From 33ae29b11feeaf10fdf1dcf4a68699f6d2a10516 Mon Sep 17 00:00:00 2001
From: zsilencer <zsilencergame@gmail.com>
Date: Mon, 15 Sep 2014 15:14:06 -0600
Subject: [PATCH] hook

---
 src/hook.c | 201 +++++++++++++++++++++++++++++++++++++++++++++++++++++
 src/hook.h |  41 +++++++++++
 2 files changed, 242 insertions(+)
 create mode 100644 src/hook.c
 create mode 100644 src/hook.h

diff --git a/src/hook.c b/src/hook.c
new file mode 100644
index 0000000000..6c8dd9395a
--- /dev/null
+++ b/src/hook.c
@@ -0,0 +1,201 @@
+/*****************************************************************************
+ * Copyright (c) 2014 Ted John
+ * OpenRCT2, an open source clone of Roller Coaster Tycoon 2.
+ *
+ * This file is part of OpenRCT2.
+ *
+ * OpenRCT2 is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 3 of the License, or
+ * (at your option) any later version.
+ 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ 
+ * You should have received a copy of the GNU General Public License
+ * along with this program.  If not, see <http://www.gnu.org/licenses/>.
+ *****************************************************************************/
+
+#include <windows.h>
+#include "hook.h"
+
+void* g_hooktableaddress = 0;
+int g_hooktableoffset = 0;
+int g_maxhooks = 1000;
+
+void hookfunc(int address, int newaddress, int stacksize, int registerargs[], int registersreturned)
+{
+	int i = 0;
+	char data[100];
+
+	int registerssaved = 7;
+	int n = registersreturned;
+	for (; n; registerssaved--) {
+		n &= n - 1;
+	}
+	int numrargs = 0;
+	for (int j = 0; ; j++) {
+		if (registerargs[j] != END) {
+			numrargs++;
+		} else {
+			break;
+		}
+	}
+
+	int rargssize = numrargs * 4;
+
+	data[i++] = 0x50; // push eax
+
+	// move stack down for possible existing arguments
+	for (int j = 0; j < stacksize; j++) {
+		data[i++] = 0x8B; // mov eax, [esp+x]
+		data[i++] = 0x44;
+		data[i++] = 0xE4;
+		data[i++] = (signed char)((4 * (stacksize - j)) + 4);
+
+		data[i++] = 0x89; // mov [esp+x], eax
+		data[i++] = 0x44;
+		data[i++] = 0xE4;
+		data[i++] = (signed char)((4 * (stacksize - j)) - ((registerssaved + stacksize) * 4));
+	}
+
+	if (numrargs > 0) {
+		// push the registers to be on the stack to access as arguments
+		data[i++] = 0x83; // add esp, x
+		data[i++] = 0xC4;
+		data[i++] = -((registerssaved + stacksize) * 4) + 4;
+
+		for (signed int j = numrargs - 1; j >= 0; j--) {
+			switch (registerargs[j]) {
+				case EAX: data[i++] = 0x50; break;
+				case EBX: data[i++] = 0x53; break;
+				case ECX: data[i++] = 0x51; break;
+				case EDX: data[i++] = 0x52; break;
+				case ESI: data[i++] = 0x56; break;
+				case EDI: data[i++] = 0x57; break;
+				case EBP: data[i++] = 0x55; break;
+			}
+		}
+
+		data[i++] = 0x83; // add esp, x
+		data[i++] = 0xC4;
+		data[i++] = rargssize + ((registerssaved + stacksize) * 4) - 4;
+	}
+
+
+	data[i++] = 0xE8; // call
+	data[i++] = 0x00;
+	data[i++] = 0x00;
+	data[i++] = 0x00;
+	data[i++] = 0x00;
+	
+	int sizec = i;
+
+	data[i++] = 0x8B; // push eax, [esp]  - puts eip in eax
+	data[i++] = 0x04;
+	data[i++] = 0xE4;
+
+	data[i++] = 0x83; // add eax, x
+	data[i++] = 0xC0;
+	int sizeoffset = i;
+	data[i++] = 0; // set to returnlocation offset later
+
+	data[i++] = 0x89; // mov [esp-20h], eax  - put return address on stack
+	data[i++] = 0x44;
+	data[i++] = 0xE4;
+	data[i++] = (signed char)(-(registerssaved * 4) - rargssize - (stacksize * 4)) + 4;
+
+	data[i++] = 0x83; // add esp, x
+	data[i++] = 0xC4;
+	data[i++] = 4;
+
+	data[i++] = 0x58; // pop eax
