mirror of
https://github.com/ultimatepp/ultimatepp.git
synced 2026-05-15 22:02:49 -06:00
f2da9caeda
Added Initialization Vectors handling in encryption git-svn-id: svn://ultimatepp.org/upp/trunk@2739 f0d560ea-af0d-0410-9eb7-867de7ffcac7
191 lines
4.3 KiB
C++
191 lines
4.3 KiB
C++
#include <Core/Core.h>
|
|
|
|
#include <Protect/Protect.h>
|
|
|
|
using namespace Upp;
|
|
|
|
// search a buffer for a matching pattern
|
|
// returns position of pattern
|
|
byte *ProtectSearchBuf(byte *buf, byte *bufEnd, const byte *pattern, size_t patternLen)
|
|
{
|
|
while(buf < bufEnd - patternLen)
|
|
{
|
|
if(*buf != *pattern)
|
|
{
|
|
buf++;
|
|
continue;
|
|
}
|
|
if(!memcmp(buf, pattern, patternLen))
|
|
return buf;
|
|
buf++;
|
|
}
|
|
return NULL;
|
|
}
|
|
|
|
// encrypts code inside buffer
|
|
int CryptBuf(byte *buf, byte *bufEnd, String const &key)
|
|
{
|
|
int patches = 0;
|
|
|
|
byte *bStart = buf;
|
|
while( (bStart = ProtectSearchBuf(bStart, bufEnd, (const byte *)PROTECT_START_MARKER, strlen(PROTECT_START_MARKER))) != NULL)
|
|
{
|
|
// overwrite start pattern, just to fool a bit
|
|
// simple pattern search and use it as the encrypt init vector
|
|
byte *nonce = bStart;
|
|
for(unsigned i = 0; i < strlen(PROTECT_START_MARKER); i++)
|
|
*bStart++ = (byte)(Random() & 0xff);
|
|
|
|
// locate end pattern
|
|
byte *bEnd = ProtectSearchBuf(bStart, bufEnd, (const byte *)PROTECT_END_MARKER, strlen(PROTECT_END_MARKER));
|
|
if(!bEnd)
|
|
return 0;
|
|
|
|
// get size of chunk to patch
|
|
size_t size = bEnd - bStart;
|
|
|
|
// overwrite end pattern, just to fool a bit
|
|
// symple pattern search
|
|
for(unsigned i = 0; i < strlen(PROTECT_END_MARKER); i++)
|
|
*bEnd++ = (byte)(Random() & 0xff);
|
|
|
|
// crypt buffer
|
|
Snow2 snow2((byte const *)~key, key.GetCount(), nonce, strlen(PROTECT_START_MARKER));
|
|
snow2(bStart, size);
|
|
patches++;
|
|
}
|
|
|
|
return patches;
|
|
}
|
|
|
|
// obfuscates code inside buffer
|
|
int ObfuscateBuf(byte *buf, byte *bufEnd)
|
|
{
|
|
int patches = 0;
|
|
|
|
byte *bStart = buf;
|
|
while( (bStart = ProtectSearchBuf(bStart, bufEnd, (const byte *)OBFUSCATE_START_MARKER, strlen(OBFUSCATE_START_MARKER))) != NULL)
|
|
{
|
|
// builds a random key, overwriting start pattern and following 10 bytes
|
|
String key;
|
|
for(unsigned i = 0; i < strlen(OBFUSCATE_START_MARKER) + 10; i++)
|
|
{
|
|
byte k = (byte)(Random() & 0xff);
|
|
*bStart++ = k;
|
|
key += (char)k;
|
|
}
|
|
|
|
// locate end pattern
|
|
byte *bEnd = ProtectSearchBuf(bStart, bufEnd, (const byte *)OBFUSCATE_END_MARKER, strlen(OBFUSCATE_END_MARKER));
|
|
if(!bEnd)
|
|
return 0;
|
|
|
|
// get size of chunk to patch
|
|
size_t size = bEnd - bStart;
|
|
|
|
// overwrite end pattern, just to fool a bit
|
|
// symple pattern search
|
|
for(unsigned i = 0; i < strlen(OBFUSCATE_END_MARKER); i++)
|
|
*bEnd++ = (byte)(Random() & 0xff);
|
|
|
|
// obfuscate buffer
|
|
Snow2 snow2(key, "12345678");
|
|
snow2(bStart, size);
|
|
patches++;
|
|
}
|
|
|
|
return patches;
|
|
}
|
|
|
|
CONSOLE_APP_MAIN
|
|
{
|
|
// setup exit code for errors
|
|
SetExitCode(1);
|
|
|
|
// command line parameters are :
|
|
// 1) file to encrypt (full path)
|
|
// 2) key, in hex ascii format (AABB001122CCDD....)
|
|
if(CommandLine().GetCount() != 2)
|
|
{
|
|
Cerr() << "USAGE : ProtectEncrypt filename key\n";
|
|
return;
|
|
}
|
|
|
|
// gets key, check it and convert to HEX String
|
|
|
|
// string must contain an even number of digits
|
|
// and they must be hax ones (0-9, A-F)
|
|
String key0 = ToUpper(CommandLine()[1]);
|
|
if(key0.GetCount() != 32 && key0.GetCount() != 64)
|
|
{
|
|
Cerr() << "Error: key MUST be 32 or 64 chars (16 or 32 bytes) long, not " << key0.GetCount() << "\n";
|
|
return;
|
|
}
|
|
String key;
|
|
for(int i = 0; i < key0.GetCount()-1;)
|
|
{
|
|
byte b;
|
|
char c = key0[i++];
|
|
if(c >= '0' && c <= '9')
|
|
b = c - '0';
|
|
else if(c >= 'A' && c <= 'F')
|
|
b = c - 'A' + 10;
|
|
else
|
|
{
|
|
Cerr() << "Invalid hex digit '" << c << "' in key\n";
|
|
return;
|
|
}
|
|
b <<= 4;
|
|
c = key0[i++];
|
|
if(c >= '0' && c <= '9')
|
|
b += c - '0';
|
|
else if(c >= 'A' && c <= 'F')
|
|
b += c - 'A' + 10;
|
|
else
|
|
{
|
|
Cerr() << "Invalid hex digit '" << c << "' in key\n";
|
|
return;
|
|
}
|
|
key.Cat(b);
|
|
}
|
|
|
|
// loads file into buffer
|
|
String fName = CommandLine()[0];
|
|
if(!FileExists(fName))
|
|
{
|
|
Cerr() << "File '" << fName << "' not found\n";
|
|
return;
|
|
}
|
|
FileIn f(fName);
|
|
dword size = (dword)f.GetSize();
|
|
Buffer<byte>buf(size);
|
|
f.GetAll(buf, size);
|
|
|
|
// crypt part
|
|
int patches = CryptBuf(buf, buf + size, key);
|
|
if(patches)
|
|
{
|
|
Cerr() << "Successfully encrypted " << patches << " functions\n";
|
|
FileOut f(fName);
|
|
f.Put(buf, size);
|
|
}
|
|
else
|
|
Cerr() << "No encrypt points found\n";
|
|
|
|
// obfuscation part
|
|
patches = ObfuscateBuf(buf, buf + size);
|
|
if(patches)
|
|
{
|
|
Cerr() << "Successfully obfuscated " << patches << " functions\n";
|
|
FileOut f(fName);
|
|
f.Put(buf, size);
|
|
}
|
|
else
|
|
Cerr() << "No obfuscate points found\n";
|
|
|
|
// sets up exit code
|
|
SetExitCode(0);
|
|
|
|
|
|
}
|
|
|