android代码混淆详解

1、前言

在对apk进行打包时,如果不对apk进行混淆和加固,生成的apk可以轻松的进行反编译,所以对apk代码进行混淆还是很有必要的。

2、实现

开启混淆

  • 通常我们需要找到项目路径下app目录下的build.gradle文件

  • 找到minifyEnabled这个配置,然后设置为true即可.

 release{
            minifyEnabled true//是否启动混淆 ture:打开   false:关闭
            shrinkResources true //打开资源压缩。
            proguardFiles getDefaultProguardFile('proguard-android.txt'), 'proguard-rules.pro'
        }

proguard-rules.pro文件的作用

  • 只要在工程应用目录的gradle文件中设置minifyEnabled:true即可。然后我们就可以到proguard-rules.pro文件中加入我们的混淆规则了

proguard是什么

  • Proguard是一个集文件压缩,优化,混淆和校验等功能的工具
  • 它检测并删除无用的类,变量,方法和属性
  • 它优化字节码并删除无用的指令.
  • 它通过将类名,变量名和方法名重命名为无意义的名称实现混淆效果.
  • 最后它还校验处理后的代码

3、混淆的常见配置

  • Proguard关键字
Proguard关键字 描述
dontwarn dontwarn是一个和keep可以说是形影不离,尤其是处理引入的library时.
keep 保留类和类中的成员,防止被混淆或移除
keepnames 保留类和类中的成员,防止被混淆,成员没有被引用会被移除
keepclassmembers 只保留类中的成员,防止被混淆或移除
keepclassmembernames 只保留类中的成员,防止被混淆,成员没有引用会被移除
keepclasseswithmembers 保留类和类中的成员,防止被混淆或移除,保留指明的成员
keepclasseswithmembernames 保留类和类中的成员,防止被混淆,保留指明的成员,成员没有引用会被移除

 在打包时如果出现报错信息,记得一定要翻上面的warning提示,例如如下则缺少

-dontwarn butterknife.**
-keep class butterknife.** {*;}
Warning: butterknife.internal.ButterKnifeProcessor: can't find superclass or interface javax.annotation.processing.AbstractProcessor
Warning: butterknife.internal.ButterKnifeProcessor: can't find referenced class javax.annotation.processing.AbstractProcessor
Warning: butterknife.internal.ButterKnifeProcessor: can't find referenced class javax.annotation.processing.AbstractProcessor
Warning: butterknife.internal.ButterKnifeProcessor: can't find referenced class javax.annotation.processing.ProcessingEnvironment
Warning: butterknife.internal.ButterKnifeProcessor: can't find referenced class javax.annotation.processing.ProcessingEnvironment
Warning: butterknife.internal.ButterKnifeProcessor: can't find referenced class javax.annotation.processing.ProcessingEnvironment
Warning: butterknife.internal.ButterKnifeProcessor: can't find referenced class javax.lang.model.element.TypeElement
Warning: butterknife.internal.ButterKnifeProcessor: can't find referenced class javax.lang.model.element.Element
Warning: butterknife.internal.ButterKnifeProcessor: can't find referenced class javax.annotation.processing.Filer
Warning: butterknife.internal.ButterKnifeProcessor: can't find referenced class javax.tools.JavaFileObject
Warning: butterknife.internal.ButterKnifeProcessor: can't find referenced class javax.annotation.processing.RoundEnvironment
Warning: butterknife.internal.ButterKnifeProcessor: can't find referenced class javax.lang.model.element.Element

4、最终实例文件

#default

#指定压缩级别
-optimizationpasses 5
-dontusemixedcaseclassnames
#不跳过非公共的库的类成员
-dontskipnonpubliclibraryclassmembers


#混淆时采用的算法
-optimizations !code/simplification/arithmetic,!field/*,!class/merging/*


#把混淆类中的方法名也混淆了
-useuniqueclassmembernames


#优化时允许访问并修改有修饰符的类和类的成员
-allowaccessmodification


#将文件来源重命名为“SourceFile”字符串
-renamesourcefileattribute SourceFile
#保留行号
-keepattributes SourceFile,LineNumberTable


# 是否混淆第三方jar
-dontwarn com.amap.api.**
-dontwarn org.apache.http.**
-dontskipnonpubliclibraryclasses
-dontskipnonpubliclibraryclassmembers
-dontpreverify
-keepattributes SourceFile,LineNumberTable
-verbose
-optimizations !code/simplification/arithmetic,!field/*,!class/merging/*


#不被混淆的
-keep public class * extends android.app.Fragment
-keep public class * extends android.app.Activity
-keep public class * extends android.app.Application
-keep public class * extends android.app.Service
-keep public class * extends android.content.BroadcastReceiver
-keep public class * extends android.preference.Preference
-keep public class * extends android.content.ContentProvider
-keep public class * extends android.support.v4.**
-keep public class * extends android.support.annotation.**
-keep public class * extends android.support.v7.**


#数据模型不混淆
# 保留Serializable序列化的类不被混淆
-keepclassmembers class * implements java.io.Serializable {
    static final long serialVersionUID;
    private static final java.io.ObjectStreamField[] serialPersistentFields;
    !static !transient ;
    !private ;
    !private ;
    private void writeObject(java.io.ObjectOutputStream);
    private void readObject(java.io.ObjectInputStream);
    java.lang.Object writeReplace();
    java.lang.Object readResolve();
}
# 保留Parcelable序列化类不被混淆
-keep class * implements android.os.Parcelable {
    public static final android.os.Parcelable$Creator *;
}


