Hook abstract class function

kadet.89 · **Author**

In the source code, I see the function:

physconstraint.cpp

PHP Code:


			
IPhysicsConstraint *CreateConstraint( IPhysicsConstraintGroup *pGroup, const hl_constraint_info_t &info )

{

    ...

    return physenv->CreateHingeConstraint( info.pObjects[0], info.pObjects[1], pGroup, m_hinge );

}

But I do not see it in IDA. And I also can not find its implementation in sdk. However, it exists and works. Is there a way to know the implementation of this function and how can I hook it?

vphysics_interface.h

PHP Code:


			
abstract_class IPhysicsEnvironment

{

public:

    ...

    virtual IPhysicsConstraint    *CreateHingeConstraint( IPhysicsObject *pReferenceObject, IPhysicsObject *pAttachedObject, IPhysicsConstraintGroup *pGroup, const constraint_hingeparams_t &hinge ) = 0;

    ...

}

donrevan · 03-01-2014 , 18:52 Re: Hook abstract class function

I guess you're searching in the wrong place(most-likely server/engine binary). Take a look into the vphysics.dll/so

kadet.89 · 03-02-2014 , 03:15 Re: Hook abstract class function

I use Total commander for sdk directory autoscaning. So I'm sure that it does not exist in the sdk. I see a similar thing in IDA. Where there should be a call to this function, I only see weird code. And the function scanner does not return positive results.

donrevan · *Last edited by donrevan; 03-02-2014 at 18:40.*

I just had some old csgo *.so's on hand so I took a quick look at csgo-ds/bin/vphysics.so:

Code:

CPhysicsEnvironment::CreateLimitedHingeConstraint(IPhysicsObject *, IPhysicsObject *, IPhysicsConstraintGroup *, constraint_limitedhingeparams_t  const&)

It's right in there.

VTable offset for it is 79. As I said I got this from a rather "old" csgo binary but I highly doubt the offset for it has changed.