de/d86/dll_2win32_2psapi_2psapi_8c_source.html

/*

 * COPYRIGHT:   See COPYING in the top level directory

 * LICENSE:     See LGPL.txt in the top level directory

 * PROJECT:     ReactOS system libraries

 * FILE:        reactos/lib/psapi/misc/win32.c

 * PURPOSE:     Win32 interfaces for PSAPI

 * PROGRAMMER:  KJK::Hyperion <noog@libero.it>

 *              Thomas Weidenmueller <w3seek@reactos.com>

 *              Pierre Schweitzer <pierre@reactos.org>

 * UPDATE HISTORY:

 *              10/06/2002: Created

 */


#include <stdarg.h>


#define WIN32_NO_STATUS

#include <windef.h>

#include <winbase.h>

#include <winnls.h>

#define NTOS_MODE_USER

#include <ndk/exfuncs.h>

#include <ndk/mmfuncs.h>

#include <ndk/psfuncs.h>

#include <ndk/rtlfuncs.h>


#include <psapi.h>


#include <pseh/pseh2.h>


#define NDEBUG

#include <debug.h>


#define MAX_MODULES 0x2710      // Matches 10.000 modules

#define INIT_MEMORY_SIZE 0x1000 // Matches 4kB


/* INTERNAL *******************************************************************/


/*

 * @implemented

 */

static BOOL NTAPI

FindDeviceDriver(IN PVOID ImageBase,

                 OUT PRTL_PROCESS_MODULE_INFORMATION MatchingModule)

{

    NTSTATUS Status;

    DWORD i, RequiredSize;

    PRTL_PROCESS_MODULES Information;

    RTL_PROCESS_MODULE_INFORMATION Module;

    /* By default, to prevent too many reallocations, we already make room for 4 modules */

    DWORD Size = sizeof(RTL_PROCESS_MODULES) + 3 * sizeof(RTL_PROCESS_MODULE_INFORMATION);


    while (TRUE)

    {

        /* Allocate a buffer to hold modules information */

        Information = LocalAlloc(LMEM_FIXED, Size);

        if (!Information)

        {

            SetLastError(ERROR_NO_SYSTEM_RESOURCES);

            return FALSE;

        }


        /* Query information */

        Status = NtQuerySystemInformation(SystemModuleInformation, Information, Size, &RequiredSize);

        if (!NT_SUCCESS(Status))

        {

            /* Free the current buffer */

            LocalFree(Information);


            /* If it was not a length mismatch (ie, buffer too small), just leave */

            if (Status != STATUS_INFO_LENGTH_MISMATCH)

            {

                SetLastError(RtlNtStatusToDosError(Status));

                return FALSE;

            }


            /* Try again with the required size */

            Size = RequiredSize;

            continue;

        }


        /* No modules returned? Leave */

        if (Information->NumberOfModules == 0)

        {

            break;

        }


        /* Try to find which module matches the base address given */

        for (i = 0; i < Information->NumberOfModules; ++i)

        {

            Module = Information->Modules[i];

            if (Module.ImageBase == ImageBase)

            {

                /* Copy the matching module and leave */

                memcpy(MatchingModule, &Module, sizeof(Module));

                LocalFree(Information);

                return TRUE;

            }

        }


        /* If we arrive here, it means we were not able to find matching base address */

        break;

    }


    /* Release and leave */

    LocalFree(Information);

    SetLastError(ERROR_INVALID_HANDLE);


    return FALSE;

}


/*

 * @implemented

 */

static BOOL NTAPI

FindModule(IN HANDLE hProcess,

           IN HMODULE hModule OPTIONAL,

           OUT PLDR_DATA_TABLE_ENTRY Module)

{

    DWORD Count;

    NTSTATUS Status;

    PPEB_LDR_DATA LoaderData;

    PLIST_ENTRY ListHead, ListEntry;

    PROCESS_BASIC_INFORMATION ProcInfo;


    /* Query the process information to get its PEB address */

    Status = NtQueryInformationProcess(hProcess, ProcessBasicInformation, &ProcInfo, sizeof(ProcInfo), NULL);

    if (!NT_SUCCESS(Status))

    {

        SetLastError(RtlNtStatusToDosError(Status));

        return FALSE;

    }


    /* If no module was provided, get base as module */

    if (hModule == NULL)

    {

        if (!ReadProcessMemory(hProcess, &ProcInfo.PebBaseAddress->ImageBaseAddress, &hModule, sizeof(hModule), NULL))

        {

            return FALSE;

        }

    }


    /* Read loader data address from PEB */

    if (!ReadProcessMemory(hProcess, &ProcInfo.PebBaseAddress->Ldr, &LoaderData, sizeof(LoaderData), NULL))

    {

        return FALSE;

    }


    if (LoaderData == NULL)

    {

        SetLastError(ERROR_INVALID_HANDLE);

        return FALSE;

    }


    /* Store list head address */

    ListHead = &(LoaderData->InMemoryOrderModuleList);


    /* Read first element in the modules list */

    if (!ReadProcessMemory(hProcess,

                           &(LoaderData->InMemoryOrderModuleList.Flink),

                           &ListEntry,

                           sizeof(ListEntry),

                           NULL))

    {

        return FALSE;

    }


    Count = 0;


    /* Loop on the modules */

    while (ListEntry != ListHead)

    {

        /* Load module data */

        if (!ReadProcessMemory(hProcess,

                               CONTAINING_RECORD(ListEntry, LDR_DATA_TABLE_ENTRY, InMemoryOrderLinks),

                               Module,

                               sizeof(*Module),

                               NULL))

        {

            return FALSE;

        }


        /* Does that match the module we're looking for? */

        if (Module->DllBase == hModule)

        {

            return TRUE;

        }


        ++Count;

        if (Count > MAX_MODULES)

        {

            break;

        }


        /* Get to next listed module */

        ListEntry = Module->InMemoryOrderLinks.Flink;

    }


    SetLastError(ERROR_INVALID_HANDLE);

    return FALSE;

}


typedef struct _INTERNAL_ENUM_PAGE_FILES_CONTEXT

{

    LPVOID lpContext;

    PENUM_PAGE_FILE_CALLBACKA pCallbackRoutine;

    DWORD dwErrCode;

} INTERNAL_ENUM_PAGE_FILES_CONTEXT, *PINTERNAL_ENUM_PAGE_FILES_CONTEXT;


/*

 * @implemented

 */

static BOOL CALLBACK

CallBackConvertToAscii(LPVOID pContext,

                       PENUM_PAGE_FILE_INFORMATION pPageFileInfo,

                       LPCWSTR lpFilename)

{

    BOOL Ret;

    SIZE_T Len;

    LPSTR AnsiFileName;

    PINTERNAL_ENUM_PAGE_FILES_CONTEXT Context = (PINTERNAL_ENUM_PAGE_FILES_CONTEXT)pContext;


    Len = wcslen(lpFilename);


    /* Alloc space for the ANSI string */

    AnsiFileName = LocalAlloc(LMEM_FIXED, (Len * sizeof(CHAR)) + sizeof(ANSI_NULL));

    if (AnsiFileName == NULL)

    {

        Context->dwErrCode = RtlNtStatusToDosError(STATUS_INSUFFICIENT_RESOURCES);

        return FALSE;

    }


    /* Convert string to ANSI */

    if (WideCharToMultiByte(CP_ACP, 0, lpFilename, -1, AnsiFileName, (Len * sizeof(CHAR)) + sizeof(ANSI_NULL), NULL, NULL) == 0)

    {

        Context->dwErrCode = GetLastError();

        LocalFree(AnsiFileName);

        return FALSE;

    }


    /* And finally call "real" callback */

    Ret = Context->pCallbackRoutine(Context->lpContext, pPageFileInfo, AnsiFileName);

    LocalFree(AnsiFileName);


    return Ret;

}


/*

 * @implemented

 */

BOOL

WINAPI

EmptyWorkingSet(HANDLE hProcess)

{

    SYSTEM_INFO SystemInfo;

    QUOTA_LIMITS QuotaLimits;

    NTSTATUS Status;


    GetSystemInfo(&SystemInfo);


    /* Query the working set */

    Status = NtQueryInformationProcess(hProcess,

                                       ProcessQuotaLimits,

                                       &QuotaLimits,

                                       sizeof(QuotaLimits),

                                       NULL);


    if (!NT_SUCCESS(Status))

    {

        SetLastError(RtlNtStatusToDosError(Status));

        return FALSE;

    }


    /* Empty the working set */

    QuotaLimits.MinimumWorkingSetSize = -1;

    QuotaLimits.MaximumWorkingSetSize = -1;


    /* Set the working set */

    Status = NtSetInformationProcess(hProcess,

                                     ProcessQuotaLimits,

                                     &QuotaLimits,

                                     sizeof(QuotaLimits));

    if (!NT_SUCCESS(Status) && Status != STATUS_PRIVILEGE_NOT_HELD)

    {

        SetLastError(RtlNtStatusToDosError(Status));

        return FALSE;

    }


    return TRUE;

}


/*

 * @implemented

 */

BOOL

WINAPI

EnumDeviceDrivers(LPVOID *lpImageBase,

                  DWORD cb,

                  LPDWORD lpcbNeeded)

{

    NTSTATUS Status;

    DWORD NewSize, Count;

    PRTL_PROCESS_MODULES Information;

    /* By default, to prevent too many reallocations, we already make room for 4 modules */

    DWORD Size = sizeof(RTL_PROCESS_MODULES) + 3 * sizeof(RTL_PROCESS_MODULE_INFORMATION);


    do

    {

        /* Allocate a buffer to hold modules information */

        Information = LocalAlloc(LMEM_FIXED, Size);

        if (!Information)

        {

            SetLastError(ERROR_NO_SYSTEM_RESOURCES);

            return FALSE;

