2025-08-02 21:50:26 +08:00
|
|
|
|
using dnlib.DotNet;
|
|
|
|
|
|
using dnlib.DotNet.Emit;
|
|
|
|
|
|
using dnlib.DotNet.PolymorphicWriter.Utilities;
|
2025-08-02 23:15:17 +08:00
|
|
|
|
using NUnit.Framework;
|
|
|
|
|
|
using Obfuz.Emit;
|
2025-08-02 21:50:26 +08:00
|
|
|
|
using Obfuz.Settings;
|
|
|
|
|
|
using Obfuz.Utils;
|
|
|
|
|
|
using System;
|
2025-08-02 23:15:17 +08:00
|
|
|
|
using System.Collections.Generic;
|
2025-08-02 21:50:26 +08:00
|
|
|
|
using System.Linq;
|
|
|
|
|
|
using System.Reflection;
|
|
|
|
|
|
using System.Runtime.CompilerServices;
|
|
|
|
|
|
using UnityEngine;
|
|
|
|
|
|
using FieldAttributes = dnlib.DotNet.FieldAttributes;
|
2025-08-02 23:15:17 +08:00
|
|
|
|
using HashUtil = Obfuz.Utils.HashUtil;
|
|
|
|
|
|
using IRandom = Obfuz.Utils.IRandom;
|
2025-08-02 21:50:26 +08:00
|
|
|
|
using KeyGenerator = Obfuz.Utils.KeyGenerator;
|
|
|
|
|
|
using TypeAttributes = dnlib.DotNet.TypeAttributes;
|
|
|
|
|
|
|
|
|
|
|
|
namespace Obfuz.ObfusPasses.Watermark
|
|
|
|
|
|
{
|
|
|
|
|
|
public class WatermarkPass : ObfuscationPassBase
|
|
|
|
|
|
{
|
|
|
|
|
|
private readonly WatermarkSettingsFacade _watermarkSettings;
|
|
|
|
|
|
|
|
|
|
|
|
public WatermarkPass(WatermarkSettingsFacade watermarkSettingsFacade)
|
|
|
|
|
|
{
|
|
|
|
|
|
this._watermarkSettings = watermarkSettingsFacade;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
public override ObfuscationPassType Type => ObfuscationPassType.WaterMark;
|
|
|
|
|
|
|
|
|
|
|
|
public override void Start()
|
|
|
|
|
|
{
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
public override void Stop()
|
|
|
|
|
|
{
|
|
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
public override void Process()
|
|
|
|
|
|
{
|
|
|
|
|
|
var ctx = ObfuscationPassContext.Current;
|
|
|
|
|
|
foreach (ModuleDef mod in ctx.modulesToObfuscate)
|
|
|
|
|
|
{
|
|
|
|
|
|
AddWaterMarkToAssembly(mod, _watermarkSettings.text);
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
private TypeDef GetDataHolderType(ModuleDef module, TypeDef declaringType, int size)
|
|
|
|
|
|
{
|
|
|
|
|
|
|
|
|
|
|
|
using (var scope = new DisableTypeDefFindCacheScope(module))
|
|
|
|
|
|
{
|
|
|
|
|
|
var dataHolderType = new TypeDefUser($"$Obfuz$WatermarkDataHolderSize{size}_{declaringType.NestedTypes.Count}", module.Import(typeof(System.ValueType)));
|
|
|
|
|
|
dataHolderType.Attributes = TypeAttributes.NestedPrivate | TypeAttributes.Sealed;
|
|
|
|
|
|
dataHolderType.Layout = TypeAttributes.ExplicitLayout;
|
|
|
|
|
|
dataHolderType.PackingSize = 1;
|
|
|
|
|
|
dataHolderType.ClassSize = (uint)size;
|
|
|
|
|
|
dataHolderType.DeclaringType = declaringType;
|
|
|
|
|
|
return dataHolderType;
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2025-08-02 23:15:17 +08:00
|
|
|
|
class WatermarkInfo
|
|
|
|
|
|
{
|
