CN109033765A - The treating method and apparatus of application installation package - Google Patents
The treating method and apparatus of application installation package Download PDFInfo
- Publication number
- CN109033765A CN109033765A CN201810888908.9A CN201810888908A CN109033765A CN 109033765 A CN109033765 A CN 109033765A CN 201810888908 A CN201810888908 A CN 201810888908A CN 109033765 A CN109033765 A CN 109033765A
- Authority
- CN
- China
- Prior art keywords
- application
- installation package
- file
- application installation
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000009434 installation Methods 0.000 title claims abstract description 189
- 238000000034 method Methods 0.000 title claims abstract description 18
- 238000003672 processing method Methods 0.000 claims description 12
- 230000002452 interceptive effect Effects 0.000 claims description 11
- 230000001172 regenerating effect Effects 0.000 claims description 10
- 238000004458 analytical method Methods 0.000 claims description 9
- 229910002056 binary alloy Inorganic materials 0.000 claims description 6
- 230000006837 decompression Effects 0.000 claims description 5
- 235000013399 edible fruits Nutrition 0.000 claims 1
- 238000010586 diagram Methods 0.000 description 11
- 230000000694 effects Effects 0.000 description 8
- 230000006870 function Effects 0.000 description 2
- 230000008569 process Effects 0.000 description 2
- 230000006399 behavior Effects 0.000 description 1
- 238000006243 chemical reaction Methods 0.000 description 1
- 238000002513 implantation Methods 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 230000010365 information processing Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000002085 persistent effect Effects 0.000 description 1
- 230000000750 progressive effect Effects 0.000 description 1
- 238000011084 recovery Methods 0.000 description 1
- 239000002023 wood Substances 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/12—Protecting executable software
- G06F21/14—Protecting executable software against software analysis or reverse engineering, e.g. by obfuscation
Abstract
The embodiment of the present application provides a kind for the treatment of method and apparatus of application installation package, and wherein method includes: to unzip it processing to application installation package, to obtain multiple files that the application installation package includes;The back end for stating the attribute information of application is searched in the file data of the multiple file;Disturbance information is added at the back end found;Wherein, the disturbance information for interfere it is described using corresponding decompiling instrument to the de-edit result using corresponding application installation package, the decompiling result decompiling is set to fail, and it is described unrelated with the disturbance information to the parsing result using corresponding application installation package using corresponding operating system;The corresponding application installation package of the application is regenerated based on the back end after addition.It by the embodiment of the present application, can prevent hacker that invalid data is added in application installation package, improve the safety of application program.
Description
Technical field
This application involves software field more particularly to a kind for the treatment of method and apparatus of application installation package.
Background technique
Currently, user can download application installation package to mobile terminal local from software store, and then in mobile terminal
Middle installation application program.Application installation package higher for download, hacker may illegally parse it, crack application
The content of installation kit, and invalid data is added in application installation package, to obtain unlawful interests.For example, hack is downloaded
Higher application installation package is measured, is implanted into malice wooden horse wherein, after mobile terminal parses the application installation package, the malice wood of implantation
Horse can steal the private data of user, so that hacker obtains unlawful interests.
As it can be seen that the behavior that invalid data is added in hacker in application installation package can greatly reduce the safety of application program,
It is necessary to provide a kind of technical solutions, prevent hacker that invalid data is added in application installation package, improve the safety of application program
Property.
Summary of the invention
The purpose of the embodiment of the present application is to provide a kind for the treatment of method and apparatus of application installation package, to prevent hacker from answering
With invalid data is added in installation kit, the safety of application program is improved.
In order to solve the above technical problems, the embodiment of the present application is achieved in that
In a first aspect, the embodiment of the present application provides a kind of processing method of application installation package, comprising:
Processing is unziped it to application installation package, to obtain multiple files that the application installation package includes;
The back end for stating the attribute information of application is searched in the file data of the multiple file;
Disturbance information is added at the back end found;Wherein, the disturbance information is for interfering described answer
With corresponding decompiling instrument to the de-edit using corresponding application installation package as a result, keeping the decompiling result anti-
Compiling failure, and, it is described using corresponding operating system to the parsing result using corresponding application installation package with it is described
Disturbance information is unrelated;
The corresponding application installation package of the application is regenerated based on the back end after addition.
Second aspect, the embodiment of the present application provide a kind of processing unit of application installation package, comprising:
Decompression module is more with obtain that the application installation package includes for unziping it processing to application installation package
A file;
Searching module, for searching the number for stating the attribute information of application in the file data of the multiple file
According to node;
Adding module, for adding disturbance information at the back end found;Wherein, the disturbance information is used
In interfere it is described using corresponding decompiling instrument to the de-edit using corresponding application installation package as a result, making described anti-
Compile result be decompiling fail, and, it is described using corresponding operating system to the solution using corresponding application installation package
It is unrelated with the disturbance information to analyse result;
Generation module, for regenerating the corresponding application installation of the application based on the back end after addition
Packet.
