ReactOS 0.4.16-dev-1541-g7e1d9ef
ketypes.h
Go to the documentation of this file.
1/*++ NDK Version: 0098
2
3Copyright (c) Alex Ionescu. All rights reserved.
4
5Header Name:
6
7 ketypes.h
8
9Abstract:
10
11 Type definitions for the Kernel services.
12
13Author:
14
15 Alex Ionescu (alexi@tinykrnl.org) - Updated - 27-Feb-2006
16
17--*/
18
19#ifndef _KETYPES_H
20#define _KETYPES_H
21
22//
23// Dependencies
24//
25#include <umtypes.h>
26#ifndef NTOS_MODE_USER
27#include <haltypes.h>
28#include <potypes.h>
29#include <ifssupp.h>
30#endif
31
32//
33// A system call ID is formatted as such:
34// .________________________________________________________________.
35// | 14 | 13 | 12 | 11 | 10 | 9 | 8 | 7 | 6 | 5 | 4 | 3 | 2 | 1 | 0 |
36// |--------------|-------------------------------------------------|
37// | TABLE NUMBER | TABLE OFFSET |
38// \----------------------------------------------------------------/
39//
40// The table number is then used as an index into the service descriptor table.
41#define TABLE_NUMBER_BITS 1
42#define TABLE_OFFSET_BITS 12
43
44//
45// There are 2 tables (kernel and shadow, used by Win32K)
46//
47#define NUMBER_SERVICE_TABLES 2
48#define NTOS_SERVICE_INDEX 0
49#define WIN32K_SERVICE_INDEX 1
50
51//
52// NB. From assembly code, the table number must be computed as an offset into
53// the service descriptor table.
54//
55// Each entry into the table is 16 bytes long on 32-bit architectures, and
56// 32 bytes long on 64-bit architectures.
57//
58// Thus, Table Number 1 is offset 16 (0x10) on x86, and offset 32 (0x20) on
59// x64.
60//
61#ifdef _WIN64
62#define BITS_PER_ENTRY 5 // (1 << 5) = 32 bytes
63#else
64#define BITS_PER_ENTRY 4 // (1 << 4) = 16 bytes
65#endif
66
67//
68// We want the table number, but leave some extra bits to we can have the offset
69// into the descriptor table.
70//
71#define SERVICE_TABLE_SHIFT (12 - BITS_PER_ENTRY)
72
73//
74// Now the table number (as an offset) is corrupted with part of the table offset
75// This mask will remove the extra unwanted bits, and give us the offset into the
76// descriptor table proper.
77//
78#define SERVICE_TABLE_MASK (((1 << TABLE_NUMBER_BITS) - 1) << BITS_PER_ENTRY)
79
80//
81// To get the table offset (ie: the service call number), just keep the 12 bits
82//
83#define SERVICE_NUMBER_MASK ((1 << TABLE_OFFSET_BITS) - 1)
84
85//
86// We'll often need to check if this is a graphics call. This is done by comparing
87// the table number offset with the known Win32K table number offset.
88// This is usually index 1, so table number offset 0x10 (x86) or 0x20 (x64)
89//
90#define SERVICE_TABLE_TEST (WIN32K_SERVICE_INDEX << BITS_PER_ENTRY)
91
92//
93// Context Record Flags
94//
95#define CONTEXT_DEBUGGER (CONTEXT_FULL | CONTEXT_FLOATING_POINT)
96
97//
98// Maximum System Descriptor Table Entries
99//
100#define SSDT_MAX_ENTRIES 2
101
102//
103// Processor Architectures
104//
105#define PROCESSOR_ARCHITECTURE_INTEL 0
106#define PROCESSOR_ARCHITECTURE_MIPS 1
107#define PROCESSOR_ARCHITECTURE_ALPHA 2
108#define PROCESSOR_ARCHITECTURE_PPC 3
109#define PROCESSOR_ARCHITECTURE_SHX 4
110#define PROCESSOR_ARCHITECTURE_ARM 5
111#define PROCESSOR_ARCHITECTURE_IA64 6
112#define PROCESSOR_ARCHITECTURE_ALPHA64 7
113#define PROCESSOR_ARCHITECTURE_MSIL 8
114#define PROCESSOR_ARCHITECTURE_AMD64 9
115#define PROCESSOR_ARCHITECTURE_UNKNOWN 0xFFFF
116
117//
118// Object Type Mask for Kernel Dispatcher Objects
119//
120#define KOBJECT_TYPE_MASK 0x7F
121#define KOBJECT_LOCK_BIT 0x80
122
123//
124// Dispatcher Priority increments
125//
126#define THREAD_ALERT_INCREMENT 2
127
128//
129// Physical memory offset of KUSER_SHARED_DATA
130//
131#define KI_USER_SHARED_DATA_PHYSICAL 0x41000
132
133//
134// Quantum values and decrements
135//
136#define MAX_QUANTUM 0x7F
137#define WAIT_QUANTUM_DECREMENT 1
138#define CLOCK_QUANTUM_DECREMENT 3
139
140//
141// Internal Exception Codes
142//
143#define KI_EXCEPTION_INTERNAL 0x10000000
144#define KI_EXCEPTION_ACCESS_VIOLATION (KI_EXCEPTION_INTERNAL | 0x04)
145
146typedef struct _FIBER /* Field offsets: */
147{ /* i386 arm x64 */
148 PVOID FiberData; /* 0x000 0x000 0x000 */
149 struct _EXCEPTION_REGISTRATION_RECORD *ExceptionList;/* 0x004 0x004 0x008 */
150 PVOID StackBase; /* 0x008 0x008 0x010 */
151 PVOID StackLimit; /* 0x00C 0x00C 0x018 */
152 PVOID DeallocationStack; /* 0x010 0x010 0x020 */
153 CONTEXT FiberContext; /* 0x014 0x018 0x030 */
154#if (NTDDI_VERSION >= NTDDI_LONGHORN)
155 PVOID Wx86Tib; /* 0x2E0 0x1b8 0x500 */
156 struct _ACTIVATION_CONTEXT_STACK *ActivationContextStackPointer; /* 0x2E4 0x1bc 0x508 */
157 PVOID FlsData; /* 0x2E8 0x1c0 0x510 */
158 ULONG GuaranteedStackBytes; /* 0x2EC 0x1c4 0x518 */
159 ULONG TebFlags; /* 0x2F0 0x1c8 0x51C */
160#else
161 ULONG GuaranteedStackBytes; /* 0x2E0 */
162 PVOID FlsData; /* 0x2E4 */
163 struct _ACTIVATION_CONTEXT_STACK *ActivationContextStackPointer;
164#endif
165} FIBER, *PFIBER;
166
167#ifndef NTOS_MODE_USER
168//
169// Number of dispatch codes supported by KINTERRUPT
170//
171#ifdef _M_AMD64
172#define DISPATCH_LENGTH 4
173#elif (NTDDI_VERSION >= NTDDI_LONGHORN)
174#define DISPATCH_LENGTH 135
175#else
176#define DISPATCH_LENGTH 106
177#endif
178
179#else // NTOS_MODE_USER
180
181//
182// KPROCESSOR_MODE Type
183//
184typedef CCHAR KPROCESSOR_MODE;
185
186//
187// Dereferencable pointer to KUSER_SHARED_DATA in User-Mode
188//
189#define SharedUserData ((KUSER_SHARED_DATA *)USER_SHARED_DATA)
190
191#ifdef _X86_
192/* Macros for user-mode run-time checks of X86 system architecture */
193
194#ifndef IsNEC_98
195#define IsNEC_98 (SharedUserData->AlternativeArchitecture == NEC98x86)
196#endif
197
198#ifndef IsNotNEC_98
199#define IsNotNEC_98 (SharedUserData->AlternativeArchitecture != NEC98x86)
200#endif
201
202/* User-mode cannot override the architecture */
203#ifndef SetNEC_98
204#define SetNEC_98
205#endif
206
207/* User-mode cannot override the architecture */
208#ifndef SetNotNEC_98
209#define SetNotNEC_98
210#endif
211
212#else // !_X86_
213/* Correctly define these run-time definitions for non X86 machines */
214
215#ifndef IsNEC_98
216#define IsNEC_98 (FALSE)
217#endif
218
219#ifndef IsNotNEC_98
220#define IsNotNEC_98 (TRUE)
221#endif
222
223#ifndef SetNEC_98
224#define SetNEC_98
225#endif
226
227#ifndef SetNotNEC_98
228#define SetNotNEC_98
229#endif
230
231#endif // _X86_
232
233//
234// Maximum WOW64 Entries in KUSER_SHARED_DATA
235//
236#define MAX_WOW64_SHARED_ENTRIES 16
237
238//
239// Maximum Processor Features supported in KUSER_SHARED_DATA
240//
241#define PROCESSOR_FEATURE_MAX 64
242
243//
244// Event Types
245//
246typedef enum _EVENT_TYPE
247{
248 NotificationEvent,
249 SynchronizationEvent
250} EVENT_TYPE;
251
252//
253// Timer Types
254//
255typedef enum _TIMER_TYPE
256{
257 NotificationTimer,
258 SynchronizationTimer
259} TIMER_TYPE;
260
261//
262// Wait Types
263//
264typedef enum _WAIT_TYPE
265{
266 WaitAll,
267 WaitAny
268} WAIT_TYPE;
269
270//
271// Processor Execution Modes
272//
273typedef enum _MODE
274{
275 KernelMode,
276 UserMode,
277 MaximumMode
278} MODE;
279
280//
281// Wait Reasons
282//
283typedef enum _KWAIT_REASON
284{
285 Executive,
286 FreePage,
287 PageIn,
288 PoolAllocation,
289 DelayExecution,
290 Suspended,
291 UserRequest,
292 WrExecutive,
293 WrFreePage,
294 WrPageIn,
295 WrPoolAllocation,
296 WrDelayExecution,
297 WrSuspended,
298 WrUserRequest,
299 WrEventPair,
300 WrQueue,
301 WrLpcReceive,
302 WrLpcReply,
303 WrVirtualMemory,
304 WrPageOut,
305 WrRendezvous,
306 Spare2,
307 WrGuardedMutex,
308 Spare4,
309 Spare5,
310 Spare6,
311 WrKernel,
312 WrResource,
313 WrPushLock,
314 WrMutex,
315 WrQuantumEnd,
316 WrDispatchInt,
317 WrPreempted,
318 WrYieldExecution,
319 MaximumWaitReason
320} KWAIT_REASON;
321
322//
323// Profiling Sources
324//
325typedef enum _KPROFILE_SOURCE
326{
327 ProfileTime,
328 ProfileAlignmentFixup,
329 ProfileTotalIssues,
330 ProfilePipelineDry,
331 ProfileLoadInstructions,
332 ProfilePipelineFrozen,
333 ProfileBranchInstructions,
334 ProfileTotalNonissues,
335 ProfileDcacheMisses,
336 ProfileIcacheMisses,
337 ProfileCacheMisses,
338 ProfileBranchMispredictions,
339 ProfileStoreInstructions,
340 ProfileFpInstructions,
341 ProfileIntegerInstructions,
342 Profile2Issue,
343 Profile3Issue,
344 Profile4Issue,
345 ProfileSpecialInstructions,
346 ProfileTotalCycles,
347 ProfileIcacheIssues,
348 ProfileDcacheAccesses,
349 ProfileMemoryBarrierCycles,
350 ProfileLoadLinkedIssues,
351 ProfileMaximum
352} KPROFILE_SOURCE;
353
354//
355// NT Product and Architecture Types
356//
357typedef enum _NT_PRODUCT_TYPE
358{
359 NtProductWinNt = 1,
360 NtProductLanManNt,
361 NtProductServer
362} NT_PRODUCT_TYPE, *PNT_PRODUCT_TYPE;
363
364typedef enum _ALTERNATIVE_ARCHITECTURE_TYPE
365{
366 StandardDesign,
367 NEC98x86,
368 EndAlternatives
369} ALTERNATIVE_ARCHITECTURE_TYPE;
370
371//
372// Flags for NXSupportPolicy
373//
374#if (NTDDI_VERSION >= NTDDI_WINXPSP2)
375#define NX_SUPPORT_POLICY_ALWAYSOFF 0
376#define NX_SUPPORT_POLICY_ALWAYSON 1
377#define NX_SUPPORT_POLICY_OPTIN 2
378#define NX_SUPPORT_POLICY_OPTOUT 3
379#endif
380
381#endif // NTOS_MODE_USER
382
383//
384// Thread States
385//
386typedef enum _KTHREAD_STATE
387{
388 Initialized,
389 Ready,
390 Running,
391 Standby,
392 Terminated,
393 Waiting,
394 Transition,
395 DeferredReady,
396#if (NTDDI_VERSION >= NTDDI_WS03)
397 GateWait
398#endif
399} KTHREAD_STATE, *PKTHREAD_STATE;
400
401//
402// Kernel Object Types
403//
404typedef enum _KOBJECTS
405{
406 EventNotificationObject = 0,
407 EventSynchronizationObject = 1,
408 MutantObject = 2,
409 ProcessObject = 3,
410 QueueObject = 4,
411 SemaphoreObject = 5,
412 ThreadObject = 6,
413 GateObject = 7,
414 TimerNotificationObject = 8,
415 TimerSynchronizationObject = 9,
416 Spare2Object = 10,
417 Spare3Object = 11,
418 Spare4Object = 12,
419 Spare5Object = 13,
420 Spare6Object = 14,
421 Spare7Object = 15,
422 Spare8Object = 16,
423 Spare9Object = 17,
424 ApcObject = 18,
425 DpcObject = 19,
426 DeviceQueueObject = 20,
427 EventPairObject = 21,
428 InterruptObject = 22,
429 ProfileObject = 23,
430 ThreadedDpcObject = 24,
431 MaximumKernelObject = 25
432} KOBJECTS;
433
434//
435// Adjust reasons
436//
437typedef enum _ADJUST_REASON
438{
439 AdjustNone = 0,
440 AdjustUnwait = 1,
441 AdjustBoost = 2
442} ADJUST_REASON;
443
444//
445// Continue Status
446//
447typedef enum _KCONTINUE_STATUS
448{
449 ContinueError = 0,
450 ContinueSuccess,
451 ContinueProcessorReselected,
452 ContinueNextProcessor
453} KCONTINUE_STATUS;
454
455//
456// Process States
457//
458typedef enum _KPROCESS_STATE
459{
460 ProcessInMemory,
461 ProcessOutOfMemory,
462 ProcessInTransition,
463 ProcessInSwap,
464 ProcessOutSwap,
465} KPROCESS_STATE, *PKPROCESS_STATE;
466
467//
468// NtVdmControl Classes
469//
470typedef enum _VDMSERVICECLASS
471{
472 VdmStartExecution = 0,
473 VdmQueueInterrupt = 1,
474 VdmDelayInterrupt = 2,
475 VdmInitialize = 3,
476 VdmFeatures = 4,
477 VdmSetInt21Handler = 5,
478 VdmQueryDir = 6,
479 VdmPrinterDirectIoOpen = 7,
480 VdmPrinterDirectIoClose = 8,
481 VdmPrinterInitialize = 9,
482 VdmSetLdtEntries = 10,
483 VdmSetProcessLdtInfo = 11,
484 VdmAdlibEmulation = 12,
485 VdmPMCliControl = 13,
486 VdmQueryVdmProcess = 14,
487} VDMSERVICECLASS;
488
489#ifdef NTOS_MODE_USER
490
491//
492// APC Normal Routine
493//
494typedef VOID
495(NTAPI *PKNORMAL_ROUTINE)(
496 _In_ PVOID NormalContext,
497 _In_ PVOID SystemArgument1,
498 _In_ PVOID SystemArgument2
499);
500
501//
502// Timer Routine
503//
504typedef VOID
505(NTAPI *PTIMER_APC_ROUTINE)(
506 _In_ PVOID TimerContext,
507 _In_ ULONG TimerLowValue,
508 _In_ LONG TimerHighValue
509);
510
511//
512// System Time Structure
513//
514typedef struct _KSYSTEM_TIME
515{
516 ULONG LowPart;
517 LONG High1Time;
518 LONG High2Time;
519} KSYSTEM_TIME, *PKSYSTEM_TIME;
520
521//
522// Shared Kernel User Data
523// Keep in sync with sdk/include/xdk/ketypes.h
524//
525typedef struct _KUSER_SHARED_DATA
526{
527 ULONG TickCountLowDeprecated; // 0x0
528 ULONG TickCountMultiplier; // 0x4
529 volatile KSYSTEM_TIME InterruptTime; // 0x8
530 volatile KSYSTEM_TIME SystemTime; // 0x14
531 volatile KSYSTEM_TIME TimeZoneBias; // 0x20
532 USHORT ImageNumberLow; // 0x2c
533 USHORT ImageNumberHigh; // 0x2e
534 WCHAR NtSystemRoot[260]; // 0x30
535 ULONG MaxStackTraceDepth; // 0x238
536 ULONG CryptoExponent; // 0x23c
537 ULONG TimeZoneId; // 0x240
538 ULONG LargePageMinimum; // 0x244
539
540#if (NTDDI_VERSION >= NTDDI_WIN8)
541 ULONG AitSamplingValue; // 0x248
542 ULONG AppCompatFlag; // 0x24c
543 ULONGLONG RNGSeedVersion; // 0x250
544 ULONG GlobalValidationRunlevel; // 0x258
545 volatile LONG TimeZoneBiasStamp; // 0x25c
546#if (NTDDI_VERSION >= NTDDI_WIN10)
547 ULONG NtBuildNumber; // 0x260
548#else
549 ULONG Reserved2; // 0x260
550#endif
551#else
552 ULONG Reserved2[7]; // 0x248
553#endif // NTDDI_VERSION >= NTDDI_WIN8
554
555 NT_PRODUCT_TYPE NtProductType; // 0x264
556 BOOLEAN ProductTypeIsValid; // 0x268
557 BOOLEAN Reserved0[1]; // 0x269
558#if (NTDDI_VERSION >= NTDDI_WIN8)
559 USHORT NativeProcessorArchitecture; // 0x26a
560#endif
561 ULONG NtMajorVersion; // 0x26c
562 ULONG NtMinorVersion; // 0x270
563 BOOLEAN ProcessorFeatures[PROCESSOR_FEATURE_MAX]; // 0x274
564 ULONG Reserved1; // 0x2b4
565 ULONG Reserved3; // 0x2b8
566 volatile ULONG TimeSlip; // 0x2bc
567 ALTERNATIVE_ARCHITECTURE_TYPE AlternativeArchitecture; // 0x2c0
568#if (NTDDI_VERSION >= NTDDI_WIN10)
569 ULONG BootId; // 0x2c4
570#else
571 ULONG AltArchitecturePad[1]; // 0x2c4
572#endif
573 LARGE_INTEGER SystemExpirationDate; // 0x2c8
574 ULONG SuiteMask; // 0x2d0
575 BOOLEAN KdDebuggerEnabled; // 0x2d4
576 union
577 {
578 UCHAR MitigationPolicies; // 0x2d5
579 struct
580 {
581 UCHAR NXSupportPolicy : 2;
582 UCHAR SEHValidationPolicy : 2;
583 UCHAR CurDirDevicesSkippedForDlls : 2;
584 UCHAR Reserved : 2;
585 };
586 };
587#if (NTDDI_VERSION >= NTDDI_WIN10_19H1)
588 USHORT CyclesPerYield; // 0x2d6 // Win 10 19H1+
589#else
590 UCHAR Reserved6[2]; // 0x2d6
591#endif
592 volatile ULONG ActiveConsoleId; // 0x2d8
593 volatile ULONG DismountCount; // 0x2dc
594 ULONG ComPlusPackage; // 0x2e0
595 ULONG LastSystemRITEventTickCount; // 0x2e4
596 ULONG NumberOfPhysicalPages; // 0x2e8
597 BOOLEAN SafeBootMode; // 0x2ec
598
599#if (NTDDI_VERSION == NTDDI_WIN7)
600 union
601 {
602 UCHAR TscQpcData; // 0x2ed
603 struct
604 {
605 UCHAR TscQpcEnabled:1; // 0x2ed
606 UCHAR TscQpcSpareFlag:1; // 0x2ed
607 UCHAR TscQpcShift:6; // 0x2ed
608 } DUMMYSTRUCTNAME;
609 } DUMMYUNIONNAME;