|
|
|
|
|
public string text;
|
|
|
|
|
|
public byte[] signature;
|
|
|
|
|
|
public readonly List<FieldDef> signatureHoldFields = new List<FieldDef>();
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
private WatermarkInfo CreateWatermarkInfo(ModuleDef module, EncryptionScopeInfo encryptionScope, string waterMarkText)
|
2025-08-02 21:50:26 +08:00
|
|
|
|
{
|
|
|
|
|
|
string finalWatermarkText = $"{waterMarkText} [{module.Name}]";
|
2025-08-02 23:15:17 +08:00
|
|
|
|
byte[] watermarkBytes = KeyGenerator.GenerateKey(finalWatermarkText, _watermarkSettings.signatureLength);
|
|
|
|
|
|
|
|
|
|
|
|
var watermarkInfo = new WatermarkInfo()
|
|
|
|
|
|
{
|
|
|
|
|
|
text = finalWatermarkText,
|
|
|
|
|
|
signature = watermarkBytes,
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2025-08-02 21:50:26 +08:00
|
|
|
|
TypeDef moduleType = module.FindNormal("<PrivateImplementationDetails>");
|
|
|
|
|
|
if (moduleType == null)
|
|
|
|
|
|
{
|
|
|
|
|
|
//throw new Exception($"Module '{module.Name}' does not contain a '<PrivateImplementationDetails>' type.");
|
|
|
|
|
|
moduleType = new TypeDefUser("<PrivateImplementationDetails>", module.Import(typeof(object)));
|
|
|
|
|
|
moduleType.Attributes = TypeAttributes.NotPublic | TypeAttributes.Sealed;
|
|
|
|
|
|
moduleType.CustomAttributes.Add(new CustomAttribute(module.Import(module.Import(typeof(CompilerGeneratedAttribute)).ResolveTypeDefThrow().FindDefaultConstructor())));
|
|
|
|
|
|
module.Types.Add(moduleType);
|
|
|
|
|
|
}
|
|
|
|
|
|
var random = encryptionScope.localRandomCreator(0);
|
|
|
|
|
|
for (int subIndex = 0; subIndex < watermarkBytes.Length;)
|
|
|
|
|
|
{
|
|
|
|
|
|
int subSegmentLength = Math.Min(random.NextInt(16, 32) & ~3, watermarkBytes.Length - subIndex);
|
|
|
|
|
|
int paddingLength = random.NextInt(8, 32) & ~3;
|
|
|
|
|
|
int totalLength = subSegmentLength + paddingLength;
|
|
|
|
|
|
TypeDef dataHolderType = GetDataHolderType(module, moduleType, totalLength);
|
|
|
|
|
|
|
|
|
|
|
|
byte[] subSegment = new byte[totalLength];
|
|
|
|
|
|
Buffer.BlockCopy(watermarkBytes, subIndex, subSegment, 0, subSegmentLength);
|
|
|
|
|
|
|
|
|
|
|
|
for (int i = subSegmentLength; i < totalLength; i++)
|
|
|
|
|
|
{
|
|
|
|
|
|
subSegment[i] = (byte)random.NextInt(0, 256);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
subIndex += subSegmentLength;
|
2025-08-02 23:15:17 +08:00
|
|
|
|
var field = new FieldDefUser($"$Obfuz$WatermarkDataHolderField{moduleType.Fields.Count}",
|
2025-08-02 21:50:26 +08:00
|
|
|
|
new FieldSig(dataHolderType.ToTypeSig()),
|
|
|
|
|
|
FieldAttributes.Assembly | FieldAttributes.InitOnly | FieldAttributes.Static | FieldAttributes.HasFieldRVA);
|
|
|
|
|
|
field.DeclaringType = moduleType;
|
|
|
|
|
|
field.InitialValue = subSegment;
|
2025-08-02 23:15:17 +08:00
|
|
|
|
