BasicCertificateChainCleaner.smali
.class public final Lokhttp3/internal/tls/BasicCertificateChainCleaner;
.super Lokhttp3/internal/tls/CertificateChainCleaner;
.source "BasicCertificateChainCleaner.java"
# static fields
.field private static final MAX_SIGNERS:I
# instance fields
.field private final trustRootIndex:Lokhttp3/internal/tls/TrustRootIndex;
# direct methods
.method static constructor <clinit>()V
.registers 1
const v0, 0x1566
invoke-static {v0}, Lnp/NPFog;->d(I)I
move-result v0
sput v0, Lokhttp3/internal/tls/BasicCertificateChainCleaner;->MAX_SIGNERS:I
return-void
.end method
.method public constructor <init>(Lokhttp3/internal/tls/TrustRootIndex;)V
.registers 2
.param p1, "trustRootIndex" # Lokhttp3/internal/tls/TrustRootIndex;
.line 43
invoke-direct {p0}, Lokhttp3/internal/tls/CertificateChainCleaner;-><init>()V
.line 44
iput-object p1, p0, Lokhttp3/internal/tls/BasicCertificateChainCleaner;->trustRootIndex:Lokhttp3/internal/tls/TrustRootIndex;
.line 45
return-void
.end method
.method private verifySignature(Ljava/security/cert/X509Certificate;Ljava/security/cert/X509Certificate;)Z
.registers 5
.param p1, "toVerify" # Ljava/security/cert/X509Certificate;
.param p2, "signingCert" # Ljava/security/cert/X509Certificate;
.line 106
invoke-virtual {p1}, Ljava/security/cert/X509Certificate;->getIssuerDN()Ljava/security/Principal;
move-result-object v0
invoke-virtual {p2}, Ljava/security/cert/X509Certificate;->getSubjectDN()Ljava/security/Principal;
move-result-object v1
invoke-interface {v0, v1}, Ljava/security/Principal;->equals(Ljava/lang/Object;)Z
move-result v0
const/4 v1, 0x0
if-nez v0, :cond_10
return v1
.line 108
:cond_10
:try_start_10
invoke-virtual {p2}, Ljava/security/cert/X509Certificate;->getPublicKey()Ljava/security/PublicKey;
move-result-object v0
invoke-virtual {p1, v0}, Ljava/security/cert/X509Certificate;->verify(Ljava/security/PublicKey;)V
:try_end_17
.catch Ljava/security/GeneralSecurityException; {:try_start_10 .. :try_end_17} :catch_19
.line 109
const/4 v0, 0x1
return v0
.line 110
:catch_19
move-exception v0
.line 111
.local v0, "verifyFailed":Ljava/security/GeneralSecurityException;
return v1
.end method
# virtual methods
.method public clean(Ljava/util/List;Ljava/lang/String;)Ljava/util/List;
.registers 12
.param p2, "hostname" # Ljava/lang/String;
.annotation system Ldalvik/annotation/Signature;
value = {
"(",
"Ljava/util/List<",
"Ljava/security/cert/Certificate;",
">;",
"Ljava/lang/String;",
")",
"Ljava/util/List<",
"Ljava/security/cert/Certificate;",
">;"
}
.end annotation
.annotation system Ldalvik/annotation/Throws;
value = {
Ljavax/net/ssl/SSLPeerUnverifiedException;
}
.end annotation
.line 56
.local p1, "chain":Ljava/util/List;, "Ljava/util/List<Ljava/security/cert/Certificate;>;"
new-instance v0, Ljava/util/ArrayDeque;
invoke-direct {v0, p1}, Ljava/util/ArrayDeque;-><init>(Ljava/util/Collection;)V
.line 57
.local v0, "queue":Ljava/util/Deque;, "Ljava/util/Deque<Ljava/security/cert/Certificate;>;"
new-instance v1, Ljava/util/ArrayList;