610 UCHAR TscQpcPad[2]; // 0x2ee
611#elif (NTDDI_VERSION >= NTDDI_WIN10_RS1)
612 union
613 {
614 UCHAR VirtualizationFlags; // 0x2ed
615#if defined(_ARM64_)
616 struct
617 {
618 UCHAR ArchStartedInEl2 : 1;
619 UCHAR QcSlIsSupported : 1;
620 UCHAR : 6;
621 };
622#endif
623 };
624 UCHAR Reserved12[2]; // 0x2ee
625#else
626 UCHAR Reserved12[3]; // 0x2ed
627#endif // NTDDI_VERSION == NTDDI_WIN7
628
629#if (NTDDI_VERSION >= NTDDI_VISTA)
630 union
631 {
632 ULONG SharedDataFlags; // 0x2f0
633 struct
634 {
635 ULONG DbgErrorPortPresent : 1; // 0x2f0
636 ULONG DbgElevationEnabled : 1; // 0x2f0
637 ULONG DbgVirtEnabled : 1; // 0x2f0
638 ULONG DbgInstallerDetectEnabled : 1; // 0x2f0
639#if (NTDDI_VERSION >= NTDDI_WIN8)
640 ULONG DbgLkgEnabled : 1; // 0x2f0
641#else
642 ULONG DbgSystemDllRelocated : 1; // 0x2f0
643#endif
644 ULONG DbgDynProcessorEnabled : 1; // 0x2f0
645#if (NTDDI_VERSION >= NTDDI_WIN8)
646 ULONG DbgConsoleBrokerEnabled : 1; // 0x2f0
647#else
648 ULONG DbgSEHValidationEnabled : 1; // 0x2f0
649#endif
650 ULONG DbgSecureBootEnabled : 1; // 0x2f0 Win8+
651 ULONG DbgMultiSessionSku : 1; // 0x2f0 Win 10+
652 ULONG DbgMultiUsersInSessionSku : 1; // 0x2f0 Win 10 RS1+
653 ULONG DbgStateSeparationEnabled : 1; // 0x2f0 Win 10 RS3+
654 ULONG SpareBits : 21; // 0x2f0
655 } DUMMYSTRUCTNAME2;
656 } DUMMYUNIONNAME2;
657#else
658 ULONG TraceLogging;
659#endif // NTDDI_VERSION >= NTDDI_VISTA
660
661 ULONG DataFlagsPad[1]; // 0x2f4
662 ULONGLONG TestRetInstruction; // 0x2f8
663#if (NTDDI_VERSION >= NTDDI_WIN8)
664 ULONGLONG QpcFrequency; // 0x300
665#else
666 ULONG SystemCall; // 0x300
667 ULONG SystemCallReturn; // 0x304
668#endif
669#if (NTDDI_VERSION >= NTDDI_WIN10_TH2)
670 ULONG SystemCall; // 0x308
671 ULONG SystemCallPad0; // 0x30c Renamed to Reserved2 in Vibranium R3
672 ULONGLONG SystemCallPad[2]; // 0x310
673#else
674 ULONGLONG SystemCallPad[3]; // 0x308
675#endif
676 union
677 {
678 volatile KSYSTEM_TIME TickCount; // 0x320
679 volatile ULONG64 TickCountQuad; // 0x320
680 struct
681 {
682 ULONG ReservedTickCountOverlay[3]; // 0x320
683 ULONG TickCountPad[1]; // 0x32c
684 } DUMMYSTRUCTNAME;
685 } DUMMYUNIONNAME3;
686 ULONG Cookie; // 0x330
687
688#if (NTDDI_VERSION < NTDDI_VISTA)
689 ULONG Wow64SharedInformation[MAX_WOW64_SHARED_ENTRIES]; // 0x334
690#endif
691
692//
693// Windows Vista and later
694//
695#if (NTDDI_VERSION >= NTDDI_VISTA)
696
697 ULONG CookiePad[1]; // 0x334
698 LONGLONG ConsoleSessionForegroundProcessId; // 0x338
699
700#if (NTDDI_VERSION >= NTDDI_WIN8)
701#if (NTDDI_VERSION >= NTDDI_WINBLUE)
702 ULONGLONG TimeUpdateLock; // 0x340
703#else
704 ULONGLONG TimeUpdateSequence; // 0x340
705#endif
706 ULONGLONG BaselineSystemTimeQpc; // 0x348
707 ULONGLONG BaselineInterruptTimeQpc; // 0x350
708 ULONGLONG QpcSystemTimeIncrement; // 0x358
709 ULONGLONG QpcInterruptTimeIncrement; // 0x360
710#if (NTDDI_VERSION >= NTDDI_WIN10)
711 UCHAR QpcSystemTimeIncrementShift; // 0x368
712 UCHAR QpcInterruptTimeIncrementShift; // 0x369
713 USHORT UnparkedProcessorCount; // 0x36a
714 ULONG EnclaveFeatureMask[4]; // 0x36c Win 10 TH2+
715 ULONG TelemetryCoverageRound; // 0x37c Win 10 RS2+
716#else // NTDDI_VERSION < NTDDI_WIN10
717 ULONG QpcSystemTimeIncrement32; // 0x368
718 ULONG QpcInterruptTimeIncrement32; // 0x36c
719 UCHAR QpcSystemTimeIncrementShift; // 0x370
720 UCHAR QpcInterruptTimeIncrementShift; // 0x371
721#if (NTDDI_VERSION >= NTDDI_WINBLUE)
722 USHORT UnparkedProcessorCount; // 0x372
723 UCHAR Reserved8[12]; // 0x374
724#else
725 UCHAR Reserved8[14]; // 0x372
726#endif
727#endif // NTDDI_VERSION < NTDDI_WIN10
728#elif (NTDDI_VERSION >= NTDDI_VISTASP2)
729 ULONG DEPRECATED_Wow64SharedInformation[MAX_WOW64_SHARED_ENTRIES]; // 0x340
730#else
731 ULONG Wow64SharedInformation[MAX_WOW64_SHARED_ENTRIES]; // 0x340
732#endif // NTDDI_VERSION >= NTDDI_VISTA
733
734#if (NTDDI_VERSION >= NTDDI_WIN7)
735 USHORT UserModeGlobalLogger[16]; // 0x380
736#else
737 USHORT UserModeGlobalLogger[8]; // 0x380
738 ULONG HeapTracingPid[2]; // 0x390
739 ULONG CritSecTracingPid[2]; // 0x398
740#endif
741
742 ULONG ImageFileExecutionOptions; // 0x3a0
743 ULONG LangGenerationCount; // 0x3a4 Vista SP2+
744
745#if (NTDDI_VERSION >= NTDDI_WIN8)
746 ULONGLONG Reserved4; // 0x3a8
747#elif (NTDDI_VERSION >= NTDDI_WIN7)
748 ULONGLONG Reserved5; // 0x3a8
749#else
750 union
751 {
752 KAFFINITY ActiveProcessorAffinity; // 0x3a8
753 ULONGLONG AffinityPad; // 0x3a8
754 };
755#endif
756
757 volatile ULONGLONG InterruptTimeBias; // 0x3b0
758#endif // NTDDI_VERSION >= NTDDI_VISTA
759
760//
761// Windows 7 and later
762//
763#if (NTDDI_VERSION >= NTDDI_WIN7)
764 volatile ULONGLONG QpcBias; // 0x3b8 // Win7: TscQpcBias
765 /* volatile */ ULONG ActiveProcessorCount; // 0x3c0 // not volatile since Win 8.1 Update 1
766
767#if (NTDDI_VERSION >= NTDDI_WIN8)
768 volatile UCHAR ActiveGroupCount; // 0x3c4
769 UCHAR Reserved9; // 0x3c5
770 union
771 {
772 USHORT QpcData; // 0x3c6
773 struct
774 {
775 volatile UCHAR QpcBypassEnabled; // 0x3c6
776 UCHAR QpcShift; // 0x3c7
777 };
778 };
779 LARGE_INTEGER TimeZoneBiasEffectiveStart; // 0x3c8
780 LARGE_INTEGER TimeZoneBiasEffectiveEnd; // 0x3d0
781 XSTATE_CONFIGURATION XState; // 0x3d8
782#else
783 USHORT ActiveGroupCount; // 0x3c4
784 USHORT Reserved4; // 0x3c6
785 volatile ULONG AitSamplingValue; // 0x3c8
786 volatile ULONG AppCompatFlag; // 0x3cc
787 ULONGLONG SystemDllNativeRelocation; // 0x3d0 deprecated in Win7 SP2
788 ULONG SystemDllWowRelocation; // 0x3d8 deprecated in Win7 SP2
789 ULONG XStatePad[1]; // 0x3dc
790 XSTATE_CONFIGURATION XState; // 0x3e0
791#endif // NTDDI_VERSION >= NTDDI_WIN8
792#endif // NTDDI_VERSION >= NTDDI_WIN7
793
794//
795// Windows 10 Vibranium and later
796//
797#if (NTDDI_VERSION >= NTDDI_WIN10_VB)
798 KSYSTEM_TIME FeatureConfigurationChangeStamp; // 0x710 // Win 11: 0x720
799 ULONG Spare; // 0x71c // Win 11: 0x72c
800#endif // NTDDI_VERSION >= NTDDI_WIN10_VB
801
802//
803// Windows 11 Nickel and later
804//
805#if (NTDDI_VERSION >= NTDDI_WIN11_NI)
806 ULONG64 UserPointerAuthMask; // 0x730
807#endif // NTDDI_VERSION >= NTDDI_WIN11_NI
808
809#if (NTDDI_VERSION < NTDDI_WIN7) && defined(__REACTOS__)
810 XSTATE_CONFIGURATION XState;
811#endif
812} KUSER_SHARED_DATA, *PKUSER_SHARED_DATA;
813
814//
815// VDM Structures
816//
817#include "pshpack1.h"
818typedef struct _VdmVirtualIca
819{
820 LONG ica_count[8];
821 LONG ica_int_line;
822 LONG ica_cpu_int;
823 USHORT ica_base;
824 USHORT ica_hipiri;
825 USHORT ica_mode;
826 UCHAR ica_master;
827 UCHAR ica_irr;
828 UCHAR ica_isr;
829 UCHAR ica_imr;
830 UCHAR ica_ssr;
831} VDMVIRTUALICA, *PVDMVIRTUALICA;
832#include "poppack.h"
833
834typedef struct _VdmIcaUserData
835{
836 PVOID pIcaLock;
837 PVDMVIRTUALICA pIcaMaster;
838 PVDMVIRTUALICA pIcaSlave;
839 PULONG pDelayIrq;
840 PULONG pUndelayIrq;
841 PULONG pDelayIret;
842 PULONG pIretHooked;
843 PULONG pAddrIretBopTable;
844 PHANDLE phWowIdleEvent;
845 PLARGE_INTEGER pIcaTimeout;
846 PHANDLE phMainThreadSuspended;
847} VDMICAUSERDATA, *PVDMICAUSERDATA;
848
849typedef struct _VDM_INITIALIZE_DATA
850{
851 PVOID TrapcHandler;
852 PVDMICAUSERDATA IcaUserData;
853} VDM_INITIALIZE_DATA, *PVDM_INITIALIZE_DATA;
854
855#else
856
857//
858// System Thread Start Routine
859//
860typedef
861VOID
862(NTAPI *PKSYSTEM_ROUTINE)(
863 PKSTART_ROUTINE StartRoutine,
864 PVOID StartContext
865);
866
867#ifndef _NTSYSTEM_
868typedef VOID
869(NTAPI *PKNORMAL_ROUTINE)(
870 IN PVOID NormalContext OPTIONAL,
871 IN PVOID SystemArgument1 OPTIONAL,
872 IN PVOID SystemArgument2 OPTIONAL);
873
874typedef VOID
875(NTAPI *PKRUNDOWN_ROUTINE)(
876 IN struct _KAPC *Apc);
877
878typedef VOID
879(NTAPI *PKKERNEL_ROUTINE)(
880 IN struct _KAPC *Apc,
881 IN OUT PKNORMAL_ROUTINE *NormalRoutine OPTIONAL,
882 IN OUT PVOID *NormalContext OPTIONAL,
883 IN OUT PVOID *SystemArgument1 OPTIONAL,
884 IN OUT PVOID *SystemArgument2 OPTIONAL);
885#endif
886
887//
888// APC Environment Types
889//
890typedef enum _KAPC_ENVIRONMENT
891{
892 OriginalApcEnvironment,
893 AttachedApcEnvironment,
894 CurrentApcEnvironment,
895 InsertApcEnvironment
896} KAPC_ENVIRONMENT;
897
898typedef struct _KTIMER_TABLE_ENTRY
899{
900#if (NTDDI_VERSION >= NTDDI_LONGHORN) || defined(_M_ARM) || defined(_M_AMD64)
901 KSPIN_LOCK Lock;
902#endif
903 LIST_ENTRY Entry;
904 ULARGE_INTEGER Time;
905} KTIMER_TABLE_ENTRY, *PKTIMER_TABLE_ENTRY;
906
907typedef struct _KTIMER_TABLE
908{
909 PKTIMER TimerExpiry[64];
910 KTIMER_TABLE_ENTRY TimerEntries[256];
911} KTIMER_TABLE, *PKTIMER_TABLE;
912
913typedef struct _KDPC_LIST
914{
915 SINGLE_LIST_ENTRY ListHead;
916 SINGLE_LIST_ENTRY* LastEntry;
917} KDPC_LIST, *PKDPC_LIST;
918
919typedef struct _SYNCH_COUNTERS
920{
921 ULONG SpinLockAcquireCount;
922 ULONG SpinLockContentionCount;
923 ULONG SpinLockSpinCount;
924 ULONG IpiSendRequestBroadcastCount;
925 ULONG IpiSendRequestRoutineCount;
926 ULONG IpiSendSoftwareInterruptCount;
927 ULONG ExInitializeResourceCount;
928 ULONG ExReInitializeResourceCount;
929 ULONG ExDeleteResourceCount;
930 ULONG ExecutiveResourceAcquiresCount;
931 ULONG ExecutiveResourceContentionsCount;
932 ULONG ExecutiveResourceReleaseExclusiveCount;
933 ULONG ExecutiveResourceReleaseSharedCount;
934 ULONG ExecutiveResourceConvertsCount;
935 ULONG ExAcqResExclusiveAttempts;
936 ULONG ExAcqResExclusiveAcquiresExclusive;
937 ULONG ExAcqResExclusiveAcquiresExclusiveRecursive;
938 ULONG ExAcqResExclusiveWaits;
939 ULONG ExAcqResExclusiveNotAcquires;
940 ULONG ExAcqResSharedAttempts;
941 ULONG ExAcqResSharedAcquiresExclusive;
942 ULONG ExAcqResSharedAcquiresShared;
943 ULONG ExAcqResSharedAcquiresSharedRecursive;
944 ULONG ExAcqResSharedWaits;
945 ULONG ExAcqResSharedNotAcquires;
946 ULONG ExAcqResSharedStarveExclusiveAttempts;
947 ULONG ExAcqResSharedStarveExclusiveAcquiresExclusive;
948 ULONG ExAcqResSharedStarveExclusiveAcquiresShared;
949 ULONG ExAcqResSharedStarveExclusiveAcquiresSharedRecursive;
950 ULONG ExAcqResSharedStarveExclusiveWaits;
951 ULONG ExAcqResSharedStarveExclusiveNotAcquires;
952 ULONG ExAcqResSharedWaitForExclusiveAttempts;
953 ULONG ExAcqResSharedWaitForExclusiveAcquiresExclusive;
954 ULONG ExAcqResSharedWaitForExclusiveAcquiresShared;
955 ULONG ExAcqResSharedWaitForExclusiveAcquiresSharedRecursive;
956 ULONG ExAcqResSharedWaitForExclusiveWaits;
957 ULONG ExAcqResSharedWaitForExclusiveNotAcquires;
958 ULONG ExSetResOwnerPointerExclusive;
959 ULONG ExSetResOwnerPointerSharedNew;
960 ULONG ExSetResOwnerPointerSharedOld;
961 ULONG ExTryToAcqExclusiveAttempts;
962 ULONG ExTryToAcqExclusiveAcquires;
963 ULONG ExBoostExclusiveOwner;
964 ULONG ExBoostSharedOwners;
965 ULONG ExEtwSynchTrackingNotificationsCount;
966 ULONG ExEtwSynchTrackingNotificationsAccountedCount;
967} SYNCH_COUNTERS, *PSYNCH_COUNTERS;
968
969//
970// PRCB DPC Data
971//
972typedef struct _KDPC_DATA
973{
974#if (NTDDI_VERSION >= NTDDI_LONGHORN)
975 KDPC_LIST DpcList;
976#else
977 LIST_ENTRY DpcListHead;
978#endif
979 ULONG_PTR DpcLock;
980#if defined(_M_AMD64) || defined(_M_ARM)
981 volatile LONG DpcQueueDepth;
982#else
983 volatile ULONG DpcQueueDepth;
984#endif
985 ULONG DpcCount;
986#if (NTDDI_VERSION >= NTDDI_LONGHORN) || defined(_M_ARM)
987 PKDPC ActiveDpc;
988#endif
989} KDPC_DATA, *PKDPC_DATA;
990
991//
992// Per-Processor Lookaside List
993//
994typedef struct _PP_LOOKASIDE_LIST
995{
996 struct _GENERAL_LOOKASIDE *P;
997 struct _GENERAL_LOOKASIDE *L;
998} PP_LOOKASIDE_LIST, *PPP_LOOKASIDE_LIST;
999
1000//
1001// Architectural Types
1002//
1003#include <arch/ketypes.h>
1004
1005//
1006// Kernel Memory Node
1007//
1008typedef struct _KNODE
1009{
1010 SLIST_HEADER DeadStackList;
1011 SLIST_HEADER PfnDereferenceSListHead;
1012 KAFFINITY ProcessorMask;
1013 UCHAR Color;
1014 UCHAR Seed;
1015 UCHAR NodeNumber;
1016 struct _flags {
1017 UCHAR Removable : 1;
1018 UCHAR Fill : 7;
1019 } Flags;
1020 ULONG MmShiftedColor;
1021 ULONG_PTR FreeCount[2];
1022 struct _SINGLE_LIST_ENTRY *PfnDeferredList;
1023} KNODE, *PKNODE;
1024
1025//
1026// Structure for Get/SetContext APC
1027//
1028typedef struct _GETSETCONTEXT
1029{
1030 KAPC Apc;
1031 KEVENT Event;
1032 KPROCESSOR_MODE Mode;
1033 CONTEXT Context;
1034} GETSETCONTEXT, *PGETSETCONTEXT;
1035
1036//
1037// Kernel Profile Object
1038//
1039typedef struct _KPROFILE
1040{
1041 CSHORT Type;
1042 CSHORT Size;
1043 LIST_ENTRY ProfileListEntry;
1044 struct _KPROCESS *Process;
1045 PVOID RangeBase;
1046 PVOID RangeLimit;
1047 ULONG BucketShift;
1048 PVOID Buffer;
1049 ULONG_PTR Segment;
1050 KAFFINITY Affinity;
1051 KPROFILE_SOURCE Source;
1052 BOOLEAN Started;
1053} KPROFILE, *PKPROFILE;
1054
1055//
1056// Kernel Interrupt Object
1057//
1058typedef struct _KINTERRUPT
1059{
1060 CSHORT Type;
1061 CSHORT Size;
1062 LIST_ENTRY InterruptListEntry;
1063 PKSERVICE_ROUTINE ServiceRoutine;
1064#if (NTDDI_VERSION >= NTDDI_LONGHORN)
1065 PKSERVICE_ROUTINE MessageServiceRoutine;
1066 ULONG MessageIndex;
1067#endif
1068 PVOID ServiceContext;
1069 KSPIN_LOCK SpinLock;
1070 ULONG TickCount;
1071 PKSPIN_LOCK ActualLock;
1072 PKINTERRUPT_ROUTINE DispatchAddress;
1073 ULONG Vector;
1074 KIRQL Irql;
1075 KIRQL SynchronizeIrql;
1076 BOOLEAN FloatingSave;
1077 BOOLEAN Connected;
1078 CCHAR Number;
1079 BOOLEAN ShareVector;
1080 KINTERRUPT_MODE Mode;
1081#if (NTDDI_VERSION >= NTDDI_LONGHORN)
1082 KINTERRUPT_POLARITY Polarity;
1083#endif
1084 ULONG ServiceCount;
1085 ULONG DispatchCount;
1086#if (NTDDI_VERSION >= NTDDI_LONGHORN)
1087 ULONGLONG Rsvd1;
1088#endif
1089#ifdef _M_AMD64
1090 PKTRAP_FRAME TrapFrame;
1091 PVOID Reserved;
1092#endif
1093 ULONG DispatchCode[DISPATCH_LENGTH];
1094} KINTERRUPT;
1095
1096//
1097// Kernel Event Pair Object
1098//
1099typedef struct _KEVENT_PAIR
1100{
1101 CSHORT Type;
1102 CSHORT Size;
1103 KEVENT LowEvent;
1104 KEVENT HighEvent;
1105} KEVENT_PAIR, *PKEVENT_PAIR;
1106
1107//
1108// Kernel No Execute Options
1109//
1110typedef struct _KEXECUTE_OPTIONS
1111{
1112 UCHAR ExecuteDisable:1;
1113 UCHAR ExecuteEnable:1;
1114 UCHAR DisableThunkEmulation:1;
1115 UCHAR Permanent:1;
1116 UCHAR ExecuteDispatchEnable:1;
1117 UCHAR ImageDispatchEnable:1;
1118 UCHAR Spare:2;
1119} KEXECUTE_OPTIONS, *PKEXECUTE_OPTIONS;
1120
1121#if (NTDDI_VERSION >= NTDDI_WIN7)
1122typedef union _KWAIT_STATUS_REGISTER
1123{
1124 UCHAR Flags;
1125 struct
1126 {
1127 UCHAR State:2;
1128 UCHAR Affinity:1;
1129 UCHAR Priority:1;
1130 UCHAR Apc:1;
1131 UCHAR UserApc:1;
1132 UCHAR Alert:1;
1133 UCHAR Unused:1;
1134 };
1135} KWAIT_STATUS_REGISTER, *PKWAIT_STATUS_REGISTER;
1136
1137typedef struct _COUNTER_READING
1138{
1139 enum _HARDWARE_COUNTER_TYPE Type;
