This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(288, 28.000000000000004%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFS%3C/text%3E%3C/svg%3E)
For both operations the documentation says "This routine is called at PASSIVE_LEVEL in an arbitrary thread context with normal kernel APCs disabled."
I always thought they would be called from the calling process. My code also works as intended.
https://stackoverflow.com/questions/62389142/how-to-find-out-which-process-sent-the-request also confirms this.
Is this a documentation error?
If not, does that mean that PsGetCurrentProcess() does not return the requestor process?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 68%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELT%3C/text%3E%3C/svg%3E)
Hello there,
In this callback, the current context is the operation requester.
You can always just call PsGetCurrentProcess and PsGetCurrentProcessId to get the PEPROCESS and Id of the current context.
Hope this resolves your Query !!
--If the reply is helpful, please Upvote and Accept it as an answer--
The documentation clearly says otherwise: in an arbitrary thread context