package com.pairip.licensecheck3; import android.os.Bundle; import android.util.Base64; import com.pairip.licensecheck3.LicenseClientV3; import java.nio.charset.Charset; import java.security.InvalidKeyException; import java.security.KeyFactory; import java.security.NoSuchAlgorithmException; import java.security.PublicKey; import java.security.Signature; import java.security.SignatureException; import java.security.spec.InvalidKeySpecException; import java.security.spec.X509EncodedKeySpec; import org.json.JSONException; import org.json.JSONObject; /* loaded from: classes8.dex */ public class ResponseValidator { private static final String KEY_FACTORY_ALGORITHM = "RSA"; private static final String PAYLOAD_LICENSE_DATA = "LICENSE_DATA"; private static final String PAYLOAD_PACKAGE_NAME = "packageName"; private static final String SIGNATURE_ALGORITHM = "SHA256withRSA"; private static final Charset UTF_8 = Charset.forName("UTF-8"); public static void validateResponse(Bundle responsePayload, String packageName) throws LicenseClientV3.LicenseCheckException { try { String string = responsePayload.getString(PAYLOAD_LICENSE_DATA); if (string == null) { throw new LicenseClientV3.LicenseCheckException("Invalid response"); } String[] split = string.split("\\.", -1); if (split.length != 3) { throw new LicenseClientV3.LicenseCheckException("Invalid response"); } JSONObject base64ToJson = base64ToJson(split[0]); JSONObject base64ToJson2 = base64ToJson(split[1]); String str = split[2]; String str2 = split[0] + "." + split[1]; if (!base64ToJson.getString("alg").equals("RS256")) { throw new LicenseClientV3.LicenseCheckException("Response must be signed with RS256 algorithm."); } verifySignature(str2, str, SIGNATURE_ALGORITHM, getPublicKey()); if (!base64ToJson2.getString("packageName").equals(packageName)) { throw new LicenseClientV3.LicenseCheckException("Package name doesn't match."); } } catch (JSONException e) { throw new LicenseClientV3.LicenseCheckException("Could not decode json", e); } } private static JSONObject base64ToJson(String input) throws LicenseClientV3.LicenseCheckException { try { return new JSONObject(new String(Base64.decode(input, 8), UTF_8)); } catch (IllegalArgumentException | JSONException e) { throw new LicenseClientV3.LicenseCheckException("Invalid response", e); } } private static void verifySignature(String signedData, String signature, String signatureAlgorithm, PublicKey publicKey) throws LicenseClientV3.LicenseCheckException { try { Signature signature2 = Signature.getInstance(signatureAlgorithm); signature2.initVerify(publicKey); signature2.update(signedData.getBytes(UTF_8)); if (signature2.verify(Base64.decode(signature, 8))) { return; } throw new LicenseClientV3.LicenseCheckException("Signature verification failed."); } catch (IllegalArgumentException e) { throw new LicenseClientV3.LicenseCheckException("Could not base64 decode returned signature", e); } catch (InvalidKeyException e2) { throw new LicenseClientV3.LicenseCheckException("Could not sign data with the public key", e2); } catch (NoSuchAlgorithmException e3) { throw new LicenseClientV3.LicenseCheckException(String.format("Could not find %s algorithm on the device", signatureAlgorithm), e3); } catch (SignatureException e4) { throw new LicenseClientV3.LicenseCheckException("Could not parse returned signature.", e4); } } private static PublicKey getPublicKey() throws LicenseClientV3.LicenseCheckException { try { return KeyFactory.getInstance(KEY_FACTORY_ALGORITHM).generatePublic(new X509EncodedKeySpec(Base64.decode(LicenseClientV3.licensePubKey, 0))); } catch (IllegalArgumentException e) { throw new LicenseClientV3.LicenseCheckException("Could not decode public key", e); } catch (NoSuchAlgorithmException e2) { throw new LicenseClientV3.LicenseCheckException(String.format("%s algorithm not found on device", KEY_FACTORY_ALGORITHM), e2); } catch (InvalidKeySpecException e3) { throw new LicenseClientV3.LicenseCheckException("Could not create key specification from the public key", e3); } } private ResponseValidator() { } }