Returns signing version from ApkSignatureVerifier

import android.util.TypedValue;

import android.util.apk.ApkSignatureSchemeV2Verifier;

import android.util.apk.ApkSignatureVerifier;

import android.util.apk.SignatureNotFoundException;

import android.view.Gravity;

import com.android.internal.R;

        boolean systemDir = (parseFlags & PARSE_IS_SYSTEM_DIR) != 0;

        int minSignatureScheme = ApkSignatureVerifier.VERSION_JAR_SIGNATURE_SCHEME;

        if ((parseFlags & PARSE_IS_EPHEMERAL) != 0 || pkg.applicationInfo.isStaticSharedLibrary()) {

        if (pkg.applicationInfo.isStaticSharedLibrary()) {

            // must use v2 signing scheme

            minSignatureScheme = ApkSignatureVerifier.VERSION_APK_SIGNATURE_SCHEME_V2;

        }

        try {

        ApkSignatureVerifier.Result verified =

                ApkSignatureVerifier.verify(apkPath, minSignatureScheme, systemDir);

        if (verified.signatureSchemeVersion

                < ApkSignatureVerifier.VERSION_APK_SIGNATURE_SCHEME_V2) {

            // TODO (b/68860689): move this logic to packagemanagerserivce

            if ((parseFlags & PARSE_IS_EPHEMERAL) != 0) {

                throw new PackageParserException(INSTALL_PARSE_FAILED_NO_CERTIFICATES,

                        "No APK Signature Scheme v2 signature in ephemeral package " + apkPath);

            }

        }

        if (pkg.mCertificates == null) {

            pkg.mCertificates = verified.certs;

            pkg.mSignatures = verified.sigs;

                        apkPath + " has mismatched certificates");

            }

        }

        } catch (SignatureNotFoundException e) {

            if ((parseFlags & PARSE_IS_EPHEMERAL) != 0) {

                throw new PackageParserException(INSTALL_PARSE_FAILED_NO_CERTIFICATES,

                        "No APK Signature Scheme v2 signature in ephemeral package " + apkPath,

                        e);

            }

            if (pkg.applicationInfo.isStaticSharedLibrary()) {

                throw new PackageParserException(INSTALL_PARSE_FAILED_NO_CERTIFICATES,

                        "Static shared libs must use v2 signature scheme " + apkPath);

            }

            throw new PackageParserException(INSTALL_PARSE_FAILED_NO_CERTIFICATES,

                    "No APK Signature Scheme v2 signature in package " + apkPath, e);

        }

    }

    private static AssetManager newConfiguredAssetManager() {

     *                  v2 stripping rollback protection, or verify integrity of the APK.

     *

     * @throws PackageParserException if the APK's signature failed to verify.

     * @throws SignatureNotFoundException if a signature corresponding to minLevel or greater

     * is not found, except in the case of no JAR signature.

     */

    public static Result verify(String apkPath, int minSignatureSchemeVersion, boolean systemDir)

            throws PackageParserException, SignatureNotFoundException {

        boolean verified = false;

        Certificate[][] signerCerts;

        int level = VERSION_APK_SIGNATURE_SCHEME_V2;

            throws PackageParserException {

        // first try v2

        Trace.traceBegin(TRACE_TAG_PACKAGE_MANAGER, "verifyV2");

        try {

            Certificate[][] signerCerts;

            signerCerts = ApkSignatureSchemeV2Verifier.verify(apkPath);

            Signature[] signerSigs = convertToSignatures(signerCerts);

            } finally {

                closeQuietly(jarFile);

            }

            return new Result(signerCerts, signerSigs);

            return new Result(signerCerts, signerSigs, VERSION_APK_SIGNATURE_SCHEME_V2);

        } catch (SignatureNotFoundException e) {

            // not signed with v2, try older if allowed

            if (minSignatureSchemeVersion >= VERSION_APK_SIGNATURE_SCHEME_V2) {

                throw new SignatureNotFoundException(

                        "No APK Signature Scheme v2 signature found for " + apkPath, e);

                throw new PackageParserException(INSTALL_PARSE_FAILED_NO_CERTIFICATES,

                        "No APK Signature Scheme v2 signature in package " + apkPath, e);

            }

        } catch (PackageParserException e) {

            // preserve any new exceptions explicitly thrown here

                    }

                }

            }

            return new Result(lastCerts, lastSigs);

            return new Result(lastCerts, lastSigs, VERSION_JAR_SIGNATURE_SCHEME);

        } catch (GeneralSecurityException e) {

            throw new PackageParserException(INSTALL_PARSE_FAILED_CERTIFICATE_ENCODING,

                    "Failed to collect certificates from " + apkPath, e);

    public static class Result {

        public final Certificate[][] certs;

        public final Signature[] sigs;

        public final int signatureSchemeVersion;

        public Result(Certificate[][] certs, Signature[] sigs) {

        public Result(Certificate[][] certs, Signature[] sigs, int signingVersion) {

            this.certs = certs;

            this.sigs = sigs;

            this.signatureSchemeVersion = signingVersion;

        }

    }

}