android代码混淆是提高app安全的一种手段,当然还有加固,这个暂且不提。要想混淆工程,首先要在gradle文件里开启混淆的设置开关
buildTypes {
release {
minifyEnabled true//混淆开关
proguardFiles getDefaultProguardFile('proguard-android.txt'), 'proguard-rules.pro'
signingConfig signingConfigs.release
}
}
然后要在app/proguard-rules.pro文件里添加混淆规则。
# If you keep the line number information, uncomment this to
# hide the original source file name.
#-renamesourcefileattribute SourceFile
#-------------------------------------------定制化区域----------------------------------------------
#---------------------------------1.实体类---------------------------------
-keep class com.aliyunplayer.test.**{*;}
-keep class com.Bean.**{*;}
-keep class com.example.cxd.aliyunplayertest.**{*;}
-keep class com.Utils.**{*;}
#-------------------------------------------------------------------------
#---------------------------------2.第三方包-------------------------------
-keep class com.alivc.player.**{*;}
-keep class com.aliyun.clientinforeport.**{*;}
-keep class com.aliyun.vodplayer.**{*;}
#Warning:com.squareup.picasso.OkHttpDownloader:can't find referenced class com.squareup.okhttp.OkHttpClient
-keepattributes SourceFile,LineNumberTable
-keep class com.parse.*{ *; }
-dontwarn com.parse.**
-dontwarn com.squareup.picasso.**
-keepclasseswithmembernames class * {native <methods>; }
-dontwarn org.codehaus.**
-dontwarn java.nio.**
-keep class org.codehaus.**{ *;}
-keep class java.nio.**{ *;}
#-------------------------------------------------------------------------
#---------------------------------3.与js互相调用的类------------------------
#-------------------------------------------------------------------------
#---------------------------------4.反射相关的类和方法-----------------------
#----------------------------------------------------------------------------
#---------------------------------------------------------------------------------------------------
#-------------------------------------------基本不用动区域--------------------------------------------
#---------------------------------基本指令区----------------------------------
-optimizationpasses 5 #代码混淆的压缩比例,值在0-7之间
-dontskipnonpubliclibraryclassmembers #指定不忽略非公共库的类
-printmapping proguardMapping.txt#生成混淆后类名的映射文件
-optimizations !code/simplification/cast,!field/*,!class/merging/* #指定混淆是采用的算法
-keepattributes *Annotation*,InnerClasses #不混淆Annotation
-keepattributes Signature #不混淆泛型
-keepattributes SourceFile,LineNumberTable #抛出异常时保留代码行号
#----------------------------------------------------------------------------
#---------------------------------默认保留区---------------------------------
-keep public class * extends android.app.Activity
-keep public class * extends android.app.Application
-keep public class * extends android.app.Service
-keep public class * extends android.content.BroadcastReceiver
-keep public class * extends android.content.ContentProvider
-keep public class * extends android.app.backup.BackupAgentHelper
-keep public class * extends android.preference.Preference
-keep public class * extends android.view.View
-keep public class com.android.vending.licensing.ILicensingService
-keep class android.support.** {*;}
-keep public class * extends android.view.View{
*** get*();
void set*(***);
public <init>(android.content.Context);
public <init>(android.content.Context, android.util.AttributeSet);
public <init>(android.content.Context, android.util.AttributeSet, int);
}
-keepclasseswithmembers class * {
public <init>(android.content.Context, android.util.AttributeSet);
public <init>(android.content.Context, android.util.AttributeSet, int);
}
-keepclassmembers class * implements java.io.Serializable {
static final long serialVersionUID;
private static final java.io.ObjectStreamField[] serialPersistentFields;
private void writeObject(java.io.ObjectOutputStream);
private void readObject(java.io.ObjectInputStream);
java.lang.Object writeReplace();
java.lang.Object readResolve();
}
-keep class **.R$* {
*;
}
-keepclassmembers class * {
void *(**On*Event);
}
#----------------------------------------------------------------------------
#---------------------------------webview------------------------------------
-keepclassmembers class fqcn.of.javascript.interface.for.Webview {
public *;
}
-keepclassmembers class * extends android.webkit.WebViewClient {
public void *(android.webkit.WebView, java.lang.String, android.graphics.Bitmap);
public boolean *(android.webkit.WebView, java.lang.String);
}
-keepclassmembers class * extends android.webkit.WebViewClient {
public void *(android.webkit.WebView, jav.lang.String);
}
#---------------------------------------------------------------------------------------------------
这里有借鉴网上的一些混淆设置和规范。我觉的这样分块看起来很清晰。
重点是混淆后打包总出错的问题。如:
Error:(148) Error: "have_account" is not translated in "zh-CN" (Chinese: China) [MissingTranslation] Error:Execution failed for task ':app:lintVitalRelease'.
这个错误是字符串适配的问题,可以选择忽略她。方式为:
android {
lintOptions {
checkReleaseBuilds false
// Or, if you prefer, you can continue to check for errors in release builds,
// but continue the build even when errors are found:
abortOnError false
}
}
还有就是找不到一些类。就像Warning:can't find referenced class问题还有缺少了某个库,可以试试使用-ignorewarnings或者-dontwarn选项!-dontwarn我试过了,加上-dontwarn com.xxx.bbbb.** 之后确实没有报错,可以打包出来了,但是运行一下试试看?如果运气好的话,程序没有执行到找不到的类那里就不会报错,如果运气不好的话执行到那里了就会抛ClassNotFoundException!这只是治标不治本的方式。
可以使用
-dontwarn com.xx.bbb.**
-keep class com.xx.bbb.** { *;}
参数来保持第三方库中的类而不乱,-dontwarn和-keep 结合使用,意思是保持com.xx.bbb.**这个包里面的所有类和所有方法而不混淆,接着还叫ProGuard不要警告找不到com.xx.bbb.**这个包里面的类的相关引用。
引用:http://blog.csdn.net/u_xtian/article/details/7495023
网友评论