archive
/
csgo
mirror of https://github.com/sr2echa/CSGO-Source-Code
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Counter Strike : Global Offensive Source Code
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9 Commits
1 Branch
0 Tags
504 MiB
Tree: 41085baac4
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '41085baac4'
${ noResults }
csgo/cstrike15_src/common/detour/detourfunc.h

276 lines
8.4 KiB
Raw Normal View History

added some files
5 years ago
  1. //========= Copyright � 1996-2002, Valve LLC, All rights reserved. ============
  2. //
  3. // Purpose: Function Detouring code used by the overlay
  4. //
  5. // $NoKeywords: $
  6. //=============================================================================
  7. #ifndef DETOURFUNC_H
  8. #define DETOURFUNC_H
  9. #ifdef _WIN32
  10. #pragma once
  11. #endif
  13. void * HookFunc( BYTE *pRealFunctionAddr, const BYTE *pHookFunctionAddr, int nJumpsToFollowBeforeHooking = 0 );
  15. bool HookFuncSafe( BYTE *pRealFunctionAddr, const BYTE *pHookFunctionAddr, void ** ppRelocFunctionAddr, int nJumpsToFollowBeforeHooking = 0 );
  16. bool bIsFuncHooked( BYTE *pRealFunctionAddr, void *pHookFunc = NULL );
  17. void UnhookFunc( BYTE *pRealFunctionAddr, BYTE *pOriginalFunctionAddr_DEPRECATED );
  18. void UnhookFunc( BYTE *pRealFunctionAddr, bool bLogFailures = true );
  19. void UnhookFuncByRelocAddr( BYTE *pRelocFunctionAddr, bool bLogFailures = true );
  21. void RegregisterTrampolines();
  23. void DetectUnloadedHooks();
  25. #if defined( _WIN32 ) && DEBUG_ENABLE_DETOUR_RECORDING
  26. template <typename T, int k_nCountElements >
  27. class CCallRecordSet
  28. {
  29. public:
  30. typedef T ElemType_t;
  32. CCallRecordSet()
  33. {
  34. m_cElements = 0;
  35. m_cElementPostWrite = 0;
  36. m_cElementMax = k_nCountElements;
  37. m_cubElements = sizeof(m_rgElements);
  38. memset( m_rgElements, 0, sizeof(m_rgElements) );
  39. }
  41. // if return value is >= 0, then we matched an existing record
  42. int AddFunctionCallRecord( const ElemType_t &fcr )
  43. {
  44. // if we are full, dont bother searching any more
  45. // this reduces our perf impact to near zero if these functions are
  46. // called a lot more than we expect
  47. int cElements = m_cElements;
  48. if ( cElements >= k_nCountElements )
  49. {
  50. return -2;
  51. }
  53. // search backwards through the log
  54. for( int i = cElements-1; i >= 0; i-- )
  55. {
  56. if ( m_rgElements[i] == fcr )
  57. return i;
  58. }
  60. cElements = ++m_cElements;
  61. if ( cElements <= k_nCountElements )
  62. {
  63. m_rgElements[cElements-1] = fcr;
  64. }
  65. // if an external reader sees m_cElements != m_cElementPostWrite
  66. // they know the last item(s) may not be complete
  67. m_cElementPostWrite++;
  68. return -1;
  69. }
  71. CInterlockedIntT< int > m_cElements;
  72. CInterlockedIntT< int > m_cElementPostWrite;
  73. int m_cElementMax;
  74. int m_cubElements;
  75. ElemType_t m_rgElements[k_nCountElements];
  76. };
  79. class CRecordDetouredCalls
  80. {
  81. public:
  82. CRecordDetouredCalls();
  84. void SetMasterSwitchOn() { m_bMasterSwitch = true; }
  85. bool BIsMasterSwitchOn() { return m_bMasterSwitch; }
  87. bool BShouldRecordProtectFlags( DWORD flProtect );
  89. void RecordGetAsyncKeyState( DWORD vKey,
  90. PVOID lpCallersAddress, PVOID lpCallersCallerAddress
