.class public abstract Lorg/apache/http/conn/ssl/AbstractVerifier; .super Ljava/lang/Object; .source "AbstractVerifier.java" # interfaces .implements Lorg/apache/http/conn/ssl/X509HostnameVerifier; # annotations .annotation build Lorg/apache/http/annotation/Immutable; .end annotation # static fields .field private static final BAD_COUNTRY_2LDS:[Ljava/lang/String; # direct methods .method public static constructor ()V .locals 14 const-string v0, "ac" const-string v1, "co" const-string v2, "com" const-string v3, "ed" const-string v4, "edu" const-string v5, "go" const-string v6, "gouv" const-string v7, "gov" const-string v8, "info" const-string v9, "lg" const-string v10, "ne" const-string v11, "net" const-string v12, "or" const-string v13, "org" .line 1 filled-new-array/range {v0 .. v13}, [Ljava/lang/String; move-result-object v0 sput-object v0, Lorg/apache/http/conn/ssl/AbstractVerifier;->BAD_COUNTRY_2LDS:[Ljava/lang/String; .line 2 invoke-static {v0}, Ljava/util/Arrays;->sort([Ljava/lang/Object;)V return-void .end method .method public constructor ()V .locals 0 .line 1 invoke-direct {p0}, Ljava/lang/Object;->()V return-void .end method .method public static acceptableCountryWildcard(Ljava/lang/String;)Z .locals 4 .line 1 invoke-virtual {p0}, Ljava/lang/String;->length()I move-result v0 const/4 v1, 0x1 const/4 v2, 0x7 if-lt v0, v2, :cond_1 const/16 v2, 0x9 if-gt v0, v2, :cond_1 add-int/lit8 v0, v0, -0x3 .line 2 invoke-virtual {p0, v0}, Ljava/lang/String;->charAt(I)C move-result v2 const/16 v3, 0x2e if-ne v2, v3, :cond_1 const/4 v2, 0x2 .line 3 invoke-virtual {p0, v2, v0}, Ljava/lang/String;->substring(II)Ljava/lang/String; move-result-object p0 .line 4 sget-object v0, Lorg/apache/http/conn/ssl/AbstractVerifier;->BAD_COUNTRY_2LDS:[Ljava/lang/String; invoke-static {v0, p0}, Ljava/util/Arrays;->binarySearch([Ljava/lang/Object;Ljava/lang/Object;)I move-result p0 if-gez p0, :cond_0 goto :goto_0 :cond_0 const/4 v1, 0x0 :cond_1 :goto_0 return v1 .end method .method public static countDots(Ljava/lang/String;)I .locals 4 const/4 v0, 0x0 move v1, v0 .line 1 :goto_0 invoke-virtual {p0}, Ljava/lang/String;->length()I move-result v2 if-ge v0, v2, :cond_1 .line 2 invoke-virtual {p0, v0}, Ljava/lang/String;->charAt(I)C move-result v2 const/16 v3, 0x2e if-ne v2, v3, :cond_0 add-int/lit8 v1, v1, 0x1 :cond_0 add-int/lit8 v0, v0, 0x1 goto :goto_0 :cond_1 return v1 .end method .method public static getCNs(Ljava/security/cert/X509Certificate;)[Ljava/lang/String; .locals 3 .line 1 new-instance v0, Ljava/util/LinkedList; invoke-direct {v0}, Ljava/util/LinkedList;->()V .line 2 invoke-virtual {p0}, Ljava/security/cert/X509Certificate;->getSubjectX500Principal()Ljavax/security/auth/x500/X500Principal; move-result-object p0 invoke-virtual {p0}, Ljavax/security/auth/x500/X500Principal;->toString()Ljava/lang/String; move-result-object p0 .line 3 new-instance v1, Ljava/util/StringTokenizer; const-string v2, "," invoke-direct {v1, p0, v2}, Ljava/util/StringTokenizer;->(Ljava/lang/String;Ljava/lang/String;)V .line 4 :cond_0 :goto_0 invoke-virtual {v1}, Ljava/util/StringTokenizer;->hasMoreTokens()Z move-result p0 if-eqz p0, :cond_1 .line 5 invoke-virtual {v1}, Ljava/util/StringTokenizer;->nextToken()Ljava/lang/String; move-result-object p0 const-string v2, "CN=" .line 6 invoke-virtual {p0, v2}, Ljava/lang/String;->indexOf(Ljava/lang/String;)I move-result v2 if-ltz v2, :cond_0 add-int/lit8 v2, v2, 0x3 .line 7 invoke-virtual {p0, v2}, Ljava/lang/String;->substring(I)Ljava/lang/String; move-result-object p0 invoke-virtual {v0, p0}, Ljava/util/LinkedList;->add(Ljava/lang/Object;)Z goto :goto_0 .line 8 :cond_1 invoke-virtual {v0}, Ljava/util/LinkedList;->isEmpty()Z move-result p0 if-nez p0, :cond_2 .line 9 invoke-virtual {v0}, Ljava/util/LinkedList;->size()I move-result p0 new-array p0, p0, [Ljava/lang/String; .line 10 invoke-virtual {v0, p0}, Ljava/util/LinkedList;->toArray([Ljava/lang/Object;)[Ljava/lang/Object; return-object p0 :cond_2 const/4 p0, 0x0 return-object p0 .end method .method public static getDNSSubjectAlts(Ljava/security/cert/X509Certificate;)[Ljava/lang/String; .locals 1 const/4 v0, 0x0 .line 1 invoke-static {p0, v0}, Lorg/apache/http/conn/ssl/AbstractVerifier;->getSubjectAlts(Ljava/security/cert/X509Certificate;Ljava/lang/String;)[Ljava/lang/String; move-result-object p0 return-object p0 .end method .method private static getSubjectAlts(Ljava/security/cert/X509Certificate;Ljava/lang/String;)[Ljava/lang/String; .locals 5 .line 1 invoke-static {p1}, Lorg/apache/http/conn/ssl/AbstractVerifier;->isIPAddress(Ljava/lang/String;)Z move-result p1 if-eqz p1, :cond_0 const/4 p1, 0x7 goto :goto_0 :cond_0 const/4 p1, 0x2 .line 2 :goto_0 new-instance v0, Ljava/util/LinkedList; invoke-direct {v0}, Ljava/util/LinkedList;->()V const/4 v1, 0x0 .line 3 :try_start_0 invoke-virtual {p0}, Ljava/security/cert/X509Certificate;->getSubjectAlternativeNames()Ljava/util/Collection; move-result-object p0 :try_end_0 .catch Ljava/security/cert/CertificateParsingException; {:try_start_0 .. :try_end_0} :catch_0 goto :goto_1 :catch_0 move-exception p0 .line 4 const-class v2, Lorg/apache/http/conn/ssl/AbstractVerifier; invoke-virtual {v2}, Ljava/lang/Class;->getName()Ljava/lang/String; move-result-object v2 invoke-static {v2}, Ljava/util/logging/Logger;->getLogger(Ljava/lang/String;)Ljava/util/logging/Logger; move-result-object v2 sget-object v3, Ljava/util/logging/Level;->FINE:Ljava/util/logging/Level; const-string v4, "Error parsing certificate." invoke-virtual {v2, v3, v4, p0}, Ljava/util/logging/Logger;->log(Ljava/util/logging/Level;Ljava/lang/String;Ljava/lang/Throwable;)V move-object p0, v1 :goto_1 if-eqz p0, :cond_2 .line 5 invoke-interface {p0}, Ljava/util/Collection;->iterator()Ljava/util/Iterator; move-result-object p0 :cond_1 :goto_2 invoke-interface {p0}, Ljava/util/Iterator;->hasNext()Z move-result v2 if-eqz v2, :cond_2 invoke-interface {p0}, Ljava/util/Iterator;->next()Ljava/lang/Object; move-result-object v2 check-cast v2, Ljava/util/List; const/4 v3, 0x0 .line 6 