ReactOS 0.4.16-dev-1946-g52006dd
psfuncs.h
Go to the documentation of this file.
1/******************************************************************************
2 * Process Manager Functions *
3 ******************************************************************************/
4$if (_WDMDDK_)
5
6NTKERNELAPI
7NTSTATUS
8NTAPI
9PsWrapApcWow64Thread(
10 _Inout_ PVOID *ApcContext,
11 _Inout_ PVOID *ApcRoutine);
12
13/*
14 * PEPROCESS
15 * PsGetCurrentProcess(VOID)
16 */
17#define PsGetCurrentProcess IoGetCurrentProcess
18
19#if !defined(_PSGETCURRENTTHREAD_)
20#define _PSGETCURRENTTHREAD_
21_IRQL_requires_max_(DISPATCH_LEVEL)
22FORCEINLINE
23PETHREAD
24NTAPI
25PsGetCurrentThread(VOID)
26{
27 return (PETHREAD)KeGetCurrentThread();
28}
29#endif /* !_PSGETCURRENTTHREAD_ */
30
31$endif (_WDMDDK_)
32$if (_NTDDK_)
33
34__kernel_entry
35NTSYSCALLAPI
36NTSTATUS
37NTAPI
38NtOpenProcess(
39 _Out_ PHANDLE ProcessHandle,
40 _In_ ACCESS_MASK DesiredAccess,
41 _In_ POBJECT_ATTRIBUTES ObjectAttributes,
42 _In_opt_ PCLIENT_ID ClientId);
43
44__kernel_entry
45NTSYSCALLAPI
46NTSTATUS
47NTAPI
48NtQueryInformationProcess(
49 _In_ HANDLE ProcessHandle,
50 _In_ PROCESSINFOCLASS ProcessInformationClass,
51 _Out_writes_bytes_to_opt_(ProcessInformationLength, *ReturnLength)
52 PVOID ProcessInformation,
53 _In_ ULONG ProcessInformationLength,
54 _Out_opt_ PULONG ReturnLength);
55$endif (_NTDDK_)
56$if (_NTIFS_)
57
58_Must_inspect_result_
59_IRQL_requires_max_(APC_LEVEL)
60NTKERNELAPI
61NTSTATUS
62NTAPI
63PsLookupProcessByProcessId(
64 _In_ HANDLE ProcessId,
65 _Outptr_ PEPROCESS *Process);
66
67_Must_inspect_result_
68_IRQL_requires_max_(APC_LEVEL)
69NTKERNELAPI
70NTSTATUS
71NTAPI
72PsLookupThreadByThreadId(
73 _In_ HANDLE UniqueThreadId,
74 _Outptr_ PETHREAD *Thread);
75$endif (_NTIFS_)
76
77#if (NTDDI_VERSION >= NTDDI_WIN2K)
78
79$if (_WDMDDK_)
80_IRQL_requires_max_(APC_LEVEL)
81_Post_satisfies_(return <= 0)
82_Must_inspect_result_
83NTKERNELAPI
84NTSTATUS
85NTAPI
86PsCreateSystemThread(
87 _Out_ PHANDLE ThreadHandle,
88 _In_ ULONG DesiredAccess,
89 _In_opt_ POBJECT_ATTRIBUTES ObjectAttributes,
90 _In_opt_ HANDLE ProcessHandle,
91 _Out_opt_ PCLIENT_ID ClientId,
92 _In_ PKSTART_ROUTINE StartRoutine,
93 _In_opt_ _When_(return==0, __drv_aliasesMem) PVOID StartContext);
94
95_IRQL_requires_max_(PASSIVE_LEVEL)
96NTKERNELAPI
97NTSTATUS
98NTAPI
99PsTerminateSystemThread(
100 _In_ NTSTATUS ExitStatus);
101
102$endif (_WDMDDK_)
103$if (_NTDDK_)
104
105_IRQL_requires_max_(PASSIVE_LEVEL)
106NTKERNELAPI
107NTSTATUS
108NTAPI
109PsSetCreateProcessNotifyRoutine(
110 _In_ PCREATE_PROCESS_NOTIFY_ROUTINE NotifyRoutine,
111 _In_ BOOLEAN Remove);
112
113_IRQL_requires_max_(PASSIVE_LEVEL)
114NTKERNELAPI
115NTSTATUS
116NTAPI
117PsSetCreateThreadNotifyRoutine(
118 _In_ PCREATE_THREAD_NOTIFY_ROUTINE NotifyRoutine);
119
120_IRQL_requires_max_(PASSIVE_LEVEL)
121NTKERNELAPI
122NTSTATUS
123NTAPI
124PsSetLoadImageNotifyRoutine(
125 _In_ PLOAD_IMAGE_NOTIFY_ROUTINE NotifyRoutine);
126
127NTKERNELAPI
128HANDLE
129NTAPI
130PsGetCurrentProcessId(VOID);
131
132_IRQL_requires_max_(DISPATCH_LEVEL)
133NTKERNELAPI
134HANDLE
135NTAPI
136PsGetCurrentThreadId(VOID);
137
138NTKERNELAPI
139BOOLEAN
140NTAPI
141PsGetVersion(
142 OUT PULONG MajorVersion OPTIONAL,
143 OUT PULONG MinorVersion OPTIONAL,
144 OUT PULONG BuildNumber OPTIONAL,
145 OUT PUNICODE_STRING CSDVersion OPTIONAL);
146$endif (_NTDDK_)
147$if (_NTIFS_)
148
149_IRQL_requires_max_(APC_LEVEL)
150NTKERNELAPI
151PACCESS_TOKEN
152NTAPI
153PsReferenceImpersonationToken(
154 _Inout_ PETHREAD Thread,
155 _Out_ PBOOLEAN CopyOnOpen,
156 _Out_ PBOOLEAN EffectiveOnly,
157 _Out_ PSECURITY_IMPERSONATION_LEVEL ImpersonationLevel);
158
159_IRQL_requires_max_(APC_LEVEL)
160NTKERNELAPI
161LARGE_INTEGER
162NTAPI
163PsGetProcessExitTime(VOID);
164
165_IRQL_requires_max_(DISPATCH_LEVEL)
166NTKERNELAPI
167BOOLEAN
168NTAPI
169PsIsThreadTerminating(
170 _In_ PETHREAD Thread);
171
172_Must_inspect_result_
173_IRQL_requires_max_(PASSIVE_LEVEL)
174NTKERNELAPI
175NTSTATUS
176NTAPI
177PsImpersonateClient(
178 _Inout_ PETHREAD Thread,
179 _In_opt_ PACCESS_TOKEN Token,
180 _In_ BOOLEAN CopyOnOpen,
181 _In_ BOOLEAN EffectiveOnly,
182 _In_ SECURITY_IMPERSONATION_LEVEL ImpersonationLevel);
183
184_IRQL_requires_max_(PASSIVE_LEVEL)
185NTKERNELAPI
186BOOLEAN
187NTAPI
188PsDisableImpersonation(
189 _Inout_ PETHREAD Thread,
190 _Inout_ PSE_IMPERSONATION_STATE ImpersonationState);
191
192_IRQL_requires_max_(PASSIVE_LEVEL)
193NTKERNELAPI
194VOID
195NTAPI
196PsRestoreImpersonation(
197 _Inout_ PETHREAD Thread,
198 _In_ PSE_IMPERSONATION_STATE ImpersonationState);
199
200_IRQL_requires_max_(PASSIVE_LEVEL)
201NTKERNELAPI
202VOID
203NTAPI
204PsRevertToSelf(VOID);
205
206_IRQL_requires_max_(APC_LEVEL)
207NTKERNELAPI
208VOID
209NTAPI
210PsChargePoolQuota(
211 _In_ PEPROCESS Process,
212 _In_ POOL_TYPE PoolType,
213 _In_ ULONG_PTR Amount);
214
215_IRQL_requires_max_(APC_LEVEL)
216NTKERNELAPI
217VOID
218NTAPI
219PsReturnPoolQuota(
220 _In_ PEPROCESS Process,
221 _In_ POOL_TYPE PoolType,
222 _In_ ULONG_PTR Amount);
223
224_IRQL_requires_max_(PASSIVE_LEVEL)
225NTKERNELAPI
226NTSTATUS
227NTAPI
228PsAssignImpersonationToken(
229 _In_ PETHREAD Thread,
230 _In_opt_ HANDLE Token);
231
232_IRQL_requires_max_(PASSIVE_LEVEL)
233NTKERNELAPI
234HANDLE
235NTAPI
236PsReferencePrimaryToken(
237 _Inout_ PEPROCESS Process);
238$endif (_NTIFS_)
239#endif /* (NTDDI_VERSION >= NTDDI_WIN2K) */
240$if (_NTDDK_ || _NTIFS_)
241#if (NTDDI_VERSION >= NTDDI_WINXP)
242$endif (_NTDDK_ || _NTIFS_)
243
244$if (_NTDDK_)
245_IRQL_requires_max_(DISPATCH_LEVEL)
