Fijxu
/
nginx-quic
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge of r4313: 

Added escaping of double quotes in ngx_escape_html().

Patch by Zaur Abasmirzoev.
This commit is contained in:
Maxim Dounin 2011-12-14 18:04:06 +00:00
parent ad50cf7b86
commit db7394b9a5
1 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
src/core/ngx_string.c
View File

@ -1657,6 +1657,10 @@ ngx_escape_html(u_char *dst, u_char *src, size_t size)
len += sizeof("&") - 2;
break;
case '"':
len += sizeof(""") - 2;
break;
default:
break;
}
@ -1684,6 +1688,11 @@ ngx_escape_html(u_char *dst, u_char *src, size_t size)
*dst++ = ';';
break;
case '"':
*dst++ = '&'; *dst++ = 'q'; *dst++ = 'u'; *dst++ = 'o';
*dst++ = 't'; *dst++ = ';';
break;
default:
*dst++ = ch;
break;