justan0th3rstud3nt
/
garble
mirror of https://github.com/burrowers/garble
1
0
Fork 0
Code Issues 1 Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
release-v0.12
ci-test
literalRecheck
v0.12.1
v0.12.0
v0.11.0
v0.10.1
v0.10.0
v0.9.3
v0.9.2
v0.9.1
v0.9.0
v0.8.0
v0.7.2
v0.7.1
v0.7.0
v0.6.0
v0.5.1
v0.5.0
v0.4.0
v0.3.0
v0.2.0
v0.1.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
garble/README.md

194 lines
8.7 KiB
Markdown
Raw Permalink Normal View History Unescape Escape

add README
5 years ago
# garble
start using "go install pkg@version" in docs Now that Go 1.17.x is out, we no longer need to worry about users on Go 1.15.x. Since Go 1.16, the best way to install programs has been "go install": https://golang.org/doc/go1.16#go-command This method does not interfere with the current module, and allows selecting a version such as "latest" or "master".
3 years ago
go install mvdan.cc/garble@latest
README: add build instructions The import path works now too.
5 years ago
drop support for Go 1.19 Now that we're done with garble v0.9.x, v0.10 will only support Go 1.20 as a minimum version.
1 year ago
Obfuscate Go code by wrapping the Go toolchain. Requires Go 1.20 or later.
add README
5 years ago
garble build [build flags] [packages]
README: document commands While at it, slightly tweak and update the rest of the markdown docs.
3 years ago
The tool also supports `garble test` to run tests with obfuscated code,
support `garble run` It's the third time I've wanted it to quickly test out standalone reproducers when people submit bugs. Fixes #661.
1 year ago
`garble run` to obfuscate and execute simple programs,
README: document commands While at it, slightly tweak and update the rest of the markdown docs.
3 years ago
and `garble reverse` to de-obfuscate text such as stack traces.
README: suggest how to install master This might be known by some Go users, but a few users were unaware, so make an explicit mention of it.
12 months ago
Run `garble -h` to see all available commands and flags.
You can also use `go install mvdan.cc/garble@master` to install the latest development version.
add README
5 years ago
### Purpose
Produce a binary that works as well as a regular build, but that has as little
information about the original source code as possible.
The tool is designed to be:
initial support for build caching (#142) As per the discussion in https://github.com/golang/go/issues/41145, it turns out that we don't need special support for build caching in -toolexec. We can simply modify the behavior of "[...]/compile -V=full" and "[...]/link -V=full" so that they include garble's own version and options in the printed build ID. The part of the build ID that matters is the last, since it's the "content ID" which is used to work out whether there is a need to redo the action (build) or not. Since cmd/go parses the last word in the output as "buildID=...", we simply add "+garble buildID=_/_/_/${hash}". The slashes let us imitate a full binary build ID, but we assume that the other components such as the action ID are not necessary, since the only reader here is cmd/go and it only consumes the content ID. The reported content ID includes the tool's original content ID, garble's own content ID from the built binary, and the garble options which modify how we obfuscate code. If any of the three changes, we should use a different build cache key. GOPRIVATE also affects caching, since a different GOPRIVATE value means that we might have to garble a different set of packages. Include tests, which mainly check that 'garble build -v' prints package lines when we expect to always need to rebuild packages, and that it prints nothing when we should be reusing the build cache even when the built binary is missing. After this change, 'go test' on Go 1.15.2 stabilizes at about 8s on my machine, whereas it used to be at around 25s before.
4 years ago
* Coupled with `cmd/go`, to support modules and build caching
make output binaries deterministic We were leaking temporary file paths, which is no longer the case.
5 years ago
* Deterministic and reproducible, given the same initial source code
README: document commands While at it, slightly tweak and update the rest of the markdown docs.
