rhook 0.2.2

Hook libc functions with an easy API
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65

# Rhook

Hook libc functions with an easy API

## Docs
https://docs.rs/rhook

### Usage

1- Import the trait [RunHook]

2- Create an [Command](std::process::Command) with [Command::new](std::process::Command::new) and add hooks to it via [add_hook](RunHook::add_hook) and [add_hooks](RunHook::add_hooks) methods

3- Confirm the hooks with [set_hooks](RunHook::set_hooks) method this step is necessary

4- Now you can carry on with the usual [Command](std::process::Command) methods ([output](std::process::Command::output), [spawn](std::process::Command::spawn),[status](std::process::Command::status),..)

**Tricks:**

The closure used for hooks have acess to many things: (imported by https://github.com/sigmaSd/Rhook/blob/master/src/scaffold.rs)
- closure input (which is the libc function input)
- closure output (which is the libc function output)
- The original function with the following name `original_$libcfn` this is useful in particular to avoid recursion
- Some varaibles to make coding easier: `transmute` `ManuallyDrop` `CString` and a static mut `COUNTER`



### Example

Say you want to limit the bandwidth of a program

Usually downloading calls `libc::recv` function

So our goal is to throttle it with a simple sleep

To do that with this crate: (taking speedtest program as an example)

1- Check its manpage https://man7.org/linux/man-pages/man2/recv.2.html to see what is the
function's input/output

2- use this crate
```rust
use rhook::{RunHook, Hook};

std::process::Command::new("speedtest").add_hook(Hook::Recv(stringify!(|sockfd, buf, len, flags|{
 std::thread::sleep_ms(10);
 original_recv(sockfd, buf, len, flags)
}))).set_hooks().unwrap().spawn();
```

Thats it!
Note that you have acess inside the closure to the original function denoted by the prefix
`original_` + the function name

Couple of points:
- If you take ownership of an input value inside of the closure, be sure to use ManuallyDrop so
you don't free it

- To check if a program dynamicly loads libc use `ldd $path_to_program`

- To check what libc functions a program calls use `nm -D $path_to_program`

Check out the examples for more info

License: MIT