1140 ULONG Index;
1141 ULONG64 Start;
1142 ULONG64 Total;
1143}COUNTER_READING, *PCOUNTER_READING;
1144
1145typedef struct _KTHREAD_COUNTERS
1146{
1147 ULONG64 WaitReasonBitMap;
1148 struct _THREAD_PERFORMANCE_DATA* UserData;
1149 ULONG Flags;
1150 ULONG ContextSwitches;
1151 ULONG64 CycleTimeBias;
1152 ULONG64 HardwareCounters;
1153 COUNTER_READING HwCounter[16];
1154}KTHREAD_COUNTERS, *PKTHREAD_COUNTERS;
1155#endif
1156
1158#if (NTDDI_VERSION >= NTDDI_WIN8)
1159typedef struct _RTL_RB_TREE
1160{
1161 PRTL_BALANCED_NODE Root;
1162 PRTL_BALANCED_NODE Min;
1163} RTL_RB_TREE, *PRTL_RB_TREE;
1164#endif
1165
1166#if (NTDDI_VERSION >= NTDDI_WINBLUE)
1167typedef struct _KLOCK_ENTRY_LOCK_STATE
1168{
1169 union
1170 {
1171 struct
1172 {
1173#if (NTDDI_VERSION >= NTDDI_WIN10) // since 6.4.9841.0
1174 ULONG_PTR CrossThreadReleasable : 1;
1175#else
1176 ULONG_PTR Waiting : 1;
1177#endif
1178 ULONG_PTR Busy : 1;
1179 ULONG_PTR Reserved : (8 * sizeof(PVOID)) - 3; // previously Spare
1180 ULONG_PTR InTree : 1;
1181 };
1182 PVOID LockState;
1183 };
1184 union
1185 {
1186 PVOID SessionState;
1187 struct
1188 {
1189 ULONG SessionId;
1190#ifdef _WIN64
1191 ULONG SessionPad;
1192#endif
1193 };
1194 };
1195} KLOCK_ENTRY_LOCK_STATE, *PKLOCK_ENTRY_LOCK_STATE;
1196
1197typedef struct _KLOCK_ENTRY
1198{
1199 union
1200 {
1201 RTL_BALANCED_NODE TreeNode;
1202 SINGLE_LIST_ENTRY FreeListEntry;
1203 };
1204#if (NTDDI_VERSION >= NTDDI_WIN10)
1205 union
1206 {
1207 ULONG EntryFlags;
1208 struct
1209 {
1210 UCHAR EntryOffset;
1211 union
1212 {
1213 UCHAR ThreadLocalFlags;
1214 struct
1215 {
1216 UCHAR WaitingBit : 1;
1217 UCHAR Spare0 : 7;
1218 };
1219 };
1220 union
1221 {
1222 UCHAR AcquiredByte;
1223 UCHAR AcquiredBit : 1;
1224 };
1225 union
1226 {
1227 UCHAR CrossThreadFlags;
1228 struct
1229 {
1230 UCHAR HeadNodeBit : 1;
1231 UCHAR IoPriorityBit : 1;
1232 UCHAR IoQoSWaiter : 1; // since TH2
1233 UCHAR Spare1 : 5;
1234 };
1235 };
1236 };
1237 struct
1238 {
1239 ULONG StaticState : 8;
1240 ULONG AllFlags : 24;
1241 };
1242 };
1243#ifdef _WIN64
1244 ULONG SpareFlags;
1245#endif
1246#else
1247 union
1248 {
1249 PVOID ThreadUnsafe;
1250 struct
1251 {
1252 volatile UCHAR HeadNodeByte;
1253 UCHAR Reserved1[2];
1254 volatile UCHAR AcquiredByte;
1255 };
1256 };
1257#endif
1258
1259 union
1260 {
1261 KLOCK_ENTRY_LOCK_STATE LockState;
1262 PVOID LockUnsafe;
1263 struct
1264 {
1265#if (NTDDI_VERSION >= NTDDI_WIN10)
1266 volatile UCHAR CrossThreadReleasableAndBusyByte;
1267#else
1268 volatile UCHAR WaitingAndBusyByte;
1269#endif
1270 UCHAR Reserved[sizeof(PVOID) - 2];
1271 UCHAR InTreeByte;
1272 union
1273 {
1274 PVOID SessionState;
1275 struct
1276 {
1277 ULONG SessionId;
1278#ifdef _WIN64
1279 ULONG SessionPad;
1280#endif
1281 };
1282 };
1283 };
1284 };
1285 union
1286 {
1287 struct
1288 {
1289 RTL_RB_TREE OwnerTree;
1290 RTL_RB_TREE WaiterTree;
1291 };
1292 CHAR CpuPriorityKey;
1293 };
1294 ULONG_PTR EntryLock;
1295 union
1296 {
1297#if _WIN64
1298 ULONG AllBoosts : 17;
1299#else
1300 USHORT AllBoosts;
1301#endif
1302 struct
1303 {
1304 struct
1305 {
1306 USHORT CpuBoostsBitmap : 15;
1307 USHORT IoBoost : 1;
1308 };
1309 struct
1310 {
1311 USHORT IoQoSBoost : 1;
1312 USHORT IoNormalPriorityWaiterCount : 8;
1313 USHORT IoQoSWaiterCount : 7;
1314 };
1315 };
1316 };
1317#if _WIN64
1318 ULONG SparePad;
1319#endif
1320} KLOCK_ENTRY, *PKLOCK_ENTRY;
1321
1322#endif
1323
1324//
1325// Kernel Thread (KTHREAD)
1326//
1327#if (NTDDI_VERSION < NTDDI_WIN8)
1328
1329typedef struct _KTHREAD
1330{
1331 DISPATCHER_HEADER Header;
1332#if (NTDDI_VERSION >= NTDDI_LONGHORN) // [
1333 ULONGLONG CycleTime;
1334#ifndef _WIN64 // [
1335 ULONG HighCycleTime;
1336#endif // ]
1337 ULONGLONG QuantumTarget;
1338#else // ][
1339 LIST_ENTRY MutantListHead;
1340#endif // ]
1341 PVOID InitialStack;
1342 ULONG_PTR StackLimit; // FIXME: PVOID
1343 PVOID KernelStack;
1344 KSPIN_LOCK ThreadLock;
1345#if (NTDDI_VERSION >= NTDDI_WIN7) // [
1346 KWAIT_STATUS_REGISTER WaitRegister;
1347 BOOLEAN Running;
1348 BOOLEAN Alerted[2];
1349 union
1350 {
1351 struct
1352 {
1353 ULONG KernelStackResident:1;
1354 ULONG ReadyTransition:1;
1355 ULONG ProcessReadyQueue:1;
1356 ULONG WaitNext:1;
1357 ULONG SystemAffinityActive:1;
1358 ULONG Alertable:1;
1359 ULONG GdiFlushActive:1;
1360 ULONG UserStackWalkActive:1;
1361 ULONG ApcInterruptRequest:1;
1362 ULONG ForceDeferSchedule:1;
1363 ULONG QuantumEndMigrate:1;
1364 ULONG UmsDirectedSwitchEnable:1;
1365 ULONG TimerActive:1;
1366 ULONG Reserved:19;
1367 };
1368 LONG MiscFlags;
1369 };
1370#endif // ]
1371 union
1372 {
1373 KAPC_STATE ApcState;
1374 struct
1375 {
1376 UCHAR ApcStateFill[FIELD_OFFSET(KAPC_STATE, UserApcPending) + 1];
1377#if (NTDDI_VERSION >= NTDDI_LONGHORN) // [
1378 SCHAR Priority;
1379#if (NTDDI_VERSION >= NTDDI_WIN7) // [
1380 /* On x86, the following members "fall out" of the union */
1381 volatile ULONG NextProcessor;
1382 volatile ULONG DeferredProcessor;
1383#else // ][
1384 /* On x86, the following members "fall out" of the union */
1385 volatile USHORT NextProcessor;
1386 volatile USHORT DeferredProcessor;
1387#endif // ]
1388#else // ][
1389 UCHAR ApcQueueable;
1390 /* On x86, the following members "fall out" of the union */
1391 volatile UCHAR NextProcessor;
1392 volatile UCHAR DeferredProcessor;
1393 UCHAR AdjustReason;
1394 SCHAR AdjustIncrement;
1395#endif // ]
1396 };
1397 };
1398 KSPIN_LOCK ApcQueueLock;
1399#if !defined(_M_AMD64) && !defined(_M_ARM64) // [
1400 ULONG ContextSwitches;
1401 volatile UCHAR State;
1402 UCHAR NpxState;
1403 KIRQL WaitIrql;
1404 KPROCESSOR_MODE WaitMode;
1405#endif // ]
1406 LONG_PTR WaitStatus;
1407#if (NTDDI_VERSION >= NTDDI_WIN7) // [
1408 PKWAIT_BLOCK WaitBlockList;
1409#else // ][
1410 union
1411 {
1412 PKWAIT_BLOCK WaitBlockList;
1413 PKGATE GateObject;
1414 };
1415#if (NTDDI_VERSION >= NTDDI_LONGHORN) // [
1416 union
1417 {
1418 struct
1419 {
1420 ULONG KernelStackResident:1;
1421 ULONG ReadyTransition:1;
1422 ULONG ProcessReadyQueue:1;
1423 ULONG WaitNext:1;
1424 ULONG SystemAffinityActive:1;
1425 ULONG Alertable:1;
1426 ULONG GdiFlushActive:1;
1427 ULONG Reserved:25;
1428 };
1429 LONG MiscFlags;
1430 };
1431#else // ][
1432 BOOLEAN Alertable;
1433 BOOLEAN WaitNext;
1434#endif // ]
1435 UCHAR WaitReason;
1436#if (NTDDI_VERSION < NTDDI_LONGHORN)
1437 SCHAR Priority;
1438 BOOLEAN EnableStackSwap;
1439#endif // ]
1440 volatile UCHAR SwapBusy;
1441 BOOLEAN Alerted[MaximumMode];
1442#endif // ]
1443 union
1444 {
1445 LIST_ENTRY WaitListEntry;
1446 SINGLE_LIST_ENTRY SwapListEntry;
1447 };
1448 PKQUEUE Queue;
1449#if !defined(_M_AMD64) && !defined(_M_ARM64) // [
1450 ULONG WaitTime;
1451 union
1452 {
1453 struct
1454 {
1455 SHORT KernelApcDisable;
1456 SHORT SpecialApcDisable;
1457 };
1458 ULONG CombinedApcDisable;
1459 };
1460#endif // ]
1461 struct _TEB *Teb;
1462
1463#if (NTDDI_VERSION >= NTDDI_WIN7) // [
1464 KTIMER Timer;
1465#else // ][
1466 union
1467 {
1468 KTIMER Timer;
1469 struct
1470 {
1471 UCHAR TimerFill[FIELD_OFFSET(KTIMER, Period) + sizeof(LONG)];
1472#if !defined(_WIN64) // [
1473 };
1474 };
1475#endif // ]
1476#endif // ]
1477 union
1478 {
1479 struct
1480 {
1481 ULONG AutoAlignment:1;
1482 ULONG DisableBoost:1;
1483#if (NTDDI_VERSION >= NTDDI_LONGHORN) // [
1484 ULONG EtwStackTraceApc1Inserted:1;
1485 ULONG EtwStackTraceApc2Inserted:1;
1486 ULONG CycleChargePending:1;
1487 ULONG CalloutActive:1;
1488 ULONG ApcQueueable:1;
1489 ULONG EnableStackSwap:1;
1490 ULONG GuiThread:1;
1491 ULONG ReservedFlags:23;
1492#else // ][
1493 LONG ReservedFlags:30;
1494#endif // ]
1495 };
1496 LONG ThreadFlags;
1497 };
1498#if defined(_WIN64) && (NTDDI_VERSION < NTDDI_WIN7) // [
1499 };
1500 };
1501#endif // ]
1502#if (NTDDI_VERSION >= NTDDI_WIN7) // [
1503#if defined(_WIN64) // [
1504 ULONG Spare0;
1505#else // ][
1506 PVOID ServiceTable;
1507#endif // ]
1508#endif // ]
1509 union
1510 {
1511 DECLSPEC_ALIGN(8) KWAIT_BLOCK WaitBlock[THREAD_WAIT_OBJECTS + 1];
1512#if (NTDDI_VERSION < NTDDI_WIN7) // [
1513 struct
1514 {
1515 UCHAR WaitBlockFill0[FIELD_OFFSET(KWAIT_BLOCK, SpareByte)]; // 32bit = 23, 64bit = 43
1516#if (NTDDI_VERSION >= NTDDI_LONGHORN) // [
1517 UCHAR IdealProcessor;
1518#else // ][
1519 BOOLEAN SystemAffinityActive;
1520#endif // ]
1521 };
1522 struct
1523 {
1524 UCHAR WaitBlockFill1[1 * sizeof(KWAIT_BLOCK) + FIELD_OFFSET(KWAIT_BLOCK, SpareByte)]; // 47 / 91
1525 CCHAR PreviousMode;
1526 };
1527 struct
1528 {
1529 UCHAR WaitBlockFill2[2 * sizeof(KWAIT_BLOCK) + FIELD_OFFSET(KWAIT_BLOCK, SpareByte)]; // 71 / 139
1530 UCHAR ResourceIndex;
1531 };
1532 struct
1533 {
1534 UCHAR WaitBlockFill3[3 * sizeof(KWAIT_BLOCK) + FIELD_OFFSET(KWAIT_BLOCK, SpareByte)]; // 95 / 187
1535 UCHAR LargeStack;
1536 };
1537#endif // ]
1538#ifdef _WIN64 // [
1539 struct
1540 {
1541 UCHAR WaitBlockFill4[FIELD_OFFSET(KWAIT_BLOCK, SpareLong)];
1542 ULONG ContextSwitches;
1543 };
1544 struct
1545 {
1546 UCHAR WaitBlockFill5[1 * sizeof(KWAIT_BLOCK) + FIELD_OFFSET(KWAIT_BLOCK, SpareLong)];
1547 UCHAR State;
1548 UCHAR NpxState;
1549 UCHAR WaitIrql;
1550 CHAR WaitMode;
1551 };
1552 struct
1553 {
1554 UCHAR WaitBlockFill6[2 * sizeof(KWAIT_BLOCK) + FIELD_OFFSET(KWAIT_BLOCK, SpareLong)];
1555 ULONG WaitTime;
1556 };
1557#if (NTDDI_VERSION >= NTDDI_WIN7) // [
1558 struct
1559 {
1560 UCHAR WaitBlockFill7[168];
1561 PVOID TebMappedLowVa;
1562 struct _UMS_CONTROL_BLOCK* Ucb;
1563 };
1564#endif // ]
1565 struct
1566 {
1567#if (NTDDI_VERSION >= NTDDI_WIN7) // [
1568 UCHAR WaitBlockFill8[188];
1569#else // ][
1570 UCHAR WaitBlockFill7[3 * sizeof(KWAIT_BLOCK) + FIELD_OFFSET(KWAIT_BLOCK, SpareLong)];
1571#endif // ]
1572 union
1573 {
1574 struct
1575 {
1576 SHORT KernelApcDisable;
1577 SHORT SpecialApcDisable;
1578 };
1579 ULONG CombinedApcDisable;
1580 };
1581 };
1582#endif // ]
1583 };
1584 LIST_ENTRY QueueListEntry;
1585 PKTRAP_FRAME TrapFrame;
1586#if (NTDDI_VERSION >= NTDDI_LONGHORN) // [
1587 PVOID FirstArgument;
1588 union
1589 {
1590 PVOID CallbackStack;
1591 ULONG_PTR CallbackDepth;
1592 };
1593#else // ][
1594 PVOID CallbackStack;
1595#endif // ]
1596#if (NTDDI_VERSION < NTDDI_LONGHORN) || ((NTDDI_VERSION < NTDDI_WIN7) && !defined(_WIN64)) // [
1597 PVOID ServiceTable;
1598#endif // ]
1599#if (NTDDI_VERSION < NTDDI_LONGHORN) && defined(_WIN64) // [
1600 ULONG KernelLimit;
1601#endif // ]
1602 UCHAR ApcStateIndex;
1603#if (NTDDI_VERSION < NTDDI_LONGHORN) // [
1604 UCHAR IdealProcessor;
1605 BOOLEAN Preempted;
1606 BOOLEAN ProcessReadyQueue;
1607#ifdef _WIN64 // [
1608 PVOID Win32kTable;
1609 ULONG Win32kLimit;
1610#endif // ]
1611 BOOLEAN KernelStackResident;
1612#endif // ]
1613 SCHAR BasePriority;
1614 SCHAR PriorityDecrement;
1615#if (NTDDI_VERSION >= NTDDI_LONGHORN) // [
1616 BOOLEAN Preempted;
1617 UCHAR AdjustReason;
1618 CHAR AdjustIncrement;
1619#if (NTDDI_VERSION >= NTDDI_WIN7)
1620 UCHAR PreviousMode;
1621#else
1622 UCHAR Spare01;
1623#endif
1624#endif // ]
1625 CHAR Saturation;
1626#if (NTDDI_VERSION >= NTDDI_LONGHORN) // [
1627 ULONG SystemCallNumber;
1628#if (NTDDI_VERSION >= NTDDI_WIN7) // [
1629 ULONG FreezeCount;
1630#else // ][
1631 ULONG Spare02;
1632#endif // ]
1633#endif // ]
1634#if (NTDDI_VERSION >= NTDDI_WIN7) // [
1635 GROUP_AFFINITY UserAffinity;
1636 struct _KPROCESS *Process;
1637 GROUP_AFFINITY Affinity;
1638 ULONG IdealProcessor;
1639 ULONG UserIdealProcessor;
1640#else // ][
1641 KAFFINITY UserAffinity;
1642 struct _KPROCESS *Process;
1643 KAFFINITY Affinity;
1644#endif // ]
1645 PKAPC_STATE ApcStatePointer[2];
1646 union
1647 {
1648 KAPC_STATE SavedApcState;
1649 struct
1650 {
1651 UCHAR SavedApcStateFill[FIELD_OFFSET(KAPC_STATE, UserApcPending) + 1];
1652#if (NTDDI_VERSION >= NTDDI_WIN7) // [
1653 UCHAR WaitReason;
1654#else // ][
1655 CCHAR FreezeCount;
1656#endif // ]
1657#ifndef _WIN64 // [
1658 };
1659 };
1660#endif // ]
1661 CCHAR SuspendCount;
1662#if (NTDDI_VERSION >= NTDDI_WIN7) // [
1663 CCHAR Spare1;
1664#else // ][
1665 UCHAR UserIdealProcessor;
1666#endif // ]
1667#if (NTDDI_VERSION >= NTDDI_WIN7) // [
1668#elif (NTDDI_VERSION >= NTDDI_LONGHORN) // ][
1669 UCHAR Spare03;
1670#else // ][
1671 UCHAR CalloutActive;
1672#endif // ]
1673#ifdef _WIN64 // [
1674 UCHAR CodePatchInProgress;
1675 };
1676 };
1677#endif // ]
1678#if defined(_M_IX86) // [
1679#if (NTDDI_VERSION >= NTDDI_LONGHORN) // [
1680 UCHAR OtherPlatformFill;
1681#else // ][
1682 UCHAR Iopl;
1683#endif // ]
1684#endif // ]
1685 PVOID Win32Thread;
1686 PVOID StackBase;
1687 union
1688 {
1689 KAPC SuspendApc;
1690 struct
1691 {
1692 UCHAR SuspendApcFill0[1];
1693#if (NTDDI_VERSION >= NTDDI_WIN7) // [
1694 UCHAR ResourceIndex;
1695#elif (NTDDI_VERSION >= NTDDI_LONGHORN) // ][
1696 CHAR Spare04;
1697#else // ][
1698 SCHAR Quantum;
1699#endif // ]
1700 };
1701 struct
1702 {
1703 UCHAR SuspendApcFill1[3];
1704 UCHAR QuantumReset;
1705 };
1706 struct
1707 {
1708 UCHAR SuspendApcFill2[4];
1709 ULONG KernelTime;
1710 };
1711 struct
1712 {
1713 UCHAR SuspendApcFill3[FIELD_OFFSET(KAPC, SystemArgument1)];
1714#if (NTDDI_VERSION >= NTDDI_LONGHORN)
1715 PKPRCB WaitPrcb;
1716#else
1717 PVOID TlsArray;
1718#endif
1719 };
1720 struct
1721 {
1722 UCHAR SuspendApcFill4[FIELD_OFFSET(KAPC, SystemArgument2)]; // 40 / 72
1723 PVOID LegoData;
1724 };
1725 struct
1726 {
1727 UCHAR SuspendApcFill5[FIELD_OFFSET(KAPC, Inserted) + 1]; // 47 / 83
1728#if (NTDDI_VERSION >= NTDDI_WIN7) // [
1729 UCHAR LargeStack;
1730#else // ][
1731 UCHAR PowerState;
1732#endif // ]
1733#ifdef _WIN64 // [
1734 ULONG UserTime;
1735#endif // ]
1736 };
1737 };
1738#ifndef _WIN64 // [
1739 ULONG UserTime;
1740#endif // ]
1741 union
1742 {
1743 KSEMAPHORE SuspendSemaphore;
1744 struct
1745 {
1746 UCHAR SuspendSemaphorefill[FIELD_OFFSET(KSEMAPHORE, Limit) + 4]; // 20 / 28
1747#ifdef _WIN64 // [
1748 ULONG SListFaultCount;
1749#endif // ]
1750 };
1751 };
1752#ifndef _WIN64 // [
1753 ULONG SListFaultCount;
1754#endif // ]
1755 LIST_ENTRY ThreadListEntry;
1756#if (NTDDI_VERSION >= NTDDI_LONGHORN) // [
1757 LIST_ENTRY MutantListHead;
1758#endif // ]
1759 PVOID SListFaultAddress;
1760#ifdef _M_AMD64 // [
1761 LONG64 ReadOperationCount;
1762 LONG64 WriteOperationCount;
1763 LONG64 OtherOperationCount;
1764 LONG64 ReadTransferCount;
1765 LONG64 WriteTransferCount;
1766 LONG64 OtherTransferCount;
1767#endif // ]
1768#if (NTDDI_VERSION >= NTDDI_WIN7) // [
1769 PKTHREAD_COUNTERS ThreadCounters;
1770 PXSTATE_SAVE XStateSave;
1771#elif (NTDDI_VERSION >= NTDDI_LONGHORN) // ][
1772 PVOID MdlForLockedTeb;
1773#endif // ]
1774#if defined(__REACTOS__) && defined(_M_AMD64) // HACK!
