PyPI - pyasn1-alt-modules - Versions diffs - 0.4.5__py3-none-any.whl - Mend

pyasn1-alt-modules 0.4.5__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of pyasn1-alt-modules might be problematic. Click here for more details.

Files changed (195) hide show

pyasn1_alt_modules/__init__.py +2 -0
pyasn1_alt_modules/opentypemap.py +19 -0
pyasn1_alt_modules/pem.py +66 -0
pyasn1_alt_modules/rfc1155.py +97 -0
pyasn1_alt_modules/rfc1157.py +127 -0
pyasn1_alt_modules/rfc1901.py +23 -0
pyasn1_alt_modules/rfc1902.py +130 -0
pyasn1_alt_modules/rfc1905.py +136 -0
pyasn1_alt_modules/rfc2040.py +50 -0
pyasn1_alt_modules/rfc2251.py +564 -0
pyasn1_alt_modules/rfc2314.py +68 -0
pyasn1_alt_modules/rfc2315.py +325 -0
pyasn1_alt_modules/rfc2437.py +70 -0
pyasn1_alt_modules/rfc2459.py +1340 -0
pyasn1_alt_modules/rfc2511.py +303 -0
pyasn1_alt_modules/rfc2528.py +34 -0
pyasn1_alt_modules/rfc2560.py +226 -0
pyasn1_alt_modules/rfc2631.py +37 -0
pyasn1_alt_modules/rfc2634.py +342 -0
pyasn1_alt_modules/rfc2743.py +60 -0
pyasn1_alt_modules/rfc2876.py +61 -0
pyasn1_alt_modules/rfc2898.py +72 -0
pyasn1_alt_modules/rfc2985.py +593 -0
pyasn1_alt_modules/rfc2986.py +76 -0
pyasn1_alt_modules/rfc3058.py +48 -0
pyasn1_alt_modules/rfc3114.py +80 -0
pyasn1_alt_modules/rfc3125.py +469 -0
pyasn1_alt_modules/rfc3161.py +142 -0
pyasn1_alt_modules/rfc3217.py +42 -0
pyasn1_alt_modules/rfc3274.py +62 -0
pyasn1_alt_modules/rfc3279.py +264 -0
pyasn1_alt_modules/rfc3280.py +1544 -0
pyasn1_alt_modules/rfc3281.py +332 -0
pyasn1_alt_modules/rfc3370.py +142 -0
pyasn1_alt_modules/rfc3412.py +54 -0
pyasn1_alt_modules/rfc3414.py +29 -0
pyasn1_alt_modules/rfc3447.py +46 -0
pyasn1_alt_modules/rfc3537.py +44 -0
pyasn1_alt_modules/rfc3546.py +23 -0
pyasn1_alt_modules/rfc3560.py +74 -0
pyasn1_alt_modules/rfc3565.py +59 -0
pyasn1_alt_modules/rfc3657.py +69 -0
pyasn1_alt_modules/rfc3709.py +230 -0
pyasn1_alt_modules/rfc3739.py +207 -0
pyasn1_alt_modules/rfc3770.py +77 -0
pyasn1_alt_modules/rfc3779.py +139 -0
pyasn1_alt_modules/rfc3820.py +66 -0
pyasn1_alt_modules/rfc3852.py +707 -0
pyasn1_alt_modules/rfc3874.py +29 -0
pyasn1_alt_modules/rfc4010.py +58 -0
pyasn1_alt_modules/rfc4043.py +45 -0
pyasn1_alt_modules/rfc4055.py +285 -0
pyasn1_alt_modules/rfc4056.py +56 -0
pyasn1_alt_modules/rfc4059.py +101 -0
pyasn1_alt_modules/rfc4073.py +62 -0
pyasn1_alt_modules/rfc4108.py +355 -0
pyasn1_alt_modules/rfc4210.py +807 -0
pyasn1_alt_modules/rfc4211.py +420 -0
pyasn1_alt_modules/rfc4231.py +38 -0
pyasn1_alt_modules/rfc4262.py +37 -0
pyasn1_alt_modules/rfc4334.py +78 -0
pyasn1_alt_modules/rfc4357.py +485 -0
pyasn1_alt_modules/rfc4366.py +23 -0
pyasn1_alt_modules/rfc4387.py +23 -0
pyasn1_alt_modules/rfc4476.py +99 -0
pyasn1_alt_modules/rfc4490.py +119 -0
pyasn1_alt_modules/rfc4491.py +44 -0
pyasn1_alt_modules/rfc4683.py +76 -0
pyasn1_alt_modules/rfc4985.py +52 -0
pyasn1_alt_modules/rfc4998.py +125 -0
pyasn1_alt_modules/rfc5035.py +206 -0
pyasn1_alt_modules/rfc5055.py +763 -0
pyasn1_alt_modules/rfc5083.py +55 -0
pyasn1_alt_modules/rfc5084.py +94 -0
pyasn1_alt_modules/rfc5126.py +578 -0
pyasn1_alt_modules/rfc5208.py +73 -0
pyasn1_alt_modules/rfc5275.py +404 -0
pyasn1_alt_modules/rfc5276.py +82 -0
pyasn1_alt_modules/rfc5280.py +1666 -0
pyasn1_alt_modules/rfc5480.py +190 -0
pyasn1_alt_modules/rfc5544.py +127 -0
pyasn1_alt_modules/rfc5636.py +117 -0
pyasn1_alt_modules/rfc5639.py +49 -0
pyasn1_alt_modules/rfc5649.py +33 -0
pyasn1_alt_modules/rfc5652.py +763 -0
pyasn1_alt_modules/rfc5697.py +64 -0
pyasn1_alt_modules/rfc5698.py +159 -0
pyasn1_alt_modules/rfc5751.py +127 -0
pyasn1_alt_modules/rfc5752.py +52 -0
pyasn1_alt_modules/rfc5753.py +163 -0
pyasn1_alt_modules/rfc5755.py +400 -0
pyasn1_alt_modules/rfc5913.py +46 -0
pyasn1_alt_modules/rfc5914.py +119 -0
pyasn1_alt_modules/rfc5915.py +32 -0
pyasn1_alt_modules/rfc5916.py +39 -0