246NTKERNELAPI
247HANDLE
248NTAPI
249PsGetProcessId(
250 _In_ PEPROCESS Process);
251
252_IRQL_requires_max_(DISPATCH_LEVEL)
253NTKERNELAPI
254HANDLE
255NTAPI
256PsGetThreadId(
257 _In_ PETHREAD Thread);
258
259NTKERNELAPI
260PEPROCESS
261NTAPI
262PsGetThreadProcess(
263 _In_ PETHREAD Thread
264);
265
266NTKERNELAPI
267NTSTATUS
268NTAPI
269PsRemoveCreateThreadNotifyRoutine(
270 _In_ PCREATE_THREAD_NOTIFY_ROUTINE NotifyRoutine);
271
272_IRQL_requires_max_(PASSIVE_LEVEL)
273NTKERNELAPI
274NTSTATUS
275NTAPI
276PsRemoveLoadImageNotifyRoutine(
277 _In_ PLOAD_IMAGE_NOTIFY_ROUTINE NotifyRoutine);
278
279_IRQL_requires_max_(DISPATCH_LEVEL)
280NTKERNELAPI
281LONGLONG
282NTAPI
283PsGetProcessCreateTimeQuadPart(
284 _In_ PEPROCESS Process);
285$endif (_NTDDK_)
286$if (_NTIFS_)
287
288_IRQL_requires_max_(PASSIVE_LEVEL)
289NTKERNELAPI
290VOID
291NTAPI
292PsDereferencePrimaryToken(
293 _In_ PACCESS_TOKEN PrimaryToken);
294
295_IRQL_requires_max_(PASSIVE_LEVEL)
296NTKERNELAPI
297VOID
298NTAPI
299PsDereferenceImpersonationToken(
300 _In_ PACCESS_TOKEN ImpersonationToken);
301
302_Must_inspect_result_
303_IRQL_requires_max_(APC_LEVEL)
304NTKERNELAPI
305NTSTATUS
306NTAPI
307PsChargeProcessPoolQuota(
308 _In_ PEPROCESS Process,
309 _In_ POOL_TYPE PoolType,
310 _In_ ULONG_PTR Amount);
311
312NTKERNELAPI
313BOOLEAN
314NTAPI
315PsIsSystemThread(
316 _In_ PETHREAD Thread);
317$endif (_NTIFS_)
318$if (_NTDDK_ || _NTIFS_)
319#endif /* (NTDDI_VERSION >= NTDDI_WINXP) */
320$endif (_NTDDK_ || _NTIFS_)
321
322$if (_NTDDK_)
323#if (NTDDI_VERSION >= NTDDI_WS03)
324NTKERNELAPI
325HANDLE
326NTAPI
327PsGetThreadProcessId(
328 IN PETHREAD Thread);
329#endif /* (NTDDI_VERSION >= NTDDI_WS03) */
330
331#if (NTDDI_VERSION >= NTDDI_WS03SP1)
332NTKERNELAPI
333PVOID
334NTAPI
335PsGetCurrentThreadTeb(
336 VOID);
337#endif /* (NTDDI_VERSION >= NTDDI_WS03SP1) */
338
339#if (NTDDI_VERSION >= NTDDI_VISTA)
340
341NTKERNELAPI
342BOOLEAN
343NTAPI
344PsSetCurrentThreadPrefetching(
345 IN BOOLEAN Prefetching);
346
347NTKERNELAPI
348BOOLEAN
349NTAPI
350PsIsCurrentThreadPrefetching(VOID);
351
352#endif /* (NTDDI_VERSION >= NTDDI_VISTA) */
353
354#if (NTDDI_VERSION >= NTDDI_VISTASP1)
355NTKERNELAPI
356NTSTATUS
357NTAPI
358PsSetCreateProcessNotifyRoutineEx(
359 IN PCREATE_PROCESS_NOTIFY_ROUTINE_EX NotifyRoutine,
360 IN BOOLEAN Remove);
361#endif /* (NTDDI_VERSION >= NTDDI_VISTASP1) */
362$endif (_NTDDK_)
ReturnLength
_In_ PVOID _In_ ULONG _Out_ PVOID _In_ ULONG _Inout_ PULONG ReturnLength
Definition: KdSystemDebugControl.c:34
BOOLEAN
unsigned char BOOLEAN
Definition: ProcessorBind.h:185
NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26
__drv_aliasesMem
#define __drv_aliasesMem
Definition: btrfs_drv.h:203
return
return
Definition: dirsup.c:529
PROCESSINFOCLASS
