c/libxml2
1
0
Fork 0
mirror of https://gitlab.gnome.org/GNOME/libxml2 synced 2025-03-28 21:33:13 +00:00
Code Issues Packages Projects Releases Wiki Activity
5,028 Commits 9 Branches 228 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Nick Wellnhofer 01411e7c5e Check for invalid redeclarations of predefined entities 
Implement section "4.6 Predefined Entities" of the XML 1.0 spec and
check whether redeclarations of predefined entities match the original
definitions.

Note that some test cases declared

    <!ENTITY lt "<">

But the XML spec clearly states that this is illegal:

> If the entities lt or amp are declared, they MUST be declared as
> internal entities whose replacement text is a character reference to
> the respective character (less-than sign or ampersand) being escaped;
> the double escaping is REQUIRED for these entities so that references
> to them produce a well-formed result.

Also fixes #217 but the connection is only tangential. The integer
overflow discovered by fuzzing was more related to the fact that various
parts of the parser disagreed on whether to prefer predefined entities
over their redeclarations. The whole situation is a mess and even
depends on legacy parser options. But now that redeclarations are
validated, it shouldn't make a difference.

As noted in the added comment, this is also one of the cases where
overly defensive checks can hide interesting logic bugs from fuzzers.
2021-02-08 21:51:26 +01:00
bakefile
Fix typos
2020-03-08 17:41:53 +01:00
doc
Update to Devhelp index file format version 2
2020-07-13 12:18:24 +02:00
example
Large batch of typo fixes
2019-09-30 18:04:38 +02:00
fuzz
Speed up HTML fuzzer
2021-02-07 14:39:55 +01:00
include
Remove temporary members from struct _xmlXPathContext
2020-12-16 15:27:13 +01:00
macos
Stop including ansidecl.h
2017-11-27 14:35:29 +01:00
optim
Fix typos
2020-03-08 17:41:53 +01:00
os400
Fix typos
2020-03-08 17:41:53 +01:00
python
Convert python/libxml.c to PY_SSIZE_T_CLEAN
2020-11-19 18:09:22 +01:00
result
Check for invalid redeclarations of predefined entities
2021-02-08 21:51:26 +01:00
test
Check for invalid redeclarations of predefined entities
2021-02-08 21:51:26 +01:00
vms
Remove unused AC_CHECKs
2017-11-27 14:35:29 +01:00
VxWorks
apply a couple of fixes based on a Coverity report forwarded by Derrick
2008-06-10 14:56:11 +00:00
win32
Fix variable name in win32/configure.js
2020-09-21 11:00:23 +02:00
xstc
Fix typos
2020-03-08 17:41:53 +01:00
.gitattributes
Fix .gitattributes
2020-07-23 20:46:42 +02:00
.gitignore
Add some generated test files to .gitignore
2019-01-06 14:25:18 +01:00
.gitlab-ci.yml
Add CI for CMake on MSVC
2021-02-08 17:15:44 +01:00
.travis.yml
Enable more undefined behavior sanitizers
2019-11-02 17:53:23 +01:00
acinclude.m4
More updates and cleanups on autotools and Makefiles
2012-08-17 10:04:30 +08:00
AUTHORS
more work on the xml reader interfaces. updated Igor's mail and the Web
2002-12-18 14:53:54 +00:00
autogen.sh
Change dir to $THEDIR after ACLOCAL_PATH check
2018-08-23 20:42:23 +00:00
buf.c
Reset HTML parser input before reporting error
2020-07-11 14:39:52 +02:00
buf.h
Fix and add const qualifiers
2014-10-13 16:06:21 +08:00
build_glob.py
patch from Stéphane Bidoul for setting up threads global defaults. this
2003-05-15 22:11:36 +00:00
c14n.c
Fix return value of xmlC14NDocDumpMemory
2020-06-24 20:07:32 +02:00
catalog.c
Fix typos
2020-03-08 17:41:53 +01:00
ChangeLog
Fix typos
2020-03-08 17:41:53 +01:00
check-relaxng-test-suite2.py
patches from John Carr to start cleaning up 'make diskcheck' problems c.f.
2008-01-11 07:19:24 +00:00
check-relaxng-test-suite.py
patches from John Carr to start cleaning up 'make diskcheck' problems c.f.
2008-01-11 07:19:24 +00:00
check-xinclude-test-suite.py
Large batch of typo fixes
2019-09-30 18:04:38 +02:00
check-xml-test-suite.py
Large batch of typo fixes
2019-09-30 18:04:38 +02:00
check-xsddata-test-suite.py
patches from John Carr to start cleaning up 'make diskcheck' problems c.f.
2008-01-11 07:19:24 +00:00
chvalid.c
Big space and tab cleanup
2012-09-11 13:26:36 +08:00
chvalid.def
Remove executable bit from non-executable files
2019-09-16 15:48:59 +02:00
CMakeLists.txt
Update minimum required CMake version
2021-01-15 18:31:20 +01:00
config.h.cmake.in
Update config.h.cmake.in
