Rely on built-in OpenSSL crypto functions in libtgvoip

Author: vkryl

app/jni/CMakeLists.txt

@@ -17,6 +17,9 @@ set(SSL_DIR "${THIRDPARTY_DIR}/openssl/android_static/${ANDROID_ABI}")
 set(SSL_LIB_PATH "${SSL_DIR}/lib/libssl.a")
 set(CRYPTO_LIB_PATH "${SSL_DIR}/lib/libcrypto.a")
 
+set(LINK_TDLIB yes)
+set(USE_TDLIB_CRYPTO no)
+
 # Using webp only if building for 32-bit platform
 if (${ANDROID_ABI} STREQUAL "armeabi-v7a" OR ${ANDROID_ABI} STREQUAL "x86")
   set(USE_WEBP yes)
@@ -129,14 +132,18 @@ set(CMAKE_SHARED_LINKER_FLAGS "${CMAKE_SHARED_LINKER_FLAGS} ${ADD_LINKER_FLAGS}"
 # == Libraries ==
 
 # tdjni
-add_library(tdjni SHARED IMPORTED)
-set_target_properties(tdjni PROPERTIES IMPORTED_LOCATION
-  "${TDLIB_DIR}/src/main/libs/${ANDROID_ABI}/libtdjni.so"
-)
-if(${CMAKE_VERSION} VERSION_GREATER_EQUAL "3.11.0")
-  target_include_directories(tdjni INTERFACE
-    "${TDLIB_DIR}/include"
+if (${LINK_TDLIB})
+  add_library(tdjni SHARED IMPORTED)
+  set_target_properties(tdjni PROPERTIES IMPORTED_LOCATION
+    "${TDLIB_DIR}/src/main/libs/${ANDROID_ABI}/libtdjni.so"
   )
+  if (${USE_TDLIB_CRYPTO})
+    if(${CMAKE_VERSION} VERSION_GREATER_EQUAL "3.11.0")
+      target_include_directories(tdjni INTERFACE
+        "${TDLIB_DIR}/include"
+      )
+    endif()
+  endif()
 endif()
 
 # crypto
@@ -250,10 +257,12 @@ target_include_directories(${NATIVE_LIB} PRIVATE
   "${THIRDPARTY_DIR}"
   .
 )
-if(${CMAKE_VERSION} VERSION_LESS "3.11.0")
-  target_include_directories(${NATIVE_LIB} PRIVATE
-    "${TDLIB_DIR}/include"
-  )
+if (${LINK_TDLIB} AND ${USE_TDLIB_CRYPTO})
+  if(${CMAKE_VERSION} VERSION_LESS "3.11.0")
+    target_include_directories(${NATIVE_LIB} PRIVATE
+      "${TDLIB_DIR}/include"
+    )
+  endif()
 endif()
 
 target_compile_definitions(${NATIVE_LIB} PUBLIC
@@ -273,8 +282,14 @@ target_compile_options(${NATIVE_LIB} PUBLIC
 
 # == Linking dependencies ==
 
+if(${LINK_TDLIB})
+  target_link_libraries(${NATIVE_LIB} tdjni)
+  if (${USE_TDLIB_CRYPTO})
+    target_compile_definitions(${NATIVE_LIB} PRIVATE HAVE_TDLIB_CRYPTO)
+  endif()
+endif()
+
 target_link_libraries(${NATIVE_LIB}
-  tdjni
   jni-utils
   flac
   tgvoip

app/jni/tgvoip.cpp

@@ -14,9 +14,68 @@
  */
 
 #include <libtgvoip/VoIPController.h>
-#include <tdjni/telegram_crypto.h>
 #include <libtgvoip/client/android/tg_voip_jni.h>
 
