ferrugocc 0.4.0

An experimental C compiler and obfuscating compiler written in Rust, targeting x86_64 SysV ABI
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351

//! FerrugoCC — Rust製Cコンパイラ
//!
//! "Writing a C Compiler" (Nora Sandler) に沿って開発する学習用Cコンパイラ。
//!
//! # パイプライン
//! ```text
//! source.c → [Preprocess] → [Lex] → [Parse] → [Validate] → [TackyGen] → [Optimize/Obfuscate]
//!          → [Codegen] → [RegAlloc+Coalescing] → [Fixup] → [Emit] → source.s → [gcc] → binary
//! ```
//!
//! `--fobfuscate` 指定時は最適化の代わりに難読化パス(TACKY 11パス + ASM 5パス = 計16パス)を適用する。
//! `--obf-level=N` で難読化強度を段階的に制御可能(1=軽量〜4=最大)。
//!
//! # 使い方
//! ```text
//! ferrugocc <source.c>                                  # フルコンパイル(実行ファイル生成)
//! ferrugocc --lex <source.c>                            # 字句解析のみ
//! ferrugocc --parse <source.c>                          # 構文解析まで
//! ferrugocc --validate <source.c>                       # 型検査まで
//! ferrugocc --tacky <source.c>                          # TACKY IR 生成まで
//! ferrugocc --codegen <source.c>                        # コード生成まで(Asm AST 構築)
//! ferrugocc -S <source.c>                               # アセンブリ出力まで(.s ファイル生成)
//! ferrugocc --fobfuscate <source.c>                     # 難読化コンパイル(Level 3)
//! ferrugocc --fobfuscate --obf-level=1 <source.c>       # 軽量難読化
//! ferrugocc --fobfuscate --obf-level=4 <source.c>       # 最大難読化
//! ferrugocc --fobfuscate --obf-no-cff <source.c>        # CFF 無効化
//! ferrugocc --fobfuscate --obf-no-reg-shuffle <source.c> # レジスタシャッフル無効化
//! ferrugocc --fobfuscate --obf-no-stack-frame <source.c> # スタックフレーム難読化無効化
//! ferrugocc --fobfuscate --obf-no-instr-subst <source.c> # 命令置換無効化
//! ferrugocc --fobfuscate --obf-no-func-inline <source.c> # 関数インライン展開無効化
//! ferrugocc --fobfuscate --obf-no-func-outline <source.c> # 関数アウトライン化無効化
//! ferrugocc --fobfuscate --obf-no-lib-obfuscate <source.c> # ライブラリ関数難読化無効化
//! ferrugocc --fobfuscate --obf-junk-freq=2 <source.c>   # ジャンク頻度変更
//! ferrugocc --fobfuscate --obf-reg-shuffle-freq=3 <source.c> # シャッフル頻度変更
//! ferrugocc --fobfuscate --obf-inline-freq=2 <source.c>  # インライン頻度変更
//! ferrugocc --fobfuscate --obf-outline-min-block=3 <source.c> # アウトライン最小ブロック変更
//! ferrugocc --fobfuscate --opsec-policy=deny <source.c>      # OPSEC 違反時コンパイル失敗
//! ferrugocc --fobfuscate --opsec-audit <source.c>             # リンク後バイナリ監査
//! ```

mod codegen;
mod driver;
mod emit;
mod error;
mod lex;
mod obfuscation;
mod parse;
mod tacky;
mod typecheck;

use std::path::PathBuf;
use std::process;

use clap::Parser;

use driver::Stage;
use obfuscation::{ObfuscationConfig, OpsecPolicy};

#[derive(Parser)]
#[command(
    name = "ferrugocc",
    about = "An experimental C compiler and obfuscating compiler written in Rust",
    long_about = "FerrugoCC compiles a practical subset of C to x86_64 assembly (SysV ABI).\n\
                  Requires gcc for preprocessing (gcc -E) and assembling/linking.\n\
                  With --fobfuscate, applies 16 obfuscation passes instead of optimization."
)]
struct Cli {
    /// Run the lexer only
    #[arg(long)]
    lex: bool,

    /// Run through parsing
    #[arg(long)]
    parse: bool,

    /// Run through type checking (validate)
    #[arg(long)]
    validate: bool,

    /// Run through TACKY IR generation
    #[arg(long)]
    tacky: bool,

    /// Run through code generation
    #[arg(long)]
    codegen: bool,

    /// Emit assembly (.s) only
    #[arg(short = 'S')]
    emit_asm: bool,

    /// 難読化コンパイル(最適化の代わりに難読化パスを適用)
    #[arg(long = "fobfuscate")]
    obfuscate: bool,

