1 NOTE: We are looking for help with a few things: 2 https://github.com/libexpat/libexpat/labels/help%20wanted 3 If you can help, please get in touch. Thanks! 4 5 Release 2.2.6 Sun August 12 2018 6 Bug fixes: 7 #170 #206 Avoid doing arithmetic with NULL pointers in XML_GetBuffer 8 #204 #205 Fix 2.2.5 regression with suspend-resume while parsing 9 a document like '<root/>' 10 11 Other changes: 12 #165 #168 Autotools: Fix docbook-related configure syntax error 13 #166 Autotools: Avoid grep option `-q` for Solaris 14 #167 Autotools: Support 15 ./configure DOCBOOK_TO_MAN="xmlto man --skip-validation" 16 #159 #167 Autotools: Support DOCBOOK_TO_MAN command which produces 17 xmlwf.1 rather than XMLWF.1; also covers case insensitive 18 file systems 19 #181 Autotools: Drop -rpath option passed to libtool 20 #188 Autotools: Detect and deny SGML docbook2man as ours is XML 21 #188 Autotools/CMake: Support command db2x_docbook2man as well 22 #174 CMake: Introduce option WARNINGS_AS_ERRORS, defaults to OFF 23 #184 #185 CMake: Introduce option MSVC_USE_STATIC_CRT, defaults to OFF 24 #207 #208 CMake: Introduce option XML_UNICODE and XML_UNICODE_WCHAR_T, 25 both defaulting to OFF 26 #175 CMake: Prefer check_symbol_exists over check_function_exists 27 #176 CMake: Create the same pkg-config file as with GNU Autotools 28 #178 #179 CMake: Use GNUInstallDirs module to set proper defaults for 29 install directories 30 #208 CMake: Utilize expat_config.h.cmake for XML_DEV_URANDOM 31 #180 Windows: Fix compilation of test suite for Visual Studio 2008 32 #131 #173 #202 Address compiler warnings 33 #187 #190 #200 Fix miscellaneous typos 34 Version info bumped from 7:7:6 to 7:8:6 35 36 Special thanks to: 37 Anton Maklakov 38 Benjamin Peterson 39 Brad King 40 Franek Korta 41 Frank Rast 42 Joe Orton 43 luzpaz 44 Pedro Vicente 45 Rainer Jung 46 Rhodri James 47 Rolf Ade 48 Rolf Eike Beer 49 Thomas Beutlich 50 Tomasz Koczko 51 52 Release 2.2.5 Tue October 31 2017 53 Bug fixes: 54 #8 If the parser runs out of memory, make sure its internal 55 state reflects the memory it actually has, not the memory 56 it wanted to have. 57 #11 The default handler wasn't being called when it should for 58 a SYSTEM or PUBLIC doctype if an entity declaration handler 59 was registered. 60 #137 #138 Fix a case of mistakenly reported parsing success where 61 XML_StopParser was called from an element handler 62 #162 Function XML_ErrorString was returning NULL rather than 63 a message for code XML_ERROR_INVALID_ARGUMENT 64 introduced with release 2.2.1 65 66 Other changes: 67 #106 xmlwf: Add argument -N adding notation declarations 68 #75 #106 Test suite: Resolve expected failure cases where xmlwf 69 output was incomplete 70 #127 Windows: Fix test suite compilation 71 #126 #127 Windows: Fix compilation for Visual Studio 2012 72 Windows: Upgrade shipped project files to Visual Studio 2017 73 #33 #132 tests: Mass-fix compilation for XML_UNICODE_WCHAR_T 74 #129 examples: Fix compilation for XML_UNICODE_WCHAR_T 75 #130 benchmark: Fix compilation for XML_UNICODE_WCHAR_T 76 #144 xmlwf: Fix compilation for XML_UNICODE_WCHAR_T; still needs 77 Windows or MinGW for 2-byte wchar_t 78 #9 Address two Clang Static Analyzer false positives 79 #59 Resolve troublesome macros hiding parser struct membership 80 and dereferencing that pointer 81 #6 Resolve superfluous internal malloc/realloc switch 82 #153 #155 Improve docbook2x-man detection 83 #160 Undefine NDEBUG in the test suite (rather than rejecting it) 84 #161 Address compiler warnings 85 Version info bumped from 7:6:6 to 7:7:6 86 87 Special thanks to: 88 Benbuck Nason 89 Hans Wennborg 90 Jos Gutirrez de la Concha 91 