modify decrypt javaagent subproject

Author: robinhood-jim

core/src/main/java/com/robin/core/encrypt/JarRepackager.java

@@ -1,6 +1,7 @@
 package com.robin.core.encrypt;
 
 
+import cn.hutool.core.io.FileUtil;
 import com.robin.core.base.util.MavenUtils;
 import com.robin.core.hardware.MachineIdUtils;
 import javassist.ClassPool;
@@ -24,6 +25,7 @@
 @Slf4j
 public class JarRepackager {
     private static final String DEFAULT_CIPHER_ALGORITHM = "AES/ECB/PKCS5Padding";
+    private static final char spacebyteVal=20;
     /**
      *
      * @param inputJarFiles  待加密的包
@@ -39,6 +41,7 @@ public static void repackage(String inputJarFiles,String outputJarFile,String ma
         List<String> dependencys= MavenUtils.getDepenendcyList(MavenUtils.getMavenRepository(),mavenSrcPath);
         JarMethodClearUtils.loadJars(pool,dependencys);
         JarMethodClearUtils.loadJars(pool,inputJarFiles);
+        FileUtil.clean(basePath);
         try(JarInputStream inputStream=new JarInputStream(new FileInputStream(inputJarFiles));
             JarOutputStream outputStream=new JarOutputStream(new FileOutputStream(outputJarFile));
                 ByteArrayOutputStream out1=new ByteArrayOutputStream();
@@ -48,6 +51,7 @@ public static void repackage(String inputJarFiles,String outputJarFile,String ma
             dout.write(CipherUtil.m_datapadding);
             dout.write(CipherUtil.hexStringToBytes(machineId.toUpperCase()));
             dout.writeLong(expireTs);
+
             while((entry=inputStream.getNextEntry())!=null){
                 if(!entry.isDirectory() && entry.getName().endsWith("class")){
 
@@ -65,22 +69,19 @@ public static void repackage(String inputJarFiles,String outputJarFile,String ma
                     byte[] keybytes=encryptByte(keystr.getBytes(),CipherUtil.getEncryptKey(machineId.toUpperCase().getBytes()));
                     byte[] outbyte = encryptByte(bytes, keystr.getBytes());
                     byte[] encrypted=encryptByte(outbyte,CipherUtil.getEncryptKey(machineId.toUpperCase().getBytes()));
-                   /* ByteArrayOutputStream output1=new ByteArrayOutputStream();
-
-                    CipherUtil.decryptByte(machineId.getBytes(),new ByteArrayInputStream(encrypted),output1);
-
-                    byte[] origin=CipherUtil.decryptByte(output1.toByteArray(),keystr.getBytes());*/
 
                     if(!packageName.equals("com.robin.spring") && !"JarMethodClearUtils".equals(clazzName) && !"JarRepackager".equals(clazzName) && !clazzName.contains("Hibernate")) {
                         dout.write(CipherUtil.m_datapadding);
                         dout.writeInt(classNameBytes.length);
                         dout.write(classNameBytes);
                         List<String> confusedNames=CipherUtil.getConfusedName(16,random);
-                        outputStream.putNextEntry(new JarEntry(basePath + confusedNames.get(0)));
-                        dout.write(confusedNames.get(1).getBytes());
+                        FileOutputStream fileOut=new FileOutputStream(basePath+confusedNames.get(0));
+                        //outputStream.putNextEntry(new JarEntry(basePath + confusedNames.get(0)));
+                        dout.write(indexToBytes(confusedNames.get(1)));
                         dout.writeInt(keybytes.length);
                         dout.write(keybytes);
-                        IOUtils.write(encrypted, outputStream);
+                        IOUtils.write(encrypted, fileOut);
+                        fileOut.close();
                         System.out.println(packageName+"."+clazzName+"="+confusedNames.get(0)+"|"+confusedNames.get(1)+"|"+keystr);
                         //方法体清理
 
@@ -97,8 +98,10 @@ public static void repackage(String inputJarFiles,String outputJarFile,String ma
                 }
             }
             if(dout!=null){
-                outputStream.putNextEntry(new JarEntry("META-INF/config.bin"));
-                IOUtils.write(out1.toByteArray(), outputStream);
+                //outputStream.putNextEntry(new JarEntry("META-INF/config.bin"));
+                FileOutputStream fileOut2=new FileOutputStream(basePath+"../config.bin");
+                IOUtils.write(out1.toByteArray(), fileOut2);
+                fileOut2.close();
             }
 
