صفحهٔ اصلی گشت‌و‌گذار راهنما
ورود
yosoyhendrix
/
hestiacp
mirrorاز https://github.com/hestiacp/hestiacp
1
0
انشعاب 0
پرونده‌ها مشکلات 0 ویکی
فهرست منبع

fix: Avoid crash during Hestia install (#5223)

* fix: Avoid crash during Hestia install

Because of commit #5218, the Hestia installation fails as the self-signed certificate is not created.

```
[ * ] Adding SSL certificate to Hestia Control Panel...
sed: -e expression #1, char 3: unexpected `,'
sed: -e expression #1, char 1: unknown command: `,'
[ * ] Enabling SFTP jail...
[...]
[ * ] Configuring System IP...
Job for apache2.service failed because the control process exited with error code.
See "systemctl status apache2.service" and "journalctl -xeu apache2.service" for details.
Error: apache2 restart failed
Error: can't create test.example.net domain
```

This is because commit #5218 is quoting the variables in the following validations:

```
is_common_format_valid "$state" "state"
is_common_format_valid "$org" "org"
is_common_format_valid "$unit" "unit"
```
State, Organization, and Unit variables can contain (and in this case contain) spaces, so they fail validation and the certificate is not created, causing the crash.

- This PR removes those validations in script `v-generate-ssl-cert`
- Added missing quotes to variable expansion in v-list-backup-host to prevent word splitting.
- It also refined validation logic in `v-change-user-name` by checking first and last names independently.

* Add space-aware common format validator

Introduce a new common format validation function that safely allows spaces and apply it to relevant fields requiring space support.
sahsanu 1 روز پیش
والد
74b6b1e57d
کامیت
8b96ba8cfc
4فایلهای تغییر یافته به همراه76 افزوده شده و 5 حذف شده
مشاهده تقسیم شده نمایش آمار تفاوت ها
  1. 2 1
      bin/v-change-user-name
  2. 3 3
      bin/v-generate-ssl-cert
  3. 1 1
      bin/v-list-backup-host
  4. 70 0
      func/main.sh

+ 2 - 1
bin/v-change-user-name
مشاهده فایل 

@@ -31,8 +31,9 @@ check_args '2' "$#" 'USER NAME [LAST_NAME]'
 
 is_format_valid 'user' 'name'
 
 is_object_valid 'user' 'USER' "$user"
 
 is_object_unsuspended 'user' 'USER' "$user"
 
+is_common_format_spaces_valid "$name" "name"
 
 if [ -n "$lname" ]; then
 
-	is_common_format_valid "$name $lname" "last name"
 
+	is_common_format_spaces_valid "$lname" "last name"
 
 fi
 
 
 # Perform verification if read-only mode is enabled

+ 3 - 3
bin/v-generate-ssl-cert
مشاهده فایل 

@@ -76,9 +76,9 @@ args_usage='DOMAIN EMAIL COUNTRY STATE CITY ORG UNIT [ALIASES] [FORMAT]'
 
 check_args '7' "$#" "$args_usage"
 
 is_format_valid 'domain' 'aliases' 'format' 'email'
 
 is_common_format_valid "$country" "country"
 
-is_common_format_valid "$state" "state"
 
-is_common_format_valid "$org" "org"
 
-is_common_format_valid "$unit" "unit"
 
+is_common_format_spaces_valid "$state" "state"
 
+is_common_format_spaces_valid "$org" "org"
 
+is_common_format_spaces_valid "$unit" "unit"
 
 
 release="$(lsb_release -s -r)"

+ 1 - 1
bin/v-list-backup-host
مشاهده فایل 

@@ -113,7 +113,7 @@ is_type_format_valid() {
 
 #----------------------------------------------------------#
 
 
 check_args '1' "$#" 'TYPE [FORMAT]'
 
-is_common_format_valid $type "type"
 
+is_common_format_valid "$type" "type"
 
 
 #----------------------------------------------------------#
 
 #                       Action                             #

+ 70 - 0
func/main.sh
مشاهده فایل 

@@ -911,6 +911,76 @@ is_common_format_valid() {
 
 	is_no_new_line_format "$1"
 
 }
 
 
+# Common format validator for fields that need spaces
 
+is_common_format_spaces_valid() {
 
+	# Block injection chars but allow spaces
 
+	exclude="[!|#|$|^|&|(|)|+|=|{|}|:|<|>|?|/|\|\"|'|;|%|\`]"
 
+
 
+	# Block tabs, newlines, carriage returns
 
+	if [[ "$1" == *$'\t'* || "$1" == *$'\n'* || "$1" == *$'\r'* || "$1" == *$'\v'* || "$1" == *$'\f'* ]]; then
 
+		check_result "$E_INVALID" "invalid $2 format :: $1"
 
+	fi
 
+
 
+	# No leading/trailing spaces
 
+	if [[ "$1" == " "* || "$1" == *" " ]]; then
 
+		check_result "$E_INVALID" "invalid $2 format :: $1"
 
+	fi
 
+
 
+	# No multiple consecutive spaces
 
+	if [[ "$1" =~ "  " ]]; then
 
+		check_result "$E_INVALID" "invalid $2 format :: $1"
 
+	fi
 
+
 
+	# Check excluded chars
 
+	if [[ "$1" =~ $exclude ]]; then
 
+		check_result "$E_INVALID" "invalid $2 format :: $1"
 
+	fi
 
+
 
+	# Max length
 
+	if [ 400 -le ${#1} ]; then
 
+		check_result "$E_INVALID" "invalid $2 format :: $1"
 
+	fi
 
+
 
+	# No @ (except single char)
 
+	if [[ "$1" =~ @ ]] && [ ${#1} -gt 1 ]; then
 
+		check_result "$E_INVALID" "invalid $2 format :: $1"
 
+	fi
 
+
 
+	# No wildcards
 
+	if [[ "$1" =~ \* ]]; then
 
+		if [[ "$(echo "$1" | grep -o '\*\.' | wc -l)" -eq 0 ]] && [[ "$1" != '*' ]]; then
 
+			check_result "$E_INVALID" "invalid $2 format :: $1"
 
+		fi
 
+	fi
 
+
 
+	# Must end with alphanumeric
 
+	if [[ $(echo -n "$1" | tail -c 1) =~ [^a-zA-Z0-9] ]]; then
 
+		check_result "$E_INVALID" "invalid $2 format :: $1"
 
+	fi
 
+
 
+	# No consecutive dots
 
+	if [[ $(echo -n "$1" | grep -c '\.\.') -gt 0 ]]; then
 
+		check_result "$E_INVALID" "invalid $2 format :: $1"
 
+	fi
 
+
 
+	# Must start with alphanumeric
 
+	if [[ $(echo -n "$1" | head -c 1) =~ [^a-zA-Z0-9] ]]; then
 
+		check_result "$E_INVALID" "invalid $2 format :: $1"
 
+	fi
 
+
 
+	# No consecutive dashes
 
+	if [[ $(echo -n "$1" | grep -c '\-\-') -gt 0 ]]; then
 
+		check_result "$E_INVALID" "invalid $2 format :: $1"
 
+	fi
 
+
 
+	# No consecutive underscores
 
+	if [[ $(echo -n "$1" | grep -c '\_\_') -gt 0 ]]; then
 
+		check_result "$E_INVALID" "invalid $2 format :: $1"
 
+	fi
 
+
 
+	is_no_new_line_format "$1"
 
+}
 
+
 
 is_no_new_line_format() {
 
 	test=$(echo "$1" | head -n1)
 
 	if [[ "$test" != "$1" ]]; then