Bump libsignal to 0.76.0

app/src/main/java/org/thoughtcrime/securesms/backup/v2/processor/AccountDataArchiveProcessor.kt

@@ -10,8 +10,10 @@ import okio.ByteString.Companion.EMPTY
 import okio.ByteString.Companion.toByteString
 import org.signal.core.util.isNotNullOrBlank
 import org.signal.core.util.logging.Log
+import org.signal.libsignal.zkgroup.backups.BackupLevel
 import org.thoughtcrime.securesms.attachments.AttachmentId
 import org.thoughtcrime.securesms.backup.v2.ImportState
+import org.thoughtcrime.securesms.backup.v2.MessageBackupTier
 import org.thoughtcrime.securesms.backup.v2.database.restoreSelfFromBackup
 import org.thoughtcrime.securesms.backup.v2.database.restoreWallpaperAttachment
 import org.thoughtcrime.securesms.backup.v2.proto.AccountData
@@ -104,6 +106,7 @@ object AccountDataArchiveProcessor {
             hasCompletedUsernameOnboarding = signalStore.uiHintValues.hasCompletedUsernameOnboarding(),
             customChatColors = db.chatColorsTable.getSavedChatColors().toRemoteChatColors(),
             optimizeOnDeviceStorage = signalStore.backupValues.optimizeStorage,
+            backupTier = signalStore.backupValues.backupTier.toRemoteBackupTier(),
             defaultChatStyle = ChatStyleConverter.constructRemoteChatStyle(
               db = db,
               chatColors = chatColors,
@@ -212,6 +215,7 @@ object AccountDataArchiveProcessor {
     SignalStore.story.userHasSeenGroupStoryEducationSheet = settings.hasSeenGroupStoryEducationSheet
     SignalStore.story.viewedReceiptsEnabled = settings.storyViewReceiptsEnabled ?: settings.readReceipts
     SignalStore.backup.optimizeStorage = settings.optimizeOnDeviceStorage
+    SignalStore.backup.backupTier = settings.backupTier?.toLocalBackupTier()
 
     settings.customChatColors
       .mapNotNull { chatColor ->
@@ -356,4 +360,20 @@ object AccountDataArchiveProcessor {
         }
       }
   }
+
+  private fun MessageBackupTier?.toRemoteBackupTier(): Long? {
+    return when (this) {
+      MessageBackupTier.FREE -> BackupLevel.FREE.value.toLong()
+      MessageBackupTier.PAID -> BackupLevel.PAID.value.toLong()
+      null -> null
+    }
+  }
+
+  private fun Long?.toLocalBackupTier(): MessageBackupTier? {
+    return when (this) {
+      BackupLevel.FREE.value.toLong() -> MessageBackupTier.FREE
+      BackupLevel.PAID.value.toLong() -> MessageBackupTier.PAID
+      else -> null
+    }
+  }
 }

app/src/main/java/org/thoughtcrime/securesms/backup/v2/processor/ChatArchiveProcessor.kt

@@ -8,14 +8,12 @@ package org.thoughtcrime.securesms.backup.v2.processor
 import org.signal.core.util.logging.Log
 import org.thoughtcrime.securesms.backup.v2.ExportState
 import org.thoughtcrime.securesms.backup.v2.ImportState
-import org.thoughtcrime.securesms.backup.v2.MessageBackupTier
 import org.thoughtcrime.securesms.backup.v2.database.getThreadsForBackup
 import org.thoughtcrime.securesms.backup.v2.importer.ChatArchiveImporter
 import org.thoughtcrime.securesms.backup.v2.proto.Chat
 import org.thoughtcrime.securesms.backup.v2.proto.Frame
 import org.thoughtcrime.securesms.backup.v2.stream.BackupFrameEmitter
 import org.thoughtcrime.securesms.database.SignalDatabase
-import org.thoughtcrime.securesms.keyvalue.SignalStore
 import org.thoughtcrime.securesms.recipients.RecipientId
 
