You may already know, but in Android development we need to hide important details of our apps from basic apk decompilation. Here is a demonstration of how easy apk decompilation truly is, using the online decompiler javadecompilers.
This library allows you to secure your apps with less effort and is fully customizable. With this version of the JNI Helpers library you can prepare your strings before runtime and decrypt them as you need them, and connect to any secure server with its designated ssl certificate (in C++). It protects your app's resources like inline (Java file) strings, resource (res) strings and network requests beyond basic code shrinking from proguard obfuscation.
- If you are just creating your project, you can simply check the "Add C++ Support" box upon project creation
- If your project already exists, you can right click your app module and select "Link C++ project with gradle"
- Finally, see our FAQ for how to set up your C++ project and view example CMakeLists.txt file
Gradle 3.0.1+
dependencies {
...
implmentation 'us.the.mac:AndroidJniHelpers:1.1.7'
}Older Gradle Versions
dependencies {
...
compile 'us.the.mac:AndroidJniHelpers:1.1.7'
}Build the project with new dependecy included
ext {
androidJniVersion = '1.1.7'
androidJniPackage = 'us.the.mac'
androidJniName = 'AndroidJniHelpers'
// Module where you want to copy aar file shared objects to
copyToModule= 'app' // could be demo, library, etc.
userHomePath = System.getProperty('user.home')
// Hash of folder that contains AndroidJniHelpers aar library
folderHash = '1b0fb1e1b317fd164309f2d057937bdcd3511e6b'
androidJniCachePath = "${userHomePath}/.gradle/caches/modules-2/files-2.1/${androidJniPackage}"
aarPath = "${androidJniCachePath}/${androidJniName}/${androidJniVersion}/${folderHash}
aarFile = "${aarPath}/${androidJniName}-${androidJniVersion}.aar"
libraryObjectsPath = "${project.rootDir}/${project.copyToModule}/src/main"
}
Using the above properties, an alternate reference to the AndroidJniHelpers library could look like this:
dependencies {
...
implementation "${project.androidJniPackage}:${project.androidJniName}:${project.androidJniVersion}"
}task extractSOFiles(type: Copy) {
from zipTree(aarPath)
into libraryObjectsPath
include "jni/**/libjni-helper-lib.so"
}
Next run the extractSOFiles, and this will temporarily store SO files for compilation
./gradlew extractSOFiles
add_library( imported-lib
SHARED
IMPORTED )
set_target_properties( # Specifies the target library.
imported-lib
# Specifies the parameter you want to define.
PROPERTIES IMPORTED_LOCATION
# Provides the path to the library you want to import.
${CMAKE_CURRENT_SOURCE_DIR}/src/main/jni/${ANDROID_ABI}/libjni-helper-lib.so )
include_directories( ${CMAKE_CURRENT_SOURCE_DIR}/src/main/jni/include/ )
# ...
target_link_libraries( # Specifies the target library.
# ...
# Links the target library to the jni helper library
imported-lib
# ...
# Links the target library to the log library included in the NDK.
${log-lib} )
Finally, build the project with new native dependecies included
To get started, you would add string resource encryption (to your strings.xml)
<resources>
<string name="app_name">Android Jni Helpers</string>
<string name="action_settings">Settings</string>
<string name="encryptedString">HiYJ+OroGm0hwPv5hz9V0g==</string>
...
</resources>Next, you must declare the JNI method (in Java) then implement it (in C/C++)
package us.the.mac.example.app;
...
public class ExampleActivity extends Activity {
...
public native String decryptString(int resource);
}Next, to allow the decryptString Java method to work the C++ implmentation should look like the following:
extern "C"
jstring
Java_us_the_mac_example_app_ExampleActivity_decryptString(JNIEnv* env, jobject java_this, jint resourceId) {
// REQUEST STRING RESOURCE FROM strings.xml
jstring stringResource = getStringNative(env, java_this, resourceId);
// THIS IS YOUR CUSTOM ENCRYPTED STRING CLASS
YourEncryptedString es = YourEncryptedString(env);
es.encryptedString = env->GetStringUTFChars(stringResource, JNI_FALSE);
// USE AN ALGORITHM OF YOUR CHOICE TO DECRYPT HERE
return es.decryptNative(env, YourEncryptedString::RESOURCE_STRINGS_ALGORITHM);
}Finally, request the decrypted string in the example Activity:
@Override
public void onCreate(Bundle bundle) {
super.onCreate(bundle);
setContentView(R.layout.string_resource_main);
TextView textView = (TextView) findViewById(R.id.textView);
textView.setText(decryptString(R.string.encryptedString));
}Similar files to the examples above can be found in the demo project's Activity and C++ code
Create a custom Network Java subclass
public class MainRequests extends Network {
private static final int BASE = 0;
private static final int INCREMENT = 1;
public static final int HTTP_BIN = BASE + INCREMENT;
public static final int JSON_TEST = HTTP_BIN + INCREMENT;
private static final String API_KEY = "apiKey";
public static native MainRequests getInstance();
public MainRequests setKey(String key) {
put(API_KEY, key);
return this;
}
}Create a custom Network C++ subclass
class MainRequests : public Network {
protected:
std::string requestSession;
public:
MainRequests(JNIEnv *env);
static jobject getInstance(JNIEnv *env, jobject java_this);
static const int BASE = 0;
static const int INCREMENT = 1;
static const int HTTP_BIN = BASE + INCREMENT;
static const int JSON_TEST = HTTP_BIN + INCREMENT;
static const char * const CANONICAL_CLASS_NAME;
};Finally, using a MainRequests Java instance could look as follows:
MainRequests object = MainRequests.getInstance().setKey("1234");
object.request(MainRequests.HTTP_BIN);
JSONObject jsonObject = new JSONObject(object.resultString);Similar files to the examples above can be found in the demo project's MainRequests java file and header file.
Nothing to include
Want to contribute? Great! First, read the CONTRIBUTING page (including the small print at the end).