CertificatePinner.smali
.class public final Lokhttp3/CertificatePinner;
.super Ljava/lang/Object;
# annotations
.annotation system Ldalvik/annotation/MemberClasses;
value = {
Lokhttp3/CertificatePinner$Builder;,
Lokhttp3/CertificatePinner$Pin;
}
.end annotation
# static fields
.field public static final DEFAULT:Lokhttp3/CertificatePinner;
# instance fields
.field private final certificateChainCleaner:Lokhttp3/internal/tls/CertificateChainCleaner;
.field private final pins:Ljava/util/Set;
.annotation system Ldalvik/annotation/Signature;
value = {
"Ljava/util/Set",
"<",
"Lokhttp3/CertificatePinner$Pin;",
">;"
}
.end annotation
.end field
# direct methods
.method static constructor <clinit>()V
.registers 1
new-instance v0, Lokhttp3/CertificatePinner$Builder;
invoke-direct {v0}, Lokhttp3/CertificatePinner$Builder;-><init>()V
invoke-virtual {v0}, Lokhttp3/CertificatePinner$Builder;->build()Lokhttp3/CertificatePinner;
move-result-object v0
sput-object v0, Lokhttp3/CertificatePinner;->DEFAULT:Lokhttp3/CertificatePinner;
return-void
.end method
.method constructor <init>(Ljava/util/Set;Lokhttp3/internal/tls/CertificateChainCleaner;)V
.registers 3
.annotation system Ldalvik/annotation/Signature;
value = {
"(",
"Ljava/util/Set",
"<",
"Lokhttp3/CertificatePinner$Pin;",
">;",
"Lokhttp3/internal/tls/CertificateChainCleaner;",
")V"
}
.end annotation
invoke-direct {p0}, Ljava/lang/Object;-><init>()V
iput-object p1, p0, Lokhttp3/CertificatePinner;->pins:Ljava/util/Set;
iput-object p2, p0, Lokhttp3/CertificatePinner;->certificateChainCleaner:Lokhttp3/internal/tls/CertificateChainCleaner;
return-void
.end method
.method public static pin(Ljava/security/cert/Certificate;)Ljava/lang/String;
.registers 3
instance-of v0, p0, Ljava/security/cert/X509Certificate;
if-nez v0, :cond_d
new-instance v0, Ljava/lang/IllegalArgumentException;
const-string/jumbo v1, "Certificate pinning requires X509 certificates"
invoke-direct {v0, v1}, Ljava/lang/IllegalArgumentException;-><init>(Ljava/lang/String;)V
throw v0
:cond_d
new-instance v0, Ljava/lang/StringBuilder;
invoke-direct {v0}, Ljava/lang/StringBuilder;-><init>()V
const-string/jumbo v1, "sha256/"
invoke-virtual {v0, v1}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;
move-result-object v0
check-cast p0, Ljava/security/cert/X509Certificate;
invoke-static {p0}, Lokhttp3/CertificatePinner;->sha256(Ljava/security/cert/X509Certificate;)Lokio/ByteString;
move-result-object v1
invoke-virtual {v1}, Lokio/ByteString;->b()Ljava/lang/String;
move-result-object v1
invoke-virtual {v0, v1}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;
move-result-object v0
invoke-virtual {v0}, Ljava/lang/StringBuilder;->toString()Ljava/lang/String;
move-result-object v0
return-object v0
.end method
.method static sha1(Ljava/security/cert/X509Certificate;)Lokio/ByteString;
.registers 2
invoke-virtual {p0}, Ljava/security/cert/X509Certificate;->getPublicKey()Ljava/security/PublicKey;
move-result-object v0
invoke-interface {v0}, Ljava/security/PublicKey;->getEncoded()[B
move-result-object v0
invoke-static {v0}, Lokio/ByteString;->a([B)Lokio/ByteString;
move-result-object v0
invoke-virtual {v0}, Lokio/ByteString;->d()Lokio/ByteString;
move-result-object v0
return-object v0
.end method
.method static sha256(Ljava/security/cert/X509Certificate;)Lokio/ByteString;
.registers 2
invoke-virtual {p0}, Ljava/security/cert/X509Certificate;->getPublicKey()Ljava/security/PublicKey;
move-result-object v0
