1355604SdelphijNOTE: We are looking for help with a few things: 2355604Sdelphij https://github.com/libexpat/libexpat/labels/help%20wanted 3355604Sdelphij If you can help, please get in touch. Thanks! 4355604Sdelphij 5355604SdelphijRelease 2.2.9 Wed Septemper 25 2019 6355604Sdelphij Other changes: 7355604Sdelphij examples: Drop executable bits from elements.c 8355604Sdelphij #349 Windows: Change the name of the Windows DLLs from expat*.dll 9355604Sdelphij to libexpat*.dll once more (regression from 2.2.8, first 10355604Sdelphij fixed in 1.95.3, issue #61 on SourceForge today, 11355604Sdelphij was issue #432456 back then); needs a fix due 12355604Sdelphij case-insensitive file systems on Windows and the fact that 13355604Sdelphij Perl's XML::Parser::Expat compiles into Expat.dll. 14355604Sdelphij #347 Windows: Only define _CRT_RAND_S if not defined 15355604Sdelphij Version info bumped from 7:10:6 to 7:11:6 16355604Sdelphij 17355604Sdelphij Special thanks to: 18355604Sdelphij Ben Wagner 19355604Sdelphij 20355604SdelphijRelease 2.2.8 Fri Septemper 13 2019 21355604Sdelphij Security fixes: 22355604Sdelphij #317 #318 CVE-2019-15903 -- Fix heap overflow triggered by 23355604Sdelphij XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber), 24355604Sdelphij and deny internal entities closing the doctype; 25355604Sdelphij fixed in commit c20b758c332d9a13afbbb276d30db1d183a85d43 26355604Sdelphij 27355604Sdelphij Bug fixes: 28355604Sdelphij #240 Fix cases where XML_StopParser did not have any effect 29355604Sdelphij when called from inside of an end element handler 30355604Sdelphij #341 xmlwf: Fix exit code for operation without "-d DIRECTORY"; 31355604Sdelphij previously, only "-d DIRECTORY" would give you a proper 32355604Sdelphij exit code: 33355604Sdelphij # xmlwf -d . <<<'<not well-formed>' 2>/dev/null ; echo $? 34355604Sdelphij 2 35355604Sdelphij # xmlwf <<<'<not well-formed>' 2>/dev/null ; echo $? 36355604Sdelphij 0 37355604Sdelphij Now both cases return exit code 2. 38355604Sdelphij 39355604Sdelphij Other changes: 40355604Sdelphij #299 #302 Windows: Replace LoadLibrary hack to access 41355604Sdelphij unofficial API function SystemFunction036 (RtlGenRandom) 42355604Sdelphij by using official API function rand_s (needs WinXP+) 43355604Sdelphij #325 Windows: Drop support for Visual Studio <=7.1/2003 44355604Sdelphij and document supported compilers in README.md 45355604Sdelphij #286 Windows: Remove COM code from xmlwf; in case it turns 46355604Sdelphij out needed later, there will be a dedicated repository 47355604Sdelphij below https://github.com/libexpat/ for that code 48355604Sdelphij #322 Windows: Remove explicit MSVC solution and project files. 49355604Sdelphij You can generate Visual Studio solution files through 50355604Sdelphij CMake, e.g.: cmake -G"Visual Studio 15 2017" . 51355604Sdelphij #338 xmlwf: Make "xmlwf -h" help output more friendly 52355604Sdelphij #339 examples: Improve elements.c 53355604Sdelphij #244 #264 Autotools: Add argument --enable-xml-attr-info 54355604Sdelphij #239 #301 Autotools: Add arguments 55355604Sdelphij --with-getrandom 56355604Sdelphij --without-getrandom 57355604Sdelphij --with-sys-getrandom 58355604Sdelphij --without-sys-getrandom 59355604Sdelphij #312 #343 Autotools: Fix linking issues with "./configure LD=clang" 60355604Sdelphij Autotools: Fix "make run-xmltest" for out-of-source builds 61355604Sdelphij #329 #336 CMake: Pull all options from Expat <=2.2.7 into namespace 62355604Sdelphij prefix EXPAT_ with the exception of DOCBOOK_TO_MAN: 63355604Sdelphij - BUILD_doc -> EXPAT_BUILD_DOCS (plural) 64355604Sdelphij - BUILD_examples -> EXPAT_BUILD_EXAMPLES 65355604Sdelphij - BUILD_shared -> EXPAT_SHARED_LIBS 66355604Sdelphij - BUILD_tests -> EXPAT_BUILD_TESTS 67355604Sdelphij - BUILD_tools -> EXPAT_BUILD_TOOLS 68355604Sdelphij - DOCBOOK_TO_MAN -> DOCBOOK_TO_MAN (unchanged) 69355604Sdelphij - INSTALL -> EXPAT_ENABLE_INSTALL 70355604Sdelphij - MSVC_USE_STATIC_CRT -> EXPAT_MSVC_STATIC_CRT 71355604Sdelphij - USE_libbsd -> EXPAT_WITH_LIBBSD 72355604Sdelphij - WARNINGS_AS_ERRORS -> EXPAT_WARNINGS_AS_ERRORS 73355604Sdelphij - XML_CONTEXT_BYTES -> EXPAT_CONTEXT_BYTES 74355604Sdelphij - XML_DEV_URANDOM -> EXPAT_DEV_URANDOM 75355604Sdelphij - XML_DTD -> EXPAT_DTD 76355604Sdelphij - XML_NS -> EXPAT_NS 77355604Sdelphij - XML_UNICODE -> EXPAT_CHAR_TYPE=ushort (!) 78355604Sdelphij - XML_UNICODE_WCHAR_T -> EXPAT_CHAR_TYPE=wchar_t (!) 79355604Sdelphij #244 #264 CMake: Add argument -DEXPAT_ATTR_INFO=(ON|OFF), 80355604Sdelphij default OFF 81355604Sdelphij #326 CMake: Add argument -DEXPAT_LARGE_SIZE=(ON|OFF), 82355604Sdelphij default OFF 83355604Sdelphij #328 CMake: Add argument -DEXPAT_MIN_SIZE=(ON|OFF), 84355604Sdelphij default OFF 85355604Sdelphij #239 #277 CMake: Add arguments 86355604Sdelphij -DEXPAT_WITH_GETRANDOM=(ON|OFF|AUTO), default AUTO 87355604Sdelphij -DEXPAT_WITH_SYS_GETRANDOM=(ON|OFF|AUTO), default AUTO 88355604Sdelphij #326 CMake: Install expat_config.h to include directory 89355604Sdelphij #326 CMake: Generate and install configuration files for 90355604Sdelphij future find_package(expat [..] CONFIG [..]) 