Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

E ext cert policy disallowed any policy qualifier refactor #732

Merged
merged 20 commits into from
Jul 9, 2023
Merged

E ext cert policy disallowed any policy qualifier refactor #732

merged 20 commits into from
Jul 9, 2023

Conversation

mtgag
Copy link
Contributor

@mtgag mtgag commented Jul 5, 2023

Lint e_ext_cert_policy_disallowed_any_policy_qualifier checks whether the CpsOID or UserNoticeOID policy qualifiers are present. It does not evaluate whether anyPolicy is present. In this implementation it is iterated over all policies, checked whether a policy is the anyPolicy and then checked whether the qualifiers for this policy are the allowed ones. The implementation is based on code snippets from v3/util/oid.go GetMappedPolicies function. Also the check applies does not only check whether the extension is present but also whether one of the policies is the anyPolicy, and has a small TODO for discussion whether to implement this as a utility function "HasAnyPolicyOID". Also new certificates have been issued to test the behaviour of the lint.

mtg and others added 19 commits February 4, 2020 17:45
lint about the encoding of qcstatements for PSD2
6c23670
Revert "lint about the encoding of qcstatements for PSD2"
4666bb7 
This reverts commit 6c23670.
Merge https://github.com/zmap/zlint
01996c6
Merge https://github.com/zmap/zlint
28481cc
Merge https://github.com/zmap/zlint
749d896
@web-flow
util: gtld_map autopull updates for 2021-10-21T07:25:20 UTC
e56e2a0
@mtgag
Merge pull request #1 from mtgag/zlint-gtld-update
8600050 
util: gtld_map autopull updates for 2021-10-21T07:25:20 UTC
@mtgag
Merge https://github.com/zmap/zlint
30b096e
@mtgag
always check and perform the operation in the execution
92e659c
@christopher-henderson
Merge branch 'master' into master
351a379
@mtgag
Merge https://github.com/zmap/zlint
b52111b
@mtgag
Merge https://github.com/zmap/zlint
526f9be
@mtgag
Merge https://github.com/zmap/zlint
92902fc
@mtgag
synchronised with project
1652cfa
@mtgag
refactored implementation, tests, and testdata
c9e6493
@mtgag
refactored implementation
d46c125
@mtgag
addressing high cyclomatic complexity
2e526b0
@mtgag
code format
776a2ae
@mtgag
code format
0e3e8af
christopher-henderson
christopher-henderson approved these changes Jul 9, 2023
View reviewed changes
Copy link
Member

@christopher-henderson christopher-henderson left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

...and has a small TODO for discussion whether to implement this as a utility function "HasAnyPolicyOID"

The code is indeed a little bit painful. But it is isolated. I think I'm okay merging this and then possibly taking a look at a cleanup on my own.

@christopher-henderson christopher-henderson merged commit 4d38bfe into zmap:master Jul 9, 2023
4 checks passed
@mtgag mtgag mentioned this pull request Jul 12, 2023
Closed
@cpu cpu mentioned this pull request Jul 20, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@christopher-henderson christopher-henderson christopher-henderson approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@mtgag @christopher-henderson @web-flow