Mercurial > pidgin3 / file diff

diff: libpurple/protocols/mxit/formcmds.c

libpurple/protocols/mxit/formcmds.c

branch
release-2.x.y
changeset 33743
a8aef1d340f2
parent 33617
554bc9cc52a8
child 33760
66611fba7197
child 33816
9eb08b587d95
--- a/libpurple/protocols/mxit/formcmds.c	Mon Feb 11 01:01:20 2013 -0800
+++ b/libpurple/protocols/mxit/formcmds.c	Mon Feb 11 01:03:34 2013 -0800
@@ -405,19 +405,29 @@
 		guchar*		rawimg;
 		gsize		rawimglen;
 		char*		dir;
+		char*		escfrom;
+		char*		escname;
+		char*		escvalidator;
 		char*		filename;
 
 		/* base64 decode the image data */
 		rawimg = purple_base64_decode(tmp, &rawimglen);
 
 		/* save it to a file */
-		dir = g_strdup_printf("%s/mxit/imagestrips", purple_user_dir());
+		dir = g_build_filename(purple_user_dir(), "mxit", "imagestrips", NULL);
 		purple_build_dir(dir, S_IRUSR | S_IWUSR | S_IXUSR);		/* ensure directory exists */
 
-		filename = g_strdup_printf("%s/%s-%s-%s.png", dir, from, name, validator);
+		escfrom = g_strdup(purple_escape_filename(from));
+		escname = g_strdup(purple_escape_filename(name));
+		escvalidator = g_strdup(purple_escape_filename(validator));
+		filename = g_strdup_printf("%s" G_DIR_SEPARATOR_S "%s-%s-%s.png", dir, escfrom, escname, escvalidator);
+
 		purple_util_write_data_to_file_absolute(filename, (char*) rawimg, rawimglen);
 
 		g_free(dir);
+		g_free(escfrom);
+		g_free(escname);
+		g_free(escvalidator);
 		g_free(filename);
 	}

Mercurial Repository: pidgin3

mercurial