c/libxml2
1
0
Fork 0
mirror of https://gitlab.gnome.org/GNOME/libxml2 synced 2025-03-28 21:33:13 +00:00
Code Issues Packages Projects Releases Wiki Activity
6,697 Commits 9 Branches 228 Tags
Commit Graph

6697 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nick Wellnhofer
3b1742b839 Release v2.13.3 v2.13.3 2024-07-24 15:16:52 +02:00
Nick Wellnhofer
de28e6ed3a [CVE-2024-40896] Fix XXE protection in downstream code 
Some users set an entity's children manually in the getEntity SAX
callback to restrict entity expansion. This stopped working after
renaming the "checked" member of xmlEntity, making at least one
downstream project and its dependants susceptible to XXE attacks.

See #761.
 2024-07-24 14:34:13 +02:00
Nick Wellnhofer
6ae65368ad autotools: Use AC_CHECK_DECL to check for getentropy 
Should fix build issue on iOS.
 2024-07-22 19:30:29 +02:00
Nick Wellnhofer
ed8b4264f6 xinclude: Set error handler when parsing text 2024-07-18 20:56:31 +02:00
Nick Wellnhofer
a0330b53c8 xinclude: Fix fallback for text includes 
Fixes #772.
 2024-07-18 19:45:59 +02:00
Nick Wellnhofer
8699ba234b io: Don't call getcwd in xmlParserGetDirectory 
The "directory" value isn't used internally. Calling getcwd is
unnecessary and can cause problems in sandboxed environments.

Fixes #770.
 2024-07-18 03:40:37 +02:00
Nick Wellnhofer
bf43e8a888 io: Fix return value of xmlFileRead 
This broke in commit 6d27c54.

Fixes #766.
 2024-07-09 17:53:49 +02:00
Nick Wellnhofer
e30cb632e7 parser: Fix error return of xmlParseBalancedChunkMemory 
Only return an error code if the chunk is not well-formed to match the
2.12 behavior. Return 0 on non-fatal errors like invalid namespaces.

Fixes #765.
 2024-07-08 13:32:58 +02:00
Nick Wellnhofer
dd5adf54c9 Undeprecate xmlKeepBlanksDefault 2024-07-06 20:25:27 +02:00
Nick Wellnhofer
4b3f860e54 Release v2.13.2 v2.13.2 2024-07-04 17:16:44 +02:00
Nick Wellnhofer
c7f8781c48 tree: Fix handling of empty strings in xmlNodeParseContent 
We shouldn't create an empty text node to match the old behavior.

Fixes #759.
 2024-07-03 16:18:06 +02:00
Nick Wellnhofer
4a0d74dcc3 SAX2: Reenable 'directory' as base URI fallback 
Apparently, some users overwrite this member manually to set a base URI
for memory streams.

Fixes #753.
 2024-07-03 12:19:07 +02:00
Nick Wellnhofer
2f6766dba6 valid: Restore ID lookup 
Revert a change from d025cfbb and don't overwrite ID table entries, so
that the first attribute will be returned if there are duplicate IDs.

This requires two other changes:

- Attributes in entity content are never added to the ID table. This
  seems reasonable.

- Remove the optimization to skip ID lookup when copying and the target
  document has an empty ID table. This also seems more correct since the
  document could have ID declarations nevertheless or we could be
  copying xml:ids into the document for the first time.

Fixes #757.
 2024-07-03 12:19:00 +02:00
Nick Wellnhofer
fc3c432b74 Clarify xpointer() extension removal 2024-07-03 12:18:37 +02:00
Nick Wellnhofer
046f61c698 parser: Reenable ctxt->directory 
Unused internally, but used in downstream code.

Should fix #753.
 2024-07-02 22:29:25 +02:00
Nick Wellnhofer
3c85a0e969 tests: Clarify licence of test/intsubset2.xml 2024-06-29 15:11:25 +02:00
Nick Wellnhofer
b3579eabd5 encoding: Restore old lookup order in xmlOpenCharEncodingHandler 
When looking up encodings with xmlLookupCharEncodingHandler, the
returned handler can have a different name than requested
(capitalization, internal aliases). This should eventually be fixed.
For now we revert part of commit 5b893fa9, start the lookup with
xmlFindHandler and add an explicit check for UTF-8.

Should fix the encoding name issue mentioned in #749.
 2024-06-27 13:22:49 +02:00
Nick Wellnhofer
411eeed447 uri: Only set file scheme for special Windows paths 
Fixes 2ce70cde.

Also fix a test case.
 2024-06-26 14:40:12 +02:00
Nick Wellnhofer
977c076ef6 uri: Handle filesystem paths in xmlBuildRelativeURISafe 
This mainly fixes issues on Windows but should also fix a few general
corner cases.

Should fix #745.
 2024-06-26 14:39:50 +02:00
Nick Wellnhofer
6fa2573140 uri: Enable Windows paths on Cygwin 2024-06-26 14:39:35 +02:00
Nick Wellnhofer
dc8c7d1ce8 encoding: Make xmlFindCharEncodingHandler return UTF-8 handler 
xmlFindCharEncodingHandler must always return a handler.

Remove UTF-8 handler from default handler list.
 2024-06-24 20:54:44 +02:00
Nick Wellnhofer
7759765c6c encoding: Fix encoding lookup with xmlOpenCharEncodingHandler 
Make xmlOpenCharEncodingHandler call xmlParseCharEncoding first so we
prefer our own handlers for names like "UTF8". Only UTF-16 needs an
exception.

Make callers check the return value. For UTF-8, a NULL encoding doesn't
mean an error.