Pedro Monreal Gonzalez 92 Rhodri James 93 Rolf Ade 94 Stephen Groat 95 and 96 Core Infrastructure Initiative 97 98 Release 2.2.4 Sat August 19 2017 99 Bug fixes: 100 #115 Fix copying of partial characters for UTF-8 input 101 102 Other changes: 103 #109 Fix "make check" for non-x86 architectures that default 104 to unsigned type char (-128..127 rather than 0..255) 105 #109 coverage.sh: Cover -funsigned-char 106 Autotools: Introduce --without-xmlwf argument 107 #65 Autotools: Replace handwritten Makefile with GNU Automake 108 #43 CMake: Auto-detect high quality entropy extractors, add new 109 option USE_libbsd=ON to use arc4random_buf of libbsd 110 #74 CMake: Add -fno-strict-aliasing only where supported 111 #114 CMake: Always honor manually set BUILD_* options 112 #114 CMake: Compile man page if docbook2x-man is available, only 113 #117 Include file tests/xmltest.log.expected in source tarball 114 (required for "make run-xmltest") 115 #117 Include (existing) Visual Studio 2013 files in source tarball 116 Improve test suite error output 117 #111 Fix some typos in documentation 118 Version info bumped from 7:5:6 to 7:6:6 119 120 Special thanks to: 121 Jakub Wilk 122 Joe Orton 123 Lin Tian 124 Rolf Eike Beer 125 126 Release 2.2.3 Wed August 2 2017 127 Security fixes: 128 #82 CVE-2017-11742 -- Windows: Fix DLL hijacking vulnerability 129 using Steve Holme's LoadLibrary wrapper for/of cURL 130 131 Bug fixes: 132 #85 Fix a dangling pointer issue related to realloc 133 134 Other changes: 135 Increase code coverage 136 #91 Linux: Allow getrandom to fail if nonblocking pool has not 137 yet been initialized and read /dev/urandom then, instead. 138 This is in line with what recent Python does. 139 #81 Pre-10.7/Lion macOS: Support entropy from arc4random 140 #86 Check that a UTF-16 encoding in an XML declaration has the 141 right endianness 142 #4 #5 #7 Recover correctly when some reallocations fail 143 Repair "./configure && make" for systems without any 144 provider of high quality entropy 145 and try reading /dev/urandom on those 146 Ensure that user-defined character encodings have converter 147 functions when they are needed 148 Fix mis-leading description of argument -c in xmlwf.1 149 Rely on macro HAVE_ARC4RANDOM_BUF (rather than __CloudABI__) 150 for CloudABI 151 #100 Fix use of SIPHASH_MAIN in siphash.h 152 #23 Test suite: Fix memory leaks 153 Version info bumped from 7:4:6 to 7:5:6 154 155 Special thanks to: 156 Chanho Park 157 Joe Orton 158 Pascal Cuoq 159 Rhodri James 160 Simon McVittie 161 Vadim Zeitlin 162 Viktor Szakats 163 and 164 Core Infrastructure Initiative 165 166 Release 2.2.2 Wed July 12 2017 167 Security fixes: 168 #43 Protect against compilation without any source of high 169 quality entropy enabled, e.g. with CMake build system; 170 commit ff0207e6076e9828e536b8d9cd45c9c92069b895 171 #60 Windows with _UNICODE: 172 Unintended use of LoadLibraryW with a non-wide string 173 resulted in failure to load advapi32.dll and degradation 174 in quality of used entropy when compiled with _UNICODE for 175 Windows; you can launch existing binaries with 176 EXPAT_ENTROPY_DEBUG=1 in the environment to inspect the 177 quality of entropy used during runtime; commits 178 * 95b95032f907ef1cd17ee7a9a1768010a825d61d 179 * 73a5a2e9c081f49f2d775cf7ced864158b68dc80 180 [MOX-006] Fix non-NULL parser parameter validation in XML_Parse; 181 resulted in NULL dereference, previously; 182 commit ac256dafdffc9622ab0dc2c62fcecb0dfcfa71fe 183 184 Bug fixes: 185 #69 Fix improper use of unsigned long long integer literals 186 187 Other changes: 188 #73 Start requiring a C99 compiler 189 #49 Fix "==" Bashism in configure script 190 #50 Fix too eager getrandom detection for Debian GNU/kFreeBSD 191 #52 and macOS 192 #51 Address lack of stdint.h in Visual Studio 2003 to 2008 193 #58 Address compile warnings 194 #68 Fix "./buildconf.sh && ./configure" for some versions 195 of Dash for /bin/sh 196 #72 CMake: Ease use of Expat in context of a parent project 197 with multiple CMakeLists.txt files 198 #72 CMake: Resolve mistaken executable permissions 199 #76 Address compile warning with -DNDEBUG (not recommended!) 