-
Notifications
You must be signed in to change notification settings - Fork 306
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Jar instructions break after running no transformers #998
Comments
I think the issue lies in a class that makes api calls which could be failing. In that case the Object passed is indeed null. Eitherway the question remains: how does that break if I don't run any transformers. |
I would say that the issue must be at another place. Try to look where the function is called or alter the exception handler to print the stack trace before returning null. |
I haven't had a chance to look at this too much (especially with current obfuscation techniques), but have you checked if the program relies on certain parts of zip files and/or the constant pool of a classfile? The process of |
Funny you should say that. I already had this suspicion that the problem was with serialization. What happens in the program is that the api class is serialized and de-serialized in another process. This is what the second function I sent does. It serializes the api instance. But now the question is, why does it matter that the constant pool is not original if this jar does both the serialization and de-serialization? They should both get to the same metadata right? |
@Nubebuster The idea was that the code, somewhere else maybe, is checking integrity somewhere as a protective measure. Reordered class pool entries change the file, bytecode can self-inspect via vsarious measures. He did not say, that serialization inside the target application is the problem. He was talking about the class file. It is hard to speculate what is going wrong without the jar file in question tho |
I have an obfuscated jar. I've been able to successfully deobfuscate a lot of it but I am running into an issue. When I run the deobfuscator without any transformers the jar still stops working. I've inspected the bytecode and I don't see any meaningful changes.
The only change I've observed for a troublesome class is that some instructions are moved.
It not behave as expected anymore but it only has changes where the localvariabletable and linenumbertable are swapped. This shouldn't be an issue - ChatGPT.
I've also tried the LocalVariableRemover and LineNumberRemover but that doesn't affect the outcome of the jar working.
Is changed to
This means something changes that is not visible in the bytecode, or so I assume. I've tried patchAsm and that doesn't affect the outcome either.
I understand that with parsing into instructions and then back into bytecode there can be some things lost in translation. What could those things be?
The issue in practice is that this function throws an exception and then returns null. This may be because the object passed in in the first place is null, I am not sure.
Any help or information would be greatly appreciated!
The text was updated successfully, but these errors were encountered: