Added README.md

README.md

@@ -0,0 +1,15 @@
+ELFspy is a library for linux for writing tests using [fakes and spies](http://xunitpatterns.com/Test%20Double.html) in C++. For very large call graphs, the testing of the higher nodes can be difficult due to the sum of dependencies of lower nodes e.g. databases, network connections etc. Adding fakes and spies to the callees of a function allows it to be tested in isolation without the inherited dependencies.
+
+ELFspy works by allowing the program to change function addresses in the global offset tables of the running program, so that these are redirected to a different function created by ELFspy. This allows new functions to be interjected between the caller and the callee to spy on the arguments and return value. In addition the original function can be replaced with a simulation (fake) of the original. The code under test needs no changes and is unaware of the additional calls that are being made in between a caller and a callee.
+
+Call graph before change
+
+![](https://github.com/mollismerx/elfspy/blob/master/images/spy%20before.png)
+
+Call graph after change
+
+![](https://github.com/mollismerx/elfspy/blob/master/images/spy%20after.png)
+
+This technique relies on code being compiled as [position independent code](https://en.wikipedia.org/wiki/Position-independent_code) and uses the Executable and Linking Format([ELF](https://refspecs.linuxfoundation.org/elf/elf.pdf)) information found in the executable and its shared libraries to find the global offset table entries.
+
+To see how ELFspy can be used start by reading this [[example|Example 01: Spying on code]]