The third aspect, the embodiment of the present application provide a kind of processing equipment of application installation package, comprising: memory, processing
Device and the computer executable instructions that can be run on the memory and on the processor are stored in, the computer can be held
The step of processing method of the application installation package as described in above-mentioned first aspect, is realized in row instruction when being executed by the processor.
Fourth aspect, the embodiment of the present application provide a kind of computer readable storage medium, the computer-readable storage
Medium realizes such as above-mentioned first for storing computer executable instructions when the computer executable instructions are executed by processor
The step of processing method of application installation package described in aspect.
By the embodiment of the present application, can be used to state in application installation package at the back end of attribute information of application
Disturbance information is added, since disturbance information is for interfering this to install to this using corresponding application using corresponding decompiling instrument
The de-edit of packet as a result, decompiling result decompiling is made to fail, and, this is using corresponding operating system to this using corresponding
The parsing result of application installation package is unrelated with disturbance information, therefore enables to application installation package decompiling to lose based on disturbance information
It loses, has no effect on the normal mounting and operation of application, so that invalid data, Jin Erti can not be added in hacker in application installation package
The safety of high application program.
Detailed description of the invention
In order to illustrate the technical solutions in the embodiments of the present application or in the prior art more clearly, to embodiment or will show below
There is attached drawing needed in technical description to be briefly described, it should be apparent that, the accompanying drawings in the following description is only this
The some embodiments recorded in application, for those of ordinary skill in the art, in the premise of not making the creative labor property
Under, it is also possible to obtain other drawings based on these drawings.
Fig. 1 is the flow diagram of the processing method for the application installation package that one embodiment of the application provides;
Fig. 2 is the flow diagram of the processing method for the application installation package that another embodiment of the application provides;
Fig. 3 is the flow diagram of the processing method for the application installation package that another embodiment of the application provides;
Fig. 4 is the module composition schematic diagram of the processing unit for the application installation package that one embodiment of the application provides;
Fig. 5 is the structural schematic diagram of the processing equipment for the application installation package that one embodiment of the application provides.
Specific embodiment
In order to make those skilled in the art better understand the technical solutions in the application, below in conjunction with the application reality
The attached drawing in example is applied, the technical scheme in the embodiment of the application is clearly and completely described, it is clear that described implementation
Example is merely a part but not all of the embodiments of the present application.Based on the embodiment in the application, this field is common
The application protection all should belong in technical staff's every other embodiment obtained without creative efforts
Range.
To prevent hacker that invalid data is added in application installation package, the safety of application program is improved, the application provides
A kind for the treatment of method and apparatus of application installation package, wherein the processing method of application installation package can by specific server or
Equipment executes, and is described in detail below with reference to embodiment.
Application installation package in the embodiment of the present application can be the application installation operated in Android (Android) system
Packet, is also possible to the application installation package operated in IOS system, can also be and operate in other operating system (such as Windows systems
System) in application installation package, be illustrated by taking Android system as an example below, but should be noted that this should not be construed as to this
Apply for the restriction of embodiment, only a kind of illustration.
Fig. 1 is the flow diagram of the processing method for the application installation package that one embodiment of the application provides, as shown in Figure 1,
The process includes:
Step S102 unzips it processing to application installation package, to obtain multiple files that application installation package includes;
Step S104 searches the data section for stating the attribute information of application in the file data of multiple file
Point;Wherein, which is the corresponding application of the application installation package;
Step S106 adds disturbance information at the back end found;Wherein, disturbance information is for interfering the application
Corresponding decompiling instrument applies the de-edit of corresponding application installation package to this as a result, losing decompiling result decompiling
It loses, and, this is unrelated with disturbance information using the parsing result of corresponding application installation package to this using corresponding operating system;
Step S108 regenerates this using corresponding application installation package based on the back end after addition.
By the embodiment of the present application, can be used to state in application installation package at the back end of attribute information of application
Disturbance information is added, since disturbance information is for interfering this to install to this using corresponding application using corresponding decompiling instrument
The de-edit of packet as a result, decompiling result decompiling is made to fail, and, this is using corresponding operating system to this using corresponding
The parsing result of application installation package is unrelated with disturbance information, therefore enables to application installation package decompiling to lose based on disturbance information
It loses, has no effect on the normal mounting and operation of application, so that invalid data, Jin Erti can not be added in hacker in application installation package
The safety of high application program.
In the embodiment of the present application, application installation package can be the Apk file generated based on Android system compiling, above-mentioned steps
In S102, processing can be unziped it to Apk file, to obtain multiple files that the Apk file includes.The embodiment of the present application
The decompiling instrument of middle meaning, can be the decompiling instrument of Android system, IOS system or Windows system.The application is implemented
Operating system in example, can be Android system, IOS system or Windows system.
