Zakir Durumeric
Zakir Durumeric
It looks like there are a bunch of ETSI commits that leaked into this PR. If we can get those cleaned up, we can work on reviewing/merging.
I suspect that most of the lints you want are going to be RFC-based. I would start by running certificate against RFC-based lints and see where that gets you. You...
Is this formalized in any standard or baseline requirements? We might be able to add a community-based INFO or WARN lint, but I suspect not a hard error without something...
This is the most up-to-date set we have, if there are errors, it'd be great to get those resolved in the sheet.
I agree that it shouldn't be an error. There isn't security vulnerability here. That said, it is somewhat interesting to note that they have different capitalization. Might be worth having...
Now that we've seen that this would be considerably more complex (and partially undefined) when @szank went to implement this in #188, I think that we should close this issue,...
Can you move this into a new issue? Happy to have conversation there. On Mon, May 21, 2018 at 3:04 AM Maciej Galkowski wrote: > Hi @zakird , @pzb ....
We'd be happy to accept a lint that checks this.
Thanks for the report, @ENEN-DTR. Which lint produced a `WARN` instead of an `ERROR`? Can you point to the BR or RFC that states that this is mandatory?
I looked at the RFC and what ZCrypto is doing is indeed correct. We have to escape the character in the field to build the DN and JSON also dictates...