archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 75c48ba87f
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '75c48ba87f'
${ noResults }
windows-xp/Source/XPSP1/NT/base/published/ntpsapi.w

1340 lines
32 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++ BUILD Version: 0007 // Increment this if a change has global effects
  3. Copyright (c) Microsoft Corporation. All rights reserved.
  5. Module Name:
  7. ntpsapi.h
  9. Abstract:
  11. This module contains the process structure APIs and any public data
  12. structures needed to call these APIs.
  14. Author:
  16. Mark Lucovsky (markl) 24-Feb-1989
  18. Revision History:
  20. --*/
  22. #ifndef _NTPSAPI_
  23. #define _NTPSAPI_
  25. #if _MSC_VER > 1000
  26. #pragma once
  27. #endif
  29. #ifdef __cplusplus
  30. extern "C" {
  31. #endif
  33. //
  34. // Process Specific Access Rights
  35. //
  37. #define PROCESS_TERMINATE (0x0001) // winnt
  38. #define PROCESS_CREATE_THREAD (0x0002) // winnt
  39. #define PROCESS_SET_SESSIONID (0x0004) // winnt
  40. #define PROCESS_VM_OPERATION (0x0008) // winnt
  41. #define PROCESS_VM_READ (0x0010) // winnt
  42. #define PROCESS_VM_WRITE (0x0020) // winnt
  43. // begin_ntddk begin_wdm begin_ntifs
  44. #define PROCESS_DUP_HANDLE (0x0040) // winnt
  45. // end_ntddk end_wdm end_ntifs
  46. #define PROCESS_CREATE_PROCESS (0x0080) // winnt
  47. #define PROCESS_SET_QUOTA (0x0100) // winnt
  48. #define PROCESS_SET_INFORMATION (0x0200) // winnt
  49. #define PROCESS_QUERY_INFORMATION (0x0400) // winnt
  50. #define PROCESS_SET_PORT (0x0800)
  51. #define PROCESS_SUSPEND_RESUME (0x0800) // winnt
  53. // begin_winnt begin_ntddk begin_wdm begin_ntifs
  54. #define PROCESS_ALL_ACCESS (STANDARD_RIGHTS_REQUIRED | SYNCHRONIZE | \
  55. 0xFFF)
  56. // begin_nthal
  58. #if defined(_WIN64)
  60. #define MAXIMUM_PROCESSORS 64
  62. #else
  64. #define MAXIMUM_PROCESSORS 32
  66. #endif
  68. // end_nthal
  70. // end_winnt
  72. //
  73. // Thread Specific Access Rights
  74. //
  76. #define THREAD_TERMINATE (0x0001) // winnt
  77. // end_ntddk end_wdm end_ntifs
  78. #define THREAD_SUSPEND_RESUME (0x0002) // winnt
  79. #define THREAD_ALERT (0x0004)
  80. #define THREAD_GET_CONTEXT (0x0008) // winnt
  81. #define THREAD_SET_CONTEXT (0x0010) // winnt
  82. // begin_ntddk begin_wdm begin_ntifs
  83. #define THREAD_SET_INFORMATION (0x0020) // winnt
  84. // end_ntddk end_wdm end_ntifs
  85. #define THREAD_QUERY_INFORMATION (0x0040) // winnt
  86. // begin_winnt
  87. #define THREAD_SET_THREAD_TOKEN (0x0080)
  88. #define THREAD_IMPERSONATE (0x0100)
  89. #define THREAD_DIRECT_IMPERSONATION (0x0200)
  90. // begin_ntddk begin_wdm begin_ntifs
  92. #define THREAD_ALL_ACCESS (STANDARD_RIGHTS_REQUIRED | SYNCHRONIZE | \
  93. 0x3FF)
  95. // end_ntddk end_wdm end_ntifs
  96. // end_winnt
  98. //
  99. // Job Object Specific Access Rights
  100. //
  102. // begin_winnt
  103. #define JOB_OBJECT_ASSIGN_PROCESS (0x0001)
  104. #define JOB_OBJECT_SET_ATTRIBUTES (0x0002)
  105. #define JOB_OBJECT_QUERY (0x0004)
  106. #define JOB_OBJECT_TERMINATE (0x0008)
  107. #define JOB_OBJECT_SET_SECURITY_ATTRIBUTES (0x0010)
  108. #define JOB_OBJECT_ALL_ACCESS (STANDARD_RIGHTS_REQUIRED | SYNCHRONIZE | \
  109. 0x1F )
  111. typedef struct _JOB_SET_ARRAY {
  112. HANDLE JobHandle; // Handle to job object to insert
  113. ULONG MemberLevel; // Level of this job in the set. Must be > 0. Can be sparse.
  114. ULONG Flags; // Unused. Must be zero
  115. } JOB_SET_ARRAY, *PJOB_SET_ARRAY;
  117. // end_winnt
  119. //
  120. // Process Environment Block
  121. //
  122. #ifdef _MAC
  123. #pragma warning( disable : 4121)
  124. #endif
  126. typedef struct _PEB_LDR_DATA {
  127. ULONG Length;
  128. BOOLEAN Initialized;
  129. HANDLE SsHandle;
  130. LIST_ENTRY InLoadOrderModuleList;
  131. LIST_ENTRY InMemoryOrderModuleList;
  132. LIST_ENTRY InInitializationOrderModuleList;
  133. PVOID EntryInProgress;
  134. } PEB_LDR_DATA, *PPEB_LDR_DATA;
  136. #ifdef _MAC
  137. #pragma warning( default : 4121 )
  138. #endif
  139. //
  140. // Handle tag bits for Peb Stdio File Handles
  141. //
  143. #define PEB_STDIO_HANDLE_NATIVE 0
  144. #define PEB_STDIO_HANDLE_SUBSYS 1
  145. #define PEB_STDIO_HANDLE_PM 2
  146. #define PEB_STDIO_HANDLE_RESERVED 3
  148. #define GDI_HANDLE_BUFFER_SIZE32 34
  149. #define GDI_HANDLE_BUFFER_SIZE64 60
  151. #if !defined(_IA64_) && !defined(_AMD64_)
  152. #define GDI_HANDLE_BUFFER_SIZE GDI_HANDLE_BUFFER_SIZE32
  153. #else
  154. #define GDI_HANDLE_BUFFER_SIZE GDI_HANDLE_BUFFER_SIZE64
  155. #endif
  157. typedef ULONG GDI_HANDLE_BUFFER32[GDI_HANDLE_BUFFER_SIZE32];
  158. typedef ULONG GDI_HANDLE_BUFFER64[GDI_HANDLE_BUFFER_SIZE64];
  159. typedef ULONG GDI_HANDLE_BUFFER [GDI_HANDLE_BUFFER_SIZE ];
  161. #define FOREGROUND_BASE_PRIORITY 9
  162. #define NORMAL_BASE_PRIORITY 8
  164. typedef struct _PEB_FREE_BLOCK {
  165. struct _PEB_FREE_BLOCK *Next;
  166. ULONG Size;
  167. } PEB_FREE_BLOCK, *PPEB_FREE_BLOCK;
  169. // begin_ntddk begin_wdm begin_nthal begin_ntifs
  170. //
  171. // ClientId
  172. //
  174. typedef struct _CLIENT_ID {
  175. HANDLE UniqueProcess;
  176. HANDLE UniqueThread;
  177. } CLIENT_ID;
  178. typedef CLIENT_ID *PCLIENT_ID;
  180. // end_ntddk end_wdm end_nthal end_ntifs
  182. #if !defined(CLIENT_ID64_DEFINED)
  184. typedef struct _CLIENT_ID64 {
  185. ULONGLONG UniqueProcess;
  186. ULONGLONG UniqueThread;
  187. } CLIENT_ID64;
  189. typedef CLIENT_ID64 *PCLIENT_ID64;
  191. #define CLIENT_ID64_DEFINED
  193. #endif
  195. #define TLS_MINIMUM_AVAILABLE 64 // winnt
  196. #define TLS_EXPANSION_SLOTS 1024
  198. typedef
  199. VOID
  200. (*PPS_POST_PROCESS_INIT_ROUTINE) (
  201. VOID
  202. );
  204. // begin_nthal begin_ntddk begin_ntifs
  205. //
  206. // Thread Environment Block (and portable part of Thread Information Block)
  207. //
  209. //
  210. // NT_TIB - Thread Information Block - Portable part.
