查询IDE设备上的驱动器是否存在（有IDE插槽在主板上，但是却不一定有硬盘插在上面）$ A' |( T5 p2 ]7 |& x
CALL WaitWhileBusy7 l1 P1 X( W @) Y
CALL SelectDevice7 h0 J# h8 c* U: v! l2 w* [
" [% G* Q- M# V3 a f
// 如果是第一次调用，则直接返回，否则执行下行语句时会出现蓝屏# k; @9 v6 k+ J$ v3 F: l) i0 }
CMP btIsFirst, 1
+ |& W5 `/ Z" O7 v `, r+ E& O$ h
JZ LeaveRing0
9 v$ ]+ |# k4 h7 `" V: m
: \* L% f8 u* F3 M0 `
// 第一次调用时，如果执行这行语句会导致蓝屏，Why？？？8 Y! w: |( j4 L. H7 d* M3 ]
CALL WaitWhileBusy- ?9 n. `1 E; ?" y+ q2 E7 M
! J! r# o) c, ^
// AL的值等于cBit06时，不存在驱动器，直接返回! }- N# K) m K) L
TEST AL, btBit06# j- H0 O. E7 ~3 T$ j( y
JZ LeaveRing0
7 L* i) T7 a$ A3 Q2 \9 g' N+ H) H
# v6 {$ [/ M. [5 w
// 设置驱动器存在标志
0 }' s" _( `! O4 J# ?- i
MOV btIsDiskExist, 1
" E* w- q% n* e
# L" h$ l; i# w: E+ b- N
// 发送存取端口命令
b8 |7 Z0 z. j
// 无法像NT/2000/XP那样可以通过查询VERSION的值得到驱动器的类型，8 T4 E4 S! G# \/ B, z r: V
// 所以只能一步一步地测试，如果不是ATA设备，再尝试使用ATAPI设备命令
8 [7 D* j9 O! x8 W" _
CALL WaitWhileBusy
) p N/ Y5 }$ ? S/ q2 R3 S: W$ }
CALL SelectDevice // 设置主从盘标识( k) X/ U2 O$ b6 X+ U5 {) f1 z
MOV BL, btAtaCmd // 发送读取命令
+ H# J8 e9 _/ A; P9 e; r
CALL SendCmd9 Z6 O3 E0 S) U4 ~% j1 ?
CALL WaitWhileBusy
+ C! }2 r5 L( P
6 U4 {, D, |0 b
// 检查是否出错
0 N5 f# M( C4 `9 |+ V' z# |8 w; J
MOV DX, dwBaseAddress; p( { X( h8 C2 i3 z B
ADD DX, 7" A3 u( z* v6 ~
" \6 ~, [: l8 V Z+ d. [
in AL, DX
4 e# X+ G4 | i
% i ^$ {; V ~/ |/ T, j5 U
TEST AL, btBit00% s2 n) a" y2 W! o* W7 q6 r7 K
JZ RetrieveInfo // 没有错误时则读数据
( @; q# C1 _ Q
3 B$ I3 U W5 `, X: }
// 如果出错，则进一步尝试使用ATAPI设备命令* y+ k7 l' M9 K% L5 K
CALL WaitWhileBusy* R$ V0 X0 @# k, V- ~6 h
CALL SelectDevice/ e! ^3 o& {% u- a! @4 Q3 Q! ~
MOV BL, btAtapiCmd; s f8 s" {$ u( C
CALL SendCmd& p1 Y4 e9 e9 Y: K
CALL WaitWhileBusy5 B/ E' ^% @8 J
" u% e j) K' k/ N- T2 A
// 检查是否还出错
- o- W2 k6 ?& k) x% c
MOV DX, dwBaseAddress6 @: x T3 I: z5 T
ADD DX, 7, k0 x) R; K& R( s" e5 H
in AL, DX1 ~) M! A- \" f, D. A0 s2 r J# k3 P: D
TEST AL, btBit00
, c J9 E5 l3 F5 ~0 H, G
JZ RetrieveInfo // 没有错误时则读数据
' b* k9 y5 I% h! X8 X5 b4 M& {
JMP LeaveRing0 // 如果还是出错，直接返回
0 I! @, m; x8 v4 \, R" |
p* I* a+ O( Z- t* x
// 读取数据
" s0 m1 w# p" q9 {, m" o) Z( f& u
RetrieveInfo:2 X* }8 I% f. o# ]. K! {/ o; f
b: @$ x4 e. _* I0 F) D
LEA EDI, wOutDataBuf3 h7 l3 z4 v, ^
MOV ECX, 2560 h+ P. E; Y% M+ Y! e$ l
MOV DX, dwBaseAddress1 n/ X2 J1 z* Q" T% o
CLD( `3 g6 h( E( U! I$ b5 s