pyasn1_alt_modules/rfc5917.py +59 -0
pyasn1_alt_modules/rfc5924.py +19 -0
pyasn1_alt_modules/rfc5934.py +786 -0
pyasn1_alt_modules/rfc5940.py +62 -0
pyasn1_alt_modules/rfc5958.py +100 -0
pyasn1_alt_modules/rfc5990.py +238 -0
pyasn1_alt_modules/rfc6010.py +92 -0
pyasn1_alt_modules/rfc6019.py +46 -0
pyasn1_alt_modules/rfc6031.py +469 -0
pyasn1_alt_modules/rfc6032.py +71 -0
pyasn1_alt_modules/rfc6066.py +25 -0
pyasn1_alt_modules/rfc6120.py +46 -0
pyasn1_alt_modules/rfc6170.py +17 -0
pyasn1_alt_modules/rfc6187.py +22 -0
pyasn1_alt_modules/rfc6210.py +45 -0
pyasn1_alt_modules/rfc6211.py +75 -0
pyasn1_alt_modules/rfc6402.py +643 -0
pyasn1_alt_modules/rfc6482.py +77 -0
pyasn1_alt_modules/rfc6484.py +17 -0
pyasn1_alt_modules/rfc6486.py +70 -0
pyasn1_alt_modules/rfc6487.py +22 -0
pyasn1_alt_modules/rfc6492.py +41 -0
pyasn1_alt_modules/rfc6493.py +24 -0
pyasn1_alt_modules/rfc6494.py +23 -0
pyasn1_alt_modules/rfc6664.py +151 -0
pyasn1_alt_modules/rfc6955.py +112 -0
pyasn1_alt_modules/rfc6960.py +234 -0
pyasn1_alt_modules/rfc6962.py +52 -0
pyasn1_alt_modules/rfc7030.py +70 -0
pyasn1_alt_modules/rfc7191.py +267 -0
pyasn1_alt_modules/rfc7229.py +29 -0
pyasn1_alt_modules/rfc7292.py +359 -0
pyasn1_alt_modules/rfc7296.py +32 -0
pyasn1_alt_modules/rfc7508.py +92 -0
pyasn1_alt_modules/rfc7585.py +53 -0
pyasn1_alt_modules/rfc7633.py +40 -0
pyasn1_alt_modules/rfc7693.py +66 -0
pyasn1_alt_modules/rfc7773.py +54 -0
pyasn1_alt_modules/rfc7836.py +65 -0
pyasn1_alt_modules/rfc7894.py +100 -0
pyasn1_alt_modules/rfc7906.py +739 -0
pyasn1_alt_modules/rfc7914.py +55 -0
pyasn1_alt_modules/rfc8017.py +159 -0
pyasn1_alt_modules/rfc8018.py +269 -0
pyasn1_alt_modules/rfc8103.py +36 -0
pyasn1_alt_modules/rfc8209.py +20 -0
pyasn1_alt_modules/rfc8226.py +151 -0
pyasn1_alt_modules/rfc8358.py +54 -0
pyasn1_alt_modules/rfc8360.py +46 -0
pyasn1_alt_modules/rfc8398.py +55 -0
pyasn1_alt_modules/rfc8410.py +43 -0
pyasn1_alt_modules/rfc8418.py +36 -0
pyasn1_alt_modules/rfc8419.py +70 -0
pyasn1_alt_modules/rfc8479.py +48 -0
pyasn1_alt_modules/rfc8494.py +80 -0
pyasn1_alt_modules/rfc8520.py +66 -0
pyasn1_alt_modules/rfc8619.py +45 -0
pyasn1_alt_modules/rfc8649.py +42 -0
pyasn1_alt_modules/rfc8692.py +79 -0
pyasn1_alt_modules/rfc8696.py +108 -0
pyasn1_alt_modules/rfc8702.py +109 -0
pyasn1_alt_modules/rfc8708.py +43 -0
pyasn1_alt_modules/rfc8737.py +36 -0
pyasn1_alt_modules/rfc8769.py +21 -0
pyasn1_alt_modules/rfc8894.py +52 -0
pyasn1_alt_modules/rfc8951.py +42 -0
pyasn1_alt_modules/rfc8954.py +238 -0
pyasn1_alt_modules/rfc8994.py +52 -0
pyasn1_alt_modules/rfc8995.py +39 -0
pyasn1_alt_modules/rfc9044.py +80 -0
pyasn1_alt_modules/rfc9092.py +35 -0
pyasn1_alt_modules/rfc9118.py +82 -0
pyasn1_alt_modules/rfc9174.py +55 -0
pyasn1_alt_modules/rfc9189.py +74 -0
pyasn1_alt_modules/rfc9215.py +228 -0
pyasn1_alt_modules/rfc9286.py +78 -0
pyasn1_alt_modules/rfc9289.py +22 -0
pyasn1_alt_modules/rfc9310.py +46 -0
pyasn1_alt_modules/rfc9323.py +129 -0
pyasn1_alt_modules/rfc9336.py +20 -0
pyasn1_alt_modules/rfc9337.py +74 -0
pyasn1_alt_modules/rfc9345.py +36 -0
pyasn1_alt_modules/rfc9385.py +22 -0
pyasn1_alt_modules/rfc9399.py +59 -0
pyasn1_alt_modules/rfc9480.py +731 -0
pyasn1_alt_modules/rfc9481.py +224 -0
pyasn1_alt_modules/rfc9509.py +24 -0
pyasn1_alt_modules/rfc9548.py +23 -0
pyasn1_alt_modules/rfc9579.py +89 -0
pyasn1_alt_modules/rfc9582.py +107 -0
pyasn1_alt_modules/rfc9598.py +52 -0
pyasn1_alt_modules/rfc9608.py +35 -0
pyasn1_alt_modules/rfc9629.py +100 -0
pyasn1_alt_modules/rfc9654.py +241 -0
pyasn1_alt_modules-0.4.5.dist-info/LICENSE.txt +25 -0
pyasn1_alt_modules-0.4.5.dist-info/METADATA +34 -0
pyasn1_alt_modules-0.4.5.dist-info/RECORD +195 -0
pyasn1_alt_modules-0.4.5.dist-info/WHEEL +5 -0
pyasn1_alt_modules-0.4.5.dist-info/top_level.txt +1 -0
pyasn1_alt_modules-0.4.5.dist-info/zip-safe +1 -0

