d8/dc0/ntoskrnl_2ke_2amd64_2stubs_8c_source.html

 /*
  * PROJECT:         ReactOS Kernel
  * LICENSE:         GPL - See COPYING in the top level directory
  * PURPOSE:         stubs
  * PROGRAMMERS:     Timo Kreuzer (timo.kreuzer@reactos.org)
  */

 /* INCLUDES ******************************************************************/

 #include <ntoskrnl.h>
 #include <fltkernel.h>

 #define NDEBUG
 #include <debug.h>

 ULONG ProcessCount;
 SIZE_T KeXStateLength = sizeof(XSAVE_FORMAT);

 VOID
 KiRetireDpcListInDpcStack(
     PKPRCB Prcb,
     PVOID DpcStack);

 NTSTATUS
 KiConvertToGuiThread(
     VOID);

 _Requires_lock_not_held_(Prcb->PrcbLock)
 VOID
 NTAPI
 KiDpcInterruptHandler(VOID)
 {
     PKPRCB Prcb = KeGetCurrentPrcb();
     PKTHREAD NewThread, OldThread;
     KIRQL OldIrql;

     /* Raise to DISPATCH_LEVEL */
     OldIrql = KfRaiseIrql(DISPATCH_LEVEL);

     /* Send an EOI */
     KiSendEOI();

     /* Check for pending timers, pending DPCs, or pending ready threads */
     if ((Prcb->DpcData[0].DpcQueueDepth) ||
         (Prcb->TimerRequest) ||
         (Prcb->DeferredReadyListHead.Next))
     {
         /* Retire DPCs while under the DPC stack */
         KiRetireDpcListInDpcStack(Prcb, Prcb->DpcStack);
     }

     /* Enable interrupts */
     _enable();

     /* Check for quantum end */
     if (Prcb->QuantumEnd)
     {
         /* Handle quantum end */
         Prcb->QuantumEnd = FALSE;
         KiQuantumEnd();
     }
     else if (Prcb->NextThread)
     {
         /* Acquire the PRCB lock */
         KiAcquirePrcbLock(Prcb);

         /* Capture current thread data */
         OldThread = Prcb->CurrentThread;
         NewThread = Prcb->NextThread;

         /* Set new thread data */
         Prcb->NextThread = NULL;
         Prcb->CurrentThread = NewThread;

         /* The thread is now running */
         NewThread->State = Running;
         OldThread->WaitReason = WrDispatchInt;

         /* Make the old thread ready */
         KxQueueReadyThread(OldThread, Prcb);

         /* Swap to the new thread */
         KiSwapContext(APC_LEVEL, OldThread);
     }

     /* Disable interrupts and go back to old irql */
     _disable();
     KeLowerIrql(OldIrql);
 }

 PVOID
 KiSwitchKernelStackHelper(
     LONG_PTR StackOffset,
     PVOID OldStackBase);

 /*
  * Kernel stack layout (example pointers):
  * 0xFFFFFC0F'2D008000 KTHREAD::StackBase
  *    [XSAVE_AREA size == KeXStateLength = 0x440]
  * 0xFFFFFC0F'2D007BC0 KTHREAD::StateSaveArea _XSAVE_FORMAT
  * 0xFFFFFC0F'2D007B90 KTHREAD::InitialStack
  *    [0x190 bytes KTRAP_FRAME]
  * 0xFFFFFC0F'2D007A00 KTHREAD::TrapFrame
  *    [KSTART_FRAME] or ...
  *    [KSWITCH_FRAME]
  * 0xFFFFFC0F'2D007230 KTHREAD::KernelStack
  */

 PVOID
 NTAPI
 KiSwitchKernelStack(PVOID StackBase, PVOID StackLimit)
 {
     PKTHREAD CurrentThread;
     PVOID OldStackBase;
     LONG_PTR StackOffset;
     SIZE_T StackSize;
     PKIPCR Pcr;

     /* Get the current thread */
     CurrentThread = KeGetCurrentThread();

     /* Save the old stack base */
     OldStackBase = CurrentThread->StackBase;

     /* Get the size of the current stack */
     StackSize = (ULONG_PTR)CurrentThread->StackBase - CurrentThread->StackLimit;
     ASSERT(StackSize <= (ULONG_PTR)StackBase - (ULONG_PTR)StackLimit);

     /* Copy the current stack contents to the new stack */
     RtlCopyMemory((PUCHAR)StackBase - StackSize,
                   (PVOID)CurrentThread->StackLimit,
                   StackSize);