91355604Sdelphij CMake: Now produces a summary of applied configuration 92355604Sdelphij CMake: Require C++ compiler only when tests are enabled 93355604Sdelphij #330 CMake: Fix compilation for 16bit character types, 94355604Sdelphij i.e. ex -DXML_UNICODE=ON (and ex -DXML_UNICODE_WCHAR_T=ON) 95355604Sdelphij #265 CMake: Fix linking with MinGW 96355604Sdelphij #330 CMake: Add full support for MinGW; to enable, use 97355604Sdelphij -DCMAKE_TOOLCHAIN_FILE=[expat]/cmake/mingw-toolchain.cmake 98355604Sdelphij #330 CMake: Port "make run-xmltest" from GNU Autotools to CMake 99355604Sdelphij #316 CMake: Windows: Make binary postfix match MSVC 100355604Sdelphij Old: expat[d].lib 101355604Sdelphij New: expat[w][d][MD|MT].lib 102355604Sdelphij CMake: Migrate files from Windows to Unix line endings 103355604Sdelphij #308 CMake: Integrate OSS-Fuzz fuzzers, option 104355604Sdelphij -DEXPAT_BUILD_FUZZERS=(ON|OFF), default OFF 105355604Sdelphij #14 Drop an OpenVMS support leftover 106355604Sdelphij #235 #268 .. 107355604Sdelphij #270 #310 .. 108355604Sdelphij #313 #331 #333 Address compiler warnings 109355604Sdelphij #282 #283 .. 110355604Sdelphij #284 #285 Address cppcheck warnings 111355604Sdelphij #294 #295 Address Clang Static Analyzer warnings 112355604Sdelphij #24 #293 Mass-apply clang-format 9 (and ensure conformance during CI) 113355604Sdelphij Version info bumped from 7:9:6 to 7:10:6 114355604Sdelphij 115355604Sdelphij Special thanks to: 116355604Sdelphij David Loffredo 117355604Sdelphij Joonun Jang 118355604Sdelphij Khajapasha Mohammed 119355604Sdelphij Kishore Kunche 120355604Sdelphij Marco Maggi 121355604Sdelphij Mitch Phillips 122355604Sdelphij Rolf Ade 123355604Sdelphij xantares 124355604Sdelphij Zhongyuan Zhou 125355604Sdelphij 126355604SdelphijRelease 2.2.7 Wed June 19 2019 127355604Sdelphij Security fixes: 128355604Sdelphij #186 #262 CVE-2018-20843 -- Fix extraction of namespace prefixes from 129355604Sdelphij XML names; XML names with multiple colons could end up in 130355604Sdelphij the wrong namespace, and take a high amount of RAM and CPU 131355604Sdelphij resources while processing, opening the door to 132355604Sdelphij use for denial-of-service attacks 133355604Sdelphij 134355604Sdelphij Other changes: 135355604Sdelphij #195 #197 Autotools/CMake: Utilize -fvisibility=hidden to stop 136355604Sdelphij exporting non-API symbols 137355604Sdelphij #227 Autotools: Add --without-examples and --without-tests 138355604Sdelphij #228 Autotools: Modernize configure.ac 139355604Sdelphij #245 #246 Autotools: Fix check for -fvisibility=hidden for Clang 140355604Sdelphij #247 #248 Autotools: Fix compilation for lack of docbook2x-man 141355604Sdelphij #236 #258 Autotools: Produce .tar.{gz,lz,xz} release archives 142355604Sdelphij #212 CMake: Make libdir of pkgconfig expat.pc support multilib 143355604Sdelphij #158 #263 CMake: Build man page in PROJECT_BINARY_DIR not _SOURCE_DIR 144355604Sdelphij #219 Remove fallback to bcopy, assume that memmove(3) exists 145355604Sdelphij #257 Use portable "/usr/bin/env bash" shebang (e.g. for OpenBSD) 146355604Sdelphij #243 Windows: Fix syntax of .def module definition files 147355604Sdelphij Version info bumped from 7:8:6 to 7:9:6 148355604Sdelphij 149355604Sdelphij Special thanks to: 150355604Sdelphij Benjamin Peterson 151355604Sdelphij Caol��n McNamara 152355604Sdelphij Hanno B��ck 153355604Sdelphij KangLin 154355604Sdelphij Kishore Kunche 155355604Sdelphij Marco Maggi 156355604Sdelphij Rhodri James 157355604Sdelphij Sebastian Dr��ge 158355604Sdelphij userwithuid 159355604Sdelphij Yury Gribov 160355604Sdelphij 161355604SdelphijRelease 2.2.6 Sun August 12 2018 162355604Sdelphij Bug fixes: 163355604Sdelphij #170 #206 Avoid doing arithmetic with NULL pointers in XML_GetBuffer 164355604Sdelphij #204 #205 Fix 2.2.5 regression with suspend-resume while parsing 165355604Sdelphij a document like '<root/>' 166355604Sdelphij 167355604Sdelphij Other changes: 168355604Sdelphij #165 #168 Autotools: Fix docbook-related configure syntax error 169355604Sdelphij #166 Autotools: Avoid grep option `-q` for Solaris 170355604Sdelphij #167 Autotools: Support 171355604Sdelphij ./configure DOCBOOK_TO_MAN="xmlto man --skip-validation" 172355604Sdelphij #159 #167 Autotools: Support DOCBOOK_TO_MAN command which produces 173355604Sdelphij xmlwf.1 rather than XMLWF.1; also covers case insensitive 174355604Sdelphij file systems 175355604Sdelphij #181 Autotools: Drop -rpath option passed to libtool 176355604Sdelphij #188 Autotools: Detect and deny SGML docbook2man as ours is XML 177355604Sdelphij #188 Autotools/CMake: Support command db2x_docbook2man as well 178355604Sdelphij #174 CMake: Introduce option WARNINGS_AS_ERRORS, defaults to OFF 179355604Sdelphij #184 #185 CMake: Introduce option MSVC_USE_STATIC_CRT, defaults to OFF 180355604Sdelphij #207 #208 CMake: Introduce option XML_UNICODE and XML_UNICODE_WCHAR_T, 181355604Sdelphij both defaulting to OFF 182355604Sdelphij #175 CMake: Prefer check_symbol_exists over check_function_exists 183355604Sdelphij #176 CMake: Create the same pkg-config file as with GNU Autotools 184355604Sdelphij #178 #179 CMake: Use GNUInstallDirs module to set proper defaults for 185355604Sdelphij install directories 186355604Sdelphij #208 CMake: Utilize expat_config.h.cmake for XML_DEV_URANDOM 187355604Sdelphij #180 Windows: Fix compilation of test suite for Visual Studio 2008 188355604Sdelphij #131 #173 #202 