UMDF drivers and processes RRS feed

  • Question

  • I understand that this question has been asked previously in the forums. But still, is it OK to call CreateProcess() from UMDF diver ? I see that I am able to call CreateProcess() on an exe from UMDF driver and the process starts but not with the correct access/privileges etc. Is it legitimate calling this API from UMDF?
    • Edited by its_me_here Thursday, April 19, 2018 7:57 PM
    Thursday, April 19, 2018 7:56 PM


  • It is not recommended. Why are you trying to launch a process from the driver and what does it do?

    UMDF driver host process runs in the context of the local service account (and in session 0). So what you're seeing is by-design.

    Friday, April 20, 2018 2:42 AM