 /**
@@ -25,10 +23,7 @@ object ChatArchiveProcessor {
   val TAG = Log.tag(ChatArchiveProcessor::class.java)
 
   fun export(db: SignalDatabase, exportState: ExportState, emitter: BackupFrameEmitter) {
-    val includeImageWallpapers = SignalStore.backup.backupTier == MessageBackupTier.PAID
-    Log.i(TAG, "Including wallpapers: $includeImageWallpapers")
-
-    db.threadTable.getThreadsForBackup(db, includeImageWallpapers).use { reader ->
+    db.threadTable.getThreadsForBackup(db, includeImageWallpapers = true).use { reader ->
       for (chat in reader) {
         if (exportState.recipientIds.contains(chat.recipientId)) {
           exportState.threadIds.add(chat.id)

app/src/main/java/org/thoughtcrime/securesms/crypto/AsymmetricMasterCipher.java

@@ -20,7 +20,6 @@ package org.thoughtcrime.securesms.crypto;
 import org.signal.core.util.Conversions;
 import org.signal.libsignal.protocol.InvalidKeyException;
 import org.signal.libsignal.protocol.InvalidMessageException;
-import org.signal.libsignal.protocol.ecc.Curve;
 import org.signal.libsignal.protocol.ecc.ECKeyPair;
 import org.signal.libsignal.protocol.ecc.ECPrivateKey;
 import org.signal.libsignal.protocol.ecc.ECPublicKey;
@@ -62,20 +61,16 @@ public class AsymmetricMasterCipher {
   }
 
   public byte[] encryptBytes(byte[] body) {
-    try {
-      ECPublicKey  theirPublic        = asymmetricMasterSecret.getDjbPublicKey();
-      ECKeyPair    ourKeyPair         = Curve.generateKeyPair();
-      byte[]       secret             = Curve.calculateAgreement(theirPublic, ourKeyPair.getPrivateKey());
-      MasterCipher masterCipher       = getMasterCipherForSecret(secret);
-      byte[]       encryptedBodyBytes = masterCipher.encryptBytes(body);
+    ECPublicKey  theirPublic        = asymmetricMasterSecret.getDjbPublicKey();
+    ECKeyPair    ourKeyPair         = ECKeyPair.generate();
+    byte[]       secret             = ourKeyPair.getPrivateKey().calculateAgreement(theirPublic);
+    MasterCipher masterCipher       = getMasterCipherForSecret(secret);
+    byte[]       encryptedBodyBytes = masterCipher.encryptBytes(body);
 
-      PublicKey    ourPublicKey       = new PublicKey(31337, ourKeyPair.getPublicKey());
-      byte[]       publicKeyBytes     = ourPublicKey.serialize();
+    PublicKey    ourPublicKey       = new PublicKey(31337, ourKeyPair.getPublicKey());
+    byte[]       publicKeyBytes     = ourPublicKey.serialize();
 
-      return Util.combine(publicKeyBytes, encryptedBodyBytes);
-    } catch (InvalidKeyException e) {
-      throw new AssertionError(e);
-    }
+    return Util.combine(publicKeyBytes, encryptedBodyBytes);
   }
 
   public byte[] decryptBytes(byte[] combined) throws IOException, InvalidMessageException {
@@ -84,7 +79,7 @@ public class AsymmetricMasterCipher {
       PublicKey theirPublicKey = new PublicKey(parts[0], 0);
 
       ECPrivateKey ourPrivateKey = asymmetricMasterSecret.getPrivateKey();
-      byte[]       secret        = Curve.calculateAgreement(theirPublicKey.getKey(), ourPrivateKey);
+      byte[]       secret        = ourPrivateKey.calculateAgreement(theirPublicKey.getKey());
       MasterCipher masterCipher  = getMasterCipherForSecret(secret);
 
       return masterCipher.decryptBytes(parts[1]);

app/src/main/java/org/thoughtcrime/securesms/crypto/IdentityKeyUtil.java

@@ -19,7 +19,6 @@ package org.thoughtcrime.securesms.crypto;
 
 import org.signal.libsignal.protocol.IdentityKey;
 import org.signal.libsignal.protocol.IdentityKeyPair;
-import org.signal.libsignal.protocol.ecc.Curve;
 import org.signal.libsignal.protocol.ecc.ECKeyPair;
 import org.signal.libsignal.protocol.ecc.ECPrivateKey;
 