In above-mentioned steps S104, the attribute information for stating the application is searched in the file data of multiple file
Back end, can be with are as follows: the specified file for stating the module information of the application is searched in multiple file, it is specified at this
The back end for stating the attribute information of the application is searched in the file data of file.
The module information of above-mentioned application needs the operating system to operation application to state when referring to be using operation, so that
The operating system provides the information of corresponding function, and the operating system for running application can be according to the module information of statement, Xiang Ying
Specified interface is provided with program, application program is by the bottom module of the specified interface call operation system to realize module information
Corresponding various functions.
For example, the interface information when module information of application includes using operation, such as interface dimensions, interface color and boundary
Face quantity etc. runs the operating system of application according to the module information, provides specified interface to application program, application program passes through
The bottom module of the specified interface call operation system is to realize above-mentioned interface dimensions, interface color and number of interfaces.
For another example, font size and font color when the module information of application includes using operation, run the operation of application
System provides specified interface according to the module information, to application program, and application program passes through the specified interface call operation system
Bottom module to realize above-mentioned font size and font color.
For application installation package, wherein comprising the specified file for stating the module information of the application, with Android
For system, which can be AndroidManifest.xml file.In the specified file, have for stating
The back end of the attribute information of application.By taking Android system as an example, which can be application node.
By taking Android system as an example, in application node, the attribute information of application includes but is not limited to
AllowBackup, allowTaskReparenting, killAfterRestore etc., wherein allowBackup expression be
No permission application program participates in backup, and value can be true or false.AllowTaskReparenting is task adjustment
Attribute, when it shows that task is sent to foreground again, whether Activity defined in the application program can be from being activated
It is transferred in task in the task of identical affinity.This attribute of kill After Restore refers in a complete system
Whether application program is terminated after system recovery operation.
Further, the specified file in application installation package is the file by compiling, in one embodiment, specifies text
Part is AXML (Android binary system extensible markup language, Android binary XML) file, file data therein be with
What the mode of binary format was shown, therefore, the attribute information for stating application is searched in the file data of specified file
Back end, specifically: by AXML document analysis be XML (extensible markup language, Extensible Markup
Language) file;The back end for stating the attribute information of application is searched in the file data of XML file.
In a specific embodiment, in Android system, application installation package is Apk file, wherein including multiple texts
Part is searched AndroidManifest.xml file in multiple file, is found after to the processing of Apk file decompression
AndroidManifest.xml file is used to state the module information of application, and file data is binary format, will
AndroidManifest.xml document analysis is XML file, then searches application in the XML file that parsing obtains
Node, the node are the back end for stating the attribute information of the application.
After finding the back end for stating the attribute information of the application, in above-mentioned steps S106, finding
Back end at add disturbance information.Since the back end is used to state the attribute information of application, in the data section
The disturbance information added at point can be used as the attribute information of the application by this using corresponding decompiling instrument and operating system
Processing.
In the present embodiment, the disturbance information of addition be can interfere with using corresponding decompiling instrument to using corresponding application
The de-edit of installation kit as a result, decompiling result decompiling is made to fail, and, it is corresponding to application using corresponding operating system
The parsing result of application installation package is unrelated with disturbance information.
In one embodiment, setting disturbance information is the letter other than the attribute information supported using corresponding operating system
Breath.For the corresponding operating system of application, the attribute information supported is fixed, for example, being provided in operating system
Attribute white list, the attribute information in white list are therefore the attribute information that it is supported can add the letter other than the white list
Breath is used as disturbance information, for example, addition " home/persist ", the information is not within the scope of above-mentioned white list, therefore the letter
Breath can be used as disturbance information addition at above-mentioned back end.
Since disturbance information does not indicate specific application attribute, belong to invalid code block, therefore apply corresponding decompiling
Tool understands the content due to that can not identify disturbance information, it will lead when carrying out decompiling to the corresponding application installation package of application
Decompiling failure is caused, to avoid hacker that risk data is added in application installation package.
To guarantee that the application installation package after addition disturbance information can operate normally, in the present embodiment, in the back end
The format for locating the disturbance information of addition meets this using corresponding attribute information call format.For example, this applies corresponding attribute
The format of information is " XXX/YYY ", then adds disturbance information according to the format at the back end, so that addition is disturbed
The format of dynamic information meets this using corresponding attribute information call format.Wherein, the corresponding attribute information format of the application
It is required that as, it is described using corresponding operating system to the call format of the attribute information of application.
In one embodiment, quickly navigates in order to avoid decompiling personnel at the disturbance information of addition, answered to crack
With installation kit, optionally, addition meet it is attribute information call format, except above-mentioned white list, there is corresponding meaning
English information as disturbance information, such as addition " home/persist ", rather than it is this obvious meaningless to add " aaa/bbb "
Information, to improve decompiling instrument or decompiling personnel crack the difficulty of application installation package.
