Load X509 keys from ziparchive Add a function to parse the zip archive and load the certificate from all the zip entries with the suffix "x509.pem". Bug: 116655889 Test: unittests pass Change-Id: I93bf7aef7462c0623e89fc2d466d7af2d3a758bc

commit: 0dd96853111942330acd6b629aedbddf9dfa6ae6 [log] [tgz]
author: Tianjie Xu <xunchang@google.com> Mon Oct 15 11:44:14 2018 -0700
committer: Tianjie Xu <xunchang@google.com> Thu Oct 18 11:42:01 2018 -0700
tree: b8a1ed113ff856f3293b4c605d7c76be5cb4b8bd
parent: 06b1a89d72520e77c153782b2b2cff05d0ff6ffa [diff] [blame]
diff --git a/verifier.h b/verifier.h
index b134241..b7924c7 100644
--- a/verifier.h
+++ b/verifier.h

@@ -76,6 +76,10 @@
 // false if there is a parsing failure or the signature's encryption algorithm is not supported.
 bool LoadCertificateFromBuffer(const std::vector<uint8_t>& pem_content, Certificate* cert);
 
+// Iterates over the zip entries with the suffix "x509.pem" and returns a list of recognized
+// certificates. Returns an empty list if we fail to parse any of the entries.
+std::vector<Certificate> LoadKeysFromZipfile(const std::string& zip_name);
+
 #define VERIFY_SUCCESS        0
 #define VERIFY_FAILURE        1
commit	0dd96853111942330acd6b629aedbddf9dfa6ae6	[log] [tgz]
author	Tianjie Xu <xunchang@google.com>	Mon Oct 15 11:44:14 2018 -0700
committer	Tianjie Xu <xunchang@google.com>	Thu Oct 18 11:42:01 2018 -0700
tree	b8a1ed113ff856f3293b4c605d7c76be5cb4b8bd
parent	06b1a89d72520e77c153782b2b2cff05d0ff6ffa [diff] [blame]