package cabf_smime_br

v3 – github.com/zmap/zlint/v3/lints/cabf_smime_br Index | Files

import "github.com/zmap/zlint/v3/lints/cabf_smime_br"

Index ¶

func NewAdobeExtensionsLegacyMultipurposeCriticality() lint.CertificateLintInterface
func NewAdobeExtensionsStrictPresence() lint.CertificateLintInterface
func NewAuthorityKeyIdentifierCorrect() lint.LintInterface
func NewCommonNameMailboxValidated() lint.LintInterface
func NewECOtherKeyUsages() lint.LintInterface
func NewECPublicKeyKeyUsages() lint.LintInterface
func NewEdwardsPublicKeyKeyUsages() lint.LintInterface
func NewKeyUsageCriticality() lint.LintInterface
func NewKeyUsagePresence() lint.LintInterface
func NewLegacyMultipurposeEKUCheck() lint.CertificateLintInterface
func NewLegalEntityIdentifier() lint.LintInterface
func NewMailboxAddressFromSAN() lint.LintInterface
func NewMailboxValidatedEnforceSubjectFieldRestrictions() lint.LintInterface
func NewQCStatementNotCritical() lint.LintInterface
func NewRSAKeyUsageLegacyMultipurpose() lint.LintInterface
func NewRSAKeyUsageStrict() lint.LintInterface
func NewRSAOtherKeyUsages() lint.LintInterface
func NewRegistrationSchemeIDMatchesSubjectCountry() lint.CertificateLintInterface
func NewSMIMEAIAInternalName() lint.LintInterface
func NewSMIMELegacyAIAHasOneHTTP() lint.LintInterface
func NewSMIMEStrictAIAHasHTTPOnly() lint.LintInterface
func NewSingleEmailIfPresent() lint.LintInterface
func NewSingleEmailSubjectIfPresent() lint.LintInterface
func NewStrictEKUCheck() lint.CertificateLintInterface
func NewSubDirAttr() lint.LintInterface
func NewSubjectAlternativeNameNotCritical() lint.LintInterface
func NewSubjectAlternativeNameShallBePresent() lint.LintInterface
func NewSubjectCountryName() lint.LintInterface
func NewSubscriberCrlDistributionPoints() lint.LintInterface
func NewSubscriberCrlDistributionPointsHTTP() lint.LintInterface
type MailboxAddressFromSAN

func (l *MailboxAddressFromSAN) CheckApplies(c *x509.Certificate) bool
func (l *MailboxAddressFromSAN) Execute(c *x509.Certificate) *lint.LintResult

type SubjectAlternativeNameNotCritical

func (l *SubjectAlternativeNameNotCritical) CheckApplies(c *x509.Certificate) bool
func (l *SubjectAlternativeNameNotCritical) Execute(c *x509.Certificate) *lint.LintResult

type SubscriberCrlDistributionPoints

func (l *SubscriberCrlDistributionPoints) CheckApplies(c *x509.Certificate) bool
func (l *SubscriberCrlDistributionPoints) Execute(c *x509.Certificate) *lint.LintResult

Functions ¶

func NewAdobeExtensionsLegacyMultipurposeCriticality ¶

func NewAdobeExtensionsLegacyMultipurposeCriticality() lint.CertificateLintInterface

NewAdobeExtensionsLegacyMultipurposeCriticality creates a new linter to enforce adobe x509 extensions requirements for multipurpose or legacy SMIME certs

func NewAdobeExtensionsStrictPresence ¶

func NewAdobeExtensionsStrictPresence() lint.CertificateLintInterface

NewAdobeExtensionsStrictPresence creates a new linter to enforce adobe x509 extensions requirements for strict SMIME certs

func NewAuthorityKeyIdentifierCorrect ¶

func NewAuthorityKeyIdentifierCorrect() lint.LintInterface

func NewCommonNameMailboxValidated ¶

func NewCommonNameMailboxValidated() lint.LintInterface

func NewECOtherKeyUsages ¶

func NewECOtherKeyUsages() lint.LintInterface

func NewECPublicKeyKeyUsages ¶

func NewECPublicKeyKeyUsages() lint.LintInterface

func NewEdwardsPublicKeyKeyUsages ¶

func NewEdwardsPublicKeyKeyUsages() lint.LintInterface

func NewKeyUsageCriticality ¶

func NewKeyUsageCriticality() lint.LintInterface

func NewKeyUsagePresence ¶

func NewKeyUsagePresence() lint.LintInterface

func NewLegacyMultipurposeEKUCheck ¶

func NewLegacyMultipurposeEKUCheck() lint.CertificateLintInterface

NewLegacyMultipurposeEKUCheck creates a new linter to enforce MAY/SHALL NOT field requirements for mailbox validated SMIME certs

func NewLegalEntityIdentifier ¶

func NewLegalEntityIdentifier() lint.LintInterface

func NewMailboxAddressFromSAN ¶

func NewMailboxAddressFromSAN() lint.LintInterface

NewMailboxAddressFromSAN creates a new linter to enforce the requirement that all Mailbox Addresses in SMIME BR certificates must be copied from the SAN

func NewMailboxValidatedEnforceSubjectFieldRestrictions ¶

func NewMailboxValidatedEnforceSubjectFieldRestrictions() lint.LintInterface

NewMailboxValidatedEnforceSubjectFieldRestrictions creates a new linter to enforce MAY/SHALL NOT field requirements for mailbox validated SMIME certs

func NewQCStatementNotCritical ¶

func NewQCStatementNotCritical() lint.LintInterface

func NewRSAKeyUsageLegacyMultipurpose ¶

func NewRSAKeyUsageLegacyMultipurpose() lint.LintInterface

func NewRSAKeyUsageStrict ¶

func NewRSAKeyUsageStrict() lint.LintInterface

func NewRSAOtherKeyUsages ¶

func NewRSAOtherKeyUsages() lint.LintInterface

func NewRegistrationSchemeIDMatchesSubjectCountry ¶

func NewRegistrationSchemeIDMatchesSubjectCountry() lint.CertificateLintInterface