Address compiler warnings 189355604Sdelphij #187 #190 #200 Fix miscellaneous typos 190355604Sdelphij Version info bumped from 7:7:6 to 7:8:6 191355604Sdelphij 192355604Sdelphij Special thanks to: 193355604Sdelphij Anton Maklakov 194355604Sdelphij Benjamin Peterson 195355604Sdelphij Brad King 196355604Sdelphij Franek Korta 197355604Sdelphij Frank Rast 198355604Sdelphij Joe Orton 199355604Sdelphij luzpaz 200355604Sdelphij Pedro Vicente 201355604Sdelphij Rainer Jung 202355604Sdelphij Rhodri James 203355604Sdelphij Rolf Ade 204355604Sdelphij Rolf Eike Beer 205355604Sdelphij Thomas Beutlich 206355604Sdelphij Tomasz K��oczko 207355604Sdelphij 208355604SdelphijRelease 2.2.5 Tue October 31 2017 209355604Sdelphij Bug fixes: 210355604Sdelphij #8 If the parser runs out of memory, make sure its internal 211355604Sdelphij state reflects the memory it actually has, not the memory 212355604Sdelphij it wanted to have. 213355604Sdelphij #11 The default handler wasn't being called when it should for 214355604Sdelphij a SYSTEM or PUBLIC doctype if an entity declaration handler 215355604Sdelphij was registered. 216355604Sdelphij #137 #138 Fix a case of mistakenly reported parsing success where 217355604Sdelphij XML_StopParser was called from an element handler 218355604Sdelphij #162 Function XML_ErrorString was returning NULL rather than 219355604Sdelphij a message for code XML_ERROR_INVALID_ARGUMENT 220355604Sdelphij introduced with release 2.2.1 221355604Sdelphij 222355604Sdelphij Other changes: 223355604Sdelphij #106 xmlwf: Add argument -N adding notation declarations 224355604Sdelphij #75 #106 Test suite: Resolve expected failure cases where xmlwf 225355604Sdelphij output was incomplete 226355604Sdelphij #127 Windows: Fix test suite compilation 227355604Sdelphij #126 #127 Windows: Fix compilation for Visual Studio 2012 228355604Sdelphij Windows: Upgrade shipped project files to Visual Studio 2017 229355604Sdelphij #33 #132 tests: Mass-fix compilation for XML_UNICODE_WCHAR_T 230355604Sdelphij #129 examples: Fix compilation for XML_UNICODE_WCHAR_T 231355604Sdelphij #130 benchmark: Fix compilation for XML_UNICODE_WCHAR_T 232355604Sdelphij #144 xmlwf: Fix compilation for XML_UNICODE_WCHAR_T; still needs 233355604Sdelphij Windows or MinGW for 2-byte wchar_t 234355604Sdelphij #9 Address two Clang Static Analyzer false positives 235355604Sdelphij #59 Resolve troublesome macros hiding parser struct membership 236355604Sdelphij and dereferencing that pointer 237355604Sdelphij #6 Resolve superfluous internal malloc/realloc switch 238355604Sdelphij #153 #155 Improve docbook2x-man detection 239355604Sdelphij #160 Undefine NDEBUG in the test suite (rather than rejecting it) 240355604Sdelphij #161 Address compiler warnings 241355604Sdelphij Version info bumped from 7:6:6 to 7:7:6 242355604Sdelphij 243355604Sdelphij Special thanks to: 244355604Sdelphij Benbuck Nason 245355604Sdelphij Hans Wennborg 246355604Sdelphij Jos�� Guti��rrez de la Concha 247355604Sdelphij Pedro Monreal Gonzalez 248355604Sdelphij Rhodri James 249355604Sdelphij Rolf Ade 250355604Sdelphij Stephen Groat 251355604Sdelphij and 252355604Sdelphij Core Infrastructure Initiative 253355604Sdelphij 254355604SdelphijRelease 2.2.4 Sat August 19 2017 255355604Sdelphij Bug fixes: 256355604Sdelphij #115 Fix copying of partial characters for UTF-8 input 257355604Sdelphij 258355604Sdelphij Other changes: 259355604Sdelphij #109 Fix "make check" for non-x86 architectures that default 260355604Sdelphij to unsigned type char (-128..127 rather than 0..255) 261355604Sdelphij #109 coverage.sh: Cover -funsigned-char 262355604Sdelphij Autotools: Introduce --without-xmlwf argument 263355604Sdelphij #65 Autotools: Replace handwritten Makefile with GNU Automake 264355604Sdelphij #43 CMake: Auto-detect high quality entropy extractors, add new 265355604Sdelphij option USE_libbsd=ON to use arc4random_buf of libbsd 266355604Sdelphij #74 CMake: Add -fno-strict-aliasing only where supported 267355604Sdelphij #114 CMake: Always honor manually set BUILD_* options 268355604Sdelphij #114 CMake: Compile man page if docbook2x-man is available, only 269355604Sdelphij #117 Include file tests/xmltest.log.expected in source tarball 270355604Sdelphij (required for "make run-xmltest") 271355604Sdelphij #117 Include (existing) Visual Studio 2013 files in source tarball 272355604Sdelphij Improve test suite error output 273355604Sdelphij #111 Fix some typos in documentation 274355604Sdelphij Version info bumped from 7:5:6 to 7:6:6 275355604Sdelphij 276355604Sdelphij Special thanks to: 277355604Sdelphij Jakub Wilk 278355604Sdelphij Joe Orton 279355604Sdelphij Lin Tian 280355604Sdelphij Rolf Eike Beer 281355604Sdelphij 282355604SdelphijRelease 2.2.3 Wed August 2 2017 283355604Sdelphij Security fixes: 284355604Sdelphij #82 CVE-2017-11742 -- Windows: Fix DLL hijacking vulnerability 285355604Sdelphij using Steve Holme's LoadLibrary wrapper for/of cURL 286355604Sdelphij 287355604Sdelphij Bug fixes: 288355604Sdelphij #85 Fix a dangling pointer issue related to realloc 289355604Sdelphij 290355604Sdelphij Other changes: 291355604Sdelphij Increase code coverage 292355604Sdelphij #91 Linux: Allow getrandom to fail if nonblocking pool has not 293355604Sdelphij yet been initialized and read /dev/urandom then, instead. 