3 years ago
* Reversible given the original source, to de-obfuscate panic stack traces
add README
5 years ago
### Mechanism
README: simplify and update with the latest changes
4 years ago
The tool wraps calls to the Go compiler and linker to transform the Go build, in
add README
5 years ago
order to:
* Replace as many useful identifiers as possible with short base64 hashes
Garble imports and package paths in GOPRIVATE (#116) Finally, finally this is done. This allows import paths to be obfuscated by modifying object/archive files and garbling import paths contained within. The bulk of the code that makes parsing and writing Go object/archive files possible lives at https://github.com/Binject/debug/tree/master/goobj2, which I wrote as well. I have tested by garbling and checking for import paths via strings and grep (in order of difficulty) https://github.com/lu4p/binclude, garble itself, and https://github.com/dominikh/go-tools/tree/master/cmd/staticcheck. This only supports object/archive files produced from the Go 1.15 compiler. The object file format changed at 1.15, and 1.14 and earlier is not supported. Fixes #13.
4 years ago
* Replace package paths with short base64 hashes
README: slightly tweak the wording around flags Make the literals section easier to follow by using the word "expression" more consistently. The tiny section was misleading as well, as the README made it seem like position information was stripped both with and without the flag. Clarify what happens with that information in each case.
2 years ago
* Replace filenames and position information with short base64 hashes
amend redirecting URLs via "xurls -fix"
2 years ago
* Remove all [build](https://go.dev/pkg/runtime/#Version) and [module](https://go.dev/pkg/runtime/debug/#ReadBuildInfo) information
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
3 years ago
* Strip debugging information and symbol tables via `-ldflags="-w -s"`
README: fix link to literal obfuscation I noticed that link was broken - fix it.
3 years ago
* [Obfuscate literals](#literal-obfuscation), if the `-literals` flag is given
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
3 years ago
* Remove [extra information](#tiny-mode), if the `-tiny` flag is given
make selection of packages configurable via GOPRIVATE Carefully select a default that will do the right thing when inside a module, as well as when building ad-hoc packages. This means we no longer need to look at the compiler's -std flag, which is nice. Also replace foo.com/ with test/, as per golang/go#37641. Fixes #7.
4 years ago
default to GOGARBLE=*, stop using GOPRIVATE We can drop the code that kicked in when GOGARBLE was empty. We can also add the value in addGarbleToHash unconditionally, as we never allow it to be empty. In the tests, remove all GOGARBLE lines where it just meant "obfuscate everything" or "obfuscate the entire main module". cgo.txtar had "obfuscate everything" as a separate step, so remove it entirely. linkname.txtar started failing because the imported package did not import strings, so listPackage errored out. This wasn't a problem when strings itself wasn't obfuscated, as transformLinkname silently left strings.IndexByte untouched. It is a problem when IndexByte does get obfuscated. Make that kind of listPackage error visible, and fix it. reflect.txtar started failing with "unreachable method" runtime throws. It's not clear to me why; it appears that GOGARBLE=* makes the linker think that ExportedMethodName is suddenly unreachable. Work around the problem by making the method explicitly reachable, and leave a TODO as a reminder to investigate. Finally, gogarble.txtar no longer needs to test for GOPRIVATE. The rest of the test is left the same, as we still want the various values for GOGARBLE to continue to work just like before. Fixes #594.
1 year ago
By default, the tool obfuscates all the packages being built.
You can manually specify which packages to obfuscate via `GOGARBLE`,
a comma-separated list of glob patterns matching package path prefixes.
This format is borrowed from `GOPRIVATE`; see `go help private`.
README: document how to use different Go versions (#229) This is a bit tricky right now, but will hopefully become simpler if https://github.com/golang/go/issues/44329 gets approved and implemented. Until then, suggest ways to do it in POSIX Shell. While at it, stop using "garble" as a verb, and just use "obfuscate". It's a bit silly if we say "garble garbles code"; it's much more intuitive and less repetitive to say "garble obfuscates code". The code still says "garble X" and "X was garbled" in a few places, and we should fix those, but at least they are not publicly visible.
