Comment by immibis 1 month ago So now you're talking about the ntdll.dll ABI instead of the kernel ABI. ntdll.dll is not the kernel. 2 comments immibis Reply sedatk 1 month ago NTDLL is NT’s kernel ABI, not syscalls. Nothing on Windows uses syscalls to call the kernel.NTDLL isn’t some higher level library. It’s just a series of entry points into NT kernel. dcrazy 1 month ago Yes, the fact that functions in NTDLL issue a syscall instruction is a platform-specific implementation detail.
sedatk 1 month ago NTDLL is NT’s kernel ABI, not syscalls. Nothing on Windows uses syscalls to call the kernel.NTDLL isn’t some higher level library. It’s just a series of entry points into NT kernel. dcrazy 1 month ago Yes, the fact that functions in NTDLL issue a syscall instruction is a platform-specific implementation detail.
dcrazy 1 month ago Yes, the fact that functions in NTDLL issue a syscall instruction is a platform-specific implementation detail.
NTDLL is NT’s kernel ABI, not syscalls. Nothing on Windows uses syscalls to call the kernel.
NTDLL isn’t some higher level library. It’s just a series of entry points into NT kernel.
Yes, the fact that functions in NTDLL issue a syscall instruction is a platform-specific implementation detail.