294355604Sdelphij This is in line with what recent Python does. 295355604Sdelphij #81 Pre-10.7/Lion macOS: Support entropy from arc4random 296355604Sdelphij #86 Check that a UTF-16 encoding in an XML declaration has the 297355604Sdelphij right endianness 298355604Sdelphij #4 #5 #7 Recover correctly when some reallocations fail 299355604Sdelphij Repair "./configure && make" for systems without any 300355604Sdelphij provider of high quality entropy 301355604Sdelphij and try reading /dev/urandom on those 302355604Sdelphij Ensure that user-defined character encodings have converter 303355604Sdelphij functions when they are needed 304355604Sdelphij Fix mis-leading description of argument -c in xmlwf.1 305355604Sdelphij Rely on macro HAVE_ARC4RANDOM_BUF (rather than __CloudABI__) 306355604Sdelphij for CloudABI 307355604Sdelphij #100 Fix use of SIPHASH_MAIN in siphash.h 308355604Sdelphij #23 Test suite: Fix memory leaks 309355604Sdelphij Version info bumped from 7:4:6 to 7:5:6 310355604Sdelphij 311355604Sdelphij Special thanks to: 312355604Sdelphij Chanho Park 313355604Sdelphij Joe Orton 314355604Sdelphij Pascal Cuoq 315355604Sdelphij Rhodri James 316355604Sdelphij Simon McVittie 317355604Sdelphij Vadim Zeitlin 318355604Sdelphij Viktor Szakats 319355604Sdelphij and 320355604Sdelphij Core Infrastructure Initiative 321355604Sdelphij 322355604SdelphijRelease 2.2.2 Wed July 12 2017 323355604Sdelphij Security fixes: 324355604Sdelphij #43 Protect against compilation without any source of high 325355604Sdelphij quality entropy enabled, e.g. with CMake build system; 326355604Sdelphij commit ff0207e6076e9828e536b8d9cd45c9c92069b895 327355604Sdelphij #60 Windows with _UNICODE: 328355604Sdelphij Unintended use of LoadLibraryW with a non-wide string 329355604Sdelphij resulted in failure to load advapi32.dll and degradation 330355604Sdelphij in quality of used entropy when compiled with _UNICODE for 331355604Sdelphij Windows; you can launch existing binaries with 332355604Sdelphij EXPAT_ENTROPY_DEBUG=1 in the environment to inspect the 333355604Sdelphij quality of entropy used during runtime; commits 334355604Sdelphij * 95b95032f907ef1cd17ee7a9a1768010a825d61d 335355604Sdelphij * 73a5a2e9c081f49f2d775cf7ced864158b68dc80 336355604Sdelphij [MOX-006] Fix non-NULL parser parameter validation in XML_Parse; 337355604Sdelphij resulted in NULL dereference, previously; 338355604Sdelphij commit ac256dafdffc9622ab0dc2c62fcecb0dfcfa71fe 339355604Sdelphij 340355604Sdelphij Bug fixes: 341355604Sdelphij #69 Fix improper use of unsigned long long integer literals 342355604Sdelphij 343355604Sdelphij Other changes: 344355604Sdelphij #73 Start requiring a C99 compiler 345355604Sdelphij #49 Fix "==" Bashism in configure script 346355604Sdelphij #50 Fix too eager getrandom detection for Debian GNU/kFreeBSD 347355604Sdelphij #52 and macOS 348355604Sdelphij #51 Address lack of stdint.h in Visual Studio 2003 to 2008 349355604Sdelphij #58 Address compile warnings 350355604Sdelphij #68 Fix "./buildconf.sh && ./configure" for some versions 351355604Sdelphij of Dash for /bin/sh 352355604Sdelphij #72 CMake: Ease use of Expat in context of a parent project 353355604Sdelphij with multiple CMakeLists.txt files 354355604Sdelphij #72 CMake: Resolve mistaken executable permissions 355355604Sdelphij #76 Address compile warning with -DNDEBUG (not recommended!) 356355604Sdelphij #77 Address compile warning about macro redefinition 357355604Sdelphij 358355604Sdelphij Special thanks to: 359355604Sdelphij Alexander Bluhm 360355604Sdelphij Ben Boeckel 361355604Sdelphij C��t��lin R��ceanu 362355604Sdelphij Kerin Millar 363355604Sdelphij L��szl�� B��sz��rm��nyi 364355604Sdelphij S. P. Zeidler 365355604Sdelphij Segev Finer 366355604Sdelphij V��clav Slav��k 367355604Sdelphij Victor Stinner 368355604Sdelphij Viktor Szakats 369355604Sdelphij and 370355604Sdelphij Radically Open Security 371355604Sdelphij 372355604SdelphijRelease 2.2.1 Sat June 17 2017 373355604Sdelphij Security fixes: 374355604Sdelphij CVE-2017-9233 -- External entity infinite loop DoS 375355604Sdelphij Details: https://libexpat.github.io/doc/cve-2017-9233/ 376355604Sdelphij Commit c4bf96bb51dd2a1b0e185374362ee136fe2c9d7f 377355604Sdelphij [MOX-002] CVE-2016-9063 -- Detect integer overflow; commit 378355604Sdelphij d4f735b88d9932bd5039df2335eefdd0723dbe20 379355604Sdelphij (Fixed version of existing downstream patches!) 380355604Sdelphij (SF.net) #539 Fix regression from fix to CVE-2016-0718 cutting off 381355604Sdelphij longer tag names; commits 382355604Sdelphij * 896b6c1fd3b842f377d1b62135dccf0a579cf65d 383355604Sdelphij * af507cef2c93cb8d40062a0abe43a4f4e9158fb2 384355604Sdelphij #16 * 0dbbf43fdb20f593ddf4fa1ff67288000dd4a7fd 385355604Sdelphij #25 More integer overflow detection (function poolGrow); commits 386355604Sdelphij * 810b74e4703dcfdd8f404e3cb177d44684775143 387355604Sdelphij * 44178553f3539ce69d34abee77a05e879a7982ac 388355604Sdelphij [MOX-002] Detect overflow from len=INT_MAX call to XML_Parse; commits 389355604Sdelphij * 4be2cb5afcc018d996f34bbbce6374b7befad47f 390355604Sdelphij * 7e5b71b748491b6e459e5c9a1d090820f94544d8 391355604Sdelphij [MOX-005] #30 Use high quality entropy for hash initialization: 392355604Sdelphij * arc4random_buf on BSD, systems with libbsd 393355604Sdelphij (when configured with --with-libbsd), CloudABI 394355604Sdelphij * RtlGenRandom on Windows XP / Server 2003 and later 395355604Sdelphij * getrandom on Linux 3.17+ 396355604Sdelphij In a way, that's still part of CVE-2016-5300. 