package p037.p113.p114;

import android.security.keystore.KeyGenParameterSpec;
import java.io.IOException;
import java.security.InvalidAlgorithmParameterException;
import java.security.KeyStore;
import java.security.KeyStoreException;
import java.security.NoSuchAlgorithmException;
import java.security.NoSuchProviderException;
import java.security.cert.CertificateException;
import java.util.Arrays;
import javax.crypto.KeyGenerator;
import p138.p139.p143.p144.C2803;

/* JADX INFO: renamed from: މ.ޒ.֏.ؠ, reason: contains not printable characters */
/* JADX INFO: loaded from: classes.dex */
public final class C2440 {

    /* JADX INFO: renamed from: ֏, reason: contains not printable characters */
    public static final KeyGenParameterSpec f7732 = new KeyGenParameterSpec.Builder("_androidx_security_master_key_", 3).setBlockModes("GCM").setEncryptionPaddings("NoPadding").setKeySize(256).build();

    /* JADX INFO: renamed from: ֏, reason: contains not printable characters */
    public static String m4523(KeyGenParameterSpec keyGenParameterSpec) throws NoSuchAlgorithmException, IOException, KeyStoreException, CertificateException, NoSuchProviderException, InvalidAlgorithmParameterException {
        if (keyGenParameterSpec.getKeySize() != 256) {
            StringBuilder sbM4889 = C2803.m4889("invalid key size, want 256 bits got ");
            sbM4889.append(keyGenParameterSpec.getKeySize());
            sbM4889.append(" bits");
            throw new IllegalArgumentException(sbM4889.toString());
        }
        if (!Arrays.equals(keyGenParameterSpec.getBlockModes(), new String[]{"GCM"})) {
            StringBuilder sbM48892 = C2803.m4889("invalid block mode, want GCM got ");
            sbM48892.append(Arrays.toString(keyGenParameterSpec.getBlockModes()));
            throw new IllegalArgumentException(sbM48892.toString());
        }
        if (keyGenParameterSpec.getPurposes() != 3) {
            StringBuilder sbM48893 = C2803.m4889("invalid purposes mode, want PURPOSE_ENCRYPT | PURPOSE_DECRYPT got ");
            sbM48893.append(keyGenParameterSpec.getPurposes());
            throw new IllegalArgumentException(sbM48893.toString());
        }
        if (!Arrays.equals(keyGenParameterSpec.getEncryptionPaddings(), new String[]{"NoPadding"})) {
            StringBuilder sbM48894 = C2803.m4889("invalid padding mode, want NoPadding got ");
            sbM48894.append(Arrays.toString(keyGenParameterSpec.getEncryptionPaddings()));
            throw new IllegalArgumentException(sbM48894.toString());
        }
        if (keyGenParameterSpec.isUserAuthenticationRequired() && keyGenParameterSpec.getUserAuthenticationValidityDurationSeconds() < 1) {
            throw new IllegalArgumentException("per-operation authentication is not supported (UserAuthenticationValidityDurationSeconds must be >0)");
        }
        String keystoreAlias = keyGenParameterSpec.getKeystoreAlias();
        KeyStore keyStore = KeyStore.getInstance("AndroidKeyStore");
        keyStore.load(null);
        if (!keyStore.containsAlias(keystoreAlias)) {
            KeyGenerator keyGenerator = KeyGenerator.getInstance("AES", "AndroidKeyStore");
            keyGenerator.init(keyGenParameterSpec);
            keyGenerator.generateKey();
        }
        return keyGenParameterSpec.getKeystoreAlias();
    }
}