        }


        /* Query information */

        Status = NtQuerySystemInformation(SystemModuleInformation, Information, Size, &Count);

        /* In case of an error */

        if (!NT_SUCCESS(Status))

        {

            /* Save the amount of output modules */

            NewSize = Information->NumberOfModules;

            /* And free buffer */

            LocalFree(Information);


            /* If it was not a length mismatch (ie, buffer too small), just leave */

            if (Status != STATUS_INFO_LENGTH_MISMATCH)

            {

                SetLastError(RtlNtStatusToDosError(Status));

                return FALSE;

            }


            /* Compute new size length */

            ASSERT(Size >= sizeof(RTL_PROCESS_MODULES));

            NewSize *= sizeof(RTL_PROCESS_MODULE_INFORMATION);

            NewSize += sizeof(ULONG);

            ASSERT(NewSize >= sizeof(RTL_PROCESS_MODULES));

            /* Check whether it is really bigger - otherwise, leave */

            if (NewSize < Size)

            {

                ASSERT(NewSize > Size);

                SetLastError(RtlNtStatusToDosError(STATUS_INFO_LENGTH_MISMATCH));

                return FALSE;

            }


            /* Loop again with that new buffer */

            Size = NewSize;

            continue;

        }


        /* End of allocation loop */

        break;

    } while (TRUE);


    _SEH2_TRY

    {

        for (Count = 0; Count < Information->NumberOfModules && Count < cb / sizeof(LPVOID); ++Count)

        {

            lpImageBase[Count] = Information->Modules[Count].ImageBase;

        }


        *lpcbNeeded = Information->NumberOfModules * sizeof(LPVOID);

    }

    _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)

    {

        SetLastError(RtlNtStatusToDosError(_SEH2_GetExceptionCode()));

        _SEH2_YIELD(return FALSE);

    }

    _SEH2_END;


    return TRUE;

}


/*

 * @implemented

 */

BOOL

WINAPI

EnumProcesses(DWORD *lpidProcess,

              DWORD cb,

              LPDWORD lpcbNeeded)

{

    NTSTATUS Status;

    DWORD Size = MAXSHORT, Count;

    PSYSTEM_PROCESS_INFORMATION ProcInfo;

    PSYSTEM_PROCESS_INFORMATION ProcInfoArray;


    /* First of all, query all the processes */

    do

    {

        ProcInfoArray = LocalAlloc(LMEM_FIXED, Size);

        if (ProcInfoArray == NULL)

        {

            return FALSE;

        }


        Status = NtQuerySystemInformation(SystemProcessInformation, ProcInfoArray, Size, NULL);

        if (Status == STATUS_INFO_LENGTH_MISMATCH)

        {

            LocalFree(ProcInfoArray);

            Size += MAXSHORT;

            continue;

        }


        break;

    }

    while (TRUE);


    if (!NT_SUCCESS(Status))

    {

        LocalFree(ProcInfoArray);

        SetLastError(RtlNtStatusToDosError(Status));

        return FALSE;

    }


    /* Then, loop to output data */

    Count = 0;

    ProcInfo = ProcInfoArray;


    _SEH2_TRY

    {

        do

        {

            /* It may sound weird, but actually MS only updated Count on

             * successful write. So, it cannot measure the amount of space needed!

             * This is really tricky.

             */

            if (Count < cb / sizeof(DWORD))

            {

                lpidProcess[Count] = HandleToUlong(ProcInfo->UniqueProcessId);

                Count++;

            }


            if (ProcInfo->NextEntryOffset == 0)

            {

                break;

            }


            ProcInfo = (PSYSTEM_PROCESS_INFORMATION)((ULONG_PTR)ProcInfo + ProcInfo->NextEntryOffset);

        }

        while (TRUE);


        *lpcbNeeded = Count * sizeof(DWORD);

    }

    _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)

    {

        SetLastError(RtlNtStatusToDosError(_SEH2_GetExceptionCode()));

        LocalFree(ProcInfoArray);

        _SEH2_YIELD(return FALSE);

    }

    _SEH2_END;


    LocalFree(ProcInfoArray);

    return TRUE;

}


/*

 * @implemented

 */

BOOL

WINAPI

EnumProcessModules(HANDLE hProcess,

                   HMODULE *lphModule,

                   DWORD cb,

                   LPDWORD lpcbNeeded)

{

    NTSTATUS Status;

    DWORD NbOfModules, Count;

    PPEB_LDR_DATA LoaderData;

    PLIST_ENTRY ListHead, ListEntry;

    PROCESS_BASIC_INFORMATION ProcInfo;

    LDR_DATA_TABLE_ENTRY CurrentModule;


    /* Query the process information to get its PEB address */

    Status = NtQueryInformationProcess(hProcess, ProcessBasicInformation, &ProcInfo, sizeof(ProcInfo), NULL);

    if (!NT_SUCCESS(Status))

    {

        SetLastError(RtlNtStatusToDosError(Status));

        return FALSE;

    }


    if (ProcInfo.PebBaseAddress == NULL)

    {

        SetLastError(RtlNtStatusToDosError(STATUS_PARTIAL_COPY));

        return FALSE;

    }


    /* Read loader data address from PEB */

    if (!ReadProcessMemory(hProcess, &ProcInfo.PebBaseAddress->Ldr, &LoaderData, sizeof(LoaderData), NULL))

    {

        return FALSE;

    }


    /* Store list head address */

    ListHead = &LoaderData->InLoadOrderModuleList;


    /* Read first element in the modules list */

    if (!ReadProcessMemory(hProcess, &LoaderData->InLoadOrderModuleList.Flink, &ListEntry, sizeof(ListEntry), NULL))

    {

        return FALSE;

    }


    NbOfModules = cb / sizeof(HMODULE);

    Count = 0;


    /* Loop on the modules */

    while (ListEntry != ListHead)

    {

        /* Load module data */

        if (!ReadProcessMemory(hProcess,

                               CONTAINING_RECORD(ListEntry, LDR_DATA_TABLE_ENTRY, InLoadOrderLinks),

                               &CurrentModule,

                               sizeof(CurrentModule),

                               NULL))

        {

            return FALSE;

        }


        /* Check if we can output module, do it if so */

        if (Count < NbOfModules)

        {

            _SEH2_TRY

            {

                lphModule[Count] = CurrentModule.DllBase;

            }

            _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)

            {

                SetLastError(RtlNtStatusToDosError(_SEH2_GetExceptionCode()));

                _SEH2_YIELD(return FALSE);

            }

            _SEH2_END;

        }


        ++Count;

        if (Count > MAX_MODULES)

        {

            SetLastError(ERROR_INVALID_HANDLE);

            return FALSE;

        }


        /* Get to next listed module */

        ListEntry = CurrentModule.InLoadOrderLinks.Flink;

    }


    _SEH2_TRY

    {

        *lpcbNeeded = Count * sizeof(HMODULE);

    }

    _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)

    {

        SetLastError(RtlNtStatusToDosError(_SEH2_GetExceptionCode()));

        _SEH2_YIELD(return FALSE);

    }

    _SEH2_END;


    return TRUE;

}


/*

 * @implemented

 */

DWORD

WINAPI

GetDeviceDriverBaseNameA(LPVOID ImageBase,

                         LPSTR lpBaseName,

                         DWORD nSize)

{

    SIZE_T Len, LenWithNull;

    RTL_PROCESS_MODULE_INFORMATION Module;


    /* Get the associated device driver to the base address */

    if (!FindDeviceDriver(ImageBase, &Module))

    {

        return 0;

    }


    /* And copy as much as possible to output buffer.

     * Try to add 1 to the len, to copy the null char as well.

     */

    Len =

    LenWithNull = strlen(&Module.FullPathName[Module.OffsetToFileName]) + 1;

    if (Len > nSize)

    {

        Len = nSize;

    }


    memcpy(lpBaseName, &Module.FullPathName[Module.OffsetToFileName], Len);

    /* In case we copied null char, remove it from final len */

    if (Len == LenWithNull)

    {

        --Len;

    }


    return Len;

}


/*

 * @implemented

 */

DWORD

WINAPI

GetDeviceDriverFileNameA(LPVOID ImageBase,

                         LPSTR lpFilename,

                         DWORD nSize)

{

    SIZE_T Len, LenWithNull;

    RTL_PROCESS_MODULE_INFORMATION Module;


    /* Get the associated device driver to the base address */

    if (!FindDeviceDriver(ImageBase, &Module))

    {

        return 0;

    }


    /* And copy as much as possible to output buffer.

     * Try to add 1 to the len, to copy the null char as well.

