Merge 4aa63d0 into 988b311

KvanTTT · web-flow · commit 12ab7b938f81 · 2021-08-15T11:31:52.000Z
diff --git a/Confuser.Core/CoreComponent.cs b/Confuser.Core/CoreComponent.cs
@@ -37,6 +37,9 @@ public class CoreComponent : ConfuserComponent {
 		/// </summary>
 		public const string _APIStoreId = "Confuser.APIStore";
 
+		public const string SymbolsFileName = "symbols.map";
+		public const string PasswordFileName = "password";
+
 		readonly Marker marker;
 		readonly ConfuserContext _context;
 
diff --git a/Confuser.Core/Services/RandomService.cs b/Confuser.Core/Services/RandomService.cs
@@ -36,11 +36,7 @@ internal RandomGenerator(byte[] seed) {
 		/// <param name="seed">The seed data.</param>
 		/// <returns>The seed buffer.</returns>
 		internal static byte[] Seed(string seed) {
-			byte[] ret;
-			if (!string.IsNullOrEmpty(seed))
-				ret = Utils.SHA256(Encoding.UTF8.GetBytes(seed));
-			else
-				ret = Utils.SHA256(Guid.NewGuid().ToByteArray());
+			byte[] ret = Utils.SHA256(!string.IsNullOrEmpty(seed) ? Encoding.UTF8.GetBytes(seed) : Guid.NewGuid().ToByteArray());
 
 			for (int i = 0; i < 32; i++) {
 				ret[i] *= primes[i % primes.Length];
@@ -224,12 +220,15 @@ public void Shuffle<T>(MDTable<T> table) where T : struct {
 	internal class RandomService : IRandomService {
 		readonly byte[] seed; //32 bytes
 
+		public string SeedString { get; }
+
 		/// <summary>
 		///     Initializes a new instance of the <see cref="RandomService" /> class.
 		/// </summary>
 		/// <param name="seed">The project seed.</param>
 		public RandomService(string seed) {
-			this.seed = RandomGenerator.Seed(seed);
+			SeedString = string.IsNullOrEmpty(seed) ? Guid.NewGuid().ToString() : seed;
+			this.seed = RandomGenerator.Seed(SeedString);
 		}
 
 		/// <inheritdoc />
@@ -255,5 +254,7 @@ public interface IRandomService {
 		/// <returns>The requested RNG.</returns>
 		/// <exception cref="System.ArgumentNullException"><paramref name="id" /> is <c>null</c>.</exception>
 		RandomGenerator GetRandomGenerator(string id);
+
+		string SeedString { get; }
 	}
 }
diff --git a/Confuser.Renamer/AnalyzePhase.cs b/Confuser.Renamer/AnalyzePhase.cs
@@ -1,6 +1,9 @@
-﻿using System.Collections.Generic;
+﻿using System;
+using System.Collections.Generic;
+using System.IO;
 using System.Linq;
 using Confuser.Core;
+using Confuser.Core.Services;
 using Confuser.Renamer.Analyzers;
 using dnlib.DotNet;
 
@@ -30,6 +33,7 @@ void ParseParameters(IDnlibDef def, ConfuserContext context, NameService service
 
 		protected override void Execute(ConfuserContext context, ProtectionParameters parameters) {
 			var service = (NameService)context.Registry.GetService<INameService>();
+
 			context.Logger.Debug("Building VTables & identifier list...");
 
 			foreach (ModuleDef moduleDef in parameters.Targets.OfType<ModuleDef>())
@@ -147,9 +151,22 @@ internal void Analyze(NameService service, ConfuserContext context, ProtectionPa
 			else if (def is EventDef)
 				Analyze(service, context, parameters, (EventDef)def);
 			else if (def is ModuleDef) {
-				var pass = parameters.GetParameter<string>(context, def, "password", null);
-				if (pass != null)
-					service.reversibleRenamer = new ReversibleRenamer(pass);
+				var generatedPassword = parameters.GetParameter<bool>(context, def, "generatePassword");
+				var password = parameters.GetParameter<string>(context, def, "password");
+				if (generatedPassword || password != null) {
+					var reversibleRenamer = service.reversibleRenamer;
+					if (reversibleRenamer == null) {
+						if (generatedPassword) {
+							password = context.Registry.GetService<IRandomService>().SeedString;
+						}
+						string dir = context.OutputDirectory;
+						string path = Path.GetFullPath(Path.Combine(dir, CoreComponent.PasswordFileName));
+						if (!Directory.Exists(dir))
+							Directory.CreateDirectory(dir);
+						File.WriteAllText(path, password);
+						service.reversibleRenamer = new ReversibleRenamer(password);
+					}
+				}
 				service.SetCanRename(def, false);
 			}
 