1775 XSAVE_FORMAT* StateSaveArea;
1776#endif
1777} KTHREAD;
1778
1779#else // not (NTDDI_VERSION < NTDDI_WIN8)
1780
1781#if defined(_WIN64) && (NTDDI_VERSION < 0x06032580) // since WIN 8.1 Update1 6.3.9600.16384
1782#define NUMBER_OF_LOCK_ENTRIES 5
1783#else
1784#define NUMBER_OF_LOCK_ENTRIES 6
1785#endif
1786
1787typedef struct _KTHREAD
1788{
1789 DISPATCHER_HEADER Header;
1790 PVOID SListFaultAddress;
1791 ULONG64 QuantumTarget;
1792 PVOID InitialStack;
1793 volatile VOID *StackLimit;
1794 PVOID StackBase;
1795 KSPIN_LOCK ThreadLock;
1796 volatile ULONG64 CycleTime;
1797#ifndef _WIN64
1798 volatile ULONG HighCycleTime;
1799 PVOID ServiceTable;
1800#endif
1801 ULONG CurrentRunTime;
1802 ULONG ExpectedRunTime;
1803 PVOID KernelStack;
1804 XSAVE_FORMAT* StateSaveArea;
1805 struct _KSCHEDULING_GROUP* SchedulingGroup;
1806 KWAIT_STATUS_REGISTER WaitRegister;
1807 BOOLEAN Running;
1808 BOOLEAN Alerted[MaximumMode];
1809
1810 union
1811 {
1812 struct
1813 {
1814#if (NTDDI_VERSION < NTDDI_WIN10)
1815 ULONG KernelStackResident : 1;
1816#else
1817 ULONG AutoBoostActive : 1;
1818#endif
1819 ULONG ReadyTransition : 1;
1820#if (NTDDI_VERSION < NTDDI_WIN10TH2)
1821 ULONG ProcessReadyQueue : 1;
1822#endif
1823 ULONG ProcessReadyQueue : 1;
1824 ULONG WaitNext : 1;
1825 ULONG SystemAffinityActive : 1;
1826 ULONG Alertable : 1;
1827#if (NTDDI_VERSION < NTDDI_WIN81)
1828 ULONG CodePatchInProgress : 1;
1829#endif
1830 ULONG UserStackWalkActive : 1;
1831 ULONG ApcInterruptRequest : 1;
1832 ULONG QuantumEndMigrate : 1;
1833 ULONG UmsDirectedSwitchEnable : 1;
1834 ULONG TimerActive : 1;
1835 ULONG SystemThread : 1;
1836 ULONG ProcessDetachActive : 1;
1837 ULONG CalloutActive : 1;
1838 ULONG ScbReadyQueue : 1;
1839 ULONG ApcQueueable : 1;
1840 ULONG ReservedStackInUse : 1;
1841 ULONG UmsPerformingSyscall : 1;
1842 ULONG DisableStackCheck : 1;
1843 ULONG Reserved : 12;
1844 };
1845 LONG MiscFlags;
1846 };
1847
1848 union
1849 {
1850 struct
1851 {
1852 ULONG AutoAlignment : 1;
1853 ULONG DisableBoost : 1;
1854 ULONG UserAffinitySet : 1;
1855 ULONG AlertedByThreadId : 1;
1856 ULONG QuantumDonation : 1;
1857 ULONG EnableStackSwap : 1;
1858 ULONG GuiThread : 1;
1859 ULONG DisableQuantum : 1;
1860 ULONG ChargeOnlyGroup : 1;
1861 ULONG DeferPreemption : 1;
1862 ULONG QueueDeferPreemption : 1;
1863 ULONG ForceDeferSchedule : 1;
1864 ULONG ExplicitIdealProcessor : 1;
1865 ULONG FreezeCount : 1;
1866#if (NTDDI_VERSION >= 0x060324D7) // since 6.3.9431.0
1867 ULONG TerminationApcRequest : 1;
1868#endif
1869#if (NTDDI_VERSION >= 0x06032580) // since 6.3.9600.16384
1870 ULONG AutoBoostEntriesExhausted : 1;
1871#endif
1872#if (NTDDI_VERSION >= 0x06032580) // since 6.3.9600.17031
1873 ULONG KernelStackResident : 1;
1874#endif
1875#if (NTDDI_VERSION >= NTDDI_WIN10)
1876 ULONG CommitFailTerminateRequest : 1;
1877 ULONG ProcessStackCountDecremented : 1;
1878 ULONG ThreadFlagsSpare : 5;
1879#endif
1880 ULONG EtwStackTraceApcInserted : 8;
1881#if (NTDDI_VERSION < NTDDI_WIN10)
1882 ULONG ReservedFlags : 10;
1883#endif
1884 };
1885 LONG ThreadFlags;
1886 };
1887
1888#if (NTDDI_VERSION >= NTDDI_WIN10)
1889 volatile UCHAR Tag;
1890 UCHAR SystemHeteroCpuPolicy;
1891 UCHAR UserHeteroCpuPolicy : 7;
1892 UCHAR ExplicitSystemHeteroCpuPolicy : 1;
1893 UCHAR Spare0;
1894#else
1895 ULONG Spare0;
1896#endif
1897 ULONG SystemCallNumber;
1898#ifdef _WIN64
1899 ULONG Spare1; // Win 10: Spare10
1900#endif
1901 PVOID FirstArgument;
1902 PKTRAP_FRAME TrapFrame;
1903
1904 union
1905 {
1906 KAPC_STATE ApcState;
1907 struct
1908 {
1909 UCHAR ApcStateFill[RTL_SIZEOF_THROUGH_FIELD(KAPC_STATE, UserApcPending)]; // 32bit: 23/0x17, 64bit: 43/0x2B
1910 SCHAR Priority;
1911 ULONG UserIdealProcessor;
1912 };
1913 };
1914
1915#ifndef _WIN64
1916 ULONG ContextSwitches;
1917 volatile UCHAR State;
1918#if (NTDDI_VERSION >= NTDDI_WIN10) // since 10.0.10074.0
1919 CHAR Spare12;
1920#else
1921 CHAR NpxState;
1922#endif
1923 KIRQL WaitIrql;
1924 KPROCESSOR_MODE WaitMode;
1925#endif
1926
1927 volatile INT_PTR WaitStatus;
1928 PKWAIT_BLOCK WaitBlockList;
1929 union
1930 {
1931 LIST_ENTRY WaitListEntry;
1932 SINGLE_LIST_ENTRY SwapListEntry;
1933 };
1934 PKQUEUE Queue;
1935 PVOID Teb;
1936#if (NTDDI_VERSION >= NTDDI_WIN8 /* 0x060223F0 */) // since 6.2.9200.16384
1937 ULONG64 RelativeTimerBias;
1938#endif
1939 KTIMER Timer;
1940
1941 union
1942 {
1943 DECLSPEC_ALIGN(8) KWAIT_BLOCK WaitBlock[THREAD_WAIT_OBJECTS + 1];
1944#ifdef _WIN64
1945 struct
1946 {
1947 UCHAR WaitBlockFill4[FIELD_OFFSET(KWAIT_BLOCK, SpareLong)]; // 32bit: -, 64bit: 20/0x14
1948 ULONG ContextSwitches;
1949 };
1950 struct
1951 {
1952 UCHAR WaitBlockFill5[1 * sizeof(KWAIT_BLOCK) + FIELD_OFFSET(KWAIT_BLOCK, SpareLong)]; // 32bit: -, 64bit: 68/0x44
1953 UCHAR State;
1954#if (NTDDI_VERSION >= NTDDI_WIN10)
1955 CHAR Spare13;
1956#else
1957 CHAR NpxState;
1958#endif
1959 UCHAR WaitIrql;
1960 CHAR WaitMode;
1961 };
1962 struct
1963 {
1964 UCHAR WaitBlockFill6[2 * sizeof(KWAIT_BLOCK) + FIELD_OFFSET(KWAIT_BLOCK, SpareLong)]; // 32bit: -, 64bit: 116/0x74
1965 ULONG WaitTime;
1966 };
1967 struct
1968 {
1969 UCHAR WaitBlockFill7[3 * sizeof(KWAIT_BLOCK) + FIELD_OFFSET(KWAIT_BLOCK, SpareLong)]; // 32bit: -, 64bit: 164/0xA4
1970 union
1971 {
1972 struct
1973 {
1974 SHORT KernelApcDisable;
1975 SHORT SpecialApcDisable;
1976 };
1977 ULONG CombinedApcDisable;
1978 };
1979 };
1980#endif
1981 struct
1982 {
1983 UCHAR WaitBlockFill8[FIELD_OFFSET(KWAIT_BLOCK, SparePtr)]; // 32bit: 20/0x14, 64bit: 40/0x28
1984 struct _KTHREAD_COUNTERS *ThreadCounters;
1985 };
1986 struct
1987 {
1988 UCHAR WaitBlockFill9[1 * sizeof(KWAIT_BLOCK) + FIELD_OFFSET(KWAIT_BLOCK, SparePtr)]; // 32bit: 44/0x2C, 64bit: 88/0x58
1989 PXSTATE_SAVE XStateSave;
1990 };
1991 struct
1992 {
1993 UCHAR WaitBlockFill10[2 * sizeof(KWAIT_BLOCK) + FIELD_OFFSET(KWAIT_BLOCK, SparePtr)]; // 32bit: 68/0x44, 64bit: 136/0x88
1994 PVOID Win32Thread;
1995 };
1996 struct
1997 {
1998 UCHAR WaitBlockFill11[3 * sizeof(KWAIT_BLOCK) + FIELD_OFFSET(KWAIT_BLOCK, Object)]; // 32bit: 88/0x58, 64bit: 176/0xB0
1999#ifdef _WIN64
2000 struct _UMS_CONTROL_BLOCK* Ucb;
2001 struct _KUMS_CONTEXT_HEADER* Uch;
2002#else
2003 ULONG WaitTime;
2004 union
2005 {
2006 struct
2007 {
2008 SHORT KernelApcDisable;
2009 SHORT SpecialApcDisable;
2010 };
2011 ULONG CombinedApcDisable;
2012 };
2013#endif
2014 };
2015 };
2016
2017#ifdef _WIN64
2018 PVOID TebMappedLowVa;
2019#endif
2020 LIST_ENTRY QueueListEntry;
2021#if (NTDDI_VERSION >= 0x060223F0) // since 6.2.9200.16384
2022 union
2023 {
2024 ULONG NextProcessor;
2025 struct
2026 {
2027 ULONG NextProcessorNumber : 31;
2028 ULONG SharedReadyQueue : 1;
2029 };
2030 };
2031 LONG QueuePriority;
2032#else
2033 ULONG NextProcessor;
2034 ULONG DeferredProcessor;
2035#endif
2036 PKPROCESS Process;
2037
2038 union
2039 {
2040 GROUP_AFFINITY UserAffinity;
2041 struct
2042 {
2043 UCHAR UserAffinityFill[FIELD_OFFSET(GROUP_AFFINITY, Reserved)]; // 32bit: 6/0x6, 64bit: 10/0x0A
2044 CHAR PreviousMode;
2045 CHAR BasePriority;
2046 union
2047 {
2048 CHAR PriorityDecrement;
2049 struct
2050 {
2051 UCHAR ForegroundBoost : 4;
2052 UCHAR UnusualBoost : 4;
2053 };
2054 };
2055 UCHAR Preempted;
2056 UCHAR AdjustReason;
2057 CHAR AdjustIncrement;
2058 };
2059 };
2060
2061#if (NTDDI_VERSION >= NTDDI_WIN10) // since 10.0.10240.16384
2062 ULONG_PTR AffinityVersion;
2063#endif
2064 union
2065 {
2066 GROUP_AFFINITY Affinity;
2067 struct
2068 {
2069 UCHAR AffinityFill[FIELD_OFFSET(GROUP_AFFINITY, Reserved)]; // 32bit: 6/0x6, 64bit: 10/0x0A
2070 UCHAR ApcStateIndex;
2071 UCHAR WaitBlockCount;
2072 ULONG IdealProcessor;
2073 };
2074 };
2075
2076#if (NTDDI_VERSION >= NTDDI_WIN10) // since 10.0.10240.16384
2077#ifdef _WIN64
2078 ULONG64 NpxState;
2079#else
2080 ULONG Spare15;
2081#endif
2082#else
2083 PKAPC_STATE ApcStatePointer[2];
2084#endif
2085
2086 union
2087 {
2088 KAPC_STATE SavedApcState;
2089 struct
2090 {
2091 UCHAR SavedApcStateFill[FIELD_OFFSET(KAPC_STATE, UserApcPending) + 1]; // 32bit: 23/0x17, 64bit: 43/0x2B
2092 UCHAR WaitReason;
2093 CHAR SuspendCount;
2094 CHAR Saturation;
2095 SHORT SListFaultCount;
2096 };
2097 };
2098
2099 union
2100 {
2101 KAPC SchedulerApc;
2102 struct
2103 {
2104 UCHAR SchedulerApcFill0[FIELD_OFFSET(KAPC, SpareByte0)]; // 32bit: 1/0x01, 64bit: 1/0x01
2105 UCHAR ResourceIndex;
2106 };
2107 struct
2108 {
2109 UCHAR SchedulerApcFill1[FIELD_OFFSET(KAPC, SpareByte1)]; // 32bit: 3/0x03, 64bit: 3/0x03
2110 UCHAR QuantumReset;
2111 };
2112 struct
2113 {
2114 UCHAR SchedulerApcFill2[FIELD_OFFSET(KAPC, SpareLong0)]; // 32bit: 4/0x04, 64bit: 4/0x04
2115 ULONG KernelTime;
2116 };
2117 struct
2118 {
2119 UCHAR SuspendApcFill3[FIELD_OFFSET(KAPC, SystemArgument1)]; // 32 bit:, 64 bit: 64/0x40
2120 PKPRCB WaitPrcb;
2121 };
2122 struct
2123 {
2124 UCHAR SchedulerApcFill4[FIELD_OFFSET(KAPC, SystemArgument2)]; // 32 bit:, 64 bit: 72/0x48
2125 PVOID LegoData;
2126 };
2127 struct
2128 {
2129 UCHAR SchedulerApcFill5[FIELD_OFFSET(KAPC, Inserted) + 1]; // 32 bit:, 64 bit: 83/0x53
2130 UCHAR CallbackNestingLevel;
2131 ULONG UserTime;
2132 };
2133 };
2134
2135 KEVENT SuspendEvent;
2136 LIST_ENTRY ThreadListEntry;
2137 LIST_ENTRY MutantListHead;
2138
2139#if (NTDDI_VERSION >= NTDDI_WIN10)
2140 UCHAR AbEntrySummary;
2141 UCHAR AbWaitEntryCount;
2142 USHORT Spare20;
2143#if _WIN64
2144 ULONG SecureThreadCookie;
2145#endif
2146#elif (NTDDI_VERSION >= NTDDI_WINBLUE) // 6.3.9431.0
2147 SINGLE_LIST_ENTRY LockEntriesFreeList;
2148#endif
2149
2150#if (NTDDI_VERSION >= NTDDI_WINBLUE /* 0x06032580 */) // since 6.3.9600.16384
2151 KLOCK_ENTRY LockEntries[NUMBER_OF_LOCK_ENTRIES];
2152 SINGLE_LIST_ENTRY PropagateBoostsEntry;
2153 SINGLE_LIST_ENTRY IoSelfBoostsEntry;
2154 UCHAR PriorityFloorCounts[16];
2155 ULONG PriorityFloorSummary;
2156 volatile LONG AbCompletedIoBoostCount;
2157 #if (NTDDI_VERSION >= NTDDI_WIN10_RS1)
2158 LONG AbCompletedIoQoSBoostCount;
2159 #endif
2160
2161 #if (NTDDI_VERSION >= NTDDI_WIN10) // since 10.0.10240.16384
2162 volatile SHORT KeReferenceCount;
2163 #else
2164 volatile SHORT AbReferenceCount;
2165 #endif
2166 #if (NTDDI_VERSION >= 0x06040000) // since 6.4.9841.0
2167 UCHAR AbOrphanedEntrySummary;
2168 UCHAR AbOwnedEntryCount;
2169 #else
2170 UCHAR AbFreeEntryCount;
2171 UCHAR AbWaitEntryCount;
2172 #endif
2173 ULONG ForegroundLossTime;
2174 union
2175 {
2176 LIST_ENTRY GlobalForegroundListEntry;
2177 struct
2178 {
2179 SINGLE_LIST_ENTRY ForegroundDpcStackListEntry;
2180 ULONG_PTR InGlobalForegroundList;
2181 };
2182 };
2183#endif
2184
2185#if _WIN64
2186 LONG64 ReadOperationCount;
2187 LONG64 WriteOperationCount;
2188 LONG64 OtherOperationCount;
2189 LONG64 ReadTransferCount;
2190 LONG64 WriteTransferCount;
2191 LONG64 OtherTransferCount;
2192#endif
2193#if (NTDDI_VERSION >= NTDDI_WIN10) // since 10.0.10041.0
2194 struct _KSCB *QueuedScb;
2195#ifndef _WIN64
2196 ULONG64 NpxState;
2197#endif
2198#endif
2199} KTHREAD;
2200
2201#endif
2202
2203
2204#define ASSERT_THREAD(object) \
2205 ASSERT((((object)->Header.Type & KOBJECT_TYPE_MASK) == ThreadObject))
2206
2207//
2208// Kernel Process (KPROCESS)
2209//
2210typedef struct _KPROCESS
2211{
2212 DISPATCHER_HEADER Header;
2213 LIST_ENTRY ProfileListHead;
2214#if (NTDDI_VERSION >= NTDDI_LONGHORN)
2215 ULONG_PTR DirectoryTableBase;
2216 ULONG_PTR Unused0;
2217#else
2218 ULONG_PTR DirectoryTableBase[2];
2219#endif
2220#if defined(_M_IX86)
2221 KGDTENTRY LdtDescriptor;
2222 KIDTENTRY Int21Descriptor;
2223#endif
2224 USHORT IopmOffset;
2225#if defined(_M_IX86)
2226 UCHAR Iopl;
2227 UCHAR Unused;
2228#endif
2229 volatile KAFFINITY ActiveProcessors;
2230 ULONG KernelTime;
2231 ULONG UserTime;
2232 LIST_ENTRY ReadyListHead;
2233 SINGLE_LIST_ENTRY SwapListEntry;
2234 PVOID VdmTrapcHandler;
2235 LIST_ENTRY ThreadListHead;
2236 KSPIN_LOCK ProcessLock;
2237 KAFFINITY Affinity;
2238 union
2239 {
2240 struct
2241 {
2242 LONG AutoAlignment:1;
2243 LONG DisableBoost:1;
2244 LONG DisableQuantum:1;
2245 LONG ReservedFlags:29;
2246 };
2247 LONG ProcessFlags;
2248 };
2249 SCHAR BasePriority;
2250 SCHAR QuantumReset;
2251 UCHAR State;
2252 UCHAR ThreadSeed;
2253 UCHAR PowerState;
2254 UCHAR IdealNode;
2255 UCHAR Visited;
2256 union
2257 {
2258 KEXECUTE_OPTIONS Flags;
2259 UCHAR ExecuteOptions;
2260 };
2261 ULONG StackCount;
2262 LIST_ENTRY ProcessListEntry;
2263#if (NTDDI_VERSION >= NTDDI_LONGHORN) // [
2264 ULONGLONG CycleTime;
2265#endif // ]
2266} KPROCESS;
2267
2268#define ASSERT_PROCESS(object) \
2269 ASSERT((((object)->Header.Type & KOBJECT_TYPE_MASK) == ProcessObject))
2270
2271//
2272// System Service Table Descriptor
2273//
2274typedef struct _KSERVICE_TABLE_DESCRIPTOR
2275{
2276 PULONG_PTR Base;
2277 PULONG Count;
2278 ULONG Limit;
2279#if defined(_IA64_)
2280 LONG TableBaseGpOffset;
2281#endif
2282 PUCHAR Number;
2283} KSERVICE_TABLE_DESCRIPTOR, *PKSERVICE_TABLE_DESCRIPTOR;
2284
2285#if (NTDDI_VERSION >= NTDDI_WIN8)
2286//
2287// Entropy Timing State
2288//
2289typedef struct _KENTROPY_TIMING_STATE
2290{
2291 ULONG EntropyCount;
2292 ULONG Buffer[64];
2293 KDPC Dpc;
2294 ULONG LastDeliveredBuffer;
2295 PULONG RawDataBuffer;
2296} KENTROPY_TIMING_STATE, *PKENTROPY_TIMING_STATE;
2297
2298//
2299// Constants from ks386.inc, ksamd64.inc and ksarm.h
2300//
2301#define KENTROPY_TIMING_INTERRUPTS_PER_BUFFER 0x400
2302#define KENTROPY_TIMING_BUFFER_MASK 0x7ff
2303#define KENTROPY_TIMING_ANALYSIS 0x0
2304
2305#endif /* (NTDDI_VERSION >= NTDDI_WIN8) */
2306
2307//
2308// Exported Loader Parameter Block
2309//
2310extern struct _LOADER_PARAMETER_BLOCK NTSYSAPI *KeLoaderBlock;
2311
2312//
2313// Exported Hardware Data
2314//
2315extern ULONG NTSYSAPI KiDmaIoCoherency;
2316extern ULONG NTSYSAPI KeMaximumIncrement;
2317extern ULONG NTSYSAPI KeMinimumIncrement;
2318extern ULONG NTSYSAPI KeDcacheFlushCount;
2319extern ULONG NTSYSAPI KeIcacheFlushCount;
2320extern ULONG_PTR NTSYSAPI KiBugCheckData[];
2321extern BOOLEAN NTSYSAPI KiEnableTimerWatchdog;
2322
2323//
2324// Exported System Service Descriptor Tables
2325//
2326extern KSERVICE_TABLE_DESCRIPTOR NTSYSAPI KeServiceDescriptorTable[SSDT_MAX_ENTRIES];
