need xmlescape for password

author HAMANO Tsukasa <hamano@cuspy.org>

Fri, 7 Mar 2014 07:34:20 +0000 (16:34 +0900)

committer HAMANO Tsukasa <hamano@cuspy.org>

Fri, 7 Mar 2014 07:34:20 +0000 (16:34 +0900)
author HAMANO Tsukasa <hamano@cuspy.org>
Fri, 7 Mar 2014 07:34:20 +0000 (16:34 +0900)
committer HAMANO Tsukasa <hamano@cuspy.org>
Fri, 7 Mar 2014 07:34:20 +0000 (16:34 +0900)
diff --git a/src/ejabberd_piefxis.erl b/src/ejabberd_piefxis.erl

index b193dc67c0a474775eecabc6b69ddffbd590f82b..12604ba5eda4c1d3511e0694470ab16ed8373f77 100644 (file)
--- a/src/ejabberd_piefxis.erl
+++ b/src/ejabberd_piefxis.erl
@@ -570,7 +570,7 @@ build_password_string({StoredKey, ServerKey, Salt, IterationCount}) ->
                    base64:encode_to_string(Salt),
                    IterationCount]);
  build_password_string(Password) when is_list(Password) ->
-    io_lib:format("password-format='plaintext' password='~s'>", [Password]).
+    io_lib:format("password-format='plaintext' password='~s'>", [exmpp_xml:escape_using_entities(Password)]).
  
  %% @spec (InfoName::atom(), Username::string(), Host::string()) -> string()
  extract_user_info(roster, Username, Host) ->
author	HAMANO Tsukasa <hamano@cuspy.org>
	Fri, 7 Mar 2014 07:34:20 +0000 (16:34 +0900)
committer	HAMANO Tsukasa <hamano@cuspy.org>
	Fri, 7 Mar 2014 07:34:20 +0000 (16:34 +0900)