  211. //
  212. // This is the subsystem portable part of the Thread Information Block.
  213. // It appears as the first part of the TEB for all threads which have
  214. // a user mode component.
  215. //
  216. // end_nthal end_ntddk end_ntifs
  217. // This structure MUST MATCH OS/2 V2.0!
  218. //
  219. // There is another, non-portable part of the TIB which is used
  220. // for by subsystems, i.e. Os2Tib for OS/2 threads. SubSystemTib
  221. // points there.
  222. // begin_nthal begin_ntddk begin_ntifs
  223. //
  225. // begin_winnt
  227. typedef struct _NT_TIB {
  228. struct _EXCEPTION_REGISTRATION_RECORD *ExceptionList;
  229. PVOID StackBase;
  230. PVOID StackLimit;
  231. PVOID SubSystemTib;
  232. union {
  233. PVOID FiberData;
  234. ULONG Version;
  235. };
  236. PVOID ArbitraryUserPointer;
  237. struct _NT_TIB *Self;
  238. } NT_TIB;
  239. typedef NT_TIB *PNT_TIB;
  241. //
  242. // 32 and 64 bit specific version for wow64 and the debugger
  243. //
  244. typedef struct _NT_TIB32 {
  245. ULONG ExceptionList;
  246. ULONG StackBase;
  247. ULONG StackLimit;
  248. ULONG SubSystemTib;
  249. union {
  250. ULONG FiberData;
  251. ULONG Version;
  252. };
  253. ULONG ArbitraryUserPointer;
  254. ULONG Self;
  255. } NT_TIB32, *PNT_TIB32;
  257. typedef struct _NT_TIB64 {
  258. ULONG64 ExceptionList;
  259. ULONG64 StackBase;
  260. ULONG64 StackLimit;
  261. ULONG64 SubSystemTib;
  262. union {
  263. ULONG64 FiberData;
  264. ULONG Version;
  265. };
  266. ULONG64 ArbitraryUserPointer;
  267. ULONG64 Self;
  268. } NT_TIB64, *PNT_TIB64;
  270. // end_nthal end_ntddk end_ntifs end_winnt
  272. //
  273. // Gdi command batching
  274. //
  276. #define GDI_BATCH_BUFFER_SIZE 310
  278. typedef struct _GDI_TEB_BATCH {
  279. ULONG Offset;
  280. ULONG_PTR HDC;
  281. ULONG Buffer[GDI_BATCH_BUFFER_SIZE];
  282. } GDI_TEB_BATCH,*PGDI_TEB_BATCH;
  285. //
  286. // Wx86 thread state information
  287. //
  289. typedef struct _Wx86ThreadState {
  290. PULONG CallBx86Eip;
  291. PVOID DeallocationCpu;
  292. BOOLEAN UseKnownWx86Dll;
  293. char OleStubInvoked;
  294. } WX86THREAD, *PWX86THREAD;
  296. //
  297. // TEB - The thread environment block
  298. //
  300. #define STATIC_UNICODE_BUFFER_LENGTH 261
  301. #define WIN32_CLIENT_INFO_LENGTH 62
  303. #define WIN32_CLIENT_INFO_SPIN_COUNT 1
  305. typedef PVOID* PPVOID;
  307. #include "pebteb.h"
  309. // begin_winnt
  311. #if !defined(_X86_) && !defined(_IA64_) && !defined(_AMD64_)
  312. #define WX86
  313. #endif
  315. // end_winnt
  318. #if defined(WX86)
  319. #define Wx86CurrentTib() ((PWX86TIB)NtCurrentTeb()->Vdm)
  320. #else
  321. #define Wx86CurrentTib() (NULL)
  322. #endif
  324. #if !defined(_X86_) && !defined(_IA64_)
  325. //
  326. // Exception Registration structure
  327. //
  328. // X86 Call frame record definition, normally defined in nti386.h
  329. // which is not included on risc.
