rpki.x509.CMS_object Class Reference
Inherits rpki::x509::DER_object.
Inherited by rpki.x509.DER_CMS_object, and rpki.x509.XML_CMS_object.
List of all members.
Detailed Description
Class to hold a CMS-wrapped object.
CMS-wrapped objects are a little different from the other DER_object
types because the signed object is CMS wrapping inner content that's
also ASN.1, and due to our current minimal support for CMS we can't
just handle this as a pretty composite object. So, for now anyway,
a CMS_object is the outer CMS wrapped object so that the usual DER
and PEM operations do the obvious things, and the inner content is
handle via separate methods.
Definition at line 735 of file x509.py.
Member Function Documentation
def rpki.x509.CMS_object.extract |
( |
|
self |
) |
|
Extract and store inner content from CMS wrapper without verifying
the CMS.
DANGER WILL ROBINSON!!!
Do not use this method on unvalidated data. Use the verify()
method instead.
If you don't understand this warning, don't use this method.
Definition at line 886 of file x509.py.
def rpki.x509.CMS_object.get_content |
( |
|
self |
) |
|
Get the inner content of this CMS_object.
Definition at line 797 of file x509.py.
def rpki.x509.CMS_object.get_DER |
( |
|
self |
) |
|
def rpki.x509.CMS_object.get_POW |
( |
|
self |
) |
|
Get the POW value of this CMS_object.
Definition at line 788 of file x509.py.
def rpki.x509.CMS_object.set_content |
( |
|
self, |
|
|
|
content | |
|
) |
| | |
Set the (inner) content of this CMS_object, clearing the wrapper.
Definition at line 805 of file x509.py.
def rpki.x509.CMS_object.sign |
( |
|
self, |
|
|
|
keypair, |
|
|
|
certs, |
|
|
|
crls = None , |
|
|
|
no_certs = False | |
|
) |
| | |
Sign and wrap inner content.
Definition at line 914 of file x509.py.
def rpki.x509.CMS_object.verify |
( |
|
self, |
|
|
|
ta | |
|
) |
| | |
Verify CMS wrapper and store inner content.
Definition at line 812 of file x509.py.
Member Data Documentation
Set this to True to log a lot of chatter about CMS certificates.
Definition at line 761 of file x509.py.
Set this to True to get dumpasn1 dumps of ASN.1 on CMS verify failures.
Definition at line 756 of file x509.py.
Set this to True to log alleged DER when we have trouble parsing it, in case it's really a Perl backtrace or something.
Definition at line 774 of file x509.py.
Set this to False to make CMS CRLs optional in the cases where we would otherwise require them.
Some day this option should go away and CRLs should be uncondtionally mandatory in such cases.
Definition at line 768 of file x509.py.
The documentation for this class was generated from the following file: