Context Navigation

← Previous Revision
Latest Revision
Next Revision →
Blame
Revision Log

crmf.asn1@ 9

Last change on this file since 9 was 1, checked in by Paul Smedley, 10 years ago
Initial commit of Heimdal 1.5.3
File size: 2.7 KB

Line
1	-- $Id$
2	PKCS10 DEFINITIONS ::=
3
4	BEGIN
5
6	IMPORTS
7	Time,
8	GeneralName,
9	SubjectPublicKeyInfo,
10	RelativeDistinguishedName,
11	AttributeTypeAndValue,
12	Extension,
13	AlgorithmIdentifier
14	FROM rfc2459
15	heim_any
16	FROM heim;
17
18	CRMFRDNSequence ::= SEQUENCE OF RelativeDistinguishedName
19
20	Controls ::= SEQUENCE -- SIZE(1..MAX) -- OF AttributeTypeAndValue
21
22	-- XXX IMPLICIT brokenness
23	POPOSigningKey ::= SEQUENCE {
24	poposkInput [0] IMPLICIT POPOSigningKeyInput OPTIONAL,
25	algorithmIdentifier AlgorithmIdentifier,
26	signature BIT STRING }
27
28	PKMACValue ::= SEQUENCE {
29	algId AlgorithmIdentifier,
30	value BIT STRING
31	}
32
33	-- XXX IMPLICIT brokenness
34	POPOSigningKeyInput ::= SEQUENCE {
35	authInfo CHOICE {
36	sender [0] IMPLICIT GeneralName,
37	publicKeyMAC PKMACValue
38	},
39	publicKey SubjectPublicKeyInfo
40	} -- from CertTemplate
41
42
43	PBMParameter ::= SEQUENCE {
44	salt OCTET STRING,
45	owf AlgorithmIdentifier,
46	iterationCount INTEGER,
47	mac AlgorithmIdentifier
48	}
49
50	SubsequentMessage ::= INTEGER {
51	encrCert (0),
52	challengeResp (1)
53	}
54
55	-- XXX IMPLICIT brokenness
56	POPOPrivKey ::= CHOICE {
57	thisMessage [0] BIT STRING, -- Deprecated
58	subsequentMessage [1] IMPLICIT SubsequentMessage,
59	dhMAC [2] BIT STRING, -- Deprecated
60	agreeMAC [3] IMPLICIT PKMACValue,
61	encryptedKey [4] heim_any
62	}
63
64	-- XXX IMPLICIT brokenness
65	ProofOfPossession ::= CHOICE {
66	raVerified [0] NULL,
67	signature [1] POPOSigningKey,
68	keyEncipherment [2] POPOPrivKey,
69	keyAgreement [3] POPOPrivKey
70	}
71
72	CertTemplate ::= SEQUENCE {
73	version [0] INTEGER OPTIONAL,
74	serialNumber [1] INTEGER OPTIONAL,
75	signingAlg [2] SEQUENCE {
76	algorithm OBJECT IDENTIFIER,
77	parameters heim_any OPTIONAL
78	} -- AlgorithmIdentifier -- OPTIONAL,
79	issuer [3] IMPLICIT CHOICE {
80	rdnSequence CRMFRDNSequence
81	} -- Name -- OPTIONAL,
82	validity [4] SEQUENCE {
83	notBefore [0] Time OPTIONAL,
84	notAfter [1] Time OPTIONAL
85	} -- OptionalValidity -- OPTIONAL,
86	subject [5] IMPLICIT CHOICE {
87	rdnSequence CRMFRDNSequence
88	} -- Name -- OPTIONAL,
89	publicKey [6] IMPLICIT SEQUENCE {
90	algorithm AlgorithmIdentifier,
91	subjectPublicKey BIT STRING OPTIONAL
92	} -- SubjectPublicKeyInfo -- OPTIONAL,
93	issuerUID [7] IMPLICIT BIT STRING OPTIONAL,
94	subjectUID [8] IMPLICIT BIT STRING OPTIONAL,
95	extensions [9] IMPLICIT SEQUENCE OF Extension OPTIONAL
96	}
97
98	CertRequest ::= SEQUENCE {
99	certReqId INTEGER,
100	certTemplate CertTemplate,
101	controls Controls OPTIONAL
102	}
103
104	CertReqMsg ::= SEQUENCE {
105	certReq CertRequest,
106	popo ProofOfPossession OPTIONAL,
107	regInfo SEQUENCE OF AttributeTypeAndValue OPTIONAL }
108
109	CertReqMessages ::= SEQUENCE OF CertReqMsg
110
111
112	END
113

Note: See TracBrowser for help on using the repository browser.

Download in other formats:

Original Format