1 {% f) T% T0 B( w6 I
REP INSW
& y! T0 Y- Z# o6 X2 C, ?, ]0 X
5 S' ^- `9 ] x$ U7 {( U: W! {0 _
// 退出Ring0代码
- H1 E" z5 M& k% p9 ^* K' i1 S
LeaveRing0:
1 {2 m, h) {, P. X9 W! ~' U1 E
+ X" d: B: l/ E+ j+ A6 }1 Z6 x
POPAD2 s1 L' T; K0 c1 _
IRETD
& U' O2 b7 O) P- t2 _! I% s
H0 R6 O( ?; }$ l9 y
// 激活Ring0代码
: f5 g; |5 @; r) \
EnterRing0:
. I: Z) h( M2 d+ H/ S4 t
' [5 _6 p: b8 F, c; g4 Y1 y9 {
// 修改中断门, _% g! \1 x' U) T5 {! I
SIDT FWORD PTR btIDTR17 S' {% ]3 x% H/ n/ B" } P! }. w- _1 d
MOV EAX, DWORD PTR btIDTR1 + 02h
) s$ G$ T* G8 ]/ I8 G
ADD EAX, nHookExceptionNo * 08h + 04h3 ^+ C; O: o' E9 ?' V4 k4 D
CLI& t3 x: h! |. v a
# x8 ]. B7 {# v9 E5 P& }
// 保存原异常处理例程入口) s3 E& q6 U$ ~6 q) b f/ \
MOV ECX, DWORD PTR [EAX]: O! p. p1 {2 f) N$ v( S
MOV CX, WORD PTR [EAX-04h]
! J* p1 s: H. g$ E5 u2 X: U9 A4 L
MOV dwOldExceptionHook, ECX- [, G; z0 o" g2 z$ W. V& x3 r4 y2 z
& W2 X, }* X& Q ]
// 指定新入口' i0 s, }. u8 p+ r. J7 U: B3 ~! F
LEA EBX, Ring0Proc
' S! a) L7 k- @& @* G
MOV WORD PTR [EAX-04h],BX0 z* {9 \: G3 @3 ]2 Z4 ]
SHR EBX, 10h
1 R* w) T4 v4 _& r* `4 R
MOV WORD PTR[EAX+02h], BX# Y- ?9 E; R, n# p, _, J1 ?
1 @: n5 a, z; }3 e" z
// 激活Ring0代码' I. U2 C* P' l4 Y! _; z
INT nHookExceptionNo; F1 m) S0 D; B: v3 M) m9 d
; g% l% P& r+ a0 b0 p- L& G! [8 s
// 复原入口# r. Q& l, W0 E+ e7 E1 [0 l7 y
MOV ECX,dwOldExceptionHook
0 ^- {8 G+ y$ \' `: V0 m. K3 K7 M [
MOV WORD PTR[EAX-04h], CX4 \# m, b0 \ @% X6 I, {
SHR ECX,10h) B' S5 n d+ W' u1 Z* U4 ]; X
MOV WORD PTR[EAX+02h], CX
: |# `5 F/ b( j. u3 W7 O
STI
+ H$ ~' f! f1 Q# t% U5 C# w
}0 C F) U4 W% |0 H* D* u. q
if(!bIsFirst)
" G: i. `* n' Y
{( o3 X- s, E9 c8 E
bIsIDEExist = (bool)btIsIDEExist;- O' j/ O$ o* y* l. T% O% l
bIsDiskExist = (bool)btIsDiskExist;3 z9 [# J6 a r" `. e( a
CopyMemory(pOutData, wOutDataBuf, sizeof(wOutDataBuf));3 R% k) h! w% _& z( b3 K2 Q
}; V! Y+ K! k/ h& C
}
! [% u+ `; O% b; K0 M, D
//---------------------------------------------------------------------------
8 _# S6 ^- H! R5 O$ d: R; [
// 调用方法：- E- J+ q+ I: |* d1 G
void __fastcall TForm1::Button1Click(TObject *Sender)
! _2 J: i4 O1 g- H- F
{$ ~0 x& w; R# k) d" p$ c
ReadPhysicalDrive(Memo1->Lines, Memo2->Lines);
' G' B) h% M8 e( o* T: R3 z
}

复制代码

梦幻雨 · 发表于 2005-8-15 01:00:45

晕乎乎。。。怎么看８　洞阿

		自动登录	找回密码
密码			注册

[收藏]在Win9x/NT下获取硬盘物理序列号

浏览过的版块