BasicCertificateChainCleaner.smali
.class public final Ldc/squareup/okhttp3/internal/tls/BasicCertificateChainCleaner;
.super Ldc/squareup/okhttp3/internal/tls/CertificateChainCleaner;
# static fields
.field private static final MAX_SIGNERS:I = 0x9
# instance fields
.field private final trustRootIndex:Ldc/squareup/okhttp3/internal/tls/TrustRootIndex;
# direct methods
.method public constructor <init>(Ldc/squareup/okhttp3/internal/tls/TrustRootIndex;)V
.registers 2
.line 1
invoke-direct {p0}, Ldc/squareup/okhttp3/internal/tls/CertificateChainCleaner;-><init>()V
.line 2
iput-object p1, p0, Ldc/squareup/okhttp3/internal/tls/BasicCertificateChainCleaner;->trustRootIndex:Ldc/squareup/okhttp3/internal/tls/TrustRootIndex;
return-void
.end method
.method private verifySignature(Ljava/security/cert/X509Certificate;Ljava/security/cert/X509Certificate;)Z
.registers 5
.line 1
invoke-virtual {p1}, Ljava/security/cert/X509Certificate;->getIssuerDN()Ljava/security/Principal;
move-result-object v0
invoke-virtual {p2}, Ljava/security/cert/X509Certificate;->getSubjectDN()Ljava/security/Principal;
move-result-object v1
invoke-interface {v0, v1}, Ljava/security/Principal;->equals(Ljava/lang/Object;)Z
move-result v0
const/4 v1, 0x0
if-nez v0, :cond_10
return v1
.line 3
:cond_10
:try_start_10
invoke-virtual {p2}, Ljava/security/cert/X509Certificate;->getPublicKey()Ljava/security/PublicKey;
move-result-object p2
invoke-virtual {p1, p2}, Ljava/security/cert/X509Certificate;->verify(Ljava/security/PublicKey;)V
:try_end_17
.catch Ljava/security/GeneralSecurityException; {:try_start_10 .. :try_end_17} :catch_19
const/4 p1, 0x1
return p1
:catch_19
return v1
.end method
# virtual methods
.method public clean(Ljava/util/List;Ljava/lang/String;)Ljava/util/List;
.registers 9
.annotation system Ldalvik/annotation/Signature;
value = {
"(",
"Ljava/util/List<",
"Ljava/security/cert/Certificate;",
">;",
"Ljava/lang/String;",
")",
"Ljava/util/List<",
"Ljava/security/cert/Certificate;",
">;"
}
.end annotation
.annotation system Ldalvik/annotation/Throws;
value = {
Ljavax/net/ssl/SSLPeerUnverifiedException;
}
.end annotation
.line 1
new-instance p2, Ljava/util/ArrayDeque;
invoke-direct {p2, p1}, Ljava/util/ArrayDeque;-><init>(Ljava/util/Collection;)V
.line 2
new-instance p1, Ljava/util/ArrayList;
invoke-direct {p1}, Ljava/util/ArrayList;-><init>()V
.line 3
invoke-interface {p2}, Ljava/util/Deque;->removeFirst()Ljava/lang/Object;
move-result-object v0
check-cast v0, Ljava/security/cert/Certificate;
invoke-interface {p1, v0}, Ljava/util/List;->add(Ljava/lang/Object;)Z
const/4 v0, 0x0
move v1, v0
:goto_15
const/16 v2, 0x9
if-ge v0, v2, :cond_7e
.line 8
invoke-interface {p1}, Ljava/util/List;->size()I
move-result v2
const/4 v3, 0x1
sub-int/2addr v2, v3
invoke-interface {p1, v2}, Ljava/util/List;->get(I)Ljava/lang/Object;
move-result-object v2
check-cast v2, Ljava/security/cert/X509Certificate;
.line 13
iget-object v4, p0, Ldc/squareup/okhttp3/internal/tls/BasicCertificateChainCleaner;->trustRootIndex:Ldc/squareup/okhttp3/internal/tls/TrustRootIndex;
invoke-interface {v4, v2}, Ldc/squareup/okhttp3/internal/tls/TrustRootIndex;->findByIssuerAndSignature(Ljava/security/cert/X509Certificate;)Ljava/security/cert/X509Certificate;
move-result-object v4
if-eqz v4, :cond_45
.line 15
invoke-interface {p1}, Ljava/util/List;->size()I
move-result v1
if-gt v1, v3, :cond_39
invoke-virtual {v2, v4}, Ljava/security/cert/X509Certificate;->equals(Ljava/lang/Object;)Z
move-result v1
if-nez v1, :cond_3c
.line 16
:cond_39