3 years ago
Note that commands like `garble build` will use the `go` version found in your
`$PATH`. To use different versions of Go, you can
amend redirecting URLs via "xurls -fix"
2 years ago
[install them](https://go.dev/doc/manage-install#installing-multiple)
drop support for Go 1.16.x We can now use pruned module graphs in go.mod files, and we no longer need to worry about runtime/internal/sys. Note that I had to update testdata/mod slightly, as the new pruned module graphs algorithm downloads an extra go.mod file. This change also paves the way towards future Go 1.18 support. Thanks to lu4p for cleaning up two TODOs as well. Co-Authored-By: lu4p <lu4p@pm.me>
3 years ago
and set up `$PATH` with them. For example, for Go 1.17.1:
README: document how to use different Go versions (#229) This is a bit tricky right now, but will hopefully become simpler if https://github.com/golang/go/issues/44329 gets approved and implemented. Until then, suggest ways to do it in POSIX Shell. While at it, stop using "garble" as a verb, and just use "obfuscate". It's a bit silly if we say "garble garbles code"; it's much more intuitive and less repetitive to say "garble obfuscates code". The code still says "garble X" and "X was garbled" in a few places, and we should fix those, but at least they are not publicly visible.
3 years ago
```sh
drop support for Go 1.16.x We can now use pruned module graphs in go.mod files, and we no longer need to worry about runtime/internal/sys. Note that I had to update testdata/mod slightly, as the new pruned module graphs algorithm downloads an extra go.mod file. This change also paves the way towards future Go 1.18 support. Thanks to lu4p for cleaning up two TODOs as well. Co-Authored-By: lu4p <lu4p@pm.me>
3 years ago
$ go install golang.org/dl/go1.17.1@latest
$ go1.17.1 download
$ PATH=$(go1.17.1 env GOROOT)/bin:${PATH} garble build
README: document how to use different Go versions (#229) This is a bit tricky right now, but will hopefully become simpler if https://github.com/golang/go/issues/44329 gets approved and implemented. Until then, suggest ways to do it in POSIX Shell. While at it, stop using "garble" as a verb, and just use "obfuscate". It's a bit silly if we say "garble garbles code"; it's much more intuitive and less repetitive to say "garble obfuscates code". The code still says "garble X" and "X was garbled" in a few places, and we should fix those, but at least they are not publicly visible.
3 years ago
```
README: start a section on the use cases for a Go obfuscator This type of question has popped up a number of times before, particularly when someone unfamiliar with obfuscators in other languages first hears about the existence of one for Go.
6 months ago
### Use cases
A common question is why a code obfuscator is needed for Go, a compiled language.
Go binaries include a surprising amount of information about the original source;
even with debug information and symbol tables stripped, many names and positions
remain in place for the sake of traces, reflection, and debugging.
Some use cases for Go require sharing a Go binary with the end user.
If the source code for the binary is private or requires a purchase,
its obfuscation can help discourage reverse engineering.
A similar use case is a Go library whose source is private or purchased.
Since Go libraries cannot be imported in binary form, and Go plugins
[have their shortcomings](https://github.com/golang/go/issues/19282),
sharing obfuscated source code becomes an option.
See [#369](https://github.com/burrowers/garble/issues/369).
Obfuscation can also help with aspects entirely unrelated to licensing.
For example, the `-tiny` flag can make binaries 15% smaller,
similar to the [common practice in Android](https://developer.android.com/build/shrink-code#obfuscate) to reduce app sizes.
Obfuscation has also helped some open source developers work around
anti-virus scans incorrectly treating Go binaries as malware.
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
3 years ago
### Literal obfuscation
README: document how to use different Go versions (#229) This is a bit tricky right now, but will hopefully become simpler if https://github.com/golang/go/issues/44329 gets approved and implemented. Until then, suggest ways to do it in POSIX Shell. While at it, stop using "garble" as a verb, and just use "obfuscate". It's a bit silly if we say "garble garbles code"; it's much more intuitive and less repetitive to say "garble obfuscates code". The code still says "garble X" and "X was garbled" in a few places, and we should fix those, but at least they are not publicly visible.
3 years ago
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
3 years ago
Using the `-literals` flag causes literal expressions such as strings to be
README: slightly tweak the wording around flags Make the literals section easier to follow by using the word "expression" more consistently. The tiny section was misleading as well, as the README made it seem like position information was stripped both with and without the flag. Clarify what happens with that information in each case.
2 years ago
replaced with more complex expressions, resolving to the same value at run-time.
README: clarify that -literals affects -ldflags=-X too
1 year ago
String literals injected via `-ldflags=-X` are also replaced by this flag.