200 #77 Address compile warning about macro redefinition 201 202 Special thanks to: 203 Alexander Bluhm 204 Ben Boeckel 205 Ctlin Rceanu 206 Kerin Millar 207 Lszl Bszrmnyi 208 S. P. Zeidler 209 Segev Finer 210 Vclav Slavk 211 Victor Stinner 212 Viktor Szakats 213 and 214 Radically Open Security 215 216 Release 2.2.1 Sat June 17 2017 217 Security fixes: 218 CVE-2017-9233 -- External entity infinite loop DoS 219 Details: https://libexpat.github.io/doc/cve-2017-9233/ 220 Commit c4bf96bb51dd2a1b0e185374362ee136fe2c9d7f 221 [MOX-002] CVE-2016-9063 -- Detect integer overflow; commit 222 d4f735b88d9932bd5039df2335eefdd0723dbe20 223 (Fixed version of existing downstream patches!) 224 (SF.net) #539 Fix regression from fix to CVE-2016-0718 cutting off 225 longer tag names; commits 226 * 896b6c1fd3b842f377d1b62135dccf0a579cf65d 227 * af507cef2c93cb8d40062a0abe43a4f4e9158fb2 228 #16 * 0dbbf43fdb20f593ddf4fa1ff67288000dd4a7fd 229 #25 More integer overflow detection (function poolGrow); commits 230 * 810b74e4703dcfdd8f404e3cb177d44684775143 231 * 44178553f3539ce69d34abee77a05e879a7982ac 232 [MOX-002] Detect overflow from len=INT_MAX call to XML_Parse; commits 233 * 4be2cb5afcc018d996f34bbbce6374b7befad47f 234 * 7e5b71b748491b6e459e5c9a1d090820f94544d8 235 [MOX-005] #30 Use high quality entropy for hash initialization: 236 * arc4random_buf on BSD, systems with libbsd 237 (when configured with --with-libbsd), CloudABI 238 * RtlGenRandom on Windows XP / Server 2003 and later 239 * getrandom on Linux 3.17+ 240 In a way, that's still part of CVE-2016-5300. 241 https://github.com/libexpat/libexpat/pull/30/commits 242 [MOX-005] For the low quality entropy extraction fallback code, 243 the parser instance address can no longer leak, commit 244 04ad658bd3079dd15cb60fc67087900f0ff4b083 245 [MOX-003] Prevent use of uninitialised variable; commit 246 [MOX-004] a4dc944f37b664a3ca7199c624a98ee37babdb4b 247 Add missing parameter validation to public API functions 248 and dedicated error code XML_ERROR_INVALID_ARGUMENT: 249 [MOX-006] * NULL checks; commits 250 * d37f74b2b7149a3a95a680c4c4cd2a451a51d60a (merge/many) 251 * 9ed727064b675b7180c98cb3d4f75efba6966681 252 * 6a747c837c50114dfa413994e07c0ba477be4534 253 * Negative length (XML_Parse); commit 254 [MOX-002] 70db8d2538a10f4c022655d6895e4c3e78692e7f 255 [MOX-001] #35 Change hash algorithm to William Ahern's version of SipHash 256 to go further with fixing CVE-2012-0876. 257 https://github.com/libexpat/libexpat/pull/39/commits 258 259 Bug fixes: 260 #32 Fix sharing of hash salt across parsers; 261 relevant where XML_ExternalEntityParserCreate is called 262 prior to XML_Parse, in particular (e.g. FBReader) 263 #28 xmlwf: Auto-disable use of memory-mapping (and parsing 264 as a single chunk) for files larger than ~1 GB (2^30 bytes) 265 rather than failing with error "out of memory" 266 #3 Fix double free after malloc failure in DTD code; commit 267 7ae9c3d3af433cd4defe95234eae7dc8ed15637f 268 #17 Fix memory leak on parser error for unbound XML attribute 269 prefix with new namespaces defined in the same tag; 270 found by Google's OSS-Fuzz; commits 271 * 16f87daae5a16132e479e4f71862128c7a915c73 