[eresi-dev] Requested ET_REL injection feature in kernsh
Julien Vanegue
jv274 at cam.ac.uk
Mon Jul 30 22:40:56 UTC 2007
Hi there,
We have been experiencing success with kernsh on linux
on top of ERESI : thats good news !
We can now cary on the innovation and our objective should
be to be able to debug the kernel and trace the kernel without
source-level patches.
For this, we need to port an existing feature of eresi to the kernel:
injection of relocated C code into the kernel.
The algorithm is as follow:
1/ Allocate a certain memory pool in the kernel
(already available in libkernsh)
2/ Inject a .o in the kernel
(already available for regular ELF files and processes)
3/ Relocate the injected .o in the kernel
(already available for regular ELF files and processes)
4/ Perform function hijacking on the kernel functions to the
injected code (already available using the "redir" command)
and see if everything works as expected.
All the API is already available so it should not be a big deal, its
just a matter of integration.
We will then be able to inject a kernel debugger and/or a kernel tracer
directly in the memory of the kernel.
Enjoy
Julien Vanegue
More information about the eresi-dev
mailing list