     */

    Len =

    LenWithNull = strlen(Module.FullPathName) + 1;

    if (Len > nSize)

    {

        Len = nSize;

    }


    memcpy(lpFilename, Module.FullPathName, Len);

    /* In case we copied null char, remove it from final len */

    if (Len == LenWithNull)

    {

        --Len;

    }


    return Len;

}


/*

 * @implemented

 */

DWORD

WINAPI

GetDeviceDriverBaseNameW(LPVOID ImageBase,

                         LPWSTR lpBaseName,

                         DWORD nSize)

{

    DWORD Len;

    LPSTR BaseName;


    /* Allocate internal buffer for conversion */

    BaseName = LocalAlloc(LMEM_FIXED, nSize);

    if (BaseName == 0)

    {

        return 0;

    }


    /* Call A API */

    Len = GetDeviceDriverBaseNameA(ImageBase, BaseName, nSize);

    if (Len == 0)

    {

        LocalFree(BaseName);

        return 0;

    }


    /* And convert output */

    if (MultiByteToWideChar(CP_ACP, 0, BaseName, (Len < nSize) ? Len + 1 : Len, lpBaseName, nSize) == 0)

    {

        LocalFree(BaseName);

        return 0;

    }


    LocalFree(BaseName);

    return Len;

}


/*

 * @implemented

 */

DWORD

WINAPI

GetDeviceDriverFileNameW(LPVOID ImageBase,

                         LPWSTR lpFilename,

                         DWORD nSize)

{

    DWORD Len;

    LPSTR FileName;


    /* Allocate internal buffer for conversion */

    FileName = LocalAlloc(LMEM_FIXED, nSize);

    if (FileName == 0)

    {

        return 0;

    }


    /* Call A API */

    Len = GetDeviceDriverFileNameA(ImageBase, FileName, nSize);

    if (Len == 0)

    {

        LocalFree(FileName);

        return 0;

    }


    /* And convert output */

    if (MultiByteToWideChar(CP_ACP, 0, FileName, (Len < nSize) ? Len + 1 : Len, lpFilename, nSize) == 0)

    {

        LocalFree(FileName);

        return 0;

    }


    LocalFree(FileName);

    return Len;

}


/*

 * @implemented

 */

DWORD

WINAPI

GetMappedFileNameA(HANDLE hProcess,

                   LPVOID lpv,

                   LPSTR lpFilename,

                   DWORD nSize)

{

    DWORD Len;

    LPWSTR FileName;


    DPRINT("GetMappedFileNameA(%p, %p, %p, %lu)\n", hProcess, lpv, lpFilename, nSize);


    /* Allocate internal buffer for conversion */

    FileName = LocalAlloc(LMEM_FIXED, nSize * sizeof(WCHAR));

    if (FileName == NULL)

    {

        return 0;

    }


    /* Call W API */

    Len = GetMappedFileNameW(hProcess, lpv, FileName, nSize);


    /* And convert output */

    if (WideCharToMultiByte(CP_ACP, 0, FileName, (Len < nSize) ? Len + 1 : Len, lpFilename, nSize, NULL, NULL) == 0)

    {

        Len = 0;

    }


    LocalFree(FileName);

    return Len;

}


/*

 * @implemented

 */

DWORD

WINAPI

GetMappedFileNameW(HANDLE hProcess,

                   LPVOID lpv,

                   LPWSTR lpFilename,

                   DWORD nSize)

{

    DWORD Len;

    SIZE_T OutSize;

    NTSTATUS Status;

    struct

    {

        MEMORY_SECTION_NAME;

        WCHAR CharBuffer[MAX_PATH];

    } SectionName;


    DPRINT("GetMappedFileNameW(%p, %p, %p, %lu)\n", hProcess, lpv, lpFilename, nSize);


    /* If no buffer, no need to keep going on */

    if (nSize == 0)

    {

        SetLastError(ERROR_INSUFFICIENT_BUFFER);

        return 0;

    }


    /* Query section name */

    Status = NtQueryVirtualMemory(hProcess, lpv, MemorySectionName,

                                  &SectionName, sizeof(SectionName), &OutSize);

    if (!NT_SUCCESS(Status))

    {

        SetLastError(RtlNtStatusToDosError(Status));

        return 0;

    }


    /* Prepare to copy file name */

    Len =

    OutSize = SectionName.SectionFileName.Length / sizeof(WCHAR);

    if (OutSize + 1 > nSize)

    {

        Len = nSize - 1;

        OutSize = nSize;

        SetLastError(ERROR_INSUFFICIENT_BUFFER);

    }

    else

    {

        SetLastError(ERROR_SUCCESS);

    }


    /* Copy, zero and return */

    memcpy(lpFilename, SectionName.SectionFileName.Buffer, Len * sizeof(WCHAR));

    lpFilename[Len] = 0;


    return OutSize;

}


/*

 * @implemented

 */

DWORD

WINAPI

GetModuleBaseNameA(HANDLE hProcess,

                   HMODULE hModule,

                   LPSTR lpBaseName,

                   DWORD nSize)

{

    DWORD Len;

    PWSTR BaseName;


    /* Allocate internal buffer for conversion */

    BaseName = LocalAlloc(LMEM_FIXED, nSize * sizeof(WCHAR));

    if (BaseName == NULL)

    {

        return 0;

    }


    /* Call W API */

    Len = GetModuleBaseNameW(hProcess, hModule, BaseName, nSize);

    /* And convert output */

    if (WideCharToMultiByte(CP_ACP, 0, BaseName, (Len < nSize) ? Len + 1 : Len, lpBaseName, nSize, NULL, NULL) == 0)

    {

        Len = 0;

    }


    LocalFree(BaseName);


    return Len;

}


/*

 * @implemented

 */

DWORD

WINAPI

GetModuleBaseNameW(HANDLE hProcess,

                   HMODULE hModule,

                   LPWSTR lpBaseName,

                   DWORD nSize)

{

    DWORD Len;

    LDR_DATA_TABLE_ENTRY Module;


    /* Get the matching module */

    if (!FindModule(hProcess, hModule, &Module))

    {

        return 0;

    }


    /* Get the maximum len we have/can write in given size */

    Len = Module.BaseDllName.Length + sizeof(UNICODE_NULL);

    if (nSize * sizeof(WCHAR) < Len)

    {

        Len = nSize * sizeof(WCHAR);

    }


    /* Read string */

    if (!ReadProcessMemory(hProcess, (&Module.BaseDllName)->Buffer, lpBaseName, Len, NULL))

    {

        return 0;

    }


    /* If we are at the end of the string, prepare to override to nullify string */

    if (Len == Module.BaseDllName.Length + sizeof(UNICODE_NULL))

    {

        Len -= sizeof(UNICODE_NULL);

    }


    /* Nullify at the end if needed */

    if (Len >= nSize * sizeof(WCHAR))

    {

        if (nSize)

        {

            ASSERT(nSize >= sizeof(UNICODE_NULL));

            lpBaseName[nSize - 1] = UNICODE_NULL;

        }

    }

    /* Otherwise, nullify at last written char */

    else

    {

        ASSERT(Len + sizeof(UNICODE_NULL) <= nSize * sizeof(WCHAR));

        lpBaseName[Len / sizeof(WCHAR)] = UNICODE_NULL;

    }


    return Len / sizeof(WCHAR);

}


/*

 * @implemented

 */

DWORD

WINAPI

GetModuleFileNameExA(HANDLE hProcess,

                     HMODULE hModule,

                     LPSTR lpFilename,

                     DWORD nSize)

{

    DWORD Len;

    PWSTR Filename;


    /* Allocate internal buffer for conversion */

    Filename = LocalAlloc(LMEM_FIXED, nSize * sizeof(WCHAR));

    if (Filename == NULL)

    {

        return 0;

    }


    /* Call W API */

    Len = GetModuleFileNameExW(hProcess, hModule, Filename, nSize);

    /* And convert output */

    if (WideCharToMultiByte(CP_ACP, 0, Filename, (Len < nSize) ? Len + 1 : Len, lpFilename, nSize, NULL, NULL) == 0)

    {

        Len = 0;

    }


    LocalFree(Filename);


    return Len;

}


/*

 * @implemented

 */

DWORD

WINAPI

GetModuleFileNameExW(HANDLE hProcess,

                     HMODULE hModule,

                     LPWSTR lpFilename,

                     DWORD nSize)

{

    DWORD Len;

    LDR_DATA_TABLE_ENTRY Module;


    /* Get the matching module */

    if (!FindModule(hProcess, hModule, &Module))

    {

        return 0;

    }


    /* Get the maximum len we have/can write in given size */

    Len = Module.FullDllName.Length + sizeof(UNICODE_NULL);

    if (nSize * sizeof(WCHAR) < Len)

    {

        Len = nSize * sizeof(WCHAR);

    }


    /* Read string */

    if (!ReadProcessMemory(hProcess, (&Module.FullDllName)->Buffer, lpFilename, Len, NULL))

    {

        return 0;

    }


    /* If we are at the end of the string, prepare to override to nullify string */

    if (Len == Module.FullDllName.Length + sizeof(UNICODE_NULL))

    {

        Len -= sizeof(UNICODE_NULL);

    }


    /* Nullify at the end if needed */

    if (Len >= nSize * sizeof(WCHAR))

    {

        if (nSize)

        {

            ASSERT(nSize >= sizeof(UNICODE_NULL));

            lpFilename[nSize - 1] = UNICODE_NULL;

        }

    }

    /* Otherwise, nullify at last written char */

    else

    {

        ASSERT(Len + sizeof(UNICODE_NULL) <= nSize * sizeof(WCHAR));

        lpFilename[Len / sizeof(WCHAR)] = UNICODE_NULL;

    }


    return Len / sizeof(WCHAR);

}


/*

 * @implemented

 */

BOOL

WINAPI

GetModuleInformation(HANDLE hProcess,

                     HMODULE hModule,

                     LPMODULEINFO lpmodinfo,

                     DWORD cb)

{

    MODULEINFO LocalInfo;

    LDR_DATA_TABLE_ENTRY Module;


    /* Check output size */

    if (cb < sizeof(MODULEINFO))

    {

        SetLastError(ERROR_INSUFFICIENT_BUFFER);

        return FALSE;

    }


    /* Get the matching module */

    if (!FindModule(hProcess, hModule, &Module))

    {

        return FALSE;

    }


    /* Get a local copy first, to check for valid pointer once */

    LocalInfo.lpBaseOfDll = hModule;

    LocalInfo.SizeOfImage = Module.SizeOfImage;

    LocalInfo.EntryPoint = Module.EntryPoint;


    /* Attempt to copy to output */

    _SEH2_TRY

    {

        memcpy(lpmodinfo, &LocalInfo, sizeof(LocalInfo));

    }

    _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)

    {

        SetLastError(RtlNtStatusToDosError(_SEH2_GetExceptionCode()));

        _SEH2_YIELD(return FALSE);

    }

    _SEH2_END;


    return TRUE;