     /* Calculate the offset between the old and the new stack */
     StackOffset = (PUCHAR)StackBase - (PUCHAR)CurrentThread->StackBase;

     /* Disable interrupts while messing with the stack */
     _disable();

     /* Set the new trap frame */
     CurrentThread->TrapFrame = (PKTRAP_FRAME)Add2Ptr(CurrentThread->TrapFrame,
                                                      StackOffset);

     /* Set the new initial stack */
     CurrentThread->InitialStack = Add2Ptr(CurrentThread->InitialStack,
                                           StackOffset);

     /* Set the new stack limits */
     CurrentThread->StackBase = StackBase;
     CurrentThread->StackLimit = (ULONG_PTR)StackLimit;
     CurrentThread->LargeStack = TRUE;

     /* Adjust RspBase in the PCR */
     Pcr = (PKIPCR)KeGetPcr();
     Pcr->Prcb.RspBase += StackOffset;

     /* Adjust Rsp0 in the TSS */
     Pcr->TssBase->Rsp0 += StackOffset;

     return OldStackBase;
 }

 DECLSPEC_NORETURN
 VOID
 KiIdleLoop(VOID)
 {
     PKPRCB Prcb = KeGetCurrentPrcb();
     PKTHREAD OldThread, NewThread;

     /* Now loop forever */
     while (TRUE)
     {
         /* Start of the idle loop: disable interrupts */
         _enable();
         YieldProcessor();
         YieldProcessor();
         _disable();

         /* Check for pending timers, pending DPCs, or pending ready threads */
         if ((Prcb->DpcData[0].DpcQueueDepth) ||
             (Prcb->TimerRequest) ||
             (Prcb->DeferredReadyListHead.Next))
         {
             /* Quiesce the DPC software interrupt */
             HalClearSoftwareInterrupt(DISPATCH_LEVEL);

             /* Handle it */
             KiRetireDpcList(Prcb);
         }

         /* Check if a new thread is scheduled for execution */
         if (Prcb->NextThread)
         {
             /* Enable interrupts */
             _enable();

             /* Capture current thread data */
             OldThread = Prcb->CurrentThread;
             NewThread = Prcb->NextThread;

             /* Set new thread data */
             Prcb->NextThread = NULL;
             Prcb->CurrentThread = NewThread;

             /* The thread is now running */
             NewThread->State = Running;

             /* Do the swap at SYNCH_LEVEL */
             KfRaiseIrql(SYNCH_LEVEL);

             /* Switch away from the idle thread */
             KiSwapContext(APC_LEVEL, OldThread);

             /* Go back to DISPATCH_LEVEL */
             KeLowerIrql(DISPATCH_LEVEL);
         }
         else
         {
             /* Continue staying idle. Note the HAL returns with interrupts on */
             Prcb->PowerState.IdleFunction(&Prcb->PowerState);
         }
     }
 }

 VOID
 NTAPI
 KiSwapProcess(IN PKPROCESS NewProcess,
               IN PKPROCESS OldProcess)
 {
     PKIPCR Pcr = (PKIPCR)KeGetPcr();

 #ifdef CONFIG_SMP
     /* Update active processor mask */
     InterlockedXor64((PLONG64)&NewProcess->ActiveProcessors, Pcr->Prcb.SetMember);
     InterlockedXor64((PLONG64)&OldProcess->ActiveProcessors, Pcr->Prcb.SetMember);
 #endif

     /* Update CR3 */
     __writecr3(NewProcess->DirectoryTableBase[0]);

     /* Update IOPM offset */
     Pcr->TssBase->IoMapBase = NewProcess->IopmOffset;
 }

 #define MAX_SYSCALL_PARAMS 16

 NTSTATUS
 NtSyscallFailure(void)
 {
     /* This is the failure function */
     return (NTSTATUS)KeGetCurrentThread()->TrapFrame->Rax;
 }

 PVOID
 KiSystemCallHandler(
     VOID)
 {
     PKTRAP_FRAME TrapFrame;
     PKSERVICE_TABLE_DESCRIPTOR DescriptorTable;
     PKTHREAD Thread;
     PULONG64 KernelParams, UserParams;
     ULONG ServiceNumber, Offset, Count;
     ULONG64 UserRsp;

     /* Get a pointer to the trap frame */
     TrapFrame = (PKTRAP_FRAME)((PULONG64)_AddressOfReturnAddress() + 1 + MAX_SYSCALL_PARAMS);

