[求助]如何通过文件句柄得到文件路径?-编程技术-看雪-安全社区|安全招聘|kanxue.com

最新回复 (4)
shoooo 雪币： 398 活跃值： (343) 能力值： (RANK：650 ) 在线值：发帖 91 回帖 2169 粉丝 5 关注私信	shoooo 16 2 楼我只会这样 #include <windows.h> #pragma comment(lib, "ntdll.lib") #pragma comment(linker, "/subsystem:windows") #pragma comment(linker, "/entry:start") #pragma comment(linker, "/filealign:0x200") typedef struct _IO_STATUS_BLOCK { LONG Status; LONG Information; } IO_STATUS_BLOCK, *PIO_STATUS_BLOCK; typedef struct _FILE_NAME_INFORMATION { ULONG FileNameLength; WCHAR FileName[MAX_PATH]; } FILE_NAME_INFORMATION; __declspec(dllimport) LONG __stdcall ZwQueryInformationFile( IN HANDLE FileHandle, OUT PIO_STATUS_BLOCK IoStatusBlock, OUT PVOID FileInformation, IN ULONG FileInformationLength, IN ULONG FileInformationClass ); void start() { char szFileName[MAX_PATH]; HANDLE hFile; IO_STATUS_BLOCK isb; FILE_NAME_INFORMATION fni; GetModuleFileName(NULL, szFileName, MAX_PATH); hFile = CreateFile(szFileName, GENERIC_READ, FILE_SHARE_READ, NULL, OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, NULL); if (hFile != (HANDLE)-1) { if (ZwQueryInformationFile(hFile, &isb, &fni, sizeof(fni), 9) == 0) { fni.FileName[fni.FileNameLength/2] = 0; MessageBoxW(0, fni.FileName, L"hFile", 0); } CloseHandle(hFile); } ExitProcess(0); } 我感觉应该从取得对象信息来弄这块会好一些上传的附件： hFile.rar （1.29kb，58次下载） 2008-1-5 20:00 0
炉子雪币： 66 活跃值： (16) 能力值： ( LV8，RANK：130 ) 在线值：发帖 4 回帖 317 粉丝 1 关注私信	炉子 3 3 楼俺也是ZwQueryInformationFile 2008-1-5 20:42 0
雪天使雪币： 101 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 7 回帖 22 粉丝 0 关注私信	雪天使 4 楼 GetFileInformationByHandle函数可以得到文件的相关信息,不过得不到文件的路径. 还有楼上的代码是C的,看不懂.哪位大牛帮忙翻译一下? 2008-1-6 19:19 0
foxabu 雪币： 325 活跃值： (97) 能力值： ( LV13，RANK：530 ) 在线值：发帖 55 回帖 1236 粉丝 5 关注私信	foxabu 13 5 楼 GetFileInformationByHandleEx Function Retrieves file information for the specified file. BOOL WINAPI GetFileInformationByHandleEx( __in HANDLE hFile, __in FILE_INFO_BY_HANDLE_CLASS FileInformationClass, __out LPVOID lpFileInformation, __in DWORD dwBufferSize ); Parameters hFile A handle to the file. This handle should not be a pipe handle. The GetFileInformationByHandleEx function does not work with pipe handles. FileInformationClass The type of information to be returned to the calling application. For a list of values, see FILE_INFO_BY_HANDLE_CLASS. lpFileInformation A pointer to the buffer that receives the requested file information. The structure that is returned corresponds to the class that is specified by FileInformationClass. FileInformationClass FileInformation structure returned FileBasicInfo FILE_BASIC_INFO FileStandardInfo FILE_STANDARD_INFO FileNameInfo FILE_NAME_INFO FileStreamInfo FILE_STREAM_INFO FileCompressionInfo FILE_COMPRESSION_INFO FileAttributeTagInfo FILE_ATTRIBUTE_TAG_INFO FileIdBothDirectoryInfo FILE_ID_BOTH_DIR_INFO FileIdBothDirectoryRestartInfo FILE_ID_BOTH_DIR_INFO dwBufferSize The size of the lpFileInformation buffer, in bytes. Return Value If the function succeeds, the return value is nonzero. If the function fails, the return value is zero. To get extended error information, call GetLastError. Remarks If FileInformationClass is FileStreamInfo and the calls succeed but no streams are returned, the error that is returned by GetLastError is ERROR_HANDLE_EOF. Certain file information classes behave slightly differently on different operating system releases. These classes are supported by the underlying drivers, and any information they return is subject to change between operating system releases. This function is declared in Fileextd.h and implemented in Fileextd.lib; both are available for download at MSDN on the Win32 FileID API Library page. Transacted Operations If there is a transaction bound to the thread at the time of the call, then the function returns the compressed file size of the isolated file view. Requirements 这个函数貌似可以返回。。只是我感觉你的SDK 里面没有的可能性极大。 2008-1-6 19:50 0