272 * b47dbc9745932c160893d433220e462bd605f8cd 273 xmlwf on Windows: Add missing calls to CloseHandle 274 275 New features: 276 #30 Introduced environment switch EXPAT_ENTROPY_DEBUG=1 277 for runtime debugging of entropy extraction 278 279 Other changes: 280 Increase code coverage 281 #33 Reject use of XML_UNICODE_WCHAR_T with sizeof(wchar_t) != 2; 282 XML_UNICODE_WCHAR_T was never meant to be used outside 283 of Windows; 4-byte wchar_t is common on Linux 284 (SF.net) #538 Start using -fno-strict-aliasing 285 (SF.net) #540 Support compilation against cloudlibc of CloudABI 286 Allow MinGW cross-compilation 287 (SF.net) #534 CMake: Introduce option "BUILD_doc" (enabled by default) 288 to bypass compilation of the xmlwf.1 man page 289 (SF.net) pr2 CMake: Introduce option "INSTALL" (enabled by default) 290 to bypass installation of expat files 291 CMake: Fix ninja support 292 Autotools: Add parameters --enable-xml-context [COUNT] 293 and --disable-xml-context; default of context of 1024 294 bytes enabled unchanged 295 #14 Drop AmigaOS 4.x code and includes 296 #14 Drop ancient build systems: 297 * Borland C++ Builder 298 * OpenVMS 299 * Open Watcom 300 * Visual Studio 6.0 301 * Pre-X Mac OS (MPW Makefile) 302 If you happen to rely on some of these, please get in 303 touch for joining with maintenance. 304 #10 Move from WIN32 to _WIN32 305 #13 Fix "make run-xmltest" order instability 306 Address compile warnings 307 Bump version info from 7:2:6 to 7:3:6 308 Add AUTHORS file 309 310 Infrastructure: 311 #1 Migrate from SourceForge to GitHub (except downloads): 312 https://github.com/libexpat/ 313 #1 Re-create http://libexpat.org/ project website 314 Start utilizing Travis CI 315 316 Special thanks to: 317 Andy Wang 318 Don Lewis 319 Ed Schouten 320 Karl Waclawek 321 Pascal Cuoq 322 Rhodri James 323 Sergei Nikulov 324 Tobias Taschner 325 Viktor Szakats 326 and 327 Core Infrastructure Initiative 328 Mozilla Foundation (MOSS Track 3: Secure Open Source) 329 Radically Open Security 330 331 Release 2.2.0 Tue June 21 2016 332 Security fixes: 333 #537 CVE-2016-0718 -- Fix crash on malformed input 334 CVE-2016-4472 -- Improve insufficient fix to CVE-2015-1283 / 335 CVE-2015-2716 introduced with Expat 2.1.1 336 #499 CVE-2016-5300 -- Use more entropy for hash initialization 337 than the original fix to CVE-2012-0876 338 #519 CVE-2012-6702 -- Resolve troublesome internal call to srand 339 that was introduced with Expat 2.1.0 340 when addressing CVE-2012-0876 (issue #496) 341 342 Bug fixes: 343 Fix uninitialized reads of size 1 344 (e.g. in little2_updatePosition) 345 Fix detection of UTF-8 character boundaries 346 347 Other changes: 348 #532 Fix compilation for Visual Studio 2010 (keyword "C99") 349 Autotools: Resolve use of "$<" to better support bmake 350 Autotools: Add QA script "qa.sh" (and make target "qa") 351 Autotools: Respect CXXFLAGS if given 352 Autotools: Fix "make run-xmltest" 353 Autotools: Have "make run-xmltest" check for expected output 354 p90 CMake: Fix static build (BUILD_shared=OFF) on Windows 355 #536 CMake: Add soversion, support -DNO_SONAME=yes to bypass 356 #323 CMake: Add suffix "d" to differentiate debug from release 357 CMake: Define WIN32 with CMake on Windows 358 Annotate memory allocators for GCC 359 Address all currently known compile warnings 360 Make sure that API symbols remain visible despite 361 -fvisibility=hidden 362 Remove executable flag from source files 363 Resolve COMPILED_FROM_DSP in favor of WIN32 364 365 Special thanks to: 366 Bjrn Lindahl 367 Christian Heimes 368 Cristian Rodrguez 369 Daniel Krgler 370 Gustavo Grieco 371 Karl Waclawek 372 Lszl Bszrmnyi 373 