jsobfu 0.3.0 → 0.4.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: d61cd6788963eb7f3079f126f4fc74ec831a7dd5
-  data.tar.gz: a7de9413eda46fe02f80eba2916006113e7bff25
+  metadata.gz: 02ab4e590ee0515b73b6718ba4838be52ad7ec6c
+  data.tar.gz: 2f5bb34601d29758f1daa867b375fb71187c20ea
 SHA512:
-  metadata.gz: d45a69e75aa3bb6f73e7d3cc361e631917f32147f278118c08567312ddf6aae589449dde9e0f1af8efbf8a1db3d0112fbc612927bee49d2eeca244195d795c73
-  data.tar.gz: 9ca1927799eea1eccbdc64616dcb9fb9425d432d8b0500a19ad3a20aa492830fe4d9480d6207d45693f8d06481624b42e93d8d2ae15500ef72128399aee6baeb
+  metadata.gz: 0a6084669d93cddfed800d737ecb36b407722bdef8bed16cbedafd083e56f92ed40e9247170d3f54101cc4a85f15718f86d7578e11edfc0847396d57311f399f
+  data.tar.gz: 6820da4bbda826d5699a51eaff1537979192a85d0c3dc1e47e29364876434404134e45f0f569650c823f241019db7e900ef393f309321bf17495c91085046171

data/bin/jsobfu

@@ -1,8 +1,28 @@
 #!/usr/bin/env ruby
 require 'jsobfu'
+require 'optparse'
 
-iterations = (ARGV[0] || 1).to_i
+iterations = [(ARGV[0] || 1).to_i, 1].max
+
+preserved_identifiers = []
+global = 'window'
+
+opt_parser = OptionParser.new do |opts|
+  opts.banner = 'Usage: jsobfu [iterations] [options]'
+  opts.on('--preserved-identifiers id1,id2') do |ids|
+    preserved_identifiers += ids.split(',')
+  end
+  opts.on('--global window') do |global_opt|
+    global = global_opt
+  end
+end
+
+opt_parser.parse(ARGV)
 
 js = JSObfu.new(STDIN.read)
 
-puts js.obfuscate(iterations: iterations)
+puts js.obfuscate(
+  iterations: iterations,
+  preserved_identifiers: preserved_identifiers,
+  global: global
+)

data/lib/jsobfu.rb

@@ -62,6 +62,7 @@ class JSObfu
   # @option opts [Boolean] :memory_sensitive the execution environment is sensitive
   #   to changes in memory usage (e.g. a heap spray). This disables string transformations
   #   and other "noisy" obfuscation tactics. (false)
+  # @option opts [Array<String>] :preserved_identifiers A list of identifiers to NOT obfuscate
   # @return [self]
   def obfuscate(opts={})
     return self if JSObfu.disabled?

data/lib/jsobfu/obfuscator.rb

@@ -28,6 +28,7 @@ class JSObfu::Obfuscator < JSObfu::ECMANoWhitespaceVisitor
     @scope = opts.fetch(:scope) { JSObfu::Scope.new }
     @global = opts.fetch(:global, DEFAULT_GLOBAL).to_s
     @memory_sensitive = !!opts.fetch(:memory_sensitive, false)
+    @preserved_identifiers = opts.fetch(:preserved_identifiers, [])
     @renames = {}
     super()
   end
@@ -50,7 +51,9 @@ class JSObfu::Obfuscator < JSObfu::ECMANoWhitespaceVisitor
     o.value.each { |x| hoister.accept(x) }
 
     hoister.scope.keys.each do |key|
-      rename_var(key)
+      unless @preserved_identifiers.include?(key)
+        rename_var(key)
+      end
     end
 
     ret = super
@@ -62,7 +65,9 @@ class JSObfu::Obfuscator < JSObfu::ECMANoWhitespaceVisitor
 
   def visit_FunctionDeclNode(o)
     o.value = if o.value and o.value.length > 0
-      JSObfu::Utils::random_var_encoding(scope.rename_var(o.value))
+      unless @preserved_identifiers.include?(o.value)
+        JSObfu::Utils::random_var_encoding(scope.rename_var(o.value))
+      end
     else
       if rand(3) != 0
         JSObfu::Utils::random_var_encoding(scope.random_var_name)
@@ -73,7 +78,7 @@ class JSObfu::Obfuscator < JSObfu::ECMANoWhitespaceVisitor
   end
 
   def visit_FunctionExprNode(o)
-    if o.value != 'function'
+    if o.value != 'function' && !@preserved_identifiers.include?(o.value)
       o.value = JSObfu::Utils::random_var_encoding(rename_var(o.value))
     end
 
