github.com/zmap/zlint@v1.1.0/lints/lint_ev_valid_time_too_long.go

github.com/zmap/zlint@v1.1.0/lints/lint_ev_valid_time_too_long.go (about)

     1  package lints
     2  
     3  /*
     4   * ZLint Copyright 2018 Regents of the University of Michigan
     5   *
     6   * Licensed under the Apache License, Version 2.0 (the "License"); you may not
     7   * use this file except in compliance with the License. You may obtain a copy
     8   * of the License at http://www.apache.org/licenses/LICENSE-2.0
     9   *
    10   * Unless required by applicable law or agreed to in writing, software
    11   * distributed under the License is distributed on an "AS IS" BASIS,
    12   * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
    13   * implied. See the License for the specific language governing
    14   * permissions and limitations under the License.
    15   */
    16  
    17  import (
    18  	"github.com/zmap/zcrypto/x509"
    19  	"github.com/zmap/zlint/util"
    20  )
    21  
    22  type evValidTooLong struct{}
    23  
    24  func (l *evValidTooLong) Initialize() error {
    25  	return nil
    26  }
    27  
    28  func (l *evValidTooLong) CheckApplies(c *x509.Certificate) bool {
    29  	return util.IsEV(c.PolicyIdentifiers) && util.IsSubscriberCert(c)
    30  }
    31  
    32  func (l *evValidTooLong) Execute(c *x509.Certificate) *LintResult {
    33  	if c.NotBefore.AddDate(0, 0, 825).Before(c.NotAfter) {
    34  		return &LintResult{Status: Error}
    35  	}
    36  	return &LintResult{Status: Pass}
    37  }
    38  
    39  func init() {
    40  	RegisterLint(&Lint{
    41  		Name:          "e_ev_valid_time_too_long",
    42  		Description:   "EV certificates must be 825 days in validity or less",
    43  		Citation:      "BRs: 6.3.2",
    44  		Source:        CABFBaselineRequirements,
    45  		EffectiveDate: util.ZeroDate,
    46  		Lint:          &evValidTooLong{},
    47  	})
    48  }