1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87

use crate::{MemoryReadError, Process};
use libc::{iovec, process_vm_readv};
use std::fs::{read_dir, File};
use std::io::{Error as IoError, BufReader, BufRead};

/// Opens process with specified id.
///
/// If the process is not found or could not be opened `None` will be returned.
pub fn open_process(pid: u32) -> Option<LinuxProcess> {
    Some(LinuxProcess { pid })
}

/// Finds all processes with matching name.
pub fn find_by_name(name: &str) -> Result<Vec<LinuxProcess>, IoError> {
    let paths = read_dir("/proc")?;
    let mut processes = vec![];

    for path_entry in paths {
        if let Ok(path) = path_entry {
            let maps_path = path.path().join("maps");

            if let Ok(file) = File::open(maps_path) {
                let mut reader = BufReader::new(file);
                let mut buffer = String::new();
                reader.read_line(&mut buffer)?;

                if buffer.trim().ends_with(name) {
                    if let Some(pid_name) = path.file_name().to_str() {
                        let pid = pid_name.parse::<u32>().unwrap();

                        open_process(pid).map(|process| processes.push(process));
                    }
                }
            }
        }
    }

    Ok(processes)
}

#[derive(Debug)]
pub struct LinuxProcess {
    pub pid: u32,
}

impl Process for LinuxProcess {
    fn base_address(&self, module_name: &str) -> Option<usize> {
        let file_name = format!("/proc/{}/maps", self.pid);
        let file = File::open(file_name).ok()?;
        let reader = BufReader::new(file);

        for result in reader.lines() {
            if let Ok(line) = result {
                if line.trim().ends_with(module_name) {
                    let split_line: Vec<&str> = line.split("-").collect();
                    let address_str = split_line[0];

                    return usize::from_str_radix(address_str, 16).ok();
                }
            }
        }

        None
    }

    fn read_bytes(&self, address: usize, buffer: &mut [u8]) -> Result<(), MemoryReadError> {
        let local_iov = iovec {
            iov_base: buffer.as_mut_ptr() as *mut _,
            iov_len: buffer.len(),
        };

        let remote_iov = iovec {
            iov_base: address as *mut _,
            iov_len: buffer.len(),
        };

        let result = unsafe { process_vm_readv(self.pid as i32, &local_iov, 1, &remote_iov, 1, 0) };

        if result == -1 {
            return Err(MemoryReadError::IOError {
                io_error: IoError::last_os_error(),
            });
        }

        Ok(())
    }
}