2020-07-12 18:42:18 +02:00
configure.ac
Fix autotools warnings
2020-08-17 02:54:28 +02:00
CONTRIBUTING
Update GitLab CI config
2019-10-20 18:15:34 +02:00
Copyright
Cleanup the Copyright to be pure MIT Licence wording
2012-09-20 21:46:19 +08:00
dbgen.pl
add a Timingtests target to check bad behaviour from the streaming engine
2003-09-17 22:33:22 +00:00
dbgenattr.pl
add a Timingtests target to check bad behaviour from the streaming engine
2003-09-17 22:33:22 +00:00
debugXML.c
Fix typos
2020-03-08 17:41:53 +01:00
dict.c
Fix typos
2020-03-08 17:41:53 +01:00
DOCBparser.c
Big space and tab cleanup
2012-09-11 13:26:36 +08:00
elfgcchack.h
Rebuild docs
2019-09-30 18:05:45 +02:00
enc.h
Large batch of typo fixes
2019-09-30 18:04:38 +02:00
encoding.c
encoding: fix memleak in xmlRegisterCharEncodingHandler()
2020-12-07 14:38:14 +01:00
entities.c
Check for invalid redeclarations of predefined entities
2021-02-08 21:51:26 +01:00
error.c
Fix error reporting with xi:fallback
2020-08-17 01:17:39 +02:00
genChRanges.py
Large batch of typo fixes
2019-09-30 18:04:38 +02:00
gentest.py
Fix typos
2020-03-08 17:41:53 +01:00
genUnicode.py
Add const in five places to move 1 KiB to .rdata
2017-08-28 21:27:03 +02:00
global.data
Fix SetGenericErrorFunc and SetStructured clash
2009-08-24 17:34:25 +02:00
globals.c
Fix typos
2020-03-08 17:41:53 +01:00
hash.c
Fix typos
2020-03-08 17:41:53 +01:00
HTMLparser.c
Fix infinite loop in HTML parser introduced with recent commits
2021-02-07 14:38:55 +01:00
HTMLtree.c
Remove unused encoding parameter of HTML output functions
2021-02-07 14:39:55 +01:00
INSTALL.libxml2
Fix typos
2020-03-08 17:41:53 +01:00
legacy.c
Legacy needs xmlSAX2StartElement() and xmlSAX2EndElement().
2014-02-10 10:32:45 +08:00
libxml2-config.cmake.cmake.in
Add variables for configured options to CMake config files
2021-01-05 22:03:47 +01:00
libxml2-config.cmake.in
Add variables for configured options to CMake config files
2021-01-05 22:03:47 +01:00
libxml2.doap
* libxml2.doap: adding RDF dope file.
2009-05-12 08:54:59 +02:00
libxml2.syms
Add xmlPopOutputCallbacks
2020-02-11 11:32:23 +01:00
libxml-2.0-uninstalled.pc.in
build: Add @LZMA_LIBS@ to libxml’s pkg-config files
2013-10-29 17:35:36 +08:00
libxml-2.0.pc.in
build: Add @LZMA_LIBS@ to libxml’s pkg-config files
2013-10-29 17:35:36 +08:00
libxml.3
libxml(3) manpage typo fix
2012-08-17 11:59:01 +08:00
libxml.h
Large batch of typo fixes
2019-09-30 18:04:38 +02:00
libxml.m4
Fix typos
2020-03-08 17:41:53 +01:00
libxml.spec.in
Fix some release issues on Fedora 30
2019-10-23 18:13:08 +02:00
list.c
Fix typos
2020-03-08 17:41:53 +01:00
MAINTAINERS
Update MAINTAINERS file to match Gnome stuff, Daniel
2007-09-04 08:10:09 +00:00
Makefile.am
Add CMake files to EXTRA_DIST
2020-11-30 11:22:53 +01:00
Makefile.tests
Fix typos
2020-03-08 17:41:53 +01:00
Makefile.win
Release 0.2, 80% rewrite, nothing left intact ... Daniel
1998-08-13 03:39:55 +00:00
nanoftp.c
Fix typos
2020-03-08 17:41:53 +01:00
nanohttp.c
Fix typos
2020-03-08 17:41:53 +01:00
NEWS
Large batch of typo fixes
2019-09-30 18:04:38 +02:00
parser.c
parser.c: shrink the input buffer when appropriate
2021-02-08 17:14:35 +01:00
parserInternals.c
Stop counting nbChars in parser context
2020-08-09 15:01:45 +02:00
pattern.c
Large batch of typo fixes
2019-09-30 18:04:38 +02:00
README
Fix typos
2020-03-08 17:41:53 +01:00
README.cvs-commits
Update information about contributing
2017-11-27 13:42:30 +01:00
README.tests
Update README.tests
2012-05-07 15:23:25 +08:00
README.zOS
Large batch of typo fixes
2019-09-30 18:04:38 +02:00
regressions.py
new files for running regression tests under Python. Not yet complete, but
2004-06-27 02:07:51 +00:00
regressions.xml
new files for running regression tests under Python. Not yet complete, but
2004-06-27 02:07:51 +00:00
relaxng.c
Fix typos
2020-03-08 17:41:53 +01:00
rngparser.c
Fix typos: dictio{ nn -> n }ar{y,ies}
2016-04-15 22:22:48 +08:00
runsuite.c
Large batch of typo fixes
2019-09-30 18:04:38 +02:00
runtest.c
Fix memory leak in runtest.c
2020-08-17 01:17:39 +02:00
runxmlconf.c
Fix typos
2020-03-08 17:41:53 +01:00
save.h
Large batch of typo fixes
2019-09-30 18:04:38 +02:00
SAX2.c
Fix quadratic runtime when parsing CDATA sections
2021-02-03 13:57:26 +01:00
SAX.c
Big space and tab cleanup
2012-09-11 13:26:36 +08:00
schematron.c