In the embodiment of the present application, this applies corresponding operating system when parsing the application installation package, can be by the addition
Attribute information processing of the disturbance information as application, is wanted since the format of disturbance information meets using corresponding attribute information format
It asks, therefore operating system takes disturbance information the mode skipped and do not parsed to handle, therefore the addition of above-mentioned disturbance information is not
Influence normal operation of the application installation package in the corresponding operating system of application.Wherein, it can be using corresponding operating system
Android or IOS system.
It is more than preset quantity threshold value it is possible to further which the quantity of the above-mentioned disturbance information of addition is arranged, to improve anti-
Compilation tool or decompiling personnel crack the difficulty of application installation package.
After adding information, above-mentioned steps S108 is executed, is regenerated based on the back end after addition and is answered using corresponding
Use installation kit.The step specifically: in the file and above-mentioned multiple files where the back end after addition remove this document with
Outer alternative document carries out back compiling, regenerates using corresponding application installation package.
Specifically, according to foregoing teachings it is found that addition after back end where file be specified file above-mentioned,
Therefore in this step, the alternative document in the specified file and above-mentioned multiple files after addition in addition to the specified file is carried out
Compiling is returned, is regenerated using corresponding application installation package.
In one specific embodiment, specified file is AndroidManifest.xml file, is finding specified file
Afterwards, specified file is first parsed into XML file, then adds information again, therefore in this step, for the specified text after addition
Part is first converted into AXML file, is then regenerated again based on the alternative document in the AXML file and application installation package
This applies corresponding application installation package.
In the embodiment of the present application, using corresponding operating system, such as Android system or IOS system, to regenerating
Application installation package when being parsed, apply corresponding attribute information call format since the format of disturbance information meets,
Operating system skips the disturbance information of addition, parses the other information in the application installation package regenerated, so as to regenerate
Application installation package parsing result it is unrelated with disturbance information so that the application installation package regenerated can operation be
It is operated normally on system, guarantees that experience is installed and used in the application of user.
Since disturbance information is used to interfere the anti-volume using corresponding decompiling instrument to the corresponding application installation package of application
It collects as a result, making decompiling result decompiling fail, therefore the corresponding decompiling instrument of application is pacified to the application regenerated
When dress packet carries out decompiling, it will decompiling failure, to avoid hacker that risk data is added in application installation package.
As it can be seen that by the embodiment of the present application, it can be in application installation package for stating the data of the attribute information of application
Disturbance information is added at node, since disturbance information is for interfering this to be answered using corresponding using corresponding decompiling instrument this
With the de-edit of installation kit as a result, decompiling result decompiling is made to fail, and, this is using corresponding operating system to the application
The parsing result of corresponding application installation package is unrelated with disturbance information, therefore enables to application installation package anti-based on disturbance information
Compiling failure, has no effect on the normal mounting and operation of application, so that invalid data can not be added in hacker in application installation package,
And then improve the safety of application program.
In the embodiment of the present application, it is contemplated that the digital signature problem of application installation package, Fig. 2 are that another embodiment of the application mentions
The flow diagram of the processing method of the application installation package of confession, as shown in Fig. 2, the process is on the basis of Fig. 1, further includes:
Step S110, according to the file data for each file that the application installation package regenerated includes, to regenerating
Application installation package be digitally signed processing.
For example, using specified hash algorithm, according to the file for each file that the application installation package regenerated includes
Data are digitally signed processing to the application installation package regenerated.
Processing is digitally signed to the application installation package regenerated, can be avoided the application installation package that regenerates without
The problem of method is run.
To further illustrate the technical solution in the present embodiment, it is illustrated by taking Android system as an example below.
Fig. 3 is the flow diagram of the processing method for the application installation package that another embodiment of the application provides, such as Fig. 3 institute
Show, which includes:
Step S302 obtains the Apk file developed based on Android system.
Step S304 unzips it processing to the Apk file of acquisition, obtains multiple files that Apk file includes.
Step S306 searches AndroidManifest.xml file in multiple files that decompression obtains.
Specifically, AndroidManifest.xml file is used to state the module information of Android application.
The AndroidManifest.xml document analysis found is XML file by step S308.
Specifically, the AndroidManifest.xml file found is AXML file, and file data is binary system lattice
Formula.
Step S310 searches application node in the XML file that parsing obtains.
Specifically, application node is used to state the attribute information of Android application.
Step S312, at application node addition meet this using corresponding attribute information call format and
Information other than the application attribute information supported using corresponding operating system.The information is disturbance information.
Optionally, the difficulty of application installation package is cracked to improve decompiling instrument or personnel, the disturbance information of addition is tool
There are the english information of corresponding meaning, such as " home/persist ", rather than adds " aaa/bbb " this obvious meaningless letter
Breath.
AndroidManifest.xml file after addition is converted into AXML file by step S314.
