Signal-Android/app/src/main/java/org/thoughtcrime/securesms/keyvalue/KbsValues.java

package org.thoughtcrime.securesms.keyvalue;

import androidx.annotation.NonNull;
import androidx.annotation.Nullable;

import org.thoughtcrime.securesms.logging.Log;
import org.thoughtcrime.securesms.util.Base64;
import org.thoughtcrime.securesms.util.JsonUtils;
import org.whispersystems.signalservice.api.KbsPinData;
import org.whispersystems.signalservice.api.kbs.MasterKey;
import org.whispersystems.signalservice.internal.contacts.entities.TokenResponse;

import java.io.IOException;
import java.security.SecureRandom;

public final class KbsValues {

  public  static final String V2_LOCK_ENABLED     = "kbs.v2_lock_enabled";
  private static final String MASTER_KEY          = "kbs.registration_lock_master_key";
  private static final String TOKEN_RESPONSE      = "kbs.token_response";
  private static final String LOCK_LOCAL_PIN_HASH = "kbs.registration_lock_local_pin_hash";

  private final KeyValueStore store;

  KbsValues(KeyValueStore store) {
    this.store = store;
  }

  /**
   * Deliberately does not clear the {@link #MASTER_KEY}.
   */
  public void clearRegistrationLockAndPin() {
    store.beginWrite()
         .remove(V2_LOCK_ENABLED)
         .remove(TOKEN_RESPONSE)
         .remove(LOCK_LOCAL_PIN_HASH)
         .commit();
  }

  public synchronized void setKbsMasterKey(@NonNull KbsPinData pinData, @NonNull String localPinHash) {
    MasterKey masterKey     = pinData.getMasterKey();
    String    tokenResponse;
    try {
      tokenResponse = JsonUtils.toJson(pinData.getTokenResponse());
    } catch (IOException e) {
      throw new AssertionError(e);
    }

    store.beginWrite()
         .putString(TOKEN_RESPONSE, tokenResponse)
         .putBlob(MASTER_KEY, masterKey.serialize())
         .putString(LOCK_LOCAL_PIN_HASH, localPinHash)
         .commit();
  }

  public synchronized void setV2RegistrationLockEnabled(boolean enabled) {
    store.beginWrite().putBoolean(V2_LOCK_ENABLED, enabled).apply();
  }

  public synchronized boolean isV2RegistrationLockEnabled() {
    return store.getBoolean(V2_LOCK_ENABLED, false);
  }

  /**
   * Finds or creates the master key. Therefore this will always return a master key whether backed
   * up or not.
   * <p>
   * If you only want a key when it's backed up, use {@link #getPinBackedMasterKey()}.
   */
  public synchronized @NonNull MasterKey getOrCreateMasterKey() {
    byte[] blob = store.getBlob(MASTER_KEY, null);

    if (blob == null) {
      store.beginWrite()
           .putBlob(MASTER_KEY, MasterKey.createNew(new SecureRandom()).serialize())
           .commit();
      blob = store.getBlob(MASTER_KEY, null);
    }

    return new MasterKey(blob);
  }

  /**
   * Returns null if master key is not backed up by a pin.
   */
  public synchronized @Nullable MasterKey getPinBackedMasterKey() {
    if (!isV2RegistrationLockEnabled()) return null;
    return getMasterKey();
  }

  private synchronized @Nullable MasterKey getMasterKey() {
    byte[] blob = store.getBlob(MASTER_KEY, null);
    return blob != null ? new MasterKey(blob) : null;
  }

  public @Nullable String getRegistrationLockToken() {
    MasterKey masterKey = getPinBackedMasterKey();
    if (masterKey == null) {
      return null;
    } else {
      return masterKey.deriveRegistrationLock();
    }
  }

  public synchronized @Nullable String getLocalPinHash() {
    return store.getString(LOCK_LOCAL_PIN_HASH, null);
  }

  public synchronized boolean hasPin() {
    return getLocalPinHash() != null;
  }

  public synchronized @Nullable TokenResponse getRegistrationLockTokenResponse() {
    String token = store.getString(TOKEN_RESPONSE, null);

    if (token == null) return null;

    try {
      return JsonUtils.fromJson(token, TokenResponse.class);
    } catch (IOException e) {
      throw new AssertionError(e);
    }
  }
}
Use SignalStore for KBS Values. 2020-01-17 17:14:54 +01:00			`package org.thoughtcrime.securesms.keyvalue;`