}


/*

 * @implemented

 */

BOOL

WINAPI

InitializeProcessForWsWatch(HANDLE hProcess)

{

    NTSTATUS Status;


    /* Simply forward the call */

    Status = NtSetInformationProcess(hProcess,

                                     ProcessWorkingSetWatch,

                                     NULL,

                                     0);

    /* In case the function returns this, MS considers the call as a success */

    if (NT_SUCCESS(Status) || Status == STATUS_PORT_ALREADY_SET || Status == STATUS_ACCESS_DENIED)

    {

        return TRUE;

    }


    SetLastError(RtlNtStatusToDosError(Status));

    return FALSE;

}


/*

 * @implemented

 */

BOOL

WINAPI

GetWsChanges(HANDLE hProcess,

             PPSAPI_WS_WATCH_INFORMATION lpWatchInfo,

             DWORD cb)

{

    NTSTATUS Status;


    /* Simply forward the call */

    Status = NtQueryInformationProcess(hProcess,

                                       ProcessWorkingSetWatch,

                                       lpWatchInfo,

                                       cb,

                                       NULL);

    if(!NT_SUCCESS(Status))

    {

        SetLastError(RtlNtStatusToDosError(Status));

        return FALSE;

    }


    return TRUE;

}


/*

 * @implemented

 */

DWORD

WINAPI

GetProcessImageFileNameW(HANDLE hProcess,

                         LPWSTR lpImageFileName,

                         DWORD nSize)

{

    PUNICODE_STRING ImageFileName;

    SIZE_T BufferSize;

    NTSTATUS Status;

    DWORD Len;


    /* Allocate string big enough to hold name */

    BufferSize = sizeof(UNICODE_STRING) + (nSize * sizeof(WCHAR));

    ImageFileName = LocalAlloc(LMEM_FIXED, BufferSize);

    if (ImageFileName == NULL)

    {

        return 0;

    }


    /* Query name */

    Status = NtQueryInformationProcess(hProcess,

                                       ProcessImageFileName,

                                       ImageFileName,

                                       BufferSize,

                                       NULL);

    /* Len mismatch => buffer too small */

    if (Status == STATUS_INFO_LENGTH_MISMATCH)

    {

        Status = STATUS_BUFFER_TOO_SMALL;

    }

    if (!NT_SUCCESS(Status))

    {

        SetLastError(RtlNtStatusToDosError(Status));

        LocalFree(ImageFileName);

        return 0;

    }


    /* Copy name and null-terminate if possible */

    memcpy(lpImageFileName, ImageFileName->Buffer, ImageFileName->Length);

    Len = ImageFileName->Length / sizeof(WCHAR);

    if (Len < nSize)

    {

        lpImageFileName[Len] = UNICODE_NULL;

    }


    LocalFree(ImageFileName);

    return Len;

}


/*

 * @implemented

 */

DWORD

WINAPI

GetProcessImageFileNameA(HANDLE hProcess,

                         LPSTR lpImageFileName,

                         DWORD nSize)

{

    PUNICODE_STRING ImageFileName;

    SIZE_T BufferSize;

    NTSTATUS Status;

    DWORD Len;


    /* Allocate string big enough to hold name */

    BufferSize = sizeof(UNICODE_STRING) + (nSize * sizeof(WCHAR));

    ImageFileName = LocalAlloc(LMEM_FIXED, BufferSize);

    if (ImageFileName == NULL)

    {

        return 0;

    }


    /* Query name */

    Status = NtQueryInformationProcess(hProcess,

                                       ProcessImageFileName,

                                       ImageFileName,

                                       BufferSize,

                                       NULL);

    /* Len mismatch => buffer too small */

    if (Status == STATUS_INFO_LENGTH_MISMATCH)

    {

        Status = STATUS_BUFFER_TOO_SMALL;

    }

    if (!NT_SUCCESS(Status))

    {

        SetLastError(RtlNtStatusToDosError(Status));

        LocalFree(ImageFileName);

        return 0;

    }


    /* Copy name */

    Len = WideCharToMultiByte(CP_ACP, 0, ImageFileName->Buffer,

                              ImageFileName->Length, lpImageFileName, nSize, NULL, NULL);

    /* If conversion was successful, don't return len with added \0 */

    if (Len != 0)

    {

        Len -= sizeof(ANSI_NULL);

    }


    LocalFree(ImageFileName);

    return Len;

}


/*

 * @implemented

 */

BOOL

WINAPI

EnumPageFilesA(PENUM_PAGE_FILE_CALLBACKA pCallbackRoutine,

               LPVOID lpContext)

{

    BOOL Ret;

    INTERNAL_ENUM_PAGE_FILES_CONTEXT Context;


    Context.dwErrCode = ERROR_SUCCESS;

    Context.lpContext = lpContext;

    Context.pCallbackRoutine = pCallbackRoutine;


    /* Call W with our own callback for W -> A conversions */

    Ret = EnumPageFilesW(CallBackConvertToAscii, &Context);

    /* If we succeed but we have error code, fail and set error */

    if (Ret && Context.dwErrCode != ERROR_SUCCESS)

    {

        Ret = FALSE;

        SetLastError(Context.dwErrCode);

    }


    return Ret;

}


/*

 * @implemented

 */

BOOL

WINAPI

EnumPageFilesW(PENUM_PAGE_FILE_CALLBACKW pCallbackRoutine,

               LPVOID lpContext)

{

    PWSTR Colon;

    NTSTATUS Status;

    DWORD Size = INIT_MEMORY_SIZE, Needed;

    ENUM_PAGE_FILE_INFORMATION Information;

    PSYSTEM_PAGEFILE_INFORMATION PageFileInfoArray, PageFileInfo;


    /* First loop till we have all the information about page files */

    do

    {

        PageFileInfoArray = LocalAlloc(LMEM_FIXED, Size);

        if (PageFileInfoArray == NULL)

        {

            SetLastError(RtlNtStatusToDosError(STATUS_INSUFFICIENT_RESOURCES));

            return FALSE;

        }


        Status = NtQuerySystemInformation(SystemPageFileInformation, PageFileInfoArray, Size, &Needed);

        if (NT_SUCCESS(Status))

        {

            break;

        }


        LocalFree(PageFileInfoArray);


        /* In case we have unexpected status, quit */

        if (Status != STATUS_INFO_LENGTH_MISMATCH)

        {

            SetLastError(RtlNtStatusToDosError(Status));

            return FALSE;

        }


        /* If needed size is smaller than actual size, guess it's something to add to our current size */

        if (Needed <= Size)

        {

            Size += Needed;

        }

        /* Otherwise, take it as size to allocate */

        else

        {

            Size = Needed;

        }

    }

    while (TRUE);


    /* Start browsing all our entries */

    PageFileInfo = PageFileInfoArray;

    do

    {

        /* Ensure we really have an entry */

        if (Needed < sizeof(SYSTEM_PAGEFILE_INFORMATION))

        {

            break;

        }


        /* Prepare structure to hand to the user */

        Information.Reserved = 0;

        Information.cb = sizeof(Information);

        Information.TotalSize = PageFileInfo->TotalSize;

        Information.TotalInUse = PageFileInfo->TotalInUse;

        Information.PeakUsage = PageFileInfo->PeakUsage;


        /* Search for colon */

        Colon = wcschr(PageFileInfo->PageFileName.Buffer, L':');

        /* If it's found and not at the begin of the string */

        if (Colon != 0 && Colon != PageFileInfo->PageFileName.Buffer)

        {

            /* We can call the user callback routine with the colon */

            --Colon;

            pCallbackRoutine(lpContext, &Information, Colon);

        }


        /* If no next entry, then, it's over */

        if (PageFileInfo->NextEntryOffset == 0 || PageFileInfo->NextEntryOffset > Needed)

        {

            break;

        }


        /* Jump to next entry while keeping accurate bytes left count */

        Needed -= PageFileInfo->NextEntryOffset;

        PageFileInfo = (PSYSTEM_PAGEFILE_INFORMATION)((ULONG_PTR)PageFileInfo + PageFileInfo->NextEntryOffset);

    }

    while (TRUE);


    LocalFree(PageFileInfoArray);

    return TRUE;

}


/*

 * @implemented

 */

BOOL

WINAPI

GetPerformanceInfo(PPERFORMANCE_INFORMATION pPerformanceInformation,

                   DWORD cb)

{

    NTSTATUS Status;

    SYSTEM_BASIC_INFORMATION SystemBasicInfo;

    SYSTEM_PERFORMANCE_INFORMATION SystemPerfInfo;

    SYSTEM_FILECACHE_INFORMATION SystemFileCacheInfo;

    PSYSTEM_PROCESS_INFORMATION ProcInfoArray, SystemProcInfo;

    DWORD Size = INIT_MEMORY_SIZE, Needed, ProcCount, ThreadsCount, HandleCount;


    /* Validate output buffer */

    if (cb < sizeof(PERFORMANCE_INFORMATION))

    {

        SetLastError(RtlNtStatusToDosError(STATUS_INFO_LENGTH_MISMATCH));

        return FALSE;

    }


    /* First, gather as many information about the system as possible */

    Status = NtQuerySystemInformation(SystemBasicInformation,

                                      &SystemBasicInfo,

                                      sizeof(SystemBasicInfo),

                                      NULL);

    if (!NT_SUCCESS(Status))

    {

        SetLastError(RtlNtStatusToDosError(Status));

        return FALSE;

    }


    Status = NtQuerySystemInformation(SystemPerformanceInformation,

                                      &SystemPerfInfo,

                                      sizeof(SystemPerfInfo),

                                      NULL);

    if (!NT_SUCCESS(Status))

    {

        SetLastError(RtlNtStatusToDosError(Status));

        return FALSE;