2327extern KSERVICE_TABLE_DESCRIPTOR NTSYSAPI KeServiceDescriptorTableShadow[SSDT_MAX_ENTRIES];
2328
2329#endif // !NTOS_MODE_USER
2330
2331#endif // _KETYPES_H
PreviousMode
_In_ PVOID _In_ ULONG _Out_ PVOID _In_ ULONG _Inout_ PULONG _In_ KPROCESSOR_MODE PreviousMode
Definition: KdSystemDebugControl.c:35
BOOLEAN
unsigned char BOOLEAN
Definition: ProcessorBind.h:185
VOID
#define VOID
Definition: acefi.h:82
ServiceTable
static SERVICE_TABLE_ENTRYW ServiceTable[2]
Definition: eventlog.c:24
Reserved2
@ Reserved2
Definition: bcd.h:202
Reserved1
@ Reserved1
Definition: bcd.h:201
NTSYSAPI
#define NTSYSAPI
Definition: ntoskrnl.h:12
Buffer
Definition: bufpool.h:45
KAFFINITY
ULONG_PTR KAFFINITY
Definition: compat.h:85
NT_PRODUCT_TYPE
enum _NT_PRODUCT_TYPE NT_PRODUCT_TYPE
PNT_PRODUCT_TYPE
enum _NT_PRODUCT_TYPE * PNT_PRODUCT_TYPE
_NT_PRODUCT_TYPE
_NT_PRODUCT_TYPE
Definition: shellpath.c:63
NtProductWinNt
@ NtProductWinNt
Definition: shellpath.c:64
NtProductLanManNt
@ NtProductLanManNt
Definition: shellpath.c:65
NtProductServer
@ NtProductServer
Definition: shellpath.c:66
KIRQL
UCHAR KIRQL
Definition: env_spec_w32.h:591
KSPIN_LOCK
ULONG KSPIN_LOCK
Definition: env_spec_w32.h:72
PKSPIN_LOCK
KSPIN_LOCK * PKSPIN_LOCK
Definition: env_spec_w32.h:73
Process
_Must_inspect_result_ _In_ PLARGE_INTEGER _In_ PLARGE_INTEGER _In_ ULONG _In_ PFILE_OBJECT _In_ PVOID Process
Definition: fsrtlfuncs.h:223
KPROFILE_SOURCE
enum _KPROFILE_SOURCE KPROFILE_SOURCE
PTIMER_APC_ROUTINE
VOID(CALLBACK * PTIMER_APC_ROUTINE)(PVOID, ULONG, LONG)
Definition: winternl.h:3621
_KPROFILE_SOURCE
_KPROFILE_SOURCE
Definition: winternl.h:3730
ProfileFpInstructions
@ ProfileFpInstructions
Definition: winternl.h:3744
ProfileIntegerInstructions
@ ProfileIntegerInstructions
Definition: winternl.h:3745
ProfileBranchMispredictions
@ ProfileBranchMispredictions
Definition: winternl.h:3742
ProfileMaximum
@ ProfileMaximum
Definition: winternl.h:3755
ProfileStoreInstructions
@ ProfileStoreInstructions
Definition: winternl.h:3743
ProfileAlignmentFixup
@ ProfileAlignmentFixup
Definition: winternl.h:3732
ProfilePipelineDry
@ ProfilePipelineDry
Definition: winternl.h:3734
ProfileMemoryBarrierCycles
@ ProfileMemoryBarrierCycles
Definition: winternl.h:3753
Profile3Issue
@ Profile3Issue
Definition: winternl.h:3747
ProfileLoadLinkedIssues
@ ProfileLoadLinkedIssues
Definition: winternl.h:3754
ProfileDcacheMisses
@ ProfileDcacheMisses
Definition: winternl.h:3739
ProfileIcacheIssues
@ ProfileIcacheIssues
Definition: winternl.h:3751
ProfileIcacheMisses
@ ProfileIcacheMisses
Definition: winternl.h:3740
ProfileTotalNonissues
@ ProfileTotalNonissues
Definition: winternl.h:3738
ProfileTime
@ ProfileTime
Definition: winternl.h:3731
ProfileSpecialInstructions
@ ProfileSpecialInstructions
Definition: winternl.h:3749
Profile2Issue
@ Profile2Issue
Definition: winternl.h:3746
ProfileTotalCycles
@ ProfileTotalCycles
Definition: winternl.h:3750
ProfileBranchInstructions
@ ProfileBranchInstructions
Definition: winternl.h:3737
ProfilePipelineFrozen
@ ProfilePipelineFrozen
Definition: winternl.h:3736
ProfileDcacheAccesses
@ ProfileDcacheAccesses
Definition: winternl.h:3752
ProfileLoadInstructions
@ ProfileLoadInstructions
Definition: winternl.h:3735
ProfileTotalIssues
@ ProfileTotalIssues
Definition: winternl.h:3733
Profile4Issue
@ Profile4Issue
Definition: winternl.h:3748
ProfileCacheMisses
@ ProfileCacheMisses
Definition: winternl.h:3741
_HARDWARE_COUNTER_TYPE
_HARDWARE_COUNTER_TYPE
Definition: pstypes.h:123
KdDebuggerEnabled
BOOLEAN KdDebuggerEnabled
Definition: kddata.c:82
Unused
#define Unused(x)
Definition: atlwin.h:28
ULONG64
unsigned __int64 ULONG64
Definition: imports.h:198
LONG_PTR
__int3264 LONG_PTR
Definition: mstsclib_h.h:276
KernelMode
#define KernelMode
Definition: asm.h:38
UserMode
#define UserMode
Definition: asm.h:39
NUMBER_OF_LOCK_ENTRIES
#define NUMBER_OF_LOCK_ENTRIES
Definition: ketypes.h:1784
KINTERRUPT
struct _KINTERRUPT KINTERRUPT
PKSYSTEM_ROUTINE
VOID(NTAPI * PKSYSTEM_ROUTINE)(PKSTART_ROUTINE StartRoutine, PVOID StartContext)
Definition: ketypes.h:862
KeIcacheFlushCount
ULONG NTSYSAPI KeIcacheFlushCount
Definition: cpu.c:19
PKNODE
struct _KNODE * PKNODE
_KPROCESS_STATE
_KPROCESS_STATE
Definition: ketypes.h:459
ProcessOutOfMemory
@ ProcessOutOfMemory
Definition: ketypes.h:461
ProcessInMemory
@ ProcessInMemory
Definition: ketypes.h:460
ProcessOutSwap
@ ProcessOutSwap
Definition: ketypes.h:464
ProcessInSwap
@ ProcessInSwap
Definition: ketypes.h:463
ProcessInTransition
@ ProcessInTransition
Definition: ketypes.h:462
KPROFILE
struct _KPROFILE KPROFILE
KDPC_DATA
struct _KDPC_DATA KDPC_DATA
KTHREAD_COUNTERS
struct _KTHREAD_COUNTERS KTHREAD_COUNTERS
KDPC_LIST
struct _KDPC_LIST KDPC_LIST
PCOUNTER_READING
struct _COUNTER_READING * PCOUNTER_READING
KEXECUTE_OPTIONS
struct _KEXECUTE_OPTIONS KEXECUTE_OPTIONS
FIBER
struct _FIBER FIBER
PKDPC_LIST
struct _KDPC_LIST * PKDPC_LIST
ADJUST_REASON
enum _ADJUST_REASON ADJUST_REASON
PKEVENT_PAIR
struct _KEVENT_PAIR * PKEVENT_PAIR
_KOBJECTS
_KOBJECTS
Definition: ketypes.h:405
ApcObject
@ ApcObject
Definition: ketypes.h:424
Spare3Object
@ Spare3Object
Definition: ketypes.h:417
ProfileObject
@ ProfileObject
Definition: ketypes.h:429
EventSynchronizationObject
@ EventSynchronizationObject
Definition: ketypes.h:407
TimerNotificationObject
@ TimerNotificationObject
Definition: ketypes.h:414
Spare4Object
@ Spare4Object
Definition: ketypes.h:418
DeviceQueueObject
@ DeviceQueueObject
Definition: ketypes.h:426
TimerSynchronizationObject
@ TimerSynchronizationObject
Definition: ketypes.h:415
Spare5Object
@ Spare5Object
Definition: ketypes.h:419
Spare2Object
@ Spare2Object
Definition: ketypes.h:416
MaximumKernelObject
@ MaximumKernelObject
Definition: ketypes.h:431
QueueObject
@ QueueObject
Definition: ketypes.h:410
Spare8Object
@ Spare8Object
Definition: ketypes.h:422
Spare6Object
@ Spare6Object
Definition: ketypes.h:420
ProcessObject
@ ProcessObject
Definition: ketypes.h:409
SemaphoreObject
@ SemaphoreObject
Definition: ketypes.h:411
DpcObject
@ DpcObject
Definition: ketypes.h:425
EventNotificationObject
@ EventNotificationObject
Definition: ketypes.h:406
GateObject
@ GateObject
Definition: ketypes.h:413
ThreadObject
@ ThreadObject
Definition: ketypes.h:412
ThreadedDpcObject
@ ThreadedDpcObject
Definition: ketypes.h:430
Spare7Object
@ Spare7Object
Definition: ketypes.h:421
MutantObject
@ MutantObject
Definition: ketypes.h:408
InterruptObject
@ InterruptObject
Definition: ketypes.h:428
EventPairObject
@ EventPairObject
Definition: ketypes.h:427
Spare9Object
@ Spare9Object
Definition: ketypes.h:423
PPP_LOOKASIDE_LIST
struct _PP_LOOKASIDE_LIST * PPP_LOOKASIDE_LIST
KiBugCheckData
ULONG_PTR NTSYSAPI KiBugCheckData[]
Definition: bug.c:31
KEVENT_PAIR
struct _KEVENT_PAIR KEVENT_PAIR
PKTHREAD_COUNTERS
struct _KTHREAD_COUNTERS * PKTHREAD_COUNTERS
KCONTINUE_STATUS
enum _KCONTINUE_STATUS KCONTINUE_STATUS
RTL_RB_TREE
struct _RTL_RB_TREE RTL_RB_TREE
FIXME: should move to rtltypes.h, but we can't include it here.
KLOCK_ENTRY
struct _KLOCK_ENTRY KLOCK_ENTRY
PKDPC_DATA
struct _KDPC_DATA * PKDPC_DATA
KTHREAD
struct _KTHREAD KTHREAD
KTIMER_TABLE
struct _KTIMER_TABLE KTIMER_TABLE
KiDmaIoCoherency
ULONG NTSYSAPI KiDmaIoCoherency
Definition: cpu.c:30
PP_LOOKASIDE_LIST
struct _PP_LOOKASIDE_LIST PP_LOOKASIDE_LIST
_VDMSERVICECLASS
_VDMSERVICECLASS
Definition: ketypes.h:471
VdmSetLdtEntries
@ VdmSetLdtEntries
Definition: ketypes.h:482
VdmSetProcessLdtInfo
@ VdmSetProcessLdtInfo
Definition: ketypes.h:483
VdmQueryDir
@ VdmQueryDir
Definition: ketypes.h:478
VdmSetInt21Handler
@ VdmSetInt21Handler
Definition: ketypes.h:477
VdmAdlibEmulation
@ VdmAdlibEmulation
Definition: ketypes.h:484
VdmQueueInterrupt
@ VdmQueueInterrupt
Definition: ketypes.h:473
VdmDelayInterrupt
@ VdmDelayInterrupt
Definition: ketypes.h:474
VdmPrinterDirectIoClose
@ VdmPrinterDirectIoClose
Definition: ketypes.h:480
VdmPrinterDirectIoOpen
@ VdmPrinterDirectIoOpen
Definition: ketypes.h:479
VdmPrinterInitialize
@ VdmPrinterInitialize
Definition: ketypes.h:481
VdmFeatures
@ VdmFeatures
Definition: ketypes.h:476
VdmPMCliControl
@ VdmPMCliControl
Definition: ketypes.h:485
VdmInitialize
@ VdmInitialize
Definition: ketypes.h:475
VdmQueryVdmProcess
@ VdmQueryVdmProcess
Definition: ketypes.h:486
VdmStartExecution
@ VdmStartExecution
Definition: ketypes.h:472
KTHREAD_STATE
enum _KTHREAD_STATE KTHREAD_STATE
COUNTER_READING
struct _COUNTER_READING COUNTER_READING
PKLOCK_ENTRY
struct _KLOCK_ENTRY * PKLOCK_ENTRY
PFIBER
struct _FIBER * PFIBER
KeMaximumIncrement
ULONG NTSYSAPI KeMaximumIncrement
Definition: clock.c:20
PKTIMER_TABLE_ENTRY
struct _KTIMER_TABLE_ENTRY * PKTIMER_TABLE_ENTRY
KPROCESS
struct _KPROCESS KPROCESS
PKRUNDOWN_ROUTINE
VOID(NTAPI * PKRUNDOWN_ROUTINE)(IN struct _KAPC *Apc)
Definition: ketypes.h:875
KLOCK_ENTRY_LOCK_STATE
struct _KLOCK_ENTRY_LOCK_STATE KLOCK_ENTRY_LOCK_STATE
KWAIT_STATUS_REGISTER
union _KWAIT_STATUS_REGISTER KWAIT_STATUS_REGISTER
_KTHREAD_STATE
_KTHREAD_STATE
Definition: ketypes.h:387
Terminated
@ Terminated
Definition: ketypes.h:392
Ready
@ Ready
Definition: ketypes.h:389
Running
@ Running
Definition: ketypes.h:390
GateWait
@ GateWait
Definition: ketypes.h:397
Standby
@ Standby
Definition: ketypes.h:391
DeferredReady
@ DeferredReady
Definition: ketypes.h:395
Waiting
@ Waiting
Definition: ketypes.h:393
Transition
@ Transition
Definition: ketypes.h:394
Initialized
@ Initialized
Definition: ketypes.h:388
_KAPC_ENVIRONMENT
_KAPC_ENVIRONMENT
Definition: ketypes.h:891
AttachedApcEnvironment
@ AttachedApcEnvironment
Definition: ketypes.h:893
OriginalApcEnvironment
@ OriginalApcEnvironment
Definition: ketypes.h:892
CurrentApcEnvironment
@ CurrentApcEnvironment
Definition: ketypes.h:894
InsertApcEnvironment
@ InsertApcEnvironment
Definition: ketypes.h:895
PKPROFILE
struct _KPROFILE * PKPROFILE
PKTIMER_TABLE
struct _KTIMER_TABLE * PKTIMER_TABLE
PKENTROPY_TIMING_STATE
struct _KENTROPY_TIMING_STATE * PKENTROPY_TIMING_STATE
KPROCESS_STATE
enum _KPROCESS_STATE KPROCESS_STATE
PKTHREAD_STATE
enum _KTHREAD_STATE * PKTHREAD_STATE
SSDT_MAX_ENTRIES
#define SSDT_MAX_ENTRIES
Definition: ketypes.h:100
KNODE
struct _KNODE KNODE
KOBJECTS
enum _KOBJECTS KOBJECTS
KSERVICE_TABLE_DESCRIPTOR
struct _KSERVICE_TABLE_DESCRIPTOR KSERVICE_TABLE_DESCRIPTOR
KiEnableTimerWatchdog
BOOLEAN NTSYSAPI KiEnableTimerWatchdog
Definition: timerobj.c:20
PKPROCESS_STATE
enum _KPROCESS_STATE * PKPROCESS_STATE
KeServiceDescriptorTable
KSERVICE_TABLE_DESCRIPTOR NTSYSAPI KeServiceDescriptorTable[SSDT_MAX_ENTRIES]
Definition: procobj.c:23
VDMSERVICECLASS
enum _VDMSERVICECLASS VDMSERVICECLASS
PGETSETCONTEXT
struct _GETSETCONTEXT * PGETSETCONTEXT
KeDcacheFlushCount
ULONG NTSYSAPI KeDcacheFlushCount
Definition: cpu.c:20
_KCONTINUE_STATUS
_KCONTINUE_STATUS
Definition: ketypes.h:448
ContinueNextProcessor
@ ContinueNextProcessor
Definition: ketypes.h:452
ContinueProcessorReselected
@ ContinueProcessorReselected
Definition: ketypes.h:451
ContinueError
@ ContinueError
Definition: ketypes.h:449
ContinueSuccess
@ ContinueSuccess
Definition: ketypes.h:450
DISPATCH_LENGTH
#define DISPATCH_LENGTH
Definition: ketypes.h:174
PKEXECUTE_OPTIONS
struct _KEXECUTE_OPTIONS * PKEXECUTE_OPTIONS
PKSERVICE_TABLE_DESCRIPTOR
struct _KSERVICE_TABLE_DESCRIPTOR * PKSERVICE_TABLE_DESCRIPTOR
_ADJUST_REASON
_ADJUST_REASON
Definition: ketypes.h:438
AdjustUnwait
@ AdjustUnwait
Definition: ketypes.h:440
AdjustNone
@ AdjustNone
Definition: ketypes.h:439
AdjustBoost
@ AdjustBoost
Definition: ketypes.h:441
KENTROPY_TIMING_STATE
struct _KENTROPY_TIMING_STATE KENTROPY_TIMING_STATE
KeLoaderBlock
struct _LOADER_PARAMETER_BLOCK NTSYSAPI * KeLoaderBlock
Definition: krnlinit.c:28
PKWAIT_STATUS_REGISTER
union _KWAIT_STATUS_REGISTER * PKWAIT_STATUS_REGISTER
GETSETCONTEXT
struct _GETSETCONTEXT GETSETCONTEXT
PKKERNEL_ROUTINE
VOID(NTAPI * PKKERNEL_ROUTINE)(IN struct _KAPC *Apc, IN OUT PKNORMAL_ROUTINE *NormalRoutine OPTIONAL, IN OUT PVOID *NormalContext OPTIONAL, IN OUT PVOID *SystemArgument1 OPTIONAL, IN OUT PVOID *SystemArgument2 OPTIONAL)
Definition: ketypes.h:879
SYNCH_COUNTERS
struct _SYNCH_COUNTERS SYNCH_COUNTERS
KeServiceDescriptorTableShadow
KSERVICE_TABLE_DESCRIPTOR NTSYSAPI KeServiceDescriptorTableShadow[SSDT_MAX_ENTRIES]
Definition: procobj.c:24
PSYNCH_COUNTERS
struct _SYNCH_COUNTERS * PSYNCH_COUNTERS
PKNORMAL_ROUTINE
VOID(NTAPI * PKNORMAL_ROUTINE)(IN PVOID NormalContext OPTIONAL, IN PVOID SystemArgument1 OPTIONAL, IN PVOID SystemArgument2 OPTIONAL)
Definition: ketypes.h:869
PRTL_RB_TREE
struct _RTL_RB_TREE * PRTL_RB_TREE
KeMinimumIncrement
ULONG NTSYSAPI KeMinimumIncrement
Definition: clock.c:21
KTIMER_TABLE_ENTRY
struct _KTIMER_TABLE_ENTRY KTIMER_TABLE_ENTRY
KAPC_ENVIRONMENT
enum _KAPC_ENVIRONMENT KAPC_ENVIRONMENT
PKLOCK_ENTRY_LOCK_STATE
struct _KLOCK_ENTRY_LOCK_STATE * PKLOCK_ENTRY_LOCK_STATE
_In_
#define _In_
Definition: no_sal2.h:158
DECLSPEC_ALIGN
#define DECLSPEC_ALIGN(x)
Definition: ntbasedef.h:263
DUMMYSTRUCTNAME2
#define DUMMYSTRUCTNAME2
Definition: ntbasedef.h:60
DUMMYUNIONNAME2
#define DUMMYUNIONNAME2
Definition: ntbasedef.h:34
RTL_SIZEOF_THROUGH_FIELD
#define RTL_SIZEOF_THROUGH_FIELD(type, field)
Definition: ntbasedef.h:684
DUMMYUNIONNAME
#define DUMMYUNIONNAME
Definition: ntbasedef.h:32
DUMMYSTRUCTNAME
#define DUMMYSTRUCTNAME
Definition: ntbasedef.h:58
DUMMYUNIONNAME3
#define DUMMYUNIONNAME3
Definition: ntbasedef.h:35
TIMER_TYPE
enum _TIMER_TYPE TIMER_TYPE
_EVENT_TYPE
_EVENT_TYPE
Definition: ntdef.template.h:355
NotificationEvent
@ NotificationEvent
Definition: ntdef.template.h:356
SynchronizationEvent
@ SynchronizationEvent
Definition: ntdef.template.h:357
_WAIT_TYPE
_WAIT_TYPE
Definition: ntdef.template.h:365
WaitAll
@ WaitAll
Definition: ntdef.template.h:366
WaitAny
@ WaitAny
Definition: ntdef.template.h:367
EVENT_TYPE
enum _EVENT_TYPE EVENT_TYPE
WAIT_TYPE
enum _WAIT_TYPE WAIT_TYPE
_TIMER_TYPE
_TIMER_TYPE
Definition: ntdef.template.h:360
SynchronizationTimer
@ SynchronizationTimer
Definition: ntdef.template.h:362
NotificationTimer
@ NotificationTimer
Definition: ntdef.template.h:361