Replace pinstretcher with Argon2 and new PIN encryption. 2020-01-22 21:02:06 +01:00			`import androidx.annotation.NonNull;`
Use SignalStore for KBS Values. 2020-01-17 17:14:54 +01:00			`import androidx.annotation.Nullable;`

Separate PINs from Registration Lock. You can now have a PIN without having registration lock. Note: We still need to change the registration flow to allow non-reglock users to enter their PIN. 2020-04-02 23:09:25 +02:00			`import org.thoughtcrime.securesms.logging.Log;`
			`import org.thoughtcrime.securesms.util.Base64;`
Use SignalStore for KBS Values. 2020-01-17 17:14:54 +01:00			`import org.thoughtcrime.securesms.util.JsonUtils;`
Separate PINs from Registration Lock. You can now have a PIN without having registration lock. Note: We still need to change the registration flow to allow non-reglock users to enter their PIN. 2020-04-02 23:09:25 +02:00			`import org.whispersystems.signalservice.api.KbsPinData;`
Hmac-SIV encryption/decryption. 2020-01-17 19:31:30 +01:00			`import org.whispersystems.signalservice.api.kbs.MasterKey;`
Use SignalStore for KBS Values. 2020-01-17 17:14:54 +01:00			`import org.whispersystems.signalservice.internal.contacts.entities.TokenResponse;`

			`import java.io.IOException;`
Replace pinstretcher with Argon2 and new PIN encryption. 2020-01-22 21:02:06 +01:00			`import java.security.SecureRandom;`
Use SignalStore for KBS Values. 2020-01-17 17:14:54 +01:00
			`public final class KbsValues {`

Separate PINs from Registration Lock. You can now have a PIN without having registration lock. Note: We still need to change the registration flow to allow non-reglock users to enter their PIN. 2020-04-02 23:09:25 +02:00			`public static final String V2_LOCK_ENABLED = "kbs.v2_lock_enabled";`
Replace pinstretcher with Argon2 and new PIN encryption. 2020-01-22 21:02:06 +01:00			`private static final String MASTER_KEY = "kbs.registration_lock_master_key";`
			`private static final String TOKEN_RESPONSE = "kbs.token_response";`
			`private static final String LOCK_LOCAL_PIN_HASH = "kbs.registration_lock_local_pin_hash";`
Use SignalStore for KBS Values. 2020-01-17 17:14:54 +01:00
			`private final KeyValueStore store;`

			`KbsValues(KeyValueStore store) {`
			`this.store = store;`
			`}`

Replace pinstretcher with Argon2 and new PIN encryption. 2020-01-22 21:02:06 +01:00			`/**`
			`* Deliberately does not clear the {@link #MASTER_KEY}.`
			`*/`
Separate PINs from Registration Lock. You can now have a PIN without having registration lock. Note: We still need to change the registration flow to allow non-reglock users to enter their PIN. 2020-04-02 23:09:25 +02:00			`public void clearRegistrationLockAndPin() {`
Replace pinstretcher with Argon2 and new PIN encryption. 2020-01-22 21:02:06 +01:00			`store.beginWrite()`
			`.remove(V2_LOCK_ENABLED)`
			`.remove(TOKEN_RESPONSE)`
			`.remove(LOCK_LOCAL_PIN_HASH)`
			`.commit();`
			`}`
Use SignalStore for KBS Values. 2020-01-17 17:14:54 +01:00
Separate PINs from Registration Lock. You can now have a PIN without having registration lock. Note: We still need to change the registration flow to allow non-reglock users to enter their PIN. 2020-04-02 23:09:25 +02:00			`public synchronized void setKbsMasterKey(@NonNull KbsPinData pinData, @NonNull String localPinHash) {`
			`MasterKey masterKey = pinData.getMasterKey();`
Replace pinstretcher with Argon2 and new PIN encryption. 2020-01-22 21:02:06 +01:00			`String tokenResponse;`
			`try {`
Separate PINs from Registration Lock. You can now have a PIN without having registration lock. Note: We still need to change the registration flow to allow non-reglock users to enter their PIN. 2020-04-02 23:09:25 +02:00			`tokenResponse = JsonUtils.toJson(pinData.getTokenResponse());`
Replace pinstretcher with Argon2 and new PIN encryption. 2020-01-22 21:02:06 +01:00			`} catch (IOException e) {`
			`throw new AssertionError(e);`
Use SignalStore for KBS Values. 2020-01-17 17:14:54 +01:00			`}`