watermarkInfo.signatureHoldFields.Add(field);
|
2025-08-02 21:50:26 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
var moduleTypeFields = moduleType.Fields.ToList();
|
|
|
|
|
|
RandomUtil.ShuffleList(moduleTypeFields, random);
|
|
|
|
|
|
moduleType.Fields.Clear();
|
|
|
|
|
|
foreach (var field in moduleTypeFields)
|
|
|
|
|
|
{
|
|
|
|
|
|
moduleType.Fields.Add(field);
|
|
|
|
|
|
}
|
2025-08-02 23:15:17 +08:00
|
|
|
|
return watermarkInfo;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
private void AddFieldAccessToSignatureHolder(ModuleDef module, EncryptionScopeInfo encryptionScope, WatermarkInfo watermarkInfo)
|
|
|
|
|
|
{
|
|
|
|
|
|
var insertTargetMethods = module.Types
|
|
|
|
|
|
.SelectMany(t => t.Methods)
|
|
|
|
|
|
.Where(m => m.HasBody && m.Body.Instructions.Count > 10)
|
|
|
|
|
|
.ToList();
|
|
|
|
|
|
|
|
|
|
|
|
if (insertTargetMethods.Count == 0)
|
|
|
|
|
|
{
|
|
|
|
|
|
Debug.LogWarning($"No suitable methods found in module '{module.Name}' to insert access to watermark signature.");
|
|
|
|
|
|
return;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
var random = encryptionScope.localRandomCreator(HashUtil.ComputeHash("AddFieldAccessToSignatureHolder"));
|
|
|
|
|
|
DefaultMetadataImporter importer = ObfuscationPassContext.Current.moduleEntityManager.GetEntity<DefaultMetadataImporter>(module);
|
|
|
|
|
|
foreach (var fieldDef in watermarkInfo.signatureHoldFields)
|
|
|
|
|
|
{
|
|
|
|
|
|
// Randomly select a method to insert the access
|
|
|
|
|
|
var targetMethod = insertTargetMethods[random.NextInt(insertTargetMethods.Count)];
|
|
|
|
|
|
int insertIndex = random.NextInt(1, targetMethod.Body.Instructions.Count - 3);
|
|
|
|
|
|
|
|
|
|
|
|
var insts = (List<Instruction>)targetMethod.Body.Instructions;
|
|
|
|
|
|
|
|
|
|
|
|
insts.InsertRange(insertIndex, new[]
|
|
|
|
|
|
{
|
|
|
|
|
|
Instruction.CreateLdcI4(random.NextInt(1, 10000000)),
|
|
|
|
|
|
Instruction.Create(OpCodes.Brtrue, insts[insertIndex]),
|
|
|
|
|
|
Instruction.CreateLdcI4(random.NextInt(fieldDef.InitialValue.Length)),
|
|
|
|
|
|
Instruction.Create(OpCodes.Newarr, module.CorLibTypes.Byte),
|
|
|
|
|
|
Instruction.Create(OpCodes.Ldtoken, fieldDef),
|
|
|
|
|
|
Instruction.Create(OpCodes.Call, importer.InitializedArray),
|
|
|
|
|
|
});
|
|
|
|
|
|
Debug.Log($"Inserted watermark access for field '{fieldDef.Name}' in method '{targetMethod.FullName}' at index {insertIndex}.");
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
private readonly OpCode[] binOpCodes = new[]
|
|
|
|
|
|
{
|
|
|
|
|
|
OpCodes.Add, OpCodes.Sub, OpCodes.Mul, OpCodes.Div, OpCodes.Rem,
|
|
|
|
|
|
OpCodes.And, OpCodes.Or, OpCodes.Xor
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
private OpCode GetRandomBinOpCode(IRandom random)
|
|
|
|
|
|
{
|
|
|
|
|
|
return binOpCodes[random.NextInt(binOpCodes.Length)];
