Add Steve's ASN.1.

svn path=/docs/signed-manifests; revision=664
author: Rob Austein <sra@hactrn.net> 2007-06-14 22:35:26 +0000
committer: Rob Austein <sra@hactrn.net> 2007-06-14 22:35:26 +0000
commit: 76e869723c77d94dcf9203741b03f985a3fb1e45 (patch)
tree: 26a48a4b03bbb733226763d579b1854daf935754 /docs
parent: 0f34eaee06940607cbf71cf04e414833fe92fdb1 (diff)
1 files changed, 19 insertions, 0 deletions
diff --git a/docs/signed-manifests b/docs/signed-manifests
index b05e9cbb..4712c504 100644
--- a/docs/signed-manifests
+++ b/docs/signed-manifests
@@ -45,3 +45,22 @@
 	  (:name foo.roa :hash ccddeeff...)
 	  (:name baz.crl :hash ddeeff00...)
 	  ...)
+
+;;; ASN.1 implementation of this, courtesy of Steve Kent.  At this
+;;; point I think that Steve and I have converged, so absent new
+;;; issues I expect to implement this ASN.1 with OpenSSL's ASN.1
+;;; engine.
+
+Manifest ::= SEQUENCE {
+	version		INTEGER DEFAULT 0,	-- first version is 0
+	manifestNumber	INTEGER,		-- to identify unscheduled manifest issuance
+	thisUpdate	GeneralizedTime,	-- this manifest issuance time
+	nextUpdate      GeneralizedTime,	-- next scheduled manifest issuance time
+	fileHashAlg	OBJECT IDENTIFIER,	-- algorithm used to generate file content hash values
+	fileList        SEQUENCE OF FileAndHash -- list of file name and content hash pairs
+}
+
+FileAndHash ::=	SEQUENCE {
+	file		IA5String		-- file name
+	hash		BIT STRING		-- hash of file content
+}
author	Rob Austein <sra@hactrn.net>	2007-06-14 22:35:26 +0000
committer	Rob Austein <sra@hactrn.net>	2007-06-14 22:35:26 +0000
commit	76e869723c77d94dcf9203741b03f985a3fb1e45 (patch)
tree	26a48a4b03bbb733226763d579b1854daf935754 /docs
parent	0f34eaee06940607cbf71cf04e414833fe92fdb1 (diff)