Replace pinstretcher with Argon2 and new PIN encryption. 2020-01-22 21:02:06 +01:00			`store.beginWrite()`
			`.putString(TOKEN_RESPONSE, tokenResponse)`
			`.putBlob(MASTER_KEY, masterKey.serialize())`
			`.putString(LOCK_LOCAL_PIN_HASH, localPinHash)`
			`.commit();`
Use SignalStore for KBS Values. 2020-01-17 17:14:54 +01:00			`}`

Separate PINs from Registration Lock. You can now have a PIN without having registration lock. Note: We still need to change the registration flow to allow non-reglock users to enter their PIN. 2020-04-02 23:09:25 +02:00			`public synchronized void setV2RegistrationLockEnabled(boolean enabled) {`
			`store.beginWrite().putBoolean(V2_LOCK_ENABLED, enabled).apply();`
			`}`

			`public synchronized boolean isV2RegistrationLockEnabled() {`
			`return store.getBoolean(V2_LOCK_ENABLED, false);`
			`}`

Replace pinstretcher with Argon2 and new PIN encryption. 2020-01-22 21:02:06 +01:00			`/**`
			`* Finds or creates the master key. Therefore this will always return a master key whether backed`
			`* up or not.`
			`* <p>`
			`* If you only want a key when it's backed up, use {@link #getPinBackedMasterKey()}.`
			`*/`
			`public synchronized @NonNull MasterKey getOrCreateMasterKey() {`
			`byte[] blob = store.getBlob(MASTER_KEY, null);`

			`if (blob == null) {`
			`store.beginWrite()`
			`.putBlob(MASTER_KEY, MasterKey.createNew(new SecureRandom()).serialize())`
			`.commit();`
			`blob = store.getBlob(MASTER_KEY, null);`
Hmac-SIV encryption/decryption. 2020-01-17 19:31:30 +01:00			`}`
Replace pinstretcher with Argon2 and new PIN encryption. 2020-01-22 21:02:06 +01:00
			`return new MasterKey(blob);`
			`}`

			`/**`
			`* Returns null if master key is not backed up by a pin.`
			`*/`
			`public synchronized @Nullable MasterKey getPinBackedMasterKey() {`
			`if (!isV2RegistrationLockEnabled()) return null;`
			`return getMasterKey();`
			`}`

			`private synchronized @Nullable MasterKey getMasterKey() {`
			`byte[] blob = store.getBlob(MASTER_KEY, null);`
			`return blob != null ? new MasterKey(blob) : null;`
Use SignalStore for KBS Values. 2020-01-17 17:14:54 +01:00			`}`

			`public @Nullable String getRegistrationLockToken() {`
Replace pinstretcher with Argon2 and new PIN encryption. 2020-01-22 21:02:06 +01:00			`MasterKey masterKey = getPinBackedMasterKey();`
			`if (masterKey == null) {`
			`return null;`
			`} else {`
			`return masterKey.deriveRegistrationLock();`
			`}`
Use SignalStore for KBS Values. 2020-01-17 17:14:54 +01:00			`}`

Re-enable and clean up Signal PINs. - Require PINs during registration agian. - Change min length to 4. - Allow the full-screen megaphone to be enabled remotely. - Clean up and remove some code. 2020-04-02 01:55:18 +02:00			`public synchronized @Nullable String getLocalPinHash() {`
Replace pinstretcher with Argon2 and new PIN encryption. 2020-01-22 21:02:06 +01:00			`return store.getString(LOCK_LOCAL_PIN_HASH, null);`
Use SignalStore for KBS Values. 2020-01-17 17:14:54 +01:00			`}`

Separate PINs from Registration Lock. You can now have a PIN without having registration lock. Note: We still need to change the registration flow to allow non-reglock users to enter their PIN. 2020-04-02 23:09:25 +02:00			`public synchronized boolean hasPin() {`
			`return getLocalPinHash() != null;`
Use SignalStore for KBS Values. 2020-01-17 17:14:54 +01:00			`}`

Re-enable and clean up Signal PINs. - Require PINs during registration agian. - Change min length to 4. - Allow the full-screen megaphone to be enabled remotely. - Clean up and remove some code. 2020-04-02 01:55:18 +02:00			`public synchronized @Nullable TokenResponse getRegistrationLockTokenResponse() {`
Replace pinstretcher with Argon2 and new PIN encryption. 2020-01-22 21:02:06 +01:00			`String token = store.getString(TOKEN_RESPONSE, null);`
Use SignalStore for KBS Values. 2020-01-17 17:14:54 +01:00
			`if (token == null) return null;`

			`try {`
			`return JsonUtils.fromJson(token, TokenResponse.class);`
			`} catch (IOException e) {`
			`throw new AssertionError(e);`
			`}`
			`}`
			`}`