enum _PROCESSINFOCLASS PROCESSINFOCLASS
Definition: loader.c:63
ObjectAttributes
IN PUNICODE_STRING IN POBJECT_ATTRIBUTES ObjectAttributes
Definition: conport.c:36
_IRQL_requires_max_
#define _IRQL_requires_max_(irql)
Definition: driverspecs.h:230
PsGetVersion
#define PsGetVersion(a, b, c, d)
Definition: env_spec_w32.h:83
PASSIVE_LEVEL
#define PASSIVE_LEVEL
Definition: env_spec_w32.h:693
PsGetCurrentThread
#define PsGetCurrentThread()
Definition: env_spec_w32.h:81
APC_LEVEL
#define APC_LEVEL
Definition: env_spec_w32.h:695
DISPATCH_LEVEL
#define DISPATCH_LEVEL
Definition: env_spec_w32.h:696
ProcessId
IN PLARGE_INTEGER IN PLARGE_INTEGER PEPROCESS ProcessId
Definition: fatprocs.h:2712
PsGetCurrentThreadId
PsGetCurrentThreadId
Definition: CrNtStubs.h:8
BuildNumber
ULONG BuildNumber
Definition: ros_glue.cpp:6
MajorVersion
ULONG MajorVersion
Definition: ros_glue.cpp:4
MinorVersion
ULONG MinorVersion
Definition: ros_glue.cpp:5
Thread
_In_opt_ PFILE_OBJECT _In_opt_ PETHREAD Thread
Definition: fltkernel.h:2653
Amount
_Must_inspect_result_ _In_ LONGLONG _In_ LONGLONG Amount
Definition: fsrtlfuncs.h:551
Process
_Must_inspect_result_ _In_ PLARGE_INTEGER _In_ PLARGE_INTEGER _In_ ULONG _In_ PFILE_OBJECT _In_ PVOID Process
Definition: fsrtlfuncs.h:223
KeGetCurrentThread
#define KeGetCurrentThread
Definition: hal.h:55
_NTIFS_
#define _NTIFS_
Definition: ifssupp.h:20
PLOAD_IMAGE_NOTIFY_ROUTINE
VOID(NTAPI * PLOAD_IMAGE_NOTIFY_ROUTINE)(_In_ PUNICODE_STRING FullImageName, _In_ HANDLE ProcessId, _In_ PIMAGE_INFO ImageInfo)
Definition: pstypes.h:220
PCREATE_PROCESS_NOTIFY_ROUTINE
VOID(NTAPI * PCREATE_PROCESS_NOTIFY_ROUTINE)(_In_ HANDLE ParentId, _In_ HANDLE ProcessId, _In_ BOOLEAN Create)
Definition: pstypes.h:160
PCREATE_PROCESS_NOTIFY_ROUTINE_EX
VOID(NTAPI * PCREATE_PROCESS_NOTIFY_ROUTINE_EX)(_Inout_ PEPROCESS Process, _In_ HANDLE ProcessId, _Inout_opt_ PPS_CREATE_NOTIFY_INFO CreateInfo)
Definition: pstypes.h:183
PCREATE_THREAD_NOTIFY_ROUTINE
VOID(NTAPI * PCREATE_THREAD_NOTIFY_ROUTINE)(_In_ HANDLE ProcessId, _In_ HANDLE ThreadId, _In_ BOOLEAN Create)
Definition: pstypes.h:189
SECURITY_IMPERSONATION_LEVEL
enum _SECURITY_IMPERSONATION_LEVEL SECURITY_IMPERSONATION_LEVEL
PSECURITY_IMPERSONATION_LEVEL
enum _SECURITY_IMPERSONATION_LEVEL * PSECURITY_IMPERSONATION_LEVEL
PsRevertToSelf
NTKERNELAPI VOID NTAPI PsRevertToSelf(VOID)
Definition: security.c:556
PsDereferencePrimaryToken
#define PsDereferencePrimaryToken(T)
Definition: imports.h:301
PsDereferenceImpersonationToken
#define PsDereferenceImpersonationToken(T)
Definition: imports.h:298
ApcContext
_In_opt_ HANDLE _In_opt_ PIO_APC_ROUTINE _In_opt_ PVOID ApcContext
Definition: iofuncs.h:727
ProcessHandle
_In_ HANDLE ProcessHandle
Definition: mmfuncs.h:403
ExitStatus
_In_ NTSTATUS ExitStatus
Definition: psfuncs.h:868
