summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2017-08-02Fix typoPavlo Kapyshin
2017-08-01Update spec.John MacFarlane
2017-08-01Update changelog.John MacFarlane
2017-08-01Merge branch 'master' of github.com:jgm/cmarkJohn MacFarlane
2017-08-01Merge pull request #221 from pclouds/document-validate-utf8John MacFarlane
Advertise --validate-utf8 in usage information
2017-08-01Update changelog.John MacFarlane
2017-08-01Bump version to 0.28.0.John MacFarlane
2017-08-01Update spec.John MacFarlane
2017-08-01Advertise --validate-utf8 in usage informationNguyễn Thái Ngọc Duy
This option was added in 04726a7 (Added `CMARK_OPT_VALIDATE_UTF8` option. - 2015-06-16) but not "documented".
2017-07-25Merge pull request #219 from github/upstream/left-angle-linkJohn MacFarlane
Fix URL scanner
2017-07-17Fix URL scanner.Yuki Izumi
2017-07-13Reverted mistaken fix to #193.John MacFarlane
Commit 14ea489f5dd6e3d07e23f104d6c9ce441d05751b
2017-07-12> 32 nested balanced parens in a link is bananasYuki Izumi
2017-07-11Merge pull request #213 from github/upstream/undefined-shiftJohn MacFarlane
Use unsigned integer when shifting
2017-07-11Merge pull request #212 from github/upstream/memcpy-nonnullJohn MacFarlane
Avoid memcpy'ing NULL pointers
2017-07-11Use unsigned integer when shiftingPhil Turnbull
A UBSAN warning can be triggered when handling a long sequence of backticks: src/commonmark.c:98:20: runtime error: left shift of 1 by 31 places cannot be represented in type 'int' which can be triggered by: ``` | a | b | | --- | --** `c```````````````````````````````- | | c | `|d` \| e | ```
2017-07-06Avoid memcpy'ing NULL pointersPhil Turnbull
A UBSAN warning can be triggered because the link title is an empty string: src/inlines.c:113:20: runtime error: null pointer passed as argument 2, which is declared to never be null which can be triggered by: ``` [f]:_ [f] ``` The length of the memcpy is zero so the NULL pointer is not dereferenced but it is still undefined behaviour.
2017-06-29Updated spec.txt.John MacFarlane
2017-06-29DeMorgan simplification of some tests in emphasis parser.John MacFarlane
This also brings the code into closer alignment with the wording of the spec. See jgm/CommonMark#467.
2017-06-29Fixed undefined shift in commonmark writer.John MacFarlane
Closes #211. Found by google/oss-fuzz: https://oss-fuzz.com/v2/testcase-detail/4686992824598528
2017-06-29latex writer: fix memory overflow.John MacFarlane
We got an array overflow in enumerated lists nested more than 10 deep with start number =/= 1. Found by google/oss-fuzz. https://oss-fuzz.com/v2/testcase-detail/5546760854306816 This commit also ensures that we don't try to set `enum_` counters that aren't defined by LaTeX (generally up to enumv). Closes #210.
2017-06-29Makefile: add libFuzzer to phonyJohn MacFarlane
2017-06-27Merge pull request #209 from philipturnbull/libFuzzerJohn MacFarlane
Add libFuzzer harness for oss-fuzz
2017-06-27Check for NULL pointer in get_link_typePhil Turnbull
echo '[](xx:)' | ./build/src/cmark -t latex Segmentation fault: 11
2017-06-27Add Makefile target and harness to fuzz with libFuzzerPhil Turnbull
This can be run locally with `make libFuzzer` but the harness will be integrated into oss-fuzz for large-scale fuzzing.
2017-06-27Move fuzzing dictionary into single filePhil Turnbull
This allows AFL and libFuzzer to use the same dictionary
2017-06-23Add hyphen to dictionaryPhil Turnbull
2017-06-23Merge pull request #207 from github/upstream/oob-readJohn MacFarlane
Reset bytes after (possible) UTF8 proc
2017-06-23Reset bytes after UTF8 procYuki Izumi
See https://github.com/jgm/cmark/issues/206.
2017-06-21Merge pull request #205 from github/dont-scan-past-eolJohn MacFarlane
Don't scan past an EOL. The existing negated character classes ([^…]) are careful to always include \x00 in the characters excluded, but these . catch-alls can scan right past the terminating NUL placed at the end of the buffer by _scan_at. As such, buffer overruns can occur. Also, don't scan past a newline in HTML block end scanners.
2017-06-21Don't scan past newline eitherYuki Izumi
2017-06-21Don't scan past an EOLYuki Izumi
2017-06-02Merge pull request #195 from github/revert-194-upstream/remove-normalizeJohn MacFarlane
Revert "Remove normalize as an option per #190"
2017-06-02Document cases where get_ functions return NULL.John MacFarlane
E.g. cmark_node_get_url on a non-link or image. Closes #155.
2017-06-02Properly handle backslashes in link destinations.John MacFarlane
Only ascii punctuation characters are escapable, per the spec. Closes #192.
2017-06-02Fixed bug with unescaped left angle bracket in link destination.John MacFarlane
Closes #193.
2017-06-02Fixed cmark_node_get_list_start to return 0 for bullet lists...John MacFarlane
as documented! Closes #202.
2017-05-30Use CMARK_NO_DELIM for bullet lists. Closes #201.John MacFarlane
2017-05-18Merge pull request #198 from PavloKapyshin/masterJohn MacFarlane
Improve readme a bit
2017-05-16Add link to Python wrapperPavlo Kapyshin
2017-05-16Prettify languages listPavlo Kapyshin
2017-05-15README: Add link to cmark-scala (#196)Tim Nieradzik
2017-05-07Re-add CMARK_OPT_NORMALIZE without effect.Yuki Izumi
2017-05-05Remove normalize as an option per #190 (#194)Yuki Izumi
2017-04-03Fixed code for freeing delimiter stack.John MacFarlane
Note, however, that this may not be needed at all: the old code would have gone into an infinite loop if the delimiter stack were not already freed. If we can prove that the delimiter stack is empty at this point, we could remove this; on the other hand, it may not hurt to keep it here defensively. Closes #189.
2017-04-03Removed abort outside of conditional (typo).John MacFarlane
2017-04-03Removed coercion in error message when aborting from buffer.John MacFarlane
2017-04-03Print message to stderr when we abort due to memory demands.John MacFarlane
Closes #188. @nwellnhof - could you have a look and let me know if you think this is a bad idea or could be improved?
2017-02-05libcmark.pc: use CMAKE_INSTALL_LIBDIR (#185)Jens Petersen
needed for multilib distros like Fedora
2017-01-20Fixed buffer overflow error in S_parser_feed.John MacFarlane
The overflow could occur in the following condition: the buffer ends with `\r` and the next memory address contains `\n`. Closes #184.