pyasn1_alt_modules/rfc5755.py ADDED Viewed

@@ -0,0 +1,400 @@
+#
+# This file is part of pyasn1-alt-modules software.
+#
+# Created by Russ Housley with assistance from asn1ate v.0.6.0.
+# Modified by Russ Housley to include the opentypemap manager.
+#
+# Copyright (c) 2019-2024, Vigil Security, LLC
+# License: http://vigilsec.com/pyasn1-alt-modules-license.txt
+#
+# An Internet Attribute Certificate Profile for Authorization
+#
+# ASN.1 source from:
+# https://www.rfc-editor.org/rfc/rfc5755.txt
+# https://www.rfc-editor.org/rfc/rfc5912.txt (see Section 13)
+#
+from pyasn1.type import char
+from pyasn1.type import constraint
+from pyasn1.type import namedtype
+from pyasn1.type import namedval
+from pyasn1.type import opentype
+from pyasn1.type import tag
+from pyasn1.type import univ
+from pyasn1.type import useful
+from pyasn1_alt_modules import rfc5280
+from pyasn1_alt_modules import rfc5652
+from pyasn1_alt_modules import opentypemap
+certificateAttributesMap = opentypemap.get('certificateAttributesMap')
+certificateExtensionsMap = opentypemap.get('certificateExtensionsMap')
+securityCategoryMap = opentypemap.get('securityCategoryMap')
+MAX = float('inf')
+# Imports from RFC 5652
+ContentInfo = rfc5652.ContentInfo
+# Imports from RFC 5280
+AlgorithmIdentifier = rfc5280.AlgorithmIdentifier
+Attribute = rfc5280.Attribute
+AuthorityInfoAccessSyntax = rfc5280.AuthorityInfoAccessSyntax
+AuthorityKeyIdentifier = rfc5280.AuthorityKeyIdentifier
+CertificateSerialNumber = rfc5280.CertificateSerialNumber
+CRLDistributionPoints = rfc5280.CRLDistributionPoints
+Extensions = rfc5280.Extensions
+Extension = rfc5280.Extension
+GeneralNames = rfc5280.GeneralNames
+GeneralName = rfc5280.GeneralName
+UniqueIdentifier = rfc5280.UniqueIdentifier
+# Object Identifier arcs
+id_pkix = univ.ObjectIdentifier((1, 3, 6, 1, 5, 5, 7, ))
+id_pe = id_pkix + (1, )
+id_kp = id_pkix + (3, )
+id_aca = id_pkix + (10, )
+id_ad = id_pkix + (48, )
+id_at = univ.ObjectIdentifier((2, 5, 4, ))
+id_ce = univ.ObjectIdentifier((2, 5, 29, ))
+# Attribute Certificate
+class AttCertVersion(univ.Integer):
+    namedValues = namedval.NamedValues(
+        ('v2', 1)
+    )
+class IssuerSerial(univ.Sequence):
+    componentType = namedtype.NamedTypes(
+        namedtype.NamedType('issuer', GeneralNames()),
+        namedtype.NamedType('serial', CertificateSerialNumber()),
+        namedtype.OptionalNamedType('issuerUID', UniqueIdentifier())
+    )
+class ObjectDigestInfo(univ.Sequence):
+    componentType = namedtype.NamedTypes(
+        namedtype.NamedType('digestedObjectType',
+            univ.Enumerated(namedValues=namedval.NamedValues(
+                ('publicKey', 0),
+                ('publicKeyCert', 1),
+                ('otherObjectTypes', 2)))),
+        namedtype.OptionalNamedType('otherObjectTypeID',
+            univ.ObjectIdentifier()),
+        namedtype.NamedType('digestAlgorithm',
+            AlgorithmIdentifier()),
+        namedtype.NamedType('objectDigest',
+            univ.BitString())
+    )
+class Holder(univ.Sequence):
+    componentType = namedtype.NamedTypes(
+        namedtype.OptionalNamedType('baseCertificateID',
+            IssuerSerial().subtype(implicitTag=tag.Tag(
+                tag.tagClassContext, tag.tagFormatConstructed, 0))),
+        namedtype.OptionalNamedType('entityName',
+            GeneralNames().subtype(implicitTag=tag.Tag(
+                tag.tagClassContext, tag.tagFormatSimple, 1))),
+        namedtype.OptionalNamedType('objectDigestInfo',
+            ObjectDigestInfo().subtype(implicitTag=tag.Tag(
+                tag.tagClassContext, tag.tagFormatConstructed, 2)))
+)
+class V2Form(univ.Sequence):
+    componentType = namedtype.NamedTypes(
+        namedtype.OptionalNamedType('issuerName',
+            GeneralNames()),
+        namedtype.OptionalNamedType('baseCertificateID',
+            IssuerSerial().subtype(implicitTag=tag.Tag(
+                tag.tagClassContext, tag.tagFormatConstructed, 0))),
+        namedtype.OptionalNamedType('objectDigestInfo',
+            ObjectDigestInfo().subtype(implicitTag=tag.Tag(
+                tag.tagClassContext, tag.tagFormatConstructed, 1)))