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
3 years ago
This feature is opt-in, as it can cause slow-downs depending on the input code.
README: document how to use different Go versions (#229) This is a bit tricky right now, but will hopefully become simpler if https://github.com/golang/go/issues/44329 gets approved and implemented. Until then, suggest ways to do it in POSIX Shell. While at it, stop using "garble" as a verb, and just use "obfuscate". It's a bit silly if we say "garble garbles code"; it's much more intuitive and less repetitive to say "garble obfuscates code". The code still says "garble X" and "X was garbled" in a few places, and we should fix those, but at least they are not publicly visible.
3 years ago
README: slightly tweak the wording around flags Make the literals section easier to follow by using the word "expression" more consistently. The tiny section was misleading as well, as the README made it seem like position information was stripped both with and without the flag. Clarify what happens with that information in each case.
2 years ago
Literals used in constant expressions cannot be obfuscated, since they are
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
3 years ago
resolved at compile time. This includes any expressions part of a `const`
README: slightly tweak the wording around flags Make the literals section easier to follow by using the word "expression" more consistently. The tiny section was misleading as well, as the README made it seem like position information was stripped both with and without the flag. Clarify what happens with that information in each case.
2 years ago
declaration, for example.
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
3 years ago
### Tiny mode
README: slightly tweak the wording around flags Make the literals section easier to follow by using the word "expression" more consistently. The tiny section was misleading as well, as the README made it seem like position information was stripped both with and without the flag. Clarify what happens with that information in each case.
2 years ago
With the `-tiny` flag, even more information is stripped from the Go binary.
Position information is removed entirely, rather than being obfuscated.
Runtime code which prints panics, fatal errors, and trace/debug info is removed.
README: -tiny does a bit more now On my machine, garble itself goes from about 5.7MiB to about 4.8 MiB when being built with `garble build` and `garble build -tiny`, which is roughly a 16% decrease in size. The 2-5% figure is dated at this point, as we do better than that now.
1 year ago
Many symbol names are also omitted from binary sections at link time.
All in all, this can make binaries about 15% smaller.
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
3 years ago
README: document the effect of -tiny on reverse Fixes #292.
3 years ago
With this flag, no panics or fatal runtime errors will ever be printed, but they
can still be handled internally with `recover` as normal. In addition, the
`GODEBUG` environmental variable will be ignored.
Note that this flag can make debugging crashes harder, as a panic will simply
README: -tiny does a bit more now On my machine, garble itself goes from about 5.7MiB to about 4.8 MiB when being built with `garble build` and `garble build -tiny`, which is roughly a 16% decrease in size. The 2-5% figure is dated at this point, as we do better than that now.
1 year ago
exit the entire program without printing a stack trace, and source code
positions and many names are removed.
Similarly, `garble reverse` is generally not useful in this mode.
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
3 years ago
add control flow obfuscation docs
11 months ago
### Control flow obfuscation
See: [CONTROLFLOW.md](docs/CONTROLFLOW.md)
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
3 years ago
### Speed
`garble build` should take about twice as long as `go build`, as it needs to
complete two builds. The original build, to be able to load and type-check the
README: keep making a mention of reflect hints (#409) We recently improved the automatic detection of reflection. However, note that a hint may still be needed in some cases, in particular when the reflection usage happens in a downstream package. Keep making that suggestion. Also mention that we obfuscate one package at a time. I've also written down #406 with more ideas on how we could polish this rough edge for end users in the future. Fixes #403.
3 years ago
input code, and then the obfuscated build.
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
3 years ago
README: keep making a mention of reflect hints (#409) We recently improved the automatic detection of reflection. However, note that a hint may still be needed in some cases, in particular when the reflection usage happens in a downstream package. Keep making that suggestion. Also mention that we obfuscate one package at a time. I've also written down #406 with more ideas on how we could polish this rough edge for end users in the future. Fixes #403.
3 years ago
Garble obfuscates one package at a time, mirroring how Go compiles one package
at a time. This allows Garble to fully support Go's build cache; incremental
`garble build` calls should only re-build and re-obfuscate modified code.
