organicmaps/libexpat
13
Fork 0
mirror of https://github.com/libexpat/libexpat.git synced 2025-04-13 08:02:56 +00:00
Code Issues 1 Projects Releases Wiki Activity Actions
4260 commits 2 branches 65 tags 40 MiB
Commit graph

4260 commits

This branch
This branch
All branches
Author SHA1 Message Date
Sebastian Pipping
75b550dc70 README.md: Document use of Expat via CMake >=3.18 with FetchContent 
.. and SOURCE_SUBDIR
 2024-10-05 16:44:48 +02:00
Sebastian Pipping
8f8d48265e
Merge pull request #906 from libexpat/dependabot/github_actions/actions/checkout-4.2.0 
Actions(deps): Bump actions/checkout from 4.1.7 to 4.2.0
 2024-09-30 22:02:38 +02:00
dependabot[bot]
91e8fff271
Actions(deps): Bump actions/checkout from 4.1.7 to 4.2.0 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.7 to 4.2.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](692973e3d9...d632683dd7)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-09-30 12:32:51 +00:00
Sebastian Pipping
46cf63aef1
Merge pull request #904 from libexpat/tests-resolve-duplicate-handler 
tests: Resolve duplicate handler `accumulate_char_data`
 2024-09-27 22:11:31 +02:00
Sebastian Pipping
cfe35b96ef tests: Extract constant "storage" in function accumulate_characters 
.. to avoid potential reader confusion about where the input character
data is coming from: variable "storage" says that more clearly
and is consistent with multiple other places in the test suite.
 2024-09-27 00:01:37 +02:00
Sebastian Pipping
c46543e053 tests: Add "const" in two places 2024-09-27 00:01:37 +02:00
Sebastian Pipping
4d2e3b5f38 tests: Move last remaining handlers from common.{c,h} to handlers.{c,h} 2024-09-27 00:01:37 +02:00
Sebastian Pipping
fe9251de69 tests: Resolve duplicate handler accumulate_char_data 
Handler accumulate_characters does the exact same thing
and is used many times more throughout the test suite.
 2024-09-27 00:01:28 +02:00
Sebastian Pipping
99b6fde742
Merge pull request #902 from libexpat/tests-reduce-use-of-global-parser 
Tests: Reduce use of global parser
 2024-09-23 20:16:31 +02:00
Sebastian Pipping
f001f38aed tests: Migrate test_attributes off of g_parser 2024-09-21 21:57:31 +02:00
Sebastian Pipping
1968906b22 tests: Stop counting_start_element_handler from using g_parser 
Use of g_parser means risk of cross-test interference
and hence risk of hard-to-catch bugs in the test suite,
and so we want to get rid of g_parser altogether midterm.
 2024-09-21 21:57:31 +02:00
Sebastian Pipping
624da0f593
Merge pull request #898 from libexpat/gitignore-sync 
`.gitignore`: Add missing example `element_declarations`
 2024-09-05 17:51:19 +02:00
Sebastian Pipping
57fc7b1379 .gitignore: Add missing example "element_declarations" 2024-09-05 15:00:02 +02:00
Sebastian Pipping
8c1d4371fc
Merge pull request #897 from libexpat/dependabot/github_actions/actions/upload-artifact-4.4.0 
Actions(deps): Bump actions/upload-artifact from 4.3.6 to 4.4.0
 2024-09-04 13:14:24 +02:00
Sebastian Pipping
88b3ed553d
Merge pull request #896 from libexpat/issue-894-prepare-release 
Prepare release 2.6.3 (part of #894, ETA 2024-09-04)
 2024-09-04 12:20:17 +02:00
Sebastian Pipping
f9cfbb7fce Sync file headers 2024-09-03 18:19:25 +02:00
Sebastian Pipping
156d4bab9d Set release date for 2.6.3 2024-09-03 18:19:25 +02:00
Sebastian Pipping
