Don't restrict the content of descr when making CA/Certs, it's free-form.

jim-p · jim-p · commit 00a695c8cd09 · 2013-06-12T13:56:16.000-04:00
diff --git a/usr/local/www/system_camanager.php b/usr/local/www/system_camanager.php
@@ -213,7 +213,7 @@
 			}else if ($reqdfields[$i] == 'dn_commonname'){
 				if (preg_match("/[\!\@\#\$\%\^\(\)\~\?\>\<\&\/\\\,\"\']/", $_POST["dn_commonname"]))
 					array_push($input_errors, "The field 'Distinguished name Common Name' contains invalid characters.");
-			}else if (preg_match("/[\!\@\#\$\%\^\(\)\~\?\>\<\&\/\\\,\.\"\']/", $_POST["$reqdfields[$i]"]))
+			}else if (($reqdfields[$i] != "descr") && preg_match("/[\!\@\#\$\%\^\(\)\~\?\>\<\&\/\\\,\.\"\']/", $_POST["$reqdfields[$i]"]))
 				array_push($input_errors, "The field '" . $reqdfieldsn[$i] . "' contains invalid characters.");
 		}
 		if (!in_array($_POST["keylen"], $ca_keylens))
diff --git a/usr/local/www/system_certmanager.php b/usr/local/www/system_certmanager.php
@@ -292,7 +292,7 @@
 				}else if (preg_match('/commonname/', $reqdfields[$i])){ /* dn_commonname or csr_dn_commonname */
 					if (preg_match("/[\!\@\#\$\%\^\(\)\~\?\>\<\&\/\\\,\"\']/", $_POST["$reqdfields[$i]"]))
 						array_push($input_errors, "The field 'Distinguished name Common Name' contains invalid characters.");
-				}else if (preg_match("/[\!\@\#\$\%\^\(\)\~\?\>\<\&\/\\\,\.\"\']/", $_POST["$reqdfields[$i]"]))
+				}else if (($reqdfields[$i] != "descr") && preg_match("/[\!\@\#\$\%\^\(\)\~\?\>\<\&\/\\\,\.\"\']/", $_POST["$reqdfields[$i]"]))
 					array_push($input_errors, "The field '" . $reqdfieldsn[$i] . "' contains invalid characters.");
 			}
 			if (isset($_POST["keylen"]) && !in_array($_POST["keylen"], $cert_keylens))

Original file line number	Diff line number	Diff line change
`@@ -213,7 +213,7 @@`
`213`	`213`	`}else if ($reqdfields[$i] == 'dn_commonname'){`
`214`	`214`	`if (preg_match("/[\!\@\#\$\%\^\(\)\~\?\>\<\&\/\\\,\"\']/", $_POST["dn_commonname"]))`
`215`	`215`	`array_push($input_errors, "The field 'Distinguished name Common Name' contains invalid characters.");`
`216`		`- }else if (preg_match("/[\!\@\#\$\%\^\(\)\~\?\>\<\&\/\\\,\.\"\']/", $_POST["$reqdfields[$i]"]))`
	`216`	`+ }else if (($reqdfields[$i] != "descr") && preg_match("/[\!\@\#\$\%\^\(\)\~\?\>\<\&\/\\\,\.\"\']/", $_POST["$reqdfields[$i]"]))`
`217`	`217`	`array_push($input_errors, "The field '" . $reqdfieldsn[$i] . "' contains invalid characters.");`
`218`	`218`	`}`
`219`	`219`	`if (!in_array($_POST["keylen"], $ca_keylens))`
Original file line number	Diff line number	Diff line change
`@@ -292,7 +292,7 @@`
`292`	`292`	`}else if (preg_match('/commonname/', $reqdfields[$i])){ /* dn_commonname or csr_dn_commonname */`
`293`	`293`	`if (preg_match("/[\!\@\#\$\%\^\(\)\~\?\>\<\&\/\\\,\"\']/", $_POST["$reqdfields[$i]"]))`
`294`	`294`	`array_push($input_errors, "The field 'Distinguished name Common Name' contains invalid characters.");`
`295`		`- }else if (preg_match("/[\!\@\#\$\%\^\(\)\~\?\>\<\&\/\\\,\.\"\']/", $_POST["$reqdfields[$i]"]))`
	`295`	`+ }else if (($reqdfields[$i] != "descr") && preg_match("/[\!\@\#\$\%\^\(\)\~\?\>\<\&\/\\\,\.\"\']/", $_POST["$reqdfields[$i]"]))`
`296`	`296`	`array_push($input_errors, "The field '" . $reqdfieldsn[$i] . "' contains invalid characters.");`
`297`	`297`	`}`
`298`	`298`	`if (isset($_POST["keylen"]) && !in_array($_POST["keylen"], $cert_keylens))`