Fix typos
2020-03-08 17:41:53 +01:00
testapi.c
Fix typos
2020-03-08 17:41:53 +01:00
testAutomata.c
Remove executable bit from non-executable files
2019-09-16 15:48:59 +02:00
testC14N.c
Fix Windows compiler warning in testC14N.c
2019-01-06 14:32:28 +01:00
testchar.c
Large batch of typo fixes
2019-09-30 18:04:38 +02:00
testdict.c
Remove various unused value assignments
2014-10-27 21:18:57 +08:00
testdso.c
warning patches from Peter Breitenlohner serious DTD parsing speedups,
2005-01-25 00:22:52 +00:00
testHTML.c
Big space and tab cleanup
2012-09-11 13:26:36 +08:00
testlimits.c
Large batch of typo fixes
2019-09-30 18:04:38 +02:00
testModule.c
Fix some format string warnings with possible format string vulnerability
2016-05-23 15:01:07 +08:00
testOOM.c
Big space and tab cleanup
2012-09-11 13:26:36 +08:00
testOOMlib.c
Big space and tab cleanup
2012-09-11 13:26:36 +08:00
testOOMlib.h
integrated the Out Of Memory test from Havoc Pennington #109368 a lot of
2003-04-24 16:06:47 +00:00
testReader.c
Remove executable bit from non-executable files
2019-09-16 15:48:59 +02:00
testrecurse.c
Large batch of typo fixes
2019-09-30 18:04:38 +02:00
testRegexp.c
Fix Regextests
2019-09-25 15:27:45 +02:00
testRelax.c
Fix -Wcast-function-type warnings (GCC 8)
2019-01-06 14:25:12 +01:00
testSAX.c
Big space and tab cleanup
2012-09-11 13:26:36 +08:00
testSchemas.c
Fix -Wcast-function-type warnings (GCC 8)
2019-01-06 14:25:12 +01:00
testThreads.c
Merge testThreadsWin32.c into testThreads.c
2019-01-06 14:32:28 +01:00
testURI.c
add --relative to testURI
2018-11-29 22:11:59 +01:00
testXPath.c
Big space and tab cleanup
2012-09-11 13:26:36 +08:00
threads.c
Fix potentially-uninitialized critical section in Win32 DLL builds
2020-02-11 11:34:15 +01:00
timsort.h
Large batch of typo fixes
2019-09-30 18:04:38 +02:00
TODO
Fix typos
2020-03-08 17:41:53 +01:00
TODO_SCHEMAS
merged the current state of XML Schemas implementation, it is not
2002-04-16 15:50:10 +00:00
tree.c
Check for invalid redeclarations of predefined entities
2021-02-08 21:51:26 +01:00
trio.c
Fix typos
2020-03-08 17:41:53 +01:00
trio.h
Fix typos
2020-03-08 17:41:53 +01:00
triodef.h
Fix typos
2020-03-08 17:41:53 +01:00
trionan.c
Fix typos
2020-03-08 17:41:53 +01:00
trionan.h
Fix typos
2020-03-08 17:41:53 +01:00
triop.h
Fix typos
2020-03-08 17:41:53 +01:00
triostr.c
Fix typos
2020-03-08 17:41:53 +01:00
triostr.h
Fix typos
2020-03-08 17:41:53 +01:00
uri.c
Fix xmlURIEscape memory leaks.
2020-11-09 18:17:01 +01:00
valid.c
Fix typos
2020-03-08 17:41:53 +01:00
xinclude.c
Fix use-after-free when XIncluding text from Reader
2020-09-28 12:37:51 +02:00
xlink.c
Fix libz and liblzma detection
2017-11-27 14:33:37 +01:00
xml2-config.1
xml2-config: Add a --dynamic switch to print only shared libraries
2019-07-17 23:24:24 +10:00
xml2-config.in
Fix xml2-config error code
2019-11-11 11:29:17 +01:00
xml2Conf.sh.in
xml2-config: Add a --dynamic switch to print only shared libraries
2019-07-17 23:24:24 +10:00
xmlcatalog.c
Fix typos
2020-03-08 17:41:53 +01:00
xmlIO.c
Fix return value of xmlCharEncOutput
2020-06-15 15:23:38 +02:00
xmllint.c
Make "xmllint --push --recovery" work
2020-08-17 01:17:39 +02:00
xmlmemory.c
Fix typos
2020-03-08 17:41:53 +01:00
xmlmodule.c
Large batch of typo fixes
2019-09-30 18:04:38 +02:00
xmlreader.c
Avoid call stack overflow with XML reader and recursive XIncludes
2020-11-09 17:55:44 +01:00
xmlregexp.c
Fix caret in regexp character group
2020-10-25 20:21:43 +01:00
xmlsave.c
Handle dumps of corrupted documents more gracefully
2020-09-29 18:08:37 +02:00
xmlschemas.c
Fix integer overflow in xmlSchemaGetParticleTotalRangeMin
2020-12-15 20:14:28 +01:00
xmlschemastypes.c
xmlschemastypes.c: xmlSchemaGetFacetValueAsULong add, check "facet->val"
2020-12-07 14:37:55 +01:00
xmlstring.c
Use strcmp when fuzzing
2020-08-08 20:37:30 +02:00
xmlunicode.c
Add const in five places to move 1 KiB to .rdata
2017-08-28 21:27:03 +02:00
xmlwriter.c
Fix error code in xmlTextWriterStartDocument
2019-10-14 17:06:36 +02:00
xpath.c
Fix null deref in XPointer expression error path
2020-09-21 12:49:36 +02:00
xpointer.c
Fix null pointer deref in xmlXPtrRangeInsideFunction
2020-12-06 17:26:36 +01:00
xzlib.c
Large batch of typo fixes
2019-09-30 18:04:38 +02:00
xzlib.h
Large batch of typo fixes
2019-09-30 18:04:38 +02:00