8707e02e1f Bump version to 2.6.3 2024-09-03 18:19:25 +02:00
Sebastian Pipping
93e5971fb5 Bump version info from 10:2:9 to 10:3:9 
See https://verbump.de/ for what these numbers do
 2024-09-03 18:19:25 +02:00
Sebastian Pipping
71e487dc1b Changes: Document changes in release Expat 2.6.3 2024-09-03 18:19:25 +02:00
Sebastian Pipping
29ef43a0ba
Merge pull request #892 from libexpat/taiyou-nextscaffoldpart-overflow 
[CVE-2024-45492] lib: Detect integer overflow in function `nextScaffoldPart` (fixes #889)
 2024-09-03 18:18:03 +02:00
Sebastian Pipping
b8a7dca467
Merge pull request #891 from libexpat/taiyou-dtdcopy-malloc-overflow 
[CVE-2024-45491] lib: Detect integer overflow in `dtdCopy` (fixes #888)
 2024-09-03 18:17:46 +02:00
Sebastian Pipping
e5d6bf015e
Merge pull request #890 from libexpat/taiyou-xml-parsebuffer-len 
[CVE-2024-45490] lib: Reject negative len for `XML_ParseBuffer` (fixes #887)
 2024-09-03 18:17:32 +02:00
dependabot[bot]
6edffb4fa9
Actions(deps): Bump actions/upload-artifact from 4.3.6 to 4.4.0 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.6 to 4.4.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](834a144ee9...50769540e7)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-09-02 12:46:31 +00:00
Sebastian Pipping
234654c58b
Merge pull request #886 from berkayurun/master 
Remove `XML_DTD` guards before `is_param` accesses
 2024-09-01 16:45:32 +02:00
Sebastian Pipping
8e439a9947 lib: Detect integer overflow in dtdCopy 
Reported by TaiYou
 2024-08-26 22:35:54 +02:00
Sebastian Pipping
2db233019f doc: Document that XML_Parse/XML_ParseBuffer reject "len < 0" 2024-08-26 22:25:19 +02:00
Sebastian Pipping
c12f039b80 tests: Cover "len < 0" for both XML_Parse and XML_ParseBuffer 2024-08-26 22:25:19 +02:00
Sebastian Pipping
5c1a31642e lib: Reject negative len for XML_ParseBuffer 
Reported by TaiYou
 2024-08-26 22:25:19 +02:00
Sebastian Pipping
9bf0f2c16e lib: Detect integer overflow in function nextScaffoldPart 
Reported by TaiYou
 2024-08-26 22:25:15 +02:00
Berkay Eren Ürün
c158a62e57 Remove XML_DTD guards before is_param accesses 
As a part of the ENTITY struct, is_param is correctly initialized even
when XML_DTD is not defined. This can be seen in the 'lookup' function,
which sets all the ENTITY memory, including the is_param flag, to zero
during the ENTITY creation. Additionally, is_param can only be assigned
XML_TRUE when XML_DTD is defined, which makes XML_DTD checks before
is_param accesses not necessary.

Currently, some of the is_param accesses are guarded by the XML_DTD and
some not. This commit removes all XML_DTD guards that are meant for
is_param accesses.
 2024-08-22 13:38:04 +02:00
Sebastian Pipping
ed4090af84
Merge pull request #885 from libexpat/fix-in-code-comment-typo 
Fix typo in a code comment
 2024-08-21 19:57:51 +02:00
Sebastian Pipping
35753a8ccc lib: Fix typo in a code comment 2024-08-20 21:16:57 +02:00
Sebastian Pipping
b1ab4745f3
Merge pull request #884 from libexpat/dependabot/github_actions/codespell-project/actions-codespell-2.1 
Actions(deps): Bump codespell-project/actions-codespell from 2.0 to 2.1
 2024-08-19 20:30:43 +02:00
dependabot[bot]
05735b8f68
Actions(deps): Bump codespell-project/actions-codespell from 2.0 to 2.1 
Bumps [codespell-project/actions-codespell](https://github.com/codespell-project/actions-codespell) from 2.0 to 2.1.