Specifically, based on the binary format of AndroidManifest.xml, it is two that this file, which is converted to file data,
The file of system format.
Step S316 regenerates the application installation of the application based on the AndroidManifest.xml file after conversion
Packet.
Step S318 is digitally signed processing to the application installation package regenerated.
To the disturbance information added in this present embodiment, Android system parsing regenerate application installation package when, by
Meet corresponding attribute information call format in the format of the disturbance information, therefore the disturbance information does not influence the normal peace of application
Dress and operation.Decompiling instrument is in the application installation package that decompiling regenerates, for the disturbance information of addition, since this is disturbed
Dynamic information does not indicate specific application attribute, therefore decompiling instrument can not identify its content, it will cause decompiling to fail, from
And avoid hacker that risk data is added in application installation package.
To sum up, the embodiment of the present application has the advantages that
(1) the loophole addition disturbance information based on decompiling instrument makes decompiling fail, and enables the lattice of disturbance information
Formula is met the requirements, so that application installation package operates normally.
(2) disturbance information being added at above-mentioned back end is more, and decompiling difficulty is bigger, more has preferable installation
Wrap anti-disintegration effect.
Further, the processing method of corresponding above-mentioned application installation package, the embodiment of the present application provide a kind of application peace
The processing unit of packet is filled, Fig. 4 is the module composition schematic diagram of the processing unit for the application installation package that one embodiment of the application provides,
As shown in figure 4, the device includes:
Decompression module 41 includes to obtain the application installation package for unziping it processing to application installation package
Multiple files;
Searching module 42, for searching the attribute information for stating application in the file data of the multiple file
Back end;
Adding module 43, for adding disturbance information at the back end found;Wherein, the disturbance information
For interfere it is described using corresponding decompiling instrument to the de-edit using corresponding application installation package as a result, making described
Decompiling result is decompiling failure, and, it is described using corresponding operating system to described using corresponding application installation package
Parsing result is unrelated with the disturbance information;
Generation module 44, for regenerating the corresponding application installation of the application based on the back end after addition
Packet.
Optionally, the searching module 42 is specifically used for:
The specified file for stating the module information of the application is searched in the multiple file;
The back end for stating the attribute information of the application is searched in the file data of the specified file.
Optionally, the specified file is Android binary system extensible markup language AXML file;The searching module 42
Also particularly useful for:
It is expandable mark language XML file by the AXML document analysis;
The back end for stating the attribute information of the application is searched in the file data of the XML file.
Optionally, the format of the disturbance information of addition meets the corresponding attribute information call format of the application;
It is described using corresponding operating system when being parsed to the application installation package regenerated, skip addition
The disturbance information, the other information in the application installation package regenerated is parsed, so that is regenerated described answers
It is unrelated with the disturbance information with the parsing result of installation kit.
Optionally, the generation module 44 is specifically used for:
To other texts in the file and the multiple file where the back end after addition in addition to this document
Part carries out back compiling, regenerates the corresponding application installation package of the application.
Optionally, which further includes signature blocks, is used for:
According to the file data for each file that the application installation package regenerated includes, described in regenerating
Application installation package is digitally signed processing.
By the embodiment of the present application, can be used to state in application installation package at the back end of attribute information of application
Disturbance information is added, since disturbance information is for interfering this to install to this using corresponding application using corresponding decompiling instrument
The de-edit of packet as a result, decompiling result decompiling is made to fail, and, this is using corresponding operating system to this using corresponding
The parsing result of application installation package is unrelated with disturbance information, therefore enables to application installation package decompiling to lose based on disturbance information
It loses, has no effect on the normal mounting and operation of application, so that invalid data, Jin Erti can not be added in hacker in application installation package
The safety of high application program.
The embodiment of the present application also provides a kind of processing equipment of application installation package, Fig. 5 provides for one embodiment of the application
Application installation package processing equipment structural schematic diagram.As shown in figure 5, the processing equipment of application installation package can be because of configuration or property
Energy is different and generates bigger difference, may include one or more processor 701 and memory 702, memory
One or more storage application programs or data are can store in 702.Wherein, memory 702 can be of short duration storage
Or persistent storage.The application program for being stored in memory 702 may include one or more modules (diagram is not shown), often
A module may include the series of computation machine executable instruction in the processing equipment to application installation package.Further, locate
Reason device 701 can be set to communicate with memory 702, and one in memory 702 is executed in the processing equipment of application installation package
Family computer executable instruction.The processing equipment of application installation package can also include one or more power supplys 703, one
Or more than one wired or wireless network interface 704, one or more input/output interfaces 705, one or more
Keyboard 706 etc..
