@@ -112,7 +112,7 @@ def verify(self, cert: Certificate) -> None:
112
112
)
113
113
114
114
115
- class _SingleX509ExtPolicyDer (_SingleX509ExtPolicy ):
115
+ class _SingleX509ExtPolicyV2 (_SingleX509ExtPolicy ):
116
116
"""
117
117
An base class for verification policies that boil down to checking a single
118
118
X.509 extension's value, where the value is formatted as a DER-encoded string,
@@ -201,7 +201,7 @@ class GitHubWorkflowRef(_SingleX509ExtPolicy):
201
201
oid = _OIDC_GITHUB_WORKFLOW_REF_OID
202
202
203
203
204
- class OIDCIssuerV2 (_SingleX509ExtPolicyDer ):
204
+ class OIDCIssuerV2 (_SingleX509ExtPolicyV2 ):
205
205
"""
206
206
Verifies the certificate's OIDC issuer, identified by
207
207
an X.509v3 extension tagged with `1.3.6.1.4.1.57264.1.8`.
@@ -213,7 +213,7 @@ class OIDCIssuerV2(_SingleX509ExtPolicyDer):
213
213
oid = _OIDC_ISSUER_V2_OID
214
214
215
215
216
- class OIDCBuildSignerURI (_SingleX509ExtPolicyDer ):
216
+ class OIDCBuildSignerURI (_SingleX509ExtPolicyV2 ):
217
217
"""
218
218
Verifies the certificate's OIDC Build Signer URI, identified by
219
219
an X.509v3 extension tagged with `1.3.6.1.4.1.57264.1.9`.
@@ -222,7 +222,7 @@ class OIDCBuildSignerURI(_SingleX509ExtPolicyDer):
222
222
oid = _OIDC_BUILD_SIGNER_URI_OID
223
223
224
224
225
- class OIDCBuildSignerDigest (_SingleX509ExtPolicyDer ):
225
+ class OIDCBuildSignerDigest (_SingleX509ExtPolicyV2 ):
226
226
"""
227
227
Verifies the certificate's OIDC Build Signer Digest, identified by
228
228
an X.509v3 extension tagged with `1.3.6.1.4.1.57264.1.10`.
@@ -231,7 +231,7 @@ class OIDCBuildSignerDigest(_SingleX509ExtPolicyDer):
231
231
oid = _OIDC_BUILD_SIGNER_DIGEST_OID
232
232
233
233
234
- class OIDCRunnerEnvironment (_SingleX509ExtPolicyDer ):
234
+ class OIDCRunnerEnvironment (_SingleX509ExtPolicyV2 ):
235
235
"""
236
236
Verifies the certificate's OIDC Runner Environment, identified by
237
237
an X.509v3 extension tagged with `1.3.6.1.4.1.57264.1.11`.
@@ -240,7 +240,7 @@ class OIDCRunnerEnvironment(_SingleX509ExtPolicyDer):
240
240
oid = _OIDC_RUNNER_ENVIRONMENT_OID
241
241
242
242
243
- class OIDCSourceRepositoryURI (_SingleX509ExtPolicyDer ):
243
+ class OIDCSourceRepositoryURI (_SingleX509ExtPolicyV2 ):
244
244
"""
245
245
Verifies the certificate's OIDC Source Repository URI, identified by
246
246
an X.509v3 extension tagged with `1.3.6.1.4.1.57264.1.12`.
@@ -249,7 +249,7 @@ class OIDCSourceRepositoryURI(_SingleX509ExtPolicyDer):
249
249
oid = _OIDC_SOURCE_REPOSITORY_URI_OID
250
250
251
251
252
- class OIDCSourceRepositoryDigest (_SingleX509ExtPolicyDer ):
252
+ class OIDCSourceRepositoryDigest (_SingleX509ExtPolicyV2 ):
253
253
"""
254
254
Verifies the certificate's OIDC Source Repository Digest, identified by
255
255
an X.509v3 extension tagged with `1.3.6.1.4.1.57264.1.13`.
@@ -258,7 +258,7 @@ class OIDCSourceRepositoryDigest(_SingleX509ExtPolicyDer):
258
258
oid = _OIDC_SOURCE_REPOSITORY_DIGEST_OID
259
259
260
260
261
- class OIDCSourceRepositoryRef (_SingleX509ExtPolicyDer ):
261
+ class OIDCSourceRepositoryRef (_SingleX509ExtPolicyV2 ):
262
262
"""
263
263
Verifies the certificate's OIDC Source Repository Ref, identified by
264
264
an X.509v3 extension tagged with `1.3.6.1.4.1.57264.1.14`.