         }catch (IOException ex){
@@ -136,8 +139,27 @@ private static byte[] decryptByte(byte[] bytes, byte[] key) {
         }
         return null;
     }
+    private static byte[] indexToBytes(String index){
+        byte[] outputBytes=new byte[index.length()];
+        for(int i=0;i<index.length();i++){
+            outputBytes[i]=(byte)((index.charAt(i)-spacebyteVal));
+        }
+        return outputBytes;
+    }
+    private static String bytesToIndex(byte[] bytes){
+        StringBuilder builder=new StringBuilder();
+        for(byte bytes1:bytes){
+            builder.append((char)((int)bytes1+spacebyteVal));
+        }
+        return builder.toString();
+    }
     public static void main(String[] args){
-        repackage("E:/dev/workspaceframe/JavaFramework/core/target/core-1.0_proguard_base.jar","e:/tmp/encrypt.jar","E:/dev/workspaceframe/JavaFramework/core","META-INF/ext/", MachineIdUtils.getMachineId().replace("-","").toUpperCase(),System.currentTimeMillis()+365*3600*24*1000L);
-
+        repackage("E:/dev/core-obs.jar","E:/dev/maven/repository/com/robin/core-encrypt/1.0/core-encrypt-1.0.jar","E:/dev/workspaceframe/JavaFramework/core","E:/dev/workspaceframe/JavaFramework/decryptagent/src/main/resources/META-INF/ext/", MachineIdUtils.getMachineId().replace("-","").toUpperCase(),System.currentTimeMillis()+365*3600*24*1000L);
+        /*Random random=new Random();
+        List<String> strs=CipherUtil.getConfusedName(16,random);
+        System.out.println(strs.get(1));
+        byte[] bytes=indexToBytes(strs.get(1));
+        System.out.println(bytes.length);
+        System.out.println(bytesToIndex(bytes));*/
     }
 }

decryptagent/src/main/java/com/robin/agent/ClassTransformer.java

@@ -5,9 +5,7 @@
 import java.io.*;
 import java.lang.instrument.ClassFileTransformer;
 import java.lang.instrument.IllegalClassFormatException;
-import java.security.NoSuchAlgorithmException;
 import java.security.ProtectionDomain;
-import java.security.spec.InvalidKeySpecException;
 import java.util.HashMap;
 import java.util.Map;
 
@@ -16,17 +14,19 @@ public class ClassTransformer implements ClassFileTransformer {
     private Map<String, String> encryptKeyMap = new HashMap<>();
     private String machineCode;
     private Long expireTs;
-    private static final String DEFAULTALGORITHM = "AES";
-    private static final String DEFAULT_CIPHER_ALGORITHM = "AES/ECB/PKCS5Padding";
-    public static final byte[] m_datapadding = {0x7F};
-    public static final byte[] m_ending = {0x00};
-    private static final String[] CONFUSEDSTRS = {"i", "I", "l", "O", "0", "1"};
+    private final String DEFAULTALGORITHM = "AES";
+    private final String DEFAULT_CIPHER_ALGORITHM = "AES/ECB/PKCS5Padding";
+    private final byte[] m_datapadding = {0x7F};
 
-    public static final byte[] mzHeader = new byte[19];
+    private final String[] CONFUSEDSTRS = {"i", "I", "l", "O", "0", "1"};
 
-    public ClassTransformer(){
+    private final byte[] mzHeader = new byte[19];
+    private final char spacebyteVal=20;
+
+    public ClassTransformer() {
         init();
     }
+
     private void init() {
         try (DataInputStream dInput = new DataInputStream(getClass().getClassLoader().getResourceAsStream("META-INF/config.bin"))) {
             dInput.read(mzHeader);
@@ -38,7 +38,7 @@ private void init() {
             machineCode = bytesToHexString(machineCodeByte);
             expireTs = dInput.readLong();
             checkExpire();
-            int classNameBytesLen ;
+            int classNameBytesLen;
             while (dInput.available() > 0) {
                 dInput.read(paddingbyte);
                 checkPadding(paddingbyte);
@@ -47,20 +47,21 @@ private void init() {
                 dInput.read(classNameEncryptBytes);
                 byte[] decryptClassNameBytes = decryptByte(classNameEncryptBytes, machineCode.getBytes());
                 String className = new String(decryptClassNameBytes);
-                byte[] posByte=new byte[16];
+                byte[] posByte = new byte[16];
                 dInput.read(posByte);
-                String confusedName = decodeConfusedNameByCode(new String(posByte));
+                String confusedName = decodeConfusedNameByCode(posByte);
                 int keyLength = dInput.readInt();
                 byte[] keyEncryptByte = new byte[keyLength];
                 dInput.read(keyEncryptByte);
                 byte[] keyDecryptByte = decryptByte(keyEncryptByte, machineCode.getBytes());
                 String key = new String(keyDecryptByte);
-                encryptKeyMap.put(className, confusedName+"|"+key);
+                encryptKeyMap.put(className, confusedName + "|" + key);
             }
         } catch (Exception ex) {
             ex.printStackTrace();
         }
     }
+
     private void checkPadding(byte[] paddingbyte) {
         if (paddingbyte[0] != m_datapadding[0]) {
             System.err.println("jar package corrupted");
@@ -74,15 +75,15 @@ private void checkExpire() {
             System.exit(1);
         }
     }
+
     private byte[] loadEncryptDataStream(String confusedName) throws IOException {
         ByteArrayOutputStream outputStream = new ByteArrayOutputStream();
         doCopy(getClass().getClassLoader().getResourceAsStream("META-INF/ext/" + confusedName), outputStream);
         return outputStream.toByteArray();
     }
 