In a specific embodiment, the processing equipment of application installation package includes memory, processor and is stored in institute
The computer executable instructions that can be run on memory and on the processor are stated, the computer executable instructions are described
Processor realizes following below scheme when executing:
Processing is unziped it to application installation package, to obtain multiple files that the application installation package includes;
The back end for stating the attribute information of application is searched in the file data of the multiple file;
Disturbance information is added at the back end found;Wherein, the disturbance information is for interfering described answer
With corresponding decompiling instrument to the de-edit using corresponding application installation package as a result, keeping the decompiling result anti-
Compiling failure, and, it is described using corresponding operating system to the parsing result using corresponding application installation package with it is described
Disturbance information is unrelated;
The corresponding application installation package of the application is regenerated based on the back end after addition.
Optionally, when the computer executable instructions are executed by the processor, in the number of files of the multiple file
According to the middle back end searched for stating the attribute information of the application, comprising:
The specified file for stating the module information of the application is searched in the multiple file;
The back end for stating the attribute information of the application is searched in the file data of the specified file.
Optionally, when the computer executable instructions are executed by the processor, the specified file be Android two into
Extensible markup language AXML file processed;The attribute for stating the application is searched in the file data of the specified file
The back end of information, comprising:
It is expandable mark language XML file by the AXML document analysis;
The back end for stating the attribute information of the application is searched in the file data of the XML file.
Optionally, when the computer executable instructions are executed by the processor, the lattice of the disturbance information of addition
Formula meets the corresponding attribute information call format of the application;
It is described using corresponding operating system when being parsed to the application installation package regenerated, skip addition
The disturbance information, the other information in the application installation package regenerated is parsed, so that is regenerated described answers
It is unrelated with the disturbance information with the parsing result of installation kit.
Optionally, when the computer executable instructions are executed by the processor, based on the data section after addition
Point regenerates the corresponding application installation package of the application, comprising:
To other texts in the file and the multiple file where the back end after addition in addition to this document
Part carries out back compiling, regenerates the corresponding application installation package of the application.
Optionally, when the computer executable instructions are executed by the processor, further includes:
According to the file data for each file that the application installation package regenerated includes, described in regenerating
Application installation package is digitally signed processing.
By the embodiment of the present application, can be used to state in application installation package at the back end of attribute information of application
Disturbance information is added, since disturbance information is for interfering this to install to this using corresponding application using corresponding decompiling instrument
The de-edit of packet as a result, decompiling result decompiling is made to fail, and, this is using corresponding operating system to this using corresponding
The parsing result of application installation package is unrelated with disturbance information, therefore enables to application installation package decompiling to lose based on disturbance information
It loses, has no effect on the normal mounting and operation of application, so that invalid data, Jin Erti can not be added in hacker in application installation package
The safety of high application program.
Further, described computer-readable to deposit the embodiment of the present application also provides a kind of computer readable storage medium
Storage media is realized for storing computer executable instructions, when the computer executable instructions are executed by processor to flow down
Journey:
Processing is unziped it to application installation package, to obtain multiple files that the application installation package includes;
The back end for stating the attribute information of application is searched in the file data of the multiple file;
Disturbance information is added at the back end found;Wherein, the disturbance information is for interfering described answer
With corresponding decompiling instrument to the de-edit using corresponding application installation package as a result, keeping the decompiling result anti-
Compiling failure, and, it is described using corresponding operating system to the parsing result using corresponding application installation package with it is described
Disturbance information is unrelated;
The corresponding application installation package of the application is regenerated based on the back end after addition.
Optionally, when the computer executable instructions are executed by processor, in the file data of the multiple file
Search the back end for stating the attribute information of the application, comprising:
The specified file for stating the module information of the application is searched in the multiple file;
The back end for stating the attribute information of the application is searched in the file data of the specified file.
Optionally, when the computer executable instructions are executed by processor, the specified file is that Android binary system can
Extending mark language AXML file;The attribute information for stating the application is searched in the file data of the specified file
Back end, comprising:
It is expandable mark language XML file by the AXML document analysis;
The back end for stating the attribute information of the application is searched in the file data of the XML file.
Optionally, when the computer executable instructions are executed by processor, the format of the disturbance information of addition is full
The corresponding attribute information call format of the foot application;
It is described using corresponding operating system when being parsed to the application installation package regenerated, skip addition
The disturbance information, the other information in the application installation package regenerated is parsed, so that is regenerated described answers
It is unrelated with the disturbance information with the parsing result of installation kit.
Optionally, when the computer executable instructions are executed by processor, based on the back end weight after addition
The corresponding application installation package of the newly-generated application, comprising:
To other texts in the file and the multiple file where the back end after addition in addition to this document
Part carries out back compiling, regenerates the corresponding application installation package of the application.
Optionally, when the computer executable instructions are executed by processor, further includes:
According to the file data for each file that the application installation package regenerated includes, described in regenerating
Application installation package is digitally signed processing.