@@ -267,7 +267,7 @@ class OIDCSourceRepositoryRef(_SingleX509ExtPolicyDer):
267
267
oid = _OIDC_SOURCE_REPOSITORY_REF_OID
268
268
269
269
270
- class OIDCSourceRepositoryIdentifier (_SingleX509ExtPolicyDer ):
270
+ class OIDCSourceRepositoryIdentifier (_SingleX509ExtPolicyV2 ):
271
271
"""
272
272
Verifies the certificate's OIDC Source Repository Identifier, identified by
273
273
an X.509v3 extension tagged with `1.3.6.1.4.1.57264.1.15`.
@@ -276,7 +276,7 @@ class OIDCSourceRepositoryIdentifier(_SingleX509ExtPolicyDer):
276
276
oid = _OIDC_SOURCE_REPOSITORY_IDENTIFIER_OID
277
277
278
278
279
- class OIDCSourceRepositoryOwnerURI (_SingleX509ExtPolicyDer ):
279
+ class OIDCSourceRepositoryOwnerURI (_SingleX509ExtPolicyV2 ):
280
280
"""
281
281
Verifies the certificate's OIDC Source Repository Owner URI, identified by
282
282
an X.509v3 extension tagged with `1.3.6.1.4.1.57264.1.16`.
@@ -285,7 +285,7 @@ class OIDCSourceRepositoryOwnerURI(_SingleX509ExtPolicyDer):
285
285
oid = _OIDC_SOURCE_REPOSITORY_OWNER_URI_OID
286
286
287
287
288
- class OIDCSourceRepositoryOwnerIdentifier (_SingleX509ExtPolicyDer ):
288
+ class OIDCSourceRepositoryOwnerIdentifier (_SingleX509ExtPolicyV2 ):
289
289
"""
290
290
Verifies the certificate's OIDC Source Repository Owner Identifier, identified by
291
291
an X.509v3 extension tagged with `1.3.6.1.4.1.57264.1.17`.
@@ -294,7 +294,7 @@ class OIDCSourceRepositoryOwnerIdentifier(_SingleX509ExtPolicyDer):
294
294
oid = _OIDC_SOURCE_REPOSITORY_OWNER_IDENTIFIER_OID
295
295
296
296
297
- class OIDCBuildConfigURI (_SingleX509ExtPolicyDer ):
297
+ class OIDCBuildConfigURI (_SingleX509ExtPolicyV2 ):
298
298
"""
299
299
Verifies the certificate's OIDC Build Config URI, identified by
300
300
an X.509v3 extension tagged with `1.3.6.1.4.1.57264.1.18`.
@@ -303,7 +303,7 @@ class OIDCBuildConfigURI(_SingleX509ExtPolicyDer):
303
303
oid = _OIDC_BUILD_CONFIG_URI_OID
304
304
305
305
306
- class OIDCBuildConfigDigest (_SingleX509ExtPolicyDer ):
306
+ class OIDCBuildConfigDigest (_SingleX509ExtPolicyV2 ):
307
307
"""
308
308
Verifies the certificate's OIDC Build Config Digest, identified by
309
309
an X.509v3 extension tagged with `1.3.6.1.4.1.57264.1.19`.
@@ -312,7 +312,7 @@ class OIDCBuildConfigDigest(_SingleX509ExtPolicyDer):
312
312
oid = _OIDC_BUILD_CONFIG_DIGEST_OID
313
313
314
314
315
- class OIDCBuildTrigger (_SingleX509ExtPolicyDer ):
315
+ class OIDCBuildTrigger (_SingleX509ExtPolicyV2 ):
316
316
"""
317
317
Verifies the certificate's OIDC Build Trigger, identified by
318
318
an X.509v3 extension tagged with `1.3.6.1.4.1.57264.1.20`.
@@ -321,7 +321,7 @@ class OIDCBuildTrigger(_SingleX509ExtPolicyDer):
321
321
oid = _OIDC_BUILD_TRIGGER_OID
322
322
323
323
324
- class OIDCRunInvocationURI (_SingleX509ExtPolicyDer ):
324
+ class OIDCRunInvocationURI (_SingleX509ExtPolicyV2 ):
325
325
"""
326
326
Verifies the certificate's OIDC Run Invocation URI, identified by
327
327
an X.509v3 extension tagged with `1.3.6.1.4.1.57264.1.21`.
@@ -330,7 +330,7 @@ class OIDCRunInvocationURI(_SingleX509ExtPolicyDer):
330
330
oid = _OIDC_RUN_INVOCATION_URI_OID
331
331
332
332
333
- class OIDCSourceRepositoryVisibility (_SingleX509ExtPolicyDer ):
333
+ class OIDCSourceRepositoryVisibility (_SingleX509ExtPolicyV2 ):
334
334
"""
335
335
Verifies the certificate's OIDC Source Repository Visibility
336
336
At Signing, identified by an X.509v3 extension tagged with
0 commit comments