Ntoskrnl.exe

From Wikipedia, the free encyclopedia

The correct title of this article is ntoskrnl.exe. The initial letter is shown capitalized due to technical restrictions.

ntoskrnl.exe (and ntkrnlpa.exe on systems with Physical Address Extension support) is the kernel image for the family of Microsoft Windows NT operating systems. It provides the Microkernel and Executive layers of the Windows NT kernel space, and is responsible for various system services such as hardware virtualisation, process and memory management, etc., thus making it a fundamental part of the system. It contains the Cache Manager, the Executive, the Kernel, the Security Reference Monitor, the Memory Manager, and the Scheduler, among other things.^[1]

1 Startup
2 Names of kernel
3 Notes
4 See also

[edit] Startup

This system binary is a Native Application (in that it is linked against ntdll.dll) but with a standard main entry point, a stub that calls the Kernel Initialization function:

//
// NTOSKRNL main
//
int main( boot parameters )
{
  //
  // Fire up NT!
  //
  KiSystemStartup();
  return 0;
}

^[1]

[edit] Names of kernel

NTOSKRNL.EXE : 1 CPU
NTKRNLMP.EXE : N CPU SMP
NTKRNLPA.EXE : 1 CPU, PAE
NTKRPAMP.EXE : N CPU SMP PAE

[edit] Notes

^ ^a ^b Russinovich, M: Systems Internals Tips and Trivia, SysInternals Information

[edit] See also

This Microsoft Windows article is a stub. You can help Wikipedia by expanding it.

Retrieved from "http://en.wikipedia.org../../../n/t/o/Ntoskrnl.exe.html"

Categories: Microsoft Windows stubs | Windows components | Microkernel

Ntoskrnl.exe

From Wikipedia, the free encyclopedia

Contents

[edit] Startup

[edit] Names of kernel

[edit] Notes

[edit] See also

Views

Navigation

interaction

Search

In other languages