+    )
+class AttCertIssuer(univ.Choice):
+    componentType = namedtype.NamedTypes(
+        namedtype.NamedType('v1Form', GeneralNames()),
+        namedtype.NamedType('v2Form', V2Form().subtype(implicitTag=tag.Tag(
+            tag.tagClassContext, tag.tagFormatConstructed, 0)))
+    )
+class AttCertValidityPeriod(univ.Sequence):
+    componentType = namedtype.NamedTypes(
+        namedtype.NamedType('notBeforeTime', useful.GeneralizedTime()),
+        namedtype.NamedType('notAfterTime', useful.GeneralizedTime())
+    )
+class AttributeCertificateInfo(univ.Sequence):
+    componentType = namedtype.NamedTypes(
+        namedtype.NamedType('version',
+            AttCertVersion()),
+        namedtype.NamedType('holder',
+            Holder()),
+        namedtype.NamedType('issuer',
+            AttCertIssuer()),
+        namedtype.NamedType('signature',
+            AlgorithmIdentifier()),
+        namedtype.NamedType('serialNumber',
+            CertificateSerialNumber()),
+        namedtype.NamedType('attrCertValidityPeriod',
+            AttCertValidityPeriod()),
+        namedtype.NamedType('attributes',
+            univ.SequenceOf(componentType=Attribute())),
+        namedtype.OptionalNamedType('issuerUniqueID',
+            UniqueIdentifier()),
+        namedtype.OptionalNamedType('extensions',
+            Extensions())
+    )
+class AttributeCertificate(univ.Sequence):
+    componentType = namedtype.NamedTypes(
+        namedtype.NamedType('acinfo', AttributeCertificateInfo()),
+        namedtype.NamedType('signatureAlgorithm', AlgorithmIdentifier()),
+        namedtype.NamedType('signatureValue', univ.BitString())
+    )
+# Attribute Certificate Extensions
+id_pe_ac_auditIdentity = id_pe + (4, )
+id_ce_noRevAvail = id_ce + (56, )
+id_ce_targetInformation = id_ce + (55, )
+class TargetCert(univ.Sequence):
+    componentType = namedtype.NamedTypes(
+        namedtype.NamedType('targetCertificate', IssuerSerial()),
+        namedtype.OptionalNamedType('targetName', GeneralName()),
+        namedtype.OptionalNamedType('certDigestInfo', ObjectDigestInfo())
+    )
+class Target(univ.Choice):
+    componentType = namedtype.NamedTypes(
+        namedtype.NamedType('targetName',
+            GeneralName().subtype(implicitTag=tag.Tag(
+                tag.tagClassContext, tag.tagFormatSimple, 0))),
+        namedtype.NamedType('targetGroup',
+            GeneralName().subtype(implicitTag=tag.Tag(
+                tag.tagClassContext, tag.tagFormatSimple, 1))),
+        namedtype.NamedType('targetCert',
+            TargetCert().subtype(implicitTag=tag.Tag(
+                tag.tagClassContext, tag.tagFormatConstructed, 2)))
+    )
+class Targets(univ.SequenceOf):
+    componentType = Target()
+id_pe_ac_proxying = id_pe + (10, )
+class ProxyInfo(univ.SequenceOf):
+    componentType = Targets()
+id_pe_aaControls = id_pe + (6, )
+class AttrSpec(univ.SequenceOf):
+    componentType = univ.ObjectIdentifier()
+class AAControls(univ.Sequence):
+    componentType = namedtype.NamedTypes(
+        namedtype.OptionalNamedType('pathLenConstraint',
+            univ.Integer().subtype(
+                subtypeSpec=constraint.ValueRangeConstraint(0, MAX))),
+        namedtype.OptionalNamedType('permittedAttrs',
+            AttrSpec().subtype(implicitTag=tag.Tag(
+                tag.tagClassContext, tag.tagFormatSimple, 0))),
+        namedtype.OptionalNamedType('excludedAttrs',
+            AttrSpec().subtype(implicitTag=tag.Tag(
+                tag.tagClassContext, tag.tagFormatSimple, 1))),
+        namedtype.DefaultedNamedType('permitUnSpecified',
+            univ.Boolean().subtype(value=1))
+    )
+# Attribute Certificate Attributes
+id_aca_authenticationInfo = id_aca + (1, )
+id_aca_accessIdentity = id_aca + (2, )
+class SvceAuthInfo(univ.Sequence):
+    componentType = namedtype.NamedTypes(
+        namedtype.NamedType('service', GeneralName()),
+        namedtype.NamedType('ident', GeneralName()),
+        namedtype.OptionalNamedType('authInfo', univ.OctetString())
+    )
+id_aca_chargingIdentity = id_aca + (3, )
+id_aca_group = id_aca + (4, )
+class IetfAttrSyntax(univ.Sequence):
