Skip to content

Commit

Permalink
Add files via upload
Browse files Browse the repository at this point in the history
  • Loading branch information
@Zenlua
Zenlua authored May 27, 2024
1 parent aa3b28c commit eaf547d
Show file tree
Hide file tree
Showing 8 changed files with 988 additions and 0 deletions.
104 changes: 104 additions & 0 deletions .github/ssc/src/embed.h
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,104 @@
#pragma once
#include <string>
#include <vector>
#include <string.h>
#include <unistd.h>
#include <limits.h>
#include "utils.h"
#ifdef EMBED_ARCHIVE
#include "untar.h"
#endif

#ifdef __APPLE__
#include <mach-o/getsect.h>

FORCE_INLINE std::vector<char> read_data_sect(const char *name) {
const struct section_64 *sect = getsectbyname("binary", name);
if (!sect) {
perror(OBF("find data section failed"));
return std::vector<char>();
}
std::vector<char> buf(sect->size, '\0');
int fd_exe = open(get_exe_path().c_str(), O_RDONLY);
if (fd_exe == -1) {
perror(OBF("open executable file failed"));
return std::vector<char>();
}
lseek(fd_exe, sect->offset, SEEK_SET);
if (read(fd_exe, buf.data(), sect->size) != sect->size) {
perror(OBF("read data section failed"));
return std::vector<char>();
}
close(fd_exe);
return buf;
}
#endif

FORCE_INLINE std::string extract_embeded_file() {
#ifdef __APPLE__
auto buf = read_data_sect("i");
if (buf.empty())
exit(1);
char *data = buf.data();
size_t size = buf.size();
#else
extern char _binary_i_start;
extern char _binary_i_end;
char *data = &_binary_i_start;
size_t size = &_binary_i_end - &_binary_i_start;
#endif

auto dir = OBF("/tmp/ssc");
// delete the whole directory can cause troubles when multiple instances are running
//remove_directory(dir);
mkdir(dir, 0755);
char path[PATH_MAX];
snprintf(path, sizeof(path), "%s/XXXXXX", dir);
if (!mkdtemp(path)) {
perror(OBF("create output directory failed"));
exit(1);
}
strcat(path, "/");

#if defined(EMBED_INTERPRETER_NAME)
strcat(path, base_name(STR(EMBED_INTERPRETER_NAME)).c_str());
int fd = open(path, O_WRONLY | O_CREAT | O_TRUNC);
if (fd == -1) {
perror(OBF("open output file failed"));
exit(1);
}
if (write(fd, data, size) != size) {
perror(OBF("write output file failed"));
exit(1);
}
close(fd);
if (chmod(path, 0755) == -1) {
perror(OBF("chmod 755 failed"));
exit(1);
}
#elif defined(EMBED_ARCHIVE)
char cwd[PATH_MAX];
if (getcwd(cwd, sizeof(cwd)) == NULL) {
perror(OBF("get current dir failed"));
exit(1);
}
if (chdir(path) == -1) {
perror(OBF("change dir failed"));
exit(1);
}
extract_from_mem(data, size);
if (chdir(cwd) == -1) {
perror(OBF("change back dir failed"));
exit(1);
}
#endif
return path;
}

static void remove_extract_dir() {
auto extract_dir = getenv("SSC_EXTRACT_DIR");
if (extract_dir && !strncmp(extract_dir, "/tmp/", 5)) {
//fprintf(stderr, "remove %s\n", extract_dir);
remove_directory(extract_dir);
}
}
285 changes: 285 additions & 0 deletions .github/ssc/src/main.cpp
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,285 @@
#define _LINUX_SOURCE_COMPAT
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <unistd.h>
#include <sys/types.h>
#include <sys/stat.h>
#include <fcntl.h>
#include <signal.h>
#include <limits.h>
#include <wordexp.h>
#include <vector>
#include <string>
#include <sstream>
#include <iterator>
#include <algorithm>
#include "obfuscate.h"
#include "utils.h"
#ifdef __linux__
#include <sys/mount.h>
#endif