invoke-direct {v1}, Ljava/util/ArrayList;-><init>()V
.line 58
.local v1, "result":Ljava/util/List;, "Ljava/util/List<Ljava/security/cert/Certificate;>;"
invoke-interface {v0}, Ljava/util/Deque;->removeFirst()Ljava/lang/Object;
move-result-object v2
invoke-interface {v1, v2}, Ljava/util/List;->add(Ljava/lang/Object;)Z
.line 59
const/4 v2, 0x0
.line 62
.local v2, "foundTrustedCertificate":Z
const/4 v3, 0x0
.local v3, "c":I
:goto_13
const/16 v4, 0x9
if-ge v3, v4, :cond_7e
.line 63
invoke-interface {v1}, Ljava/util/List;->size()I
move-result v4
const/4 v5, 0x1
sub-int/2addr v4, v5
invoke-interface {v1, v4}, Ljava/util/List;->get(I)Ljava/lang/Object;
move-result-object v4
check-cast v4, Ljava/security/cert/X509Certificate;
.line 68
.local v4, "toVerify":Ljava/security/cert/X509Certificate;
iget-object v6, p0, Lokhttp3/internal/tls/BasicCertificateChainCleaner;->trustRootIndex:Lokhttp3/internal/tls/TrustRootIndex;
invoke-interface {v6, v4}, Lokhttp3/internal/tls/TrustRootIndex;->findByIssuerAndSignature(Ljava/security/cert/X509Certificate;)Ljava/security/cert/X509Certificate;
move-result-object v6
.line 69
.local v6, "trustedCert":Ljava/security/cert/X509Certificate;
if-eqz v6, :cond_43
.line 70
invoke-interface {v1}, Ljava/util/List;->size()I
move-result v7
if-gt v7, v5, :cond_37
invoke-virtual {v4, v6}, Ljava/security/cert/X509Certificate;->equals(Ljava/lang/Object;)Z
move-result v5
if-nez v5, :cond_3a
.line 71
:cond_37
invoke-interface {v1, v6}, Ljava/util/List;->add(Ljava/lang/Object;)Z
.line 73
:cond_3a
invoke-direct {p0, v6, v6}, Lokhttp3/internal/tls/BasicCertificateChainCleaner;->verifySignature(Ljava/security/cert/X509Certificate;Ljava/security/cert/X509Certificate;)Z
move-result v5
if-eqz v5, :cond_41
.line 74
return-object v1
.line 76
:cond_41
const/4 v2, 0x1
.line 77
goto :goto_60
.line 82
:cond_43
invoke-interface {v0}, Ljava/util/Deque;->iterator()Ljava/util/Iterator;
move-result-object v5
.local v5, "i":Ljava/util/Iterator;, "Ljava/util/Iterator<Ljava/security/cert/Certificate;>;"
:goto_47
invoke-interface {v5}, Ljava/util/Iterator;->hasNext()Z
move-result v7
if-eqz v7, :cond_64
.line 83
invoke-interface {v5}, Ljava/util/Iterator;->next()Ljava/lang/Object;
move-result-object v7
check-cast v7, Ljava/security/cert/X509Certificate;
.line 84
.local v7, "signingCert":Ljava/security/cert/X509Certificate;
invoke-direct {p0, v4, v7}, Lokhttp3/internal/tls/BasicCertificateChainCleaner;->verifySignature(Ljava/security/cert/X509Certificate;Ljava/security/cert/X509Certificate;)Z
move-result v8
if-eqz v8, :cond_63
.line 85
invoke-interface {v5}, Ljava/util/Iterator;->remove()V
.line 86
invoke-interface {v1, v7}, Ljava/util/List;->add(Ljava/lang/Object;)Z
.line 87
nop
.line 62
.end local v4 # "toVerify":Ljava/security/cert/X509Certificate;
.end local v5 # "i":Ljava/util/Iterator;, "Ljava/util/Iterator<Ljava/security/cert/Certificate;>;"
.end local v6 # "trustedCert":Ljava/security/cert/X509Certificate;
.end local v7 # "signingCert":Ljava/security/cert/X509Certificate;
