As I know that if IRQL level is dispatch then you can access memory from non paged pool. if we will try to access memory from paged pool.just wanted to know why ?
why we can access memory from non paged pool at or above DISPATCH LEVEL
3.6k views Asked by MM WDD At
1
There are 1 answers
Related Questions in WINDOWS
- how to play a sounds in c# forms?
- Echo behaviour of Microsoft Windows Telnet Client
- Getting error while running spark-shell on my system; pyspark is running fine
- DirectX 9 With No SDK Installed - How To Translate a D3DMATRIX?
- Gradle 8.7 cannot find installed JDK 22 in IntelliJ
- 'IOException: The cloud file provider is not running', when trying to delete 'cloud' folder
- Cannot load modules/mod_dav_svn.so into server
- Issue with launching application after updating ElectronJs to version 28.0.0 on Windows and Linux
- 32-bit applications do not display some files in Windows 10
- 'bun' is not recognized as an internal or external command
- mkssecreenshotmgr taking a screenshot
- Next js installation in windows 7 os
- Can't resize a partition using Mini Tool?
- Is there any way to set a printer as default according with Active Directory Policy Security Group and PC hostname?
- Electron Printing not working on Windows (Works on Mac)
Related Questions in KERNEL
- Simulate WeChat scanning short connection redirection, but the QQ display result is different from WeChat?
- Validating a client from kernel in Windows
- Yocto kernel patch fails with git am
- Nuke BlinkScript: Why does the convolution kernel scale down the image?
- EKS AMI kernel debug symbols
- Unexpected OS Shutdown
- create_ap wlan0: Could not connect to kernel driver
- QEMU i386 pmio addresses
- Simple programming of VGA cursor
- How to compile and install kernel modules with dependencies and device tree?
- android camera driver rotate 90°
- Is there any way to get the WiFi contention window (CW) min and max value in Linux 80211 subsystem?
- How to reduce cached memory used by Linux kernel on embedded linux platform
- How can I get current cpufreq in kernel code?
- Print Inode or file data, using path name
Related Questions in DRIVER
- How to setup SLI on two GTX 560Ti's
- How can I set an uncommon screen resolution on GNU/Linux with an Arc 380 GPU and X11?
- Bluetooth Driver file corrupt or replaced
- Simba Driver Upgrade on Windows
- OpcUA The user identity token is not valid
- RPi Linux Audio driver for 8 channels Codec
- ORA-61754: Using JSON type collections on Oracle Database release 23c or later requires a SODA driver for Oracle Database release 23c or later
- create_ap wlan0: Could not connect to kernel driver
- How to fix Linux CMA on x86 with internal graphic card i915/hda_intel ioremap error?
- How to enable Swap APO in SYSVAD sample driver without enhancement tab in windows 11?
- RT linux isr routine
- I sent a bundle of data by using bulkTransfer, but received data in pieces
- Trying to do sudo make for linux driver
- Erreur "java.lang.ClassNotFoundException: org.postgresql.Driver"
- In Windows 10/11 is there a way to script a device to use a specific driver, even if its not marked as compatible?
Related Questions in NDIS
- Coding drivers to support different modes on chipsets
- WMI MSNdis_80211_BSSIList requires a survey
- NDIS LWF questions
- The problem of FwpsCalloutRegister function registration failure in WPF driver
- Suspending a NDIS LWF
- What is Microsoft's nm3.sys (Netmon Lightweight Filter Driver) in the NDIS network stack?
- Is WFP in Windows kernel implemented using a NDIS LWF driver?
- NDIS 6 Filter Driver with cloned Net Buffer List running extremely slowly
- Fatal Error : C1083: Cannot open include file: 'ndis.h': No such file or directory
- DPC_WATCHDOG_VIOLATION (133/1) Potentially related to NdisFIndicateReceiveNetBufferLists?
- Is there a way to read the NET_BUFFER at once?
- Is it possible to change our NDIS LWF's altitude on the LWF stack?
- KERNEL_SECURITY_CHECK_FAILURE bsod after using NdisFreeNetBufferList?
- HCK has 0 tests for our NDIS LWF? And HLK doesn't include NDIS Test 6.5 LWF Logo tests?
- Filtering NDIS-Protocoldrivers with WFP
Related Questions in WDM
- How to enable warning C6067 during (WDM) Windows driver compilation in VS 2022?
- How to copy a UCHAR string in WCHAR string in C Windows Kernel Driver
- How to pass HLK "PNP surprise device remove test"?
- How can I get file mime type in kernel mode
- The problem of FwpsCalloutRegister function registration failure in WPF driver
- How can I call method as a callback?
- NAudio - WaveInEvent DataAvailable not firing
- Unloading WDM mouse filter driver requires additional mouse click
- Installing the driver using devcon and pnputil
- How can I modfy mouse_input_data in irp
- windbg : how to find driverentry in live debugging?
- MSVAD sending audio through IOCTL and getting silences each X ms
- WriteFile and receiving IRP_MJ_WRITE with buffer on Irp->UserBuffer
- Correct way to disable windows kernel mode driver activity
- Shopify CLI error: cannot use gems with Shopify CLI, cannot load such file
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
"why we can access memory from non paged pool at or above DISPATCH LEVEL" is a statement, question is why we cannot access memory from paged pool IRQL >= DISPATCH_LEVEL?
Well...
-- http://msdn.microsoft.com/en-us/library/windows/hardware/ff554368(v=vs.85).aspx
Why is this:
suppose your driver is servicing an interrupt, and while at it, it holds a spin lock. Now, you want to access some data structure that resides on the paged pool and as you are already out of luck, that data is on a page that has been paged-out by the memory manager.
Now, your driver has to wait until the memory manager page-in your data. You are blocking/waiting/sleeping, actually your driver is.
Now, another interrupt occurs, but since you are still waiting for the data to be paged-in, what do you think what will happen now?
Know this,
as your driver waits longer for something to happen, your kernel will go to freeze.
Also,
-- https://developer.apple.com/library/mac/documentation/Darwin/Conceptual/KernelProgramming/synchronization/synchronization.html
anyway, read this further:
-- http://msdn.microsoft.com/en-us/library/windows/hardware/ff554368(v=vs.85).aspx
Page fault is an exception that needs to be serviced quickly by the memory manager. While your driver holds spinlock and holds that processor hostage, that processor is as good as dead right now.
MSDN says:
-- http://msdn.microsoft.com/en-us/library/windows/hardware/ff559854(v=vs.85).aspx
All this answers what will happen, or what can happen. As to answer Why we cannot use paged memory above or at DISPATCH_LEVEL:
I have tried to fetch as much relevant information as possible, if you are still not sold, try reading on spin-locks, re-entrant functions, interrupt handling, Paging. Try reading for Linux, Windows, and Apple's OS's kernel. They all say same things with varying details.