  91. );
  93. void RecordVirtualAlloc( LPVOID lpAddress, SIZE_T dwSize, DWORD flAllocationType, DWORD flProtect,
  94. LPVOID lpvResult, DWORD dwGetLastError,
  95. PVOID lpCallersAddress, PVOID lpCallersCallerAddress
  96. );
  98. void RecordVirtualProtect( LPVOID lpAddress, SIZE_T dwSize, DWORD flNewProtect, DWORD flOldProtect,
  99. BOOL bResult, DWORD dwGetLastError,
  100. PVOID lpCallersAddress, PVOID lpCallersCallerAddress
  101. );
  103. void RecordVirtualAllocEx( HANDLE hProcess, LPVOID lpAddress, SIZE_T dwSize, DWORD flAllocationType, DWORD flProtect,
  104. LPVOID lpvResult, DWORD dwGetLastError,
  105. PVOID lpCallersAddress, PVOID lpCallersCallerAddress
  106. );
  108. void RecordVirtualProtectEx( HANDLE hProcess, LPVOID lpAddress, SIZE_T dwSize, DWORD flNewProtect, DWORD flOldProtect,
  109. BOOL bResult, DWORD dwGetLastError,
  110. PVOID lpCallersAddress, PVOID lpCallersCallerAddress
  111. );
  113. void RecordLoadLibraryW(
  114. LPCWSTR lpLibFileName, HANDLE hFile, DWORD dwFlags,
  115. HMODULE hModule, DWORD dwGetLastError,
  116. PVOID lpCallersAddress, PVOID lpCallersCallerAddress
  117. );
  119. void RecordLoadLibraryA(
  120. LPCSTR lpLibFileName, HANDLE hFile, DWORD dwFlags,
  121. HMODULE hModule, DWORD dwGetLastError,
  122. PVOID lpCallersAddress, PVOID lpCallersCallerAddress
  123. );
  125. private:
  127. struct FunctionCallRecordBase_t
  128. {
  129. void SharedInit(
  130. DWORD dwResult, DWORD dwGetLastError,
  131. PVOID lpCallersAddress, PVOID lpCallersCallerAddress
  132. );
  134. DWORD m_dwResult;
  135. DWORD m_dwGetLastError;
  136. LPVOID m_lpFirstCallersAddress;
  137. LPVOID m_lpLastCallerAddress;
  138. };
  140. // for GetAsyncKeyState the only thing we care about is the call site
  141. // dont care about results or params
  142. struct GetAsyncKeyStateCallRecord_t : public FunctionCallRecordBase_t
  143. {
  144. GetAsyncKeyStateCallRecord_t()
  145. {}
  147. void InitGetAsyncKeyState( DWORD vKey,
  148. PVOID lpCallersAddress, PVOID lpCallersCallerAddress
  149. );
  151. bool operator==( const FunctionCallRecordBase_t &rhs ) const
  152. {
  153. // compare callers only, dont care about results or params
  154. return
  155. m_lpFirstCallersAddress == rhs.m_lpFirstCallersAddress &&
  156. m_lpLastCallerAddress == rhs.m_lpLastCallerAddress;
  157. }
  159. };
  161. struct VirtualAllocCallRecord_t : public FunctionCallRecordBase_t
  162. {
  163. VirtualAllocCallRecord_t()
  164. {}
  166. // VirtualAlloc
  167. void InitVirtualAlloc( LPVOID lpAddress, SIZE_T dwSize, DWORD flAllocationType, DWORD flProtect,
  168. LPVOID lpvResult, DWORD dwGetLastError,
  169. PVOID lpCallersAddress, PVOID lpCallersCallerAddress
  170. );
  172. // VirtualAllocEx
  173. void InitVirtualAllocEx( HANDLE hProcess, LPVOID lpAddress, SIZE_T dwSize, DWORD flAllocationType, DWORD flProtect,
  174. LPVOID lpvResult, DWORD dwGetLastError,
  175. PVOID lpCallersAddress, PVOID lpCallersCallerAddress
  176. );
  178. // VirtualProtect
  179. void InitVirtualProtect( LPVOID lpAddress, SIZE_T dwSize, DWORD flNewProtect, DWORD flOldProtect,
  180. BOOL bResult, DWORD dwGetLastError,
  181. PVOID lpCallersAddress, PVOID lpCallersCallerAddress
  182. );
  184. // VirtualProtectEx
  185. void InitVirtualProtectEx( HANDLE hProcess, LPVOID lpAddress, SIZE_T dwSize, DWORD flNewProtect, DWORD flOldProtect,
