From 396cfe2ee573696436e2c310f4d2610c1610965a Mon Sep 17 00:00:00 2001
From: jim-p <jimp@pfsense.org>
Date: Thu, 13 Jan 2011 09:33:13 -0500
Subject: Validate imported CA/Cert a bit more strongly. Should fix #1190

---
 usr/local/www/system_certmanager.php | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'usr/local/www/system_certmanager.php')

diff --git a/usr/local/www/system_certmanager.php b/usr/local/www/system_certmanager.php
index 36a11bb..0113461 100644
--- a/usr/local/www/system_certmanager.php
+++ b/usr/local/www/system_certmanager.php
@@ -162,6 +162,8 @@ if ($_POST) {
 					gettext("Descriptive name"),
 					gettext("Certificate data"),
 					gettext("Key data"));
+			if ($_POST['cert'] && (!strstr($_POST['cert'], "BEGIN CERTIFICATE") || !strstr($_POST['cert'], "END CERTIFICATE")))
+				$input_errors[] = gettext("This certificate does not appear to be valid.");
 		}
 
 		if ($pconfig['method'] == "internal") {
-- 
cgit v1.1