Marco Grassi 374 Pascal Cuoq 375 Sergei Nikulov 376 Thomas Beutlich 377 Warren Young 378 Yann Droneaud 379 380 Release 2.1.1 Sat March 12 2016 381 Security fixes: 382 #582: CVE-2015-1283 - Multiple integer overflows in XML_GetBuffer 383 384 Bug fixes: 385 #502: Fix potential null pointer dereference 386 #520: Symbol XML_SetHashSalt was not exported 387 Output of "xmlwf -h" was incomplete 388 389 Other changes: 390 #503: Document behavior of calling XML_SetHashSalt with salt 0 391 Minor improvements to man page xmlwf(1) 392 Improvements to the experimental CMake build system 393 libtool now invoked with --verbose 394 395 Release 2.1.0 Sat March 24 2012 396 - Security fixes: 397 #2958794: CVE-2012-1148 - Memory leak in poolGrow. 398 #2895533: CVE-2012-1147 - Resource leak in readfilemap.c. 399 #3496608: CVE-2012-0876 - Hash DOS attack. 400 #2894085: CVE-2009-3560 - Buffer over-read and crash in big2_toUtf8(). 401 #1990430: CVE-2009-3720 - Parser crash with special UTF-8 sequences. 402 - Bug Fixes: 403 #1742315: Harmful XML_ParserCreateNS suggestion. 404 #1785430: Expat build fails on linux-amd64 with gcc version>=4.1 -O3. 405 #1983953, 2517952, 2517962, 2649838: 406 Build modifications using autoreconf instead of buildconf.sh. 407 #2815947, #2884086: OBJEXT and EXEEXT support while building. 408 #2517938: xmlwf should return non-zero exit status if not well-formed. 409 #2517946: Wrong statement about XMLDecl in xmlwf.1 and xmlwf.sgml. 410 #2855609: Dangling positionPtr after error. 411 #2990652: CMake support. 412 #3010819: UNEXPECTED_STATE with a trailing "%" in entity value. 413 #3206497: Uninitialized memory returned from XML_Parse. 414 #3287849: make check fails on mingw-w64. 415 - Patches: 416 #1749198: pkg-config support. 417 #3010222: Fix for bug #3010819. 418 #3312568: CMake support. 419 #3446384: Report byte offsets for attr names and values. 420 - New Features / API changes: 421 Added new API member XML_SetHashSalt() that allows setting an initial 422 value (salt) for hash calculations. This is part of the fix for 423 bug #3496608 to randomize hash parameters. 424 When compiled with XML_ATTR_INFO defined, adds new API member 425 XML_GetAttributeInfo() that allows retrieving the byte 426 offsets for attribute names and values (patch #3446384). 427 Added CMake build system. 428 See bug #2990652 and patch #3312568. 429 Added run-benchmark target to Makefile.in - relies on testdata module 430 present in the same relative location as in the repository. 431 432 Release 2.0.1 Tue June 5 2007 433 - Fixed bugs #1515266, #1515600: The character data handler's calling 434 of XML_StopParser() was not handled properly; if the parser was 435 stopped and the handler set to NULL, the parser would segfault. 436 - Fixed bug #1690883: Expat failed on EBCDIC systems as it assumed 437 some character constants to be ASCII encoded. 438 - Minor cleanups of the test harness. 439 - Fixed xmlwf bug #1513566: "out of memory" error on file size zero. 440 - Fixed outline.c bug #1543233: missing a final XML_ParserFree() call. 441 - Fixes and improvements for Windows platform: 442 bugs #1409451, #1476160, #1548182, #1602769, #1717322. 443 - Build fixes for various platforms: 444 HP-UX, Tru64, Solaris 9: patch #1437840, bug #1196180. 445 All Unix: #1554618 (refreshed config.sub/config.guess). 446 #1490371, #1613457: support both, DESTDIR and INSTALL_ROOT, 447 without relying on GNU-Make specific features. 448 #1647805: Patched configure.in to work better with Intel compiler. 449 - Fixes to Makefile.in to have make check work correctly: 450 bugs #1408143, #1535603, #1536684. 451 - Added Open Watcom support: patch #1523242. 