    }


    Status = NtQuerySystemInformation(SystemFileCacheInformation,

                                      &SystemFileCacheInfo,

                                      sizeof(SystemFileCacheInfo),

                                      NULL);

    if (!NT_SUCCESS(Status))

    {

        SetLastError(RtlNtStatusToDosError(Status));

        return FALSE;

    }


    /* Then loop till we have all the information about processes */

    do

    {

        ProcInfoArray = LocalAlloc(LMEM_FIXED, Size);

        if (ProcInfoArray == NULL)

        {

            SetLastError(RtlNtStatusToDosError(STATUS_INSUFFICIENT_RESOURCES));

            return FALSE;

        }


        Status = NtQuerySystemInformation(SystemProcessInformation,

                                          ProcInfoArray,

                                          Size,

                                          &Needed);

        if (NT_SUCCESS(Status))

        {

            break;

        }


        LocalFree(ProcInfoArray);


        /* In case we have unexpected status, quit */

        if (Status != STATUS_INFO_LENGTH_MISMATCH)

        {

            SetLastError(RtlNtStatusToDosError(Status));

            return FALSE;

        }


        /* If needed size is smaller than actual size, guess it's something to add to our current size */

        if (Needed <= Size)

        {

            Size += Needed;

        }

        /* Otherwise, take it as size to allocate */

        else

        {

            Size = Needed;

        }

    } while (TRUE);


    /* Start browsing all our entries */

    ProcCount = 0;

    HandleCount = 0;

    ThreadsCount = 0;

    SystemProcInfo = ProcInfoArray;

    do

    {

        /* Ensure we really have an entry */

        if (Needed < sizeof(SYSTEM_PROCESS_INFORMATION))

        {

            break;

        }


        /* Sum procs, threads and handles */

        ++ProcCount;

        ThreadsCount += SystemProcInfo->NumberOfThreads;

        HandleCount += SystemProcInfo->HandleCount;


        /* If no next entry, then, it's over */

        if (SystemProcInfo->NextEntryOffset == 0 || SystemProcInfo->NextEntryOffset > Needed)

        {

            break;

        }


        /* Jump to next entry while keeping accurate bytes left count */

        Needed -= SystemProcInfo->NextEntryOffset;

        SystemProcInfo = (PSYSTEM_PROCESS_INFORMATION)((ULONG_PTR)SystemProcInfo + SystemProcInfo->NextEntryOffset);

    }

    while (TRUE);


    LocalFree(ProcInfoArray);


    /* Output data */

    pPerformanceInformation->CommitTotal = SystemPerfInfo.CommittedPages;

    pPerformanceInformation->CommitLimit = SystemPerfInfo.CommitLimit;

    pPerformanceInformation->CommitPeak = SystemPerfInfo.PeakCommitment;

    pPerformanceInformation->PhysicalTotal = SystemBasicInfo.NumberOfPhysicalPages;

    pPerformanceInformation->PhysicalAvailable = SystemPerfInfo.AvailablePages;

    pPerformanceInformation->SystemCache = SystemFileCacheInfo.CurrentSizeIncludingTransitionInPages;

    pPerformanceInformation->KernelNonpaged = SystemPerfInfo.NonPagedPoolPages;

    pPerformanceInformation->PageSize = SystemBasicInfo.PageSize;

    pPerformanceInformation->cb = sizeof(PERFORMANCE_INFORMATION);

    pPerformanceInformation->KernelTotal = SystemPerfInfo.PagedPoolPages + SystemPerfInfo.NonPagedPoolPages;

    pPerformanceInformation->KernelPaged = SystemPerfInfo.PagedPoolPages;

    pPerformanceInformation->HandleCount = HandleCount;

    pPerformanceInformation->ProcessCount = ProcCount;

    pPerformanceInformation->ThreadCount = ThreadsCount;


    return TRUE;

}


/*

 * @implemented

 */

BOOL

WINAPI

GetProcessMemoryInfo(HANDLE Process,

                     PPROCESS_MEMORY_COUNTERS ppsmemCounters,

                     DWORD cb)

{

    NTSTATUS Status;

    VM_COUNTERS_EX Counters;


    /* Validate output size

     * It can be either PROCESS_MEMORY_COUNTERS or PROCESS_MEMORY_COUNTERS_EX

     */

    if (cb < sizeof(PROCESS_MEMORY_COUNTERS))

    {

        SetLastError(ERROR_INSUFFICIENT_BUFFER);

        return FALSE;

    }


    _SEH2_TRY

    {

        ppsmemCounters->PeakPagefileUsage = 0;


        /* Query counters */

        Status = NtQueryInformationProcess(Process,

                                           ProcessVmCounters,

                                           &Counters,

                                           sizeof(Counters),

                                           NULL);

        if (!NT_SUCCESS(Status))

        {

            SetLastError(RtlNtStatusToDosError(Status));

            _SEH2_YIELD(return FALSE);

        }


        /* Properly set cb, according to what we received */

        if (cb >= sizeof(PROCESS_MEMORY_COUNTERS_EX))

        {

            ppsmemCounters->cb = sizeof(PROCESS_MEMORY_COUNTERS_EX);

        }

        else

        {

            ppsmemCounters->cb = sizeof(PROCESS_MEMORY_COUNTERS);

        }


        /* Output data */

        ppsmemCounters->PageFaultCount = Counters.PageFaultCount;

        ppsmemCounters->PeakWorkingSetSize = Counters.PeakWorkingSetSize;

        ppsmemCounters->WorkingSetSize = Counters.WorkingSetSize;

        ppsmemCounters->QuotaPeakPagedPoolUsage = Counters.QuotaPeakPagedPoolUsage;

        ppsmemCounters->QuotaPagedPoolUsage = Counters.QuotaPagedPoolUsage;

        ppsmemCounters->QuotaPeakNonPagedPoolUsage = Counters.QuotaPeakNonPagedPoolUsage;

        ppsmemCounters->QuotaNonPagedPoolUsage = Counters.QuotaNonPagedPoolUsage;

        ppsmemCounters->PagefileUsage = Counters.PagefileUsage;

        ppsmemCounters->PeakPagefileUsage = Counters.PeakPagefileUsage;

        /* And if needed, additional field for _EX version */

        if (cb >= sizeof(PROCESS_MEMORY_COUNTERS_EX))

        {

            ((PPROCESS_MEMORY_COUNTERS_EX)ppsmemCounters)->PrivateUsage = Counters.PrivateUsage;

        }

    }

    _SEH2_EXCEPT(EXCEPTION_EXECUTE_HANDLER)

    {

        SetLastError(RtlNtStatusToDosError(_SEH2_GetExceptionCode()));

        _SEH2_YIELD(return FALSE);

    }

    _SEH2_END;


    return TRUE;

}


/*

 * @implemented

 */

BOOL

WINAPI

QueryWorkingSet(HANDLE hProcess,

                PVOID pv,

                DWORD cb)

{

    NTSTATUS Status;


    /* Simply forward the call */

    Status = NtQueryVirtualMemory(hProcess,

                                  NULL,

                                  MemoryWorkingSetList,

                                  pv,

                                  cb,

                                  NULL);

    if (!NT_SUCCESS(Status))

    {

        SetLastError(RtlNtStatusToDosError(Status));

        return FALSE;

    }


    return TRUE;

}


/*

 * @implemented

 */

BOOL

WINAPI

QueryWorkingSetEx(IN HANDLE hProcess,

                  IN OUT PVOID pv,

                  IN DWORD cb)

{

    NTSTATUS Status;


    /* Simply forward the call */

    Status = NtQueryVirtualMemory(hProcess,

                                  NULL,

                                  MemoryWorkingSetExList,

                                  pv,

                                  cb,

                                  NULL);

    if (!NT_SUCCESS(Status))

    {

        SetLastError(RtlNtStatusToDosError(Status));

        return FALSE;

    }


    return TRUE;

}


/* EOF */

STATUS_PRIVILEGE_NOT_HELD
#define STATUS_PRIVILEGE_NOT_HELD
Definition: DriverTester.h:9

strlen
ACPI_SIZE strlen(const char *String)
Definition: utclib.c:269

Colon
@ Colon
Definition: asmpp.cpp:43

NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26

HandleToUlong
#define HandleToUlong(h)
Definition: basetsd.h:79

ProcessBasicInformation
@ ProcessBasicInformation
Definition: cicbase.cpp:63

ProcessImageFileName
@ ProcessImageFileName
Definition: cicbase.cpp:66

ERROR_INSUFFICIENT_BUFFER
#define ERROR_INSUFFICIENT_BUFFER
Definition: dderror.h:10

Len
#define Len
Definition: deflate.h:82

BufferSize
#define BufferSize
Definition: mmc.h:75

ERROR_SUCCESS
#define ERROR_SUCCESS
Definition: deptool.c:10

NULL
#define NULL
Definition: types.h:112

TRUE
#define TRUE
Definition: types.h:120

FALSE
#define FALSE
Definition: types.h:117

NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:33

hModule
HMODULE hModule
Definition: animate.c:44

wcschr
#define wcschr
Definition: compat.h:17

ReadProcessMemory
#define ReadProcessMemory(a, b, c, d, e)
Definition: compat.h:758

GetModuleFileNameExW
#define GetModuleFileNameExW(w, x, y, z)
Definition: compat.h:922

CP_ACP
#define CP_ACP
Definition: compat.h:109

SetLastError
#define SetLastError(x)
Definition: compat.h:752

MAX_PATH
#define MAX_PATH
Definition: compat.h:34

ERROR_INVALID_HANDLE
#define ERROR_INVALID_HANDLE
Definition: compat.h:98

CALLBACK
#define CALLBACK
Definition: compat.h:35

WideCharToMultiByte
#define WideCharToMultiByte
Definition: compat.h:111

MultiByteToWideChar
#define MultiByteToWideChar
Definition: compat.h:110

GetSystemInfo
VOID WINAPI GetSystemInfo(IN LPSYSTEM_INFO lpSystemInfo)
Definition: sysinfo.c:143

