Compilation
O-MVLL relies on the following dependencies:
- LLVM (version depending on the toolchain’s version)
- CPython (3.10.7)
- spdlog (1.10.0)
- Pybind11 (2.10.0)
As a first step, let’s consider that we compiled all the dependencies. O-MVLL is a C++17 out-of-tree LLVM pass so we don’t need to compile LLVM for each build.
The CMake configuration step can be invoked as follows:
$ git clone https://github.com/open-obfuscator/o-mvll.git
$ mkdir o-mvll/src/build && cd o-mvll/src/build
On Linux
$ cmake -GNinja .. \
-DCMAKE_CXX_FLAGS="-stdlib=libc++" \
-DPython3_ROOT_DIR=${PYTHON_ROOT} \
-DPython3_LIBRARY=${PYTHON_ROOT}/lib/libpython3.10.a \
-DPython3_INCLUDE_DIR=${PYTHON_ROOT}/include/python3.10 \
-Dpybind11_DIR=${PYBIND11_ROOT}/share/cmake/pybind11 \
-Dspdlog_DIR=${SPDLOG_ROOT}/lib/cmake/spdlog \
-DLLVM_DIR=${LLVM_ROOT}/lib64/cmake/llvm \
$ ninja
On OSX
# On OSX:
$ cmake -GNinja .. \
-DCMAKE_OSX_DEPLOYMENT_TARGET="13.0" \
-DPython3_ROOT_DIR=${PYTHON_ROOT} \
-DPython3_LIBRARY=${PYTHON_ROOT}/lib/libpython3.10.a \
-DPython3_INCLUDE_DIR=${PYTHON_ROOT}/include/python3.10 \
-Dpybind11_DIR=${PYBIND11_ROOT}/share/cmake/pybind11 \
-Dspdlog_DIR=${SPDLOG_ROOT}/lib/cmake/spdlog \
-DLLVM_DIR=${LLVM_ROOT}/lib/cmake/llvm \
$ ninja
As it is highlighted, on Linux O-MVLL requires to be compiled with LLVM’s libc++ and not the
default GNU stdlibc++.
The reason for this requirement is detailed in Getting Started.
Since the dependencies of O-MVLL are fixed for a given version of the NDK/Xcode, you can download the pre-compiled binaries:
NDK
openobfuscator/omvll-ndk| Version | URL |
|---|---|
r25c | https://open-obfuscator.build38.io/static/omvll-deps-ndk-r25c.tar |
Xcode
arm64 & x86-64 from an Apple M1| Version | URL |
|---|---|
14.1.0 | https://open-obfuscator.build38.io/static/omvll-deps-xcode-14_1.tar |
Compilation Time
CPython
O-MVLL is currently based on Python 3.10.7 and we can compile this dependency as follows:
Linux
curl -LO https://www.python.org/ftp/python/3.10.7/Python-3.10.7.tgz
tar xzvf Python-3.10.7.tgz && cd Python-3.10.7
export CC=clang
export CXX=clang++
export CFLAGS="-fPIC -m64"
./configure \
--disable-ipv6 \
--host=x86_64-linux-gnu \
--target=x86_64-linux-gnu \
--build=x86_64-linux-gnu \
--prefix=$(pwd)/install \
--disable-test-modules
make -j$(nproc) install
cd ./install && tar czvf Python.tar.gz *
OSX
curl -LO https://www.python.org/ftp/python/3.10.7/Python-3.10.7.tgz
tar xzvf Python-3.10.7.tgz && cd Python-3.10.7
export MACOSX_DEPLOYMENT_TARGET=11.0
./configure \
--disable-ipv6 \
--disable-test-modules \
--prefix=./install \
--enable-universalsdk \
--with-universal-archs=universal2 \
ac_default_prefix=./install
make -j8 install
cd ./install && tar czvf Python.tar.gz *
spdlog
spdlog is used in O-MVLL for logging messages. It can be compiled for Linux and OSX as follows:
