Comment by immibis 17 hours ago So now you're talking about the ntdll.dll ABI instead of the kernel ABI. ntdll.dll is not the kernel. 2 comments immibis Reply sedatk 9 hours ago NTDLL is NT’s kernel ABI, not syscalls. Nothing on Windows uses syscalls to call the kernel.NTDLL isn’t some higher level library. It’s just a series of entry points into NT kernel. dcrazy 9 hours ago Yes, the fact that functions in NTDLL issue a syscall instruction is a platform-specific implementation detail.
sedatk 9 hours ago NTDLL is NT’s kernel ABI, not syscalls. Nothing on Windows uses syscalls to call the kernel.NTDLL isn’t some higher level library. It’s just a series of entry points into NT kernel. dcrazy 9 hours ago Yes, the fact that functions in NTDLL issue a syscall instruction is a platform-specific implementation detail.
dcrazy 9 hours ago Yes, the fact that functions in NTDLL issue a syscall instruction is a platform-specific implementation detail.
NTDLL is NT’s kernel ABI, not syscalls. Nothing on Windows uses syscalls to call the kernel.
NTDLL isn’t some higher level library. It’s just a series of entry points into NT kernel.
Yes, the fact that functions in NTDLL issue a syscall instruction is a platform-specific implementation detail.