@@ -32,7 +31,7 @@ import org.signal.libsignal.protocol.ecc.ECPrivateKey;
 public class IdentityKeyUtil {
 
   public static IdentityKeyPair generateIdentityKeyPair() {
-    ECKeyPair    djbKeyPair     = Curve.generateKeyPair();
+    ECKeyPair    djbKeyPair     = ECKeyPair.generate();
     IdentityKey  djbIdentityKey = new IdentityKey(djbKeyPair.getPublicKey());
     ECPrivateKey djbPrivateKey  = djbKeyPair.getPrivateKey();
 

app/src/main/java/org/thoughtcrime/securesms/crypto/MasterCipher.java

@@ -21,7 +21,6 @@ import androidx.annotation.NonNull;
 
 import org.signal.core.util.logging.Log;
 import org.signal.libsignal.protocol.InvalidMessageException;
-import org.signal.libsignal.protocol.ecc.Curve;
 import org.signal.libsignal.protocol.ecc.ECPrivateKey;
 import org.signal.core.util.Base64;
 import org.signal.core.util.Hex;
@@ -89,7 +88,7 @@ public class MasterCipher {
       throws org.signal.libsignal.protocol.InvalidKeyException
   {
     try {
-      return Curve.decodePrivatePoint(decryptBytes(key));
+      return new ECPrivateKey(decryptBytes(key));
     } catch (InvalidMessageException ime) {
       throw new org.signal.libsignal.protocol.InvalidKeyException(ime);
     }

app/src/main/java/org/thoughtcrime/securesms/crypto/MasterSecretUtil.java

@@ -26,7 +26,6 @@ import androidx.annotation.Nullable;
 
 import org.signal.core.util.logging.Log;
 import org.signal.libsignal.protocol.InvalidKeyException;
-import org.signal.libsignal.protocol.ecc.Curve;
 import org.signal.libsignal.protocol.ecc.ECKeyPair;
 import org.signal.libsignal.protocol.ecc.ECPrivateKey;
 import org.signal.libsignal.protocol.ecc.ECPublicKey;
@@ -139,7 +138,7 @@ public class MasterSecretUtil {
       ECPrivateKey djbPrivateKey = null;
 
       if (djbPublicBytes != null) {
-        djbPublicKey = Curve.decodePoint(djbPublicBytes, 0);
+        djbPublicKey = new ECPublicKey(djbPublicBytes);
       }
 
       if (masterSecret != null) {
@@ -160,7 +159,7 @@ public class MasterSecretUtil {
                                                                       MasterSecret masterSecret)
   {
     MasterCipher masterCipher = new MasterCipher(masterSecret);
-    ECKeyPair    keyPair      = Curve.generateKeyPair();
+    ECKeyPair    keyPair      = ECKeyPair.generate();
 
     save(context, ASYMMETRIC_LOCAL_PUBLIC_DJB, keyPair.getPublicKey().serialize());
     save(context, ASYMMETRIC_LOCAL_PRIVATE_DJB, masterCipher.encryptKey(keyPair.getPrivateKey()));

app/src/main/java/org/thoughtcrime/securesms/crypto/PreKeyUtil.java

@@ -20,9 +20,7 @@ package org.thoughtcrime.securesms.crypto;
 import androidx.annotation.NonNull;
 
 import org.signal.core.util.logging.Log;
-import org.signal.libsignal.protocol.InvalidKeyException;
 import org.signal.libsignal.protocol.InvalidKeyIdException;
-import org.signal.libsignal.protocol.ecc.Curve;
 import org.signal.libsignal.protocol.ecc.ECKeyPair;
 import org.signal.libsignal.protocol.ecc.ECPrivateKey;
 import org.signal.libsignal.protocol.kem.KEMKeyPair;
@@ -66,7 +64,7 @@ public class PreKeyUtil {
 
     for (int i = 0; i < BATCH_SIZE; i++) {
       int          preKeyId = (startingId + i) % Medium.MAX_VALUE;
-      ECKeyPair    keyPair  = Curve.generateKeyPair();
+      ECKeyPair    keyPair  = ECKeyPair.generate();
       PreKeyRecord record   = new PreKeyRecord(preKeyId, keyPair);
 
       records.add(record);
@@ -155,14 +153,10 @@ public class PreKeyUtil {
   public synchronized static @NonNull SignedPreKeyRecord generateSignedPreKey(int signedPreKeyId, @NonNull ECPrivateKey privateKey) {
     Log.i(TAG, "Generating signed prekeys...");
 
