From f9dadb2670de7c8f4414870ac6cb1b11c7d9c546 Mon Sep 17 00:00:00 2001
From: alwaysjolley <chris@alwaysjolley.com>
Date: Mon, 22 Apr 2019 09:38:44 -0400
Subject: [PATCH] fixing validation

---
 lemur/plugins/lemur_vault_dest/plugin.py | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

diff --git a/lemur/plugins/lemur_vault_dest/plugin.py b/lemur/plugins/lemur_vault_dest/plugin.py
index a9c85dd7..8d2ca6c6 100644
--- a/lemur/plugins/lemur_vault_dest/plugin.py
+++ b/lemur/plugins/lemur_vault_dest/plugin.py
@@ -124,11 +124,16 @@ class VaultDestinationPlugin(DestinationPlugin):
         san_list = get_san_list(body)
         if san_filter:
             for san in san_list:
-                if not re.match(san_filter, san, flags=re.IGNORECASE):
+                try:
+                    if not re.match(san_filter, san, flags=re.IGNORECASE):
+                        current_app.logger.exception(
+                            "Exception uploading secret to vault: invalid SAN: {}".format(san),
+                            exc_info=True)
+                        os._exit(1)
+                except re.error:
                     current_app.logger.exception(
-                        "Exception uploading secret to vault: invalid SAN: {}".format(san),
+                        "Exception compiling regex filter: invalid filter",
                         exc_info=True)
-                    os._exit(1)
 
         with open(token_file, 'r') as file:
             token = file.readline().rstrip('\n')