397355604Sdelphij https://github.com/libexpat/libexpat/pull/30/commits 398355604Sdelphij [MOX-005] For the low quality entropy extraction fallback code, 399355604Sdelphij the parser instance address can no longer leak, commit 400355604Sdelphij 04ad658bd3079dd15cb60fc67087900f0ff4b083 401355604Sdelphij [MOX-003] Prevent use of uninitialised variable; commit 402355604Sdelphij [MOX-004] a4dc944f37b664a3ca7199c624a98ee37babdb4b 403355604Sdelphij Add missing parameter validation to public API functions 404355604Sdelphij and dedicated error code XML_ERROR_INVALID_ARGUMENT: 405355604Sdelphij [MOX-006] * NULL checks; commits 406355604Sdelphij * d37f74b2b7149a3a95a680c4c4cd2a451a51d60a (merge/many) 407355604Sdelphij * 9ed727064b675b7180c98cb3d4f75efba6966681 408355604Sdelphij * 6a747c837c50114dfa413994e07c0ba477be4534 409355604Sdelphij * Negative length (XML_Parse); commit 410355604Sdelphij [MOX-002] 70db8d2538a10f4c022655d6895e4c3e78692e7f 411355604Sdelphij [MOX-001] #35 Change hash algorithm to William Ahern's version of SipHash 412355604Sdelphij to go further with fixing CVE-2012-0876. 413355604Sdelphij https://github.com/libexpat/libexpat/pull/39/commits 414355604Sdelphij 415355604Sdelphij Bug fixes: 416355604Sdelphij #32 Fix sharing of hash salt across parsers; 417355604Sdelphij relevant where XML_ExternalEntityParserCreate is called 418355604Sdelphij prior to XML_Parse, in particular (e.g. FBReader) 419355604Sdelphij #28 xmlwf: Auto-disable use of memory-mapping (and parsing 420355604Sdelphij as a single chunk) for files larger than ~1 GB (2^30 bytes) 421355604Sdelphij rather than failing with error "out of memory" 422355604Sdelphij #3 Fix double free after malloc failure in DTD code; commit 423355604Sdelphij 7ae9c3d3af433cd4defe95234eae7dc8ed15637f 424355604Sdelphij #17 Fix memory leak on parser error for unbound XML attribute 425355604Sdelphij prefix with new namespaces defined in the same tag; 426355604Sdelphij found by Google's OSS-Fuzz; commits 427355604Sdelphij * 16f87daae5a16132e479e4f71862128c7a915c73 428355604Sdelphij * b47dbc9745932c160893d433220e462bd605f8cd 429355604Sdelphij xmlwf on Windows: Add missing calls to CloseHandle 430355604Sdelphij 431355604Sdelphij New features: 432355604Sdelphij #30 Introduced environment switch EXPAT_ENTROPY_DEBUG=1 433355604Sdelphij for runtime debugging of entropy extraction 434355604Sdelphij 435355604Sdelphij Other changes: 436355604Sdelphij Increase code coverage 437355604Sdelphij #33 Reject use of XML_UNICODE_WCHAR_T with sizeof(wchar_t) != 2; 438355604Sdelphij XML_UNICODE_WCHAR_T was never meant to be used outside 439355604Sdelphij of Windows; 4-byte wchar_t is common on Linux 440355604Sdelphij (SF.net) #538 Start using -fno-strict-aliasing 441355604Sdelphij (SF.net) #540 Support compilation against cloudlibc of CloudABI 442355604Sdelphij Allow MinGW cross-compilation 443355604Sdelphij (SF.net) #534 CMake: Introduce option "BUILD_doc" (enabled by default) 444355604Sdelphij to bypass compilation of the xmlwf.1 man page 445355604Sdelphij (SF.net) pr2 CMake: Introduce option "INSTALL" (enabled by default) 446355604Sdelphij to bypass installation of expat files 447355604Sdelphij CMake: Fix ninja support 448355604Sdelphij Autotools: Add parameters --enable-xml-context [COUNT] 449355604Sdelphij and --disable-xml-context; default of context of 1024 450355604Sdelphij bytes enabled unchanged 451355604Sdelphij #14 Drop AmigaOS 4.x code and includes 452355604Sdelphij #14 Drop ancient build systems: 453355604Sdelphij * Borland C++ Builder 454355604Sdelphij * OpenVMS 455355604Sdelphij * Open Watcom 456355604Sdelphij * Visual Studio 6.0 457355604Sdelphij * Pre-X Mac OS (MPW Makefile) 458355604Sdelphij If you happen to rely on some of these, please get in 459355604Sdelphij touch for joining with maintenance. 460355604Sdelphij #10 Move from WIN32 to _WIN32 461355604Sdelphij #13 Fix "make run-xmltest" order instability 462355604Sdelphij Address compile warnings 463355604Sdelphij Bump version info from 7:2:6 to 7:3:6 464355604Sdelphij Add AUTHORS file 465355604Sdelphij 466355604Sdelphij Infrastructure: 467355604Sdelphij #1 Migrate from SourceForge to GitHub (except downloads): 468355604Sdelphij https://github.com/libexpat/ 469355604Sdelphij #1 Re-create http://libexpat.org/ project website 470355604Sdelphij Start utilizing Travis CI 471355604Sdelphij 472355604Sdelphij Special thanks to: 473355604Sdelphij Andy Wang 474355604Sdelphij Don Lewis 475355604Sdelphij Ed Schouten 476355604Sdelphij Karl Waclawek 477355604Sdelphij Pascal Cuoq 478355604Sdelphij Rhodri James 479355604Sdelphij Sergei Nikulov 480355604Sdelphij Tobias Taschner 481355604Sdelphij Viktor Szakats 482355604Sdelphij and 483355604Sdelphij Core Infrastructure Initiative 484355604Sdelphij Mozilla Foundation (MOSS Track 3: Secure Open Source) 485355604Sdelphij Radically Open Security 486355604Sdelphij 487302305SdelphijRelease 2.2.0 Tue June 21 2016 488302305Sdelphij Security fixes: 489302305Sdelphij #537 CVE-2016-0718 -- Fix crash on malformed input 