invoke-interface {v0}, Ljava/security/PublicKey;->getEncoded()[B
move-result-object v0
invoke-static {v0}, Lokio/ByteString;->a([B)Lokio/ByteString;
move-result-object v0
invoke-virtual {v0}, Lokio/ByteString;->e()Lokio/ByteString;
move-result-object v0
return-object v0
.end method
# virtual methods
.method public check(Ljava/lang/String;Ljava/util/List;)V
.registers 16
.annotation system Ldalvik/annotation/Signature;
value = {
"(",
"Ljava/lang/String;",
"Ljava/util/List",
"<",
"Ljava/security/cert/Certificate;",
">;)V"
}
.end annotation
const/4 v6, 0x0
const/4 v4, 0x0
invoke-virtual {p0, p1}, Lokhttp3/CertificatePinner;->findMatchingPins(Ljava/lang/String;)Ljava/util/List;
move-result-object v8
invoke-interface {v8}, Ljava/util/List;->isEmpty()Z
move-result v0
if-eqz v0, :cond_d
:cond_c
:goto_c
return-void
:cond_d
iget-object v0, p0, Lokhttp3/CertificatePinner;->certificateChainCleaner:Lokhttp3/internal/tls/CertificateChainCleaner;
if-eqz v0, :cond_17
iget-object v0, p0, Lokhttp3/CertificatePinner;->certificateChainCleaner:Lokhttp3/internal/tls/CertificateChainCleaner;
invoke-virtual {v0, p2, p1}, Lokhttp3/internal/tls/CertificateChainCleaner;->clean(Ljava/util/List;Ljava/lang/String;)Ljava/util/List;
move-result-object p2
:cond_17
invoke-interface {p2}, Ljava/util/List;->size()I
move-result v9
move v7, v4
:goto_1c
if-ge v7, v9, :cond_78
invoke-interface {p2, v7}, Ljava/util/List;->get(I)Ljava/lang/Object;
move-result-object v0
check-cast v0, Ljava/security/cert/X509Certificate;
invoke-interface {v8}, Ljava/util/List;->size()I
move-result v10
move v5, v4
move-object v2, v6
move-object v3, v6
:goto_2b
if-ge v5, v10, :cond_74
invoke-interface {v8, v5}, Ljava/util/List;->get(I)Ljava/lang/Object;
move-result-object v1
check-cast v1, Lokhttp3/CertificatePinner$Pin;
iget-object v11, v1, Lokhttp3/CertificatePinner$Pin;->hashAlgorithm:Ljava/lang/String;
const-string/jumbo v12, "sha256/"
invoke-virtual {v11, v12}, Ljava/lang/String;->equals(Ljava/lang/Object;)Z
move-result v11
if-eqz v11, :cond_54
if-nez v2, :cond_44
invoke-static {v0}, Lokhttp3/CertificatePinner;->sha256(Ljava/security/cert/X509Certificate;)Lokio/ByteString;
move-result-object v2
:cond_44
iget-object v1, v1, Lokhttp3/CertificatePinner$Pin;->hash:Lokio/ByteString;
invoke-virtual {v1, v2}, Lokio/ByteString;->equals(Ljava/lang/Object;)Z
move-result v1
if-nez v1, :cond_c
:cond_4c
move-object v1, v2
move-object v2, v3
add-int/lit8 v3, v5, 0x1
move v5, v3
move-object v3, v2
move-object v2, v1
goto :goto_2b
:cond_54
iget-object v11, v1, Lokhttp3/CertificatePinner$Pin;->hashAlgorithm:Ljava/lang/String;
const-string/jumbo v12, "sha1/"
invoke-virtual {v11, v12}, Ljava/lang/String;->equals(Ljava/lang/Object;)Z
move-result v11
if-eqz v11, :cond_6e
if-nez v3, :cond_65
invoke-static {v0}, Lokhttp3/CertificatePinner;->sha1(Ljava/security/cert/X509Certificate;)Lokio/ByteString;
move-result-object v3
:cond_65
iget-object v1, v1, Lokhttp3/CertificatePinner$Pin;->hash:Lokio/ByteString;
invoke-virtual {v1, v3}, Lokio/ByteString;->equals(Ljava/lang/Object;)Z
move-result v1
if-eqz v1, :cond_4c
goto :goto_c
:cond_6e
new-instance v0, Ljava/lang/AssertionError;
invoke-direct {v0}, Ljava/lang/AssertionError;-><init>()V
throw v0
:cond_74
add-int/lit8 v0, v7, 0x1
move v7, v0
goto :goto_1c
:cond_78
new-instance v0, Ljava/lang/StringBuilder;
invoke-direct {v0}, Ljava/lang/StringBuilder;-><init>()V
const-string/jumbo v1, "Certificate pinning failure!"
