[eresi-dev] EXTPLT extended with versioning does not work in runtime (e2dbg)

[Julien Vanegue]

Mxatone, Your recent extension of the EXTPLT technique that now
includes support for versioning does *break* the runtime
EXTPLT technique. It may be just a small bug, but e2dbg
complains about the Definition Versions section being
absent and thus refuse to continue the EXTPLT runtime
technique. I discovered this only recently when I improved
the testsuite in the etrel_inject/etrel_memory/ test.

Note that the whole runtime injection without EXTPLT,
including ET_REL injection, ALTPLT and CFLOW
redirections, *works* . We even recently started to use
it on the linux kernel and we now have RELINJECT/CFLOW
acting on the kernel throught /dev/(k)mem, using the latest
kernsh version (that includes some slight libelfsh modifs
made by pouik).

Thorkill, Spoty: if you have some time, you would certainly enjoy to
see if is doing well on freebsd and netbsd : pouik has been doing
BSD handlers too in kernsh, some are certainly missing, but then its just
about using the kernsh vectors ;-)

-jfv