  186. BOOL bResult, DWORD dwGetLastError,
  187. PVOID lpCallersAddress, PVOID lpCallersCallerAddress
  188. );
  190. bool operator==( const VirtualAllocCallRecord_t &rhs ) const
  191. {
  192. // compare everything
  193. return
  194. m_dwResult == rhs.m_dwResult &&
  195. m_dwGetLastError == rhs.m_dwGetLastError &&
  196. m_dwProcessId == rhs.m_dwProcessId &&
  197. m_lpAddress == rhs.m_lpAddress &&
  198. m_dwSize == rhs.m_dwSize &&
  199. m_flProtect == rhs.m_flProtect &&
  200. m_dw2 == rhs.m_dw2 &&
  201. m_lpFirstCallersAddress == rhs.m_lpFirstCallersAddress &&
  202. m_lpLastCallerAddress == rhs.m_lpLastCallerAddress;
  203. }
  205. DWORD m_dwProcessId;
  206. LPVOID m_lpAddress;
  207. SIZE_T m_dwSize;
  208. DWORD m_flProtect;
  209. DWORD m_dw2;
  210. };
  212. // for LoadLibrary just log everything, params and call sites
  213. struct LoadLibraryCallRecord_t : public FunctionCallRecordBase_t
  214. {
  215. LoadLibraryCallRecord_t() {}
  217. // LoadLibraryExW or LoadLibraryW
  218. void InitLoadLibraryW(
  219. LPCWSTR lpLibFileName, HANDLE hFile, DWORD dwFlags,
  220. HMODULE hModule, DWORD dwGetLastError,
  221. PVOID lpCallersAddress, PVOID lpCallersCallerAddress
  222. );
  224. void InitLoadLibraryA(
  225. LPCSTR lpLibFileName, HANDLE hFile, DWORD dwFlags,
  226. HMODULE hModule, DWORD dwGetLastError,
  227. PVOID lpCallersAddress, PVOID lpCallersCallerAddress
  228. );
  230. bool operator==( const LoadLibraryCallRecord_t &rhs ) const
  231. {
  232. // compare the result ( hModule ) but not the callers
  233. // we arent going to have a perfect history of every caller
  234. if ( m_dwResult != rhs.m_dwResult )
  235. {
  236. return false;
  237. }
  238. // and then what we have of the actual filename
  239. return ( memcmp( m_rgubFileName, &rhs.m_rgubFileName, sizeof(m_rgubFileName) ) == 0 );
  240. }
  242. uint8 m_rgubFileName[128];
  243. HANDLE m_hFile;
  244. DWORD m_dwFlags;
  245. };
  247. // These GUIDs are constants, and it is how we find this structure when looking through the data section
  248. // when we are trying to read this data with an external process
  249. GUID m_guidMarkerBegin;
  251. // some helpers for parsing the structure externally
  252. int m_nVersionNumber;
  253. int m_cubRecordDetouredCalls;
  254. int m_cubGetAsyncKeyStateCallRecord;
  255. int m_cubVirtualAllocCallRecord;
  256. int m_cubVirtualProtectCallRecord;
  257. int m_cubLoadLibraryCallRecord;
  259. // these numbers were chosen by profiling CS:GO a bunch
  260. CCallRecordSet< GetAsyncKeyStateCallRecord_t, 50 > m_GetAsyncKeyStateCallRecord;
  261. CCallRecordSet< VirtualAllocCallRecord_t, 300 > m_VirtualAllocCallRecord;
  262. CCallRecordSet< VirtualAllocCallRecord_t, 500 > m_VirtualProtectCallRecord;
  263. CCallRecordSet< LoadLibraryCallRecord_t, 200 > m_LoadLibraryCallRecord;
  265. bool m_bMasterSwitch;
  266. // These GUIDs are constants, and it is how we find this structure when looking through the data section
  267. GUID m_guidMarkerEnd;
  269. };
  271. extern CRecordDetouredCalls g_RecordDetouredCalls;
  273. typedef PVOID (WINAPI *RtlGetCallersAddress_t)( PVOID *CallersAddress, PVOID *CallersCaller );
  274. extern RtlGetCallersAddress_t g_pRtlGetCallersAddress;
  275. #endif // _WIN32
  277. #endif // DETOURFUNC_H