PsGetThreadId
NTKERNELAPI HANDLE NTAPI PsGetThreadId(_In_ PETHREAD Thread)
NtOpenProcess
__kernel_entry NTSYSCALLAPI NTSTATUS NTAPI NtOpenProcess(_Out_ PHANDLE ProcessHandle, _In_ ACCESS_MASK DesiredAccess, _In_ POBJECT_ATTRIBUTES ObjectAttributes, _In_opt_ PCLIENT_ID ClientId)
NtQueryInformationProcess
__kernel_entry NTSYSCALLAPI NTSTATUS NTAPI NtQueryInformationProcess(_In_ HANDLE ProcessHandle, _In_ PROCESSINFOCLASS ProcessInformationClass, _Out_writes_bytes_to_opt_(ProcessInformationLength, *ReturnLength) PVOID ProcessInformation, _In_ ULONG ProcessInformationLength, _Out_opt_ PULONG ReturnLength)
Definition: query.c:211
PsGetThreadProcess
NTKERNELAPI PEPROCESS NTAPI PsGetThreadProcess(_In_ PETHREAD Thread)
PsChargeProcessPoolQuota
NTKERNELAPI NTSTATUS NTAPI PsChargeProcessPoolQuota(_In_ PEPROCESS Process, _In_ POOL_TYPE PoolType, _In_ SIZE_T Amount)
Charges the process' quota pool. The type of quota to be charged depends upon the PoolType parameter.
Definition: quota.c:872
PsReturnPoolQuota
NTKERNELAPI VOID NTAPI PsReturnPoolQuota(_In_ PEPROCESS Process, _In_ POOL_TYPE PoolType, _In_ SIZE_T Amount)
Returns the pool quota that the process was taking up.
Definition: quota.c:907
PsChargePoolQuota
NTKERNELAPI VOID NTAPI PsChargePoolQuota(_In_ PEPROCESS Process, _In_ POOL_TYPE PoolType, _In_ SIZE_T Amount)
Charges the pool quota of a given process. The kind of pool quota to charge is determined by the Pool...
Definition: quota.c:775
_Out_opt_
#define _Out_opt_
Definition: no_sal2.h:214
_Inout_
#define _Inout_
Definition: no_sal2.h:162
_Outptr_
#define _Outptr_
Definition: no_sal2.h:262
_Must_inspect_result_
#define _Must_inspect_result_
Definition: no_sal2.h:62
_Post_satisfies_
#define _Post_satisfies_(e)
Definition: no_sal2.h:66
_Out_
#define _Out_
Definition: no_sal2.h:160
_In_
#define _In_
Definition: no_sal2.h:158
_In_opt_
#define _In_opt_
Definition: no_sal2.h:212
_Out_writes_bytes_to_opt_
#define _Out_writes_bytes_to_opt_(s, c)
Definition: no_sal2.h:240
_When_
#define _When_(c, a)
Definition: no_sal2.h:38
ACCESS_MASK
ULONG ACCESS_MASK
Definition: nt_native.h:40
NTSYSCALLAPI
#define NTSYSCALLAPI
Definition: ntbasedef.h:208
_NTDDK_
#define _NTDDK_
Definition: ntddk.template.h:26
PsTerminateSystemThread
NTSTATUS NTAPI PsTerminateSystemThread(IN NTSTATUS ExitStatus)
Definition: kill.c:1145
PsLookupProcessByProcessId
NTSTATUS NTAPI PsLookupProcessByProcessId(IN HANDLE ProcessId, OUT PEPROCESS *Process)
Definition: process.c:919
PsGetProcessCreateTimeQuadPart
LONGLONG NTAPI PsGetProcessCreateTimeQuadPart(PEPROCESS Process)
Definition: process.c:1023
PsGetProcessId
HANDLE NTAPI PsGetProcessId(PEPROCESS Process)
Definition: process.c:1063
PsGetProcessExitTime
LARGE_INTEGER NTAPI PsGetProcessExitTime(VOID)
Definition: process.c:1013