+    componentType = namedtype.NamedTypes(
+        namedtype.OptionalNamedType('policyAuthority',
+            GeneralNames().subtype(implicitTag=tag.Tag(
+                tag.tagClassContext, tag.tagFormatSimple, 0))),
+        namedtype.NamedType('values', univ.SequenceOf(
+            componentType=univ.Choice(componentType=namedtype.NamedTypes(
+                namedtype.NamedType('octets', univ.OctetString()),
+                namedtype.NamedType('oid', univ.ObjectIdentifier()),
+                namedtype.NamedType('string', char.UTF8String())
+            ))
+        ))
+    )
+id_at_role = id_at + (72,)
+class RoleSyntax(univ.Sequence):
+    componentType = namedtype.NamedTypes(
+        namedtype.OptionalNamedType('roleAuthority',
+            GeneralNames().subtype(implicitTag=tag.Tag(
+                tag.tagClassContext, tag.tagFormatSimple, 0))),
+        namedtype.NamedType('roleName',
+            GeneralName().subtype(implicitTag=tag.Tag(
+                tag.tagClassContext, tag.tagFormatSimple, 1)))
+    )
+class ClassList(univ.BitString):
+    namedValues = namedval.NamedValues(
+        ('unmarked', 0),
+        ('unclassified', 1),
+        ('restricted', 2),
+        ('confidential', 3),
+        ('secret', 4),
+        ('topSecret', 5)
+    )
+class SecurityCategory(univ.Sequence):
+    componentType = namedtype.NamedTypes(
+        namedtype.NamedType('type',
+            univ.ObjectIdentifier().subtype(implicitTag=tag.Tag(
+                tag.tagClassContext, tag.tagFormatSimple, 0))),
+        namedtype.NamedType('value',
+            univ.Any().subtype(implicitTag=tag.Tag(
+                tag.tagClassContext, tag.tagFormatSimple, 1)),
+            openType=opentype.OpenType('type', securityCategoryMap))
+    )
+id_at_clearance = univ.ObjectIdentifier((2, 5, 4, 55, ))
+class Clearance(univ.Sequence):
+    componentType = namedtype.NamedTypes(
+        namedtype.NamedType('policyId',
+            univ.ObjectIdentifier()),
+        namedtype.DefaultedNamedType('classList',
+            ClassList().subtype(value='unclassified')),
+        namedtype.OptionalNamedType('securityCategories',
+            univ.SetOf(componentType=SecurityCategory()))
+    )
+id_at_clearance_rfc3281 = univ.ObjectIdentifier((2, 5, 1, 5, 55, ))
+class Clearance_rfc3281(univ.Sequence):
+    componentType = namedtype.NamedTypes(
+        namedtype.NamedType('policyId',
+            univ.ObjectIdentifier().subtype(implicitTag=tag.Tag(
+                tag.tagClassContext, tag.tagFormatSimple, 0))),
+        namedtype.DefaultedNamedType('classList',
+            ClassList().subtype(implicitTag=tag.Tag(
+                tag.tagClassContext, tag.tagFormatSimple, 1)).subtype(
+                    value='unclassified')),
+        namedtype.OptionalNamedType('securityCategories',
+            univ.SetOf(componentType=SecurityCategory()).subtype(
+                implicitTag=tag.Tag(
+                    tag.tagClassContext, tag.tagFormatSimple, 2)))
+    )
+id_aca_encAttrs = id_aca + (6, )
+class ACClearAttrs(univ.Sequence):
+    componentType = namedtype.NamedTypes(
+        namedtype.NamedType('acIssuer', GeneralName()),
+        namedtype.NamedType('acSerial', univ.Integer()),
+        namedtype.NamedType('attrs', univ.SequenceOf(componentType=Attribute()))
+    )
+# Update the Certificate Extensions Map
+_certificateExtensionsMapUpdate = {
+    id_pe_ac_auditIdentity: univ.OctetString(),
+    id_ce_noRevAvail: univ.Null(),
+    id_ce_targetInformation: Targets(),
+    id_pe_ac_proxying: ProxyInfo(),
+    id_pe_aaControls: AAControls(),
+}
+certificateExtensionsMap.update(_certificateExtensionsMapUpdate)
+# Update the Certificate Attributes Map
+_certificateAttributesMapUpdate = {
+    id_aca_authenticationInfo: SvceAuthInfo(),
+    id_aca_accessIdentity: SvceAuthInfo(),
+    id_aca_chargingIdentity: IetfAttrSyntax(),
+    id_aca_group: IetfAttrSyntax(),
+    id_at_role: RoleSyntax(),
+    id_at_clearance: Clearance(),
+    id_at_clearance_rfc3281: Clearance_rfc3281(),
+    id_aca_encAttrs: ContentInfo(),
+}
+certificateAttributesMap.update(_certificateAttributesMapUpdate)