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
3 years ago
README: clarify that the first "garble build" may be slow The section said that "garble build" should take about twice as long as "go build", which is typically true, with the glaring exception that is the first "garble build" after normal use of "go build". This scenario will be rather common for first-time users, and the difference will be most noticeable with large projects. A large build may take about a second to rebuild with a warm cache, but could take tens or even hundreds of seconds to rebuild from scratch. See #479.
2 years ago
Note that the first call to `garble build` may be comparatively slow,
as it has to obfuscate each package for the first time. This is akin to clearing
`GOCACHE` with `go clean -cache` and running a `go build` from scratch.
internal/linker: place files under GARBLE_CACHE This means we now have a unified cache directory for garble, which is now documented in the README. I considered using the same hash-based cache used for pkgCache, but decided against it since that cache implementation only stores regular files without any executable bits set. We could force the cache package to do what we want here, but I'm leaning against it for now given that single files work OK.
12 months ago
Garble also makes use of its own cache to reuse work, akin to Go's `GOCACHE`.
It defaults to a directory under your user's cache directory,
such as `~/.cache/garble`, and can be placed elsewhere by setting `GARBLE_CACHE`.
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
3 years ago
### Determinism and seeds
make obfuscation fully deterministic with -seed The default behavior of garble is to seed via the build inputs, including the build IDs of the entire Go build of each package. This works well as a default, and does give us determinism, but it means that building for different platforms will result in different obfuscation per platform. Instead, when -seed is provided, don't use any other hash seed or salt. This means that a particular Go name will be obfuscated the same way as long as the seed, package path, and name itself remain constant. In other words, when the user supplies a custom -seed, we assume they know what they're doing in terms of storage and rotation. Expand the README docs with more examples and detail. Fixes #449.
2 years ago
Just like Go, garble builds are deterministic and reproducible in nature.
This has significant benefits, such as caching builds and being able to use
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
3 years ago
`garble reverse` to de-obfuscate stack traces.
make obfuscation fully deterministic with -seed The default behavior of garble is to seed via the build inputs, including the build IDs of the entire Go build of each package. This works well as a default, and does give us determinism, but it means that building for different platforms will result in different obfuscation per platform. Instead, when -seed is provided, don't use any other hash seed or salt. This means that a particular Go name will be obfuscated the same way as long as the seed, package path, and name itself remain constant. In other words, when the user supplies a custom -seed, we assume they know what they're doing in terms of storage and rotation. Expand the README docs with more examples and detail. Fixes #449.
2 years ago
By default, garble will obfuscate each package in a unique way,
which will change if its build input changes: the version of garble, the version
of Go, the package's source code, or any build parameter such as GOOS or -tags.
This is a reasonable default since guessing those inputs is very hard.
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
3 years ago
README: rewrite seeds section A user correctly points out that some sentences were confusing, like: It can also make reverse-engineering harder, as an end user could guess what version of Go or garble you're using. Rewrite the whole section. It now also explains what I meant by that sentence with a practical example. I also merged the bits about "provide your own seed" and "rotating the seeds", because they're both talking about the same mechanism. Fixes #666.
1 year ago
You can use the `-seed` flag to provide your own obfuscation randomness seed.
Reusing the same seed can help produce the same code obfuscation,
which can help when debugging or reproducing problems.
Regularly rotating the seed can also help against reverse-engineering in the long run,
as otherwise one can look at changes in how Go's standard library is obfuscated
to guess when the Go or garble versions were changed across a series of builds.
To always use a different seed for each build, use `-seed=random`.
Note that extra care should be taken when using custom seeds:
if a `-seed` value used in a build is lost, `garble reverse` will not work.
make selection of packages configurable via GOPRIVATE Carefully select a default that will do the right thing when inside a module, as well as when building ad-hoc packages. This means we no longer need to look at the compiler's -std flag, which is nice. Also replace foo.com/ with test/, as per golang/go#37641. Fixes #7.
4 years ago
add README
5 years ago
### Caveats
README: expand the caveats section a bit For #13, mainly, since that's a common concern.
4 years ago
Most of these can improve with time and effort. The purpose of this section is
to document the current shortcomings of this tool.