-    try {
-      ECKeyPair keyPair   = Curve.generateKeyPair();
-      byte[]    signature = Curve.calculateSignature(privateKey, keyPair.getPublicKey().serialize());
+    ECKeyPair keyPair   = ECKeyPair.generate();
+    byte[]    signature = privateKey.calculateSignature(keyPair.getPublicKey().serialize());
 
-      return new SignedPreKeyRecord(signedPreKeyId, System.currentTimeMillis(), keyPair, signature);
-    } catch (InvalidKeyException e) {
-      throw new AssertionError(e);
-    }
+    return new SignedPreKeyRecord(signedPreKeyId, System.currentTimeMillis(), keyPair, signature);
   }
 
   public synchronized static void storeSignedPreKey(@NonNull SignalProtocolStore protocolStore, @NonNull PreKeyMetadataStore metadataStore, SignedPreKeyRecord record) {

app/src/main/java/org/thoughtcrime/securesms/crypto/PublicKey.java

@@ -21,12 +21,9 @@ import org.signal.core.util.Conversions;
 import org.signal.core.util.logging.Log;
 import org.signal.core.util.Hex;
 import org.signal.libsignal.protocol.InvalidKeyException;
-import org.signal.libsignal.protocol.ecc.Curve;
 import org.signal.libsignal.protocol.ecc.ECPublicKey;
 import org.thoughtcrime.securesms.util.Util;
 
-import java.security.MessageDigest;
-import java.security.NoSuchAlgorithmException;
 
 public class PublicKey {
 
@@ -49,7 +46,7 @@ public class PublicKey {
       throw new InvalidKeyException("Provided bytes are too short.");
 
     this.id        = Conversions.byteArrayToMedium(bytes, offset);
-    this.publicKey = Curve.decodePoint(bytes, offset + 3);
+    this.publicKey = new ECPublicKey(bytes, offset + 3);
   }
 
   public int getType() {

app/src/main/java/org/thoughtcrime/securesms/crypto/SealedSenderAccessUtil.java

@@ -13,7 +13,6 @@ import org.signal.libsignal.metadata.certificate.CertificateValidator;
 import org.signal.libsignal.metadata.certificate.InvalidCertificateException;
 import org.signal.libsignal.metadata.certificate.SenderCertificate;
 import org.signal.libsignal.protocol.InvalidKeyException;
-import org.signal.libsignal.protocol.ecc.Curve;
 import org.signal.libsignal.protocol.ecc.ECPublicKey;
 import org.signal.libsignal.zkgroup.profiles.ProfileKey;
 import org.thoughtcrime.securesms.BuildConfig;
@@ -186,7 +185,7 @@ public class SealedSenderAccessUtil {
 
     private static CertificateValidator buildCertificateValidator() {
       try {
-        ECPublicKey unidentifiedSenderTrustRoot = Curve.decodePoint(Base64.decode(BuildConfig.UNIDENTIFIED_SENDER_TRUST_ROOT), 0);
+        ECPublicKey unidentifiedSenderTrustRoot = new ECPublicKey(Base64.decode(BuildConfig.UNIDENTIFIED_SENDER_TRUST_ROOT));
         return new CertificateValidator(unidentifiedSenderTrustRoot);
       } catch (InvalidKeyException | IOException e) {
         throw new AssertionError(e);

