check-certificates: properly escape the name for regex

1 files changed, 2 insertions, 1 deletions

diff --git a/check-certificates.rsc b/check-certificates.rsc
index 1a984bc..98a6cab 100644
--- a/check-certificates.rsc
+++ b/check-certificates.rsc
@@ -32,6 +32,7 @@
   :global CertRenewPass;
 
   :global CertificateNameByCN;
+  :global EscapeForRegEx;
   :global LogPrintExit2;
   :global UrlEncode;
   :global WaitForFile;
@@ -58,7 +59,7 @@
         $LogPrintExit2 warning $0 ("Decryption failed for certificate file " . $CertFileName) false;
       }
 
-      :foreach CertInChain in=[ /certificate/find where name~("^" . $CertFileName . "_[0-9]+\$") \
+      :foreach CertInChain in=[ /certificate/find where name~("^" . [ $EscapeForRegEx $CertFileName ] . "_[0-9]+\$") \
           common-name!=$Name !(subject-alt-name~("(^|\\W)(DNS|IP):" . [ $EscapeForRegEx $Name ] . "(\\W|\$)")) !(common-name=[]) ] do={
         $CertificateNameByCN [ /certificate/get $CertInChain common-name ];
       }