     /* Increase system call count */
     __addgsdword(FIELD_OFFSET(KIPCR, Prcb.KeSystemCalls), 1);

     /* Get the current thread */
     Thread = KeGetCurrentThread();

     /* Set previous mode */
     Thread->PreviousMode = TrapFrame->PreviousMode = UserMode;

     /* Save the old trap frame and set the new */
     TrapFrame->TrapFrame = (ULONG64)Thread->TrapFrame;
     Thread->TrapFrame = TrapFrame;

     /* We don't have an exception frame yet */
     TrapFrame->ExceptionFrame = 0;

     /* Before enabling interrupts get the user rsp from the KPCR */
     UserRsp = __readgsqword(FIELD_OFFSET(KIPCR, UserRsp));
     TrapFrame->Rsp = UserRsp;

     /* Enable interrupts */
     _enable();

     /* If the usermode rsp was not a usermode address, prepare an exception */
     if (UserRsp > MmUserProbeAddress) UserRsp = MmUserProbeAddress;

     /* Get the address of the usermode and kernelmode parameters */
     UserParams = (PULONG64)UserRsp + 1;
     KernelParams = (PULONG64)TrapFrame - MAX_SYSCALL_PARAMS;

     /* Get the system call number from the trap frame and decode it */
     ServiceNumber = (ULONG)TrapFrame->Rax;
     Offset = (ServiceNumber >> SERVICE_TABLE_SHIFT) & SERVICE_TABLE_MASK;
     ServiceNumber &= SERVICE_NUMBER_MASK;

     /* Check for win32k system calls */
     if (Offset & SERVICE_TABLE_TEST)
     {
         ULONG GdiBatchCount;

         /* Read the GDI batch count from the TEB */
         _SEH2_TRY
         {
             GdiBatchCount = NtCurrentTeb()->GdiBatchCount;
         }
         _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)
         {
             GdiBatchCount = 0;
         }
         _SEH2_END;

         /* Flush batch, if there are entries */
         if (GdiBatchCount != 0)
         {
             KeGdiFlushUserBatch();
         }
     }

     /* Get descriptor table */
     DescriptorTable = (PVOID)((ULONG_PTR)Thread->ServiceTable + Offset);

     /* Validate the system call number */
     if (ServiceNumber >= DescriptorTable->Limit)
     {
         /* Check if this is a GUI call */
         if (!(Offset & SERVICE_TABLE_TEST))
         {
             /* Fail the call */
             TrapFrame->Rax = STATUS_INVALID_SYSTEM_SERVICE;
             return (PVOID)NtSyscallFailure;
         }

         /* Convert us to a GUI thread
            To be entirely correct. we return KiConvertToGuiThread,
            which allocates a new stack, switches to it, calls
            PsConvertToGuiThread and resumes in the middle of
            KiSystemCallEntry64 to restart the system call handling. */
         return (PVOID)KiConvertToGuiThread;
     }

     /* Get stack bytes and calculate argument count */
     Count = DescriptorTable->Number[ServiceNumber] / 8;

     _SEH2_TRY
     {
         switch (Count)
         {
             case 16: KernelParams[15] = UserParams[15];
             case 15: KernelParams[14] = UserParams[14];
             case 14: KernelParams[13] = UserParams[13];
             case 13: KernelParams[12] = UserParams[12];
             case 12: KernelParams[11] = UserParams[11];
             case 11: KernelParams[10] = UserParams[10];
             case 10: KernelParams[9] = UserParams[9];
             case 9: KernelParams[8] = UserParams[8];
             case 8: KernelParams[7] = UserParams[7];
             case 7: KernelParams[6] = UserParams[6];
             case 6: KernelParams[5] = UserParams[5];
             case 5: KernelParams[4] = UserParams[4];
             case 4:
             case 3:
             case 2:
             case 1:
             case 0:
                 break;

             default:
                 ASSERT(FALSE);
                 break;
         }
     }
     _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)
     {
         TrapFrame->Rax = _SEH2_GetExceptionCode();
         return (PVOID)NtSyscallFailure;
     }
     _SEH2_END;

     return (PVOID)DescriptorTable->Base[ServiceNumber];
 }


 // FIXME: we need to
 VOID
 KiSystemService(IN PKTHREAD Thread,
                 IN PKTRAP_FRAME TrapFrame,
                 IN ULONG Instruction)
 {
     UNIMPLEMENTED;
     __debugbreak();
 }