app/src/main/java/org/thoughtcrime/securesms/database/OneTimePreKeyTable.kt

@@ -10,8 +10,9 @@ import org.signal.core.util.logging.Log
 import org.signal.core.util.requireNonNullString
 import org.signal.core.util.update
 import org.signal.libsignal.protocol.InvalidKeyException
-import org.signal.libsignal.protocol.ecc.Curve
 import org.signal.libsignal.protocol.ecc.ECKeyPair
+import org.signal.libsignal.protocol.ecc.ECPrivateKey
+import org.signal.libsignal.protocol.ecc.ECPublicKey
 import org.signal.libsignal.protocol.state.PreKeyRecord
 import org.whispersystems.signalservice.api.push.ServiceId
 import java.io.IOException
@@ -47,8 +48,8 @@ class OneTimePreKeyTable(context: Context, databaseHelper: SignalDatabase) : Dat
     readableDatabase.query(TABLE_NAME, null, "$ACCOUNT_ID = ? AND $KEY_ID = ?", SqlUtil.buildArgs(serviceId.toAccountId(), keyId), null, null, null).use { cursor ->
       if (cursor.moveToFirst()) {
         try {
-          val publicKey = Curve.decodePoint(Base64.decode(cursor.requireNonNullString(PUBLIC_KEY)), 0)
-          val privateKey = Curve.decodePrivatePoint(Base64.decode(cursor.requireNonNullString(PRIVATE_KEY)))
+          val publicKey = ECPublicKey(Base64.decode(cursor.requireNonNullString(PUBLIC_KEY)))
+          val privateKey = ECPrivateKey(Base64.decode(cursor.requireNonNullString(PRIVATE_KEY)))
           return PreKeyRecord(keyId, ECKeyPair(publicKey, privateKey))
         } catch (e: InvalidKeyException) {
           Log.w(TAG, e)

app/src/main/java/org/thoughtcrime/securesms/database/SignedPreKeyTable.kt

@@ -10,8 +10,9 @@ import org.signal.core.util.requireInt
 import org.signal.core.util.requireLong
 import org.signal.core.util.requireNonNullString
 import org.signal.libsignal.protocol.InvalidKeyException
-import org.signal.libsignal.protocol.ecc.Curve
 import org.signal.libsignal.protocol.ecc.ECKeyPair
+import org.signal.libsignal.protocol.ecc.ECPrivateKey
+import org.signal.libsignal.protocol.ecc.ECPublicKey
 import org.signal.libsignal.protocol.state.SignedPreKeyRecord
 import org.whispersystems.signalservice.api.push.ServiceId
 import java.io.IOException
@@ -50,8 +51,8 @@ class SignedPreKeyTable(context: Context, databaseHelper: SignalDatabase) : Data
     readableDatabase.query(TABLE_NAME, null, "$ACCOUNT_ID = ? AND $KEY_ID = ?", SqlUtil.buildArgs(serviceId.toAccountId(), keyId), null, null, null).use { cursor ->
       if (cursor.moveToFirst()) {
         try {
-          val publicKey = Curve.decodePoint(Base64.decode(cursor.requireNonNullString(PUBLIC_KEY)), 0)
-          val privateKey = Curve.decodePrivatePoint(Base64.decode(cursor.requireNonNullString(PRIVATE_KEY)))
+          val publicKey = ECPublicKey(Base64.decode(cursor.requireNonNullString(PUBLIC_KEY)))
+          val privateKey = ECPrivateKey(Base64.decode(cursor.requireNonNullString(PRIVATE_KEY)))
           val signature = Base64.decode(cursor.requireNonNullString(SIGNATURE))
           val timestamp = cursor.requireLong(TIMESTAMP)
           return SignedPreKeyRecord(keyId, timestamp, ECKeyPair(publicKey, privateKey), signature)
@@ -72,8 +73,8 @@ class SignedPreKeyTable(context: Context, databaseHelper: SignalDatabase) : Data
       while (cursor.moveToNext()) {
         try {
           val keyId = cursor.requireInt(KEY_ID)
-          val publicKey = Curve.decodePoint(Base64.decode(cursor.requireNonNullString(PUBLIC_KEY)), 0)
-          val privateKey = Curve.decodePrivatePoint(Base64.decode(cursor.requireNonNullString(PRIVATE_KEY)))
+          val publicKey = ECPublicKey(Base64.decode(cursor.requireNonNullString(PUBLIC_KEY)))
+          val privateKey = ECPrivateKey(Base64.decode(cursor.requireNonNullString(PRIVATE_KEY)))
           val signature = Base64.decode(cursor.requireNonNullString(SIGNATURE))
           val timestamp = cursor.requireLong(TIMESTAMP)
           results.add(SignedPreKeyRecord(keyId, timestamp, ECKeyPair(publicKey, privateKey), signature))