NtSystemRoot
UNICODE_STRING NtSystemRoot
Definition: init.c:76
NtMajorVersion
ULONG NtMajorVersion
Definition: init.c:45
NtMinorVersion
ULONG NtMinorVersion
Definition: init.c:46
PHANDLE
PVOID *typedef PHANDLE
Definition: ntsecpkg.h:455
SHORT
short SHORT
Definition: pedump.c:59
LONG
long LONG
Definition: pedump.c:60
USHORT
unsigned short USHORT
Definition: pedump.c:61
Reserved3
@ Reserved3
Definition: sacdrv.h:1471
Reserved4
@ Reserved4
Definition: sacdrv.h:1472
Reserved5
@ Reserved5
Definition: sacdrv.h:1473
KINTERRUPT_MODE
enum _KINTERRUPT_MODE KINTERRUPT_MODE
SCHAR
signed char SCHAR
Definition: sqltypes.h:14
NtBuildNumber
ULONG NtBuildNumber
Definition: init.c:50
_ACTIVATION_CONTEXT_STACK
Definition: rtltypes.h:966
_CONTEXT
Definition: nt_native.h:1406
_COUNTER_READING
Definition: ketypes.h:1138
_COUNTER_READING::Index
ULONG Index
Definition: ketypes.h:1140
_COUNTER_READING::Type
enum _HARDWARE_COUNTER_TYPE Type
Definition: ketypes.h:1139
_COUNTER_READING::Start
ULONG64 Start
Definition: ketypes.h:1141
_COUNTER_READING::Total
ULONG64 Total
Definition: ketypes.h:1142
_DISPATCHER_HEADER
Definition: ketypes.h:740
_EXCEPTION_REGISTRATION_RECORD
Definition: compat.h:725
_FIBER
Definition: ketypes.h:147
_FIBER::StackLimit
PVOID StackLimit
Definition: ketypes.h:151
_FIBER::FiberContext
CONTEXT FiberContext
Definition: ketypes.h:153
_FIBER::DeallocationStack
PVOID DeallocationStack
Definition: ketypes.h:152
_FIBER::Wx86Tib
PVOID Wx86Tib
Definition: ketypes.h:155
_FIBER::GuaranteedStackBytes
ULONG GuaranteedStackBytes
Definition: ketypes.h:158
_FIBER::StackBase
PVOID StackBase
Definition: ketypes.h:150
_FIBER::TebFlags
ULONG TebFlags
Definition: ketypes.h:159
_FIBER::ActivationContextStackPointer
struct _ACTIVATION_CONTEXT_STACK * ActivationContextStackPointer
Definition: ketypes.h:156
_FIBER::ExceptionList
struct _EXCEPTION_REGISTRATION_RECORD * ExceptionList
Definition: ketypes.h:149
_FIBER::FiberData
PVOID FiberData
Definition: ketypes.h:148
_FIBER::FlsData
PVOID FlsData
Definition: ketypes.h:157
_GENERAL_LOOKASIDE
Definition: extypes.h:134
_GETSETCONTEXT
Definition: ketypes.h:1029
_GETSETCONTEXT::Context
CONTEXT Context
Definition: ketypes.h:1033
_GETSETCONTEXT::Apc
KAPC Apc
Definition: ketypes.h:1030
_GETSETCONTEXT::Mode
KPROCESSOR_MODE Mode
Definition: ketypes.h:1032
_GETSETCONTEXT::Event
KEVENT Event
Definition: ketypes.h:1031
_GROUP_AFFINITY
Definition: ntbasedef.h:671
_KAPC
Definition: ketypes.h:547
_KAPC::NormalContext
PVOID NormalContext
Definition: ketypes.h:562
_KDPC_DATA
Definition: ketypes.h:973
_KDPC_DATA::DpcCount
ULONG DpcCount
Definition: ketypes.h:985
_KDPC_DATA::DpcLock
ULONG_PTR DpcLock
Definition: ketypes.h:979
_KDPC_DATA::DpcQueueDepth
volatile ULONG DpcQueueDepth
Definition: ketypes.h:983
_KDPC_DATA::ActiveDpc
PKDPC ActiveDpc
Definition: ketypes.h:987
_KDPC_DATA::DpcList
KDPC_LIST DpcList
Definition: ketypes.h:975
_KDPC_LIST
Definition: ketypes.h:914
_KDPC_LIST::ListHead
SINGLE_LIST_ENTRY ListHead
Definition: ketypes.h:915
_KDPC_LIST::LastEntry
SINGLE_LIST_ENTRY * LastEntry
Definition: ketypes.h:916
_KDPC
Definition: ketypes.h:699
_KENTROPY_TIMING_STATE
Definition: ketypes.h:2290
_KENTROPY_TIMING_STATE::EntropyCount
ULONG EntropyCount
Definition: ketypes.h:2291
_KENTROPY_TIMING_STATE::LastDeliveredBuffer
ULONG LastDeliveredBuffer
Definition: ketypes.h:2294
_KENTROPY_TIMING_STATE::RawDataBuffer
PULONG RawDataBuffer
Definition: ketypes.h:2295
_KENTROPY_TIMING_STATE::Dpc
KDPC Dpc
Definition: ketypes.h:2293
_KEVENT_PAIR
Definition: ketypes.h:1100
_KEVENT_PAIR::Type
CSHORT Type
Definition: ketypes.h:1101
_KEVENT_PAIR::HighEvent
KEVENT HighEvent
Definition: ketypes.h:1104
_KEVENT_PAIR::Size
CSHORT Size
Definition: ketypes.h:1102
_KEVENT_PAIR::LowEvent
KEVENT LowEvent
Definition: ketypes.h:1103
_KEVENT
Definition: ketypes.h:811
_KEXECUTE_OPTIONS
Definition: ketypes.h:1111
_KEXECUTE_OPTIONS::DisableThunkEmulation
UCHAR DisableThunkEmulation
Definition: ketypes.h:1114
_KEXECUTE_OPTIONS::ExecuteDisable
UCHAR ExecuteDisable
Definition: ketypes.h:1112
_KEXECUTE_OPTIONS::ExecuteEnable
UCHAR ExecuteEnable
Definition: ketypes.h:1113
_KEXECUTE_OPTIONS::Permanent
UCHAR Permanent
Definition: ketypes.h:1115
_KEXECUTE_OPTIONS::ExecuteDispatchEnable
UCHAR ExecuteDispatchEnable
Definition: ketypes.h:1116
_KEXECUTE_OPTIONS::ImageDispatchEnable
UCHAR ImageDispatchEnable
Definition: ketypes.h:1117
_KEXECUTE_OPTIONS::Spare
UCHAR Spare
Definition: ketypes.h:1118
_KGATE
Definition: ketypes.h:822
_KGDTENTRY
Definition: ketypes.h:388
_KIDTENTRY
Definition: ketypes.h:439
_KINTERRUPT
Definition: ketypes.h:1059
_KINTERRUPT::SynchronizeIrql
KIRQL SynchronizeIrql
Definition: ketypes.h:1075
_KINTERRUPT::Number
CCHAR Number
Definition: ketypes.h:1078
_KINTERRUPT::ServiceCount
ULONG ServiceCount
Definition: ketypes.h:1084
_KINTERRUPT::DispatchAddress
PKINTERRUPT_ROUTINE DispatchAddress
Definition: ketypes.h:1072
_KINTERRUPT::DispatchCount
ULONG DispatchCount
Definition: ketypes.h:1085
_KINTERRUPT::Size
CSHORT Size
Definition: ketypes.h:1061
_KINTERRUPT::DispatchCode
ULONG DispatchCode[DISPATCH_LENGTH]
Definition: ketypes.h:1093
_KINTERRUPT::Connected
BOOLEAN Connected
Definition: ketypes.h:1077
_KINTERRUPT::Polarity
KINTERRUPT_POLARITY Polarity
Definition: ketypes.h:1082
_KINTERRUPT::Mode
KINTERRUPT_MODE Mode
Definition: ketypes.h:1080
_KINTERRUPT::ShareVector
BOOLEAN ShareVector
Definition: ketypes.h:1079
_KINTERRUPT::Vector
ULONG Vector
Definition: ketypes.h:1073
_KINTERRUPT::MessageServiceRoutine
PKSERVICE_ROUTINE MessageServiceRoutine
Definition: ketypes.h:1065
_KINTERRUPT::SpinLock
KSPIN_LOCK SpinLock
Definition: ketypes.h:1069
_KINTERRUPT::Irql
KIRQL Irql
Definition: ketypes.h:1074
_KINTERRUPT::FloatingSave
BOOLEAN FloatingSave
Definition: ketypes.h:1076
_KINTERRUPT::InterruptListEntry
LIST_ENTRY InterruptListEntry
Definition: ketypes.h:1062
_KINTERRUPT::MessageIndex
ULONG MessageIndex
Definition: ketypes.h:1066
_KINTERRUPT::TickCount
ULONG TickCount
Definition: ketypes.h:1070
_KINTERRUPT::ActualLock
PKSPIN_LOCK ActualLock
Definition: ketypes.h:1071
_KINTERRUPT::Type
CSHORT Type
Definition: ketypes.h:1060
_KINTERRUPT::Rsvd1
ULONGLONG Rsvd1
Definition: ketypes.h:1087
_KINTERRUPT::ServiceRoutine
PKSERVICE_ROUTINE ServiceRoutine
Definition: ketypes.h:1063
_KINTERRUPT::ServiceContext
PVOID ServiceContext
Definition: ketypes.h:1068
_KLOCK_ENTRY_LOCK_STATE
Definition: ketypes.h:1168
_KLOCK_ENTRY_LOCK_STATE::Busy
ULONG_PTR Busy
Definition: ketypes.h:1178
_KLOCK_ENTRY_LOCK_STATE::CrossThreadReleasable
ULONG_PTR CrossThreadReleasable
Definition: ketypes.h:1174
_KLOCK_ENTRY_LOCK_STATE::InTree
ULONG_PTR InTree
Definition: ketypes.h:1180
_KLOCK_ENTRY_LOCK_STATE::Reserved
ULONG_PTR Reserved
Definition: ketypes.h:1179
_KLOCK_ENTRY_LOCK_STATE::LockState
PVOID LockState
Definition: ketypes.h:1182
_KLOCK_ENTRY_LOCK_STATE::SessionId
ULONG SessionId
Definition: ketypes.h:1189
_KLOCK_ENTRY_LOCK_STATE::SessionState
PVOID SessionState
Definition: ketypes.h:1186
_KLOCK_ENTRY
Definition: ketypes.h:1198
_KLOCK_ENTRY::LockState
KLOCK_ENTRY_LOCK_STATE LockState
Definition: ketypes.h:1261
_KLOCK_ENTRY::Spare0
UCHAR Spare0
Definition: ketypes.h:1217
_KLOCK_ENTRY::AcquiredByte
UCHAR AcquiredByte
Definition: ketypes.h:1222
_KLOCK_ENTRY::SessionState
PVOID SessionState
Definition: ketypes.h:1274
_KLOCK_ENTRY::WaitingBit
UCHAR WaitingBit
Definition: ketypes.h:1216
_KLOCK_ENTRY::IoBoost
USHORT IoBoost
Definition: ketypes.h:1307
_KLOCK_ENTRY::WaiterTree
RTL_RB_TREE WaiterTree
Definition: ketypes.h:1290
_KLOCK_ENTRY::SessionId
ULONG SessionId
Definition: ketypes.h:1277
_KLOCK_ENTRY::IoQoSWaiterCount
USHORT IoQoSWaiterCount
Definition: ketypes.h:1313
_KLOCK_ENTRY::IoQoSBoost
USHORT IoQoSBoost
Definition: ketypes.h:1311
_KLOCK_ENTRY::EntryLock
ULONG_PTR EntryLock
Definition: ketypes.h:1294
_KLOCK_ENTRY::CrossThreadReleasableAndBusyByte
volatile UCHAR CrossThreadReleasableAndBusyByte
Definition: ketypes.h:1266
_KLOCK_ENTRY::OwnerTree
RTL_RB_TREE OwnerTree
Definition: ketypes.h:1289
_KLOCK_ENTRY::AllFlags
ULONG AllFlags
Definition: ketypes.h:1240
_KLOCK_ENTRY::HeadNodeBit
UCHAR HeadNodeBit
Definition: ketypes.h:1230
_KLOCK_ENTRY::FreeListEntry
SINGLE_LIST_ENTRY FreeListEntry
Definition: ketypes.h:1202
_KLOCK_ENTRY::IoQoSWaiter
UCHAR IoQoSWaiter
Definition: ketypes.h:1232
_KLOCK_ENTRY::EntryFlags
ULONG EntryFlags
Definition: ketypes.h:1207
_KLOCK_ENTRY::AcquiredBit
UCHAR AcquiredBit
Definition: ketypes.h:1223
_KLOCK_ENTRY::InTreeByte
UCHAR InTreeByte
Definition: ketypes.h:1271
_KLOCK_ENTRY::CpuBoostsBitmap
USHORT CpuBoostsBitmap
Definition: ketypes.h:1306
_KLOCK_ENTRY::LockUnsafe
PVOID LockUnsafe
Definition: ketypes.h:1262
_KLOCK_ENTRY::ThreadLocalFlags
UCHAR ThreadLocalFlags
Definition: ketypes.h:1213
_KLOCK_ENTRY::IoPriorityBit
UCHAR IoPriorityBit
Definition: ketypes.h:1231
_KLOCK_ENTRY::CpuPriorityKey
CHAR CpuPriorityKey
Definition: ketypes.h:1292
_KLOCK_ENTRY::AllBoosts
USHORT AllBoosts
Definition: ketypes.h:1300
_KLOCK_ENTRY::Spare1
UCHAR Spare1
Definition: ketypes.h:1233
_KLOCK_ENTRY::StaticState
ULONG StaticState
Definition: ketypes.h:1239
_KLOCK_ENTRY::EntryOffset
UCHAR EntryOffset
Definition: ketypes.h:1210
_KLOCK_ENTRY::TreeNode
RTL_BALANCED_NODE TreeNode
Definition: ketypes.h:1201
_KLOCK_ENTRY::CrossThreadFlags
UCHAR CrossThreadFlags
Definition: ketypes.h:1227
_KLOCK_ENTRY::IoNormalPriorityWaiterCount
USHORT IoNormalPriorityWaiterCount
Definition: ketypes.h:1312
_KNODE::_flags
Definition: ketypes.h:1016
_KNODE::_flags::Removable
UCHAR Removable
Definition: ketypes.h:1017
_KNODE::_flags::Fill
UCHAR Fill
Definition: ketypes.h:1018
_KNODE
Definition: ketypes.h:1009
_KNODE::DeadStackList
SLIST_HEADER DeadStackList
Definition: ketypes.h:1010
_KNODE::Seed
UCHAR Seed
Definition: ketypes.h:1014
_KNODE::FreeCount
ULONG_PTR FreeCount[2]
Definition: ketypes.h:1021
_KNODE::MmShiftedColor
ULONG MmShiftedColor
Definition: ketypes.h:1020
_KNODE::PfnDeferredList
struct _SINGLE_LIST_ENTRY * PfnDeferredList
Definition: ketypes.h:1022
_KNODE::Flags
struct _KNODE::_flags Flags
_KNODE::NodeNumber
UCHAR NodeNumber
Definition: ketypes.h:1015
_KNODE::ProcessorMask
KAFFINITY ProcessorMask
Definition: ketypes.h:1012
_KNODE::PfnDereferenceSListHead
SLIST_HEADER PfnDereferenceSListHead
Definition: ketypes.h:1011
_KNODE::Color
UCHAR Color
Definition: ketypes.h:1013
_KPRCB
Definition: ketypes.h:654
_KPROCESS
Definition: ketypes.h:2211
_KPROCESS::Header
DISPATCHER_HEADER Header
Definition: ketypes.h:2212
_KPROCESS::BasePriority
SCHAR BasePriority
Definition: ketypes.h:2249
_KPROCESS::QuantumReset
SCHAR QuantumReset
Definition: ketypes.h:2250
_KPROCESS::ProcessListEntry
LIST_ENTRY ProcessListEntry
Definition: ketypes.h:2262
_KPROCESS::SwapListEntry
SINGLE_LIST_ENTRY SwapListEntry
Definition: ketypes.h:2233
_KPROCESS::StackCount
ULONG StackCount
Definition: ketypes.h:2261
_KPROCESS::ThreadSeed
UCHAR ThreadSeed
Definition: ketypes.h:2252
_KPROCESS::IdealNode
UCHAR IdealNode
Definition: ketypes.h:2254
_KPROCESS::DisableQuantum
LONG DisableQuantum
Definition: ketypes.h:2244
_KPROCESS::DisableBoost
LONG DisableBoost
Definition: ketypes.h:2243
_KPROCESS::IopmOffset
USHORT IopmOffset
Definition: ketypes.h:2224
_KPROCESS::ProcessFlags
LONG ProcessFlags
Definition: ketypes.h:2247
_KPROCESS::ExecuteOptions
UCHAR ExecuteOptions
Definition: ketypes.h:2259
_KPROCESS::Unused0
ULONG_PTR Unused0
Definition: ketypes.h:2216
_KPROCESS::VdmTrapcHandler
PVOID VdmTrapcHandler
Definition: ketypes.h:2234
_KPROCESS::ActiveProcessors
volatile KAFFINITY ActiveProcessors
Definition: ketypes.h:2229
_KPROCESS::KernelTime
ULONG KernelTime
Definition: ketypes.h:2230
_KPROCESS::AutoAlignment
LONG AutoAlignment
Definition: ketypes.h:2242
_KPROCESS::DirectoryTableBase
ULONG_PTR DirectoryTableBase
Definition: ketypes.h:2215
_KPROCESS::Visited
UCHAR Visited
Definition: ketypes.h:2255
_KPROCESS::UserTime
ULONG UserTime
Definition: ketypes.h:2231
_KPROCESS::CycleTime
ULONGLONG CycleTime
Definition: ketypes.h:2264
_KPROCESS::State
UCHAR State
Definition: ketypes.h:2251
_KPROCESS::Affinity
KAFFINITY Affinity
Definition: ketypes.h:2237
_KPROCESS::ProfileListHead
LIST_ENTRY ProfileListHead
Definition: ketypes.h:2213
_KPROCESS::ReservedFlags
LONG ReservedFlags
Definition: ketypes.h:2245
_KPROCESS::PowerState
UCHAR PowerState
Definition: ketypes.h:2253
_KPROCESS::Flags
KEXECUTE_OPTIONS Flags
Definition: ketypes.h:2258
_KPROCESS::ThreadListHead
LIST_ENTRY ThreadListHead
Definition: ketypes.h:2235
_KPROCESS::ReadyListHead
LIST_ENTRY ReadyListHead
Definition: ketypes.h:2232
_KPROCESS::ProcessLock
KSPIN_LOCK ProcessLock
Definition: ketypes.h:2236
_KPROFILE
Definition: ketypes.h:1040
_KPROFILE::Process
struct _KPROCESS * Process
Definition: ketypes.h:1044
_KPROFILE::Size
CSHORT Size
Definition: ketypes.h:1042
_KPROFILE::BucketShift
ULONG BucketShift
Definition: ketypes.h:1047
_KPROFILE::RangeLimit
PVOID RangeLimit
Definition: ketypes.h:1046
_KPROFILE::Source
KPROFILE_SOURCE Source
Definition: ketypes.h:1051
_KPROFILE::Buffer
PVOID Buffer
Definition: ketypes.h:1048
_KPROFILE::Started
BOOLEAN Started
Definition: ketypes.h:1052
_KPROFILE::Segment
ULONG_PTR Segment
Definition: ketypes.h:1049
_KPROFILE::RangeBase
PVOID RangeBase
Definition: ketypes.h:1045
_KPROFILE::Type
CSHORT Type
Definition: ketypes.h:1041
_KPROFILE::Affinity
KAFFINITY Affinity
Definition: ketypes.h:1050
_KPROFILE::ProfileListEntry
LIST_ENTRY ProfileListEntry
Definition: ketypes.h:1043
_KQUEUE
Definition: ketypes.h:1595
_KSEMAPHORE
Definition: ketypes.h:815
_KSERVICE_TABLE_DESCRIPTOR
Definition: ketypes.h:2275
_KSERVICE_TABLE_DESCRIPTOR::Count
PULONG Count
Definition: ketypes.h:2277
_KSERVICE_TABLE_DESCRIPTOR::Base
PULONG_PTR Base
Definition: ketypes.h:2276
_KSERVICE_TABLE_DESCRIPTOR::Limit
ULONG Limit
Definition: ketypes.h:2278
_KSERVICE_TABLE_DESCRIPTOR::Number
PUCHAR Number
Definition: ketypes.h:2282
_KSYSTEM_TIME
Definition: ketypes.h:928
_KSYSTEM_TIME::High1Time
LONG High1Time
Definition: ketypes.h:930
_KSYSTEM_TIME::High2Time
LONG High2Time
Definition: ketypes.h:931
_KSYSTEM_TIME::LowPart