Linux
curl -LO https://github.com/gabime/spdlog/archive/refs/tags/v1.10.0.tar.gz
tar xzvf v1.10.0.tar.gz
export CXXFLAGS="-stdlib=libc++ -fPIC -fno-rtti -fno-exceptions \
-fvisibility-inlines-hidden"
cmake -GNinja -S spdlog-1.10.0 -B /tmp/spdlog_build \
-DCMAKE_CXX_COMPILER=clang++-11 \
-DCMAKE_BUILD_TYPE=Release \
-DCMAKE_CXX_FLAGS="${CXXFLAGS}" \
-DSPDLOG_NO_THREAD_ID=on \
-DSPDLOG_NO_TLS=on \
-DSPDLOG_NO_EXCEPTIONS=on \
-DSPDLOG_BUILD_EXAMPLE=off
ninja -C /tmp/spdlog_build package
# The compiled package is located here:
# /tmp/spdlog_build/spdlog-X.Y.Z-Linux.tar.gz
OSX
curl -LO https://github.com/gabime/spdlog/archive/refs/tags/v1.10.0.tar.gz
tar xzvf v1.10.0.tar.gz
export CXXFLAGS="-fPIC -fno-rtti -fno-exceptions \
-fvisibility-inlines-hidden"
cmake -GNinja -S spdlog-1.10.0 -B /tmp/spdlog_build \
-DCMAKE_OSX_ARCHITECTURES="arm64;x86_64" \
-DCMAKE_OSX_DEPLOYMENT_TARGET="11.0" \
-DCMAKE_CXX_FLAGS="${CXXFLAGS}" \
-DCMAKE_BUILD_TYPE=Release \
-DSPDLOG_NO_THREAD_ID=on \
-DSPDLOG_NO_TLS=on \
-DSPDLOG_NO_EXCEPTIONS=on \
-DSPDLOG_BUILD_EXAMPLE=off
ninja -C /tmp/spdlog_build package
# The compiled package is located here:
# /tmp/spdlog_build/spdlog-1.10.0-Darwin.tar.gz
Now, let’s have a look at the compilation of LLVM.
LLVM: Android NDK
To compile O-MVLL for a given version of the Android NDK toolchain, we should build the NDK plugin with the same toolchain that is used to build the NDK itself. This prevents us from future ABI idiosyncrasies.
More specifically, the Android NDK is bootstrapped in a so-called 2-stage process. Stage-1 builds the compiler and all tools that are necessary to build the actual NDK plugin, whilst in stage-2 we use these newly-built tools to link the plugin against. As aforementioned, this guarantees ABI-compatibility with the target compiler.
Let’s consider that $ANDROID_HOME is pointing to the Android SDK root directory that contains the ndk/
sub-directory:
ls $ANDROID_HOME/ndk
├── 24.0.8215888
├── 25.0.8775105
└── 25.1.8937393
If we aim at compiling O-MVLL for version 25.1.8937393 of the NDK, we can access the commit of the
LLVM’s fork used by Google by looking at the file manifest_<number>.xml (note that the plugin needs a release that
is based on LLVM 14).
This file is located in the toolchain directory:
cat toolchains/llvm/prebuilt/linux-x86_64/manifest_9352603.xml
<!-- ... -->
<project path="toolchain/llvm-project"
name="toolchain/llvm-project"
revision="4c603efb0cca074e9238af8b4106c30add4418f6"
/>
<!-- ... -->
Based on this entry, we can fetch the LLVM fork with that specific commit via the manifest file and proceed with the 2-stage build process as follows:
mkdir android-llvm-toolchain-r25c && cd android-llvm-toolchain-r25c
repo init -u https://android.googlesource.com/platform/manifest -b llvm-toolchain
cp /path/to/manifest_9352603.xml .