app/src/main/java/org/thoughtcrime/securesms/keyvalue/AccountValues.kt

@@ -9,7 +9,7 @@ import org.signal.core.util.logging.Log
 import org.signal.core.util.nullIfBlank
 import org.signal.libsignal.protocol.IdentityKey
 import org.signal.libsignal.protocol.IdentityKeyPair
-import org.signal.libsignal.protocol.ecc.Curve
+import org.signal.libsignal.protocol.ecc.ECPrivateKey
 import org.signal.libsignal.protocol.util.Medium
 import org.thoughtcrime.securesms.crypto.IdentityKeyUtil
 import org.thoughtcrime.securesms.crypto.MasterCipher
@@ -228,7 +228,7 @@ class AccountValues internal constructor(store: KeyValueStore, context: Context)
       require(store.containsKey(KEY_ACI_IDENTITY_PUBLIC_KEY)) { "Not yet set!" }
       return IdentityKeyPair(
         IdentityKey(getBlob(KEY_ACI_IDENTITY_PUBLIC_KEY, null)),
-        Curve.decodePrivatePoint(getBlob(KEY_ACI_IDENTITY_PRIVATE_KEY, null))
+        ECPrivateKey(getBlob(KEY_ACI_IDENTITY_PRIVATE_KEY, null))
       )
     }
 
@@ -238,7 +238,7 @@ class AccountValues internal constructor(store: KeyValueStore, context: Context)
       require(store.containsKey(KEY_PNI_IDENTITY_PUBLIC_KEY)) { "Not yet set!" }
       return IdentityKeyPair(
         IdentityKey(getBlob(KEY_PNI_IDENTITY_PUBLIC_KEY, null)),
-        Curve.decodePrivatePoint(getBlob(KEY_PNI_IDENTITY_PRIVATE_KEY, null))
+        ECPrivateKey(getBlob(KEY_PNI_IDENTITY_PRIVATE_KEY, null))
       )
     }
 

app/src/main/java/org/thoughtcrime/securesms/linkdevice/LinkDeviceRepository.kt

@@ -9,7 +9,7 @@ import org.signal.core.util.logging.logD
 import org.signal.core.util.logging.logI
 import org.signal.core.util.logging.logW
 import org.signal.libsignal.protocol.InvalidKeyException
-import org.signal.libsignal.protocol.ecc.Curve
+import org.signal.libsignal.protocol.ecc.ECPublicKey
 import org.thoughtcrime.securesms.backup.BackupFileIOError
 import org.thoughtcrime.securesms.backup.v2.ArchiveValidator
 import org.thoughtcrime.securesms.backup.v2.BackupRepository
@@ -149,7 +149,7 @@ object LinkDeviceRepository {
     val ephemeralId: String = uri.getQueryParameter("uuid") ?: return LinkDeviceResult.BadCode
     val publicKey = try {
       val publicKeyEncoded: String = uri.getQueryParameter("pub_key") ?: return LinkDeviceResult.BadCode
-      Curve.decodePoint(Base64.decode(publicKeyEncoded), 0)
+      ECPublicKey(Base64.decode(publicKeyEncoded))
     } catch (e: InvalidKeyException) {
       return LinkDeviceResult.KeyError
     }

app/src/main/java/org/thoughtcrime/securesms/registration/secondary/DeviceNameCipher.kt

@@ -4,9 +4,9 @@ import okio.ByteString.Companion.toByteString
 import org.signal.core.util.logging.Log
 import org.signal.libsignal.protocol.IdentityKeyPair
 import org.signal.libsignal.protocol.InvalidKeyException
-import org.signal.libsignal.protocol.ecc.Curve
 import org.signal.libsignal.protocol.ecc.ECKeyPair
 import org.signal.libsignal.protocol.ecc.ECPrivateKey
+import org.signal.libsignal.protocol.ecc.ECPublicKey
 import org.signal.libsignal.protocol.util.ByteUtil
 import org.thoughtcrime.securesms.devicelist.protos.DeviceName
 import java.nio.charset.Charset
@@ -28,8 +28,8 @@ object DeviceNameCipher {
 