Remove unnecessary UTF-8 check from htmlFindOutputEncoder. Don't try to
look up ASCII handler since the HTML handler is always available.

Fix return code of xmlParseCharEncoding.

Should fix #744.
 2024-06-22 22:41:10 +02:00
Nick Wellnhofer
5ff37946dd include: Define ATTRIBUTE_UNUSED for clang 
Silences warnings under clang on Windows.
 2024-06-21 14:54:04 +02:00
Nick Wellnhofer
aaa24ca6be uri: Fix xmlBuildURI with NULL base 
Don't try to parse URI if base is NULL. Fixes functions like xmlParseDTD
with certain filenames.

Should fix #742.
 2024-06-21 14:52:15 +02:00
Nick Wellnhofer
48dba1e21f Release v2.13.1 v2.13.1 2024-06-19 12:13:15 +02:00
Nick Wellnhofer
fc57977497 doc: Regenerate documentation 2024-06-19 12:09:53 +02:00
Nick Wellnhofer
14523148d1 doc: Hide internal macro 2024-06-19 12:09:22 +02:00
Nick Wellnhofer
def06f376e parser: Selectively reenable reading from "-" 
Make filename "-" mean stdin for legacy SAX1 functions and xmlReadFile.
This should hopefully fix most command line utilities.

See #737.
 2024-06-17 18:17:15 +02:00
Nick Wellnhofer
e1c702414b tests: Add XInclude test for issue #733 2024-06-17 17:44:38 +02:00
Nick Wellnhofer
52f5570782 reader: Fix xmlTextReaderReadString 
Regressed in commit 7cbf609a.

Should fix #738.
 2024-06-17 15:56:12 +02:00
Nick Wellnhofer
9204d862c8 xinclude: Set XPath context doc 
Regressed in commit 78eab7a1.
 2024-06-17 15:56:01 +02:00
Nick Wellnhofer
05976dae2a xinclude: Load included documents with XML_PARSE_DTDLOAD 
We must detect ID attributes declared in external DTDs.

Regressed in 12f0bb94.
 2024-06-17 15:55:49 +02:00
Nick Wellnhofer
b61a960bf6 include: Don't redefine ATTRIBUTE_UNUSED 2024-06-15 19:17:13 +02:00
Nick Wellnhofer
7c3151903d include: Readd circular dependency between tree.h and parser.h 
There are dozens of downstream projects that only include tree.h but use
declarations from parser.h. This broke after the recent cleanup of
circular dependencies.

Make tree.h include parser.h again. This is a hack but doesn't change
the include directory struture.

This commit only made it into the 2.12 branch but wasn't applied to
master, so the issue turned up in 2.13.0 again.

Should fix #734.
 2024-06-15 16:45:10 +02:00
Jan Alexander Steffens (heftig)
95939d6ea3 xinclude: Add missing include 
Gambas fails to compile with

    error: 'xmlStructuredErrorFunc' has not been declared
 2024-06-15 01:24:59 +02:00
Ryan Carsten Schmidt
f366342d11 Fix typo in NEWS (--with-html -> --with-http) 2024-06-15 00:52:07 +02:00
Miklos Vajna
cb655b4e7d win32, msvc: fix missing linking against Bcrypt.lib 
Fixes this link error:

dict.obj : error LNK2019: unresolved external symbol BCryptGenRandom referenced in function xmlInitRandom

Commit 2e9e758d1ecb52b73a43db79d326c18d7d94c8d7 (dict: Get random seed
from system PRNG, 2023-12-24) updated cmake, but not nmake, correct
this.
 2024-06-14 23:15:39 +02:00
Nick Wellnhofer
c04d9b1b87 xinclude: Don't raise error on empty nodeset 
xmlXPtrEval returning NULL means an empty nodeset if no error code is
set.

See #733.
 2024-06-14 22:00:59 +02:00
Nick Wellnhofer
aa90cb0c57 parser: Make failure to load main document a warning 
Revert the change that made failures to load the main document an error.

This fixes the --path option of xmllint and xsltproc.

Should fix #733.
 2024-06-14 22:00:57 +02:00
Nick Wellnhofer
9ecabe1c24 tree: Fix freeing entities via xmlFreeNode 
Call xmlFreeEntity to free all entity members.

Fixes #731.
 2024-06-14 16:55:45 +02:00
Nick Wellnhofer
8322eef39d parser: Pass global object to sax->setDocumentLocator 
Revert part of commit c011e760.

Fixes #732.
 2024-06-14 16:55:44 +02:00
Nick Wellnhofer
19031bfdb7 io: Fix resetting xmlParserInputBufferCreateFilename hook 
We don't want to invoke the default function.
 2024-06-12 16:06:08 +02:00
Nick Wellnhofer
5510e989cb doc: Don't mention xmlNewInputURL 2024-06-12 16:05:49 +02:00
Nick Wellnhofer
cdd2575f7f Release v2.13.0 v2.13.0 2024-06-12 15:45:38 +02:00
Nick Wellnhofer
d5523d27eb Update NEWS 2024-06-12 15:37:17 +02:00
Nick Wellnhofer
7a94fd0ba6 doc: Update documentation 2024-06-12 13:57:21 +02:00
Nick Wellnhofer
d3fafde7de test: Update testapi.c 2024-06-12 13:57:21 +02:00
Nick Wellnhofer
4467b89143 Add missing argument checks for new API functions 2024-06-12 13:57:20 +02:00
Nick Wellnhofer
8318b5a634 parser: Fix NULL checks for output arguments 2024-06-09 15:08:43 +02:00
Rosen Penev
f227086380 meson: convert boolean options to feature option 
Simpler. Seems like they're only disabled by minimum.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2024-06-06 17:13:41 -07:00