invoke-interface {p1, v4}, Ljava/util/List;->add(Ljava/lang/Object;)Z
.line 18
:cond_3c
invoke-direct {p0, v4, v4}, Ldc/squareup/okhttp3/internal/tls/BasicCertificateChainCleaner;->verifySignature(Ljava/security/cert/X509Certificate;Ljava/security/cert/X509Certificate;)Z
move-result v1
if-eqz v1, :cond_43
return-object p1
:cond_43
move v1, v3
goto :goto_61
.line 27
:cond_45
invoke-interface {p2}, Ljava/util/Deque;->iterator()Ljava/util/Iterator;
move-result-object v3
:cond_49
invoke-interface {v3}, Ljava/util/Iterator;->hasNext()Z
move-result v4
if-eqz v4, :cond_64
.line 28
invoke-interface {v3}, Ljava/util/Iterator;->next()Ljava/lang/Object;
move-result-object v4
check-cast v4, Ljava/security/cert/X509Certificate;
.line 29
invoke-direct {p0, v2, v4}, Ldc/squareup/okhttp3/internal/tls/BasicCertificateChainCleaner;->verifySignature(Ljava/security/cert/X509Certificate;Ljava/security/cert/X509Certificate;)Z
move-result v5
if-eqz v5, :cond_49
.line 30
invoke-interface {v3}, Ljava/util/Iterator;->remove()V
.line 31
invoke-interface {p1, v4}, Ljava/util/List;->add(Ljava/lang/Object;)Z
:goto_61
add-int/lit8 v0, v0, 0x1
goto :goto_15
:cond_64
if-eqz v1, :cond_67
return-object p1
.line 42
:cond_67
new-instance p1, Ljavax/net/ssl/SSLPeerUnverifiedException;
new-instance p2, Ljava/lang/StringBuilder;
invoke-direct {p2}, Ljava/lang/StringBuilder;-><init>()V
const-string v0, "Failed to find a trusted cert that signed "
invoke-virtual {p2, v0}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;
invoke-virtual {p2, v2}, Ljava/lang/StringBuilder;->append(Ljava/lang/Object;)Ljava/lang/StringBuilder;
invoke-virtual {p2}, Ljava/lang/StringBuilder;->toString()Ljava/lang/String;
move-result-object p2
invoke-direct {p1, p2}, Ljavax/net/ssl/SSLPeerUnverifiedException;-><init>(Ljava/lang/String;)V
throw p1
.line 46
:cond_7e
new-instance p2, Ljavax/net/ssl/SSLPeerUnverifiedException;
new-instance v0, Ljava/lang/StringBuilder;
invoke-direct {v0}, Ljava/lang/StringBuilder;-><init>()V
const-string v1, "Certificate chain too long: "
invoke-virtual {v0, v1}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;
invoke-virtual {v0, p1}, Ljava/lang/StringBuilder;->append(Ljava/lang/Object;)Ljava/lang/StringBuilder;
invoke-virtual {v0}, Ljava/lang/StringBuilder;->toString()Ljava/lang/String;
move-result-object p1
invoke-direct {p2, p1}, Ljavax/net/ssl/SSLPeerUnverifiedException;-><init>(Ljava/lang/String;)V
throw p2
.end method
.method public equals(Ljava/lang/Object;)Z
.registers 4
const/4 v0, 0x1
if-ne p1, p0, :cond_4
return v0
.line 1
:cond_4
instance-of v1, p1, Ldc/squareup/okhttp3/internal/tls/BasicCertificateChainCleaner;
if-eqz v1, :cond_15
check-cast p1, Ldc/squareup/okhttp3/internal/tls/BasicCertificateChainCleaner;
iget-object p1, p1, Ldc/squareup/okhttp3/internal/tls/BasicCertificateChainCleaner;->trustRootIndex:Ldc/squareup/okhttp3/internal/tls/TrustRootIndex;
iget-object v1, p0, Ldc/squareup/okhttp3/internal/tls/BasicCertificateChainCleaner;->trustRootIndex:Ldc/squareup/okhttp3/internal/tls/TrustRootIndex;
.line 2
invoke-virtual {p1, v1}, Ljava/lang/Object;->equals(Ljava/lang/Object;)Z
move-result p1
if-eqz p1, :cond_15
goto :goto_16
:cond_15
const/4 v0, 0x0
:goto_16
return v0
.end method
.method public hashCode()I
.registers 2
.line 1
iget-object v0, p0, Ldc/squareup/okhttp3/internal/tls/BasicCertificateChainCleaner;->trustRootIndex:Ldc/squareup/okhttp3/internal/tls/TrustRootIndex;
invoke-virtual {v0}, Ljava/lang/Object;->hashCode()I
move-result v0
return v0
.end method