Fix issue with 12byte IV on older android versions.

2026-04-02 00:17:41 +01:00 · 2026-03-31 15:36:23 -03:00
parent f37f67c6c0
commit 01989ad6e7
1 changed files with 11 additions and 11 deletions
--- a/app/src/main/java/org/thoughtcrime/securesms/backup/v2/local/LocalArchiver.kt
+++ b/app/src/main/java/org/thoughtcrime/securesms/backup/v2/local/LocalArchiver.kt
@@ -20,6 +20,7 @@ import org.signal.core.util.Util
 import org.signal.core.util.logging.Log
 import org.signal.core.util.readFully
 import org.signal.core.util.toJson
+import org.signal.libsignal.crypto.Aes256Ctr32
 import org.thoughtcrime.securesms.attachments.AttachmentId
 import org.thoughtcrime.securesms.backup.v2.BackupRepository
 import org.thoughtcrime.securesms.database.AttachmentTable
@@ -35,9 +36,6 @@ import java.io.OutputStream
 import java.util.Collections
 import java.util.zip.ZipEntry
 import java.util.zip.ZipOutputStream
-import javax.crypto.Cipher
-import javax.crypto.spec.IvParameterSpec
-import javax.crypto.spec.SecretKeySpec

 typealias ArchiveResult = org.signal.core.util.Result<LocalArchiver.ArchiveSuccess, LocalArchiver.ArchiveFailure>
 typealias RestoreResult = org.signal.core.util.Result<LocalArchiver.RestoreSuccess, LocalArchiver.RestoreFailure>
@@ -216,14 +214,19 @@ object LocalArchiver {
    val metadataKey = SignalStore.backup.messageBackupKey.deriveLocalBackupMetadataKey()
    val iv = Util.getSecretBytes(12)
    val backupId = SignalStore.backup.messageBackupKey.deriveBackupId(SignalStore.account.requireAci())
-
-    val cipher = Cipher.getInstance("AES/CTR/NoPadding")
-    cipher.init(Cipher.ENCRYPT_MODE, SecretKeySpec(metadataKey, "AES"), IvParameterSpec(iv))
-    val cipherText = cipher.doFinal(backupId.value)
+    val cipherText = applyCipher(backupId.value, metadataKey, iv)

    return Metadata.EncryptedBackupId(iv = iv.toByteString(), encryptedId = cipherText.toByteString())
  }

+  private fun applyCipher(input: ByteArray, metadataKey: ByteArray, iv: ByteArray): ByteArray {
+    val data = input.copyOf()
+    val cipher = Aes256Ctr32(metadataKey, iv, 0)
+    cipher.process(data)
+
+    return data
+  }
+
  /**
   * Import archive data from a folder on the system. Does not restore attachments.
   */
@@ -300,10 +303,7 @@ object LocalArchiver {
    val metadataKey = messageBackupKey.deriveLocalBackupMetadataKey()
    val iv = encryptedBackupId.iv.toByteArray()
    val backupIdCipher = encryptedBackupId.encryptedId.toByteArray()
-
-    val cipher = Cipher.getInstance("AES/CTR/NoPadding")
-    cipher.init(Cipher.DECRYPT_MODE, SecretKeySpec(metadataKey, "AES"), IvParameterSpec(iv))
-    val plaintext = cipher.doFinal(backupIdCipher)
+    val plaintext = applyCipher(backupIdCipher, metadataKey, iv)

    return BackupId(plaintext)
  }