GetModuleFileNameExA
DWORD WINAPI GetModuleFileNameExA(HANDLE hProcess, HMODULE hModule, LPSTR lpFilename, DWORD nSize)
Definition: psapi.c:911

GetMappedFileNameW
DWORD WINAPI GetMappedFileNameW(HANDLE hProcess, LPVOID lpv, LPWSTR lpFilename, DWORD nSize)
Definition: psapi.c:760

FindModule
static BOOL NTAPI FindModule(IN HANDLE hProcess, IN HMODULE hModule OPTIONAL, OUT PLDR_DATA_TABLE_ENTRY Module)
Definition: psapi.c:115

EnumPageFilesW
BOOL WINAPI EnumPageFilesW(PENUM_PAGE_FILE_CALLBACKW pCallbackRoutine, LPVOID lpContext)
Definition: psapi.c:1237

QueryWorkingSet
BOOL WINAPI QueryWorkingSet(HANDLE hProcess, PVOID pv, DWORD cb)
Definition: psapi.c:1552

GetProcessMemoryInfo
BOOL WINAPI GetProcessMemoryInfo(HANDLE Process, PPROCESS_MEMORY_COUNTERS ppsmemCounters, DWORD cb)
Definition: psapi.c:1478

EmptyWorkingSet
BOOL WINAPI EmptyWorkingSet(HANDLE hProcess)
Definition: psapi.c:252

FindDeviceDriver
static BOOL NTAPI FindDeviceDriver(IN PVOID ImageBase, OUT PRTL_PROCESS_MODULE_INFORMATION MatchingModule)
Definition: psapi.c:42

GetWsChanges
BOOL WINAPI GetWsChanges(HANDLE hProcess, PPSAPI_WS_WATCH_INFORMATION lpWatchInfo, DWORD cb)
Definition: psapi.c:1075

GetDeviceDriverFileNameW
DWORD WINAPI GetDeviceDriverFileNameW(LPVOID ImageBase, LPWSTR lpFilename, DWORD nSize)
Definition: psapi.c:685

GetModuleBaseNameA
DWORD WINAPI GetModuleBaseNameA(HANDLE hProcess, HMODULE hModule, LPSTR lpBaseName, DWORD nSize)
Definition: psapi.c:819

EnumDeviceDrivers
BOOL WINAPI EnumDeviceDrivers(LPVOID *lpImageBase, DWORD cb, LPDWORD lpcbNeeded)
Definition: psapi.c:297

EnumProcessModules
BOOL WINAPI EnumProcessModules(HANDLE hProcess, HMODULE *lphModule, DWORD cb, LPDWORD lpcbNeeded)
Definition: psapi.c:465

InitializeProcessForWsWatch
BOOL WINAPI InitializeProcessForWsWatch(HANDLE hProcess)
Definition: psapi.c:1050

MAX_MODULES
#define MAX_MODULES
Definition: psapi.c:33

CallBackConvertToAscii
static BOOL CALLBACK CallBackConvertToAscii(LPVOID pContext, PENUM_PAGE_FILE_INFORMATION pPageFileInfo, LPCWSTR lpFilename)
Definition: psapi.c:213

GetPerformanceInfo
BOOL WINAPI GetPerformanceInfo(PPERFORMANCE_INFORMATION pPerformanceInformation, DWORD cb)
Definition: psapi.c:1333

GetDeviceDriverBaseNameA
DWORD WINAPI GetDeviceDriverBaseNameA(LPVOID ImageBase, LPSTR lpBaseName, DWORD nSize)
Definition: psapi.c:568

GetDeviceDriverBaseNameW
DWORD WINAPI GetDeviceDriverBaseNameW(LPVOID ImageBase, LPWSTR lpBaseName, DWORD nSize)
Definition: psapi.c:646

GetProcessImageFileNameW
DWORD WINAPI GetProcessImageFileNameW(HANDLE hProcess, LPWSTR lpImageFileName, DWORD nSize)
Definition: psapi.c:1102

GetProcessImageFileNameA
DWORD WINAPI GetProcessImageFileNameA(HANDLE hProcess, LPSTR lpImageFileName, DWORD nSize)
Definition: psapi.c:1155

INTERNAL_ENUM_PAGE_FILES_CONTEXT
struct _INTERNAL_ENUM_PAGE_FILES_CONTEXT INTERNAL_ENUM_PAGE_FILES_CONTEXT

GetDeviceDriverFileNameA
DWORD WINAPI GetDeviceDriverFileNameA(LPVOID ImageBase, LPSTR lpFilename, DWORD nSize)
Definition: psapi.c:607

GetMappedFileNameA
DWORD WINAPI GetMappedFileNameA(HANDLE hProcess, LPVOID lpv, LPSTR lpFilename, DWORD nSize)
Definition: psapi.c:724

PINTERNAL_ENUM_PAGE_FILES_CONTEXT
struct _INTERNAL_ENUM_PAGE_FILES_CONTEXT * PINTERNAL_ENUM_PAGE_FILES_CONTEXT

EnumProcesses
BOOL WINAPI EnumProcesses(DWORD *lpidProcess, DWORD cb, LPDWORD lpcbNeeded)
Definition: psapi.c:381

GetModuleInformation
BOOL WINAPI GetModuleInformation(HANDLE hProcess, HMODULE hModule, LPMODULEINFO lpmodinfo, DWORD cb)
Definition: psapi.c:1003

GetModuleBaseNameW
DWORD WINAPI GetModuleBaseNameW(HANDLE hProcess, HMODULE hModule, LPWSTR lpBaseName, DWORD nSize)
Definition: psapi.c:853

QueryWorkingSetEx
BOOL WINAPI QueryWorkingSetEx(IN HANDLE hProcess, IN OUT PVOID pv, IN DWORD cb)
Definition: psapi.c:1579

INIT_MEMORY_SIZE
#define INIT_MEMORY_SIZE
Definition: psapi.c:34

EnumPageFilesA
BOOL WINAPI EnumPageFilesA(PENUM_PAGE_FILE_CALLBACKA pCallbackRoutine, LPVOID lpContext)
Definition: psapi.c:1209

L
#define L(x)
Definition: resources.c:13

UNICODE_STRING
struct _UNICODE_STRING UNICODE_STRING

Filename
IN PVCB IN PBCB OUT PDIRENT IN USHORT IN POEM_STRING Filename
Definition: fatprocs.h:940

FileName
struct _FileName FileName
Definition: fatprocs.h:897

BOOL
unsigned int BOOL
Definition: ntddk_ex.h:94

DWORD
unsigned long DWORD
Definition: ntddk_ex.h:95

SystemModuleInformation
@ SystemModuleInformation
Definition: ntddk_ex.h:22

SystemBasicInformation
@ SystemBasicInformation
Definition: ntddk_ex.h:11

SystemFileCacheInformation
@ SystemFileCacheInformation
Definition: ntddk_ex.h:32

SystemProcessInformation
@ SystemProcessInformation
Definition: ntddk_ex.h:16

SystemPageFileInformation
@ SystemPageFileInformation
Definition: ntddk_ex.h:29

NewSize
_Must_inspect_result_ _In_ USHORT NewSize
Definition: fltkernel.h:975

Process
_Must_inspect_result_ _In_ PLARGE_INTEGER _In_ PLARGE_INTEGER _In_ ULONG _In_ PFILE_OBJECT _In_ PVOID Process
Definition: fsrtlfuncs.h:223

Status
Status
Definition: gdiplustypes.h:25

i
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248

LocalAlloc
HLOCAL NTAPI LocalAlloc(UINT uFlags, SIZE_T dwBytes)
Definition: heapmem.c:1390

LocalFree
HLOCAL NTAPI LocalFree(HLOCAL hMem)
Definition: heapmem.c:1594

wcslen
_CRTIMP size_t __cdecl wcslen(_In_z_ const wchar_t *_Str)

ProcessVmCounters
@ ProcessVmCounters
Definition: winternl.h:1885

ProcessQuotaLimits
@ ProcessQuotaLimits
Definition: winternl.h:1883

ProcessWorkingSetWatch
@ ProcessWorkingSetWatch
Definition: winternl.h:1897

RtlNtStatusToDosError
NTSYSAPI ULONG WINAPI RtlNtStatusToDosError(NTSTATUS)

EXCEPTION_EXECUTE_HANDLER
#define EXCEPTION_EXECUTE_HANDLER
Definition: excpt.h:90

void
Definition: nsiface.idl:2307

hProcess
_In_ BOOL _In_ HANDLE hProcess
Definition: mapping.h:71

SystemPerformanceInformation
#define SystemPerformanceInformation
Definition: memtest.h:87

memcpy
#define memcpy(s1, s2, n)
Definition: mkisofs.h:878

ASSERT
#define ASSERT(a)
Definition: mode.c:44

cb
static HMODULE MODULEINFO DWORD cb
Definition: module.c:33

exfuncs.h

PSYSTEM_PROCESS_INFORMATION
struct _SYSTEM_PROCESS_INFORMATION * PSYSTEM_PROCESS_INFORMATION

PSYSTEM_PAGEFILE_INFORMATION
struct _SYSTEM_PAGEFILE_INFORMATION * PSYSTEM_PAGEFILE_INFORMATION

mmfuncs.h

MemoryWorkingSetExList
@ MemoryWorkingSetExList
Definition: mmtypes.h:187

MemorySectionName
@ MemorySectionName
Definition: mmtypes.h:185

MemoryWorkingSetList
@ MemoryWorkingSetList
Definition: mmtypes.h:184

psfuncs.h

rtlfuncs.h

RTL_PROCESS_MODULES
struct _RTL_PROCESS_MODULES RTL_PROCESS_MODULES

RTL_PROCESS_MODULE_INFORMATION
struct _RTL_PROCESS_MODULE_INFORMATION RTL_PROCESS_MODULE_INFORMATION

Count
int Count
Definition: noreturn.cpp:7

DWORD
#define DWORD
Definition: nt_native.h:44

LPVOID
#define LPVOID
Definition: nt_native.h:45

UNICODE_NULL
#define UNICODE_NULL

ANSI_NULL
#define ANSI_NULL

NtQueryVirtualMemory
NTSTATUS NTAPI NtQueryVirtualMemory(IN HANDLE ProcessHandle, IN PVOID BaseAddress, IN MEMORY_INFORMATION_CLASS MemoryInformationClass, OUT PVOID MemoryInformation, IN SIZE_T MemoryInformationLength, OUT PSIZE_T ReturnLength)
Definition: virtual.c:4369

