rohitsahay2000

That's not the point. All sensitive information is masked out. Why the strings are hardcoded ? ` if (!cn.toLowerCase().contains("push")) { throw new CertificateException("Not a push certificate - " + cn);...

CN is like this: CN=APSP:0226d278-d925-4044-af07-a346da05e2c5/C=IN As you can see this doesn't contain any strings against which validation is being done. For example: "push", "apple development ios push services","apple production ios...

@judepereira : Did you check? Have we removed the hardcoding?