diff --git a/Confuser.Renamer/NameProtection.cs b/Confuser.Renamer/NameProtection.cs
@@ -61,8 +61,8 @@ protected override void Execute(ConfuserContext context, ProtectionParameters pa
 				if (map.Count == 0)
 					return;
 
-				string path = Path.GetFullPath(Path.Combine(context.OutputDirectory, "symbols.map"));
-				string dir = Path.GetDirectoryName(path);
+				string dir = context.OutputDirectory;
+				string path = Path.GetFullPath(Path.Combine(dir, CoreComponent.SymbolsFileName));
 				if (!Directory.Exists(dir))
 					Directory.CreateDirectory(dir);
 
diff --git a/Confuser.Renamer/ReversibleRenamer.cs b/Confuser.Renamer/ReversibleRenamer.cs
@@ -5,11 +5,11 @@
 
 namespace Confuser.Renamer {
 	public class ReversibleRenamer {
-		readonly RijndaelManaged cipher;
+		readonly Aes cipher;
 		readonly byte[] key;
 
 		public ReversibleRenamer(string password) {
-			cipher = new RijndaelManaged();
+			cipher = Aes.Create();
 			using (var sha = SHA256.Create())
 				cipher.Key = key = sha.ComputeHash(Encoding.UTF8.GetBytes(password));
 		}
diff --git a/Tests/Confuser.UnitTest/TestBase.cs b/Tests/Confuser.UnitTest/TestBase.cs
@@ -24,10 +24,10 @@ protected TestBase(ITestOutputHelper outputHelper) =>
 		protected Task Run(string inputFileName, string[] expectedOutput, SettingItem<Protection> protection,
 			string outputDirSuffix = "", Action<string> outputAction = null, SettingItem<Packer> packer = null,
 			Action<ProjectModule> projectModuleAction = null, Func<string, Task> postProcessAction = null,
-			string seed = null) =>
+			string seed = null, bool checkOutput = true) =>
 
 			Run(new[] { inputFileName }, expectedOutput, protection, outputDirSuffix, outputAction, packer,
-				projectModuleAction, postProcessAction, seed);
+				projectModuleAction, postProcessAction, seed, checkOutput);
 
 		protected Task Run(string inputFileName, string[] expectedOutput, IEnumerable<SettingItem<Protection>> protections,
 			string outputDirSuffix = "", Action<string> outputAction = null, SettingItem<Packer> packer = null,
@@ -39,15 +39,15 @@ protected Task Run(string inputFileName, string[] expectedOutput, IEnumerable<Se
 		protected Task Run(string[] inputFileNames, string[] expectedOutput, SettingItem<Protection> protection,
 			string outputDirSuffix = "", Action<string> outputAction = null, SettingItem<Packer> packer = null,
 			Action<ProjectModule> projectModuleAction = null, Func<string, Task> postProcessAction = null,
-			string seed = null) {
+			string seed = null, bool checkOutput = true) {
 			var protections = (protection is null) ? Enumerable.Empty<SettingItem<Protection>>() : new[] { protection };
-			return Run(inputFileNames, expectedOutput, protections, outputDirSuffix, outputAction, packer, projectModuleAction, postProcessAction, seed);
+			return Run(inputFileNames, expectedOutput, protections, outputDirSuffix, outputAction, packer, projectModuleAction, postProcessAction, seed, checkOutput);
 		}
 
 		protected async Task Run(string[] inputFileNames, string[] expectedOutput, IEnumerable<SettingItem<Protection>> protections,
 			string outputDirSuffix = "", Action<string> outputAction = null, SettingItem<Packer> packer = null,
 			Action<ProjectModule> projectModuleAction = null, Func<string, Task> postProcessAction = null,
-			string seed = null) {
+			string seed = null, bool checkOutput = true) {
 
 			var baseDir = Environment.CurrentDirectory;
 			var outputDir = Path.Combine(baseDir, "obfuscated" + outputDirSuffix);
@@ -120,14 +120,16 @@ protected async Task Run(string[] inputFileNames, string[] expectedOutput, IEnum
 				using (var process = Process.Start(info)) {
 					using (var stdout = process.StandardOutput) {
 						try {
-							Assert.Equal("START", await stdout.ReadLineAsync());
+							if (checkOutput) {
+								Assert.Equal("START", await stdout.ReadLineAsync());
 