  330. //
  332. typedef struct _EXCEPTION_REGISTRATION_RECORD {
  333. struct _EXCEPTION_REGISTRATION_RECORD *Next;
  334. PEXCEPTION_ROUTINE Handler;
  335. } EXCEPTION_REGISTRATION_RECORD;
  337. typedef EXCEPTION_REGISTRATION_RECORD *PEXCEPTION_REGISTRATION_RECORD;
  338. #endif
  340. typedef struct _Wx86TIB {
  341. ULONG Size;
  342. ULONG InitialPc;
  343. VOID * POINTER_32 StackBase;
  344. VOID * POINTER_32 StackLimit;
  345. VOID * POINTER_32 DeallocationStack;
  346. ULONG LogFlags;
  347. ULONG InitialSp;
  348. UCHAR SimulationCount;
  349. BOOLEAN InCpuSimulation;
  350. BOOLEAN EmulateInitialPc;
  351. BOOLEAN Initialized;
  352. EXCEPTION_REGISTRATION_RECORD * POINTER_32 ExceptionList;
  353. VOID * POINTER_32 CpuContext;
  354. CONTEXT * POINTER_32 InitialExceptionContext;
  355. VOID * POINTER_32 pCallersRIID;
  356. VOID * POINTER_32 pCallersUnknown;
  357. ULONG Flags;
  358. VOID * POINTER_32 SelfRegDllName;
  359. VOID * POINTER_32 SelfRegDllHandle;
  360. } WX86TIB, *PWX86TIB;
  362. #define EXCEPTION_CHAIN_END ((struct _EXCEPTION_REGISTRATION_RECORD * POINTER_32)-1)
  366. //
  367. // The version number of OS2
  368. //
  371. #define MAJOR_VERSION 30 // Cruiser uses 20 (not 20H)
  372. #define MINOR_VERSION 00
  373. #define OS2_VERSION (MAJOR_VERSION << 8 | MINOR_VERSION )
  375. #if DBG
  376. //
  377. // Reserve the last 9 SystemReserved pointers for debugging
  378. //
  379. #define DBG_TEB_THREADNAME 16
  380. #define DBG_TEB_RESERVED_1 15
  381. #define DBG_TEB_RESERVED_2 14
  382. #define DBG_TEB_RESERVED_3 13
  383. #define DBG_TEB_RESERVED_4 12
  384. #define DBG_TEB_RESERVED_5 11
  385. #define DBG_TEB_RESERVED_6 10
  386. #define DBG_TEB_RESERVED_7 9
  387. #define DBG_TEB_RESERVED_8 8
  388. #endif // DBG
  390. typedef struct _INITIAL_TEB {
  391. struct {
  392. PVOID OldStackBase;
  393. PVOID OldStackLimit;
  394. #if defined(_IA64_)
  395. PVOID OldBStoreLimit;
  396. #endif // defined(_IA64_)
  397. } OldInitialTeb;
  398. PVOID StackBase;
  399. PVOID StackLimit;
  400. #if defined(_IA64_)
  401. PVOID BStoreLimit;
  402. #endif // defined(_IA64_)
  403. PVOID StackAllocationBase;
  404. } INITIAL_TEB, *PINITIAL_TEB;
  406. #define PROCESS_PRIORITY_CLASS_UNKNOWN 0
  407. #define PROCESS_PRIORITY_CLASS_IDLE 1
  408. #define PROCESS_PRIORITY_CLASS_NORMAL 2
  409. #define PROCESS_PRIORITY_CLASS_HIGH 3
  410. #define PROCESS_PRIORITY_CLASS_REALTIME 4
  411. #define PROCESS_PRIORITY_CLASS_BELOW_NORMAL 5
  412. #define PROCESS_PRIORITY_CLASS_ABOVE_NORMAL 6
  414. typedef struct _PROCESS_PRIORITY_CLASS {
  415. BOOLEAN Foreground;
  416. UCHAR PriorityClass;
  417. } PROCESS_PRIORITY_CLASS, *PPROCESS_PRIORITY_CLASS;
  419. typedef struct _PROCESS_FOREGROUND_BACKGROUND {
  420. BOOLEAN Foreground;
  421. } PROCESS_FOREGROUND_BACKGROUND, *PPROCESS_FOREGROUND_BACKGROUND;
  424. //
  425. // Define process debug flags
  426. //
  427. #define PROCESS_DEBUG_INHERIT 0x00000001
  430. // begin_ntddk begin_ntifs
  431. //
  432. // Process Information Classes
  433. //
  435. typedef enum _PROCESSINFOCLASS {
  436. ProcessBasicInformation,
  437. ProcessQuotaLimits,
  438. ProcessIoCounters,
  439. ProcessVmCounters,
  440. ProcessTimes,
  441. ProcessBasePriority,
  442. ProcessRaisePriority,
  443. ProcessDebugPort,
  444. ProcessExceptionPort,
  445. ProcessAccessToken,
  446. ProcessLdtInformation,
  447. ProcessLdtSize,
  448. ProcessDefaultHardErrorMode,
  449. ProcessIoPortHandlers, // Note: this is kernel mode only
  450. ProcessPooledUsageAndLimits,
  451. ProcessWorkingSetWatch,
  452. ProcessUserModeIOPL,
  453. ProcessEnableAlignmentFaultFixup,
  454. ProcessPriorityClass,
  455. ProcessWx86Information,
  456. ProcessHandleCount,
  457. ProcessAffinityMask,
  458. ProcessPriorityBoost,
  459. ProcessDeviceMap,
  460. ProcessSessionInformation,
  461. ProcessForegroundInformation,
  462. ProcessWow64Information,
  463. ProcessImageFileName,
  464. ProcessLUIDDeviceMapsEnabled,
  465. ProcessBreakOnTermination,
  466. ProcessDebugObjectHandle,
  467. ProcessDebugFlags,
  468. ProcessHandleTracing,
  469. MaxProcessInfoClass // MaxProcessInfoClass should always be the last enum
  470. } PROCESSINFOCLASS;
  472. //
  473. // Thread Information Classes
  474. //
  476. typedef enum _THREADINFOCLASS {
  477. ThreadBasicInformation,
  478. ThreadTimes,
  479. ThreadPriority,
  480. ThreadBasePriority,
  481. ThreadAffinityMask,
  482. ThreadImpersonationToken,
  483. ThreadDescriptorTableEntry,
  484. ThreadEnableAlignmentFaultFixup,
  485. ThreadEventPair_Reusable,
  486. ThreadQuerySetWin32StartAddress,
  487. ThreadZeroTlsCell,
  488. ThreadPerformanceCount,
  489. ThreadAmILastThread,
  490. ThreadIdealProcessor,
  491. ThreadPriorityBoost,
  492. ThreadSetTlsArrayAddress,
  493. ThreadIsIoPending,
  494. ThreadHideFromDebugger,
  495. ThreadBreakOnTermination,
  496. MaxThreadInfoClass
  497. } THREADINFOCLASS;
  498. // end_ntddk end_ntifs
  500. #define PROCESS_PRIORITY_SEPARATION_MASK 0x00000003
  501. #define PROCESS_PRIORITY_SEPARATION_MAX 0x00000002
  502. #define PROCESS_QUANTUM_VARIABLE_MASK 0x0000000c
  503. #define PROCESS_QUANTUM_VARIABLE_DEF 0x00000000
  504. #define PROCESS_QUANTUM_VARIABLE_VALUE 0x00000004
  505. #define PROCESS_QUANTUM_FIXED_VALUE 0x00000008
  506. #define PROCESS_QUANTUM_LONG_MASK 0x00000030
  507. #define PROCESS_QUANTUM_LONG_DEF 0x00000000
  508. #define PROCESS_QUANTUM_LONG_VALUE 0x00000010
  509. #define PROCESS_QUANTUM_SHORT_VALUE 0x00000020
  512. #define PROCESS_HARDERROR_ALIGNMENT_BIT 0x0004 // from winbase.h, but not tagged
  514. //
  515. // thread base priority ranges
  516. //
  517. // begin_winnt
  518. #define THREAD_BASE_PRIORITY_LOWRT 15 // value that gets a thread to LowRealtime-1
  519. #define THREAD_BASE_PRIORITY_MAX 2 // maximum thread base priority boost