+
+	if (!(registersreturned & EAX)) {
+		data[i++] = 0x50; // push eax
+	}
+	if (!(registersreturned & EBX)) {
+		data[i++] = 0x53; // push ebx
+	}
+	if (!(registersreturned & ECX)) {
+		data[i++] = 0x51; // push ecx
+	}
+	if (!(registersreturned & EDX)) {
+		data[i++] = 0x52; // push edx
+	}
+	if (!(registersreturned & EBP)) {
+		data[i++] = 0x55; // push ebp
+	}
+	if (!(registersreturned & ESI)) {
+		data[i++] = 0x56; // push esi
+	}
+	if (!(registersreturned & EDI)) {
+		data[i++] = 0x57; // push edi
+	}
+	
+	data[i++] = 0x83; // sub esp, x
+	data[i++] = 0xEC;
+	data[i++] = 4 + (stacksize * 4) + rargssize;
+
+	data[i++] = 0xEA; // jmp
+	*((int *)&data[i]) = newaddress; i += 4;
+	data[i++] = 0x23;
+	data[i++] = 0x00;
+
+	data[sizeoffset] = i - sizec;
+
+	// returnlocation:
+
+	data[i++] = 0x83; // sub esp, x
+	data[i++] = 0xEC;
+	data[i++] = (signed char)(stacksize * -4) - rargssize;
+
+	if (!(registersreturned & EDI)) {
+		data[i++] = 0x5F; // pop edi
+	}
+	if (!(registersreturned & ESI)) {
+		data[i++] = 0x5E; // pop esi
+	}
+	if (!(registersreturned & EBP)) {
+		data[i++] = 0x5D; // pop ebp
+	}
+	if (!(registersreturned & EDX)) {
+		data[i++] = 0x5A; // pop edx
+	}
+	if (!(registersreturned & ECX)) {
+		data[i++] = 0x59; // pop ecx
+	}
+	if (!(registersreturned & EBX)) {
+		data[i++] = 0x5B; // pop ebx
+	}
+	if (!(registersreturned & EAX)) {
+		data[i++] = 0x58; // pop eax
+	}
+	
+	data[i++] = 0xC3; // retn
+
+	WriteProcessMemory(GetCurrentProcess(), (LPVOID)address, data, i, 0);
+}
+
+void addhook(int address, int newaddress, int stacksize, int registerargs[], int registersreturned)
+{
+	if (!g_hooktableaddress) {
+		g_hooktableaddress = VirtualAllocEx(GetCurrentProcess(), NULL, g_maxhooks * 100, MEM_COMMIT, PAGE_EXECUTE_READWRITE);
+	}
+	if (g_hooktableoffset > g_maxhooks) {
+		return;
+	}
+	unsigned int hookaddress = (unsigned int)g_hooktableaddress + (g_hooktableoffset * 100);
+	char data[9];
+	int i = 0;
+	data[i++] = 0xEA; // jmp
+	*((int *)&data[i]) = hookaddress; i += 4;
+	data[i++] = 0x23;
+	data[i++] = 0x00;
+	data[i++] = 0xC3; // retn
+	WriteProcessMemory(GetCurrentProcess(), (LPVOID)address, data, i, 0);
+	hookfunc(hookaddress, newaddress, stacksize, registerargs, registersreturned);
+	g_hooktableoffset++;
+}
\ No newline at end of file
diff --git a/src/hook.h b/src/hook.h
new file mode 100644
index 0000000000..ee4ccd3c73
--- /dev/null
+++ b/src/hook.h
@@ -0,0 +1,41 @@
+/*****************************************************************************
+ * Copyright (c) 2014 Ted John
+ * OpenRCT2, an open source clone of Roller Coaster Tycoon 2.
+ *
+ * This file is part of OpenRCT2.
+ *
+ * OpenRCT2 is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 3 of the License, or
+ * (at your option) any later version.
+ 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ 
+ * You should have received a copy of the GNU General Public License
+ * along with this program.  If not, see <http://www.gnu.org/licenses/>.
+ *****************************************************************************/
+
+#ifndef _HOOK_H_
+#define _HOOK_H_
+
+extern void* g_hooktableaddress;
+extern int g_hooktableoffset;
+extern int g_maxhooks;
+
+enum REGISTER_ARGS {
+	EAX = 1 << 0,
+	EBX = 1 << 1,
+	ECX = 1 << 2,
+	EDX = 1 << 3,
+	ESI = 1 << 4,
+	EDI = 1 << 5,
+	EBP = 1 << 6,
+	END = 0
+};
+
+void addhook(int address, int newaddress, int stacksize, int registerargs[], int registersreturned);
+
+#endif
\ No newline at end of file