 NTSTATUS
 NTAPI
 NtSetLdtEntries
 (ULONG Selector1, LDT_ENTRY LdtEntry1, ULONG Selector2, LDT_ENTRY LdtEntry2)
 {
     UNIMPLEMENTED;
     __debugbreak();
     return STATUS_UNSUCCESSFUL;
 }

 NTSTATUS
 NTAPI
 NtVdmControl(IN ULONG ControlCode,
              IN PVOID ControlData)
 {
     /* Not supported */
     return STATUS_NOT_IMPLEMENTED;
 }


MmUserProbeAddress
ULONG MmUserProbeAddress
Definition: init.c:50

KiIdleLoop
DECLSPEC_NORETURN VOID KiIdleLoop(VOID)
Definition: stubs.c:165

NtVdmControl
NTSTATUS NTAPI NtVdmControl(IN ULONG ControlCode, IN PVOID ControlData)
Definition: stubs.c:412

IN
#define IN
Definition: typedefs.h:39

SERVICE_TABLE_SHIFT
#define SERVICE_TABLE_SHIFT
Definition: ketypes.h:71

_KTHREAD
Definition: ketypes.h:1601

Add2Ptr
#define Add2Ptr(PTR, INC)
Definition: ipstats_reactos.c:617

_KPRCB::DpcData
KDPC_DATA DpcData[2]
Definition: ketypes.h:681

TRUE
#define TRUE
Definition: types.h:120

_KTRAP_FRAME
Definition: ketypes.h:311

_KSERVICE_TABLE_DESCRIPTOR::Number
PUCHAR Number
Definition: ketypes.h:2096

SERVICE_TABLE_MASK
#define SERVICE_TABLE_MASK
Definition: ketypes.h:78

PUCHAR
unsigned char * PUCHAR
Definition: retypes.h:3

_KIPCR
Definition: ketypes.h:858

_enable
void __cdecl _enable(void)
Definition: intrin_arm.h:373

NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26

_KSERVICE_TABLE_DESCRIPTOR::Limit
ULONG Limit
Definition: ketypes.h:2092

KeGetCurrentPrcb
FORCEINLINE struct _KPRCB * KeGetCurrentPrcb(VOID)
Definition: ketypes.h:1080

PKIPCR
struct _KIPCR * PKIPCR

KiRetireDpcListInDpcStack
VOID KiRetireDpcListInDpcStack(PKPRCB Prcb, PVOID DpcStack)

_AddressOfReturnAddress
void * _AddressOfReturnAddress(void)

_KTHREAD::TrapFrame
PKTRAP_FRAME TrapFrame
Definition: ketypes.h:1716

KiQuantumEnd
VOID NTAPI KiQuantumEnd(VOID)

KiConvertToGuiThread
NTSTATUS KiConvertToGuiThread(VOID)

_KPRCB::PowerState
PROCESSOR_POWER_STATE PowerState
Definition: ketypes.h:800

_KPRCB::QuantumEnd
UCHAR QuantumEnd
Definition: ketypes.h:701

SERVICE_NUMBER_MASK
#define SERVICE_NUMBER_MASK
Definition: ketypes.h:83

UNIMPLEMENTED
#define UNIMPLEMENTED
Definition: stubs.c:20

__debugbreak
void __cdecl __debugbreak(void)
Definition: intrin_ppc.h:698

_KPRCB::NextThread
struct _KTHREAD * NextThread
Definition: ketypes.h:572

DECLSPEC_NORETURN
#define DECLSPEC_NORETURN
Definition: ntbasedef.h:176

KeGetPcr
#define KeGetPcr()
Definition: ke.h:26

_SEH2_TRY
_SEH2_TRY
Definition: create.c:4226

_KIPCR::TssBase
struct _KTSS64 * TssBase
Definition: ketypes.h:866

ULONG_PTR
uint32_t ULONG_PTR
Definition: typedefs.h:65

KiSwapContext
BOOLEAN FASTCALL KiSwapContext(IN KIRQL WaitIrql, IN PKTHREAD CurrentThread)

YieldProcessor
FORCEINLINE VOID YieldProcessor(VOID)
Definition: ke.h:32

Running
Definition: ketypes.h:423

KIRQL
UCHAR KIRQL
Definition: env_spec_w32.h:591

STATUS_NOT_IMPLEMENTED
return STATUS_NOT_IMPLEMENTED
Definition: fxdriverapium.cpp:241