452 453 Release 2.0.0 Wed Jan 11 2006 454 - We no longer use the "check" library for C unit testing; we 455 always use the (partial) internal implementation of the API. 456 - Report XML_NS setting via XML_GetFeatureList(). 457 - Fixed headers for use from C++. 458 - XML_GetCurrentLineNumber() and XML_GetCurrentColumnNumber() 459 now return unsigned integers. 460 - Added XML_LARGE_SIZE switch to enable 64-bit integers for 461 byte indexes and line/column numbers. 462 - Updated to use libtool 1.5.22 (the most recent). 463 - Added support for AmigaOS. 464 - Some mostly minor bug fixes. SF issues include: #1006708, 465 #1021776, #1023646, #1114960, #1156398, #1221160, #1271642. 466 467 Release 1.95.8 Fri Jul 23 2004 468 - Major new feature: suspend/resume. Handlers can now request 469 that a parse be suspended for later resumption or aborted 470 altogether. See "Temporarily Stopping Parsing" in the 471 documentation for more details. 472 - Some mostly minor bug fixes, but compilation should no 473 longer generate warnings on most platforms. SF issues 474 include: #827319, #840173, #846309, #888329, #896188, #923913, 475 #928113, #961698, #985192. 476 477 Release 1.95.7 Mon Oct 20 2003 478 - Fixed enum XML_Status issue (reported on SourceForge many 479 times), so compilers that are properly picky will be happy. 480 - Introduced an XMLCALL macro to control the calling 481 convention used by the Expat API; this macro should be used 482 to annotate prototypes and definitions of callback 483 implementations in code compiled with a calling convention 484 other than the default convention for the host platform. 485 - Improved ability to build without the configure-generated 486 expat_config.h header. This is useful for applications 487 which embed Expat rather than linking in the library. 488 - Fixed a variety of bugs: see SF issues #458907, #609603, 489 #676844, #679754, #692878, #692964, #695401, #699323, #699487, 490 #820946. 491 - Improved hash table lookups. 492 - Added more regression tests and improved documentation. 493 494 Release 1.95.6 Tue Jan 28 2003 495 - Added XML_FreeContentModel(). 496 - Added XML_MemMalloc(), XML_MemRealloc(), XML_MemFree(). 497 - Fixed a variety of bugs: see SF issues #615606, #616863, 498 #618199, #653180, #673791. 499 - Enhanced the regression test suite. 500 - Man page improvements: includes SF issue #632146. 501 502 Release 1.95.5 Fri Sep 6 2002 503 - Added XML_UseForeignDTD() for improved SAX2 support. 504 - Added XML_GetFeatureList(). 505 - Defined XML_Bool type and the values XML_TRUE and XML_FALSE. 506 - Use an incomplete struct instead of a void* for the parser 507 (may not retain). 508 - Fixed UTF-8 decoding bug that caused legal UTF-8 to be rejected. 509 - Finally fixed bug where default handler would report DTD 510 events that were already handled by another handler. 511 Initial patch contributed by Darryl Miles. 512 - Removed unnecessary DllMain() function that caused static 513 linking into a DLL to be difficult. 514 - Added VC++ projects for building static libraries. 515 - Reduced line-length for all source code and headers to be 516 no longer than 80 characters, to help with AS/400 support. 517 - Reduced memory copying during parsing (SF patch #600964). 518 - Fixed a variety of bugs: see SF issues #580793, #434664, 519 #483514, #580503, #581069, #584041, #584183, #584832, #585537, 520 #596555, #596678, #598352, #598944, #599715, #600479, #600971. 521 522 Release 1.95.4 Fri Jul 12 2002 523 - Added support for VMS, contributed by Craig Berry. See 524 vms/README.vms for more information. 525 - Added Mac OS (classic) support, with a makefile for MPW, 526 contributed by Thomas Wegner and Daryle Walker. 