feat(x509): add PkiPath type

npmccallum · npmccallum · commit 36449d17555d · 2022-03-05T15:52:52.000-05:00
Signed-off-by: Nathaniel McCallum &lt;nathaniel@profian.com&gt;
diff --git a/x509/src/certificate.rs b/x509/src/certificate.rs
@@ -1,7 +1,9 @@
 use crate::{name::Name, time::Validity};
 
+use alloc::vec::Vec;
+
 use der::asn1::{BitString, UIntBytes};
-use der::{Enumerated, Sequence};
+use der::{Enumerated, Newtype, Sequence};
 use spki::{AlgorithmIdentifier, SubjectPublicKeyInfo};
 
 /// Certificate `Version` as defined in [RFC 5280 Section 4.1].
@@ -103,3 +105,17 @@ pub struct Certificate<'a> {
     pub signature_algorithm: AlgorithmIdentifier<'a>,
     pub signature: BitString<'a>,
 }
+
+/// `PkiPath` as defined by X.509 and referenced by [RFC 6066].
+///
+/// This contains a series of certificates in validation order from the
+/// top-most certificate to the bottom-most certificate. This means that
+/// the first certificate signs the second certificate and so on.
+///
+/// ```text
+/// PkiPath ::= SEQUENCE OF Certificate
+/// ```
+///
+/// [RFC 6066]: https://datatracker.ietf.org/doc/html/rfc6066#section-10.1
+#[derive(Clone, Debug, PartialEq, Eq, Default, Newtype)]
+pub struct PkiPath<'a>(Vec<Certificate<'a>>);
diff --git a/x509/src/lib.rs b/x509/src/lib.rs
@@ -23,4 +23,4 @@ pub mod time;
 
 mod certificate;
 
-pub use certificate::{Certificate, TbsCertificate, Version};
+pub use certificate::{Certificate, PkiPath, TbsCertificate, Version};

Original file line number	Diff line number	Diff line change
`@@ -23,4 +23,4 @@ pub mod time;`
`23`	`23`
`24`	`24`	`mod certificate;`
`25`	`25`
`26`		`-pub use certificate::{Certificate, TbsCertificate, Version};`
	`26`	`+pub use certificate::{Certificate, PkiPath, TbsCertificate, Version};`