PsAssignImpersonationToken
NTSTATUS NTAPI PsAssignImpersonationToken(IN PETHREAD Thread, IN HANDLE TokenHandle)
Definition: security.c:502
PsDisableImpersonation
BOOLEAN NTAPI PsDisableImpersonation(IN PETHREAD Thread, OUT PSE_IMPERSONATION_STATE ImpersonationState)
Definition: security.c:937
PsRestoreImpersonation
VOID NTAPI PsRestoreImpersonation(IN PETHREAD Thread, IN PSE_IMPERSONATION_STATE ImpersonationState)
Definition: security.c:987
PsReferencePrimaryToken
PACCESS_TOKEN NTAPI PsReferencePrimaryToken(PEPROCESS Process)
Definition: security.c:440
PsReferenceImpersonationToken
PACCESS_TOKEN NTAPI PsReferenceImpersonationToken(IN PETHREAD Thread, OUT PBOOLEAN CopyOnOpen, OUT PBOOLEAN EffectiveOnly, OUT PSECURITY_IMPERSONATION_LEVEL ImpersonationLevel)
Definition: security.c:871
PsImpersonateClient
NTSTATUS NTAPI PsImpersonateClient(IN PETHREAD Thread, IN PACCESS_TOKEN Token, IN BOOLEAN CopyOnOpen, IN BOOLEAN EffectiveOnly, IN SECURITY_IMPERSONATION_LEVEL ImpersonationLevel)
Definition: security.c:610
PsCreateSystemThread
NTSTATUS NTAPI PsCreateSystemThread(OUT PHANDLE ThreadHandle, IN ACCESS_MASK DesiredAccess, IN POBJECT_ATTRIBUTES ObjectAttributes, IN HANDLE ProcessHandle, IN PCLIENT_ID ClientId, IN PKSTART_ROUTINE StartRoutine, IN PVOID StartContext)
Definition: thread.c:602
PsLookupThreadByThreadId
NTSTATUS NTAPI PsLookupThreadByThreadId(IN HANDLE ThreadId, OUT PETHREAD *Thread)
Definition: thread.c:643
PsWrapApcWow64Thread
NTSTATUS NTAPI PsWrapApcWow64Thread(IN OUT PVOID *ApcContext, IN OUT PVOID *ApcRoutine)
Definition: thread.c:932
PsGetThreadProcessId
HANDLE NTAPI PsGetThreadProcessId(IN PETHREAD Thread)
Definition: thread.c:745
PsIsThreadTerminating
BOOLEAN NTAPI PsIsThreadTerminating(IN PETHREAD Thread)
Definition: thread.c:868
PHANDLE
PVOID *typedef PHANDLE
Definition: ntsecpkg.h:455
PsSetLoadImageNotifyRoutine
NTSTATUS NTAPI PsSetLoadImageNotifyRoutine(IN PLOAD_IMAGE_NOTIFY_ROUTINE NotifyRoutine)
Definition: psnotify.c:176
PsSetCreateThreadNotifyRoutine
NTSTATUS NTAPI PsSetCreateThreadNotifyRoutine(IN PCREATE_THREAD_NOTIFY_ROUTINE NotifyRoutine)
Definition: psnotify.c:260
PsSetCreateProcessNotifyRoutine
NTSTATUS NTAPI PsSetCreateProcessNotifyRoutine(IN PCREATE_PROCESS_NOTIFY_ROUTINE NotifyRoutine, IN BOOLEAN Remove)
Definition: psnotify.c:33
PsRemoveLoadImageNotifyRoutine
NTSTATUS NTAPI PsRemoveLoadImageNotifyRoutine(IN PLOAD_IMAGE_NOTIFY_ROUTINE NotifyRoutine)
Definition: psnotify.c:127
__kernel_entry
#define __kernel_entry
Definition: specstrings.h:355
OPTIONAL
PULONG MinorVersion OPTIONAL
Definition: CrossNt.h:68
_CLIENT_ID
Definition: compat.h:824
_EPROCESS
Definition: pstypes.h:1350
_ETHREAD
Definition: pstypes.h:1191
_OBJECT_ATTRIBUTES
Definition: umtypes.h:184
_SE_IMPERSONATION_STATE
Definition: setypes.h:115