  520. #define THREAD_BASE_PRIORITY_MIN (-2) // minimum thread base priority boost
  521. #define THREAD_BASE_PRIORITY_IDLE (-15) // value that gets a thread to idle
  522. // end_winnt
  524. // begin_ntddk begin_ntifs
  525. //
  526. // Process Information Structures
  527. //
  529. //
  530. // PageFaultHistory Information
  531. // NtQueryInformationProcess using ProcessWorkingSetWatch
  532. //
  533. typedef struct _PROCESS_WS_WATCH_INFORMATION {
  534. PVOID FaultingPc;
  535. PVOID FaultingVa;
  536. } PROCESS_WS_WATCH_INFORMATION, *PPROCESS_WS_WATCH_INFORMATION;
  538. //
  539. // Basic Process Information
  540. // NtQueryInformationProcess using ProcessBasicInfo
  541. //
  543. typedef struct _PROCESS_BASIC_INFORMATION {
  544. NTSTATUS ExitStatus;
  545. PPEB PebBaseAddress;
  546. ULONG_PTR AffinityMask;
  547. KPRIORITY BasePriority;
  548. ULONG_PTR UniqueProcessId;
  549. ULONG_PTR InheritedFromUniqueProcessId;
  550. } PROCESS_BASIC_INFORMATION;
  551. typedef PROCESS_BASIC_INFORMATION *PPROCESS_BASIC_INFORMATION;
  554. //
  555. // Process Device Map information
  556. // NtQueryInformationProcess using ProcessDeviceMap
  557. // NtSetInformationProcess using ProcessDeviceMap
  558. //
  560. typedef struct _PROCESS_DEVICEMAP_INFORMATION {
  561. union {
  562. struct {
  563. HANDLE DirectoryHandle;
  564. } Set;
  565. struct {
  566. ULONG DriveMap;
  567. UCHAR DriveType[ 32 ];
  568. } Query;
  569. };
  570. } PROCESS_DEVICEMAP_INFORMATION, *PPROCESS_DEVICEMAP_INFORMATION;
  572. typedef struct _PROCESS_DEVICEMAP_INFORMATION_EX {
  573. union {
  574. struct {
  575. HANDLE DirectoryHandle;
  576. } Set;
  577. struct {
  578. ULONG DriveMap;
  579. UCHAR DriveType[ 32 ];
  580. } Query;
  581. };
  582. ULONG Flags; // specifies that the query type
  583. } PROCESS_DEVICEMAP_INFORMATION_EX, *PPROCESS_DEVICEMAP_INFORMATION_EX;
  585. //
  586. // PROCESS_DEVICEMAP_INFORMATION_EX flags
  587. //
  588. #define PROCESS_LUID_DOSDEVICES_ONLY 0x00000001
  590. //
  591. // Multi-User Session specific Process Information
  592. // NtQueryInformationProcess using ProcessSessionInformation
  593. //
  595. typedef struct _PROCESS_SESSION_INFORMATION {
  596. ULONG SessionId;
  597. } PROCESS_SESSION_INFORMATION, *PPROCESS_SESSION_INFORMATION;
  600. typedef struct _PROCESS_HANDLE_TRACING_ENABLE {
  601. ULONG Flags;
  602. } PROCESS_HANDLE_TRACING_ENABLE, *PPROCESS_HANDLE_TRACING_ENABLE;
  604. #define PROCESS_HANDLE_TRACING_MAX_STACKS 16
  606. typedef struct _PROCESS_HANDLE_TRACING_ENTRY {
  607. HANDLE Handle;
  608. CLIENT_ID ClientId;
  609. ULONG Type;
  610. PVOID Stacks[PROCESS_HANDLE_TRACING_MAX_STACKS];
  611. } PROCESS_HANDLE_TRACING_ENTRY, *PPROCESS_HANDLE_TRACING_ENTRY;
  613. typedef struct _PROCESS_HANDLE_TRACING_QUERY {
  614. HANDLE Handle;
  615. ULONG TotalTraces;
  616. PROCESS_HANDLE_TRACING_ENTRY HandleTrace[1];
  617. } PROCESS_HANDLE_TRACING_QUERY, *PPROCESS_HANDLE_TRACING_QUERY;
  619. //
  620. // Process Quotas
  621. // NtQueryInformationProcess using ProcessQuotaLimits
  622. // NtQueryInformationProcess using ProcessPooledQuotaLimits
  623. // NtSetInformationProcess using ProcessQuotaLimits
  624. //
  626. // begin_winnt
  628. typedef struct _QUOTA_LIMITS {
  629. SIZE_T PagedPoolLimit;
  630. SIZE_T NonPagedPoolLimit;
  631. SIZE_T MinimumWorkingSetSize;
  632. SIZE_T MaximumWorkingSetSize;
  633. SIZE_T PagefileLimit;
  634. LARGE_INTEGER TimeLimit;
  635. } QUOTA_LIMITS;
  636. typedef QUOTA_LIMITS *PQUOTA_LIMITS;
  638. // end_winnt
  640. //
  641. // Process I/O Counters
  642. // NtQueryInformationProcess using ProcessIoCounters
  643. //
  645. // begin_winnt
  646. typedef struct _IO_COUNTERS {
  647. ULONGLONG ReadOperationCount;
  648. ULONGLONG WriteOperationCount;
  649. ULONGLONG OtherOperationCount;
  650. ULONGLONG ReadTransferCount;
  651. ULONGLONG WriteTransferCount;
  652. ULONGLONG OtherTransferCount;
  653. } IO_COUNTERS;
  654. typedef IO_COUNTERS *PIO_COUNTERS;
  656. // end_winnt
  658. //
  659. // Process Virtual Memory Counters
  660. // NtQueryInformationProcess using ProcessVmCounters
  661. //
  663. typedef struct _VM_COUNTERS {
  664. SIZE_T PeakVirtualSize;
  665. SIZE_T VirtualSize;
  666. ULONG PageFaultCount;
  667. SIZE_T PeakWorkingSetSize;
  668. SIZE_T WorkingSetSize;
  669. SIZE_T QuotaPeakPagedPoolUsage;
  670. SIZE_T QuotaPagedPoolUsage;
  671. SIZE_T QuotaPeakNonPagedPoolUsage;
  672. SIZE_T QuotaNonPagedPoolUsage;
  673. SIZE_T PagefileUsage;
  674. SIZE_T PeakPagefileUsage;
  675. } VM_COUNTERS;
  676. typedef VM_COUNTERS *PVM_COUNTERS;
  678. typedef struct _VM_COUNTERS_EX {
  679. SIZE_T PeakVirtualSize;
  680. SIZE_T VirtualSize;
  681. ULONG PageFaultCount;
  682. SIZE_T PeakWorkingSetSize;
  683. SIZE_T WorkingSetSize;
  684. SIZE_T QuotaPeakPagedPoolUsage;
  685. SIZE_T QuotaPagedPoolUsage;
  686. SIZE_T QuotaPeakNonPagedPoolUsage;
  687. SIZE_T QuotaNonPagedPoolUsage;
  688. SIZE_T PagefileUsage;
  689. SIZE_T PeakPagefileUsage;
  690. SIZE_T PrivateUsage;
  691. } VM_COUNTERS_EX;
  692. typedef VM_COUNTERS_EX *PVM_COUNTERS_EX;
  694. //
  695. // Process Pooled Quota Usage and Limits
  696. // NtQueryInformationProcess using ProcessPooledUsageAndLimits
  697. //
  699. typedef struct _POOLED_USAGE_AND_LIMITS {
  700. SIZE_T PeakPagedPoolUsage;
  701. SIZE_T PagedPoolUsage;
  702. SIZE_T PagedPoolLimit;
  703. SIZE_T PeakNonPagedPoolUsage;
  704. SIZE_T NonPagedPoolUsage;
  705. SIZE_T NonPagedPoolLimit;
  706. SIZE_T PeakPagefileUsage;
  707. SIZE_T PagefileUsage;
  708. SIZE_T PagefileLimit;
  709. } POOLED_USAGE_AND_LIMITS;
  710. typedef POOLED_USAGE_AND_LIMITS *PPOOLED_USAGE_AND_LIMITS;
  712. //
  713. // Process Security Context Information
  714. // NtSetInformationProcess using ProcessAccessToken
  715. // PROCESS_SET_ACCESS_TOKEN access to the process is needed
  716. // to use this info level.
