Prevent IX509TrustManager classes from being trimmed

src/Mono.Android/Xamarin.Android.Net/ServerCertificateCustomValidator.cs

@@ -1,5 +1,6 @@
 using System;
 using System.Collections.Generic;
+using System.Diagnostics.CodeAnalysis;
 using System.Net.Http;
 using System.Net.Security;
 using System.Security.Cryptography.X509Certificates;
@@ -31,12 +32,12 @@ public ITrustManager[] ReplaceX509TrustManager (ITrustManager[]? trustManagers,
 
 		private sealed class TrustManager : Java.Lang.Object, IX509TrustManager
 		{
-			private readonly IX509TrustManager? _internalTrustManager;
+			private readonly IX509TrustManager _internalTrustManager;
 			private readonly HttpRequestMessage _request;
 			private readonly Func<HttpRequestMessage, X509Certificate2?, X509Chain?, SslPolicyErrors, bool> _serverCertificateCustomValidationCallback;
 
 			public TrustManager (
-				IX509TrustManager? internalTrustManager,
+				IX509TrustManager internalTrustManager,
 				HttpRequestMessage request,
 				Func<HttpRequestMessage, X509Certificate2?, X509Chain?, SslPolicyErrors, bool> serverCertificateCustomValidationCallback)
 			{
@@ -50,7 +51,7 @@ public void CheckServerTrusted (JavaX509Certificate[] javaChain, string authType
 				var sslPolicyErrors = SslPolicyErrors.None;
 
 				try {
-					_internalTrustManager?.CheckServerTrusted (javaChain, authType);
+					_internalTrustManager.CheckServerTrusted (javaChain, authType);
 				} catch (JavaCertificateException) {
 					sslPolicyErrors |= SslPolicyErrors.RemoteCertificateChainErrors;
 				}
@@ -158,33 +159,29 @@ private sealed class AlwaysAcceptingHostnameVerifier : Java.Lang.Object, IHostna
 			public bool Verify (string? hostname, ISSLSession? session) => true;
 		}
 
-		private static IX509TrustManager? FindX509TrustManager(ITrustManager[]? trustManagers)
+		[DynamicDependency(nameof(IX509TrustManager.CheckServerTrusted), typeof(IX509TrustManagerInvoker))]
+		[DynamicDependency(nameof(IX509TrustManager.CheckServerTrusted), typeof(X509ExtendedTrustManagerInvoker))]
+		private static IX509TrustManager FindX509TrustManager(ITrustManager[] trustManagers)
 		{
-			if (trustManagers is null)
-				return null;
-
 			foreach (var trustManager in trustManagers) {
 				if (trustManager is IX509TrustManager tm)
 					return tm;
 			}
 
-			return null;
+			throw new InvalidOperationException($"Could not find {nameof(IX509TrustManager)} in {nameof(ITrustManager)} array.");
 		}
 
-		private static ITrustManager[] ModifyTrustManagersArray (ITrustManager[] trustManagers, IX509TrustManager? original, IX509TrustManager replacement)
+		private static ITrustManager[] ModifyTrustManagersArray (ITrustManager[] trustManagers, IX509TrustManager original, IX509TrustManager replacement)
 		{
-			var modifiedTrustManagersCount = original is null ? trustManagers.Length + 1 : trustManagers.Length;
-			var modifiedTrustManagersArray = new ITrustManager [modifiedTrustManagersCount];
-
-			modifiedTrustManagersArray [0] = replacement;
-			int nextIndex = 1;
+			var modifiedTrustManagersArray = new ITrustManager [trustManagers.Length];
 
 			for (int i = 0; i < trustManagers.Length; i++) {
 				if (trustManagers [i] == original) {
-					continue;
+					modifiedTrustManagersArray [i] = replacement;
+				} else {
+					modifiedTrustManagersArray [i] = trustManagers [i];
 				}
 
-				modifiedTrustManagersArray [nextIndex++] = trustManagers [i];
 			}
 
 			return modifiedTrustManagersArray;