SYSTEM_POLICY_INFORMATION

The SYSTEM_POLICY_INFORMATION structure is produced as output or expected as input by the functions

respectively, when given the information class SystemPolicyInformation (0x86).

Documentation Status

The SYSTEM_POLICY_INFORMATION structure used not to be documented. A C-language definition was added to WINTERNL.H from the Software Development Kit (SDK) for Windows 8.1. It presents the whole structure as arrays named Reserved1 and Reserved2.  This is also how the structure is described in documentation of NtQuerySystemInformation as found online today, 28th October 2016.

Layout

The SYSTEM_POLICY_INFORMATION is 0x14 or 0x20 bytes in 32-bit and 64-bit Windows, respectively.

Offset (x86) Offset (x64) Definition
0x00 0x00 
PVOID InputData;
0x04 0x08 
PVOID OutputData;
0x08 0x10 
ULONG InputDataSize;
0x0C 0x14 
ULONG OutputDataSize;
0x10 0x18 
ULONG Version;

This page was created on 9th July 2016 but was not published until 26th October 2016. It was last modified on 28th October 2016.

Copyright © 2016. Geoff Chappell. All rights reserved. Conditions apply.