  717. //
  719. typedef struct _PROCESS_ACCESS_TOKEN {
  721. //
  722. // Handle to Primary token to assign to the process.
  723. // TOKEN_ASSIGN_PRIMARY access to this token is needed.
  724. //
  726. HANDLE Token;
  728. //
  729. // Handle to the initial thread of the process.
  730. // A process's access token can only be changed if the process has
  731. // no threads or one thread. If the process has no threads, this
  732. // field must be set to NULL. Otherwise, it must contain a handle
  733. // open to the process's only thread. THREAD_QUERY_INFORMATION access
  734. // is needed via this handle.
  736. HANDLE Thread;
  738. } PROCESS_ACCESS_TOKEN, *PPROCESS_ACCESS_TOKEN;
  740. //
  741. // Process/Thread System and User Time
  742. // NtQueryInformationProcess using ProcessTimes
  743. // NtQueryInformationThread using ThreadTimes
  744. //
  746. typedef struct _KERNEL_USER_TIMES {
  747. LARGE_INTEGER CreateTime;
  748. LARGE_INTEGER ExitTime;
  749. LARGE_INTEGER KernelTime;
  750. LARGE_INTEGER UserTime;
  751. } KERNEL_USER_TIMES;
  752. typedef KERNEL_USER_TIMES *PKERNEL_USER_TIMES;
  753. // end_ntddk end_ntifs
  756. //
  757. // Thread Information Structures
  758. //
  760. //
  761. // Basic Thread Information
  762. // NtQueryInformationThread using ThreadBasicInfo
  763. //
  765. typedef struct _THREAD_BASIC_INFORMATION {
  766. NTSTATUS ExitStatus;
  767. PTEB TebBaseAddress;
  768. CLIENT_ID ClientId;
  769. ULONG_PTR AffinityMask;
  770. KPRIORITY Priority;
  771. LONG BasePriority;
  772. } THREAD_BASIC_INFORMATION;
  773. typedef THREAD_BASIC_INFORMATION *PTHREAD_BASIC_INFORMATION;
  775. #if defined(_AMD64_) || defined(_IA64_)
  776. #include <pshpck16.h>
  777. #endif
  779. typedef struct _FIBER {
  781. PVOID FiberData;
  783. //
  784. // Matches first three DWORDs of TEB
  785. //
  787. struct _EXCEPTION_REGISTRATION_RECORD *ExceptionList;
  788. PVOID StackBase;
  789. PVOID StackLimit;
  791. //
  792. // Used by base to free a thread's stack
  793. //
  795. PVOID DeallocationStack;
  797. CONTEXT FiberContext;
  799. PWX86TIB Wx86Tib;
  801. #ifdef _IA64_
  802. PVOID DeallocationBStore;
  803. PVOID BStoreLimit;
  804. #endif
  806. } FIBER, *PFIBER;
  808. #if defined(_AMD64_) || defined(_IA64_)
  809. #include <poppack.h>
  810. #endif
  812. //
  813. //
  814. // Process Object APIs
  815. //
  817. NTSYSCALLAPI
  818. NTSTATUS
  819. NTAPI
  820. NtCreateProcess(
  821. OUT PHANDLE ProcessHandle,
  822. IN ACCESS_MASK DesiredAccess,
  823. IN POBJECT_ATTRIBUTES ObjectAttributes OPTIONAL,
  824. IN HANDLE ParentProcess,
  825. IN BOOLEAN InheritObjectTable,
  826. IN HANDLE SectionHandle OPTIONAL,
  827. IN HANDLE DebugPort OPTIONAL,
  828. IN HANDLE ExceptionPort OPTIONAL
  829. );
  831. #define PROCESS_CREATE_FLAGS_BREAKAWAY 0x00000001
  832. #define PROCESS_CREATE_FLAGS_NO_DEBUG_INHERIT 0x00000002
  833. #define PROCESS_CREATE_FLAGS_INHERIT_HANDLES 0x00000004
  834. #define PROCESS_CREATE_FLAGS_OVERRIDE_ADDRESS_SPACE 0x00000008
  835. #define PROCESS_CREATE_FLAGS_LEGAL_MASK 0x0000000f
  837. NTSYSCALLAPI
  838. NTSTATUS
  839. NTAPI
  840. NtCreateProcessEx(
  841. OUT PHANDLE ProcessHandle,
  842. IN ACCESS_MASK DesiredAccess,
  843. IN POBJECT_ATTRIBUTES ObjectAttributes OPTIONAL,
  844. IN HANDLE ParentProcess,
  845. IN ULONG Flags,
  846. IN HANDLE SectionHandle OPTIONAL,
  847. IN HANDLE DebugPort OPTIONAL,
  848. IN HANDLE ExceptionPort OPTIONAL,
  849. IN ULONG JobMemberLevel
  850. );
  852. // begin_ntddk begin_ntifs
  853. NTSYSCALLAPI
  854. NTSTATUS
  855. NTAPI
  856. NtOpenProcess (
  857. OUT PHANDLE ProcessHandle,
  858. IN ACCESS_MASK DesiredAccess,
  859. IN POBJECT_ATTRIBUTES ObjectAttributes,
  860. IN PCLIENT_ID ClientId OPTIONAL
  861. );
  862. // end_ntddk end_ntifs
  865. NTSYSCALLAPI
  866. NTSTATUS
  867. NTAPI
  868. NtTerminateProcess(
  869. IN HANDLE ProcessHandle OPTIONAL,
  870. IN NTSTATUS ExitStatus
  871. );
  874. #define NtCurrentProcess() ( (HANDLE)(LONG_PTR) -1 ) // ntddk wdm ntifs
  876. #if defined(RTL_USE_KERNEL_PEB_RTN) || defined(NTOS_KERNEL_RUNTIME)
  878. #define NtCurrentPeb() (PsGetCurrentProcess ()->Peb)
  880. #else
  882. #define NtCurrentPeb() (NtCurrentTeb()->ProcessEnvironmentBlock)
  884. #endif