490302305Sdelphij CVE-2016-4472 -- Improve insufficient fix to CVE-2015-1283 / 491302305Sdelphij CVE-2015-2716 introduced with Expat 2.1.1 492302305Sdelphij #499 CVE-2016-5300 -- Use more entropy for hash initialization 493302305Sdelphij than the original fix to CVE-2012-0876 494302305Sdelphij #519 CVE-2012-6702 -- Resolve troublesome internal call to srand 495302305Sdelphij that was introduced with Expat 2.1.0 496302305Sdelphij when addressing CVE-2012-0876 (issue #496) 497302305Sdelphij 498302305Sdelphij Bug fixes: 499302305Sdelphij Fix uninitialized reads of size 1 500302305Sdelphij (e.g. in little2_updatePosition) 501302305Sdelphij Fix detection of UTF-8 character boundaries 502302305Sdelphij 503302305Sdelphij Other changes: 504302305Sdelphij #532 Fix compilation for Visual Studio 2010 (keyword "C99") 505302305Sdelphij Autotools: Resolve use of "$<" to better support bmake 506302305Sdelphij Autotools: Add QA script "qa.sh" (and make target "qa") 507302305Sdelphij Autotools: Respect CXXFLAGS if given 508302305Sdelphij Autotools: Fix "make run-xmltest" 509302305Sdelphij Autotools: Have "make run-xmltest" check for expected output 510302305Sdelphij p90 CMake: Fix static build (BUILD_shared=OFF) on Windows 511302305Sdelphij #536 CMake: Add soversion, support -DNO_SONAME=yes to bypass 512302305Sdelphij #323 CMake: Add suffix "d" to differentiate debug from release 513302305Sdelphij CMake: Define WIN32 with CMake on Windows 514302305Sdelphij Annotate memory allocators for GCC 515302305Sdelphij Address all currently known compile warnings 516302305Sdelphij Make sure that API symbols remain visible despite 517302305Sdelphij -fvisibility=hidden 518302305Sdelphij Remove executable flag from source files 519302305Sdelphij Resolve COMPILED_FROM_DSP in favor of WIN32 520302305Sdelphij 521302305Sdelphij Special thanks to: 522302305Sdelphij Bj��rn Lindahl 523302305Sdelphij Christian Heimes 524302305Sdelphij Cristian Rodr��guez 525302305Sdelphij Daniel Kr��gler 526302305Sdelphij Gustavo Grieco 527302305Sdelphij Karl Waclawek 528302305Sdelphij L��szl�� B��sz��rm��nyi 529302305Sdelphij Marco Grassi 530302305Sdelphij Pascal Cuoq 531302305Sdelphij Sergei Nikulov 532302305Sdelphij Thomas Beutlich 533302305Sdelphij Warren Young 534302305Sdelphij Yann Droneaud 535302305Sdelphij 536302305SdelphijRelease 2.1.1 Sat March 12 2016 537302305Sdelphij Security fixes: 538302305Sdelphij #582: CVE-2015-1283 - Multiple integer overflows in XML_GetBuffer 539302305Sdelphij 540302305Sdelphij Bug fixes: 541302305Sdelphij #502: Fix potential null pointer dereference 542302305Sdelphij #520: Symbol XML_SetHashSalt was not exported 543302305Sdelphij Output of "xmlwf -h" was incomplete 544302305Sdelphij 545302305Sdelphij Other changes: 546302305Sdelphij #503: Document behavior of calling XML_SetHashSalt with salt 0 547302305Sdelphij Minor improvements to man page xmlwf(1) 548302305Sdelphij Improvements to the experimental CMake build system 549302305Sdelphij libtool now invoked with --verbose 550302305Sdelphij 551247296SdelphijRelease 2.1.0 Sat March 24 2012 552355604Sdelphij - Security fixes: 553355604Sdelphij #2958794: CVE-2012-1148 - Memory leak in poolGrow. 554355604Sdelphij #2895533: CVE-2012-1147 - Resource leak in readfilemap.c. 555355604Sdelphij #3496608: CVE-2012-0876 - Hash DOS attack. 556355604Sdelphij #2894085: CVE-2009-3560 - Buffer over-read and crash in big2_toUtf8(). 557355604Sdelphij #1990430: CVE-2009-3720 - Parser crash with special UTF-8 sequences. 558247296Sdelphij - Bug Fixes: 559247296Sdelphij #1742315: Harmful XML_ParserCreateNS suggestion. 560247296Sdelphij #1785430: Expat build fails on linux-amd64 with gcc version>=4.1 -O3. 561247296Sdelphij #1983953, 2517952, 2517962, 2649838: 562247296Sdelphij Build modifications using autoreconf instead of buildconf.sh. 563247296Sdelphij #2815947, #2884086: OBJEXT and EXEEXT support while building. 564247296Sdelphij #2517938: xmlwf should return non-zero exit status if not well-formed. 565247296Sdelphij #2517946: Wrong statement about XMLDecl in xmlwf.1 and xmlwf.sgml. 566247296Sdelphij #2855609: Dangling positionPtr after error. 567247296Sdelphij #2990652: CMake support. 568247296Sdelphij #3010819: UNEXPECTED_STATE with a trailing "%" in entity value. 569355604Sdelphij #3206497: Uninitialized memory returned from XML_Parse. 570247296Sdelphij #3287849: make check fails on mingw-w64. 571247296Sdelphij - Patches: 572247296Sdelphij #1749198: pkg-config support. 573247296Sdelphij #3010222: Fix for bug #3010819. 574247296Sdelphij #3312568: CMake support. 575247296Sdelphij #3446384: Report byte offsets for attr names and values. 576247296Sdelphij - New Features / API changes: 577302305Sdelphij Added new API member XML_SetHashSalt() that allows setting an initial 578247296Sdelphij value (salt) for hash calculations. This is part of the fix for 579247296Sdelphij bug #3496608 to randomize hash parameters. 580247296Sdelphij When compiled with XML_ATTR_INFO defined, adds new API member 581247296Sdelphij XML_GetAttributeInfo() that allows retrieving the byte 582247296Sdelphij offsets for attribute names and values (patch #3446384). 583247296Sdelphij Added CMake build system. 584247296Sdelphij See bug #2990652 and patch #3312568. 