Add function to load the key from x509.pem file We used to convert a pem certificate file to some intermediate plain text format; and parse that format under recovery mode. This is uncessary since the x509.pem can be directly parsed with openssl functions. Add the function to load the public key from one x509.pem file and corresponding unit tests. And we will add more cls to extract the pem files from otacert.zip later. Bug: 116655889 Test: verify package with 5 supported certficate versions Change-Id: Ibc6c696c534567f005db75143cc4ef8d4bdea6a0

commit: 825669802315fe11508f0e962490b77cfdfc6184 [log] [tgz]
author: Tianjie Xu <xunchang@google.com> Wed Oct 10 15:44:17 2018 -0700
committer: Tianjie Xu <xunchang@google.com> Fri Oct 12 11:12:08 2018 -0700
tree: c889c946c0ecfe9b29d7cf2eeb4ba95c582fe9a7
parent: 1a4d234daa26f3954633fd55037193f2827fb36c [diff] [blame]
diff --git a/verifier.h b/verifier.h
index 6fa8f2b..b134241 100644
--- a/verifier.h
+++ b/verifier.h

@@ -17,6 +17,8 @@
 #ifndef _RECOVERY_VERIFIER_H
 #define _RECOVERY_VERIFIER_H
 
+#include <stdint.h>
+
 #include <functional>
 #include <memory>
 #include <vector>
@@ -70,6 +72,10 @@
 
 bool load_keys(const char* filename, std::vector<Certificate>& certs);
 
+// Parses a PEM-encoded x509 certificate from the given buffer and saves it into |cert|. Returns
+// false if there is a parsing failure or the signature's encryption algorithm is not supported.
+bool LoadCertificateFromBuffer(const std::vector<uint8_t>& pem_content, Certificate* cert);
+
 #define VERIFY_SUCCESS        0
 #define VERIFY_FAILURE        1
commit	825669802315fe11508f0e962490b77cfdfc6184	[log] [tgz]
author	Tianjie Xu <xunchang@google.com>	Wed Oct 10 15:44:17 2018 -0700
committer	Tianjie Xu <xunchang@google.com>	Fri Oct 12 11:12:08 2018 -0700
tree	c889c946c0ecfe9b29d7cf2eeb4ba95c582fe9a7
parent	1a4d234daa26f3954633fd55037193f2827fb36c [diff] [blame]