:goto_60
add-int/lit8 v3, v3, 0x1
goto :goto_13
.line 89
.restart local v4 # "toVerify":Ljava/security/cert/X509Certificate;
.restart local v5 # "i":Ljava/util/Iterator;, "Ljava/util/Iterator<Ljava/security/cert/Certificate;>;"
.restart local v6 # "trustedCert":Ljava/security/cert/X509Certificate;
:cond_63
goto :goto_47
.line 92
.end local v5 # "i":Ljava/util/Iterator;, "Ljava/util/Iterator<Ljava/security/cert/Certificate;>;"
:cond_64
if-eqz v2, :cond_67
.line 93
return-object v1
.line 97
:cond_67
new-instance v5, Ljavax/net/ssl/SSLPeerUnverifiedException;
new-instance v7, Ljava/lang/StringBuilder;
invoke-direct {v7}, Ljava/lang/StringBuilder;-><init>()V
const-string v8, "Failed to find a trusted cert that signed "
invoke-virtual {v7, v8}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;
invoke-virtual {v7, v4}, Ljava/lang/StringBuilder;->append(Ljava/lang/Object;)Ljava/lang/StringBuilder;
invoke-virtual {v7}, Ljava/lang/StringBuilder;->toString()Ljava/lang/String;
move-result-object v7
invoke-direct {v5, v7}, Ljavax/net/ssl/SSLPeerUnverifiedException;-><init>(Ljava/lang/String;)V
throw v5
.line 101
.end local v3 # "c":I
.end local v4 # "toVerify":Ljava/security/cert/X509Certificate;
.end local v6 # "trustedCert":Ljava/security/cert/X509Certificate;
:cond_7e
new-instance v3, Ljavax/net/ssl/SSLPeerUnverifiedException;
new-instance v4, Ljava/lang/StringBuilder;
invoke-direct {v4}, Ljava/lang/StringBuilder;-><init>()V
const-string v5, "Certificate chain too long: "
invoke-virtual {v4, v5}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;
invoke-virtual {v4, v1}, Ljava/lang/StringBuilder;->append(Ljava/lang/Object;)Ljava/lang/StringBuilder;
invoke-virtual {v4}, Ljava/lang/StringBuilder;->toString()Ljava/lang/String;
move-result-object v4
invoke-direct {v3, v4}, Ljavax/net/ssl/SSLPeerUnverifiedException;-><init>(Ljava/lang/String;)V
goto :goto_96
:goto_95
throw v3
:goto_96
goto :goto_95
.end method
.method public equals(Ljava/lang/Object;)Z
.registers 5
.param p1, "other" # Ljava/lang/Object;
.line 120
const/4 v0, 0x1
if-ne p1, p0, :cond_4
return v0
.line 121
:cond_4
instance-of v1, p1, Lokhttp3/internal/tls/BasicCertificateChainCleaner;
if-eqz v1, :cond_16
move-object v1, p1
check-cast v1, Lokhttp3/internal/tls/BasicCertificateChainCleaner;
iget-object v1, v1, Lokhttp3/internal/tls/BasicCertificateChainCleaner;->trustRootIndex:Lokhttp3/internal/tls/TrustRootIndex;
iget-object v2, p0, Lokhttp3/internal/tls/BasicCertificateChainCleaner;->trustRootIndex:Lokhttp3/internal/tls/TrustRootIndex;
.line 122
invoke-virtual {v1, v2}, Ljava/lang/Object;->equals(Ljava/lang/Object;)Z
move-result v1
if-eqz v1, :cond_16
goto :goto_17
:cond_16
const/4 v0, 0x0
.line 121
:goto_17
return v0
.end method
.method public hashCode()I
.registers 2
.line 116
iget-object v0, p0, Lokhttp3/internal/tls/BasicCertificateChainCleaner;->trustRootIndex:Lokhttp3/internal/tls/TrustRootIndex;
invoke-virtual {v0}, Ljava/lang/Object;->hashCode()I
move-result v0
return v0
.end method