package com.google.android.gms.internal.ads;

import android.os.Build;
import java.math.BigInteger;
import java.security.GeneralSecurityException;
import java.security.KeyFactory;
import java.security.NoSuchAlgorithmException;
import java.security.NoSuchProviderException;
import java.security.Provider;
import java.security.Signature;
import java.security.interfaces.RSAPublicKey;
import java.security.spec.MGF1ParameterSpec;
import java.security.spec.PSSParameterSpec;
import java.security.spec.RSAPublicKeySpec;
import java.util.Objects;

/* JADX INFO: loaded from: classes2.dex */
public final class n82 implements fw1 {

    /* JADX INFO: renamed from: g, reason: collision with root package name */
    public static final byte[] f14470g = new byte[0];

    /* JADX INFO: renamed from: h, reason: collision with root package name */
    public static final byte[] f14471h = {0};

    /* JADX INFO: renamed from: a, reason: collision with root package name */
    public final RSAPublicKey f14472a;

    /* JADX INFO: renamed from: b, reason: collision with root package name */
    public final String f14473b;

    /* JADX INFO: renamed from: c, reason: collision with root package name */
    public final PSSParameterSpec f14474c;

    /* JADX INFO: renamed from: d, reason: collision with root package name */
    public final byte[] f14475d;

    /* JADX INFO: renamed from: e, reason: collision with root package name */
    public final byte[] f14476e;

    /* JADX INFO: renamed from: f, reason: collision with root package name */
    public final Provider f14477f;

    public n82(RSAPublicKey rSAPublicKey, t72 t72Var, t72 t72Var2, int i10, byte[] bArr, byte[] bArr2, Provider provider) throws GeneralSecurityException {
        if (!ih1.z(2)) {
            throw new GeneralSecurityException("Cannot use RSA SSA PSS in FIPS-mode, as BoringCrypto module is not available.");
        }
        if (!t72Var.equals(t72Var2)) {
            throw new GeneralSecurityException("sigHash and mgf1Hash must be the same");
        }
        h92.c(rSAPublicKey.getModulus().bitLength());
        h92.d(rSAPublicKey.getPublicExponent());
        this.f14472a = rSAPublicKey;
        this.f14473b = a(t72Var);
        this.f14474c = b(t72Var, t72Var2, i10);
        this.f14475d = bArr;
        this.f14476e = bArr2;
        this.f14477f = provider;
    }

    public static String a(t72 t72Var) {
        if (t72Var == t72.f16751b) {
            return "SHA256withRSA/PSS";
        }
        if (t72Var == t72.f16752c) {
            return "SHA384withRSA/PSS";
        }
        if (t72Var == t72.f16753d) {
            return "SHA512withRSA/PSS";
        }
        throw new IllegalArgumentException("Unsupported hash: ".concat(String.valueOf(t72Var)));
    }

    public static PSSParameterSpec b(t72 t72Var, t72 t72Var2, int i10) {
        String str;
        MGF1ParameterSpec mGF1ParameterSpec;
        t72 t72Var3 = t72.f16751b;
        t72 t72Var4 = t72.f16753d;
        t72 t72Var5 = t72.f16752c;
        if (t72Var == t72Var3) {
            str = "SHA-256";
        } else if (t72Var == t72Var5) {
            str = "SHA-384";
        } else {
            if (t72Var != t72Var4) {
                throw new IllegalArgumentException("Unsupported MD hash: ".concat(String.valueOf(t72Var)));
            }
            str = "SHA-512";
        }
        if (t72Var2 == t72Var3) {
            mGF1ParameterSpec = MGF1ParameterSpec.SHA256;
        } else if (t72Var2 == t72Var5) {
            mGF1ParameterSpec = MGF1ParameterSpec.SHA384;
        } else {
            if (t72Var2 != t72Var4) {
                throw new IllegalArgumentException("Unsupported MGF1 hash: ".concat(String.valueOf(t72Var2)));
            }
            mGF1ParameterSpec = MGF1ParameterSpec.SHA512;
        }
        return new PSSParameterSpec(str, "MGF1", mGF1ParameterSpec, i10, 1);
    }

    /* JADX WARN: Removed duplicated region for block: B:11:0x002d  */
    /*
        Code decompiled incorrectly, please refer to instructions dump.
    */
    public static n82 c(x72 x72Var) throws NoSuchAlgorithmException, NoSuchProviderException {
        Provider providerE;
        int i10 = q12.f15571a;
        if (Objects.equals(System.getProperty("java.vendor"), "The Android Project")) {
            providerE = (!Objects.equals(System.getProperty("java.vendor"), "The Android Project") ? null : Integer.valueOf(Build.VERSION.SDK_INT)).intValue() > 23 ? vj1.e() : null;
        }
        Provider provider = providerE;
        if (provider == null) {
            throw new NoSuchProviderException("RSA SSA PSS using Conscrypt is not supported.");
        }
        KeyFactory keyFactory = KeyFactory.getInstance("RSA", provider);
        BigInteger bigInteger = x72Var.f18345c;
        v72 v72Var = x72Var.f18344b;
        return new n82((RSAPublicKey) keyFactory.generatePublic(new RSAPublicKeySpec(bigInteger, v72Var.f17534b)), v72Var.f17536d, v72Var.f17537e, v72Var.f17538f, x72Var.f18346d.b(), v72Var.f17535c.equals(u72.f17120d) ? f14471h : f14470g, provider);
    }

    @Override // com.google.android.gms.internal.ads.fw1
    public final void zza(byte[] bArr, byte[] bArr2) throws GeneralSecurityException {
        byte[] bArr3 = this.f14475d;
        if (!q12.c(bArr3, bArr)) {
            throw new GeneralSecurityException("Invalid signature (output prefix mismatch)");
        }
        Signature signature = Signature.getInstance(this.f14473b, this.f14477f);
        signature.initVerify(this.f14472a);
        signature.setParameter(this.f14474c);
        signature.update(bArr2);
        byte[] bArr4 = this.f14476e;
        if (bArr4.length > 0) {
            signature.update(bArr4);
        }
        int length = bArr.length;
        int length2 = bArr3.length;
        if (!signature.verify(bArr, length2, length - length2)) {
            throw new GeneralSecurityException("signature verification failed");
        }
    }
}