_UNICODE_STRING
Definition: env_spec_w32.h:368
PULONG
uint32_t * PULONG
Definition: typedefs.h:59
PBOOLEAN
unsigned char * PBOOLEAN
Definition: typedefs.h:53
POOL_TYPE
INT POOL_TYPE
Definition: typedefs.h:78
LONGLONG
int64_t LONGLONG
Definition: typedefs.h:68
NTAPI
#define NTAPI
Definition: typedefs.h:36
ULONG_PTR
uint32_t ULONG_PTR
Definition: typedefs.h:65
IN
#define IN
Definition: typedefs.h:39
ULONG
uint32_t ULONG
Definition: typedefs.h:59
OUT
#define OUT
Definition: typedefs.h:40
_LARGE_INTEGER
Definition: typedefs.h:103
DesiredAccess
_Must_inspect_result_ _In_ WDFDEVICE _In_ ULONG _In_ ACCESS_MASK DesiredAccess
Definition: wdfdevice.h:2664
PoolType
_Must_inspect_result_ _In_ WDFDEVICE _In_ DEVICE_REGISTRY_PROPERTY _In_ _Strict_type_match_ POOL_TYPE PoolType
Definition: wdfdevice.h:3821
FORCEINLINE
#define FORCEINLINE
Definition: wdftypes.h:67
_WDMDDK_
#define _WDMDDK_
Definition: wdm.template.h:26
NTKERNELAPI
#define NTKERNELAPI
ClientId
_Out_ PCLIENT_ID ClientId
Definition: kefuncs.h:1151
PKSTART_ROUTINE
KSTART_ROUTINE * PKSTART_ROUTINE
Definition: ketypes.h:551
CopyOnOpen
_Out_ PBOOLEAN CopyOnOpen
Definition: psfuncs.h:155
EffectiveOnly
_Out_ PBOOLEAN _Out_ PBOOLEAN EffectiveOnly
Definition: psfuncs.h:156
ImpersonationState
_Inout_ PSE_IMPERSONATION_STATE ImpersonationState
Definition: psfuncs.h:190
PsGetCurrentThreadTeb
NTKERNELAPI PVOID NTAPI PsGetCurrentThreadTeb(VOID)
Definition: thread.c:785
PsIsSystemThread
NTKERNELAPI BOOLEAN NTAPI PsIsSystemThread(_In_ PETHREAD Thread)
PsGetCurrentProcessId
NTKERNELAPI HANDLE NTAPI PsGetCurrentProcessId(VOID)
Definition: process.c:1123
PsSetCurrentThreadPrefetching
NTKERNELAPI BOOLEAN NTAPI PsSetCurrentThreadPrefetching(IN BOOLEAN Prefetching)
PsSetCreateProcessNotifyRoutineEx
NTKERNELAPI NTSTATUS NTAPI PsSetCreateProcessNotifyRoutineEx(IN PCREATE_PROCESS_NOTIFY_ROUTINE_EX NotifyRoutine, IN BOOLEAN Remove)
PsIsCurrentThreadPrefetching
NTKERNELAPI BOOLEAN NTAPI PsIsCurrentThreadPrefetching(VOID)
$endif
$endif(_WDMDDK_) $if(_NTDDK_) __kernel_entry NTSYSCALLAPI NTSTATUS NTAPI NtOpenProcess(_Out_ PHANDLE ProcessHandle
Definition: ke.h:202
ApcRoutine
_Inout_ PVOID * ApcRoutine
Definition: psfuncs.h:11
Remove
_In_ BOOLEAN Remove
Definition: psfuncs.h:111
ImpersonationLevel
_Out_ PBOOLEAN _Out_ PBOOLEAN _Out_ PSECURITY_IMPERSONATION_LEVEL ImpersonationLevel
Definition: psfuncs.h:157
PsRemoveCreateThreadNotifyRoutine
NTKERNELAPI NTSTATUS NTAPI PsRemoveCreateThreadNotifyRoutine(_In_ PCREATE_THREAD_NOTIFY_ROUTINE NotifyRoutine)
$if
$if(_WDMDDK_) NTKERNELAPI NTSTATUS NTAPI PsWrapApcWow64Thread(_Inout_ PVOID *ApcContext
Definition: ke.h:1
StartRoutine
_In_ ULONG _In_opt_ POBJECT_ATTRIBUTES _In_opt_ HANDLE _Out_opt_ PCLIENT_ID _In_ PKSTART_ROUTINE StartRoutine
Definition: psfuncs.h:92