By the embodiment of the present application, can be used to state in application installation package at the back end of attribute information of application
Disturbance information is added, since disturbance information is for interfering this to install to this using corresponding application using corresponding decompiling instrument
The de-edit of packet as a result, decompiling result decompiling is made to fail, and, this is using corresponding operating system to this using corresponding
The parsing result of application installation package is unrelated with disturbance information, therefore enables to application installation package decompiling to lose based on disturbance information
It loses, has no effect on the normal mounting and operation of application, so that invalid data, Jin Erti can not be added in hacker in application installation package
The safety of high application program.
Wherein, the computer readable storage medium includes read-only memory (Read-Only Memory, abbreviation
ROM), random access memory (Random Access Memory, abbreviation RAM), magnetic or disk etc..
All the embodiments in this specification are described in a progressive manner, same and similar portion between each embodiment
Dividing may refer to each other, and each embodiment focuses on the differences from other embodiments.Especially for system reality
For applying example, since it is substantially similar to the method embodiment, so being described relatively simple, related place is referring to embodiment of the method
Part explanation.
The above description is only an example of the present application, is not intended to limit this application.For those skilled in the art
For, various changes and changes are possible in this application.All any modifications made within the spirit and principles of the present application are equal
Replacement, improvement etc., should be included within the scope of the claims of this application.
Claims (12)
1. a kind of processing method of application installation package characterized by comprising
Processing is unziped it to application installation package, to obtain multiple files that the application installation package includes;
The back end for stating the attribute information of application is searched in the file data of the multiple file;
Disturbance information is added at the back end found;Wherein, the disturbance information is for interfering the application pair
The decompiling instrument answered is to the de-edit using corresponding application installation package as a result, making the decompiling result decompiling
Failure, and, it is described using corresponding operating system to the parsing result using corresponding application installation package and the disturbance
Information is unrelated;
The corresponding application installation package of the application is regenerated based on the back end after addition.
2. being used for sound the method according to claim 1, wherein searching in the file data of the multiple file
The back end of the attribute information of the bright application, comprising:
The specified file for stating the module information of the application is searched in the multiple file;
The back end for stating the attribute information of the application is searched in the file data of the specified file.
3. according to the method described in claim 2, it is characterized in that, the specified file is Android binary system extensible markup language
Say AXML file;The data section for stating the attribute information of the application is searched in the file data of the specified file
Point, comprising:
It is expandable mark language XML file by the AXML document analysis;
The back end for stating the attribute information of the application is searched in the file data of the XML file.
4. method according to any one of claims 1 to 3, which is characterized in that the format of the disturbance information of addition is full
The corresponding attribute information call format of the foot application;
It is described using corresponding operating system when being parsed to the application installation package regenerated, skip the institute of addition
Disturbance information is stated, the other information in the application installation package regenerated is parsed, so that the application peace regenerated
The parsing result for filling packet is unrelated with the disturbance information.
5. method according to any one of claims 1 to 3, which is characterized in that based on the back end weight after addition
The corresponding application installation package of the newly-generated application, comprising:
To the alternative document in the file and the multiple file where the back end after addition in addition to this document into
It goes back compiling, regenerates the corresponding application installation package of the application.
6. method according to any one of claims 1 to 3, which is characterized in that further include:
The application according to the file data for each file that the application installation package regenerated includes, to regenerating
Installation kit is digitally signed processing.
7. a kind of processing unit of application installation package characterized by comprising
Decompression module, for unziping it processing to application installation package, to obtain multiple texts that the application installation package includes
Part;
Searching module, for searching the data section for stating the attribute information of application in the file data of the multiple file
Point;
Adding module, for adding disturbance information at the back end found;Wherein, the disturbance information is for doing
Disturb it is described using corresponding decompiling instrument to the de-edit using corresponding application installation package as a result, making the decompiling
As a result for decompiling fail, and, it is described using corresponding operating system to the parsing knot using corresponding application installation package
Fruit is unrelated with the disturbance information;
Generation module, for regenerating the corresponding application installation package of the application based on the back end after addition.
8. device according to claim 7, which is characterized in that the searching module is specifically used for:
The specified file for stating the module information of the application is searched in the multiple file;
The back end for stating the attribute information of the application is searched in the file data of the specified file.
9. device according to claim 8, which is characterized in that the specified file is Android binary system extensible markup language
Say AXML file;The searching module also particularly useful for:
It is expandable mark language XML file by the AXML document analysis;
The back end for stating the attribute information of the application is searched in the file data of the XML file.
10. device according to any one of claims 7 to 9, which is characterized in that the format of the disturbance information of addition is full
The corresponding attribute information call format of the foot application;
It is described using corresponding operating system when being parsed to the application installation package regenerated, skip the institute of addition
Disturbance information is stated, the other information in the application installation package regenerated is parsed, so that the application peace regenerated
The parsing result for filling packet is unrelated with the disturbance information.
11. device according to any one of claims 7 to 9, which is characterized in that the generation module is specifically used for:
To the alternative document in the file and the multiple file where the back end after addition in addition to this document into
It goes back compiling, regenerates the corresponding application installation package of the application.