#ifdef UNTRACEABLE
#include "untraceable.h"
#endif
#if defined(EMBED_INTERPRETER_NAME) || defined(EMBED_ARCHIVE) || defined(RC4_KEY)
#include "embed.h"
#endif
#ifdef RC4_KEY
#include "rc4.h"
#endif

enum ScriptFormat {
SHELL,
PYTHON,
PERL,
JAVASCRIPT,
RUBY,
PHP,
R,
LUA,
};

int main(int argc, char* argv[]) {
#ifdef UNTRACEABLE
check_debugger();
#endif

std::string exe_path = get_exe_path(), base_dir = dir_name(exe_path);
std::string interpreter_path, extract_dir;

#if defined(INTERPRETER)
interpreter_path = OBF(STR(INTERPRETER));
#endif
#if defined(EMBED_INTERPRETER_NAME)
interpreter_path = extract_embeded_file();
extract_dir = dir_name(interpreter_path);
atexit(remove_extract_dir);
#elif defined(EMBED_ARCHIVE)
base_dir = extract_dir = extract_embeded_file();
atexit(remove_extract_dir);
#endif
setenv("SSC_EXTRACT_DIR", extract_dir.c_str(), 1);
setenv("SSC_EXECUTABLE_PATH", exe_path.c_str(), 1);
setenv("SSC_ARGV0", argv[0], 1);

std::string script_name = OBF(R"SSC(SCRIPT_FILE_NAME)SSC");
#ifdef RC4_KEY
const char* rc4_key = OBF(STR(RC4_KEY));
#ifdef __APPLE__
auto buf = read_data_sect("s");
if (buf.empty())
exit(1);
char* script_data = buf.data();
int script_len = buf.size();
#else
extern char _binary_s_start;
extern char _binary_s_end;
char* script_data = &_binary_s_start;
int script_len = &_binary_s_end - &_binary_s_start;
#endif
rc4((u8*) script_data, script_len, (u8*) rc4_key, strlen(rc4_key));
const char* script = script_data;
#else
const char* script = OBF(R"SSC(SCRIPT_CONTENT)SSC");
int script_len = strlen(script);
#endif

// detect script format by file name suffix
ScriptFormat format = SHELL;
std::string shell("sh");
auto pos = script_name.find_last_of(".");
if (pos != std::string::npos) {
auto suffix = script_name.substr(pos + 1);
std::transform(suffix.begin(), suffix.end(), suffix.begin(), [] (unsigned char c) {
return std::tolower(c);
});
if (str_ends_with(suffix, "sh")) {
format = SHELL;
shell = suffix;
} else if (suffix == "py" || suffix == "pyw") {
format = PYTHON;
} else if (suffix == "pl") {
format = PERL;
} else if (suffix == "js") {
format = JAVASCRIPT;
} else if (suffix == "rb") {
format = RUBY;
} else if (suffix == "php") {
format = PHP;
} else if (suffix == "r") {
format = R;
} else if (suffix == "lua") {
format = LUA;
}
}

std::vector<std::string> args;
const char *shebang_end = script;
// parse shebang
if (script[0] == '#' && script[1] == '!') {
std::string line;
auto p = strpbrk(script, "\r\n");
if (p) {
line.assign(script + 2, p - script - 2);
shebang_end = p + (p[0] == '\r' && p[1] == '\n' ? 2 : 1);
} else {
line.assign(script + 2);
shebang_end = script + script_len;
}

wordexp_t wrde;
if (wordexp(line.c_str(), &wrde, 0) != 0) {
perror(OBF("parse shebang failed"));
return 1;
}
for (size_t i = 0; i < wrde.we_wordc; i++) {
auto s = wrde.we_wordv[i];
if (args.empty()) {
if (!strcmp(s, "env") || !strcmp(s, "/usr/bin/env")) {
continue;
}
for (p = s; *p == '_' || isalnum(*p); ++p);
if (*p == '=') {
std::string name(s, p - s);
setenv(name.c_str(), ++p, 1);
continue;
}
}
args.emplace_back(s);
}
wordfree(&wrde);