  886. // begin_ntddk begin_ntifs
  887. NTSYSCALLAPI
  888. NTSTATUS
  889. NTAPI
  890. NtQueryInformationProcess(
  891. IN HANDLE ProcessHandle,
  892. IN PROCESSINFOCLASS ProcessInformationClass,
  893. OUT PVOID ProcessInformation,
  894. IN ULONG ProcessInformationLength,
  895. OUT PULONG ReturnLength OPTIONAL
  896. );
  897. // end_ntddk end_ntifs
  899. NTSYSCALLAPI
  900. NTSTATUS
  901. NTAPI
  902. NtQueryPortInformationProcess(
  903. VOID
  904. );
  906. NTSYSCALLAPI
  907. NTSTATUS
  908. NTAPI
  909. NtSetInformationProcess(
  910. IN HANDLE ProcessHandle,
  911. IN PROCESSINFOCLASS ProcessInformationClass,
  912. IN PVOID ProcessInformation,
  913. IN ULONG ProcessInformationLength
  914. );
  916. //
  917. // Thread Object APIs
  918. //
  920. NTSYSCALLAPI
  921. NTSTATUS
  922. NTAPI
  923. NtCreateThread(
  924. OUT PHANDLE ThreadHandle,
  925. IN ACCESS_MASK DesiredAccess,
  926. IN POBJECT_ATTRIBUTES ObjectAttributes OPTIONAL,
  927. IN HANDLE ProcessHandle,
  928. OUT PCLIENT_ID ClientId,
  929. IN PCONTEXT ThreadContext,
  930. IN PINITIAL_TEB InitialTeb,
  931. IN BOOLEAN CreateSuspended
  932. );
  934. NTSYSCALLAPI
  935. NTSTATUS
  936. NTAPI
  937. NtOpenThread (
  938. OUT PHANDLE ThreadHandle,
  939. IN ACCESS_MASK DesiredAccess,
  940. IN POBJECT_ATTRIBUTES ObjectAttributes,
  941. IN PCLIENT_ID ClientId OPTIONAL
  942. );
  944. NTSYSCALLAPI
  945. NTSTATUS
  946. NTAPI
  947. NtTerminateThread(
  948. IN HANDLE ThreadHandle OPTIONAL,
  949. IN NTSTATUS ExitStatus
  950. );
  952. #define NtCurrentThread() ( (HANDLE)(LONG_PTR) -2 ) // ntddk wdm ntifs
  954. NTSYSCALLAPI
  955. NTSTATUS
  956. NTAPI
  957. NtSuspendThread(
  958. IN HANDLE ThreadHandle,
  959. OUT PULONG PreviousSuspendCount OPTIONAL
  960. );
  962. NTSYSCALLAPI
  963. NTSTATUS
  964. NTAPI
  965. NtResumeThread(
  966. IN HANDLE ThreadHandle,
  967. OUT PULONG PreviousSuspendCount OPTIONAL
  968. );
  970. NTSYSCALLAPI
  971. NTSTATUS
  972. NTAPI
  973. NtSuspendProcess (
  974. IN HANDLE ProcessHandle
  975. );
  977. NTSYSCALLAPI
  978. NTSTATUS
  979. NTAPI
  980. NtResumeProcess (
  981. IN HANDLE ProcessHandle
  982. );
  985. NTSYSCALLAPI
  986. NTSTATUS
  987. NTAPI
  988. NtGetContextThread(
  989. IN HANDLE ThreadHandle,
  990. IN OUT PCONTEXT ThreadContext
  991. );
  993. NTSYSCALLAPI
  994. NTSTATUS
  995. NTAPI
  996. NtSetContextThread(
  997. IN HANDLE ThreadHandle,
  998. IN PCONTEXT ThreadContext
  999. );
  1001. NTSYSCALLAPI
  1002. NTSTATUS
  1003. NTAPI
  1004. NtQueryInformationThread(
  1005. IN HANDLE ThreadHandle,
  1006. IN THREADINFOCLASS ThreadInformationClass,
  1007. OUT PVOID ThreadInformation,
  1008. IN ULONG ThreadInformationLength,
  1009. OUT PULONG ReturnLength OPTIONAL
  1010. );
  1012. // begin_ntifs
  1013. NTSYSCALLAPI
  1014. NTSTATUS
  1015. NTAPI
  1016. NtSetInformationThread(
  1017. IN HANDLE ThreadHandle,
  1018. IN THREADINFOCLASS ThreadInformationClass,
  1019. IN PVOID ThreadInformation,
  1020. IN ULONG ThreadInformationLength
  1021. );
  1022. // end_ntifs
  1024. NTSYSCALLAPI
  1025. NTSTATUS
  1026. NTAPI
  1027. NtAlertThread(
  1028. IN HANDLE ThreadHandle
  1029. );
  1031. NTSYSCALLAPI
  1032. NTSTATUS
  1033. NTAPI
  1034. NtAlertResumeThread(
  1035. IN HANDLE ThreadHandle,
  1036. OUT PULONG PreviousSuspendCount OPTIONAL
  1037. );
  1039. NTSYSCALLAPI
  1040. NTSTATUS
  1041. NTAPI
  1042. NtImpersonateThread(
  1043. IN HANDLE ServerThreadHandle,
  1044. IN HANDLE ClientThreadHandle,
  1045. IN PSECURITY_QUALITY_OF_SERVICE SecurityQos
  1046. );
  1048. NTSYSCALLAPI
  1049. NTSTATUS
  1050. NTAPI
  1051. NtTestAlert(
  1052. VOID
  1053. );
  1055. NTSYSCALLAPI
  1056. NTSTATUS
  1057. NTAPI
  1058. NtRegisterThreadTerminatePort(
  1059. IN HANDLE PortHandle
  1060. );
  1062. NTSYSCALLAPI
  1063. NTSTATUS
  1064. NTAPI
  1065. NtSetLdtEntries(
  1066. IN ULONG Selector0,
  1067. IN ULONG Entry0Low,
  1068. IN ULONG Entry0Hi,
  1069. IN ULONG Selector1,
  1070. IN ULONG Entry1Low,
  1071. IN ULONG Entry1High
  1072. );
  1074. typedef
  1075. VOID
  1076. (*PPS_APC_ROUTINE) (
  1077. IN PVOID ApcArgument1,
  1078. IN PVOID ApcArgument2,
  1079. IN PVOID ApcArgument3
  1080. );
  1082. NTSYSCALLAPI
  1083. NTSTATUS
  1084. NTAPI