@@ -82,7 +87,9 @@ class JSObfu::Obfuscator < JSObfu::ECMANoWhitespaceVisitor
 
   # Called whenever a variable is declared.
   def visit_VarDeclNode(o)
-    o.name = JSObfu::Utils::random_var_encoding(rename_var(o.name))
+    unless @preserved_identifiers.include?(o.name)
+      o.name = JSObfu::Utils::random_var_encoding(rename_var(o.name))
+    end
 
     super
   end
@@ -103,7 +110,7 @@ class JSObfu::Obfuscator < JSObfu::ECMANoWhitespaceVisitor
       o.value = JSObfu::Utils::random_var_encoding(new_val)
       super
     else
-      if @memory_sensitive || o.value.to_s == global.to_s
+      if @memory_sensitive || o.value.to_s == global.to_s || @preserved_identifiers.include?(o.value.to_s)
         # if the ref is the global object, don't obfuscate it on itself. This helps
         # "shimmed" globals (like `window=this` at the top of the script) work reliably.
         super
@@ -116,7 +123,7 @@ class JSObfu::Obfuscator < JSObfu::ECMANoWhitespaceVisitor
 
   # Called on a dot lookup, like X.Y
   def visit_DotAccessorNode(o)
-    if @memory_sensitive
+    if @memory_sensitive || @preserved_identifiers.include?(o.accessor)
       super
     else
       obf_str = JSObfu::Utils::transform_string(o.accessor, scope, :quotes => false)
@@ -127,7 +134,9 @@ class JSObfu::Obfuscator < JSObfu::ECMANoWhitespaceVisitor
   # Called when a parameter is declared. "Shadowed" parameters in the original
   # source are preserved - the randomized name is "shadowed" from the outer scope.
   def visit_ParameterNode(o)
-    o.value = JSObfu::Utils::random_var_encoding(rename_var(o.value))
+    unless @preserved_identifiers.include?(o.value)
+      o.value = JSObfu::Utils::random_var_encoding(rename_var(o.value))
+    end
 
     super
   end
@@ -135,7 +144,7 @@ class JSObfu::Obfuscator < JSObfu::ECMANoWhitespaceVisitor
   # A property node in an object "{}"
   def visit_PropertyNode(o)
     # if it is a non-alphanumeric property, obfuscate the string's bytes
-    unless @memory_sensitive
+    unless @memory_sensitive || @preserved_identifiers.include?(o.name)
       if o.name =~ /^[a-zA-Z_][a-zA-Z0-9_]*$/
          o.instance_variable_set :@name, '"'+JSObfu::Utils::random_string_encoding(o.name)+'"'
       end
@@ -162,7 +171,9 @@ class JSObfu::Obfuscator < JSObfu::ECMANoWhitespaceVisitor
 
   def visit_TryNode(o)
     if o.catch_block
-      o.instance_variable_set :@catch_var, rename_var(o.catch_var)
+      unless @preserved_identifiers.include?(o.catch_var)
+        o.instance_variable_set :@catch_var, rename_var(o.catch_var)
+      end
     end
     super
   end

data/lib/jsobfu/utils.rb

@@ -357,7 +357,7 @@ module JSObfu::Utils
           str.slice!(0, $1.length)
         end
       else
-        char = str.slice!(0,1).unpack("C").first
+        char = str.slice!(0,1).unpack("U").first
       end
       encoded_bytes << rand_base(char) if char
     end

data/spec/integration_spec.rb

@@ -5,7 +5,12 @@ require 'execjs'
 unless ENV['INTEGRATION'] == 'false'
 
 describe 'Integrations' do
+  match = ENV['MATCH']
   Dir.glob(Pathname.new(__FILE__).dirname.join('integration/**.js').to_s).each do |path|
+    if match and !path.downcase.include?(match.downcase)
+      next
+    end
+
     js = File.read(path)
 
     if js =~ /\/\/@wip/

data/spec/jsobfu/utils_spec.rb

@@ -21,7 +21,7 @@ describe JSObfu::Utils do
 
   describe '#rand_text_alpha' do
     let(:len) { 15 }
-    
+
     # generates a new random string on every call
     def output; JSObfu::Utils.rand_text_alpha(len); end
 
@@ -34,7 +34,7 @@ describe JSObfu::Utils do
     end
   end
 
-  describe '#rand_text' do    
+  describe '#rand_text' do
     let(:len) { 5 }
     let(:charset) { described_class::ALPHA_CHARSET }
 

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: jsobfu
 version: !ruby/object:Gem::Version
-  version: 0.3.0
+  version: 0.4.1
 platform: ruby
 authors:
 - James Lee
@@ -9,7 +9,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2014-04-09 00:00:00.000000000 Z
+date: 2016-01-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rkelly-remix
@@ -141,7 +141,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.2.2
+rubygems_version: 2.4.8
 signing_key: 
 specification_version: 4
 summary: A Javascript code obfuscator