* utf8.c (utf8_from_uc, utf8_decode): Use upper case for hex constants.

If bytes decode to U+DCxx, treat this sequence as invalid. This way we can't be fooled by an attacker into accepting some U+DCxx which on output we will then convert to byte xx. (utf8_to_uc): Use upper case for hex constants.
author: Kaz Kylheku <kaz@kylheku.com> 2012-02-02 22:54:17 -0800
committer: Kaz Kylheku <kaz@kylheku.com> 2012-02-02 22:54:17 -0800
commit: a7d3edcff56ee0faa8355ceaea7bc23c2f2e2aa7 (patch)
tree: 1696c8ed5bd8d5da2bda03f9a0a78507139bdfa0 /ChangeLog
parent: 905b074cea7303553777e169529efc8aeccdc35a (diff)
download: txr-a7d3edcff56ee0faa8355ceaea7bc23c2f2e2aa7.tar.gz
txr-a7d3edcff56ee0faa8355ceaea7bc23c2f2e2aa7.tar.bz2
txr-a7d3edcff56ee0faa8355ceaea7bc23c2f2e2aa7.zip
1 files changed, 8 insertions, 0 deletions
diff --git a/ChangeLog b/ChangeLog
index 5c7ecd02..c5578f52 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,5 +1,13 @@
 2012-02-02  Kaz Kylheku  <kaz@kylheku.com>
 
+	* utf8.c (utf8_from_uc, utf8_decode): Use upper case for hex constants.
+	If bytes decode to U+DCxx, treat this sequence as invalid. This
+	way we can't be fooled by an attacker into accepting some U+DCxx which
+	on output we will then convert to byte xx.
+	(utf8_to_uc): Use upper case for hex constants.
+
+2012-02-02  Kaz Kylheku  <kaz@kylheku.com>
+
 	* utf8.c (utf8_to_uc, utf8_encode): Do not encode surrogate code
 	points (U+DC00 to U+DCFF) as multi-byte UTF8 sequences.  We use
 	that range for invalid bytes on input, so on output the best thing
author	Kaz Kylheku <kaz@kylheku.com>	2012-02-02 22:54:17 -0800
committer	Kaz Kylheku <kaz@kylheku.com>	2012-02-02 22:54:17 -0800
commit	a7d3edcff56ee0faa8355ceaea7bc23c2f2e2aa7 (patch)
tree	1696c8ed5bd8d5da2bda03f9a0a78507139bdfa0 /ChangeLog
parent	905b074cea7303553777e169529efc8aeccdc35a (diff)
download	txr-a7d3edcff56ee0faa8355ceaea7bc23c2f2e2aa7.tar.gz txr-a7d3edcff56ee0faa8355ceaea7bc23c2f2e2aa7.tar.bz2 txr-a7d3edcff56ee0faa8355ceaea7bc23c2f2e2aa7.zip