Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Limit scope for cn checking in SAN #825

Merged
merged 31 commits into from
Apr 7, 2024
Merged

Limit scope for cn checking in SAN #825

merged 31 commits into from
Apr 7, 2024

Conversation

mtgag
Copy link
Contributor

@mtgag mtgag commented Apr 5, 2024

This PR addresses issues of discussion in PR #809

mtg and others added 28 commits February 4, 2020 17:45
lint about the encoding of qcstatements for PSD2
6c23670
Revert "lint about the encoding of qcstatements for PSD2"
4666bb7 
This reverts commit 6c23670.
Merge https://github.com/zmap/zlint
01996c6
Merge https://github.com/zmap/zlint
28481cc
Merge https://github.com/zmap/zlint
749d896
@web-flow
util: gtld_map autopull updates for 2021-10-21T07:25:20 UTC
e56e2a0
@mtgag
Merge pull request #1 from mtgag/zlint-gtld-update
8600050 
util: gtld_map autopull updates for 2021-10-21T07:25:20 UTC
@mtgag
Merge https://github.com/zmap/zlint
30b096e
@mtgag
always check and perform the operation in the execution
92e659c
@christopher-henderson
Merge branch 'master' into master
351a379
@mtgag
Merge https://github.com/zmap/zlint
b52111b
@mtgag
Merge https://github.com/zmap/zlint
526f9be
@mtgag
Merge https://github.com/zmap/zlint
92902fc
@mtgag
synchronised with project
1652cfa
@mtgag
synchronised with project
d4f2f9f
@mtgag
Merge https://github.com/zmap/zlint
88c933e
@mtgag
Merge https://github.com/zmap/zlint
cee805f
@mtgag
synchronised with project
2408543
@mtgag
synchronised with project
67537e9
@mtgag
synchronised with project
e77fae1
@mtgag
synchronised with project
51d498f
@mtgag
Merge https://github.com/zmap/zlint
31e1845
@mtgag
Merge https://github.com/zmap/zlint
d10444e
@mtgag
fixed merge error
53b911e
@mtgag
Merge https://github.com/zmap/zlint
f1a66db
@mtgag
Merge https://github.com/zmap/zlint
795d206
@mtgag
synchronised with project
bad73ee
@mtgag
address comments of PR zmap#809
b181ef5
@mtgag mtgag mentioned this pull request Apr 5, 2024
Merged
vanbroup
vanbroup reviewed Apr 5, 2024
View reviewed changes
v3/lints/cabf_smime_br/mailbox_address_from_san.go
for _, commonName := range name.CommonNames {
if util.IsMailboxAddress(commonName) {
mailboxAddresses = append(mailboxAddresses, commonName)
if includeCN {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
if includeCN {
if len(name.EmailAddress) == 0 {

This would cover more scenario's and doesn't require additional function parameters.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

would not that, probably very unlikely, produce some false positives? E.g. for a sponsor-validated certificate with a subjectDN featuring a CN which has a pseudonym with a @ character and no emailAddress RDN in subject.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

That might be possible indeed.

@christopher-henderson
Copy link
Member

Howdy @mtgag and @vanbroup, I'm just catching up on this. We cut a release candidate last week, but this seems like it would be a good call for an RC2, no?

@vanbroup
Copy link
Contributor

vanbroup commented Apr 6, 2024

Agreed

@mtgag
Copy link
Contributor Author

mtgag commented Apr 7, 2024

Howdy @mtgag and @vanbroup, I'm just catching up on this. We cut a release candidate last week, but this seems like it would be a good call for an RC2, no?

Yes, it looks much better now after the comments. Thanks for this.

@christopher-henderson christopher-henderson merged commit 308a138 into zmap:master Apr 7, 2024
4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@vanbroup vanbroup vanbroup left review comments

@christopher-henderson christopher-henderson christopher-henderson approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@mtgag @christopher-henderson @vanbroup @web-flow