-							foreach (string line in expectedOutput) {
-								Assert.Equal(line, await stdout.ReadLineAsync());
-							}
+								foreach (string line in expectedOutput) {
+									Assert.Equal(line, await stdout.ReadLineAsync());
+								}
 
-							Assert.Equal("END", await stdout.ReadLineAsync());
-							Assert.Empty(await stdout.ReadToEndAsync());
+								Assert.Equal("END", await stdout.ReadLineAsync());
+								Assert.Empty(await stdout.ReadToEndAsync());
+							}
 						}
 						catch (XunitException) {
 							try {
diff --git a/Tests/MessageDeobfuscation.Test/MessageDeobfuscationTest.cs b/Tests/MessageDeobfuscation.Test/MessageDeobfuscationTest.cs
@@ -16,6 +16,9 @@ public class MessageDeobfuscationTest : TestBase {
 			"   at MessageDeobfuscation.Class.NestedClass.Method(String )",
 			"   at MessageDeobfuscation.Program.Main()");
 
+		const string Password = "password";
+		const string Seed = "seed";
+
 		public MessageDeobfuscationTest(ITestOutputHelper outputHelper) : base(outputHelper) { }
 
 		[Theory]
@@ -87,15 +90,53 @@ public static IEnumerable<object[]> RenameModeAndExpectedObfuscatedOutput() =>
 					}
 				},
 				new object[] {
-					nameof(RenameMode.Sequential),
-					new[] {
+					nameof(RenameMode.Sequential), new[] {
 						"Exception",
 						"   at _g._e._c(String )",
 						"   at _B._f()"
 					}
 				}
 			};
 
+		[Fact]
+		[Trait("Category", "Protection")]
+		public async Task CheckGeneratedPassword() {
+			string actualPassword1 = null, actualPassword2 = null;
+			await RunDeobfuscationWithPassword(true, null, "_0", Array.Empty<string>(),
+				outputPath => {
+				actualPassword1 = File.ReadAllText(Path.Combine(outputPath, CoreComponent.PasswordFileName));
+				Assert.True(Guid.TryParse(actualPassword1, out _));
+				return Task.Delay(0);
+			});
+			await RunDeobfuscationWithPassword(true, null, "_1", Array.Empty<string>(),
+				outputPath => {
+				actualPassword2 = File.ReadAllText(Path.Combine(outputPath, CoreComponent.PasswordFileName));
+				Assert.True(Guid.TryParse(actualPassword2, out _));
+				return Task.Delay(0);
+			});
+			Assert.NotEqual(actualPassword1, actualPassword2);
+		}
+
+		[Fact]
+		[Trait("Category", "Protection")]
+		public async Task CheckPasswordDependsOnSeed() {
+			var expectedObfuscatedOutput = new[] {
+				"Exception",
+				"   at oZuuchQgRo99FxO43G5kj2LB6aE3b$hsLiIOVL3cn0lg.CN9UQGJKgUbt4OKGBs8_vig.FtV6w7kWA1GcUNTnc2UDptg(String )",
+				"   at EcGxTPKtKIEeZuP3ekjPVhrVKQsiovm5zMkq5xfZbt1V.xvkt0Ir5VfNl8phozRzOvg8()"
+			};
+			await RunDeobfuscationWithPassword(true, Seed, "_0", expectedObfuscatedOutput,
+				outputPath => {
+					Assert.Equal(Seed, File.ReadAllText(Path.Combine(outputPath, CoreComponent.PasswordFileName)));
+				return Task.Delay(0);
+			});
+			await RunDeobfuscationWithPassword(true, Seed, "_1", expectedObfuscatedOutput,
+				outputPath => {
+					Assert.Equal(Seed, File.ReadAllText(Path.Combine(outputPath, CoreComponent.PasswordFileName)));
+				return Task.Delay(0);
+			});
+		}
+
 		[Fact]
 		[Trait("Category", "Protection")]
 		[Trait("Protection", "rename")]
@@ -105,36 +146,41 @@ public async Task MessageDeobfuscationWithPassword() {
 				"   at oQmpV$y2k2b9P3d6GP1cxGPuRtKaNIZvZcKpZXSfKFG8.CE8t0VDPQk9$jgv1XuRwt1k.FhsPrCLqIAaPKe7abGklvY4(String )",
 				"   at EbUjRcrC76NnA7RJlhQffrfp$vMGHdDfqtVFtWrAOPyD.xgIw9voebB21PlxPFA_hs60()"
 			};
-			string password = "password";
-			await Run(
-				"MessageDeobfuscation.exe",
-				expectedObfuscatedOutput,
-				new SettingItem<Protection>("rename") {
-					["mode"] = "reversible",
-					["password"] = password,
-					["renPdb"] = "true"
-				},
-				"Password",
-				postProcessAction: outputPath => {
-					var deobfuscator = new MessageDeobfuscator(password);
-					var deobfuscatedMessage = deobfuscator.DeobfuscateMessage(string.Join(Environment.NewLine, expectedObfuscatedOutput));
+			await RunDeobfuscationWithPassword(false, null, "", expectedObfuscatedOutput, outputPath => {
+				var deobfuscator = new MessageDeobfuscator(Password);
+				var deobfuscatedMessage =
+					deobfuscator.DeobfuscateMessage(string.Join(Environment.NewLine, expectedObfuscatedOutput));
 
