Fix sploitMixin bug that doesn’t properly close service handles.

[Hallowizer]

Currently, the for loop that closes service handles initializes a variable “shi” for the service handler index, and increments that variable. However, the actual check for finishing the loop is done using the older “si” variable that is set to the highest service handle.

This results in the service handles never being freed, as the condition is always false, unless the user added handles themself, in which case that for loop never exits, and the switch probably crashes eventually because an invalid handle gets freed.

NOTE: I do not have a Switch that is vulnerable to PegaSwitch or fusee-gelee, so I am unable to test this. Please test this code before merging it.

[Hallowizer]

Found another bug;

pegaswitch/exploit/ipc.js

Line 153 in 4d9d486

this.inputObjectId.push(utils.trunc32(id));

this should be pushing to inputObjectIds, not inputObjectId.

[SciresM]

Gonna be honest: nobody maintains or even uses pegaswitch any more.

The effort is certainly appreciated, but you should probably know that the odds of anyone actually testing any of this stuff to merge it are approximately zero.