invoke-virtual {v0, v1}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;
move-result-object v0
const-string/jumbo v1, "\n Peer certificate chain:"
invoke-virtual {v0, v1}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;
move-result-object v2
invoke-interface {p2}, Ljava/util/List;->size()I
move-result v3
move v1, v4
:goto_90
if-ge v1, v3, :cond_bd
invoke-interface {p2, v1}, Ljava/util/List;->get(I)Ljava/lang/Object;
move-result-object v0
check-cast v0, Ljava/security/cert/X509Certificate;
const-string/jumbo v5, "\n "
invoke-virtual {v2, v5}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;
move-result-object v5
invoke-static {v0}, Lokhttp3/CertificatePinner;->pin(Ljava/security/cert/Certificate;)Ljava/lang/String;
move-result-object v6
invoke-virtual {v5, v6}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;
move-result-object v5
const-string/jumbo v6, ": "
invoke-virtual {v5, v6}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;
move-result-object v5
invoke-virtual {v0}, Ljava/security/cert/X509Certificate;->getSubjectDN()Ljava/security/Principal;
move-result-object v0
invoke-interface {v0}, Ljava/security/Principal;->getName()Ljava/lang/String;
move-result-object v0
invoke-virtual {v5, v0}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;
add-int/lit8 v0, v1, 0x1
move v1, v0
goto :goto_90
:cond_bd
const-string/jumbo v0, "\n Pinned certificates for "
invoke-virtual {v2, v0}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;
move-result-object v0
invoke-virtual {v0, p1}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;
move-result-object v0
const-string/jumbo v1, ":"
invoke-virtual {v0, v1}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;
invoke-interface {v8}, Ljava/util/List;->size()I
move-result v3
move v1, v4
:goto_d3
if-ge v1, v3, :cond_e9
invoke-interface {v8, v1}, Ljava/util/List;->get(I)Ljava/lang/Object;
move-result-object v0
check-cast v0, Lokhttp3/CertificatePinner$Pin;
const-string/jumbo v4, "\n "
invoke-virtual {v2, v4}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder;
move-result-object v4
invoke-virtual {v4, v0}, Ljava/lang/StringBuilder;->append(Ljava/lang/Object;)Ljava/lang/StringBuilder;
add-int/lit8 v0, v1, 0x1
move v1, v0
goto :goto_d3
:cond_e9
new-instance v0, Ljavax/net/ssl/SSLPeerUnverifiedException;
invoke-virtual {v2}, Ljava/lang/StringBuilder;->toString()Ljava/lang/String;
move-result-object v1
invoke-direct {v0, v1}, Ljavax/net/ssl/SSLPeerUnverifiedException;-><init>(Ljava/lang/String;)V
throw v0
.end method
.method public varargs check(Ljava/lang/String;[Ljava/security/cert/Certificate;)V
.registers 4
invoke-static {p2}, Ljava/util/Arrays;->asList([Ljava/lang/Object;)Ljava/util/List;
move-result-object v0
invoke-virtual {p0, p1, v0}, Lokhttp3/CertificatePinner;->check(Ljava/lang/String;Ljava/util/List;)V
return-void
.end method
.method public equals(Ljava/lang/Object;)Z
.registers 5
const/4 v1, 0x1
if-ne p1, p0, :cond_4
:goto_3
return v1
:cond_4
instance-of v0, p1, Lokhttp3/CertificatePinner;
if-eqz v0, :cond_24
iget-object v2, p0, Lokhttp3/CertificatePinner;->certificateChainCleaner:Lokhttp3/internal/tls/CertificateChainCleaner;
move-object v0, p1