+#ifdef HAVE_TDLIB_CRYPTO
+#include <tdjni/telegram_crypto.h>
+#else
+
+extern "C" {
+#include <openssl/sha.h>
+#include <openssl/aes.h>
+#ifndef OPENSSL_IS_BORINGSSL
+#include <openssl/modes.h>
+#endif
+#include <openssl/rand.h>
+}
+
+void telegram_aes_ige_encrypt(uint8_t* in, uint8_t* out, size_t length, uint8_t* key, uint8_t* iv){
+  AES_KEY akey;
+  AES_set_encrypt_key(key, 32*8, &akey);
+  AES_ige_encrypt(in, out, length, &akey, iv, AES_ENCRYPT);
+}
+
+void telegram_aes_ige_decrypt(uint8_t* in, uint8_t* out, size_t length, uint8_t* key, uint8_t* iv){
+  AES_KEY akey;
+  AES_set_decrypt_key(key, 32*8, &akey);
+  AES_ige_encrypt(in, out, length, &akey, iv, AES_DECRYPT);
+}
+
+void telegram_rand_bytes(uint8_t* buffer, size_t len){
+  RAND_bytes(buffer, len);
+}
+
+void telegram_sha1(uint8_t* msg, size_t len, uint8_t* output){
+  SHA1(msg, len, output);
+}
+
+void telegram_sha256(uint8_t* msg, size_t len, uint8_t* output){
+  SHA256(msg, len, output);
+}
+
+void telegram_aes_ctr_encrypt(uint8_t* inout, size_t length, uint8_t* key, uint8_t* iv, uint8_t* ecount, uint32_t* num){
+  AES_KEY akey;
+  AES_set_encrypt_key(key, 32*8, &akey);
+#ifdef OPENSSL_IS_BORINGSSL
+  AES_ctr128_encrypt(inout, inout, length, &akey, iv, ecount, num);
+#else
+  CRYPTO_ctr128_encrypt(inout, inout, length, &akey, iv, ecount, num, (block128_f) AES_encrypt);
+#endif
+}
+
+void telegram_aes_cbc_encrypt(uint8_t* in, uint8_t* out, size_t length, uint8_t* key, uint8_t* iv){
+  AES_KEY akey;
+  AES_set_encrypt_key(key, 256, &akey);
+  AES_cbc_encrypt(in, out, length, &akey, iv, AES_ENCRYPT);
+}
+
+void telegram_aes_cbc_decrypt(uint8_t* in, uint8_t* out, size_t length, uint8_t* key, uint8_t* iv){
+  AES_KEY akey;
+  AES_set_decrypt_key(key, 256, &akey);
+  AES_cbc_encrypt(in, out, length, &akey, iv, AES_DECRYPT);
+}
+#endif
+
 extern "C" {
 int voipOnJNILoad(JavaVM *vm, JNIEnv *env) {
   tgvoip::VoIPController::crypto.sha1 = &telegram_sha1;
@@ -25,6 +84,10 @@ int voipOnJNILoad(JavaVM *vm, JNIEnv *env) {
   tgvoip::VoIPController::crypto.aes_ige_encrypt = &telegram_aes_ige_encrypt;
   tgvoip::VoIPController::crypto.aes_ige_decrypt = &telegram_aes_ige_decrypt;
   tgvoip::VoIPController::crypto.aes_ctr_encrypt = &telegram_aes_ctr_encrypt;
+#ifndef HAVE_TDLIB_CRYPTO
+  tgvoip::VoIPController::crypto.aes_cbc_decrypt = &telegram_aes_cbc_decrypt;
+  tgvoip::VoIPController::crypto.aes_cbc_encrypt = &telegram_aes_cbc_encrypt;
+#endif
   tgvoipRegisterNatives(env);
   return 0;
 }

app/src/main/java/org/thunderdog/challegram/ui/CallController.java

@@ -38,6 +38,7 @@
 
 import org.drinkless.td.libcore.telegram.TdApi;
 import org.thunderdog.challegram.BaseActivity;
+import org.thunderdog.challegram.BuildConfig;
 import org.thunderdog.challegram.Log;
 import org.thunderdog.challegram.R;
 import org.thunderdog.challegram.core.Lang;
@@ -433,7 +434,7 @@ protected void onDraw(Canvas c){
     brandView.setEllipsize(TextUtils.TruncateAt.END);
     brandView.setLayoutParams(lp);
     brandView.setText(Lang.getString(R.string.VoipBranding).toUpperCase());
-    if (Log.checkLogLevel(Log.LEVEL_INFO)) {
+    if (Log.checkLogLevel(Log.LEVEL_INFO) || BuildConfig.EXPERIMENTAL) {
       brandView.setOnClickListener(new View.OnClickListener() {
         @Override
         public void onClick (View v) {