invoke-interface {v2, v3}, Ljava/util/List;->get(I)Ljava/lang/Object; move-result-object v3 check-cast v3, Ljava/lang/Integer; invoke-virtual {v3}, Ljava/lang/Integer;->intValue()I move-result v3 if-ne v3, p1, :cond_1 const/4 v3, 0x1 .line 7 invoke-interface {v2, v3}, Ljava/util/List;->get(I)Ljava/lang/Object; move-result-object v2 check-cast v2, Ljava/lang/String; .line 8 invoke-virtual {v0, v2}, Ljava/util/LinkedList;->add(Ljava/lang/Object;)Z goto :goto_2 .line 9 :cond_2 invoke-virtual {v0}, Ljava/util/LinkedList;->isEmpty()Z move-result p0 if-nez p0, :cond_3 .line 10 invoke-virtual {v0}, Ljava/util/LinkedList;->size()I move-result p0 new-array p0, p0, [Ljava/lang/String; .line 11 invoke-virtual {v0, p0}, Ljava/util/LinkedList;->toArray([Ljava/lang/Object;)[Ljava/lang/Object; return-object p0 :cond_3 return-object v1 .end method .method private static isIPAddress(Ljava/lang/String;)Z .locals 1 if-eqz p0, :cond_1 .line 1 invoke-static {p0}, Lorg/apache/http/conn/util/InetAddressUtils;->isIPv4Address(Ljava/lang/String;)Z move-result v0 if-nez v0, :cond_0 invoke-static {p0}, Lorg/apache/http/conn/util/InetAddressUtils;->isIPv6Address(Ljava/lang/String;)Z move-result p0 if-eqz p0, :cond_1 :cond_0 const/4 p0, 0x1 goto :goto_0 :cond_1 const/4 p0, 0x0 :goto_0 return p0 .end method # virtual methods .method public final verify(Ljava/lang/String;Ljava/security/cert/X509Certificate;)V .locals 1 .annotation system Ldalvik/annotation/Throws; value = { Ljavax/net/ssl/SSLException; } .end annotation .line 14 invoke-static {p2}, Lorg/apache/http/conn/ssl/AbstractVerifier;->getCNs(Ljava/security/cert/X509Certificate;)[Ljava/lang/String; move-result-object v0 .line 15 invoke-static {p2, p1}, Lorg/apache/http/conn/ssl/AbstractVerifier;->getSubjectAlts(Ljava/security/cert/X509Certificate;Ljava/lang/String;)[Ljava/lang/String; move-result-object p2 .line 16 invoke-interface {p0, p1, v0, p2}, Lorg/apache/http/conn/ssl/X509HostnameVerifier;->verify(Ljava/lang/String;[Ljava/lang/String;[Ljava/lang/String;)V return-void .end method .method public final verify(Ljava/lang/String;Ljavax/net/ssl/SSLSocket;)V .locals 1 .annotation system Ldalvik/annotation/Throws; value = { Ljava/io/IOException; } .end annotation const-string v0, "host to verify is null" .line 1 invoke-static {p1, v0}, Ljava/util/Objects;->requireNonNull(Ljava/lang/Object;Ljava/lang/String;)Ljava/lang/Object; .line 2 invoke-virtual {p2}, Ljavax/net/ssl/SSLSocket;->getSession()Ljavax/net/ssl/SSLSession; move-result-object v0 if-nez v0, :cond_0 .line 3 invoke-virtual {p2}, Ljavax/net/ssl/SSLSocket;->getInputStream()Ljava/io/InputStream; move-result-object v0 .line 4 invoke-virtual {v0}, Ljava/io/InputStream;->available()I .line 5 invoke-virtual {p2}, Ljavax/net/ssl/SSLSocket;->getSession()Ljavax/net/ssl/SSLSession; move-result-object v0 if-nez v0, :cond_0 .line 6 invoke-virtual {p2}, Ljavax/net/ssl/SSLSocket;->startHandshake()V .line 7 invoke-virtual {p2}, Ljavax/net/ssl/SSLSocket;->getSession()Ljavax/net/ssl/SSLSession; move-result-object