From 065dbb7f5129cc05fd2d3de389fe24ca0fd2289e Mon Sep 17 00:00:00 2001
From: Volodymyr Khoroz <volodymyr.khoroz@foundries.io>
Date: Fri, 10 Nov 2023 20:41:09 +0200
Subject: [PATCH] Refactor: extract a routine to iterate certs from "ca show"

This will be reused for to validate if the revoked/disabled cert is present in the actual device CAs list.

Signed-off-by: Volodymyr Khoroz <volodymyr.khoroz@foundries.io>
---
 subcommands/keys/ca_show.go | 17 ++++++++++++-----
 1 file changed, 12 insertions(+), 5 deletions(-)

diff --git a/subcommands/keys/ca_show.go b/subcommands/keys/ca_show.go
index a26f790b..17155493 100644
--- a/subcommands/keys/ca_show.go
+++ b/subcommands/keys/ca_show.go
@@ -152,23 +152,30 @@ func extKeyUsage(ext []x509.ExtKeyUsage) string {
 	return vals
 }
 
-func prettyPrint(cert string) {
-	for len(cert) > 0 {
-		block, remaining := pem.Decode([]byte(cert))
+func parseCertList(pemData string) (certs []*x509.Certificate) {
+	for len(pemData) > 0 {
+		block, remaining := pem.Decode([]byte(pemData))
 		if block == nil {
 			// could be excessive whitespace
-			if cert = strings.TrimSpace(string(remaining)); len(cert) == len(remaining) {
+			if pemData = strings.TrimSpace(string(remaining)); len(pemData) == len(remaining) {
 				fmt.Println("Failed to parse remaining certificates: invalid PEM data")
 				break
 			}
 			continue
 		}
-		cert = string(remaining)
+		pemData = string(remaining)
 		c, err := x509.ParseCertificate(block.Bytes)
 		if err != nil {
 			fmt.Println("Failed to parse certificate:" + err.Error())
 			continue
 		}
+		certs = append(certs, c)
+	}
+	return
+}
+
+func prettyPrint(cert string) {
+	for _, c := range parseCertList(cert) {
 		fmt.Println("Certificate:")
 		fmt.Println("\tVersion:", c.Version)
 		fmt.Println("\tSerial Number:", c.SerialNumber.Text(10))