README 

                  XML toolkit from the GNOME project

Full documentation is available on-line at
    http://xmlsoft.org/

This code is released under the MIT Licence see the Copyright file.

To build on an Unixised setup:
   ./configure ; make ; make install
   if the ./configure file does not exist, run ./autogen.sh instead.
To build on Windows:
   see instructions on win32/Readme.txt

To assert build quality:
   on an Unixised setup:
      run make tests
   otherwise:
       There is 3 standalone tools runtest.c runsuite.c testapi.c, which
       should compile as part of the build or as any application would.
       Launch them from this directory to get results, runtest checks 
       the proper functioning of libxml2 main APIs while testapi does
       a full coverage check. Report failures to the list.

To report bugs, follow the instructions at: 
  http://xmlsoft.org/bugs.html

A mailing-list xml@gnome.org is available, to subscribe:
    http://mail.gnome.org/mailman/listinfo/xml

The list archive is at:
    http://mail.gnome.org/archives/xml/

All technical answers asked privately will be automatically answered on
the list and archived for public access unless privacy is explicitly
required and justified.

Daniel Veillard

$Id$
Description
XML parser and toolkit
Readme 38 MiB
Languages
C 88.1%
HTML 5.8%
Python 3.6%
M4 0.5%
CMake 0.5%
Other 1.4%