527 - Added Borland C++ Builder 5 / BCC 5.5 support, contributed 528 by Patrick McConnell (SF patch #538032). 529 - Fixed a variety of bugs: see SF issues #441449, #563184, 530 #564342, #566334, #566901, #569461, #570263, #575168, #579196. 531 - Made skippedEntityHandler conform to SAX2 (see source comment) 532 - Re-implemented WFC: Entity Declared from XML 1.0 spec and 533 added a new error "entity declared in parameter entity": 534 see SF bug report #569461 and SF patch #578161 535 - Re-implemented section 5.1 from XML 1.0 spec: 536 see SF bug report #570263 and SF patch #578161 537 538 Release 1.95.3 Mon Jun 3 2002 539 - Added a project to the MSVC workspace to create a wchar_t 540 version of the library; the DLLs are named libexpatw.dll. 541 - Changed the name of the Windows DLLs from expat.dll to 542 libexpat.dll; this fixes SF bug #432456. 543 - Added the XML_ParserReset() API function. 544 - Fixed XML_SetReturnNSTriplet() to work for element names. 545 - Made the XML_UNICODE builds usable (thanks, Karl!). 546 - Allow xmlwf to read from standard input. 547 - Install a man page for xmlwf on Unix systems. 548 - Fixed many bugs; see SF bug reports #231864, #461380, #464837, 549 #466885, #469226, #477667, #484419, #487840, #494749, #496505, 550 #547350. Other bugs which we can't test as easily may also 551 have been fixed, especially in the area of build support. 552 553 Release 1.95.2 Fri Jul 27 2001 554 - More changes to make MSVC happy with the build; add a single 555 workspace to support both the library and xmlwf application. 556 - Added a Windows installer for Windows users; includes 557 xmlwf.exe. 558 - Added compile-time constants that can be used to determine the 559 Expat version 560 - Removed a lot of GNU-specific dependencies to aide portability 561 among the various Unix flavors. 562 - Fix the UTF-8 BOM bug. 563 - Cleaned up warning messages for several compilers. 564 - Added the -Wall, -Wstrict-prototypes options for GCC. 565 566 Release 1.95.1 Sun Oct 22 15:11:36 EDT 2000 567 - Changes to get expat to build under Microsoft compiler 568 - Removed all aborts and instead return an UNEXPECTED_STATE error. 569 - Fixed a bug where a stray '%' in an entity value would cause an 570 abort. 571 - Defined XML_SetEndNamespaceDeclHandler. Thanks to Darryl Miles for 572 finding this oversight. 573 - Changed default patterns in lib/Makefile.in to fit non-GNU makes 574 Thanks to robin (a] unrated.net for reporting and providing an 575 account to test on. 576 - The reference had the wrong label for XML_SetStartNamespaceDecl. 577 Reported by an anonymous user. 578 579 Release 1.95.0 Fri Sep 29 2000 580 - XML_ParserCreate_MM 581 Allows you to set a memory management suite to replace the 582 standard malloc,realloc, and free. 583 - XML_SetReturnNSTriplet 584 If you turn this feature on when namespace processing is in 585 effect, then qualified, prefixed element and attribute names 586 are returned as "uri|name|prefix" where '|' is whatever 587 separator character is used in namespace processing. 588 - Merged in features from perl-expat 589 o XML_SetElementDeclHandler 590 o XML_SetAttlistDeclHandler 591 o XML_SetXmlDeclHandler 592 o XML_SetEntityDeclHandler 593 o StartDoctypeDeclHandler takes 3 additional parameters: 594 sysid, pubid, has_internal_subset 595 o Many paired handler setters (like XML_SetElementHandler) 596 now have corresponding individual handler setters 597 o XML_GetInputContext for getting the input context of 598 the current parse position. 599 - Added reference material 600 - Packaged into a distribution that builds a sharable library 601
