Merge remote-tracking branch 'upstream/dev' into bluetooth-manager-crash

# Conflicts: # app/src/main/java/org/thoughtcrime/securesms/backup/FullBackupExporter.kt # app/src/main/java/org/thoughtcrime/securesms/backup/FullBackupImporter.kt
2025-08-13 17:17:38 +00:00 · 2023-05-30 12:25:13 +10:00
parent 0c2a635d03 10af2815ac
commit c77d465438
10 changed files with 90 additions and 123 deletions
--- a/app/src/main/java/org/thoughtcrime/securesms/crypto/KeyStoreHelper.java
+++ b/app/src/main/java/org/thoughtcrime/securesms/crypto/KeyStoreHelper.java
@@ -1,13 +1,13 @@
 package org.thoughtcrime.securesms.crypto;


-import android.os.Build;
+import static org.session.libsignal.crypto.CipherUtil.CIPHER_LOCK;
+
 import android.security.keystore.KeyGenParameterSpec;
 import android.security.keystore.KeyProperties;
 import android.util.Base64;

 import androidx.annotation.NonNull;
-import androidx.annotation.RequiresApi;

 import com.fasterxml.jackson.annotation.JsonProperty;
 import com.fasterxml.jackson.core.JsonGenerator;
@@ -45,8 +45,6 @@ public final class KeyStoreHelper {
  private static final String ANDROID_KEY_STORE = "AndroidKeyStore";
  private static final String KEY_ALIAS         = "SignalSecret";

-  private static final Object lock = new Object();
-
  public static SealedData seal(@NonNull byte[] input) {
    SecretKey secretKey = getOrCreateKeyStoreEntry();

@@ -54,7 +52,7 @@ public final class KeyStoreHelper {
      // Cipher operations are not thread-safe so we synchronize over them through doFinal to
      // prevent crashes with quickly repeated encrypt/decrypt operations
      // https://github.com/mozilla-mobile/android-components/issues/5342
-      synchronized (lock) {
+      synchronized (CIPHER_LOCK) {
        Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding");
        cipher.init(Cipher.ENCRYPT_MODE, secretKey);

@@ -75,7 +73,7 @@ public final class KeyStoreHelper {
      // Cipher operations are not thread-safe so we synchronize over them through doFinal to
      // prevent crashes with quickly repeated encrypt/decrypt operations
      // https://github.com/mozilla-mobile/android-components/issues/5342
-      synchronized (lock) {
+      synchronized (CIPHER_LOCK) {
        Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding");
        cipher.init(Cipher.DECRYPT_MODE, secretKey, new GCMParameterSpec(128, sealedData.iv));

@@ -208,7 +206,5 @@ public final class KeyStoreHelper {
        return Base64.decode(p.getValueAsString(), Base64.NO_WRAP | Base64.NO_PADDING);
      }
    }
-
  }
-
 }
--- a/app/src/main/java/org/thoughtcrime/securesms/logging/LogFile.java
+++ b/app/src/main/java/org/thoughtcrime/securesms/logging/LogFile.java
@@ -1,5 +1,7 @@
 package org.thoughtcrime.securesms.logging;

+import static org.session.libsignal.crypto.CipherUtil.CIPHER_LOCK;
+
 import androidx.annotation.NonNull;

 import org.session.libsession.utilities.Conversions;
@@ -66,15 +68,17 @@ class LogFile {

      byte[] plaintext = entry.getBytes();
      try {
-        cipher.init(Cipher.ENCRYPT_MODE, new SecretKeySpec(secret, "AES"), new IvParameterSpec(ivBuffer));
+        synchronized (CIPHER_LOCK) {
+          cipher.init(Cipher.ENCRYPT_MODE, new SecretKeySpec(secret, "AES"), new IvParameterSpec(ivBuffer));

-        int    cipherLength = cipher.getOutputSize(plaintext.length);
-        byte[] ciphertext   = ciphertextBuffer.get(cipherLength);
-        cipherLength = cipher.doFinal(plaintext, 0, plaintext.length, ciphertext);
+          int cipherLength = cipher.getOutputSize(plaintext.length);
+          byte[] ciphertext = ciphertextBuffer.get(cipherLength);
+          cipherLength = cipher.doFinal(plaintext, 0, plaintext.length, ciphertext);

-        outputStream.write(ivBuffer);
-        outputStream.write(Conversions.intToByteArray(cipherLength));
-        outputStream.write(ciphertext, 0, cipherLength);
+          outputStream.write(ivBuffer);
+          outputStream.write(Conversions.intToByteArray(cipherLength));
+          outputStream.write(ciphertext, 0, cipherLength);
+        }

        outputStream.flush();
      } catch (ShortBufferException | InvalidAlgorithmParameterException | InvalidKeyException | BadPaddingException | IllegalBlockSizeException e) {
@@ -134,10 +138,11 @@ class LogFile {
        Util.readFully(inputStream, ciphertext, length);

        try {
-          cipher.init(Cipher.DECRYPT_MODE, new SecretKeySpec(secret, "AES"), new IvParameterSpec(ivBuffer));
-          byte[] plaintext = cipher.doFinal(ciphertext, 0, length);
-
-          return new String(plaintext);
+          synchronized (CIPHER_LOCK) {
+            cipher.init(Cipher.DECRYPT_MODE, new SecretKeySpec(secret, "AES"), new IvParameterSpec(ivBuffer));
+            byte[] plaintext = cipher.doFinal(ciphertext, 0, length);
+            return new String(plaintext);
+          }
        } catch (InvalidKeyException | InvalidAlgorithmParameterException | IllegalBlockSizeException | BadPaddingException e) {
          throw new AssertionError(e);
        }