// detect script format by shebang
if (!args.empty()) {
if (str_ends_with(args[0], "sh")) {
format = SHELL;
shell = base_name(args[0]);
} else if (args[0].find("python") != std::string::npos || args[0].find("conda") != std::string::npos) {
format = PYTHON;
} else if (args[0].find("perl") != std::string::npos) {
format = PERL;
} else if (args[0].find("node") != std::string::npos) {
format = JAVASCRIPT;
} else if (args[0].find("ruby") != std::string::npos) {
format = RUBY;
} else if (args[0].find("php") != std::string::npos) {
format = PHP;
} else if (args[0].find("Rscript") != std::string::npos) {
format = R;
} else if (args[0].find("lua") != std::string::npos) {
format = LUA;
}
}
}
if (args.empty()) {
switch (format) {
case SHELL: args.emplace_back(shell); break;
case PYTHON: args.emplace_back("python"); break;
case PERL: args.emplace_back("perl"); break;
case JAVASCRIPT: args.emplace_back("node"); break;
case RUBY: args.emplace_back("ruby"); break;
case PHP: args.emplace_back("php"); break;
case R: args.emplace_back("Rscript"); break;
case LUA: args.emplace_back("lua"); break;
default: perror(OBF("unknown format")); return 4;
}
}
if (interpreter_path.empty()) {
// support relative path
pos = args[0].find('/');
if (pos != std::string::npos && pos != 0) {
interpreter_path = base_dir + args[0];
} else {
interpreter_path = args[0];
}
}
setenv("SSC_INTERPRETER_PATH", interpreter_path.c_str(), 1);

int fd_script[2];
if (pipe(fd_script) == -1) {
perror(OBF("create pipe failed"));
return 2;
}

int p = fork();
if (p < 0) {
perror(OBF("fork failed"));
return 1;
} else if (p > 0) { // parent process
close(fd_script[1]);

std::string fd_path = OBF("/proc/self/fd");
struct stat st;
#ifdef __linux__
if ((stat(fd_path.c_str(), &st) != 0 || !S_ISDIR(st.st_mode)) && getuid() == 0) {
mkdir("/proc", 0755);
mount("none", "/proc", "proc", 0, nullptr);
}
#endif
if (stat(OBF("/dev/fd"), &st) == 0 && S_ISDIR(st.st_mode)) {
fd_path = OBF("/dev/fd");
}
fd_path += '/';
fd_path += std::to_string(fd_script[0]);

if (format == JAVASCRIPT) {
args.emplace_back("--preserve-symlinks-main");
}
#ifdef FIX_ARGV0
if (format == SHELL) {
args.emplace_back("-c");
args.emplace_back(". " + fd_path);
args.emplace_back(argv[0]);
} else
#endif
args.emplace_back(fd_path);

for (auto i = 1; i < argc; i++) {
args.emplace_back(argv[i]);
}

std::vector<const char*> cargs;
cargs.reserve(args.size() + 1);
for (const auto& arg : args) {
cargs.push_back(arg.c_str());
}
cargs.push_back(NULL);
execvp(interpreter_path.c_str(), (char* const*) cargs.data());
// error in execvp
perror(OBF("execvp failed"));
return 3;

} else { // child process

close(fd_script[0]);

#ifdef FIX_ARGV0
script_len -= shebang_end - script;
script = shebang_end;
if (format == SHELL) {
if (shell == "bash") {
// only bash 5+ support BASH_ARGV0
//dprintf(fd_script[1], "BASH_ARGV0='%s'\n", str_replace_all(argv[0], "'", "'\\''").c_str());
} else if (shell == "zsh") {
dprintf(fd_script[1], "0='%s'\n", str_replace_all(argv[0], "'", "'\\''").c_str());
} else if (shell == "fish") {
dprintf(fd_script[1], "set 0 '%s'\n", str_replace_all(argv[0], "'", "'\\''").c_str());
}
} else if (format == PYTHON) {
dprintf(fd_script[1], "import sys; sys.argv[0] = '''%s'''\n", argv[0]);
} else if (format == PERL) {
dprintf(fd_script[1], "$0 = '%s';\n", str_replace_all(argv[0], "'", "\\'").c_str());
} else if (format == JAVASCRIPT) {
dprintf(fd_script[1], " __filename = `%s`; process.argv[1] = `%s`;\n", argv[0], argv[0]);
}
#endif
// write script content to writing end of fd_in pipe, then close it
write(fd_script[1], script, script_len);
close(fd_script[1]);

// exit without calling atexit handlers
_Exit(0);
}
}
Loading

0 comments on commit eaf547d

Please sign in to comment.