pyasn1_alt_modules/rfc5913.py ADDED Viewed

@@ -0,0 +1,46 @@
+#
+# This file is part of pyasn1-alt-modules software.
+#
+# Created by Russ Housley with assistance from asn1ate v.0.6.0.
+# Modified by Russ Housley to include the opentypemap manager.
+#
+# Copyright (c) 2019-2024, Vigil Security, LLC
+# License: http://vigilsec.com/pyasn1-alt-modules-license.txt
+#
+# Authority Clearance Constraints Certificate Extension
+#
+# ASN.1 source from:
+# https://www.rfc-editor.org/rfc/rfc5913.txt
+# https://www.rfc-editor.org/errata/eid5890
+#
+from pyasn1.type import constraint
+from pyasn1.type import univ
+from pyasn1_alt_modules import rfc5755
+from pyasn1_alt_modules import opentypemap
+certificateExtensionsMap = opentypemap.get('certificateExtensionsMap')
+MAX = float('inf')
+# Authority Clearance Constraints Certificate Extension
+id_pe_clearanceConstraints = univ.ObjectIdentifier('1.3.6.1.5.5.7.1.21')
+id_pe_authorityClearanceConstraints = id_pe_clearanceConstraints
+class AuthorityClearanceConstraints(univ.SequenceOf):
+    componentType = rfc5755.Clearance()
+    subtypeSpec=constraint.ValueSizeConstraint(1, MAX)
+# Update the Certificate Extensions Map
+_certificateExtensionsMapUpdate = {
+    id_pe_clearanceConstraints: AuthorityClearanceConstraints(),
+}
+certificateExtensionsMap.update(_certificateExtensionsMapUpdate)