v0 .line 8 :cond_0 invoke-interface {v0}, Ljavax/net/ssl/SSLSession;->getPeerCertificates()[Ljava/security/cert/Certificate; move-result-object p2 const/4 v0, 0x0 .line 9 aget-object p2, p2, v0 check-cast p2, Ljava/security/cert/X509Certificate; .line 10 invoke-virtual {p0, p1, p2}, Lorg/apache/http/conn/ssl/AbstractVerifier;->verify(Ljava/lang/String;Ljava/security/cert/X509Certificate;)V return-void .end method .method public final verify(Ljava/lang/String;[Ljava/lang/String;[Ljava/lang/String;Z)V .locals 5 .annotation system Ldalvik/annotation/Throws; value = { Ljavax/net/ssl/SSLException; } .end annotation .line 17 new-instance v0, Ljava/util/LinkedList; invoke-direct {v0}, Ljava/util/LinkedList;->()V const/4 v1, 0x0 if-eqz p2, :cond_0 .line 18 array-length v2, p2 if-lez v2, :cond_0 aget-object v2, p2, v1 if-eqz v2, :cond_0 .line 19 aget-object p2, p2, v1 invoke-virtual {v0, p2}, Ljava/util/LinkedList;->add(Ljava/lang/Object;)Z :cond_0 if-eqz p3, :cond_2 .line 20 array-length p2, p3 move v2, v1 :goto_0 if-ge v2, p2, :cond_2 aget-object v3, p3, v2 if-eqz v3, :cond_1 .line 21 invoke-virtual {v0, v3}, Ljava/util/LinkedList;->add(Ljava/lang/Object;)Z :cond_1 add-int/lit8 v2, v2, 0x1 goto :goto_0 .line 22 :cond_2 invoke-virtual {v0}, Ljava/util/LinkedList;->isEmpty()Z move-result p2 if-nez p2, :cond_b .line 23 new-instance p2, Ljava/lang/StringBuffer; invoke-direct {p2}, Ljava/lang/StringBuffer;->()V .line 24 invoke-virtual {p1}, Ljava/lang/String;->trim()Ljava/lang/String; move-result-object p3 sget-object v2, Ljava/util/Locale;->ENGLISH:Ljava/util/Locale; invoke-virtual {p3, v2}, Ljava/lang/String;->toLowerCase(Ljava/util/Locale;)Ljava/lang/String; move-result-object p3 .line 25 invoke-virtual {v0}, Ljava/util/LinkedList;->iterator()Ljava/util/Iterator; move-result-object v0 move v2, v1 :cond_3 invoke-interface {v0}, Ljava/util/Iterator;->hasNext()Z move-result v3 if-eqz v3, :cond_9 .line 26 invoke-interface {v0}, Ljava/util/Iterator;->next()Ljava/lang/Object; move-result-object v2 check-cast v2, Ljava/lang/String; .line 27 sget-object v3, Ljava/util/Locale;->ENGLISH:Ljava/util/Locale; invoke-virtual {v2, v3}, Ljava/lang/String;->toLowerCase(Ljava/util/Locale;)Ljava/lang/String; move-result-object v2 const-string v3, " <" .line 28 invoke-virtual {p2, v3}, Ljava/lang/StringBuffer;->append(Ljava/lang/String;)Ljava/lang/StringBuffer; .line 29 invoke-virtual {p2, v2}, Ljava/lang/StringBuffer;->append(Ljava/lang/String;)Ljava/lang/StringBuffer; const/16 v3, 0x3e .line 30 invoke-virtual {p2, v3}, Ljava/lang/StringBuffer;->append(C)Ljava/lang/StringBuffer; .line 31 invoke-interface {v0}, Ljava/util/Iterator;->hasNext()Z move-result v3 if-eqz v3, :cond_4 const-string v3, " OR" .line 32 invoke-virtual {p2, v3}, Ljava/lang/StringBuffer;->append(Ljava/lang/String;)Ljava/lang/StringBuffer; :cond_4 const-string v3, "*." .line 33 invoke-virtual {v2, v3}, Ljava/lang/String;->startsWith(Ljava/lang/String;)Z move-result v3 const/4 v4, 0x1 if-eqz v3, :cond_5 const/16 v3, 0x2e