NewRegistrationSchemeIDMatchesSubjectCountry creates a new linter to enforce SHALL requirements for registration scheme identifiers matching subject:countryName

func NewSMIMEAIAInternalName ¶

func NewSMIMEAIAInternalName() lint.LintInterface

func NewSMIMELegacyAIAHasOneHTTP ¶

func NewSMIMELegacyAIAHasOneHTTP() lint.LintInterface

func NewSMIMEStrictAIAHasHTTPOnly ¶

func NewSMIMEStrictAIAHasHTTPOnly() lint.LintInterface

func NewSingleEmailIfPresent ¶

func NewSingleEmailIfPresent() lint.LintInterface

func NewSingleEmailSubjectIfPresent ¶

func NewSingleEmailSubjectIfPresent() lint.LintInterface

func NewStrictEKUCheck ¶

func NewStrictEKUCheck() lint.CertificateLintInterface

NewShallHaveCrlDistributionPoints creates a new linter to enforce MAY/SHALL NOT field requirements for mailbox validated SMIME certs

func NewSubDirAttr ¶

func NewSubDirAttr() lint.LintInterface

func NewSubjectAlternativeNameNotCritical ¶

func NewSubjectAlternativeNameNotCritical() lint.LintInterface

func NewSubjectAlternativeNameShallBePresent ¶

func NewSubjectAlternativeNameShallBePresent() lint.LintInterface

func NewSubjectCountryName ¶

func NewSubjectCountryName() lint.LintInterface

func NewSubscriberCrlDistributionPoints ¶

func NewSubscriberCrlDistributionPoints() lint.LintInterface

func NewSubscriberCrlDistributionPointsHTTP ¶

func NewSubscriberCrlDistributionPointsHTTP() lint.LintInterface

Types ¶

type MailboxAddressFromSAN ¶

type MailboxAddressFromSAN struct {
}

MailboxAddressFromSAN - linter to enforce MAY/SHALL NOT requirements for SMIME certificates

func (*MailboxAddressFromSAN) CheckApplies ¶

func (l *MailboxAddressFromSAN) CheckApplies(c *x509.Certificate) bool

CheckApplies is returns true if the certificate's policies assert that it conforms to the SMIME BRs

func (*MailboxAddressFromSAN) Execute ¶

func (l *MailboxAddressFromSAN) Execute(c *x509.Certificate) *lint.LintResult

Execute checks all the places where Mailbox Addresses may be found in an SMIME certificate and confirms that they are present in the SAN rfc822Name or SAN otherName

type SubjectAlternativeNameNotCritical ¶

type SubjectAlternativeNameNotCritical struct{}

func (*SubjectAlternativeNameNotCritical) CheckApplies ¶

func (l *SubjectAlternativeNameNotCritical) CheckApplies(c *x509.Certificate) bool

func (*SubjectAlternativeNameNotCritical) Execute ¶

func (l *SubjectAlternativeNameNotCritical) Execute(c *x509.Certificate) *lint.LintResult

type SubscriberCrlDistributionPoints ¶

type SubscriberCrlDistributionPoints struct{}

func (*SubscriberCrlDistributionPoints) CheckApplies ¶

func (l *SubscriberCrlDistributionPoints) CheckApplies(c *x509.Certificate) bool

func (*SubscriberCrlDistributionPoints) Execute ¶

func (l *SubscriberCrlDistributionPoints) Execute(c *x509.Certificate) *lint.LintResult

Source Files ¶

lint_adobe_extensions_legacy_multipurpose_criticality.go lint_adobe_extensions_strict_presence.go lint_aia_contains_internal_names.go lint_authority_key_identifier.go lint_commonname_mailbox_validated.go lint_ecpublickey_key_usages.go lint_ecpublickey_other_key_usages.go lint_edwardspublickey_key_usages.go lint_key_usage_criticality.go lint_key_usage_presence.go lint_legacy_aia_has_one_http.go lint_legal_entity_identifier.go lint_qc_statements_not_critical.go lint_registration_scheme_id_matches_subject_country.go lint_rsa_key_usage_legacy_multipurpose.go lint_rsa_key_usage_strict.go lint_rsa_other_key_usages.go lint_san_shall_be_present.go lint_san_should_not_be_critical.go lint_single_email_if_present.go lint_single_email_subject_if_present.go lint_strict_aia_has_http_only.go lint_subject_country_name.go lint_subject_dir_attr.go lint_subscribers_crl_distribution_points_are_http.go lint_subscribers_shall_have_crl_distribution_points.go mailbox_address_from_san.go mailbox_validated_enforce_subject_field_restrictions.go smime_legacy_multipurpose_eku_check.go smime_strict_eku_check.go

Version: v3.6.6 (latest)
Published: Apr 19, 2025
Platform: js/wasm
Imports: 15 packages
Last checked: 3 days ago –

Tools for package owners.

?	: This menu
/	: Search site
f	: Jump to identifier
g then g	: Go to top of page
g then b	: Go to end of page
G	: Go to end of page
g then i	: Go to index
g then e	: Go to examples