	游客登录 \| 注册方可回帖回帖表情雪币赚取及消费高级回复

最新回复 (4)
shoooo 雪币： 398 活跃值： (343) 能力值： (RANK：650 ) 在线值：发帖 91 回帖 2169 粉丝 5 关注私信	shoooo 16 2 楼我只会这样 #include <windows.h> #pragma comment(lib, "ntdll.lib") #pragma comment(linker, "/subsystem:windows") #pragma comment(linker, "/entry:start") #pragma comment(linker, "/filealign:0x200") typedef struct _IO_STATUS_BLOCK { LONG Status; LONG Information; } IO_STATUS_BLOCK, *PIO_STATUS_BLOCK; typedef struct _FILE_NAME_INFORMATION { ULONG FileNameLength; WCHAR FileName[MAX_PATH]; } FILE_NAME_INFORMATION; __declspec(dllimport) LONG __stdcall ZwQueryInformationFile( IN HANDLE FileHandle, OUT PIO_STATUS_BLOCK IoStatusBlock, OUT PVOID FileInformation, IN ULONG FileInformationLength, IN ULONG FileInformationClass ); void start() { char szFileName[MAX_PATH]; HANDLE hFile; IO_STATUS_BLOCK isb; FILE_NAME_INFORMATION fni; GetModuleFileName(NULL, szFileName, MAX_PATH); hFile = CreateFile(szFileName, GENERIC_READ, FILE_SHARE_READ, NULL, OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, NULL); if (hFile != (HANDLE)-1) { if (ZwQueryInformationFile(hFile, &isb, &fni, sizeof(fni), 9) == 0) { fni.FileName[fni.FileNameLength/2] = 0; MessageBoxW(0, fni.FileName, L"hFile", 0); } CloseHandle(hFile); } ExitProcess(0); } 我感觉应该从取得对象信息来弄这块会好一些上传的附件： hFile.rar （1.29kb，58次下载） 2008-1-5 20:00 0
炉子雪币： 66 活跃值： (16) 能力值： ( LV8，RANK：130 ) 在线值：发帖 4 回帖 317 粉丝 1 关注私信	炉子 3 3 楼俺也是ZwQueryInformationFile 2008-1-5 20:42 0
雪天使雪币： 101 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 7 回帖 22 粉丝 0 关注私信	雪天使 4 楼 GetFileInformationByHandle函数可以得到文件的相关信息,不过得不到文件的路径. 还有楼上的代码是C的,看不懂.哪位大牛帮忙翻译一下? 2008-1-6 19:19 0
foxabu 雪币： 325 活跃值： (97) 能力值： ( LV13，RANK：530 ) 在线值：发帖 55 回帖 1236 粉丝 5 关注私信	foxabu 13 5 楼 GetFileInformationByHandleEx Function Retrieves file information for the specified file. BOOL WINAPI GetFileInformationByHandleEx( __in HANDLE hFile, __in FILE_INFO_BY_HANDLE_CLASS FileInformationClass, __out LPVOID lpFileInformation, __in DWORD dwBufferSize ); Parameters hFile A handle to the file. This handle should not be a pipe handle. The GetFileInformationByHandleEx function does not work with pipe handles. FileInformationClass The type of information to be returned to the calling application. For a list of values, see FILE_INFO_BY_HANDLE_CLASS. lpFileInformation A pointer to the buffer that receives the requested file information. The structure that is returned corresponds to the class that is specified by FileInformationClass. FileInformationClass FileInformation structure returned FileBasicInfo FILE_BASIC_INFO FileStandardInfo FILE_STANDARD_INFO FileNameInfo FILE_NAME_INFO FileStreamInfo FILE_STREAM_INFO FileCompressionInfo FILE_COMPRESSION_INFO FileAttributeTagInfo FILE_ATTRIBUTE_TAG_INFO FileIdBothDirectoryInfo FILE_ID_BOTH_DIR_INFO FileIdBothDirectoryRestartInfo FILE_ID_BOTH_DIR_INFO dwBufferSize The size of the lpFileInformation buffer, in bytes. Return Value If the function succeeds, the return value is nonzero. If the function fails, the return value is zero. To get extended error information, call GetLastError. Remarks If FileInformationClass is FileStreamInfo and the calls succeed but no streams are returned, the error that is returned by GetLastError is ERROR_HANDLE_EOF. Certain file information classes behave slightly differently on different operating system releases. These classes are supported by the underlying drivers, and any information they return is subject to change between operating system releases. This function is declared in Fileextd.h and implemented in Fileextd.lib; both are available for download at MSDN on the Win32 FileID API Library page. Transacted Operations If there is a transaction bound to the thread at the time of the call, then the function returns the compressed file size of the isolated file view. Requirements 这个函数貌似可以返回。。只是我感觉你的SDK 里面没有的可能性极大。 2008-1-6 19:50 0
	游客登录 \| 注册方可回帖回帖表情雪币赚取及消费高级回复