Accueil Explorer Aide
Connexion
Godot
/
godot-docs
miroir de https://github.com/godotengine/godot-docs.git
2
0
Fork 0
Fichiers Tickets 0 Wiki
Aborescence: ce718f3cdb
Branches Tags
godot-docs
/
development
/
compiling
/
compiling_with_script_encryption_key.rst

compiling_with_script_encryption_key.rst 2.3 KB
Historique Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677 
  1. .. _doc_compiling_with_script_encryption_key:
    2. 

  2. 

  3. Compiling with PCK encryption key
    4. 

  4. =================================
    5. 

  5. 

  6. .. highlight:: shell
    7. 

  7. 

  8. The export dialog gives you the option to encrypt your PCK file with an 256bit
    9. 

  9. AES key, when releasing your game. This will make sure your scenes, scripts
    10. 

  10. and other resources are not stored in plain text and can not easily be ripped
    11. 

  11. by some script kiddie.
    12. 

  12. Of course the key needs to be stored in the binary, but if it's compiled,
    13. 

  13. optimized and without symbols, it would take some effort to find it.
    14. 

  14. 

  15. For this to work, you need to build the export templates from source,
    16. 

  16. with that same key.
    17. 

  17. 

  18. Step by step
    19. 

  19. ------------
    20. 

  20. 

  21. 1. Generate a 256bit AES key in HEX. You can use the aes-256-cbc variant from
    22. 

  22.    `this service <https://asecuritysite.com/encryption/keygen>`_.
    23. 

  23. 

  24.    Alternatively, you can generate it yourself by using OpenSSL:
    25. 

  25. 

  26.    ::
    27. 

  27. 

  28.        openssl rand -hex 32 > godot.gdkey
    29. 

  29. 

  30.    The output in ``godot.gdkey`` should be similar to:
    31. 

  31. 

  32.    ::
    33. 

  33. 

  34.        aeb1bc56aaf580cc31784e9c41551e9ed976ecba10d315db591e749f3f64890f
    35. 

  35. 

  36.    You can generate the key without redirecting the output to a file, but
    37. 

  37.    that way you can minimize the risk of exposing the key.
    38. 

  38. 

  39. 2. Set this key as environment variable in the console that you will use to
    40. 

  40.    compile Godot, like this:
    41. 

  41. 

  42.    .. tabs::
    43. 

  43.     .. code-tab:: bash Linux/macOS
    44. 

  44. 

  45.        export SCRIPT_AES256_ENCRYPTION_KEY="your_generated_key"
    46. 

  46. 

  47.     .. code-tab:: bat Windows (cmd)
    48. 

  48. 

  49.        set SCRIPT_AES256_ENCRYPTION_KEY=your_generated_key
    50. 

  50. 

  51.     .. code-tab:: bat Windows (PowerShell)
    52. 

  52. 

  53.        $env:SCRIPT_AES256_ENCRYPTION_KEY="your_generated_key"
    54. 

  54. 

  55. 3. Compile Godot export templates and set them as custom export templates
    56. 

  56.    in the export preset options.
    57. 

  57. 

  58. 4. Set the encryption key in the ``Encryption`` tab of the export preset:
    59. 

  59. 

  60.    .. image:: img/encryption_key.png
    61. 

  61. 

  62. 5. Add filters for the files/folders to encrypt. By default, include filters
    63. 

  63.    are empty and nothing will be encrypted.
    64. 

  64. 

  65. 6. Export the project. The game should run with the files encrypted now.
    66. 

  66. 

  67. Possible Errors
    68. 

  68. ---------------
    69. 

  69. 

  70. If you get an error like below, it means the key wasn't properly included in
    71. 

  71. your Godot build. Godot is encrypting PCK file during export, but can't read
    72. 

  72. it at runtime.
    73. 

  73. 

  74. ::
    75. 

  75. 

  76.    ERROR: open_and_parse: Condition "String::md5(md5.digest) != String::md5(md5d)" is true. Returning: ERR_FILE_CORRUPT
    77. 

  77.       At: core/io/file_access_encrypted.cpp:103
    78.