pyasn1_alt_modules/rfc5914.py ADDED Viewed

@@ -0,0 +1,119 @@
+# This file is part of pyasn1-alt-modules software.
+#
+# Created by Russ Housley with assistance from asn1ate v.0.6.0.
+#
+# Copyright (c) 2019-2024, Vigil Security, LLC
+# License: http://vigilsec.com/pyasn1-alt-modules-license.txt
+#
+# Trust Anchor Format
+#
+# ASN.1 source from:
+# https://www.rfc-editor.org/rfc/rfc5914.txt
+from pyasn1.type import char
+from pyasn1.type import constraint
+from pyasn1.type import namedtype
+from pyasn1.type import namedval
+from pyasn1.type import tag
+from pyasn1.type import univ
+from pyasn1_alt_modules import rfc5280
+MAX = float('inf')
+Certificate = rfc5280.Certificate
+Name = rfc5280.Name
+Extensions = rfc5280.Extensions
+SubjectPublicKeyInfo = rfc5280.SubjectPublicKeyInfo
+TBSCertificate = rfc5280.TBSCertificate
+CertificatePolicies = rfc5280.CertificatePolicies
+KeyIdentifier = rfc5280.KeyIdentifier
+NameConstraints = rfc5280.NameConstraints
+class CertPolicyFlags(univ.BitString):
+    pass
+CertPolicyFlags.namedValues = namedval.NamedValues(
+    ('inhibitPolicyMapping', 0),
+    ('requireExplicitPolicy', 1),
+    ('inhibitAnyPolicy', 2)
+)
+class CertPathControls(univ.Sequence):
+    pass
+CertPathControls.componentType = namedtype.NamedTypes(
+    namedtype.NamedType('taName', Name()),
+    namedtype.OptionalNamedType('certificate', Certificate().subtype(
+        implicitTag=tag.Tag(tag.tagClassContext, tag.tagFormatSimple, 0))),
+    namedtype.OptionalNamedType('policySet', CertificatePolicies().subtype(
+        implicitTag=tag.Tag(tag.tagClassContext, tag.tagFormatSimple, 1))),
+    namedtype.OptionalNamedType('policyFlags', CertPolicyFlags().subtype(
+        implicitTag=tag.Tag(tag.tagClassContext, tag.tagFormatSimple, 2))),
+    namedtype.OptionalNamedType('nameConstr', NameConstraints().subtype(
+        implicitTag=tag.Tag(tag.tagClassContext, tag.tagFormatSimple, 3))),
+    namedtype.OptionalNamedType('pathLenConstraint', univ.Integer().subtype(
+        subtypeSpec=constraint.ValueRangeConstraint(0, MAX)).subtype(
+        implicitTag=tag.Tag(tag.tagClassContext, tag.tagFormatSimple, 4)))
+)
+class TrustAnchorTitle(char.UTF8String):
+    pass
+TrustAnchorTitle.subtypeSpec = constraint.ValueSizeConstraint(1, 64)
+class TrustAnchorInfoVersion(univ.Integer):
+    pass
+TrustAnchorInfoVersion.namedValues = namedval.NamedValues(
+    ('v1', 1)
+)
+class TrustAnchorInfo(univ.Sequence):
+    pass
+TrustAnchorInfo.componentType = namedtype.NamedTypes(
+    namedtype.DefaultedNamedType('version', TrustAnchorInfoVersion().subtype(value='v1')),
+    namedtype.NamedType('pubKey', SubjectPublicKeyInfo()),
+    namedtype.NamedType('keyId', KeyIdentifier()),
+    namedtype.OptionalNamedType('taTitle', TrustAnchorTitle()),
+    namedtype.OptionalNamedType('certPath', CertPathControls()),
+    namedtype.OptionalNamedType('exts', Extensions().subtype(explicitTag=tag.Tag(
+        tag.tagClassContext, tag.tagFormatSimple, 1))),
+    namedtype.OptionalNamedType('taTitleLangTag', char.UTF8String().subtype(
+        implicitTag=tag.Tag(tag.tagClassContext, tag.tagFormatSimple, 2)))
+)
+class TrustAnchorChoice(univ.Choice):
+    pass
+TrustAnchorChoice.componentType = namedtype.NamedTypes(
+    namedtype.NamedType('certificate', Certificate()),
+    namedtype.NamedType('tbsCert', TBSCertificate().subtype(
+        explicitTag=tag.Tag(tag.tagClassContext, tag.tagFormatSimple, 1))),
+    namedtype.NamedType('taInfo', TrustAnchorInfo().subtype(
+        explicitTag=tag.Tag(tag.tagClassContext, tag.tagFormatConstructed, 2)))
+)
+id_ct_trustAnchorList = univ.ObjectIdentifier('1.2.840.113549.1.9.16.1.34')
+class TrustAnchorList(univ.SequenceOf):
+    pass
+TrustAnchorList.componentType = TrustAnchorChoice()
+TrustAnchorList.subtypeSpec=constraint.ValueSizeConstraint(1, MAX)