 
-
-    private static void doCopy(InputStream is, OutputStream os) throws IOException {
+    private void doCopy(InputStream is, OutputStream os) throws IOException {
         byte[] bytes = new byte[2048];
         int numBytes;
         while ((numBytes = is.read(bytes)) != -1) {
@@ -93,7 +94,7 @@ private static void doCopy(InputStream is, OutputStream os) throws IOException {
         is.close();
     }
 
-    private static byte[] decryptByte(byte[] bytes, byte[] key) {
+    private byte[] decryptByte(byte[] bytes, byte[] key) {
         try {
             Cipher cipher = Cipher.getInstance(DEFAULT_CIPHER_ALGORITHM);
             cipher.init(Cipher.DECRYPT_MODE, toKey(key));
@@ -103,8 +104,14 @@ private static byte[] decryptByte(byte[] bytes, byte[] key) {
         }
         return null;
     }
-
-    private static String bytesToHexString(byte[] bytes) {
+    private String bytesToIndex(byte[] bytes){
+        StringBuilder builder=new StringBuilder();
+        for(byte bytes1:bytes){
+            builder.append((char)((int)bytes1+spacebyteVal));
+        }
+        return builder.toString();
+    }
+    private String bytesToHexString(byte[] bytes) {
         StringBuilder builder = new StringBuilder();
         for (byte b : bytes) {
             builder.append(String.format("%02X", b));
@@ -113,39 +120,40 @@ private static String bytesToHexString(byte[] bytes) {
     }
 
 
-    private static SecretKeySpec toKey(byte[] keybyte)  {
+    private SecretKeySpec toKey(byte[] keybyte) {
         return new SecretKeySpec(keybyte, DEFAULTALGORITHM);
     }
 
-    private static String decodeConfusedNameByCode(String code) {
+    private String decodeConfusedNameByCode(byte[] bytes) {
+        String index=bytesToIndex(bytes);
         StringBuilder builder = new StringBuilder();
-        for (char input : code.toCharArray()) {
-            builder.append(CONFUSEDSTRS[Integer.parseInt(String.valueOf(input))-1]);
+        for (char input : index.toCharArray()) {
+            builder.append(CONFUSEDSTRS[Integer.parseInt(String.valueOf(input)) - 1]);
         }
         return builder.toString();
     }
 
     @Override
     public byte[] transform(ClassLoader loader, String className, Class<?> classBeingRedefined, ProtectionDomain protectionDomain, byte[] classfileBuffer) throws IllegalClassFormatException {
         try {
-            String loadClass=className.replace("/",".");
+            String loadClass = className.replace("/", ".");
             if (encryptKeyMap.containsKey(loadClass)) {
-                //System.out.println("load class "+className);
-                if(loadedClassPool.containsKey(loadClass)){
+                System.out.println("load class "+className);
+                if (loadedClassPool.containsKey(loadClass)) {
                     return loadedClassPool.get(loadClass);
                 }
                 String[] arr = encryptKeyMap.get(loadClass).split("\\|");
                 byte[] encryptBytes = loadEncryptDataStream(arr[0]);
-                byte[] machineDecr=decryptByte(encryptBytes,machineCode.getBytes());
-                byte[] decryptByte=decryptByte(machineDecr,arr[1].getBytes());
+                byte[] machineDecr = decryptByte(encryptBytes, machineCode.getBytes());
+                byte[] decryptByte = decryptByte(machineDecr, arr[1].getBytes());
                 if (decryptByte != null && decryptByte[0] == -54 && decryptByte[1] == -2 && decryptByte[2] == -70 && decryptByte[3] == -66) {
-                    loadedClassPool.put(loadClass,decryptByte);
+                    loadedClassPool.put(loadClass, decryptByte);
                     return decryptByte;
-                }else{
+                } else {
                     throw new RuntimeException("decrypt error!");
                 }
             }
-        }catch (Exception ex){
+        } catch (Exception ex) {
             ex.printStackTrace();
         }
         return classfileBuffer;