From b22c463ab0d7d5a8507fcb5a438c791e8b856434 Mon Sep 17 00:00:00 2001
From: Dhiru Kholia <dhiru.kholia@gmail.com>
Date: Wed, 30 May 2018 14:03:07 +0530
Subject: [PATCH] Add support for non-ASCII passwords

---
 src/org/nick/abe/AndroidBackup.java | 24 +++++++++++++++++++++---
 1 file changed, 21 insertions(+), 3 deletions(-)

diff --git a/src/org/nick/abe/AndroidBackup.java b/src/org/nick/abe/AndroidBackup.java
index dfee538..cb5600a 100644
--- a/src/org/nick/abe/AndroidBackup.java
+++ b/src/org/nick/abe/AndroidBackup.java
@@ -121,8 +121,7 @@ public static void extractAsTar(String backupFilename, String filename,
 
                 // decrypt the master key blob
                 Cipher c = Cipher.getInstance(ENCRYPTION_MECHANISM);
-                // XXX we don't support non-ASCII passwords
-                SecretKey userKey = buildPasswordKey(password, userSalt, rounds, false);
+                SecretKey userKey = buildPasswordKey(password, userSalt, rounds, true);
                 byte[] IV = hexToByteArray(userIvHex);
                 IvParameterSpec ivSpec = new IvParameterSpec(IV);
                 c.init(Cipher.DECRYPT_MODE,
@@ -153,6 +152,25 @@ public static void extractAsTar(String backupFilename, String filename,
                     System.err.println("MK checksum: " + toHex(mkChecksum));
                 }
 
+                // checking pkcs5 padding (of length 13 or even 8) is enough to determine a wrong password
+                c = Cipher.getInstance("AES/CBC/NoPadding");
+                userKey = buildPasswordKey(password, userSalt, rounds, true);
+                byte[] IVCheck = hexToByteArray(userIvHex);
+                ivSpec = new IvParameterSpec(IVCheck);
+                c.init(Cipher.DECRYPT_MODE,
+                        new SecretKeySpec(userKey.getEncoded(), "AES"), ivSpec);
+                mkCipher = hexToByteArray(masterKeyBlobHex);
+                byte[] mkBlobCheck = c.doFinal(mkCipher);
+                int pad_byte  = mkBlobCheck[mkBlobCheck.length - 1];
+                if (pad_byte < 8) {
+                    System.err.println("PKCS5Padding is not correct, wrong password?");
+                } else {
+                    c = Cipher.getInstance(ENCRYPTION_MECHANISM);
+                    ivSpec = new IvParameterSpec(IV);
+                    c.init(Cipher.DECRYPT_MODE, new SecretKeySpec(mk, "AES"), ivSpec);
+                    cipherStream = new CipherInputStream(rawInStream, c);
+                }
+                /*
                 // now validate the decrypted master key against the checksum
                 // first try the algorithm matching the archive version
                 boolean useUtf = version >= BACKUP_FILE_V2;
@@ -172,7 +190,7 @@ public static void extractAsTar(String backupFilename, String filename,
                     // Only if all of the above worked properly will 'result' be
                     // assigned
                     cipherStream = new CipherInputStream(rawInStream, c);
-                }
+                } */
             }
 
             if (isEncrypted && cipherStream == null) {