kmx git

Commit	Date	Message
01411e7c	2021-02-08T20:58:32	Check for invalid redeclarations of predefined entities Implement section "4.6 Predefined Entities" of the XML 1.0 spec and check whether redeclarations of predefined entities match the original definitions. Note that some test cases declared <!ENTITY lt "<"> But the XML spec clearly states that this is illegal: > If the entities lt or amp are declared, they MUST be declared as > internal entities whose replacement text is a character reference to > the respective character (less-than sign or ampersand) being escaped; > the double escaping is REQUIRED for these entities so that references > to them produce a well-formed result. Also fixes #217 but the connection is only tangential. The integer overflow discovered by fuzzing was more related to the fact that various parts of the parser disagreed on whether to prefer predefined entities over their redeclarations. The whole situation is a mess and even depends on legacy parser options. But now that redeclarations are validated, it shouldn't make a difference. As noted in the added comment, this is also one of the cases where overly defensive checks can hide interesting logic bugs from fuzzers.
2a350ee9	2019-09-30T17:04:54	Large batch of typo fixes Closes #109.
d4532558	2003-11-25T18:29:55	fixed #127877, never output " in element content this changes the * entities.c: fixed #127877, never output " in element content * result/isolat3 result/slashdot16.xml result/noent/isolat3 result/noent/slashdot16.xml result/valid/REC-xml-19980210.xml result/valid/index.xml result/valid/xlink.xml: this changes the output of a few tests Daniel
6f4561a4	2002-03-25T12:10:14	Never commit without running "make tests" :-( fix a couple of stupidities * valid.c SAX.c: Never commit without running "make tests" :-( fix a couple of stupidities in the previous commit * result/*: a few changes in some attribute order result of previous commit. Daniel
2f36224e	2001-03-02T17:36:21	- parser.c: one must report spaces even if the Dtd element content proves that this is not part of the element content. - result/valid/*.xml: this changed the ouptu slightly Daniel
32bc74ef	2000-07-14T14:49:25	- doc/encoding.html doc/xml.html: added I18N doc - encoding.[ch] HTMLtree.[ch] parser.c HTMLparser.c: I18N encoding improvements, both parser and filters, added ASCII & HTML, fixed the ISO-Latin-1 one - xmllint.c testHTML.c: added/made visible --encode - debugXML.c : cleanup - most .c files: applied patches due to warning on Windows and when using Sun Pro cc compiler - xpath.c : cleanup memleaks - nanoftp.c : added a TESTING preprocessor flag for standalong compile so that people can report bugs more easilly - nanohttp.c : ditched socklen_t which was a portability mess and replaced it with unsigned int. - tree.[ch]: added xmlHasProp() - TODO: updated - test/ : added more test for entities, NS, encoding, HTML, wap - configure.in: preparing for 2.2.0 release Daniel
cf46199c	2000-03-14T18:30:20	This is the 2.0.0-beta, lots and lots and lots of changes Have a look at http://xmlsoft.org/upgrade.html Daniel
7f858502	1999-11-17T17:32:38	Attribute nomarlization closing bug #3597 Small fixes in encoding.c First bits of real progressive parsing, Daniel
7d2c276a	1999-10-11T15:09:51	Fixed probles in some HTML tag autoclose, XML output bug on mixed-content and fixed the related output for tests, Daniel.
b96e6438	1999-08-29T21:02:19	Release 1.6, lot of fixes, more validation, code cleanup, added namespace on attributes, Daniel.
424af391	1999-08-10T19:10:03	Added and updated all the results for 1.5.0, Daniel

01411e7c

2021-02-08T20:58:32

Check for invalid redeclarations of predefined entities Implement section "4.6 Predefined Entities" of the XML 1.0 spec and check whether redeclarations of predefined entities match the original definitions. Note that some test cases declared <!ENTITY lt "<"> But the XML spec clearly states that this is illegal: > If the entities lt or amp are declared, they MUST be declared as > internal entities whose replacement text is a character reference to > the respective character (less-than sign or ampersand) being escaped; > the double escaping is REQUIRED for these entities so that references > to them produce a well-formed result. Also fixes #217 but the connection is only tangential. The integer overflow discovered by fuzzing was more related to the fact that various parts of the parser disagreed on whether to prefer predefined entities over their redeclarations. The whole situation is a mess and even depends on legacy parser options. But now that redeclarations are validated, it shouldn't make a difference. As noted in the added comment, this is also one of the cases where overly defensive checks can hide interesting logic bugs from fuzzers.

2a350ee9

2019-09-30T17:04:54

Large batch of typo fixes Closes #109.

d4532558

2003-11-25T18:29:55

fixed #127877, never output " in element content this changes the * entities.c: fixed #127877, never output " in element content * result/isolat3 result/slashdot16.xml result/noent/isolat3 result/noent/slashdot16.xml result/valid/REC-xml-19980210.xml result/valid/index.xml result/valid/xlink.xml: this changes the output of a few tests Daniel

6f4561a4

2002-03-25T12:10:14

Never commit without running "make tests" :-( fix a couple of stupidities * valid.c SAX.c: Never commit without running "make tests" :-( fix a couple of stupidities in the previous commit * result/*: a few changes in some attribute order result of previous commit. Daniel

2f36224e

2001-03-02T17:36:21

- parser.c: one must report spaces even if the Dtd element content proves that this is not part of the element content. - result/valid/*.xml: this changed the ouptu slightly Daniel

32bc74ef

2000-07-14T14:49:25

- doc/encoding.html doc/xml.html: added I18N doc - encoding.[ch] HTMLtree.[ch] parser.c HTMLparser.c: I18N encoding improvements, both parser and filters, added ASCII & HTML, fixed the ISO-Latin-1 one - xmllint.c testHTML.c: added/made visible --encode - debugXML.c : cleanup - most .c files: applied patches due to warning on Windows and when using Sun Pro cc compiler - xpath.c : cleanup memleaks - nanoftp.c : added a TESTING preprocessor flag for standalong compile so that people can report bugs more easilly - nanohttp.c : ditched socklen_t which was a portability mess and replaced it with unsigned int. - tree.[ch]: added xmlHasProp() - TODO: updated - test/ : added more test for entities, NS, encoding, HTML, wap - configure.in: preparing for 2.2.0 release Daniel

cf46199c

2000-03-14T18:30:20

This is the 2.0.0-beta, lots and lots and lots of changes Have a look at http://xmlsoft.org/upgrade.html Daniel

7f858502

1999-11-17T17:32:38

Attribute nomarlization closing bug #3597 Small fixes in encoding.c First bits of real progressive parsing, Daniel

7d2c276a

1999-10-11T15:09:51

Fixed probles in some HTML tag autoclose, XML output bug on mixed-content and fixed the related output for tests, Daniel.

b96e6438

1999-08-29T21:02:19

Release 1.6, lot of fixes, more validation, code cleanup, added namespace on attributes, Daniel.

424af391

1999-08-10T19:10:03

Added and updated all the results for 1.5.0, Daniel

kc3-lang/libxml2/result/valid/REC-xml-19980210.xml

result/valid/REC-xml-19980210.xml

Log