__writecr3
__INTRIN_INLINE void __writecr3(unsigned int Data)
Definition: intrin_x86.h:1795

NTAPI
NTSTATUS(* NTAPI)(IN PFILE_FULL_EA_INFORMATION EaBuffer, IN ULONG EaLength, OUT PULONG ErrorOffset)
Definition: IoEaTest.cpp:117

FALSE
#define FALSE
Definition: types.h:117

_KTRAP_FRAME::Rax
UINT64 Rax
Definition: ketypes.h:323

WrDispatchInt
Definition: ketypes.h:434

ProcessCount
ULONG ProcessCount
Definition: stubs.c:16

NtSetLdtEntries
NTSTATUS NTAPI NtSetLdtEntries(ULONG Selector1, LDT_ENTRY LdtEntry1, ULONG Selector2, LDT_ENTRY LdtEntry2)
Definition: stubs.c:403

_KPRCB::CurrentThread
struct _KTHREAD * CurrentThread
Definition: ketypes.h:571

KiAcquirePrcbLock
FORCEINLINE VOID KiAcquirePrcbLock(IN PKPRCB Prcb)
Definition: ke_x.h:220

_KSERVICE_TABLE_DESCRIPTOR
Definition: ketypes.h:2088

SERVICE_TABLE_TEST
#define SERVICE_TABLE_TEST
Definition: ketypes.h:90

ControlCode
_IRQL_requires_same_ typedef _In_ ULONG ControlCode
Definition: wmitypes.h:55

PVOID
void * PVOID
Definition: retypes.h:9

InterlockedXor64
#define InterlockedXor64
Definition: interlocked.h:291

NtSyscallFailure
NTSTATUS NtSyscallFailure(void)
Definition: stubs.c:248

_KTHREAD::WaitReason
UCHAR WaitReason
Definition: ketypes.h:1906

KfRaiseIrql
KIRQL FASTCALL KfRaiseIrql(IN KIRQL NewIrql)
Definition: pic.c:187

_Requires_lock_not_held_
_Requires_lock_not_held_(Prcb->PrcbLock) VOID NTAPI KiDpcInterruptHandler(VOID)
Definition: stubs.c:28

KiSystemCallHandler
PVOID KiSystemCallHandler(VOID)
Definition: stubs.c:255

Count
int Count
Definition: noreturn.cpp:7

_KPRCB::TimerRequest
UINT64 TimerRequest
Definition: ketypes.h:696

ASSERT
#define ASSERT(a)
Definition: mode.c:44

UserMode
Definition: ketypes.h:12

EXCEPTION_EXECUTE_HANDLER
#define EXCEPTION_EXECUTE_HANDLER
Definition: excpt.h:85

fltkernel.h

_KTHREAD::StackLimit
volatile VOID * StackLimit
Definition: ketypes.h:1607

MAX_SYSCALL_PARAMS
#define MAX_SYSCALL_PARAMS
Definition: stubs.c:245

Thread
_In_opt_ PFILE_OBJECT _In_opt_ PETHREAD Thread
Definition: fltkernel.h:2652

STATUS_UNSUCCESSFUL
#define STATUS_UNSUCCESSFUL
Definition: udferr_usr.h:132

ULONG64
unsigned __int64 ULONG64
Definition: imports.h:198

_SINGLE_LIST_ENTRY::Next
struct _SINGLE_LIST_ENTRY * Next
Definition: ntbasedef.h:629

_KIPCR::Prcb
KPRCB Prcb
Definition: ketypes.h:894

OldIrql
_Requires_lock_held_ Interrupt _Releases_lock_ Interrupt _In_ _IRQL_restores_ KIRQL OldIrql
Definition: kefuncs.h:792

_KPRCB
Definition: ketypes.h:560

SYNCH_LEVEL
#define SYNCH_LEVEL
Definition: env_spec_w32.h:704

StackSize
_In_ USHORT _In_ CCHAR StackSize
Definition: iofuncs.h:1058

_KPRCB::SetMember
UINT64 SetMember
Definition: ketypes.h:583

KiSendEOI
FORCEINLINE VOID KiSendEOI(VOID)
Definition: ke.h:342

_LDT_ENTRY
Definition: compat.h:636

DISPATCH_LEVEL
#define DISPATCH_LEVEL
Definition: env_spec_w32.h:696

Offset
_In_ ULONG _In_ ULONG Offset
Definition: ntddpcm.h:101

_KTHREAD::StackBase
PVOID StackBase
Definition: ketypes.h:1608

SIZE_T
ULONG_PTR SIZE_T
Definition: typedefs.h:80

_KPRCB::DeferredReadyListHead
SINGLE_LIST_ENTRY DeferredReadyListHead
Definition: ketypes.h:633