pyasn1_alt_modules/rfc5915.py ADDED Viewed

@@ -0,0 +1,32 @@
+# This file is part of pyasn1-alt-modules software.
+#
+# Created by Russ Housley with assistance from asn1ate v.0.6.0.
+#
+# Copyright (c) 2019-2024, Vigil Security, LLC
+# License: http://vigilsec.com/pyasn1-alt-modules-license.txt
+#
+# Elliptic Curve Private Key
+#
+# ASN.1 source from:
+# https://www.rfc-editor.org/rfc/rfc5915.txt
+from pyasn1.type import namedtype
+from pyasn1.type import namedval
+from pyasn1.type import tag
+from pyasn1.type import univ
+from pyasn1_alt_modules import rfc5480
+class ECPrivateKey(univ.Sequence):
+    pass
+ECPrivateKey.componentType = namedtype.NamedTypes(
+    namedtype.NamedType('version', univ.Integer(
+        namedValues=namedval.NamedValues(('ecPrivkeyVer1', 1)))),
+    namedtype.NamedType('privateKey', univ.OctetString()),
+    namedtype.OptionalNamedType('parameters', rfc5480.ECParameters().subtype(
+        explicitTag=tag.Tag(tag.tagClassContext, tag.tagFormatSimple, 0))),
+    namedtype.OptionalNamedType('publicKey', univ.BitString().subtype(
+        explicitTag=tag.Tag(tag.tagClassContext, tag.tagFormatSimple, 1)))
+)

pyasn1_alt_modules/rfc5916.py ADDED Viewed

@@ -0,0 +1,39 @@
+#
+# This file is part of pyasn1-alt-modules software.
+#
+# Created by Russ Housley.
+# Modified by Russ Housley to include the opentypemap manager.
+#
+# Copyright (c) 2019-2024, Vigil Security, LLC
+# License: http://vigilsec.com/pyasn1-alt-modules-license.txt
+#
+# Device Owner Attribute
+#
+# ASN.1 source from:
+# https://www.rfc-editor.org/rfc/rfc5916.txt
+#
+from pyasn1.type import univ
+from pyasn1_alt_modules import rfc5280
+from pyasn1_alt_modules import opentypemap
+certificateAttributesMap = opentypemap.get('certificateAttributesMap')
+# Device Owner Attribute
+id_deviceOwner = univ.ObjectIdentifier((2, 16, 840, 1, 101, 2, 1, 5, 69))
+at_deviceOwner = rfc5280.Attribute()
+at_deviceOwner['type'] = id_deviceOwner
+at_deviceOwner['values'][0] = univ.ObjectIdentifier()
+# Update the Certificate Attributes Map
+_certificateAttributesMapUpdate = {
+    id_deviceOwner: univ.ObjectIdentifier(),
+}
+certificateAttributesMap.update(_certificateAttributesMapUpdate)

pyasn1_alt_modules/rfc5917.py ADDED Viewed

@@ -0,0 +1,59 @@
+#
+# This file is part of pyasn1-alt-modules software.
+#
+# Created by Russ Housley.
+# Modified by Russ Housley to include the opentypemap manager.
+#
+# Copyright (c) 2019-2024, Vigil Security, LLC
+# License: http://vigilsec.com/pyasn1-alt-modules-license.txt
+#
+# Clearance Sponsor Attribute
+#
+# ASN.1 source from:
+# https://www.rfc-editor.org/rfc/rfc5917.txt
+# https://www.rfc-editor.org/errata/eid4558
+# https://www.rfc-editor.org/errata/eid5883
+#
+from pyasn1.type import char
+from pyasn1.type import constraint
+from pyasn1.type import namedtype
+from pyasn1.type import univ
+from pyasn1_alt_modules import rfc5280
+from pyasn1_alt_modules import opentypemap
+certificateAttributesMap = opentypemap.get('certificateAttributesMap')
+# DirectoryString is the same as RFC 5280, except for two things:
+#   1. the length is limited to 64;
+#   2. only the 'utf8String' choice remains because the ASN.1
+#      specification says: ( WITH COMPONENTS { utf8String PRESENT } )
+class DirectoryString(univ.Choice):
+    componentType = namedtype.NamedTypes(
+        namedtype.NamedType('utf8String', char.UTF8String().subtype(
+            subtypeSpec=constraint.ValueSizeConstraint(1, 64))),
+    )
+# Clearance Sponsor Attribute
+id_clearanceSponsor = univ.ObjectIdentifier((2, 16, 840, 1, 101, 2, 1, 5, 68))
+ub_clearance_sponsor = univ.Integer(64)
+at_clearanceSponsor = rfc5280.Attribute()
+at_clearanceSponsor['type'] = id_clearanceSponsor
+at_clearanceSponsor['values'][0] = DirectoryString()
+# Update the Certificate Attributes Map
+_certificateAttributesMapUpdate = {
+    id_clearanceSponsor: DirectoryString(),
+}
+certificateAttributesMap.update(_certificateAttributesMapUpdate)