check-cast v0, Lokhttp3/CertificatePinner;
iget-object v0, v0, Lokhttp3/CertificatePinner;->certificateChainCleaner:Lokhttp3/internal/tls/CertificateChainCleaner;
invoke-static {v2, v0}, Lokhttp3/internal/Util;->equal(Ljava/lang/Object;Ljava/lang/Object;)Z
move-result v0
if-eqz v0, :cond_24
iget-object v0, p0, Lokhttp3/CertificatePinner;->pins:Ljava/util/Set;
check-cast p1, Lokhttp3/CertificatePinner;
iget-object v2, p1, Lokhttp3/CertificatePinner;->pins:Ljava/util/Set;
invoke-interface {v0, v2}, Ljava/util/Set;->equals(Ljava/lang/Object;)Z
move-result v0
if-eqz v0, :cond_24
move v0, v1
:goto_22
move v1, v0
goto :goto_3
:cond_24
const/4 v0, 0x0
goto :goto_22
.end method
.method findMatchingPins(Ljava/lang/String;)Ljava/util/List;
.registers 6
.annotation system Ldalvik/annotation/Signature;
value = {
"(",
"Ljava/lang/String;",
")",
"Ljava/util/List",
"<",
"Lokhttp3/CertificatePinner$Pin;",
">;"
}
.end annotation
invoke-static {}, Ljava/util/Collections;->emptyList()Ljava/util/List;
move-result-object v1
iget-object v0, p0, Lokhttp3/CertificatePinner;->pins:Ljava/util/Set;
invoke-interface {v0}, Ljava/util/Set;->iterator()Ljava/util/Iterator;
move-result-object v2
:cond_a
:goto_a
invoke-interface {v2}, Ljava/util/Iterator;->hasNext()Z
move-result v0
if-eqz v0, :cond_2b
invoke-interface {v2}, Ljava/util/Iterator;->next()Ljava/lang/Object;
move-result-object v0
check-cast v0, Lokhttp3/CertificatePinner$Pin;
invoke-virtual {v0, p1}, Lokhttp3/CertificatePinner$Pin;->matches(Ljava/lang/String;)Z
move-result v3
if-eqz v3, :cond_a
invoke-interface {v1}, Ljava/util/List;->isEmpty()Z
move-result v3
if-eqz v3, :cond_27
new-instance v1, Ljava/util/ArrayList;
invoke-direct {v1}, Ljava/util/ArrayList;-><init>()V
:cond_27
invoke-interface {v1, v0}, Ljava/util/List;->add(Ljava/lang/Object;)Z
goto :goto_a
:cond_2b
return-object v1
.end method
.method public hashCode()I
.registers 3
iget-object v0, p0, Lokhttp3/CertificatePinner;->certificateChainCleaner:Lokhttp3/internal/tls/CertificateChainCleaner;
if-eqz v0, :cond_14
iget-object v0, p0, Lokhttp3/CertificatePinner;->certificateChainCleaner:Lokhttp3/internal/tls/CertificateChainCleaner;
invoke-virtual {v0}, Ljava/lang/Object;->hashCode()I
move-result v0
:goto_a
mul-int/lit8 v0, v0, 0x1f
iget-object v1, p0, Lokhttp3/CertificatePinner;->pins:Ljava/util/Set;
invoke-interface {v1}, Ljava/util/Set;->hashCode()I
move-result v1
add-int/2addr v0, v1
return v0
:cond_14
const/4 v0, 0x0
goto :goto_a
.end method
.method withCertificateChainCleaner(Lokhttp3/internal/tls/CertificateChainCleaner;)Lokhttp3/CertificatePinner;
.registers 4
iget-object v0, p0, Lokhttp3/CertificatePinner;->certificateChainCleaner:Lokhttp3/internal/tls/CertificateChainCleaner;
invoke-static {v0, p1}, Lokhttp3/internal/Util;->equal(Ljava/lang/Object;Ljava/lang/Object;)Z
move-result v0
if-eqz v0, :cond_9
:goto_8
return-object p0
:cond_9
new-instance v0, Lokhttp3/CertificatePinner;
iget-object v1, p0, Lokhttp3/CertificatePinner;->pins:Ljava/util/Set;
invoke-direct {v0, v1, p1}, Lokhttp3/CertificatePinner;-><init>(Ljava/util/Set;Lokhttp3/internal/tls/CertificateChainCleaner;)V
move-object p0, v0
goto :goto_8
.end method