ULONG LowPart
Definition: ketypes.h:929
_KTHREAD_COUNTERS
Definition: ketypes.h:1146
_KTHREAD_COUNTERS::CycleTimeBias
ULONG64 CycleTimeBias
Definition: ketypes.h:1151
_KTHREAD_COUNTERS::WaitReasonBitMap
ULONG64 WaitReasonBitMap
Definition: ketypes.h:1147
_KTHREAD_COUNTERS::HardwareCounters
ULONG64 HardwareCounters
Definition: ketypes.h:1152
_KTHREAD_COUNTERS::UserData
struct _THREAD_PERFORMANCE_DATA * UserData
Definition: ketypes.h:1148
_KTHREAD_COUNTERS::Flags
ULONG Flags
Definition: ketypes.h:1149
_KTHREAD_COUNTERS::HwCounter
COUNTER_READING HwCounter[16]
Definition: ketypes.h:1153
_KTHREAD_COUNTERS::ContextSwitches
ULONG ContextSwitches
Definition: ketypes.h:1150
_KTHREAD
Definition: ketypes.h:1788
_KTHREAD::ApcInterruptRequest
ULONG ApcInterruptRequest
Definition: ketypes.h:1831
_KTHREAD::TrapFrame
PKTRAP_FRAME TrapFrame
Definition: ketypes.h:1902
_KTHREAD::InitialStack
PVOID InitialStack
Definition: ketypes.h:1792
_KTHREAD::SystemCallNumber
ULONG SystemCallNumber
Definition: ketypes.h:1897
_KTHREAD::Queue
PKQUEUE Queue
Definition: ketypes.h:1934
_KTHREAD::UserIdealProcessor
ULONG UserIdealProcessor
Definition: ketypes.h:1911
_KTHREAD::AdjustReason
UCHAR AdjustReason
Definition: ketypes.h:2056
_KTHREAD::UnusualBoost
UCHAR UnusualBoost
Definition: ketypes.h:2052
_KTHREAD::CurrentRunTime
ULONG CurrentRunTime
Definition: ketypes.h:1801
_KTHREAD::SchedulerApcFill4
UCHAR SchedulerApcFill4[FIELD_OFFSET(KAPC, SystemArgument2)]
Definition: ketypes.h:2124
_KTHREAD::Affinity
GROUP_AFFINITY Affinity
Definition: ketypes.h:2066
_KTHREAD::IdealProcessor
ULONG IdealProcessor
Definition: ketypes.h:2072
_KTHREAD::ThreadFlagsSpare
ULONG ThreadFlagsSpare
Definition: ketypes.h:1878
_KTHREAD::UserStackWalkActive
ULONG UserStackWalkActive
Definition: ketypes.h:1830
_KTHREAD::DisableBoost
ULONG DisableBoost
Definition: ketypes.h:1853
_KTHREAD::WaitStatus
volatile INT_PTR WaitStatus
Definition: ketypes.h:1927
_KTHREAD::ForegroundBoost
UCHAR ForegroundBoost
Definition: ketypes.h:2051
_KTHREAD::ProcessReadyQueue
ULONG ProcessReadyQueue
Definition: ketypes.h:1823
_KTHREAD::ChargeOnlyGroup
ULONG ChargeOnlyGroup
Definition: ketypes.h:1860
_KTHREAD::QuantumDonation
ULONG QuantumDonation
Definition: ketypes.h:1856
_KTHREAD::WaitMode
KPROCESSOR_MODE WaitMode
Definition: ketypes.h:1924
_KTHREAD::CallbackNestingLevel
UCHAR CallbackNestingLevel
Definition: ketypes.h:2130
_KTHREAD::WaitListEntry
LIST_ENTRY WaitListEntry
Definition: ketypes.h:1931
_KTHREAD::FreezeCount
ULONG FreezeCount
Definition: ketypes.h:1865
_KTHREAD::SListFaultCount
SHORT SListFaultCount
Definition: ketypes.h:2095
_KTHREAD::ReservedStackInUse
ULONG ReservedStackInUse
Definition: ketypes.h:1840
_KTHREAD::AbCompletedIoQoSBoostCount
LONG AbCompletedIoQoSBoostCount
Definition: ketypes.h:2158
_KTHREAD::PriorityDecrement
CHAR PriorityDecrement
Definition: ketypes.h:2048
_KTHREAD::QuantumEndMigrate
ULONG QuantumEndMigrate
Definition: ketypes.h:1832
_KTHREAD::Running
BOOLEAN Running
Definition: ketypes.h:1807
_KTHREAD::SavedApcState
KAPC_STATE SavedApcState
Definition: ketypes.h:2088
_KTHREAD::AffinityVersion
ULONG_PTR AffinityVersion
Definition: ketypes.h:2062
_KTHREAD::WaitBlockFill10
UCHAR WaitBlockFill10[2 *sizeof(KWAIT_BLOCK)+FIELD_OFFSET(KWAIT_BLOCK, SparePtr)]
Definition: ketypes.h:1993
_KTHREAD::Reserved
ULONG Reserved
Definition: ketypes.h:1843
_KTHREAD::ExpectedRunTime
ULONG ExpectedRunTime
Definition: ketypes.h:1802
_KTHREAD::DisableQuantum
ULONG DisableQuantum
Definition: ketypes.h:1859
_KTHREAD::QuantumTarget
ULONG64 QuantumTarget
Definition: ketypes.h:1791
_KTHREAD::Win32Thread
PVOID Win32Thread
Definition: ketypes.h:1994
_KTHREAD::InGlobalForegroundList
ULONG_PTR InGlobalForegroundList
Definition: ketypes.h:2180
_KTHREAD::SystemAffinityActive
ULONG SystemAffinityActive
Definition: ketypes.h:1825
_KTHREAD::Alerted
BOOLEAN Alerted[MaximumMode]
Definition: ketypes.h:1808
_KTHREAD::CycleTime
volatile ULONG64 CycleTime
Definition: ketypes.h:1796
_KTHREAD::ForegroundLossTime
ULONG ForegroundLossTime
Definition: ketypes.h:2173
_KTHREAD::GlobalForegroundListEntry
LIST_ENTRY GlobalForegroundListEntry
Definition: ketypes.h:2176
_KTHREAD::AbFreeEntryCount
UCHAR AbFreeEntryCount
Definition: ketypes.h:2170
_KTHREAD::QueuedScb
struct _KSCB * QueuedScb
Definition: ketypes.h:2194
_KTHREAD::ThreadFlags
LONG ThreadFlags
Definition: ketypes.h:1885
_KTHREAD::CombinedApcDisable
ULONG CombinedApcDisable
Definition: ketypes.h:2011
_KTHREAD::Alertable
ULONG Alertable
Definition: ketypes.h:1826
_KTHREAD::WaitPrcb
PKPRCB WaitPrcb
Definition: ketypes.h:2120
_KTHREAD::ThreadLock
KSPIN_LOCK ThreadLock
Definition: ketypes.h:1795
_KTHREAD::AbCompletedIoBoostCount
volatile LONG AbCompletedIoBoostCount
Definition: ketypes.h:2156
_KTHREAD::ApcStateFill
UCHAR ApcStateFill[RTL_SIZEOF_THROUGH_FIELD(KAPC_STATE, UserApcPending)]
Definition: ketypes.h:1909
_KTHREAD::FirstArgument
PVOID FirstArgument
Definition: ketypes.h:1901
_KTHREAD::CalloutActive
ULONG CalloutActive
Definition: ketypes.h:1837
_KTHREAD::Priority
SCHAR Priority
Definition: ketypes.h:1910
_KTHREAD::UserAffinitySet
ULONG UserAffinitySet
Definition: ketypes.h:1854
_KTHREAD::SpecialApcDisable
SHORT SpecialApcDisable
Definition: ketypes.h:2009
_KTHREAD::CommitFailTerminateRequest
ULONG CommitFailTerminateRequest
Definition: ketypes.h:1876
_KTHREAD::SuspendApcFill3
UCHAR SuspendApcFill3[FIELD_OFFSET(KAPC, SystemArgument1)]
Definition: ketypes.h:2119
_KTHREAD::ApcStateIndex
UCHAR ApcStateIndex
Definition: ketypes.h:2070
_KTHREAD::SListFaultAddress
PVOID SListFaultAddress
Definition: ketypes.h:1790
_KTHREAD::Spare20
USHORT Spare20
Definition: ketypes.h:2142
_KTHREAD::SchedulerApcFill0
UCHAR SchedulerApcFill0[FIELD_OFFSET(KAPC, SpareByte0)]
Definition: ketypes.h:2104
_KTHREAD::Teb
PVOID Teb
Definition: ketypes.h:1935
_KTHREAD::ThreadCounters
struct _KTHREAD_COUNTERS * ThreadCounters
Definition: ketypes.h:1984
_KTHREAD::SwapListEntry
SINGLE_LIST_ENTRY SwapListEntry
Definition: ketypes.h:1932
_KTHREAD::PreviousMode
CHAR PreviousMode
Definition: ketypes.h:2044
_KTHREAD::LockEntries
KLOCK_ENTRY LockEntries[NUMBER_OF_LOCK_ENTRIES]
Definition: ketypes.h:2151
_KTHREAD::ServiceTable
PVOID ServiceTable
Definition: ketypes.h:1799
_KTHREAD::QueueDeferPreemption
ULONG QueueDeferPreemption
Definition: ketypes.h:1862
_KTHREAD::SchedulerApcFill5
UCHAR SchedulerApcFill5[FIELD_OFFSET(KAPC, Inserted)+1]
Definition: ketypes.h:2129
_KTHREAD::NpxState
ULONG64 NpxState
Definition: ketypes.h:2196
_KTHREAD::AutoAlignment
ULONG AutoAlignment
Definition: ketypes.h:1852
_KTHREAD::AutoBoostActive
ULONG AutoBoostActive
Definition: ketypes.h:1817
_KTHREAD::ReadyTransition
ULONG ReadyTransition
Definition: ketypes.h:1819
_KTHREAD::ScbReadyQueue
ULONG ScbReadyQueue
Definition: ketypes.h:1838
_KTHREAD::UserAffinity
GROUP_AFFINITY UserAffinity
Definition: ketypes.h:2040
_KTHREAD::KernelStack
PVOID KernelStack
Definition: ketypes.h:1803
_KTHREAD::GuiThread
ULONG GuiThread
Definition: ketypes.h:1858
_KTHREAD::DeferredProcessor
ULONG DeferredProcessor
Definition: ketypes.h:2034
_KTHREAD::KernelTime
ULONG KernelTime
Definition: ketypes.h:2115
_KTHREAD::Spare15
ULONG Spare15
Definition: ketypes.h:2080
_KTHREAD::ResourceIndex
UCHAR ResourceIndex
Definition: ketypes.h:2105
_KTHREAD::ThreadListEntry
LIST_ENTRY ThreadListEntry
Definition: ketypes.h:2136
_KTHREAD::SystemHeteroCpuPolicy
UCHAR SystemHeteroCpuPolicy
Definition: ketypes.h:1890
_KTHREAD::UmsPerformingSyscall
ULONG UmsPerformingSyscall
Definition: ketypes.h:1841
_KTHREAD::BasePriority
CHAR BasePriority
Definition: ketypes.h:2045
_KTHREAD::WaitTime
ULONG WaitTime
Definition: ketypes.h:2003
_KTHREAD::UserHeteroCpuPolicy
UCHAR UserHeteroCpuPolicy
Definition: ketypes.h:1891
_KTHREAD::SchedulerApcFill2
UCHAR SchedulerApcFill2[FIELD_OFFSET(KAPC, SpareLong0)]
Definition: ketypes.h:2114
_KTHREAD::AffinityFill
UCHAR AffinityFill[FIELD_OFFSET(GROUP_AFFINITY, Reserved)]
Definition: ketypes.h:2069
_KTHREAD::PriorityFloorSummary
ULONG PriorityFloorSummary
Definition: ketypes.h:2155
_KTHREAD::QuantumReset
UCHAR QuantumReset
Definition: ketypes.h:2110
_KTHREAD::LegoData
PVOID LegoData
Definition: ketypes.h:2125
_KTHREAD::WaitReason
UCHAR WaitReason
Definition: ketypes.h:2092
_KTHREAD::KeReferenceCount
volatile SHORT KeReferenceCount
Definition: ketypes.h:2162
_KTHREAD::XStateSave
PXSTATE_SAVE XStateSave
Definition: ketypes.h:1989
_KTHREAD::StackBase
PVOID StackBase
Definition: ketypes.h:1794
_KTHREAD::SystemThread
ULONG SystemThread
Definition: ketypes.h:1835
_KTHREAD::NextProcessor
ULONG NextProcessor
Definition: ketypes.h:2033
_KTHREAD::ExplicitIdealProcessor
ULONG ExplicitIdealProcessor
Definition: ketypes.h:1864
_KTHREAD::EnableStackSwap
ULONG EnableStackSwap
Definition: ketypes.h:1857
_KTHREAD::WaitBlockFill8
UCHAR WaitBlockFill8[FIELD_OFFSET(KWAIT_BLOCK, SparePtr)]
Definition: ketypes.h:1983
_KTHREAD::MiscFlags
LONG MiscFlags
Definition: ketypes.h:1845
_KTHREAD::TimerActive
ULONG TimerActive
Definition: ketypes.h:1834
_KTHREAD::AbWaitEntryCount
UCHAR AbWaitEntryCount
Definition: ketypes.h:2141
_KTHREAD::AdjustIncrement
CHAR AdjustIncrement
Definition: ketypes.h:2057
_KTHREAD::HighCycleTime
volatile ULONG HighCycleTime
Definition: ketypes.h:1798
_KTHREAD::MutantListHead
LIST_ENTRY MutantListHead
Definition: ketypes.h:2137
_KTHREAD::SchedulerApcFill1
UCHAR SchedulerApcFill1[FIELD_OFFSET(KAPC, SpareByte1)]
Definition: ketypes.h:2109
_KTHREAD::PriorityFloorCounts
UCHAR PriorityFloorCounts[16]
Definition: ketypes.h:2154
_KTHREAD::ExplicitSystemHeteroCpuPolicy
UCHAR ExplicitSystemHeteroCpuPolicy
Definition: ketypes.h:1892
_KTHREAD::Tag
volatile UCHAR Tag
Definition: ketypes.h:1889
_KTHREAD::AbEntrySummary
UCHAR AbEntrySummary
Definition: ketypes.h:2140
_KTHREAD::KernelApcDisable
SHORT KernelApcDisable
Definition: ketypes.h:2008
_KTHREAD::AlertedByThreadId
ULONG AlertedByThreadId
Definition: ketypes.h:1855
_KTHREAD::IoSelfBoostsEntry
SINGLE_LIST_ENTRY IoSelfBoostsEntry
Definition: ketypes.h:2153
_KTHREAD::SuspendEvent
KEVENT SuspendEvent
Definition: ketypes.h:2135
_KTHREAD::Spare12
CHAR Spare12
Definition: ketypes.h:1919
_KTHREAD::PropagateBoostsEntry
SINGLE_LIST_ENTRY PropagateBoostsEntry
Definition: ketypes.h:2152
_KTHREAD::Header
DISPATCHER_HEADER Header
Definition: ketypes.h:1789
_KTHREAD::WaitRegister
KWAIT_STATUS_REGISTER WaitRegister
Definition: ketypes.h:1806
_KTHREAD::WaitBlockList
PKWAIT_BLOCK WaitBlockList
Definition: ketypes.h:1928
_KTHREAD::ProcessStackCountDecremented
ULONG ProcessStackCountDecremented
Definition: ketypes.h:1877
_KTHREAD::ContextSwitches
ULONG ContextSwitches
Definition: ketypes.h:1916
_KTHREAD::RelativeTimerBias
ULONG64 RelativeTimerBias
Definition: ketypes.h:1937
_KTHREAD::DisableStackCheck
ULONG DisableStackCheck
Definition: ketypes.h:1842
_KTHREAD::EtwStackTraceApcInserted
ULONG EtwStackTraceApcInserted
Definition: ketypes.h:1880
_KTHREAD::SavedApcStateFill
UCHAR SavedApcStateFill[FIELD_OFFSET(KAPC_STATE, UserApcPending)+1]
Definition: ketypes.h:2091
_KTHREAD::WaitBlockFill9
UCHAR WaitBlockFill9[1 *sizeof(KWAIT_BLOCK)+FIELD_OFFSET(KWAIT_BLOCK, SparePtr)]
Definition: ketypes.h:1988
_KTHREAD::Saturation
CHAR Saturation
Definition: ketypes.h:2094
_KTHREAD::StateSaveArea
XSAVE_FORMAT * StateSaveArea
Definition: ketypes.h:1804
_KTHREAD::SuspendCount
CHAR SuspendCount
Definition: ketypes.h:2093
_KTHREAD::DeferPreemption
ULONG DeferPreemption
Definition: ketypes.h:1861
_KTHREAD::Spare0
UCHAR Spare0
Definition: ketypes.h:1893
_KTHREAD::Timer
KTIMER Timer
Definition: ketypes.h:1939
_KTHREAD::WaitBlockFill11
UCHAR WaitBlockFill11[3 *sizeof(KWAIT_BLOCK)+FIELD_OFFSET(KWAIT_BLOCK, Object)]
Definition: ketypes.h:1998
_KTHREAD::StackLimit
volatile VOID * StackLimit
Definition: ketypes.h:1793
_KTHREAD::QueueListEntry
LIST_ENTRY QueueListEntry
Definition: ketypes.h:2020
_KTHREAD::ProcessDetachActive
ULONG ProcessDetachActive
Definition: ketypes.h:1836
_KTHREAD::ApcState
KAPC_STATE ApcState
Definition: ketypes.h:1906
_KTHREAD::SchedulingGroup
struct _KSCHEDULING_GROUP * SchedulingGroup
Definition: ketypes.h:1805
_KTHREAD::Process
PKPROCESS Process
Definition: ketypes.h:2036
_KTHREAD::WaitIrql
KIRQL WaitIrql
Definition: ketypes.h:1923
_KTHREAD::SchedulerApc
KAPC SchedulerApc
Definition: ketypes.h:2101
_KTHREAD::Preempted
UCHAR Preempted
Definition: ketypes.h:2055
_KTHREAD::UserTime
ULONG UserTime
Definition: ketypes.h:2131
_KTHREAD::UmsDirectedSwitchEnable
ULONG UmsDirectedSwitchEnable
Definition: ketypes.h:1833
_KTHREAD::ApcQueueable
ULONG ApcQueueable
Definition: ketypes.h:1839
_KTHREAD::ForegroundDpcStackListEntry
SINGLE_LIST_ENTRY ForegroundDpcStackListEntry
Definition: ketypes.h:2179
_KTHREAD::State
volatile UCHAR State
Definition: ketypes.h:1917
_KTHREAD::WaitNext
ULONG WaitNext
Definition: ketypes.h:1824
_KTHREAD::UserAffinityFill
UCHAR UserAffinityFill[FIELD_OFFSET(GROUP_AFFINITY, Reserved)]
Definition: ketypes.h:2043
_KTHREAD::ForceDeferSchedule
ULONG ForceDeferSchedule
Definition: ketypes.h:1863
_KTHREAD::WaitBlockCount
UCHAR WaitBlockCount
Definition: ketypes.h:2071
_KTIMER_TABLE_ENTRY
Definition: ketypes.h:899
_KTIMER_TABLE_ENTRY::Lock
KSPIN_LOCK Lock
Definition: ketypes.h:901
_KTIMER_TABLE_ENTRY::Time
ULARGE_INTEGER Time
Definition: ketypes.h:904
_KTIMER_TABLE_ENTRY::Entry
LIST_ENTRY Entry
Definition: ketypes.h:903
_KTIMER_TABLE
Definition: ketypes.h:908
_KTIMER_TABLE::TimerEntries
KTIMER_TABLE_ENTRY TimerEntries[256]
Definition: ketypes.h:910
_KTIMER_TABLE::TimerExpiry
PKTIMER TimerExpiry[64]
Definition: ketypes.h:909
_KTIMER
Definition: ketypes.h:851
_KTRAP_FRAME
Definition: ketypes.h:406
_KWAIT_BLOCK
Definition: ketypes.h:455
_LIST_ENTRY
Definition: typedefs.h:120
_LOADER_PARAMETER_BLOCK
Definition: arc.h:539
_PP_LOOKASIDE_LIST
Definition: ketypes.h:995
_PP_LOOKASIDE_LIST::P
struct _GENERAL_LOOKASIDE * P
Definition: ketypes.h:996
_PP_LOOKASIDE_LIST::L
struct _GENERAL_LOOKASIDE * L
Definition: ketypes.h:997
_RTL_BALANCED_NODE
Definition: ntdef.template.h:322
_RTL_RB_TREE
FIXME: should move to rtltypes.h, but we can't include it here.