NtSetInformationProcess
NTSTATUS NTAPI NtSetInformationProcess(IN HANDLE ProcessHandle, IN PROCESSINFOCLASS ProcessInformationClass, IN PVOID ProcessInformation, IN ULONG ProcessInformationLength)
Definition: query.c:1231

NtQueryInformationProcess
NTSTATUS NTAPI NtQueryInformationProcess(_In_ HANDLE ProcessHandle, _In_ PROCESSINFOCLASS ProcessInformationClass, _Out_ PVOID ProcessInformation, _In_ ULONG ProcessInformationLength, _Out_opt_ PULONG ReturnLength)
Definition: query.c:59

STATUS_PORT_ALREADY_SET
#define STATUS_PORT_ALREADY_SET
Definition: ntstatus.h:308

STATUS_PARTIAL_COPY
#define STATUS_PARTIAL_COPY
Definition: ntstatus.h:193

SystemBasicInfo
SYSTEM_BASIC_INFORMATION SystemBasicInfo
Definition: perfdata.c:30

SystemPerfInfo
SYSTEM_PERFORMANCE_INFORMATION SystemPerfInfo
Definition: perfdata.c:29

psapi.h

PROCESS_MEMORY_COUNTERS_EX
struct _PROCESS_MEMORY_COUNTERS_EX PROCESS_MEMORY_COUNTERS_EX

PENUM_PAGE_FILE_CALLBACKW
BOOL(CALLBACK * PENUM_PAGE_FILE_CALLBACKW)(LPVOID, PENUM_PAGE_FILE_INFORMATION, LPCWSTR)
Definition: psapi.h:90

PPROCESS_MEMORY_COUNTERS_EX
struct _PROCESS_MEMORY_COUNTERS_EX * PPROCESS_MEMORY_COUNTERS_EX

PERFORMANCE_INFORMATION
struct _PERFORMANCE_INFORMATION PERFORMANCE_INFORMATION

PROCESS_MEMORY_COUNTERS
struct _PROCESS_MEMORY_COUNTERS PROCESS_MEMORY_COUNTERS

PENUM_PAGE_FILE_CALLBACKA
BOOL(CALLBACK * PENUM_PAGE_FILE_CALLBACKA)(LPVOID, PENUM_PAGE_FILE_INFORMATION, LPCSTR)
Definition: psapi.h:89

pseh2.h

_SEH2_GetExceptionCode
#define _SEH2_GetExceptionCode()
Definition: pseh2_64.h:181

_SEH2_EXCEPT
#define _SEH2_EXCEPT(...)
Definition: pseh2_64.h:82

_SEH2_END
#define _SEH2_END
Definition: pseh2_64.h:171

_SEH2_TRY
#define _SEH2_TRY
Definition: pseh2_64.h:71

_SEH2_YIELD
#define _SEH2_YIELD(__stmt)
Definition: pseh2_64.h:184

STATUS_BUFFER_TOO_SMALL
#define STATUS_BUFFER_TOO_SMALL
Definition: shellext.h:69

DPRINT
#define DPRINT
Definition: sndvol32.h:73

OPTIONAL
PULONG MinorVersion OPTIONAL
Definition: CrossNt.h:68

NtQuerySystemInformation
NTSYSAPI NTSTATUS NTAPI NtQuerySystemInformation(IN SYSTEM_INFORMATION_CLASS SystemInfoClass, OUT PVOID SystemInfoBuffer, IN ULONG SystemInfoBufferSize, OUT PULONG BytesReturned OPTIONAL)

Context
Definition: compobj.c:4795

MEMORY_SECTION_NAME
Definition: mmtypes.h:325

_ENUM_PAGE_FILE_INFORMATION
Definition: psapi.h:81

_FileName
Definition: filecomp.c:348

_INTERNAL_ENUM_PAGE_FILES_CONTEXT
Definition: psapi.c:203

_INTERNAL_ENUM_PAGE_FILES_CONTEXT::lpContext
LPVOID lpContext
Definition: psapi.c:204

_INTERNAL_ENUM_PAGE_FILES_CONTEXT::pCallbackRoutine
PENUM_PAGE_FILE_CALLBACKA pCallbackRoutine
Definition: psapi.c:205

_INTERNAL_ENUM_PAGE_FILES_CONTEXT::dwErrCode
DWORD dwErrCode
Definition: psapi.c:206

_LDR_DATA_TABLE_ENTRY
Definition: btrfs_drv.h:1876

_LDR_DATA_TABLE_ENTRY::EntryPoint
PVOID EntryPoint
Definition: ntddk_ex.h:203

_LDR_DATA_TABLE_ENTRY::FullDllName
UNICODE_STRING FullDllName
Definition: btrfs_drv.h:1882

_LDR_DATA_TABLE_ENTRY::SizeOfImage
ULONG SizeOfImage
Definition: ldrtypes.h:147

_LDR_DATA_TABLE_ENTRY::InLoadOrderLinks
LIST_ENTRY InLoadOrderLinks
Definition: ldrtypes.h:142

_LDR_DATA_TABLE_ENTRY::DllBase
PVOID DllBase
Definition: btrfs_drv.h:1880

_LDR_DATA_TABLE_ENTRY::BaseDllName
UNICODE_STRING BaseDllName
Definition: ldrtypes.h:149

_LIST_ENTRY
Definition: typedefs.h:120

_LIST_ENTRY::Flink
struct _LIST_ENTRY * Flink
Definition: typedefs.h:121

_MODULEINFO
Definition: compat.h:917

_MODULEINFO::SizeOfImage
DWORD SizeOfImage
Definition: compat.h:919

_MODULEINFO::lpBaseOfDll
LPVOID lpBaseOfDll
Definition: compat.h:918

_MODULEINFO::EntryPoint
LPVOID EntryPoint
Definition: compat.h:920

_PEB_LDR_DATA
Definition: btrfs_drv.h:1892

_PEB_LDR_DATA::InMemoryOrderModuleList
LIST_ENTRY InMemoryOrderModuleList
Definition: btrfs_drv.h:1895

_PEB_LDR_DATA::InLoadOrderModuleList
LIST_ENTRY InLoadOrderModuleList
Definition: ldrtypes.h:124

_PEB::Ldr
PPEB_LDR_DATA Ldr
Definition: btrfs_drv.h:1912

_PEB::ImageBaseAddress
PVOID ImageBaseAddress
Definition: ntddk_ex.h:245

_PERFORMANCE_INFORMATION
Definition: psapi.h:64

_PERFORMANCE_INFORMATION::KernelNonpaged
SIZE_T KernelNonpaged
Definition: psapi.h:74

_PERFORMANCE_INFORMATION::PhysicalAvailable
SIZE_T PhysicalAvailable
Definition: psapi.h:70

_PERFORMANCE_INFORMATION::CommitPeak
SIZE_T CommitPeak
Definition: psapi.h:68

_PERFORMANCE_INFORMATION::HandleCount
DWORD HandleCount
Definition: psapi.h:76

_PERFORMANCE_INFORMATION::KernelTotal
SIZE_T KernelTotal
Definition: psapi.h:72

_PERFORMANCE_INFORMATION::cb
DWORD cb
Definition: psapi.h:65

_PERFORMANCE_INFORMATION::ThreadCount
DWORD ThreadCount
Definition: psapi.h:78

_PERFORMANCE_INFORMATION::PhysicalTotal
SIZE_T PhysicalTotal
Definition: psapi.h:69

_PERFORMANCE_INFORMATION::PageSize
SIZE_T PageSize
Definition: psapi.h:75

_PERFORMANCE_INFORMATION::CommitLimit
SIZE_T CommitLimit
Definition: psapi.h:67

_PERFORMANCE_INFORMATION::KernelPaged
SIZE_T KernelPaged
Definition: psapi.h:73

_PERFORMANCE_INFORMATION::CommitTotal
SIZE_T CommitTotal
Definition: psapi.h:66

_PERFORMANCE_INFORMATION::ProcessCount
DWORD ProcessCount
Definition: psapi.h:77

_PERFORMANCE_INFORMATION::SystemCache
SIZE_T SystemCache
Definition: psapi.h:71

_PROCESS_BASIC_INFORMATION
Definition: winternl.h:402

_PROCESS_BASIC_INFORMATION::PebBaseAddress
PPEB PebBaseAddress
Definition: winternl.h:404

_PROCESS_MEMORY_COUNTERS_EX
Definition: psapi.h:50

_PROCESS_MEMORY_COUNTERS
Definition: psapi.h:37

_PROCESS_MEMORY_COUNTERS::PeakPagefileUsage
SIZE_T PeakPagefileUsage
Definition: psapi.h:47

_PROCESS_MEMORY_COUNTERS::QuotaNonPagedPoolUsage
SIZE_T QuotaNonPagedPoolUsage
Definition: psapi.h:45

_PROCESS_MEMORY_COUNTERS::PageFaultCount
DWORD PageFaultCount
Definition: psapi.h:39