    /// 難読化レベル (1=軽量, 2=標準, 3=全パス有効, 4=最大)
    #[arg(long = "obf-level", default_value_t = 3, value_parser = clap::value_parser!(u8).range(1..=4))]
    obf_level: u8,

    /// CFF(制御フロー平坦化)を無効化
    #[arg(long = "obf-no-cff")]
    obf_no_cff: bool,

    /// 文字列暗号化を無効化
    #[arg(long = "obf-no-strings")]
    obf_no_strings: bool,

    /// 反逆アセンブリを無効化
    #[arg(long = "obf-no-anti-disasm")]
    obf_no_anti_disasm: bool,

    /// 間接呼び出し変換を無効化
    #[arg(long = "obf-no-indirect-calls")]
    obf_no_indirect_calls: bool,

    /// ジャンクコード挿入頻度(N命令ごと、1以上)
    #[arg(long = "obf-junk-freq", value_parser = clap::value_parser!(u64).range(1..))]
    obf_junk_freq: Option<u64>,

    /// 不透明述語頻度(N個の値生成命令ごと、1以上)
    #[arg(long = "obf-pred-freq", value_parser = clap::value_parser!(u64).range(1..))]
    obf_pred_freq: Option<u64>,

    /// 算術置換を無効化
    #[arg(long = "obf-no-arith-subst")]
    obf_no_arith_subst: bool,

    /// レジスタシャッフルを無効化
    #[arg(long = "obf-no-reg-shuffle")]
    obf_no_reg_shuffle: bool,

    /// スタックフレーム難読化を無効化
    #[arg(long = "obf-no-stack-frame")]
    obf_no_stack_frame: bool,

    /// 命令置換を無効化
    #[arg(long = "obf-no-instr-subst")]
    obf_no_instr_subst: bool,

    /// 関数インライン展開を無効化
    #[arg(long = "obf-no-func-inline")]
    obf_no_func_inline: bool,

    /// 関数アウトライン化を無効化
    #[arg(long = "obf-no-func-outline")]
    obf_no_func_outline: bool,

    /// VM仮想化を無効化
    #[arg(long = "obf-no-vm-virtualize")]
    obf_no_vm_virtualize: bool,

    /// ライブラリ関数難読化を無効化
    #[arg(long = "obf-no-lib-obfuscate")]
    obf_no_lib_obfuscate: bool,

    /// OPSEC 衛生化(シンボルリネーム)を無効化
    #[arg(long = "obf-no-opsec")]
    obf_no_opsec: bool,

    /// OPSEC 文字列リーク警告を無効化
    #[arg(long = "obf-no-opsec-warn")]
    obf_no_opsec_warn: bool,

    /// シンボル strip を無効化
    #[arg(long = "obf-no-strip")]
    obf_no_strip: bool,

    /// OPSEC ポリシー(warn=警告のみ, deny=コンパイル失敗)
    #[arg(long = "opsec-policy", value_enum, default_value = "warn")]
    opsec_policy: OpsecPolicy,

    /// リンク後バイナリの OPSEC 監査を有効化
    #[arg(long = "opsec-audit")]
    opsec_audit: bool,

    /// 算術置換頻度(N回に1回適用、1以上)
    #[arg(long = "obf-arith-freq", value_parser = clap::value_parser!(u64).range(1..))]
    obf_arith_freq: Option<u64>,

    /// レジスタシャッフル頻度(N命令ごとに挿入、1以上)
    #[arg(long = "obf-reg-shuffle-freq", value_parser = clap::value_parser!(u64).range(1..))]
    obf_reg_shuffle_freq: Option<u64>,

    /// 偽スタックスロット数
    #[arg(long = "obf-stack-padding")]
    obf_stack_padding: Option<usize>,

    /// 偽スタック操作の挿入頻度(N命令ごと、1以上)
    #[arg(long = "obf-stack-fake-freq", value_parser = clap::value_parser!(u64).range(1..))]
    obf_stack_fake_freq: Option<u64>,

    /// 命令置換頻度(N命令ごと、1以上)
    #[arg(long = "obf-instr-subst-freq", value_parser = clap::value_parser!(u64).range(1..))]
    obf_instr_subst_freq: Option<u64>,

    /// インライン展開頻度(N回の適格呼び出しごとにインライン化、1以上)
    #[arg(long = "obf-inline-freq", value_parser = clap::value_parser!(u64).range(1..))]
    obf_inline_freq: Option<u64>,