Definition: ketypes.h:1160
_RTL_RB_TREE::Root
PRTL_BALANCED_NODE Root
Definition: ketypes.h:1161
_RTL_RB_TREE::Min
PRTL_BALANCED_NODE Min
Definition: ketypes.h:1162
_SINGLE_LIST_ENTRY
Definition: ntbasedef.h:640
_SYNCH_COUNTERS
Definition: ketypes.h:920
_SYNCH_COUNTERS::ExTryToAcqExclusiveAcquires
ULONG ExTryToAcqExclusiveAcquires
Definition: ketypes.h:962
_SYNCH_COUNTERS::ExTryToAcqExclusiveAttempts
ULONG ExTryToAcqExclusiveAttempts
Definition: ketypes.h:961
_SYNCH_COUNTERS::ExInitializeResourceCount
ULONG ExInitializeResourceCount
Definition: ketypes.h:927
_SYNCH_COUNTERS::ExecutiveResourceReleaseSharedCount
ULONG ExecutiveResourceReleaseSharedCount
Definition: ketypes.h:933
_SYNCH_COUNTERS::ExAcqResSharedAcquiresExclusive
ULONG ExAcqResSharedAcquiresExclusive
Definition: ketypes.h:941
_SYNCH_COUNTERS::ExAcqResExclusiveNotAcquires
ULONG ExAcqResExclusiveNotAcquires
Definition: ketypes.h:939
_SYNCH_COUNTERS::ExAcqResSharedStarveExclusiveNotAcquires
ULONG ExAcqResSharedStarveExclusiveNotAcquires
Definition: ketypes.h:951
_SYNCH_COUNTERS::ExSetResOwnerPointerSharedOld
ULONG ExSetResOwnerPointerSharedOld
Definition: ketypes.h:960
_SYNCH_COUNTERS::ExAcqResSharedWaitForExclusiveAcquiresSharedRecursive
ULONG ExAcqResSharedWaitForExclusiveAcquiresSharedRecursive
Definition: ketypes.h:955
_SYNCH_COUNTERS::ExAcqResExclusiveAcquiresExclusiveRecursive
ULONG ExAcqResExclusiveAcquiresExclusiveRecursive
Definition: ketypes.h:937
_SYNCH_COUNTERS::ExEtwSynchTrackingNotificationsAccountedCount
ULONG ExEtwSynchTrackingNotificationsAccountedCount
Definition: ketypes.h:966
_SYNCH_COUNTERS::ExecutiveResourceConvertsCount
ULONG ExecutiveResourceConvertsCount
Definition: ketypes.h:934
_SYNCH_COUNTERS::ExecutiveResourceReleaseExclusiveCount
ULONG ExecutiveResourceReleaseExclusiveCount
Definition: ketypes.h:932
_SYNCH_COUNTERS::IpiSendRequestBroadcastCount
ULONG IpiSendRequestBroadcastCount
Definition: ketypes.h:924
_SYNCH_COUNTERS::ExAcqResExclusiveWaits
ULONG ExAcqResExclusiveWaits
Definition: ketypes.h:938
_SYNCH_COUNTERS::ExAcqResSharedWaitForExclusiveWaits
ULONG ExAcqResSharedWaitForExclusiveWaits
Definition: ketypes.h:956
_SYNCH_COUNTERS::ExAcqResSharedWaits
ULONG ExAcqResSharedWaits
Definition: ketypes.h:944
_SYNCH_COUNTERS::ExAcqResSharedWaitForExclusiveAcquiresExclusive
ULONG ExAcqResSharedWaitForExclusiveAcquiresExclusive
Definition: ketypes.h:953
_SYNCH_COUNTERS::SpinLockContentionCount
ULONG SpinLockContentionCount
Definition: ketypes.h:922
_SYNCH_COUNTERS::ExAcqResSharedStarveExclusiveAttempts
ULONG ExAcqResSharedStarveExclusiveAttempts
Definition: ketypes.h:946
_SYNCH_COUNTERS::ExAcqResSharedAttempts
ULONG ExAcqResSharedAttempts
Definition: ketypes.h:940
_SYNCH_COUNTERS::ExDeleteResourceCount
ULONG ExDeleteResourceCount
Definition: ketypes.h:929
_SYNCH_COUNTERS::ExecutiveResourceContentionsCount
ULONG ExecutiveResourceContentionsCount
Definition: ketypes.h:931
_SYNCH_COUNTERS::ExAcqResSharedWaitForExclusiveAttempts
ULONG ExAcqResSharedWaitForExclusiveAttempts
Definition: ketypes.h:952
_SYNCH_COUNTERS::ExAcqResSharedWaitForExclusiveNotAcquires
ULONG ExAcqResSharedWaitForExclusiveNotAcquires
Definition: ketypes.h:957
_SYNCH_COUNTERS::ExEtwSynchTrackingNotificationsCount
ULONG ExEtwSynchTrackingNotificationsCount
Definition: ketypes.h:965
_SYNCH_COUNTERS::ExBoostSharedOwners
ULONG ExBoostSharedOwners
Definition: ketypes.h:964
_SYNCH_COUNTERS::IpiSendRequestRoutineCount
ULONG IpiSendRequestRoutineCount
Definition: ketypes.h:925
_SYNCH_COUNTERS::ExAcqResSharedStarveExclusiveAcquiresSharedRecursive
ULONG ExAcqResSharedStarveExclusiveAcquiresSharedRecursive
Definition: ketypes.h:949
_SYNCH_COUNTERS::ExAcqResSharedStarveExclusiveAcquiresShared
ULONG ExAcqResSharedStarveExclusiveAcquiresShared
Definition: ketypes.h:948
_SYNCH_COUNTERS::ExAcqResSharedStarveExclusiveWaits
ULONG ExAcqResSharedStarveExclusiveWaits
Definition: ketypes.h:950
_SYNCH_COUNTERS::ExAcqResSharedAcquiresShared
ULONG ExAcqResSharedAcquiresShared
Definition: ketypes.h:942
_SYNCH_COUNTERS::SpinLockSpinCount
ULONG SpinLockSpinCount
Definition: ketypes.h:923
_SYNCH_COUNTERS::IpiSendSoftwareInterruptCount
ULONG IpiSendSoftwareInterruptCount
Definition: ketypes.h:926
_SYNCH_COUNTERS::ExSetResOwnerPointerExclusive
ULONG ExSetResOwnerPointerExclusive
Definition: ketypes.h:958
_SYNCH_COUNTERS::ExAcqResSharedNotAcquires
ULONG ExAcqResSharedNotAcquires
Definition: ketypes.h:945
_SYNCH_COUNTERS::ExReInitializeResourceCount
ULONG ExReInitializeResourceCount
Definition: ketypes.h:928
_SYNCH_COUNTERS::ExAcqResSharedWaitForExclusiveAcquiresShared
ULONG ExAcqResSharedWaitForExclusiveAcquiresShared
Definition: ketypes.h:954
_SYNCH_COUNTERS::ExecutiveResourceAcquiresCount
ULONG ExecutiveResourceAcquiresCount
Definition: ketypes.h:930
_SYNCH_COUNTERS::ExAcqResSharedStarveExclusiveAcquiresExclusive
ULONG ExAcqResSharedStarveExclusiveAcquiresExclusive
Definition: ketypes.h:947
_SYNCH_COUNTERS::ExAcqResExclusiveAttempts
ULONG ExAcqResExclusiveAttempts
Definition: ketypes.h:935
_SYNCH_COUNTERS::ExSetResOwnerPointerSharedNew
ULONG ExSetResOwnerPointerSharedNew
Definition: ketypes.h:959
_SYNCH_COUNTERS::ExAcqResExclusiveAcquiresExclusive
ULONG ExAcqResExclusiveAcquiresExclusive
Definition: ketypes.h:936
_SYNCH_COUNTERS::SpinLockAcquireCount
ULONG SpinLockAcquireCount
Definition: ketypes.h:921
_SYNCH_COUNTERS::ExBoostExclusiveOwner
ULONG ExBoostExclusiveOwner
Definition: ketypes.h:963
_SYNCH_COUNTERS::ExAcqResSharedAcquiresSharedRecursive
ULONG ExAcqResSharedAcquiresSharedRecursive
Definition: ketypes.h:943
_TEB
Definition: compat.h:836
_ULARGE_INTEGER
Definition: ms-dtyp.idl:184
_XSTATE_CONFIGURATION
Definition: ketypes.h:1232
_XSTATE_SAVE
Definition: ketypes.h:993
MODE
#define MODE
Definition: telnetd.h:40
PULONG_PTR
uint32_t * PULONG_PTR
Definition: typedefs.h:65
INT_PTR
int32_t INT_PTR
Definition: typedefs.h:64
OPTIONAL
#define OPTIONAL
Definition: typedefs.h:41
PULONG
uint32_t * PULONG
Definition: typedefs.h:59
LONG64
int64_t LONG64
Definition: typedefs.h:68
FIELD_OFFSET
#define FIELD_OFFSET(t, f)
Definition: typedefs.h:255
LONGLONG
int64_t LONGLONG
Definition: typedefs.h:68
NTAPI
#define NTAPI
Definition: typedefs.h:36
PVOID
void * PVOID
Definition: typedefs.h:50
ULONG_PTR
uint32_t ULONG_PTR
Definition: typedefs.h:65
IN
#define IN
Definition: typedefs.h:39
PUCHAR
unsigned char * PUCHAR
Definition: typedefs.h:53
ULONG
uint32_t ULONG
Definition: typedefs.h:59
ULONGLONG
uint64_t ULONGLONG
Definition: typedefs.h:67
OUT
#define OUT
Definition: typedefs.h:40
CCHAR
char CCHAR
Definition: typedefs.h:51
CSHORT
short CSHORT
Definition: umtypes.h:127
_KWAIT_STATUS_REGISTER
Definition: ketypes.h:1123
_KWAIT_STATUS_REGISTER::Affinity
UCHAR Affinity
Definition: ketypes.h:1128
_KWAIT_STATUS_REGISTER::Priority
UCHAR Priority
Definition: ketypes.h:1129
_KWAIT_STATUS_REGISTER::Alert
UCHAR Alert
Definition: ketypes.h:1132
_KWAIT_STATUS_REGISTER::UserApc
UCHAR UserApc
Definition: ketypes.h:1131
_KWAIT_STATUS_REGISTER::Unused
UCHAR Unused
Definition: ketypes.h:1133
_KWAIT_STATUS_REGISTER::State
UCHAR State
Definition: ketypes.h:1127
_KWAIT_STATUS_REGISTER::Flags
UCHAR Flags
Definition: ketypes.h:1124
_KWAIT_STATUS_REGISTER::Apc
UCHAR Apc
Definition: ketypes.h:1130
_LARGE_INTEGER
Definition: typedefs.h:103
_SLIST_HEADER
Definition: rtltypes.h:138
Object
_Must_inspect_result_ _In_ WDFCOLLECTION _In_ WDFOBJECT Object
Definition: wdfcollection.h:123
PowerState
_Must_inspect_result_ _In_ PWDFDEVICE_INIT _In_ WDF_DEVICE_POWER_STATE PowerState
Definition: wdfdevice.h:3034
Reserved
_Reserved_ PVOID Reserved
Definition: winddi.h:3974
Cookie
_In_opt_ PVOID _Out_ PLARGE_INTEGER Cookie
Definition: cmfuncs.h:14
Affinity
_In_ ULONG _In_ ULONG _In_ ULONG _Out_ PKIRQL _Out_ PKAFFINITY Affinity
Definition: halfuncs.h:174
UserTime
_Out_ PULONG UserTime
Definition: kefuncs.h:759
Period
_In_ LARGE_INTEGER _In_ ULONG Period
Definition: kefuncs.h:1313
Limit
_In_ LONG _In_ LONG Limit
Definition: kefuncs.h:304
PROCESSOR_FEATURE_MAX
#define PROCESSOR_FEATURE_MAX
XSAVE_FORMAT
XSAVE_FORMAT
Definition: ketypes.h:966
PKSTART_ROUTINE
KSTART_ROUTINE * PKSTART_ROUTINE
Definition: ketypes.h:499
KSYSTEM_TIME
struct _KSYSTEM_TIME KSYSTEM_TIME
_KWAIT_REASON
_KWAIT_REASON
Definition: ketypes.h:414
WrLpcReply
@ WrLpcReply
Definition: ketypes.h:432
WrGuardedMutex
@ WrGuardedMutex
Definition: ketypes.h:450
WrPageIn
@ WrPageIn
Definition: ketypes.h:424
WrPoolAllocation
@ WrPoolAllocation
Definition: ketypes.h:425
Suspended
@ Suspended
Definition: ketypes.h:420
WrPageOut
@ WrPageOut
Definition: ketypes.h:434
PageIn
@ PageIn
Definition: ketypes.h:417
WrKernel
@ WrKernel
Definition: ketypes.h:441
PoolAllocation
@ PoolAllocation
Definition: ketypes.h:418
WrYieldExecution
@ WrYieldExecution
Definition: ketypes.h:448
WrUserRequest
@ WrUserRequest
Definition: ketypes.h:428
UserRequest
@ UserRequest
Definition: ketypes.h:421
WrLpcReceive
@ WrLpcReceive
Definition: ketypes.h:431
WrFreePage
@ WrFreePage
Definition: ketypes.h:423
DelayExecution
@ DelayExecution
Definition: ketypes.h:419
WrDispatchInt
@ WrDispatchInt
Definition: ketypes.h:446
WrMutex
@ WrMutex
Definition: ketypes.h:444
WrExecutive
@ WrExecutive
Definition: ketypes.h:422
WrQuantumEnd
@ WrQuantumEnd
Definition: ketypes.h:445
WrResource
@ WrResource
Definition: ketypes.h:442
WrEventPair
@ WrEventPair
Definition: ketypes.h:429
WrPushLock
@ WrPushLock
Definition: ketypes.h:443
WrPreempted
@ WrPreempted
Definition: ketypes.h:447
WrQueue
@ WrQueue
Definition: ketypes.h:430
MaximumWaitReason
@ MaximumWaitReason
Definition: ketypes.h:452
WrRendezvous
@ WrRendezvous
Definition: ketypes.h:435
FreePage
@ FreePage
Definition: ketypes.h:416
WrVirtualMemory
@ WrVirtualMemory
Definition: ketypes.h:433
WrDelayExecution
@ WrDelayExecution
Definition: ketypes.h:426
WrSuspended
@ WrSuspended
Definition: ketypes.h:427
Executive
@ Executive
Definition: ketypes.h:415
KPROCESSOR_MODE
CCHAR KPROCESSOR_MODE
Definition: ketypes.h:7
PKSERVICE_ROUTINE
KSERVICE_ROUTINE * PKSERVICE_ROUTINE
Definition: ketypes.h:512
MAX_WOW64_SHARED_ENTRIES
#define MAX_WOW64_SHARED_ENTRIES
SystemArgument1
_In_opt_ PVOID _In_opt_ PVOID SystemArgument1
Definition: ketypes.h:688
KUSER_SHARED_DATA
KUSER_SHARED_DATA
Definition: ketypes.h:1571
KWAIT_BLOCK
struct _KWAIT_BLOCK KWAIT_BLOCK
_MODE
_MODE
Definition: ketypes.h:10
MaximumMode
@ MaximumMode
Definition: ketypes.h:13
KINTERRUPT_POLARITY
enum _KINTERRUPT_POLARITY KINTERRUPT_POLARITY
THREAD_WAIT_OBJECTS
#define THREAD_WAIT_OBJECTS
Definition: ketypes.h:492
_ALTERNATIVE_ARCHITECTURE_TYPE
_ALTERNATIVE_ARCHITECTURE_TYPE
Definition: ketypes.h:901
EndAlternatives
@ EndAlternatives
Definition: ketypes.h:904
StandardDesign
@ StandardDesign
Definition: ketypes.h:902
NEC98x86
@ NEC98x86
Definition: ketypes.h:903
PKAPC_STATE
* PKAPC_STATE
Definition: ketypes.h:1589
PKSYSTEM_TIME
struct _KSYSTEM_TIME * PKSYSTEM_TIME
PKINTERRUPT_ROUTINE
VOID(NTAPI * PKINTERRUPT_ROUTINE)(VOID)
Definition: ketypes.h:502
PKUSER_SHARED_DATA
* PKUSER_SHARED_DATA
Definition: ketypes.h:1571
KWAIT_REASON
enum _KWAIT_REASON KWAIT_REASON
SystemArgument2
_In_opt_ PVOID _In_opt_ PVOID _In_opt_ PVOID SystemArgument2
Definition: ketypes.h:689
KAPC_STATE
KAPC_STATE
Definition: ketypes.h:1589
ALTERNATIVE_ARCHITECTURE_TYPE
enum _ALTERNATIVE_ARCHITECTURE_TYPE ALTERNATIVE_ARCHITECTURE_TYPE
StartRoutine
_In_ ULONG _In_opt_ POBJECT_ATTRIBUTES _In_opt_ HANDLE _Out_opt_ PCLIENT_ID _In_ PKSTART_ROUTINE StartRoutine
Definition: psfuncs.h:91
UCHAR
unsigned char UCHAR
Definition: xmlstorage.h:181
WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180
CHAR
char CHAR
Definition: xmlstorage.h:175
TimerContext
_In_ PLARGE_INTEGER _In_opt_ PTIMER_APC_ROUTINE _In_opt_ PVOID TimerContext
Definition: zwfuncs.h:430