/*
** etrel_inject.c for testsuite in elfsh
** 
** Started on  Sat May 10 07:01:59 2003 mayhem
** Last update Mon Jun 30 07:38:12 2003 mayhem
*/
#include	"libelfsh.h"

#define         TROJANED_FILE   "a.out"
#define		RELOC_FILE	"rel.o"
#define         OUTPUT_FILE     "fake_aout"


int		main(int argc, char **argv)
{
  elfshobj_t	*host;
  elfshobj_t	*rel;
  elfshsect_t	*txtsect;
  Elf32_Sym	*puts_troj;
  int		idx;
  u_long	addr;

  /* Map host file and relocatable file */
  rel = elfsh_map_obj(RELOC_FILE);
  if (NULL == rel)
    goto err;
  host = elfsh_map_obj(TROJANED_FILE);
  if (NULL == host)
    goto err;

  /* Inject etrel */
  idx = elfsh_inject_etrel(host, rel);
  if (idx < 0)
    goto err;

  /* Get injected's section info */
  txtsect = elfsh_get_section_by_name(host, "rel.o.text", NULL, NULL, NULL);
  if (txtsect == NULL)
    goto err;
  
  puts_troj = elfsh_get_symbol_by_name(host, "puts_troj");
  idx = elfsh_hijack_function_by_name(host,
				      ELFSH_HIJACK_TYPE_PLT |  
				      ELFSH_HIJACK_OS_ANY   |  
				      ELFSH_HIJACK_CPU_ANY, 
				      "puts", puts_troj->st_value);
  /* Save it */
  idx = elfsh_save_obj(host, OUTPUT_FILE);
  if (idx < 0)
    goto err;

  puts("[*] ET_REL injected");
  return (0);
 err:
  elfsh_error();
  return (-1);
}