source: branches/samhain-2_2-branch/src/encode.c@ 587

Last change on this file since 587 was 1, checked in by katerina, 20 years ago

Initial import

File size: 4.4 KB
Line 
1
2/* #include "config.h" */
3
4
5#include <stdio.h>
6#include <stdlib.h>
7
8int main(int argv, char * argc[])
9{
10 int xor_base = -1;
11
12 FILE * inf;
13 FILE * ouf;
14 char a, b;
15 int i, j;
16 char outfile[1024];
17 int inbracket = 0, quoted = 0;
18 unsigned long count;
19
20
21 /* char command[1024]; */
22
23 if ( argv < 3)
24 {
25 fprintf(stderr,"\nUsage: encode <XOR_VAL> "\
26 "<file>\n\n");
27 fprintf(stderr," This program will:\n");
28 fprintf(stderr," - take as input a source code file <file>,\n");
29 fprintf(stderr," - search for literal strings inclosed by _(), "\
30 "like '_(string)',\n");
31 fprintf(stderr," - replace _(string) by "\
32 "_(string XOR <XOR_VAL>),\n");
33 fprintf(stderr,
34 " - and output the result to './x_<file>'.\n\n");
35 fprintf(stderr," _() is supposed to be defined as a macro in "\
36 "the code, that\n");
37 fprintf(stderr," will allow the program to decode the xor'ed string "\
38 "at runtime.\n");
39 fprintf(stderr," The effect is that the compiled executable does "\
40 "not contain literal\n");
41 fprintf(stderr," strings that may trivially be found with the Unix "\
42 "'strings' command,\n");
43 fprintf(stderr," and thus reveal the nature of "\
44 "the program.\n");
45
46 return -1;
47 }
48
49 --argv; ++argc;
50
51 xor_base = atoi(argc[0]);
52
53 if (xor_base < 0 || (xor_base > 0 && xor_base < 128) || xor_base > 255)
54 {
55 fprintf(stderr, "\nERROR: encode: XOR_VAL=%d is out of "\
56 "range (0, 128..255)\n",
57 xor_base);
58 fprintf(stderr, "** please follow these steps to fix the problem:\n\n");
59 fprintf(stderr, " make clean\n");
60 fprintf(stderr, " ./configure [more options] "\
61 "--with-stealth=XOR_VAL (range 0, 128..255)\n");
62 fprintf(stderr, " make\n\n");
63 return -1;
64 }
65
66 /* fprintf(stderr, "<XOR_CODE> %d\n", xor_base); */
67
68 --argv; ++argc;
69
70 /* fprintf(stderr, "File: %d\n", argv); */
71
72 while (argv > 0)
73 {
74 inf = fopen(argc[0], "r");
75 if (inf == NULL)
76 {
77 fprintf(stderr, "Error opening %s\n", argc[0]);
78 return -1;
79 }
80 /* outfile name
81 */
82 i = 0; j = 0;
83 while (argc[0][i] != '\0')
84 {
85 if (argc[0][i] == '/') j = i+1;
86 ++i;
87 }
88 i = 0;
89 outfile[0] = 'x';
90 outfile[1] = '_';
91 outfile[2] = '\0';
92 while (argc[0][j+i] != '\0')
93 {
94 outfile[i+2] = argc[0][j+i];
95 ++i;
96 }
97 outfile[i+2] = '\0';
98 ouf = fopen(outfile, "w");
99 if (ouf == NULL)
100 {
101 fprintf(stderr, "Error opening %s\n", outfile);
102 return -1;
103 }
104
105 /* fprintf(stderr, "File: %s\n", argc[0]); */
106 count = 0;
107
108 while (fread(&a, 1, 1, inf) != 0)
109 {
110 count++;
111
112 if (a == '"' && quoted == 0)
113 {
114 quoted = 1;
115 fwrite(&a, 1, 1, ouf);
116 continue;
117 }
118
119 if (a == '"' && quoted == 1)
120 {
121 quoted = 0;
122 fwrite(&a, 1, 1, ouf);
123 continue;
124 }
125
126 if (a == '\n' && quoted == 1)
127 {
128 quoted = 0;
129 fwrite(&a, 1, 1, ouf);
130 continue;
131 }
132
133 /* macro start ?
134 */
135 if (a == '_' && inbracket == 0 && quoted == 0)
136 {
137 fwrite(&a, 1, 1, ouf);
138 b = '\0';
139 fread(&b, 1, 1, inf);
140 count++;
141 fwrite(&b, 1, 1, ouf);
142 if (b == '(') inbracket = 1;
143 continue;
144 }
145
146 /* macro end
147 */
148 if (a == ')' && quoted == 0 && inbracket == 1)
149 {
150 inbracket = 0;
151 /* fprintf(stdout, "\n"); */
152 fwrite(&a, 1, 1, ouf);
153 continue;
154 }
155
156 /* in a bracket
157 */
158 if (inbracket == 1 && quoted == 1)
159 {
160 /* fprintf(stdout, "%c", a); */
161 if (a == '\\')
162 {
163 fread(&b, 1, 1, inf);
164
165 /* escape sequences
166 */
167 if (b == 't' || b == 'n' || b == 'r' || b == '"')
168 {
169 fwrite(&a, 1, 1, ouf);
170 fwrite(&b, 1, 1, ouf);
171 }
172
173 else
174 {
175 a ^= (char) xor_base;
176 b ^= (char) xor_base;
177 }
178 }
179 else
180 {
181 a ^= (char) xor_base;
182 fwrite(&a, 1, 1, ouf);
183 }
184 continue;
185 }
186
187 fwrite(&a, 1, 1, ouf);
188 }
189
190 /* fprintf(stderr, "Bytes read: %ld\n", count); */
191 /* sprintf(command, "mv tempfile %s", argc[0]); */
192 /* system(command); */
193
194 fclose(ouf);
195 fclose(inf);
196 --argv; ++argc;
197 }
198 return 0;
199}
200
Note: See TracBrowser for help on using the repository browser.