基址重定位

最後更新：2018-12-05 來源：互聯網

上載者：User

創建阿里雲帳戶，並獲得超過 40 款產品的免費試用版；而企業帳戶則可以享有總值 $1200 的免費試用版。立即註冊！

// BRL.cpp : 輸出基址重定位資訊//#include "stdafx.h"#include <windows.h>DWORD RVA2Offset( PIMAGE_NT_HEADERS pNTHeader, DWORD dwRVA ){    PIMAGE_SECTION_HEADER pSection = ( PIMAGE_SECTION_HEADER )( ( DWORD )pNTHeader + sizeof( IMAGE_NT_HEADERS ) );        for ( int i = 0; i < pNTHeader->FileHeader.NumberOfSections; i++ )    {        if ( dwRVA >= pSection[i].VirtualAddress && dwRVA < ( pSection[i].VirtualAddress + pSection[i].SizeOfRawData ) )        {            return pSection[i].PointerToRawData + ( dwRVA - pSection[i].VirtualAddress );        }    }        return 0;}int _tmain( int argc, _TCHAR* argv[] ){    HANDLE hFile = INVALID_HANDLE_VALUE;    HANDLE hMapping = NULL;    PVOID pbFile = NULL;    __try    {        TCHAR sExePath[MAX_PATH] = {0};        _getts_s( sExePath );        hFile = CreateFile( sExePath, GENERIC_ALL, FILE_SHARE_WRITE, NULL, OPEN_EXISTING, NULL, NULL );        hMapping = CreateFileMapping( hFile, NULL, PAGE_READWRITE, 0, 0, NULL );        pbFile = MapViewOfFile( hMapping, FILE_MAP_ALL_ACCESS, 0, 0, 0 );                if ( INVALID_HANDLE_VALUE == hFile || NULL == hMapping || NULL == pbFile )        {            printf( "建立記憶體對應檔失敗\r\n" );            return -1;        }                PIMAGE_DOS_HEADER pDosHeader = ( PIMAGE_DOS_HEADER )pbFile;        PIMAGE_NT_HEADERS pNTHeader = ( PIMAGE_NT_HEADERS )( ( DWORD )pbFile + pDosHeader->e_lfanew );                if ( 0x00004550 != pNTHeader->Signature )        {            printf( "不是有效PE檔案\r\n" );            return -1;        }                DWORD dwRelocOffset = RVA2Offset( pNTHeader, pNTHeader->OptionalHeader.DataDirectory[IMAGE_DIRECTORY_ENTRY_BASERELOC].VirtualAddress );        PIMAGE_BASE_RELOCATION pReloc = ( PIMAGE_BASE_RELOCATION )( ( DWORD )pbFile + dwRelocOffset );                if ( 0 == pReloc->VirtualAddress )        {            printf( "沒有重定位表\r\n" );            return -1;        }                while ( pReloc->VirtualAddress )        {            printf( "重定位地址:[0x%08X]\r\n", pReloc->VirtualAddress );                        for ( DWORD i = 0; i < ( pReloc->SizeOfBlock - sizeof( IMAGE_BASE_RELOCATION ) ) / 2; i++ )            {                printf( "   <%04d> - 0x%08X\n", i, pReloc->VirtualAddress + ( ( *( WORD* )( ( DWORD )pReloc + sizeof( IMAGE_BASE_RELOCATION ) + i * 2 ) ) & 0x0FFF ) );            }            pReloc = ( PIMAGE_BASE_RELOCATION )( ( DWORD )pReloc + pReloc->SizeOfBlock );        }        return 0;    }    __finally    {        if ( NULL != pbFile )        {            UnmapViewOfFile( pbFile );        }                if ( NULL != hMapping )        {            CloseHandle( hMapping );        }                if ( INVALID_HANDLE_VALUE != hFile )        {            CloseHandle( hFile );        }    }}

本文章原先以中文撰寫並發佈於 aliyun.com，亦設英文版本，僅作資訊用途。本網站不對文章的準確性，完整性或可靠性或其任何翻譯作出任何明示或暗示的陳述或保證。如對該文章有任何疑慮或投訴，請傳送電郵至 info-contact@alibabacloud.com 並提供相關疑慮或投訴的詳細說明。職員會於 5 個工作天內與您聯絡，一經驗證之後，即會刪除該侵權內容。

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

Sales Support

1 on 1 presale consultation

Chat Contact Sales
After-Sales Support

24/7 Technical Support 6 Free Tickets per Quarter Faster Response

Open a Ticket
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

Learn More

基址重定位

聯繫我們

A Free Trial That Lets You Build Big!

Sales Support

After-Sales Support