_KDPC_DATA::DpcQueueDepth
volatile ULONG DpcQueueDepth
Definition: ketypes.h:798

_SEH2_END
_SEH2_END
Definition: create.c:4400

_KPROCESS
Definition: ketypes.h:2024

NtCurrentTeb
FORCEINLINE struct _TEB * NtCurrentTeb(VOID)
Definition: psfuncs.h:420

_KPRCB::DpcStack
PVOID DpcStack
Definition: ketypes.h:682

KeGdiFlushUserBatch
PGDI_BATCHFLUSH_ROUTINE KeGdiFlushUserBatch
Definition: win32.c:20

_KTRAP_FRAME::Rsp
UINT64 Rsp
Definition: ketypes.h:391

FIELD_OFFSET
#define FIELD_OFFSET(t, f)
Definition: typedefs.h:255

LONG_PTR
__int3264 LONG_PTR
Definition: mstsclib_h.h:276

KeXStateLength
SIZE_T KeXStateLength
Definition: stubs.c:17

NULL
#define NULL
Definition: types.h:112

_KTRAP_FRAME::ExceptionFrame
UINT64 ExceptionFrame
Definition: ketypes.h:381

XSAVE_FORMAT
XSAVE_FORMAT
Definition: ketypes.h:951

_KSERVICE_TABLE_DESCRIPTOR::Base
PULONG_PTR Base
Definition: ketypes.h:2090

_PROCESSOR_POWER_STATE::IdleFunction
PPROCESSOR_IDLE_FUNCTION IdleFunction
Definition: potypes.h:68

HalClearSoftwareInterrupt
VOID FASTCALL HalClearSoftwareInterrupt(IN KIRQL Irql)
Definition: pic.c:282

_KTHREAD::State
volatile UCHAR State
Definition: ketypes.h:1731

_disable
void __cdecl _disable(void)
Definition: intrin_arm.h:365

KiSwitchKernelStack
PVOID NTAPI KiSwitchKernelStack(PVOID StackBase, PVOID StackLimit)
Definition: stubs.c:111

ULONG
unsigned int ULONG
Definition: retypes.h:1

STATUS_INVALID_SYSTEM_SERVICE
#define STATUS_INVALID_SYSTEM_SERVICE
Definition: ntstatus.h:265

ULONG_PTR
#define ULONG_PTR
Definition: config.h:101

RtlCopyMemory
#define RtlCopyMemory(Destination, Source, Length)
Definition: typedefs.h:263

PULONG64
unsigned __int64 * PULONG64
Definition: imports.h:198

_SEH2_EXCEPT
#define _SEH2_EXCEPT(...)
Definition: pseh2_64.h:40

PKTRAP_FRAME
struct _KTRAP_FRAME * PKTRAP_FRAME

_SEH2_GetExceptionCode
#define _SEH2_GetExceptionCode()
Definition: pseh2_64.h:165

KiSwitchKernelStackHelper
PVOID KiSwitchKernelStackHelper(LONG_PTR StackOffset, PVOID OldStackBase)

KeGetCurrentThread
#define KeGetCurrentThread
Definition: hal.h:55

void
Definition: nsiface.idl:2306

KeLowerIrql
VOID NTAPI KeLowerIrql(KIRQL NewIrql)
Definition: spinlock.c:39

KiSwapProcess
VOID NTAPI KiSwapProcess(IN PKPROCESS NewProcess, IN PKPROCESS OldProcess)
Definition: stubs.c:227

PLONG64
__int64 * PLONG64
Definition: basetsd.h:185

_KTHREAD::InitialStack
PVOID InitialStack
Definition: ketypes.h:1606

_KPRCB::RspBase
UINT64 RspBase
Definition: ketypes.h:581

APC_LEVEL
#define APC_LEVEL
Definition: env_spec_w32.h:695

KiSystemService
VOID KiSystemService(IN PKTHREAD Thread, IN PKTRAP_FRAME TrapFrame, IN ULONG Instruction)
Definition: stubs.c:392

_KTRAP_FRAME::TrapFrame
UINT64 TrapFrame
Definition: ketypes.h:373

KiRetireDpcList
VOID FASTCALL KiRetireDpcList(IN PKPRCB Prcb)
Definition: dpc.c:562

_KTRAP_FRAME::PreviousMode
CHAR PreviousMode
Definition: ketypes.h:318