invoke-virtual {v2, v3}, Ljava/lang/String;->lastIndexOf(I)I move-result v3 if-ltz v3, :cond_5 invoke-static {v2}, Lorg/apache/http/conn/ssl/AbstractVerifier;->acceptableCountryWildcard(Ljava/lang/String;)Z move-result v3 if-eqz v3, :cond_5 invoke-static {p1}, Lorg/apache/http/conn/ssl/AbstractVerifier;->isIPAddress(Ljava/lang/String;)Z move-result v3 if-nez v3, :cond_5 move v3, v4 goto :goto_1 :cond_5 move v3, v1 :goto_1 if-eqz v3, :cond_8 .line 34 invoke-virtual {v2, v4}, Ljava/lang/String;->substring(I)Ljava/lang/String; move-result-object v3 invoke-virtual {p3, v3}, Ljava/lang/String;->endsWith(Ljava/lang/String;)Z move-result v3 if-eqz v3, :cond_7 if-eqz p4, :cond_7 .line 35 invoke-static {p3}, Lorg/apache/http/conn/ssl/AbstractVerifier;->countDots(Ljava/lang/String;)I move-result v3 invoke-static {v2}, Lorg/apache/http/conn/ssl/AbstractVerifier;->countDots(Ljava/lang/String;)I move-result v2 if-ne v3, v2, :cond_6 goto :goto_2 :cond_6 move v4, v1 :goto_2 move v2, v4 goto :goto_3 :cond_7 move v2, v3 goto :goto_3 .line 36 :cond_8 invoke-virtual {p3, v2}, Ljava/lang/String;->equals(Ljava/lang/Object;)Z move-result v2 :goto_3 if-eqz v2, :cond_3 :cond_9 if-eqz v2, :cond_a return-void .line 37 :cond_a new-instance p3, Ljavax/net/ssl/SSLException; new-instance p4, Ljava/lang/StringBuilder; invoke-direct {p4}, Ljava/lang/StringBuilder;->()V const-string v0, "hostname in certificate didn\'t match: <" invoke-virtual {p4, v0}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder; invoke-virtual {p4, p1}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder; const-string p1, "> !=" invoke-virtual {p4, p1}, Ljava/lang/StringBuilder;->append(Ljava/lang/String;)Ljava/lang/StringBuilder; invoke-virtual {p4, p2}, Ljava/lang/StringBuilder;->append(Ljava/lang/Object;)Ljava/lang/StringBuilder; invoke-virtual {p4}, Ljava/lang/StringBuilder;->toString()Ljava/lang/String; move-result-object p1 invoke-direct {p3, p1}, Ljavax/net/ssl/SSLException;->(Ljava/lang/String;)V throw p3 :cond_b const-string p2, "Certificate for <" const-string p3, "> doesn\'t contain CN or DNS subjectAlt" .line 38 invoke-static {p2, p1, p3}, Landroid/support/v4/media/f;->a(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; move-result-object p1 .line 39 new-instance p2, Ljavax/net/ssl/SSLException; invoke-direct {p2, p1}, Ljavax/net/ssl/SSLException;->(Ljava/lang/String;)V throw p2 .end method .method public final verify(Ljava/lang/String;Ljavax/net/ssl/SSLSession;)Z .locals 1 const/4 v0, 0x0 .line 11 :try_start_0 invoke-interface {p2}, Ljavax/net/ssl/SSLSession;->getPeerCertificates()[Ljava/security/cert/Certificate; move-result-object p2 .line 12 aget-object p2, p2, v0 check-cast p2, Ljava/security/cert/X509Certificate; .line 13 invoke-virtual {p0, p1, p2}, Lorg/apache/http/conn/ssl/AbstractVerifier;->verify(Ljava/lang/String;Ljava/security/cert/X509Certificate;)V :try_end_0 .catch Ljavax/net/ssl/SSLException; {:try_start_0 .. :try_end_0} :catch_0 const/4 p1, 0x1 return p1 :catch_0 return v0 .end method