12. device according to any one of claims 7 to 9, which is characterized in that further include signature blocks, be used for:
The application according to the file data for each file that the application installation package regenerated includes, to regenerating
Installation kit is digitally signed processing.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810888908.9A CN109033765A (en) | 2018-08-07 | 2018-08-07 | The treating method and apparatus of application installation package |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810888908.9A CN109033765A (en) | 2018-08-07 | 2018-08-07 | The treating method and apparatus of application installation package |
Publications (1)
Publication Number | Publication Date |
---|---|
CN109033765A true CN109033765A (en) | 2018-12-18 |
Family
ID=64648841
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201810888908.9A Pending CN109033765A (en) | 2018-08-07 | 2018-08-07 | The treating method and apparatus of application installation package |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN109033765A (en) |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103544414A (en) * | 2013-10-25 | 2014-01-29 | 苏州通付盾信息技术有限公司 | Deep code obfuscation method for Android system applications |
CN104318155A (en) * | 2014-11-18 | 2015-01-28 | 刘鹏 | Dynamic loading method capable of guarding against reverse APK file |
EP2863593A1 (en) * | 2013-10-21 | 2015-04-22 | Openwave Mobility, Inc. | A method, apparatus and computer program for modifying messages in a communications network |
CN104573416A (en) * | 2013-10-25 | 2015-04-29 | 腾讯科技(深圳)有限公司 | Method and device for generating application installation package and executing application |
CN106845171A (en) * | 2017-01-20 | 2017-06-13 | 暨南大学 | A kind of Android application codes protection mechanism discrimination method |
CN107609394A (en) * | 2017-08-28 | 2018-01-19 | 上海移卓网络科技有限公司 | Tamper resistant method, storage device and the device of Android installation kits |
-
2018
- 2018-08-07 CN CN201810888908.9A patent/CN109033765A/en active Pending
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP2863593A1 (en) * | 2013-10-21 | 2015-04-22 | Openwave Mobility, Inc. | A method, apparatus and computer program for modifying messages in a communications network |
CN103544414A (en) * | 2013-10-25 | 2014-01-29 | 苏州通付盾信息技术有限公司 | Deep code obfuscation method for Android system applications |
CN104573416A (en) * | 2013-10-25 | 2015-04-29 | 腾讯科技(深圳)有限公司 | Method and device for generating application installation package and executing application |
CN104318155A (en) * | 2014-11-18 | 2015-01-28 | 刘鹏 | Dynamic loading method capable of guarding against reverse APK file |
CN106845171A (en) * | 2017-01-20 | 2017-06-13 | 暨南大学 | A kind of Android application codes protection mechanism discrimination method |
CN107609394A (en) * | 2017-08-28 | 2018-01-19 | 上海移卓网络科技有限公司 | Tamper resistant method, storage device and the device of Android installation kits |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN103095681B (en) | A kind of method and device detecting leak | |
CN104899016B (en) | Allocating stack Relation acquisition method and device | |
CN112560100B (en) | Data desensitizing method and device, computer readable storage medium and electronic equipment | |
CN109446801B (en) | Method, device, server and storage medium for detecting simulator access | |
GB2563381A (en) | Method and apparatus for executing a scripting language | |
CN108897588B (en) | Routing method and routing device for communication between modules | |
CN112422581B (en) | Webshell webpage detection method, device and equipment in JVM (Java virtual machine) | |
CN106598830A (en) | Mobile terminal webpage script debugging method and system | |
CN106528696B (en) | A method of extracting android system QQ account | |
CN103390129A (en) | Method and device for detecting security of uniform resource locator | |
CN109033765A (en) | The treating method and apparatus of application installation package | |
CN104158812B (en) | The method of controlling security and system of a kind of terminal applies | |
CN104516970B (en) | A kind of method and apparatus for carrying out log analysis | |
CN111428209B (en) | Application program confusion method, device and storage medium | |
CN113268232A (en) | Page skin generation method and device and computer readable storage medium | |
CN102981822A (en) | Method and equipment of treatment strategy | |
CN113282328A (en) | Application program updating method, computer device and computer storage medium | |
CN107643892B (en) | Interface processing method, device, storage medium and processor | |
CN106411891A (en) | File processing method, device, server-side and equipment | |
CN110084005A (en) | A kind of processing method and processing device of code | |
CN113065131A (en) | Plug-in safety control method, device and storage medium | |
CN113343157B (en) | Content editing method and device based on domain-specific language | |
CN107239703A (en) | A kind of dynamic analysing method of the executable program of dynamic link library missing | |
CN115935302B (en) | Android installation package generation method and device | |
CN111258586B (en) | Fast application running and compiling method and device, electronic equipment and storage medium |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20181218 |
|
RJ01 | Rejection of invention patent application after publication |