repo init -m manifest_9352603.xml
repo sync -c
Once the configuration step done, we can launch the compilation and enjoy a coffee ☕ (or several):
python3 toolchain/llvm_android/build.py --skip-tests
Note that we do not need to finish the build and all the tests. We can abort it once we have
out/stage1-install and out/stage2. The following is the clang compiler we will use to build the plugin:
export NDK_STAGE1=$(pwd)/out/stage1-install
$NDK_STAGE1/bin/clang --version | head -2
Android (stage1, based on r450784d1) clang version 14.0.7 (https://android.googlesource.com/toolchain/llvm-project 4c603efb0cca074e9238af8b4106c30add4418f6)
Target: x86_64-unknown-linux-gnu
Conversely, the stage-2 install-tree is what we link the plugin against. As a side effect, it provides the tools we use for testing as well:
export NDK_STAGE2=$(pwd)/out/stage2-install
python3 $NDK_STAGE2/bin/llvm-lit --version
lit 16.0.2
Since option --create-tar of build.py script does not seem to create the package with all the tools needed, we
are going to create the tarball ourselves. After cd’ing somewhere else in the filesystem, we just need to do:
mkdir -p android-llvm-toolchain-r25c/out && cd android-llvm-toolchain-r25c/out
cp -r ${NDK_STAGE1} .
cp -r ${NDK_STAGE2} .
cd .. && tar czf out.tar.gz out && rm -rf out
cd .. && tar czf android-llvm-toolchain-r25c.tar.gz android-llvm-toolchain-r25c
LLVM: Xcode Toolchain
Similarly, we first need to identify the version of LLVM associated with a given version of the Xcode toolchain.
As a rule of thumb, we can identify the Swift version associated with the Xcode version from this website: https://xcodereleases.com/ and then, clone the associated branch from the Apple’s Github repository.
For instance, Xcode 14.0 is associated with Swift 5.7 so we can use the branch swift/release/5.7
to compile LLVM:
git clone -j8 --branch swift/release/5.7 --single-branch --depth 1 \
https://github.com/apple/llvm-project.git
echo "LLVM Apple Version: $(git --git-dir=llvm-project/.git describe --dirty)"
LLVM_TARGET="AArch64;X86"
LLVM_ROOT=<path to cloned>/llvm-project
BUILD_ROOT=/tmp/build
cmake -GNinja \
-S ${LLVM_ROOT}/llvm \
-B ${BUILD_ROOT} \
-DCMAKE_BUILD_TYPE=Release \
-DCMAKE_OSX_ARCHITECTURES="arm64;x86_64" \
-DCMAKE_OSX_DEPLOYMENT_TARGET="13.0" \
-DLLVM_TARGET_ARCH=${LLVM_TARGET} \
-DLLVM_TARGETS_TO_BUILD=${LLVM_TARGET} \
-DLLVM_ENABLE_PROJECTS="clang"
ninja -C ${BUILD_ROOT} package
-> It should produce: ${BUILD_ROOT}/LLVM-14.0.0git-Darwin.tar.gz
Docker Build
To ease the compilation of O-MVLL, we provide Docker images with the correct environment to compile O-MVLL for both Android NDK and the Xcode toolchain.
Android NDK
$ docker pull openobfuscator/omvll-ndk
$ git clone https://github.com/open-obfuscator/o-mvll
$ curl -LO https://open-obfuscator.build38.io/static/omvll-deps-ndk-r25c.tar
$ mkdir -p ./third-party
$ tar xvf omvll-deps-ndk-r25c.tar -C ./third-party
$ docker run --rm \
-v $(pwd)/o-mvll:/o-mvll \
-v $(pwd)/third-party:/third-party \
openobfuscator/omvll-ndk sh /o-mvll/scripts/docker/ndk_r25_compile.sh
Xcode
$ docker pull openobfuscator/omvll-xcode
$ git clone https://github.com/open-obfuscator/o-mvll
$ curl -LO https://open-obfuscator.build38.io/static/omvll-deps-xcode-14_1.tar
$ mkdir -p ./third-party
$ tar xvf omvll-deps-xcode-14_1.tar -C ./third-party
$ docker run --rm \
-v $(pwd)/o-mvll:/o-mvll \
-v $(pwd)/third-party:/third-party \
openobfuscator/omvll-xcode sh /o-mvll/scripts/docker/xcode_14_compile.sh