-					void CheckName(string expectedName, string obfuscatedName) {
-						var name = deobfuscator.DeobfuscateSymbol(obfuscatedName, true);
-						Assert.Equal(expectedName, name);
-					}
+				void CheckName(string expectedName, string obfuscatedName) {
+					var name = deobfuscator.DeobfuscateSymbol(obfuscatedName, true);
+					Assert.Equal(expectedName, name);
+				}
 
-					CheckName("MessageDeobfuscation.Class", "oQmpV$y2k2b9P3d6GP1cxGPuRtKaNIZvZcKpZXSfKFG8");
-					CheckName("NestedClass", "CE8t0VDPQk9$jgv1XuRwt1k");
-					CheckName("Method", "jevJU4p4yNrAYGqN7GkRWaI");
-					CheckName("Field", "3IS4xsnUsvDQZop6e4WmNVw");
-					CheckName("Property", "917VMBMNYHd0kfnnNkgeJ10");
-					CheckName("Event", "AIyINk7kgFLFc73Md8Nu8Z0");
+				CheckName("MessageDeobfuscation.Class", "oQmpV$y2k2b9P3d6GP1cxGPuRtKaNIZvZcKpZXSfKFG8");
+				CheckName("NestedClass", "CE8t0VDPQk9$jgv1XuRwt1k");
+				CheckName("Method", "jevJU4p4yNrAYGqN7GkRWaI");
+				CheckName("Field", "3IS4xsnUsvDQZop6e4WmNVw");
+				CheckName("Property", "917VMBMNYHd0kfnnNkgeJ10");
+				CheckName("Event", "AIyINk7kgFLFc73Md8Nu8Z0");
 
-					Assert.Equal(_expectedDeobfuscatedOutput, deobfuscatedMessage);
-					return Task.Delay(0);
-				}
-			);
+				Assert.Equal(_expectedDeobfuscatedOutput, deobfuscatedMessage);
+				return Task.Delay(0);
+			});
 		}
+
+		async Task RunDeobfuscationWithPassword(bool generatePassword, string seed, string suffix,
+			string[] expectedObfuscatedOutput, Func<string, Task> postProcessAction) => await Run(
+			"MessageDeobfuscation.exe",
+			expectedObfuscatedOutput,
+			new SettingItem<Protection>("rename") {
+				["mode"] = "reversible",
+				["password"] = Password,
+				["generatePassword"] = generatePassword.ToString()
+			},
+			$"Password_{(generatePassword ? $"Random{(seed != null ? "_Seed" : "")}{suffix}" : $"Hardcoded{suffix}")}",
+			checkOutput: !generatePassword || seed != null,
+			seed: seed,
+			postProcessAction: postProcessAction
+		);
 	}
 }
