Menu
Home
People
Places
Arts
History
Plants & Animals
Science
Life & Culture
Technology
Reference.org
Local Inter-Process Communication
open-in-new
<h2 id="implementation">Implementation</h2> <p>(A)LPC is implemented using kernel "port" objects, which are securable (with <a href="/facts/Access-control_list/t38J9Vao">ACLs</a>, allowing e.g. only specific <a href="/facts/Security_Identifier/2lHWPTa8">SIDs</a> to use them) and allow identification of the process on the other side of the connection. Individual messages are also securable: applications can set per-message SIDs, and also test for changes of the security context in the token associated with the (A)LPC message. </p><p>The typical communication scenario between the server and the client is as follows: </p> <ol><li>A server process first creates a <i>named server connection port</i> object, and waits for clients to connect.</li> <li>A client requests a connection to that named port by sending a connect message.</li> <li>If the server accepts the connection, two <i>unnamed</i> ports are created: <ul><li><i>client communication port</i> - used by client threads to communicate with a particular server</li> <li><i>server communication port</i> - used by the server to communicate with a particular client; one such port per client is created</li></ul></li> <li>The client receives a handle to the client communication port, and server receives a handle to the server communication port, and the inter-process communication channel is established.</li></ol> <p>(A)LPC supports the following three modes of message exchange between the server and client:<a class="footnote-ref" id="fnref:4" href="#fn:4"><sup>4</sup></a> </p> <ul><li>For short messages (fewer than 256 bytes) the kernel copies the message buffers between processes, from the <a href="/facts/Address_space/EscyYKkP">address space</a> of the sending process to the system address space, and from there to the receiving process' address space.</li> <li>For messages longer than 256 bytes a shared memory section must be used to transfer data, which the (A)LPC service maps between the sending and receiving processes. First the sender places data into the shared memory, and then sends a notification (e.g. a small message, using the first method of (A)LPC) to the receiving process pointing to the sent data in the shared memory section.</li> <li>Server can directly read and write data from the client's address space, when the amount of data is too large to fit in a shared section.</li></ul> <p>ALPC has a performance advantage over the former LPC interface, as it can be configured to use <a href="/facts/Input%2foutput_completion_port/N5CIu3Mh">I/O completion ports</a> instead of synchronous request/reply mechanism that LPC exclusively uses.<a class="footnote-ref" id="fnref:5" href="#fn:5"><sup>5</sup></a> This enables ALPC ports high-speed communication which automatically balances the number of messages and threads. Additionally, ALPC messages can be batched together so as to minimize user-mode/kernel-mode switches. </p> <h2 id="known-usage">Known usage</h2> <p>(A)LPC is used heavily in communication between internal subsystems in Windows NT. The Win32 subsystem uses (A)LPC heavily for communication between client and the subsystem server (<a href="/facts/Client%2fServer_Runtime_Subsystem/nxUgkwbE">CSRSS</a>). Quick LPC was introduced in version 3.51 of Windows NT to make these calls faster. This method was largely abandoned in version 4.0 in favor of moving the performance critical server portions into kernel mode (win32k.sys). </p><p>The <a href="/facts/Local_Security_Authority_Subsystem_Service/qqlSnIK5">Local Security Authority Subsystem Service</a> (LSASS), <a href="/facts/Session_Manager/fzK0XD6s">Session Manager</a> (SMSS), and <a href="/facts/Service_Control_Manager/lvTwwwVw">Service Control Manager</a> all use (A)LPC ports directly to communicate with client processes. <a href="/facts/Winlogon/AACjUHLY">Winlogon</a> and the <a href="/facts/Reference_monitor/eU2TbKYK">Security Reference Monitor</a> use it to communicate with the LSASS process. </p><p>As mentioned, Microsoft RPC can use (A)LPC as a transport when the client and server are both on the same machine. Many services that are designed to communicate only on the local computer use (A)LPC as the only transport through RPC. The implementation of remote <a href="/facts/Object_Linking_and_Embedding/Eabu8Qnl">OLE</a> and <a href="/facts/Distributed_Component_Object_Model/mpDM1JXX">DCOM</a> in many cases uses (A)LPC for local communication as well. </p> <h2 id="see-also">See also</h2> <ul><li><a href="/facts/Doors_(computing)/QxFQSFGP">Doors</a></li> <li><a href="/facts/Remote_procedure_call/uMMb9CQw">Remote procedure call</a></li></ul> <h2 id="notes">Notes</h2> <ul><li>Dabak, Prasad; Borate, Milind; Phadke, Sandeep (1999), <i>Undocumented Windows NT</i>, <a href="/facts/Hungry_Minds/WvwTlWHu">Hungry Minds</a>, <a href="/facts/ISBN_(identifier)/15AdSPa9">ISBN</a> 0-7645-4569-8</li> <li><a href="/facts/Mark_Russinovich/xutjgFN2">Russinovich, Mark</a>; Solomon, David; Ionescu, Alex (2009), <i>Windows® Internals</i> (5th ed.), <a href="/facts/Microsoft_Press/5bNASSu4">Microsoft Press</a>, <a href="/facts/ISBN_(identifier)/15AdSPa9">ISBN</a> 978-0-7356-2530-3</li></ul> <h2 id="external-links">External links</h2> <ul><li><a href="https://web.archive.org/web/20080612141354/http://www.windowsitlibrary.com/Content/356/08/toc.html">Local Procedure Call</a> at the <a href="/facts/Wayback_Machine/nmQ3a6JC">Wayback Machine</a> (archived June 12, 2008) — Includes explanation of undocumented functions</li> <li><a href="http://www.zezula.net/en/prog/lpc.html">LPC Communication</a></li></ul> <h2 id="references">References</h2> <ol> <li id="fn:1"><p>"LPC (Local procedure calls) Part 1 architecture". Microsoft Docs. <a href="https://docs.microsoft.com/en-us/archive/blogs/ntdebugging/lpc-local-procedure-calls-part-1-architecture" target="_blank">https://docs.microsoft.com/en-us/archive/blogs/ntdebugging/lpc-local-procedure-calls-part-1-architecture</a> <a href="#fnref:1" class="footnote-back-ref">↩</a></p></li> <li id="fn:2"><p>"LPC (Local procedure calls) Part 1 architecture". Microsoft Docs. <a href="https://docs.microsoft.com/en-us/archive/blogs/ntdebugging/lpc-local-procedure-calls-part-1-architecture" target="_blank">https://docs.microsoft.com/en-us/archive/blogs/ntdebugging/lpc-local-procedure-calls-part-1-architecture</a> <a href="#fnref:2" class="footnote-back-ref">↩</a></p></li> <li id="fn:3"><p>Russinovich, Solomon & Ionescu (2009:201) - Russinovich, Mark; Solomon, David; Ionescu, Alex (2009), Windows® Internals (5th ed.), Microsoft Press, ISBN 978-0-7356-2530-3 <a href="#fnref:3" class="footnote-back-ref">↩</a></p></li> <li id="fn:4"><p>Russinovich, Solomon & Ionescu (2009:203) - Russinovich, Mark; Solomon, David; Ionescu, Alex (2009), Windows® Internals (5th ed.), Microsoft Press, ISBN 978-0-7356-2530-3 <a href="#fnref:4" class="footnote-back-ref">↩</a></p></li> <li id="fn:5"><p>Russinovich, Solomon & Ionescu (2009:204) - Russinovich, Mark; Solomon, David; Ionescu, Alex (2009), Windows® Internals (5th ed.), Microsoft Press, ISBN 978-0-7356-2530-3 <a href="#fnref:5" class="footnote-back-ref">↩</a></p></li> </ol>