585247296Sdelphij Added run-benchmark target to Makefile.in - relies on testdata module 586247296Sdelphij present in the same relative location as in the repository. 587247296Sdelphij 588178848ScokaneRelease 2.0.1 Tue June 5 2007 589247296Sdelphij - Fixed bugs #1515266, #1515600: The character data handler's calling 590178848Scokane of XML_StopParser() was not handled properly; if the parser was 591178848Scokane stopped and the handler set to NULL, the parser would segfault. 592178848Scokane - Fixed bug #1690883: Expat failed on EBCDIC systems as it assumed 593178848Scokane some character constants to be ASCII encoded. 594178848Scokane - Minor cleanups of the test harness. 595178848Scokane - Fixed xmlwf bug #1513566: "out of memory" error on file size zero. 596178848Scokane - Fixed outline.c bug #1543233: missing a final XML_ParserFree() call. 597178848Scokane - Fixes and improvements for Windows platform: 598247296Sdelphij bugs #1409451, #1476160, #1548182, #1602769, #1717322. 599178848Scokane - Build fixes for various platforms: 600178848Scokane HP-UX, Tru64, Solaris 9: patch #1437840, bug #1196180. 601178848Scokane All Unix: #1554618 (refreshed config.sub/config.guess). 602178848Scokane #1490371, #1613457: support both, DESTDIR and INSTALL_ROOT, 603178848Scokane without relying on GNU-Make specific features. 604178848Scokane #1647805: Patched configure.in to work better with Intel compiler. 605178848Scokane - Fixes to Makefile.in to have make check work correctly: 606178848Scokane bugs #1408143, #1535603, #1536684. 607178848Scokane - Added Open Watcom support: patch #1523242. 608178848Scokane 609178848ScokaneRelease 2.0.0 Wed Jan 11 2006 610178848Scokane - We no longer use the "check" library for C unit testing; we 611178848Scokane always use the (partial) internal implementation of the API. 612178848Scokane - Report XML_NS setting via XML_GetFeatureList(). 613178848Scokane - Fixed headers for use from C++. 614178848Scokane - XML_GetCurrentLineNumber() and XML_GetCurrentColumnNumber() 615178848Scokane now return unsigned integers. 616178848Scokane - Added XML_LARGE_SIZE switch to enable 64-bit integers for 617178848Scokane byte indexes and line/column numbers. 618178848Scokane - Updated to use libtool 1.5.22 (the most recent). 619178848Scokane - Added support for AmigaOS. 620247296Sdelphij - Some mostly minor bug fixes. SF issues include: #1006708, 621247296Sdelphij #1021776, #1023646, #1114960, #1156398, #1221160, #1271642. 622178848Scokane 623178848ScokaneRelease 1.95.8 Fri Jul 23 2004 624178848Scokane - Major new feature: suspend/resume. Handlers can now request 625178848Scokane that a parse be suspended for later resumption or aborted 626178848Scokane altogether. See "Temporarily Stopping Parsing" in the 627178848Scokane documentation for more details. 628178848Scokane - Some mostly minor bug fixes, but compilation should no 629178848Scokane longer generate warnings on most platforms. SF issues 630247296Sdelphij include: #827319, #840173, #846309, #888329, #896188, #923913, 631247296Sdelphij #928113, #961698, #985192. 632178848Scokane 633178848ScokaneRelease 1.95.7 Mon Oct 20 2003 634178848Scokane - Fixed enum XML_Status issue (reported on SourceForge many 635178848Scokane times), so compilers that are properly picky will be happy. 636178848Scokane - Introduced an XMLCALL macro to control the calling 637178848Scokane convention used by the Expat API; this macro should be used 638178848Scokane to annotate prototypes and definitions of callback 639178848Scokane implementations in code compiled with a calling convention 640178848Scokane other than the default convention for the host platform. 641178848Scokane - Improved ability to build without the configure-generated 642178848Scokane expat_config.h header. This is useful for applications 643178848Scokane which embed Expat rather than linking in the library. 644247296Sdelphij - Fixed a variety of bugs: see SF issues #458907, #609603, 645247296Sdelphij #676844, #679754, #692878, #692964, #695401, #699323, #699487, 646247296Sdelphij #820946. 647178848Scokane - Improved hash table lookups. 648178848Scokane - Added more regression tests and improved documentation. 649178848Scokane 650178848ScokaneRelease 1.95.6 Tue Jan 28 2003 651178848Scokane - Added XML_FreeContentModel(). 652178848Scokane - Added XML_MemMalloc(), XML_MemRealloc(), XML_MemFree(). 653247296Sdelphij - Fixed a variety of bugs: see SF issues #615606, #616863, 654247296Sdelphij #618199, #653180, #673791. 655178848Scokane - Enhanced the regression test suite. 656247296Sdelphij - Man page improvements: includes SF issue #632146. 657178848Scokane 658104349SphkRelease 1.95.5 Fri Sep 6 2002 659104349Sphk - Added XML_UseForeignDTD() for improved SAX2 support. 660104349Sphk - Added XML_GetFeatureList(). 661104349Sphk - Defined XML_Bool type and the values XML_TRUE and XML_FALSE. 662104349Sphk - Use an incomplete struct instead of a void* for the parser 663104349Sphk (may not retain). 664104349Sphk - Fixed UTF-8 decoding bug that caused legal UTF-8 to be rejected. 665104349Sphk - Finally fixed bug where default handler would report DTD 666104349Sphk events that were already handled by another handler. 667178848Scokane Initial patch contributed by Darryl Miles. 