Fixed bugzilla bug #717041 - Improve escaping of some enrollment inputs

git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@2092 c9f7a03b-bd48-0410-a16d-cbbf54688b0b

1 files changed, 13 insertions, 0 deletions

diff --git a/pki/base/common/src/com/netscape/cms/servlet/base/CMSServlet.java b/pki/base/common/src/com/netscape/cms/servlet/base/CMSServlet.java
index 9e0f1f32c..c823143be 100644
--- a/pki/base/common/src/com/netscape/cms/servlet/base/CMSServlet.java
+++ b/pki/base/common/src/com/netscape/cms/servlet/base/CMSServlet.java
@@ -2283,8 +2283,21 @@ public abstract class CMSServlet extends HttpServlet {
             if (c == ',' || c == '=' || c == '+' || c == '<' ||
                 c == '>' || c == '#' || c == ';' || c == '\r' ||
                 c == '\n' || c == '\\' || c == '"') {
+                if ((c == 0x5c) && ((i+1) < v.length())) {
+                    int nextC = v.charAt(i+1);
+                    if ((c == 0x5c) && (nextC == ',' || nextC == '=' || nextC == '+' ||
+                                        nextC == '<' || nextC == '>' || nextC == '#' ||
+                                        nextC == ';' || nextC == '\r' || nextC == '\n' ||
+                                        nextC == '\\' || nextC == '"')) {
+                        if (doubleEscape) result.append('\\');
+                    } else {
                         result.append('\\');
                         if (doubleEscape) result.append('\\');
+                    }
+                } else {
+                    result.append('\\');
+                    if (doubleEscape) result.append('\\');
+                }
             }
             if (c == '\r') {
                 result.append("0D");