// This file is Free Software under the MIT License // without warranty, see README.md and LICENSES/MIT.txt for details. // // SPDX-License-Identifier: MIT // // SPDX-FileCopyrightText: 2021 German Federal Office for Information Security (BSI) // Software-Engineering: 2021 Intevation GmbH package main import ( "fmt" "sort" ) type ( baseReporter struct { num int description string } tlsReporter struct{ baseReporter } redirectsReporter struct{ baseReporter } providerMetadataReport struct{ baseReporter } securityReporter struct{ baseReporter } wellknownMetadataReporter struct{ baseReporter } dnsPathReporter struct{ baseReporter } oneFolderPerYearReport struct{ baseReporter } indexReporter struct{ baseReporter } changesReporter struct{ baseReporter } directoryListingsReporter struct{ baseReporter } integrityReporter struct{ baseReporter } signaturesReporter struct{ baseReporter } publicPGPKeyReporter struct{ baseReporter } ) func (bc *baseReporter) requirement(domain *Domain) *Requirement { req := &Requirement{ Num: bc.num, Description: bc.description, } domain.Requirements = append(domain.Requirements, req) return req } func (r *tlsReporter) report(p *processor, domain *Domain) { req := r.requirement(domain) if len(p.noneTLS) == 0 { req.message("All tested URLs were https.") return } urls := make([]string, len(p.noneTLS)) var i int for k := range p.noneTLS { urls[i] = k i++ } sort.Strings(urls) req.message("Following none https URLs were used:") req.message(urls...) } func (r *redirectsReporter) report(p *processor, domain *Domain) { req := r.requirement(domain) if len(p.redirects) == 0 { req.message("No redirections found.") return } keys := make([]string, len(p.redirects)) var i int for k := range p.redirects { keys[i] = k i++ } sort.Strings(keys) for i, k := range keys { keys[i] = fmt.Sprintf("Redirect %s: %s", k, p.redirects[k]) } req.Messages = keys } func (r *providerMetadataReport) report(p *processor, domain *Domain) { req := r.requirement(domain) if len(p.badProviderMetadatas) == 0 { req.message("No problems with provider metadata.") return } req.Messages = p.badProviderMetadatas } func (r *securityReporter) report(p *processor, domain *Domain) { req := r.requirement(domain) if len(p.badSecurities) == 0 { req.message("No problems with security.txt found.") return } req.Messages = p.badSecurities } func (r *wellknownMetadataReporter) report(_ *processor, domain *Domain) { // TODO: Implement me! req := r.requirement(domain) _ = req } func (r *dnsPathReporter) report(_ *processor, domain *Domain) { // TODO: Implement me! req := r.requirement(domain) _ = req } func (r *oneFolderPerYearReport) report(_ *processor, domain *Domain) { // TODO: Implement me! req := r.requirement(domain) _ = req } func (r *indexReporter) report(p *processor, domain *Domain) { req := r.requirement(domain) if len(p.badIndices) == 0 { req.message("No problems with index.txt found.") return } req.Messages = p.badIndices } func (r *changesReporter) report(p *processor, domain *Domain) { req := r.requirement(domain) if len(p.badChanges) == 0 { req.message("No problems with changes.txt found.") return } req.Messages = p.badChanges } func (r *directoryListingsReporter) report(_ *processor, domain *Domain) { // TODO: Implement me! req := r.requirement(domain) _ = req } func (r *integrityReporter) report(p *processor, domain *Domain) { req := r.requirement(domain) if len(p.badIntegrities) == 0 { req.message("All checksums match.") return } req.Messages = p.badIntegrities } func (r *signaturesReporter) report(p *processor, domain *Domain) { req := r.requirement(domain) req.Messages = p.badSignatures if len(p.badSignatures) == 0 { req.message("All signatures verified.") } } func (r *publicPGPKeyReporter) report(p *processor, domain *Domain) { req := r.requirement(domain) req.Messages = p.badPGPs if len(p.keys) > 0 { req.message(fmt.Sprintf("%d PGP key(s) loaded successfully.", len(p.keys))) } }