UNPKG

asarmor

Version:

Protect asar archive files from extraction

github.com/sleeyax/asarmor

sleeyax/asarmor

70 lines (58 loc) 1.92 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
import crypto from 'crypto'; import { join, extname } from 'path'; import { createPackageWithOptions, extractAll } from '@electron/asar'; import { fromHex } from './helpers'; import { readFile } from 'fs/promises'; import { pathExists, remove } from 'fs-extra'; export type EncryptionOptions = { /** * File path to an input asar. * * @example `app.asar`. */ src: string; /** * File path to the output asar. * * @example `encrypted.asar`. */ dst: string; }; /** * Encrypts and packages all files into an asar archive. */ export async function encrypt({ src, dst }: EncryptionOptions) { const keyFile = join(__dirname, 'key.txt'); if (!(await pathExists(keyFile))) { throw new Error(`Key file '${keyFile}' not found.`); } const key = Buffer.from(fromHex(await readFile(keyFile))); const extractedPath = `${src}.extracted`; extractAll(src, extractedPath); await createPackageWithOptions(extractedPath, dst, { unpack: '*.node', // C++ modules should not be packed transform(filename) { if (extname(filename) == '.js') { // generate random 16-byte initialization vector (IV) const iv = crypto.randomBytes(16); // whether we have already prefixed the first chunk of content with the IV let hasPrefix = false; const cipher = crypto.createCipheriv('aes-256-cbc', key, iv); cipher.setAutoPadding(true); cipher.setEncoding('base64'); // monkey patch push method to put the IV in front of the encrypted data const _p = cipher.push; cipher.push = function (chunk, enc) { if (!hasPrefix && chunk != null) { hasPrefix = true; return _p.call(this, Buffer.concat([iv, chunk]), enc); } else { return _p.call(this, chunk, enc); } }; return cipher; } }, }); await remove(extractedPath); }