README: document how to use different Go versions (#229) This is a bit tricky right now, but will hopefully become simpler if https://github.com/golang/go/issues/44329 gets approved and implemented. Until then, suggest ways to do it in POSIX Shell. While at it, stop using "garble" as a verb, and just use "obfuscate". It's a bit silly if we say "garble garbles code"; it's much more intuitive and less repetitive to say "garble obfuscates code". The code still says "garble X" and "X was garbled" in a few places, and we should fix those, but at least they are not publicly visible.
3 years ago
* Exported methods are never obfuscated at the moment, since they could
README: keep making a mention of reflect hints (#409) We recently improved the automatic detection of reflection. However, note that a hint may still be needed in some cases, in particular when the reflection usage happens in a downstream package. Keep making that suggestion. Also mention that we obfuscate one package at a time. I've also written down #406 with more ideas on how we could polish this rough edge for end users in the future. Fixes #403.
3 years ago
be required by interfaces. This area is a work in progress; see
detect more std API calls which use reflection Before, we would just notice direct calls to reflect's TypeOf and ValueOf. Any other uses of reflection, such as encoding/json or google.golang.org/protobuf, would require hints as documented by the README. Issue #162 outlines some ways we could fix this issue in a general way, automatically detecting what functions use reflection on their parameters, even for third party API funcs. However, that goal is pretty significant in terms of code and effort. As a temporary improvement, we can expand the list of "known" reflection APIs via a static table. Since this table is keyed by "func full name" strings, we could potentially include third party APIs, such as: google.golang.org/protobuf/proto.Marshal However, for now simply include all the std APIs we know about. If we fail to do the proper fix for automatic detection in the future, we can then fall back to expanding this global table for third parties. Update the README's docs, to clarify that the hint is not always necessary anymore. Also update the reflect.txt test to stop using the hint for encoding/json, and to also start testing text/template with a method call. While at it, I noticed that we weren't testing the println outputs, as they'd go to stderr - fix that too. Updates #162.
3 years ago
[#3](https://github.com/burrowers/garble/issues/3).
README: expand the caveats section a bit For #13, mainly, since that's a common concern.
4 years ago
README: clarify that we have no plans to exclude files or packages This is a common question in the issue tracker: #631, #777, #802, #844. While here, tweak the wording and formatting in the section as well.
3 weeks ago
* Garble automatically detects which Go types are used with reflection
to avoid obfuscating them, as that might break your program.
README: keep making a mention of reflect hints (#409) We recently improved the automatic detection of reflection. However, note that a hint may still be needed in some cases, in particular when the reflection usage happens in a downstream package. Keep making that suggestion. Also mention that we obfuscate one package at a time. I've also written down #406 with more ideas on how we could polish this rough edge for end users in the future. Fixes #403.
3 years ago
Note that Garble obfuscates [one package at a time](#speed),
so if your reflection code inspects a type from an imported package,
README: clarify that we have no plans to exclude files or packages This is a common question in the issue tracker: #631, #777, #802, #844. While here, tweak the wording and formatting in the section as well.
3 weeks ago
you may need to add a "hint" in the imported package to exclude obfuscating it:
README: keep making a mention of reflect hints (#409) We recently improved the automatic detection of reflection. However, note that a hint may still be needed in some cases, in particular when the reflection usage happens in a downstream package. Keep making that suggestion. Also mention that we obfuscate one package at a time. I've also written down #406 with more ideas on how we could polish this rough edge for end users in the future. Fixes #403.
3 years ago
```go
type Message struct {
Command string
Args string
}
// Never obfuscate the Message type.
var _ = reflect.TypeOf(Message{})
```
Document reflect.TypeOf hint (#211) * Document reflect.TypeOf hint Fixes #163 * Fix nit
3 years ago
README: clarify that we have no plans to exclude files or packages This is a common question in the issue tracker: #631, #777, #802, #844. While here, tweak the wording and formatting in the section as well.
3 weeks ago
* Aside from `GOGARBLE` to select patterns of packages to obfuscate,
and the hint above with `reflect.TypeOf` to exclude obfuscating particular types,
there is no supported way to exclude obfuscating a selection of files or packages.
