package com.strmr.ps.data.security;

import android.util.Base64;
import androidx.media3.container.NalUnitUtil;
import androidx.media3.exoplayer.upstream.CmcdData;
import defpackage.bz0;
import defpackage.cr4;
import defpackage.st;
import defpackage.vx8;
import defpackage.zr7;
import java.security.InvalidAlgorithmParameterException;
import java.security.InvalidKeyException;
import java.security.MessageDigest;
import java.security.NoSuchAlgorithmException;
import java.security.SecureRandom;
import javax.crypto.BadPaddingException;
import javax.crypto.Cipher;
import javax.crypto.IllegalBlockSizeException;
import javax.crypto.NoSuchPaddingException;
import javax.crypto.spec.GCMParameterSpec;
import javax.crypto.spec.SecretKeySpec;
import javax.inject.Inject;
import javax.inject.Singleton;
import kotlin.Metadata;

/* JADX INFO: loaded from: classes3.dex */
@Singleton
@Metadata(d1 = {"\u0000\f\n\u0002\u0018\u0002\n\u0002\u0010\u0000\n\u0002\b\u0004\b\u0007\u0018\u00002\u00020\u0001:\u0001\u0004B\t\b\u0007¢\u0006\u0004\b\u0002\u0010\u0003¨\u0006\u0005"}, d2 = {"Lcom/strmr/ps/data/security/CredentialEncryption;", "", "<init>", "()V", CmcdData.OBJECT_TYPE_AUDIO_ONLY, "app_sideloadRelease"}, k = 1, mv = {2, 0, 0}, xi = NalUnitUtil.H265_NAL_UNIT_TYPE_UNSPECIFIED)
@vx8
public final class CredentialEncryption {

    @Metadata(d1 = {"\u0000\u0018\n\u0002\u0018\u0002\n\u0002\u0010\u0000\n\u0002\u0010\u000e\n\u0002\b\u0002\n\u0002\u0010\b\n\u0002\b\u0004\b\u0086\u0003\u0018\u00002\u00020\u0001R\u0014\u0010\u0003\u001a\u00020\u00028\u0002X\u0082T¢\u0006\u0006\n\u0004\b\u0003\u0010\u0004R\u0014\u0010\u0006\u001a\u00020\u00058\u0002X\u0082T¢\u0006\u0006\n\u0004\b\u0006\u0010\u0007R\u0014\u0010\b\u001a\u00020\u00058\u0002X\u0082T¢\u0006\u0006\n\u0004\b\b\u0010\u0007¨\u0006\t"}, d2 = {"Lcom/strmr/ps/data/security/CredentialEncryption$a;", "", "", "ALGORITHM", "Ljava/lang/String;", "", "GCM_TAG_LENGTH", "I", "IV_LENGTH", "app_sideloadRelease"}, k = 1, mv = {2, 0, 0}, xi = NalUnitUtil.H265_NAL_UNIT_TYPE_UNSPECIFIED)
    public static final class a {
    }

    @Inject
    public CredentialEncryption() {
    }

    public static String a(String str, byte[] bArr) throws BadPaddingException, NoSuchPaddingException, IllegalBlockSizeException, NoSuchAlgorithmException, InvalidKeyException, InvalidAlgorithmParameterException {
        cr4.g(str, "encryptedData");
        cr4.g(bArr, "key");
        if (bArr.length != 32) {
            throw new IllegalArgumentException("Key must be 32 bytes for AES-256");
        }
        byte[] bArrDecode = Base64.decode(str, 2);
        cr4.d(bArrDecode);
        byte[] bArrAk = st.ak(bArrDecode, zr7.g(0, 12));
        byte[] bArrAk2 = st.ak(bArrDecode, zr7.g(12, bArrDecode.length));
        Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding");
        cipher.init(2, new SecretKeySpec(bArr, "AES"), new GCMParameterSpec(128, bArrAk));
        byte[] bArrDoFinal = cipher.doFinal(bArrAk2);
        cr4.d(bArrDoFinal);
        return new String(bArrDoFinal, bz0.a);
    }

    public static byte[] b(String str, String str2) throws NoSuchAlgorithmException {
        cr4.g(str2, "accessToken");
        MessageDigest messageDigest = MessageDigest.getInstance("SHA-256");
        byte[] bytes = str.getBytes(bz0.a);
        cr4.f(bytes, "getBytes(...)");
        byte[] bArrDigest = messageDigest.digest(bytes);
        cr4.f(bArrDigest, "digest(...)");
        return bArrDigest;
    }

    public static String c(String str, byte[] bArr) throws BadPaddingException, NoSuchPaddingException, IllegalBlockSizeException, NoSuchAlgorithmException, InvalidKeyException, InvalidAlgorithmParameterException {
        cr4.g(str, "data");
        cr4.g(bArr, "key");
        if (bArr.length != 32) {
            throw new IllegalArgumentException("Key must be 32 bytes for AES-256");
        }
        Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding");
        byte[] bArr2 = new byte[12];
        new SecureRandom().nextBytes(bArr2);
        cipher.init(1, new SecretKeySpec(bArr, "AES"), new GCMParameterSpec(128, bArr2));
        byte[] bytes = str.getBytes(bz0.a);
        cr4.f(bytes, "getBytes(...)");
        byte[] bArrDoFinal = cipher.doFinal(bytes);
        cr4.d(bArrDoFinal);
        String strEncodeToString = Base64.encodeToString(st.ai(bArr2, bArrDoFinal), 2);
        cr4.f(strEncodeToString, "encodeToString(...)");
        return strEncodeToString;
    }
}