  1085. NtQueueApcThread(
  1086. IN HANDLE ThreadHandle,
  1087. IN PPS_APC_ROUTINE ApcRoutine,
  1088. IN PVOID ApcArgument1,
  1089. IN PVOID ApcArgument2,
  1090. IN PVOID ApcArgument3
  1091. );
  1093. //
  1094. // Job Object APIs
  1095. //
  1097. NTSYSCALLAPI
  1098. NTSTATUS
  1099. NTAPI
  1100. NtCreateJobObject (
  1101. OUT PHANDLE JobHandle,
  1102. IN ACCESS_MASK DesiredAccess,
  1103. IN POBJECT_ATTRIBUTES ObjectAttributes OPTIONAL
  1104. );
  1106. NTSYSCALLAPI
  1107. NTSTATUS
  1108. NTAPI
  1109. NtOpenJobObject(
  1110. OUT PHANDLE JobHandle,
  1111. IN ACCESS_MASK DesiredAccess,
  1112. IN POBJECT_ATTRIBUTES ObjectAttributes
  1113. );
  1115. NTSYSCALLAPI
  1116. NTSTATUS
  1117. NTAPI
  1118. NtAssignProcessToJobObject(
  1119. IN HANDLE JobHandle,
  1120. IN HANDLE ProcessHandle
  1121. );
  1123. NTSYSCALLAPI
  1124. NTSTATUS
  1125. NTAPI
  1126. NtTerminateJobObject(
  1127. IN HANDLE JobHandle,
  1128. IN NTSTATUS ExitStatus
  1129. );
  1131. NTSYSCALLAPI
  1132. NTSTATUS
  1133. NTAPI
  1134. NtIsProcessInJob (
  1135. IN HANDLE ProcessHandle,
  1136. IN HANDLE JobHandle
  1137. );
  1139. NTSYSCALLAPI
  1140. NTSTATUS
  1141. NTAPI
  1142. NtCreateJobSet (
  1143. IN ULONG NumJob,
  1144. IN PJOB_SET_ARRAY UserJobSet,
  1145. IN ULONG Flags);
  1147. // begin_winnt
  1149. typedef struct _JOBOBJECT_BASIC_ACCOUNTING_INFORMATION {
  1150. LARGE_INTEGER TotalUserTime;
  1151. LARGE_INTEGER TotalKernelTime;
  1152. LARGE_INTEGER ThisPeriodTotalUserTime;
  1153. LARGE_INTEGER ThisPeriodTotalKernelTime;
  1154. ULONG TotalPageFaultCount;
  1155. ULONG TotalProcesses;
  1156. ULONG ActiveProcesses;
  1157. ULONG TotalTerminatedProcesses;
  1158. } JOBOBJECT_BASIC_ACCOUNTING_INFORMATION, *PJOBOBJECT_BASIC_ACCOUNTING_INFORMATION;
  1160. typedef struct _JOBOBJECT_BASIC_LIMIT_INFORMATION {
  1161. LARGE_INTEGER PerProcessUserTimeLimit;
  1162. LARGE_INTEGER PerJobUserTimeLimit;
  1163. ULONG LimitFlags;
  1164. SIZE_T MinimumWorkingSetSize;
  1165. SIZE_T MaximumWorkingSetSize;
  1166. ULONG ActiveProcessLimit;
  1167. ULONG_PTR Affinity;
  1168. ULONG PriorityClass;
  1169. ULONG SchedulingClass;
  1170. } JOBOBJECT_BASIC_LIMIT_INFORMATION, *PJOBOBJECT_BASIC_LIMIT_INFORMATION;
  1172. typedef struct _JOBOBJECT_EXTENDED_LIMIT_INFORMATION {
  1173. JOBOBJECT_BASIC_LIMIT_INFORMATION BasicLimitInformation;
  1174. IO_COUNTERS IoInfo;
  1175. SIZE_T ProcessMemoryLimit;
  1176. SIZE_T JobMemoryLimit;
  1177. SIZE_T PeakProcessMemoryUsed;
  1178. SIZE_T PeakJobMemoryUsed;
  1179. } JOBOBJECT_EXTENDED_LIMIT_INFORMATION, *PJOBOBJECT_EXTENDED_LIMIT_INFORMATION;
  1181. typedef struct _JOBOBJECT_BASIC_PROCESS_ID_LIST {
  1182. ULONG NumberOfAssignedProcesses;
  1183. ULONG NumberOfProcessIdsInList;
  1184. ULONG_PTR ProcessIdList[1];
  1185. } JOBOBJECT_BASIC_PROCESS_ID_LIST, *PJOBOBJECT_BASIC_PROCESS_ID_LIST;
  1187. typedef struct _JOBOBJECT_BASIC_UI_RESTRICTIONS {
  1188. ULONG UIRestrictionsClass;
  1189. } JOBOBJECT_BASIC_UI_RESTRICTIONS, *PJOBOBJECT_BASIC_UI_RESTRICTIONS;
  1191. typedef struct _JOBOBJECT_SECURITY_LIMIT_INFORMATION {
  1192. ULONG SecurityLimitFlags ;
  1193. HANDLE JobToken ;
  1194. PTOKEN_GROUPS SidsToDisable ;
  1195. PTOKEN_PRIVILEGES PrivilegesToDelete ;
  1196. PTOKEN_GROUPS RestrictedSids ;
  1197. } JOBOBJECT_SECURITY_LIMIT_INFORMATION, *PJOBOBJECT_SECURITY_LIMIT_INFORMATION ;
  1199. typedef struct _JOBOBJECT_END_OF_JOB_TIME_INFORMATION {
  1200. ULONG EndOfJobTimeAction;
  1201. } JOBOBJECT_END_OF_JOB_TIME_INFORMATION, *PJOBOBJECT_END_OF_JOB_TIME_INFORMATION;
  1203. typedef struct _JOBOBJECT_ASSOCIATE_COMPLETION_PORT {
  1204. PVOID CompletionKey;
  1205. HANDLE CompletionPort;
  1206. } JOBOBJECT_ASSOCIATE_COMPLETION_PORT, *PJOBOBJECT_ASSOCIATE_COMPLETION_PORT;
  1208. typedef struct _JOBOBJECT_BASIC_AND_IO_ACCOUNTING_INFORMATION {
  1209. JOBOBJECT_BASIC_ACCOUNTING_INFORMATION BasicInfo;
  1210. IO_COUNTERS IoInfo;
  1211. } JOBOBJECT_BASIC_AND_IO_ACCOUNTING_INFORMATION, *PJOBOBJECT_BASIC_AND_IO_ACCOUNTING_INFORMATION;
  1213. typedef struct _JOBOBJECT_JOBSET_INFORMATION {
  1214. ULONG MemberLevel;
  1215. } JOBOBJECT_JOBSET_INFORMATION, *PJOBOBJECT_JOBSET_INFORMATION;
  1217. #define JOB_OBJECT_TERMINATE_AT_END_OF_JOB 0
  1218. #define JOB_OBJECT_POST_AT_END_OF_JOB 1