More often than not, a user would want to do this to work around a bug; please file the bug instead.
README: document the package initialization order caveat Keeping the original lexical sorting of Go packages would be very hard, as a Go program may import an unknown number of Go packages, and we load and obfuscate one package at a time by design. One option would be to load all packages upfront when obfuscating main packages, but that would break the per-package caching of ofbuscated Go packages, causing a huge slow-down in builds. Another option would be to not obfuscate import paths, which would clearly cause a worsening of the obfuscation quality. The third option is to not attempt to keep the original order, and document that as a caveat in the README. I suspect the vast majority of Go projects won't be affected by this, and those few that might be can always use imports to enforce the order. Closes #693, per the decision above to not change what we do.
3 months ago
* Go programs [are initialized](https://go.dev/ref/spec#Program_initialization) one package at a time,
where imported packages are always initialized before their importers,
and otherwise they are initialized in the lexical order of their import paths.
Since garble obfuscates import paths, this lexical order may change arbitrarily.
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
3 years ago
* Go plugins are not currently supported; see [#87](https://github.com/burrowers/garble/issues/87).
README: clarify that we have no plans to exclude files or packages This is a common question in the issue tracker: #631, #777, #802, #844. While here, tweak the wording and formatting in the section as well.
3 weeks ago
* Garble requires `git` to patch the linker. That can be avoided once go-gitdiff
supports [non-strict patches](https://github.com/bluekeyes/go-gitdiff/issues/30).
Add a Contributing section to the README (#187) Fixes #185
4 years ago
### Contributing
obfuscate unexported names like exported ones (#227) In 90fa325da7, the obfuscation logic was changed to use hashes for exported names, but incremental names starting at just one letter for unexported names. Presumably, this was done for the sake of binary size. I argue that this is not a good idea for the default mode for a number of reasons: 1) It makes reversing of stack traces nearly impossible for unexported names, since replacing an obfuscated name "c" with "originalName" would trigger too many false positives by matching single characters. 2) Exported and unexported names aren't different. We need to know how names were obfuscated at a later time in both cases, thanks to use cases like -ldflags=-X. Using short names for one but not the other doesn't make a lot of sense, and makes the logic inconsistent. 3) Shaving off three bytes for unexported names doesn't seem like a huge deal for the default mode, when we already have -tiny to optimize for size. This saves us a bit of work, but most importantly, simplifies the obfuscation state as we no longer need to carry privateNameMap between the compile and link stages. name old time/op new time/op delta Build-8 153ms ± 2% 150ms ± 2% ~ (p=0.065 n=6+6) name old bin-B new bin-B delta Build-8 7.09M ± 0% 7.08M ± 0% -0.24% (p=0.002 n=6+6) name old sys-time/op new sys-time/op delta Build-8 296ms ± 5% 277ms ± 6% -6.50% (p=0.026 n=6+6) name old user-time/op new user-time/op delta Build-8 562ms ± 1% 558ms ± 3% ~ (p=0.329 n=5+6) Note that I do not oppose using short names for both exported and unexported names in the future for -tiny, since reversing of stack traces will by design not work there. The code can be resurrected from the git history if we want to improve -tiny that way in the future, as we'd need to store state in header files again. Another major cleanup we can do here is to no longer use the garbledImports map. From a look at obfuscateImports, we hash a package's import path with its action ID, much like exported names, so we can simply re-do that hashing for the linker's -X flag. garbledImports does have some logic to handle duplicate package names, but it's worth noting that should not affect package paths, as they are always unique. That area of code could probably do with some simplification in the future, too. While at it, make hashWith panic if either parameter is empty. obfuscateImports was hashing the main package path without a salt due to a bug, so we want to catch those in the future. Finally, make some tiny spacing and typo tweaks to the README.
3 years ago
README: refactor and include more useful information The sections are a bit more organized now. We add better docs for flags, a new section on build speed, and we also remove the "withgo" helper as it seems a bit over the top. Fixes #275.
3 years ago
We welcome new contributors. If you would like to contribute, see
Add a Contributing section to the README (#187) Fixes #185
4 years ago
[CONTRIBUTING.md](CONTRIBUTING.md) as a starting point.