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
private void AddWaterMarkILSequences(ModuleDef module, EncryptionScopeInfo encryptionScope, WatermarkInfo watermarkInfo)
|
|
|
|
|
|
{
|
|
|
|
|
|
var insertTargetMethods = module.Types
|
|
|
|
|
|
.SelectMany(t => t.Methods)
|
|
|
|
|
|
.Where(m => m.HasBody && m.Body.Instructions.Count > 10)
|
|
|
|
|
|
.ToList();
|
|
|
|
|
|
|
|
|
|
|
|
if (insertTargetMethods.Count == 0)
|
|
|
|
|
|
{
|
|
|
|
|
|
Debug.LogWarning($"No suitable methods found in module '{module.Name}' to insert watermark IL sequences.");
|
|
|
|
|
|
return;
|
|
|
|
|
|
}
|
|
|
|
|
|
var random = encryptionScope.localRandomCreator(HashUtil.ComputeHash("AddWaterMarkILSequences"));
|
|
|
|
|
|
int[] signature = KeyGenerator.ConvertToIntKey(watermarkInfo.signature);
|
|
|
|
|
|
for (int intIndex = 0; intIndex < signature.Length;)
|
|
|
|
|
|
{
|
|
|
|
|
|
int ldcCount = Math.Min(random.NextInt(2, 4), signature.Length - intIndex);
|
|
|
|
|
|
// Randomly select a method to insert the IL sequence
|
|
|
|
|
|
var targetMethod = insertTargetMethods[random.NextInt(insertTargetMethods.Count)];
|
|
|
|
|
|
var insts = (List<Instruction>)targetMethod.Body.Instructions;
|
|
|
|
|
|
int insertIndex = random.NextInt(1, insts.Count - 3);
|
|
|
|
|
|
|
|
|
|
|
|
var insertInstructions = new List<Instruction>()
|
|
|
|
|
|
{
|
|
|
|
|
|
Instruction.CreateLdcI4(random.NextInt(1, 10000000)),
|
|
|
|
|
|
Instruction.Create(OpCodes.Brtrue, insts[insertIndex]),
|
|
|
|
|
|
};
|
|
|
|
|
|
for (int i = 0; i < ldcCount; i++)
|
|
|
|
|
|
{
|
|
|
|
|
|
insertInstructions.Add(Instruction.CreateLdcI4(signature[intIndex + i]));
|
|
|
|
|
|
if (i > 0)
|
|
|
|
|
|
{
|
|
|
|
|
|
insertInstructions.Add(Instruction.Create(GetRandomBinOpCode(random)));
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
insertInstructions.Add(Instruction.Create(OpCodes.Brfalse, insertInstructions[0]));
|
|
|
|
|
|
|
|
|
|
|
|
insts.InsertRange(insertIndex, insertInstructions);
|
|
|
|
|
|
intIndex += ldcCount;
|
|
|
|
|
|
Debug.Log($"Inserted watermark IL sequence for in method '{targetMethod.FullName}' at index {insertIndex}.");
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
private void AddWaterMarkToAssembly(ModuleDef module, string waterMarkText)
|
|
|
|
|
|
{
|
|
|
|
|
|
var ctx = ObfuscationPassContext.Current;
|
|
|
|
|
|
EncryptionScopeInfo encryptionScope = ctx.moduleEntityManager.EncryptionScopeProvider.GetScope(module);
|
|
|
|
|
|
WatermarkInfo watermarkInfo = CreateWatermarkInfo(module, encryptionScope, waterMarkText);
|
|
|
|
|
|
AddFieldAccessToSignatureHolder(module, encryptionScope, watermarkInfo);
|
|
|
|
|
|
AddWaterMarkILSequences(module, encryptionScope, watermarkInfo);
|
2025-08-02 21:50:26 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
