cmp.util¶

This module provides some utility functions regarding CMP.

Classes¶

`PkiMessageType`	PKI Message Type (CMP) Enum.
`PkiOperation`	PKI Management Operation Path Segments (RFC 9483).
`GeneralNameType`	General Name Type Enum.
`Popo`	Proof of Possession Enum.
`PKIFailureInfo`	PKI Failure Info Enum.
`NameParser`	Provides class methods to transform pyasn1 (General)Names into x509.(General)Names.

Module Contents¶

class cmp.util.PkiMessageType(*args, **kwds)[source]¶

Bases: enum.Enum

PKI Message Type (CMP) Enum.

IR = 'ir'[source]¶

CR = 'cr'[source]¶

KUR = 'kur'[source]¶

RR = 'rr'[source]¶

GENM = 'genm'[source]¶

class cmp.util.PkiOperation(*args, **kwds)[source]¶

Bases: enum.Enum

PKI Management Operation Path Segments (RFC 9483).

INITIALIZATION = 'initialization'[source]¶

CERTIFICATION = 'certification'[source]¶

KEYUPDATE = 'keyupdate'[source]¶

PKCS10 = 'pkcs10'[source]¶

REVOCATION = 'revocation'[source]¶

GETCACERTS = 'getcacerts'[source]¶

GETROOTUPDATE = 'getrootupdate'[source]¶

GETCERTREQTEMPLATE = 'getcertreqtemplate'[source]¶

GETCRLS = 'getcrls'[source]¶

NESTED = 'nested'[source]¶

class cmp.util.GeneralNameType(*args, **kwds)[source]¶

Bases: enum.Enum

General Name Type Enum.

RFC822_NAME = 'rfc822Name'[source]¶

DNS_NAME = 'dNSName'[source]¶

DIRECTORY_NAME = 'directoryName'[source]¶

UNIFORM_RESOURCE_IDENTIFIER = 'uniformResourceIdentifier'[source]¶

IP_ADDRESS = 'iPAddress'[source]¶

REGISTERED_ID = 'registeredID'[source]¶

OTHER_NAME = 'otherName'[source]¶

class cmp.util.Popo(*args, **kwds)[source]¶

Bases: enum.Enum

Proof of Possession Enum.

RA_VERIFIED = 'raVerified'[source]¶

SIGNATURE = 'signature'[source]¶

KEY_ENCIPHERMENT = 'keyEncipherment'[source]¶

KEY_AGREEMENT = 'keyAgreement'[source]¶

class cmp.util.PKIFailureInfo[source]¶

Bases: enum.IntEnum

PKI Failure Info Enum.

BAD_ALG = 0[source]¶

BAD_MESSAGE_CHECK = 1[source]¶

BAD_REQUEST = 2[source]¶

BAD_TIME = 3[source]¶

BAD_CERT_ID = 4[source]¶

BAD_DATA_FORMAT = 5[source]¶

WRONG_AUTHORITY = 6[source]¶

INCORRECT_DATA = 7[source]¶

MISSING_TIME_STAMP = 8[source]¶

BAD_POP = 9[source]¶

CERT_REVOKED = 10[source]¶

CERT_CONFIRMED = 11[source]¶

WRONG_INTEGRITY = 12[source]¶

BAD_RECIPIENT_NONCE = 13[source]¶

TIME_NOT_AVAILABLE = 14[source]¶

UNACCEPTED_POLICY = 15[source]¶

UNACCEPTED_EXTENSION = 16[source]¶

ADD_INFO_NOT_AVAILABLE = 17[source]¶

BAD_SENDER_NONCE = 18[source]¶

BAD_CERT_TEMPLATE = 19[source]¶

SIGNER_NOT_TRUSTED = 20[source]¶

TRANSACTION_ID_IN_USE = 21[source]¶

UNSUPPORTED_VERSION = 22[source]¶

NOT_AUTHORIZED = 23[source]¶

SYSTEM_UNAVAIL = 24[source]¶

SYSTEM_FAILURE = 25[source]¶

DUPLICATE_CERT_REQ = 26[source]¶

class cmp.util.NameParser[source]¶

Provides class methods to transform pyasn1 (General)Names into x509.(General)Names.

classmethod parse_general_name(general_name)[source]¶

Parses the pyasn1_modules.rfc2459.GeneralName object and transforms it into a x509.GeneralName object.

Parameters:: general_name (pyasn1_modules.rfc2459.GeneralName) – The pyasn1_modules.rfc2459.GeneralName object to parse.
Returns:: The cryptography.x509.Name object.
Return type:: cryptography.x509.GeneralName

static parse_name(name)[source]¶

Parses the pyasn1_modules.rfc2459.Name object and transforms it into a x509.Name object.

Parameters:: name (pyasn1_modules.rfc2459.Name) – The pyasn1_modules.rfc2459.Name object to parse.
Returns:: The cryptography.x509.Name object.
Return type:: cryptography.x509.Name