_PROCESS_MEMORY_COUNTERS::PagefileUsage
SIZE_T PagefileUsage
Definition: psapi.h:46

_PROCESS_MEMORY_COUNTERS::WorkingSetSize
SIZE_T WorkingSetSize
Definition: psapi.h:41

_PROCESS_MEMORY_COUNTERS::PeakWorkingSetSize
SIZE_T PeakWorkingSetSize
Definition: psapi.h:40

_PROCESS_MEMORY_COUNTERS::cb
DWORD cb
Definition: psapi.h:38

_PROCESS_MEMORY_COUNTERS::QuotaPeakNonPagedPoolUsage
SIZE_T QuotaPeakNonPagedPoolUsage
Definition: psapi.h:44

_PROCESS_MEMORY_COUNTERS::QuotaPeakPagedPoolUsage
SIZE_T QuotaPeakPagedPoolUsage
Definition: psapi.h:42

_PROCESS_MEMORY_COUNTERS::QuotaPagedPoolUsage
SIZE_T QuotaPagedPoolUsage
Definition: psapi.h:43

_PSAPI_WS_WATCH_INFORMATION
Definition: psapi.h:32

_QUOTA_LIMITS
Definition: lsa.idl:286

_QUOTA_LIMITS::MaximumWorkingSetSize
INT64 MaximumWorkingSetSize
Definition: lsa.idl:290

_QUOTA_LIMITS::MinimumWorkingSetSize
INT64 MinimumWorkingSetSize
Definition: lsa.idl:289

_RTL_PROCESS_MODULES
Definition: rtltypes.h:1010

_RTL_PROCESS_MODULE_INFORMATION
Definition: rtltypes.h:996

_RTL_PROCESS_MODULE_INFORMATION::ImageBase
PVOID ImageBase
Definition: rtltypes.h:999

_RTL_PROCESS_MODULE_INFORMATION::OffsetToFileName
USHORT OffsetToFileName
Definition: rtltypes.h:1005

_RTL_PROCESS_MODULE_INFORMATION::FullPathName
CHAR FullPathName[256]
Definition: rtltypes.h:1006

_SYSTEM_BASIC_INFORMATION
Definition: ntddk_ex.h:157

_SYSTEM_BASIC_INFORMATION::PageSize
ULONG PageSize
Definition: ntddk_ex.h:160

_SYSTEM_BASIC_INFORMATION::NumberOfPhysicalPages
ULONG NumberOfPhysicalPages
Definition: ntddk_ex.h:161

_SYSTEM_FILECACHE_INFORMATION
Definition: extypes.h:1296

_SYSTEM_FILECACHE_INFORMATION::CurrentSizeIncludingTransitionInPages
SIZE_T CurrentSizeIncludingTransitionInPages
Definition: extypes.h:1302

_SYSTEM_INFO
Definition: winbase.h:1206

_SYSTEM_PAGEFILE_INFORMATION
Definition: extypes.h:1245

_SYSTEM_PAGEFILE_INFORMATION::NextEntryOffset
ULONG NextEntryOffset
Definition: extypes.h:1246

_SYSTEM_PAGEFILE_INFORMATION::PageFileName
UNICODE_STRING PageFileName
Definition: extypes.h:1250

_SYSTEM_PAGEFILE_INFORMATION::TotalInUse
ULONG TotalInUse
Definition: extypes.h:1248

_SYSTEM_PAGEFILE_INFORMATION::TotalSize
ULONG TotalSize
Definition: extypes.h:1247

_SYSTEM_PAGEFILE_INFORMATION::PeakUsage
ULONG PeakUsage
Definition: extypes.h:1249

_SYSTEM_PERFORMANCE_INFORMATION
Definition: memtest.h:10

_SYSTEM_PERFORMANCE_INFORMATION::AvailablePages
ULONG AvailablePages
Definition: memtest.h:18

_SYSTEM_PERFORMANCE_INFORMATION::NonPagedPoolPages
ULONG NonPagedPoolPages
Definition: memtest.h:36

_SYSTEM_PERFORMANCE_INFORMATION::CommittedPages
ULONG CommittedPages
Definition: memtest.h:19

_SYSTEM_PERFORMANCE_INFORMATION::CommitLimit
ULONG CommitLimit
Definition: memtest.h:20

_SYSTEM_PERFORMANCE_INFORMATION::PeakCommitment
ULONG PeakCommitment
Definition: memtest.h:21

_SYSTEM_PERFORMANCE_INFORMATION::PagedPoolPages
ULONG PagedPoolPages
Definition: memtest.h:35

_SYSTEM_PROCESS_INFORMATION
Definition: extypes.h:1067

_SYSTEM_PROCESS_INFORMATION::UniqueProcessId
HANDLE UniqueProcessId
Definition: extypes.h:1079

_SYSTEM_PROCESS_INFORMATION::NumberOfThreads
ULONG NumberOfThreads
Definition: extypes.h:1069

_SYSTEM_PROCESS_INFORMATION::NextEntryOffset
ULONG NextEntryOffset
Definition: extypes.h:1068

_SYSTEM_PROCESS_INFORMATION::HandleCount
ULONG HandleCount
Definition: extypes.h:1081

_UNICODE_STRING
Definition: env_spec_w32.h:368

_UNICODE_STRING::Length
USHORT Length
Definition: env_spec_w32.h:369

_UNICODE_STRING::Buffer
PWSTR Buffer
Definition: env_spec_w32.h:371

_VM_COUNTERS_EX
Definition: winternl.h:3145

_VM_COUNTERS_EX::QuotaNonPagedPoolUsage
SIZE_T QuotaNonPagedPoolUsage
Definition: winternl.h:3154

_VM_COUNTERS_EX::WorkingSetSize
SIZE_T WorkingSetSize
Definition: winternl.h:3150

_VM_COUNTERS_EX::PeakWorkingSetSize
SIZE_T PeakWorkingSetSize
Definition: winternl.h:3149

_VM_COUNTERS_EX::QuotaPeakNonPagedPoolUsage
SIZE_T QuotaPeakNonPagedPoolUsage
Definition: winternl.h:3153

_VM_COUNTERS_EX::QuotaPeakPagedPoolUsage
SIZE_T QuotaPeakPagedPoolUsage
Definition: winternl.h:3151

_VM_COUNTERS_EX::PagefileUsage
SIZE_T PagefileUsage
Definition: winternl.h:3155

_VM_COUNTERS_EX::QuotaPagedPoolUsage
SIZE_T QuotaPagedPoolUsage
Definition: winternl.h:3152

_VM_COUNTERS_EX::PrivateUsage
SIZE_T PrivateUsage
Definition: winternl.h:3157

_VM_COUNTERS_EX::PageFaultCount
ULONG PageFaultCount
Definition: winternl.h:3148

_VM_COUNTERS_EX::PeakPagefileUsage
SIZE_T PeakPagefileUsage
Definition: winternl.h:3156

PWSTR
uint16_t * PWSTR
Definition: typedefs.h:56

NTAPI
#define NTAPI
Definition: typedefs.h:36

SIZE_T
ULONG_PTR SIZE_T
Definition: typedefs.h:80

LPDWORD
uint32_t * LPDWORD
Definition: typedefs.h:59

ULONG_PTR
uint32_t ULONG_PTR
Definition: typedefs.h:65

IN
#define IN
Definition: typedefs.h:39

HMODULE
HANDLE HMODULE
Definition: typedefs.h:77

CONTAINING_RECORD
#define CONTAINING_RECORD(address, type, field)
Definition: typedefs.h:260

ULONG
uint32_t ULONG
Definition: typedefs.h:59

OUT
#define OUT
Definition: typedefs.h:40

STATUS_ACCESS_DENIED
#define STATUS_ACCESS_DENIED
Definition: udferr_usr.h:145

STATUS_INFO_LENGTH_MISMATCH
#define STATUS_INFO_LENGTH_MISMATCH
Definition: udferr_usr.h:133

STATUS_INSUFFICIENT_RESOURCES
#define STATUS_INSUFFICIENT_RESOURCES
Definition: udferr_usr.h:158

MAXSHORT
#define MAXSHORT
Definition: umtypes.h:114

Size
_Must_inspect_result_ _In_ WDFDEVICE _In_ PWDF_DEVICE_PROPERTY_DATA _In_ DEVPROPTYPE _In_ ULONG Size
Definition: wdfdevice.h:4533

RequiredSize
_Must_inspect_result_ _In_ WDFDEVICE _In_ PWDF_DEVICE_PROPERTY_DATA _In_ ULONG _Out_ PVOID _Out_ PULONG RequiredSize
Definition: wdfdevice.h:4439

BufferSize
_In_ WDFMEMORY _Out_opt_ size_t * BufferSize
Definition: wdfmemory.h:254

Information
_In_ WDFREQUEST _In_ NTSTATUS _In_ ULONG_PTR Information
Definition: wdfrequest.h:1049

winbase.h

GetLastError
DWORD WINAPI GetLastError(void)
Definition: except.c:1042

LMEM_FIXED
#define LMEM_FIXED
Definition: winbase.h:401

nSize
*nSize LPSTR _Inout_ LPDWORD nSize
Definition: winbase.h:2125

windef.h

WINAPI
#define WINAPI
Definition: msvc.h:6

ERROR_NO_SYSTEM_RESOURCES
#define ERROR_NO_SYSTEM_RESOURCES
Definition: winerror.h:1277

winnls.h

LPSTR
char * LPSTR
Definition: xmlstorage.h:182

WCHAR
__wchar_t WCHAR
Definition: xmlstorage.h:180

LPWSTR
WCHAR * LPWSTR
Definition: xmlstorage.h:184

LPCWSTR
const WCHAR * LPCWSTR
Definition: xmlstorage.h:185

CHAR
char CHAR
Definition: xmlstorage.h:175