   @JvmStatic
   fun encryptDeviceName(plaintext: ByteArray, identityKeyPair: IdentityKeyPair): ByteArray {
-    val ephemeralKeyPair: ECKeyPair = Curve.generateKeyPair()
-    val masterSecret: ByteArray = Curve.calculateAgreement(identityKeyPair.publicKey.publicKey, ephemeralKeyPair.privateKey)
+    val ephemeralKeyPair: ECKeyPair = ECKeyPair.generate()
+    val masterSecret: ByteArray = ephemeralKeyPair.privateKey.calculateAgreement(identityKeyPair.publicKey.publicKey)
 
     val syntheticIv: ByteArray = computeSyntheticIv(masterSecret, plaintext)
     val cipherKey: ByteArray = computeCipherKey(masterSecret, syntheticIv)
@@ -58,8 +58,8 @@ object DeviceNameCipher {
       val syntheticIv = deviceName.syntheticIv.toByteArray()
       val cipherText = deviceName.ciphertext.toByteArray()
       val identityKey: ECPrivateKey = identityKeyPair.privateKey
-      val ephemeralPublic = Curve.decodePoint(deviceName.ephemeralPublic.toByteArray(), 0)
-      val masterSecret = Curve.calculateAgreement(ephemeralPublic, identityKey)
+      val ephemeralPublic = ECPublicKey(deviceName.ephemeralPublic.toByteArray())
+      val masterSecret = identityKey.calculateAgreement(ephemeralPublic)
 
       val mac = Mac.getInstance("HmacSHA256")
       mac.init(SecretKeySpec(masterSecret, "HmacSHA256"))

app/src/main/java/org/thoughtcrime/securesms/registrationv3/data/QuickRegistrationRepository.kt

@@ -15,7 +15,7 @@ import org.signal.core.util.Base64.decode
 import org.signal.core.util.isNotNullOrBlank
 import org.signal.core.util.logging.Log
 import org.signal.libsignal.protocol.InvalidKeyException
-import org.signal.libsignal.protocol.ecc.Curve
+import org.signal.libsignal.protocol.ecc.ECPublicKey
 import org.signal.registration.proto.RegistrationProvisionMessage
 import org.thoughtcrime.securesms.backup.v2.MessageBackupTier
 import org.thoughtcrime.securesms.database.SignalDatabase
@@ -62,13 +62,14 @@ object QuickRegistrationRepository {
     try {
       val ephemeralId: String? = uri.getQueryParameter("uuid")
       val publicKeyEncoded: String? = uri.getQueryParameter("pub_key")
-      val publicKey = Curve.decodePoint(publicKeyEncoded?.let { decode(it) }, 0)
 
       if (ephemeralId == null || publicKeyEncoded == null) {
         Log.w(TAG, "Invalid link data hasId: ${ephemeralId != null} hasKey: ${publicKeyEncoded != null}")
         return TransferAccountResult.FAILED
       }
 
+      val publicKey = ECPublicKey(decode(publicKeyEncoded))
+
       SignalNetwork
         .provisioning
         .sendReRegisterDeviceProvisioningMessage(

app/src/main/java/org/thoughtcrime/securesms/service/webrtc/WebRtcUtil.java

@@ -6,7 +6,6 @@ import androidx.annotation.NonNull;
 import androidx.annotation.Nullable;
 
 import org.signal.libsignal.protocol.InvalidKeyException;
-import org.signal.libsignal.protocol.ecc.Curve;
 import org.signal.libsignal.protocol.ecc.ECPublicKey;
 import org.signal.ringrtc.CallManager;
 import org.signal.ringrtc.GroupCall;
@@ -29,7 +28,7 @@ public final class WebRtcUtil {
   private WebRtcUtil() {}
 
   public static @NonNull byte[] getPublicKeyBytes(@NonNull byte[] identityKey) throws InvalidKeyException {
-    ECPublicKey key = Curve.decodePoint(identityKey, 0);
+    ECPublicKey key = new ECPublicKey(identityKey);
     return key.getPublicKeyBytes();
   }