From a45030f8ee10bc97ffcf1bf0061a2e6f22c7252a Mon Sep 17 00:00:00 2001 From: John Keeping Date: Sun, 12 Jan 2014 19:45:16 +0000 Subject: ui-shared: URL-escape script_name As far as I know, there is no requirement that $SCRIPT_NAME contain only URL-safe characters, so we need to make sure that any special characters are escaped. Signed-off-by: John Keeping --- ui-shared.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/ui-shared.c b/ui-shared.c index 2c12de7..abe15cd 100644 --- a/ui-shared.c +++ b/ui-shared.c @@ -139,7 +139,7 @@ static void site_url(const char *page, const char *search, const char *sort, int if (ctx.cfg.virtual_root) html_attr(ctx.cfg.virtual_root); else - html(ctx.cfg.script_name); + html_url_path(ctx.cfg.script_name); if (page) { htmlf("?p=%s", page); @@ -219,7 +219,7 @@ static char *repolink(const char *title, const char *class, const char *page, html_url_path(path); } } else { - html(ctx.cfg.script_name); + html_url_path(ctx.cfg.script_name); html("?url="); html_url_arg(ctx.repo->url); if (ctx.repo->url[strlen(ctx.repo->url) - 1] != '/') -- cgit v1.2.3-57-g22cb