Changing Python Opcodes

S

Sreejith K

Hi,

I know this is not the best way to do it. But I have to do it at least
to make it *hard* to decompile the python bytecode.

I want to distribute a software written in Python without the source.
So I compiled Python from source changing some opcode values (Taking
care of HAVE_ARGUMENT value) and distributed with the .pyc files. It
did compile but when I'm installing additional python modules using
easy_install, the import fails with a segmentation fault. It worked in
a 32 bit Centos 5.2 but not on 64bit Centos 5.2. I am using python
2.5.4 source.

I changed only the Include/opcode.py source with my jumbled opcode
values. Was I correct here ? I would like to know what all changes to
be made as to successfully compile a custom python with different
opcode values ?
 
D

Diez B. Roggisch

Sreejith said:
Hi,

I know this is not the best way to do it. But I have to do it at least
to make it *hard* to decompile the python bytecode.

I want to distribute a software written in Python without the source.
So I compiled Python from source changing some opcode values (Taking
care of HAVE_ARGUMENT value) and distributed with the .pyc files. It
did compile but when I'm installing additional python modules using
easy_install, the import fails with a segmentation fault. It worked in
a 32 bit Centos 5.2 but not on 64bit Centos 5.2. I am using python
2.5.4 source.

I changed only the Include/opcode.py source with my jumbled opcode
values. Was I correct here ? I would like to know what all changes to
be made as to successfully compile a custom python with different
opcode values ?
Click to expand...

As you are the one who modified your Python, you are the one responsible
for debugging that - noone else can.

Did you try installing the egg *without* pyc-files in there? Because
naturally those shouldn't work. They shouldn't crash the interpreter
either, but then again - you *did* modify it.

Diez
 
S

Sreejith K

Did you try installing the egg *without* pyc-files in there? Because
naturally those shouldn't work. They shouldn't crash the interpreter
either, but then again - you *did* modify it.
Click to expand...

Hi Diez, thanks for the immediate reply :)

I installed the setuptools using ez_setup.py script. Then I used the
easy_install to install additional modules. When importing the
installed modules segfault occurs. The module I installed was
TurboGears.

Then I thought that it happened maybe because the easy_install script
is downloading eggs for original python (I'm not sure if it is what
easy_install is doing). So I also tried to install the module by
downloading all the dependencies (tar.gz files) and building it. Even
then segfault occured. Is there any problem in changing only the
opcodes.py file ? I did something horribly wrong here. Hope someone
will help...
 
D

Diez B. Roggisch

Sreejith said:
Hi Diez, thanks for the immediate reply :)

I installed the setuptools using ez_setup.py script. Then I used the
easy_install to install additional modules. When importing the
installed modules segfault occurs. The module I installed was
TurboGears.

Then I thought that it happened maybe because the easy_install script
is downloading eggs for original python (I'm not sure if it is what
easy_install is doing).
Click to expand...

Yep, that's actually it's main purpose.
So I also tried to install the module by
downloading all the dependencies (tar.gz files) and building it. Even
then segfault occured. Is there any problem in changing only the
opcodes.py file ? I did something horribly wrong here. Hope someone
will help...
Click to expand...

I don't know. You modified this yourself. If I were in your situation, what
I would have done is to

- modify the version-information stored in my PYC-files so that I'm sure I
don't accidentally load any "normal" PYC-files. Python does check that
through some magic number, make sure you use your own.

- fire up the debugger and see where the segfault actually happens. Nobody
can be helping you there, because it's *your* code, not Python anymore. And
giving others access to it defies somewhat the purpose of the whole
exercise....

Diez
 
P

Peter Otten

Diez said:
Sreejith K wrote:
Click to expand...
Nobody
can be helping you there, because it's *your* code, not Python anymore.
And giving others access to it defies somewhat the purpose of the whole
exercise....
Click to expand...

....and everyone with the expertise to decompile your application and do
something useful with the result will also be able to find this thread.
Basically you're trying the security through obscurity stunt without the
obscurity...

Peter
 
G

greg

Sreejith said:
I know this is not the best way to do it. But I have to do it at least
to make it *hard* to decompile the python bytecode.
So I compiled Python from source changing some opcode values
Click to expand...

It probably wouldn't be all that hard for someone to
figure this out. A possible avenue of attack would be
to use your python to compile a known piece of code
that exercises all the opcodes, and compare the result
with that from a standard python.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

New to python 4
Trying to access hdml from an open browser using Python. 1
Installing Python on CentOS 6 - a big pain 15
PHP RSS Feed Aggregator changing to todays date everytime feed is aggregated 1
Changing the terminal title bar with Python 3
Python RPM distribution with altinstall on Centos 5 0
noob can't install python modules/scripts 6
Python on HP-UX 0

Members online

No members online now.
Total: 22 (members: 0, guests: 22)
Robots: 299

Forum statistics

Threads
473,755
Messages
2,569,536
Members
45,007
Latest member
obedient dusk

Latest Threads

Top