668104349Sphk - Removed unnecessary DllMain() function that caused static 669104349Sphk linking into a DLL to be difficult. 670104349Sphk - Added VC++ projects for building static libraries. 671104349Sphk - Reduced line-length for all source code and headers to be 672104349Sphk no longer than 80 characters, to help with AS/400 support. 673104349Sphk - Reduced memory copying during parsing (SF patch #600964). 674247296Sdelphij - Fixed a variety of bugs: see SF issues #580793, #434664, 675247296Sdelphij #483514, #580503, #581069, #584041, #584183, #584832, #585537, 676247296Sdelphij #596555, #596678, #598352, #598944, #599715, #600479, #600971. 677104349Sphk 678104349SphkRelease 1.95.4 Fri Jul 12 2002 679104349Sphk - Added support for VMS, contributed by Craig Berry. See 680104349Sphk vms/README.vms for more information. 681104349Sphk - Added Mac OS (classic) support, with a makefile for MPW, 682104349Sphk contributed by Thomas Wegner and Daryle Walker. 683104349Sphk - Added Borland C++ Builder 5 / BCC 5.5 support, contributed 684104349Sphk by Patrick McConnell (SF patch #538032). 685247296Sdelphij - Fixed a variety of bugs: see SF issues #441449, #563184, 686247296Sdelphij #564342, #566334, #566901, #569461, #570263, #575168, #579196. 687104349Sphk - Made skippedEntityHandler conform to SAX2 (see source comment) 688104349Sphk - Re-implemented WFC: Entity Declared from XML 1.0 spec and 689104349Sphk added a new error "entity declared in parameter entity": 690247296Sdelphij see SF bug report #569461 and SF patch #578161 691104349Sphk - Re-implemented section 5.1 from XML 1.0 spec: 692247296Sdelphij see SF bug report #570263 and SF patch #578161 693104349Sphk 694104349SphkRelease 1.95.3 Mon Jun 3 2002 695104349Sphk - Added a project to the MSVC workspace to create a wchar_t 696104349Sphk version of the library; the DLLs are named libexpatw.dll. 697104349Sphk - Changed the name of the Windows DLLs from expat.dll to 698104349Sphk libexpat.dll; this fixes SF bug #432456. 699104349Sphk - Added the XML_ParserReset() API function. 700104349Sphk - Fixed XML_SetReturnNSTriplet() to work for element names. 701104349Sphk - Made the XML_UNICODE builds usable (thanks, Karl!). 702104349Sphk - Allow xmlwf to read from standard input. 703104349Sphk - Install a man page for xmlwf on Unix systems. 704247296Sdelphij - Fixed many bugs; see SF bug reports #231864, #461380, #464837, 705247296Sdelphij #466885, #469226, #477667, #484419, #487840, #494749, #496505, 706247296Sdelphij #547350. Other bugs which we can't test as easily may also 707104349Sphk have been fixed, especially in the area of build support. 708104349Sphk 709104349SphkRelease 1.95.2 Fri Jul 27 2001 710104349Sphk - More changes to make MSVC happy with the build; add a single 711104349Sphk workspace to support both the library and xmlwf application. 712104349Sphk - Added a Windows installer for Windows users; includes 713104349Sphk xmlwf.exe. 714104349Sphk - Added compile-time constants that can be used to determine the 715104349Sphk Expat version 716104349Sphk - Removed a lot of GNU-specific dependencies to aide portability 717104349Sphk among the various Unix flavors. 718104349Sphk - Fix the UTF-8 BOM bug. 719104349Sphk - Cleaned up warning messages for several compilers. 720104349Sphk - Added the -Wall, -Wstrict-prototypes options for GCC. 721104349Sphk 722104349SphkRelease 1.95.1 Sun Oct 22 15:11:36 EDT 2000 723104349Sphk - Changes to get expat to build under Microsoft compiler 724104349Sphk - Removed all aborts and instead return an UNEXPECTED_STATE error. 725104349Sphk - Fixed a bug where a stray '%' in an entity value would cause an 726104349Sphk abort. 727104349Sphk - Defined XML_SetEndNamespaceDeclHandler. Thanks to Darryl Miles for 728104349Sphk finding this oversight. 729104349Sphk - Changed default patterns in lib/Makefile.in to fit non-GNU makes 730104349Sphk Thanks to robin@unrated.net for reporting and providing an 731104349Sphk account to test on. 732104349Sphk - The reference had the wrong label for XML_SetStartNamespaceDecl. 733104349Sphk Reported by an anonymous user. 734104349Sphk 735104349SphkRelease 1.95.0 Fri Sep 29 2000 736104349Sphk - XML_ParserCreate_MM 737104349Sphk Allows you to set a memory management suite to replace the 738104349Sphk standard malloc,realloc, and free. 739104349Sphk - XML_SetReturnNSTriplet 740104349Sphk If you turn this feature on when namespace processing is in 741104349Sphk effect, then qualified, prefixed element and attribute names 742104349Sphk are returned as "uri|name|prefix" where '|' is whatever 743104349Sphk separator character is used in namespace processing. 744104349Sphk - Merged in features from perl-expat 745104349Sphk o XML_SetElementDeclHandler 746104349Sphk o XML_SetAttlistDeclHandler 747104349Sphk o XML_SetXmlDeclHandler 748104349Sphk o XML_SetEntityDeclHandler 749104349Sphk o StartDoctypeDeclHandler takes 3 additional parameters: 750104349Sphk sysid, pubid, has_internal_subset 751104349Sphk o Many paired handler setters (like XML_SetElementHandler) 752104349Sphk now have corresponding individual handler setters 753104349Sphk o XML_GetInputContext for getting the input context of 754104349Sphk the current parse position. 755104349Sphk - Added reference material 756104349Sphk - Packaged into a distribution that builds a sharable library 757