#Fragment不需要在AndroidManifest.xml中注册,需要额外保护下
-keep public class * extends android.support.v4.app.Fragment
-keep public class * extends android.app.Fragment


# 保持 native 方法不被混淆
-keepclassmembers class * {
    native ;
}
-keepclasseswithmembernames class * {
    native ;
}
#注解不能混淆
-keepattributes *Annotation*
-keep class * extends java.lang.annotation.Annotation {*;}


# 泛型与反射
-keepattributes Signature
-keepattributes EnclosingMethod






-dontwarn okio.**
-dontwarn rx.**
-dontwarn android.support.v4.**
-dontwarn com.tencent.**
#-dontwarn com.tencent.bugly.**

-keep class org.xmlpull.v1.** { *;}
-dontwarn org.xmlpull.v1.**
#-libraryjars libs/ksoap2-android-assembly-3.6.2-jar-with-dependencies.jar
-dontwarn org.kobjects.**
-keep class org.kobjects.** { *;}
-dontwarn org.ksoap2.**
-keep class org.ksoap2.** { *;}
-dontwarn org.kxml2.**
-keep class org.kxml2.** { *;}


#lambda
-dontwarn java.lang.invoke.*
-dontwarn **$$Lambda$*






# 不混淆内部类
-keepattributes InnerClasses


-keep public class **.R$*{
   public static final int *;
}
-dontwarn rx.**
-keep class rx.**{*;}
-keepattributes Exceptions




###########友盟PUSH##############
-dontwarn com.taobao.**
-dontwarn anet.channel.**
-dontwarn anetwork.channel.**
-dontwarn org.android.**
-dontwarn org.apache.thrift.**
-dontwarn com.xiaomi.**
-dontwarn com.huawei.**


-keepattributes *Annotation*


-keep class org.android.** {*;}
-keep class anet.channel.** {*;}
-keep class com.umeng.** {*;}
-keep class com.xiaomi.** {*;}
-keep class com.huawei.** {*;}
-keep class org.apache.thrift.** {*;}


-keep class com.alibaba.sdk.android.**{*;}
-keep class com.ut.**{*;}
-keep class com.ta.**{*;}


-keep public class **.R$*{
   public static final int *;
}


#(可选)避免Log打印输出
-assumenosideeffects class android.util.Log {
   public static *** v(...);
   public static *** d(...);
   public static *** i(...);
   public static *** w(...);
 }
###########友盟统计##############
 -keepclassmembers class * {
    public  (org.json.JSONObject);
 }
 -keepclassmembers enum * {
     public static **[] values();
     public static ** valueOf(java.lang.String);
 }


 -dontwarn com.ut.mini.**
 -dontwarn okio.**
 -dontwarn com.xiaomi.**
 -dontwarn com.squareup.wire.**
 -dontwarn android.support.v4.**


 -keepattributes *Annotation*


 -keep class android.support.v4.** { *; }
 -keep interface android.support.v4.app.** { *; }


 -keep class okio.** {*;}
 -keep class com.squareup.wire.** {*;}


 -keep class com.umeng.message.protobuffer.* {
          public ;
          public ;
 }


 -keep class com.umeng.message.* {
          public ;
          public ;
 }


 -keep class org.android.agoo.impl.* {
          public ;
          public ;
 }


 -keep class org.android.agoo.service.* {*;}


 -keep class org.android.spdy.**{*;}


 -keep public class com.hrmp.R$*{
     public static final int *;
 }


###########xstream##############


 -dontwarn com.thoughtworks.xstream.**
 -keep class com.thoughtworks.xstream.** {*;}
 -keep class com.thoughtworks.xstream.mappger.**{*;}
 -keep class com.thoughtworks.xstream.annotations.**{*;}
 -keep class com.thoughtworks.xstream.converters.**{*;}
 -keep class com.thoughtworks.xstream.core.**{*;}
 -keep class com.thoughtworks.xstream.io.**{*;}
 -keep class com.thoughtworks.xstream.persistence.**{*;}
 -keep class com.thoughtworks.xstream.security.**{*;}
 -keep class com.thoughtworks.xstream.MarshallingStrategy
 -keep class com.thoughtworks.xstream.InitializationException
 -keep class com.thoughtworks.xstream.XStream
 -keep class com.thoughtworks.xstream.XStreamer
 -keep class com.thoughtworks.xstream.XStreamException




# OkHttp3
-dontwarn com.squareup.okhttp3.**
-keep class com.squareup.okhttp3.** { *;}


# Okio
-dontwarn com.squareup.**
-dontwarn okio.**
-keep public class org.codehaus.* { *; }
-keep public class java.nio.* { *; }


# RxJava RxAndroid
-dontwarn sun.misc.**
-keepclassmembers class rx.internal.util.unsafe.*ArrayQueue*Field* {
    long producerIndex;
    long consumerIndex;
}
-keepclassmembers class rx.internal.util.unsafe.BaseLinkedQueueProducerNodeRef {
    rx.internal.util.atomic.LinkedQueueNode producerNode;
}
-keepclassmembers class rx.internal.util.unsafe.BaseLinkedQueueConsumerNodeRef {
    rx.internal.util.atomic.LinkedQueueNode consumerNode;
}

-dontwarn cn.org.**
-dontwarn com.fasterxml.**
-dontwarn retrofit2.**
-dontwarn com.alibaba.fastjson.**
-dontwarn butterknife.**



-keep class com.android.** {*;}
-keep class com.fasterxml.** {*;}
-keep class retrofit2.** {*;}
-keep class butterknife.** {*;}

 

你可能感兴趣的:(Android)