Project

General

Profile

Actions

Feature #12035

closed

Input validation to prevent unsupported UTF-8 characters from being used in certificate subject components

Added by Viktor Gurov over 3 years ago. Updated about 3 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Viktor Gurov
Category:
Certificates
Target version:
Start date:
06/14/2021
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
22.01
Release Notes:
Default

Description

If you try to use any UTF8 characters in State or Province/City/Organization/Organizational Unit fields, an error occurs:

The following input errors were detected:

OpenSSL Library Error: error:0D07A07C:asn1 encoding routines:ASN1_mbstring_ncopy:illegal characters

see also: https://stackoverflow.com/questions/16478452/how-to-create-csr-with-utf8-subject-in-openssl

Actions #1

Updated by Viktor Gurov about 3 years ago

do input validation to prevent from using UTF8 characters:
https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/478

Actions #2

Updated by Jim Pingle about 3 years ago

  • Status changed from New to Pull Request Review
  • Assignee set to Viktor Gurov
  • Target version set to 2.6.0
  • Plus Target Version set to 22.01
Actions #3

Updated by Viktor Gurov about 3 years ago

  • Status changed from Pull Request Review to Feedback

Merged

Actions #4

Updated by Jim Pingle about 3 years ago

  • Tracker changed from Bug to Feature
  • Subject changed from Certificate subject components do not support UTF8 characters to Input validation to prevent unsupported UTF-8 characters from being used in certificate subject components
  • Affected Version deleted (2.5.1)

Updating subject for release notes.

Actions #5

Updated by Danilo Zrenjanin about 3 years ago

  • Status changed from Feedback to Resolved

Tested against:

2.6.0-DEVELOPMENT (amd64)
built on Fri Dec 10 06:24:50 UTC 2021
FreeBSD 12.3-STABLE

It works as expected. Ticket resolved.

Actions

Also available in: Atom PDF