scripts/rpki/manifest.py


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71

# $Id$

"""Signed manifests.  This is just the ASN.1 encoder, the rest is in
rpki.x509 with the rest of the DER_object code.

Note that rpki.x509.SignedManifest inmplements the signed manifest;
the structures here are just the payload of the CMS eContent field.
"""

from POW._der import *

class FileAndHash(Sequence):
  def __init__(self, optional=0, default=''):
    self.file = IA5String()
    self.hash = AltBitString()
    contents = [ self.file, self.hash ]
    Sequence.__init__(self, contents, optional, default)

class FilesAndHashes(SequenceOf):
  def __init__(self, optional=0, default=''):
    SequenceOf.__init__(self, FileAndHash, optional, default)

class Manifest(Sequence):
  def __init__(self, optional=0, default=''):

    # I'm having trouble decoding the ASN.1 as currently specified.
    # I've asked about this on the mailing list, but I see three
    # options:
    #
    # 1) What the spec currently says, which doesn't quite work.
    #
    # 2) Get rid of the default on the version field, which might
    #    make sense as it doesn't waste a lot of space.
    #
    # 3) Explictly tag the version field, which seems to be the usual
    #    ASN.1 thing to do in these situations.
    #
    # Until the mailing list settles this, I've included code for all
    # three options here, using the numbers above.
    #
    # Clean all this up once the mailing list settles it.

    which_option = 1

    if which_option == 1:
      self.version      = Integer(0, "AgEA")

    if which_option in (2, 3):
      self.version      = Integer()      

    if which_option == 3:
      self.explicitVersion = Explicit(CLASS_CONTEXT, FORM_CONSTRUCTED, 0, self.version, 0, 'oAMCAQA=')

    self.manifestNumber = Integer()
    self.thisUpdate     = GeneralizedTime()
    self.nextUpdate     = GeneralizedTime()
    self.fileHashAlg    = Oid()
    self.fileList       = FilesAndHashes()

    if which_option in (1, 2):
      contents = [ self.version ]
    else:
      contents = [ self.explicitVersion ]

    contents += [
                 self.manifestNumber,
                 self.thisUpdate,
                 self.nextUpdate,
                 self.fileHashAlg,
                 self.fileList ]
    Sequence.__init__(self, contents, optional, default)