- [Release notes](https://github.com/codespell-project/actions-codespell/releases)
- [Commits](94259cd8be...406322ec52)

---
updated-dependencies:
- dependency-name: codespell-project/actions-codespell
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-19 12:32:12 +00:00
Sebastian Pipping
dfa90b8115
Merge pull request #883 from libexpat/dependabot/github_actions/actions/upload-artifact-4.3.6 
Actions(deps): Bump actions/upload-artifact from 4.3.5 to 4.3.6
 2024-08-12 22:54:04 +02:00
dependabot[bot]
61886f8dbd
Actions(deps): Bump actions/upload-artifact from 4.3.5 to 4.3.6 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.5 to 4.3.6.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](89ef406dd8...834a144ee9)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-12 12:16:07 +00:00
Sebastian Pipping
a8898cdb1e
Merge pull request #882 from libexpat/dependabot/github_actions/actions/upload-artifact-4.3.5 
Actions(deps): Bump actions/upload-artifact from 4.3.4 to 4.3.5
 2024-08-06 20:21:17 +02:00
dependabot[bot]
1f9da870e1
Actions(deps): Bump actions/upload-artifact from 4.3.4 to 4.3.5 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.4 to 4.3.5.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](0b2256b8c0...89ef406dd8)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-05 12:38:32 +00:00
Sebastian Pipping
6b3f93c6ca
Merge pull request #880 from libexpat/readme-promote-call-for-help 
`README.md`: Promote call for help in the Changes file
 2024-07-13 20:19:27 +02:00
Sebastian Pipping
e19e52331b README.md: Promote call for help in the Changes file 
Documentation on the used Markdown extension:
- https://github.blog/changelog/2023-12-14-new-markdown-extension-alerts-provide-distinctive-styling-for-significant-content/
- https://docs.github.com/en/get-started/writing-on-github/getting-started-with-writing-and-formatting-on-github/basic-writing-and-formatting-syntax#alerts
 2024-07-13 18:08:15 +02:00
Sebastian Pipping
0b6ab7cd20
Merge pull request #879 from libexpat/autotools-sync-cmake-files 
autotools: Sync CMake templates with CMake 3.28
 2024-07-13 02:01:40 +02:00
Sebastian Pipping
feb65c625c
Merge pull request #878 from libexpat/dependabot/github_actions/actions/upload-artifact-4.3.4 
Actions(deps): Bump actions/upload-artifact from 4.3.3 to 4.3.4
 2024-07-13 00:46:25 +02:00
Sebastian Pipping
09f8eddd8e autotools: Sync CMake templates with CMake 3.28 2024-07-13 00:13:25 +02:00
dependabot[bot]
0e9863e483
Actions(deps): Bump actions/upload-artifact from 4.3.3 to 4.3.4 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.3 to 4.3.4.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](65462800fd...0b2256b8c0)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-08 12:49:27 +00:00
Sebastian Pipping
4c3f8641a7
Merge pull request #876 from libexpat/dependabot/github_actions/actions/checkout-4.1.7 
Actions(deps): Bump actions/checkout from 4.1.6 to 4.1.7
 2024-06-17 21:01:31 +02:00
dependabot[bot]
9269f9e68f
Actions(deps): Bump actions/checkout from 4.1.6 to 4.1.7 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.6 to 4.1.7.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](a5ac7e51b4...692973e3d9)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-17 12:07:06 +00:00
Sebastian Pipping
bfd178c635
Merge pull request #874 from libexpat/dependabot/github_actions/actions/checkout-4.1.6 
Actions(deps): Bump actions/checkout from 4.1.5 to 4.1.6
 2024-05-21 01:45:03 +02:00
dependabot[bot]
1ee828c752
Actions(deps): Bump actions/checkout from 4.1.5 to 4.1.6 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.5 to 4.1.6.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](44c2b7a8a4...a5ac7e51b4)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-20 12:54:15 +00:00
Sebastian Pipping
322ab5ff7a
Merge pull request #873 from libexpat/fix-coverage-ci 
`coverage.yml`: Fix for image `ubuntu-22.04` of `20240514.2.0`
 2024-05-19 15:58:40 +02:00