    /// アウトライン最小ブロックサイズ(1以上)
    #[arg(long = "obf-outline-min-block", value_parser = clap::value_parser!(u64).range(1..))]
    obf_outline_min_block: Option<u64>,

    /// Preprocessor defines (-D NAME=VALUE)
    #[arg(short = 'D', value_name = "MACRO")]
    defines: Vec<String>,

    /// Preprocessor undefines (-U NAME)
    #[arg(short = 'U', value_name = "MACRO")]
    undefs: Vec<String>,

    /// Compile only (produce .o files, do not link)
    #[arg(short = 'c')]
    compile_only: bool,

    /// Output file name
    #[arg(short = 'o', value_name = "FILE")]
    output: Option<PathBuf>,

    /// Input source files (.c) and object files (.o)
    #[arg(required = true)]
    sources: Vec<PathBuf>,
}

fn main() {
    let cli = Cli::parse();

    // フラグに応じて停止ステージを決定(フラグなしならフルコンパイル)
    let stage = if cli.lex {
        Stage::Lex
    } else if cli.parse {
        Stage::Parse
    } else if cli.validate {
        Stage::Validate
    } else if cli.tacky {
        Stage::Tacky
    } else if cli.codegen {
        Stage::Codegen
    } else if cli.emit_asm {
        Stage::EmitAsm
    } else {
        Stage::Full
    };

    // 難読化設定の構築
    let obf_config = if cli.obfuscate {
        let mut config = ObfuscationConfig::from_level(cli.obf_level);

        // 個別パス無効化
        if cli.obf_no_cff {
            config.cff = false;
        }
        if cli.obf_no_strings {
            config.string_encryption = false;
        }
        if cli.obf_no_anti_disasm {
            config.anti_disassembly = false;
        }
        if cli.obf_no_indirect_calls {
            config.indirect_calls = false;
        }
        if cli.obf_no_arith_subst {
            config.arith_subst = false;
        }
        if cli.obf_no_reg_shuffle {
            config.reg_shuffle = false;
        }
        if cli.obf_no_stack_frame {
            config.stack_frame_obf = false;
        }
        if cli.obf_no_instr_subst {
            config.instr_subst = false;
        }
        if cli.obf_no_func_inline {
            config.func_inline = false;
        }
        if cli.obf_no_func_outline {
            config.func_outline = false;
        }
        if cli.obf_no_vm_virtualize {
            config.vm_virtualize = false;
        }
        if cli.obf_no_lib_obfuscate {
            config.lib_obfuscate = false;
        }
        // OPSEC ポリシー・監査の配線(--obf-no-opsec より先に適用)
        config.opsec_policy = cli.opsec_policy;
        config.opsec_audit = cli.opsec_audit;
        // --obf-no-opsec は全 OPSEC 機能を無効化(上記の配線を上書き)
        if cli.obf_no_opsec {
            config.opsec = false;
            config.opsec_warn = false;
            config.opsec_strip = false;
            config.opsec_audit = false;
            config.opsec_policy = OpsecPolicy::Warn;
        }
        if cli.obf_no_opsec_warn {
            config.opsec_warn = false;
        }
        if cli.obf_no_strip {
            config.opsec_strip = false;
        }

        // 頻度オーバーライド(clap の value_parser で 1以上に制約済み)
        if let Some(freq) = cli.obf_junk_freq {
            config.junk_freq = freq as usize;
        }
        if let Some(freq) = cli.obf_pred_freq {
            config.pred_freq = freq as usize;
        }
        if let Some(freq) = cli.obf_arith_freq {
            config.arith_freq = freq as usize;
        }
        if let Some(freq) = cli.obf_reg_shuffle_freq {
            config.reg_shuffle_freq = freq as usize;
        }
        if let Some(n) = cli.obf_stack_padding {
            config.stack_frame_padding = n;
        }
        if let Some(freq) = cli.obf_stack_fake_freq {
            config.stack_frame_fake_freq = freq as usize;
        }
        if let Some(freq) = cli.obf_instr_subst_freq {
            config.instr_subst_freq = freq as usize;
        }
        if let Some(freq) = cli.obf_inline_freq {
            config.func_inline_freq = freq as usize;
        }
        if let Some(n) = cli.obf_outline_min_block {
            config.func_outline_min_block = n as usize;
        }

        Some(config)
    } else {
        None
    };

    if let Err(e) = driver::run_multi(
        &cli.sources,
        stage,
        obf_config,
        driver::PreprocessMode::External,
        &cli.defines,
        &cli.undefs,
        cli.compile_only,
        cli.output.as_deref(),
    ) {
        eprintln!("ferrugocc: {e}");
        process::exit(1);
    }
}