  1220. //
  1221. // Completion Port Messages for job objects
  1222. //
  1223. // These values are returned via the lpNumberOfBytesTransferred parameter
  1224. //
  1226. #define JOB_OBJECT_MSG_END_OF_JOB_TIME 1
  1227. #define JOB_OBJECT_MSG_END_OF_PROCESS_TIME 2
  1228. #define JOB_OBJECT_MSG_ACTIVE_PROCESS_LIMIT 3
  1229. #define JOB_OBJECT_MSG_ACTIVE_PROCESS_ZERO 4
  1230. #define JOB_OBJECT_MSG_NEW_PROCESS 6
  1231. #define JOB_OBJECT_MSG_EXIT_PROCESS 7
  1232. #define JOB_OBJECT_MSG_ABNORMAL_EXIT_PROCESS 8
  1233. #define JOB_OBJECT_MSG_PROCESS_MEMORY_LIMIT 9
  1234. #define JOB_OBJECT_MSG_JOB_MEMORY_LIMIT 10
  1237. //
  1238. // Basic Limits
  1239. //
  1240. #define JOB_OBJECT_LIMIT_WORKINGSET 0x00000001
  1241. #define JOB_OBJECT_LIMIT_PROCESS_TIME 0x00000002
  1242. #define JOB_OBJECT_LIMIT_JOB_TIME 0x00000004
  1243. #define JOB_OBJECT_LIMIT_ACTIVE_PROCESS 0x00000008
  1244. #define JOB_OBJECT_LIMIT_AFFINITY 0x00000010
  1245. #define JOB_OBJECT_LIMIT_PRIORITY_CLASS 0x00000020
  1246. #define JOB_OBJECT_LIMIT_PRESERVE_JOB_TIME 0x00000040
  1247. #define JOB_OBJECT_LIMIT_SCHEDULING_CLASS 0x00000080
  1249. //
  1250. // Extended Limits
  1251. //
  1252. #define JOB_OBJECT_LIMIT_PROCESS_MEMORY 0x00000100
  1253. #define JOB_OBJECT_LIMIT_JOB_MEMORY 0x00000200
  1254. #define JOB_OBJECT_LIMIT_DIE_ON_UNHANDLED_EXCEPTION 0x00000400
  1255. #define JOB_OBJECT_LIMIT_BREAKAWAY_OK 0x00000800
  1256. #define JOB_OBJECT_LIMIT_SILENT_BREAKAWAY_OK 0x00001000
  1257. #define JOB_OBJECT_LIMIT_KILL_ON_JOB_CLOSE 0x00002000
  1259. #define JOB_OBJECT_LIMIT_RESERVED2 0x00004000
  1260. #define JOB_OBJECT_LIMIT_RESERVED3 0x00008000
  1261. #define JOB_OBJECT_LIMIT_RESERVED4 0x00010000
  1262. #define JOB_OBJECT_LIMIT_RESERVED5 0x00020000
  1263. #define JOB_OBJECT_LIMIT_RESERVED6 0x00040000
  1266. #define JOB_OBJECT_LIMIT_VALID_FLAGS 0x0007ffff
  1268. #define JOB_OBJECT_BASIC_LIMIT_VALID_FLAGS 0x000000ff
  1269. #define JOB_OBJECT_EXTENDED_LIMIT_VALID_FLAGS 0x00003fff
  1270. #define JOB_OBJECT_RESERVED_LIMIT_VALID_FLAGS 0x0007ffff
  1272. //
  1273. // UI restrictions for jobs
  1274. //
  1276. #define JOB_OBJECT_UILIMIT_NONE 0x00000000
  1278. #define JOB_OBJECT_UILIMIT_HANDLES 0x00000001
  1279. #define JOB_OBJECT_UILIMIT_READCLIPBOARD 0x00000002
  1280. #define JOB_OBJECT_UILIMIT_WRITECLIPBOARD 0x00000004
  1281. #define JOB_OBJECT_UILIMIT_SYSTEMPARAMETERS 0x00000008
  1282. #define JOB_OBJECT_UILIMIT_DISPLAYSETTINGS 0x00000010
  1283. #define JOB_OBJECT_UILIMIT_GLOBALATOMS 0x00000020
  1284. #define JOB_OBJECT_UILIMIT_DESKTOP 0x00000040
  1285. #define JOB_OBJECT_UILIMIT_EXITWINDOWS 0x00000080
  1287. #define JOB_OBJECT_UILIMIT_ALL 0x000000FF
  1289. #define JOB_OBJECT_UI_VALID_FLAGS 0x000000FF
  1291. #define JOB_OBJECT_SECURITY_NO_ADMIN 0x00000001
  1292. #define JOB_OBJECT_SECURITY_RESTRICTED_TOKEN 0x00000002
  1293. #define JOB_OBJECT_SECURITY_ONLY_TOKEN 0x00000004
  1294. #define JOB_OBJECT_SECURITY_FILTER_TOKENS 0x00000008
  1296. #define JOB_OBJECT_SECURITY_VALID_FLAGS 0x0000000f
  1298. typedef enum _JOBOBJECTINFOCLASS {
  1299. JobObjectBasicAccountingInformation = 1,
  1300. JobObjectBasicLimitInformation,
  1301. JobObjectBasicProcessIdList,
  1302. JobObjectBasicUIRestrictions,
  1303. JobObjectSecurityLimitInformation,
  1304. JobObjectEndOfJobTimeInformation,
  1305. JobObjectAssociateCompletionPortInformation,
  1306. JobObjectBasicAndIoAccountingInformation,
  1307. JobObjectExtendedLimitInformation,
  1308. JobObjectJobSetInformation,
  1309. MaxJobObjectInfoClass
  1310. } JOBOBJECTINFOCLASS;
  1311. //
  1312. // end_winnt
  1313. //
  1315. NTSYSCALLAPI
  1316. NTSTATUS
  1317. NTAPI
  1318. NtQueryInformationJobObject(
  1319. IN HANDLE JobHandle,
  1320. IN JOBOBJECTINFOCLASS JobObjectInformationClass,
  1321. OUT PVOID JobObjectInformation,
  1322. IN ULONG JobObjectInformationLength,
  1323. OUT PULONG ReturnLength OPTIONAL
  1324. );
  1326. NTSYSCALLAPI
  1327. NTSTATUS
  1328. NTAPI
  1329. NtSetInformationJobObject(
  1330. IN HANDLE JobHandle,
  1331. IN JOBOBJECTINFOCLASS JobObjectInformationClass,
  1332. IN PVOID JobObjectInformation,
  1333. IN ULONG JobObjectInformationLength
  1334. );
  1336. #ifdef __cplusplus
  1337. }
  1338. #endif
  1340. #endif // _NTPSAPI_