cheng/libpng
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
2,806 Commits 1 Branch 0 Tags 22 MiB
0c440812db
Commit Graph

2806 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Glenn Randers-Pehrson
0c440812db [libpng16] Imported from libpng-1.6.26.tar 2016-10-19 19:11:38 -05:00
Glenn Randers-Pehrson
436ce2c6e9 [libpng16] Bump version to 1.6.26rc02 2016-10-17 12:46:41 -05:00
Glenn Randers-Pehrson
a1312f7b19 [libpng16] Cosmetic change "ptr != 0" to "ptr != NULL" in png.c and pngrutil.c 2016-10-16 14:34:40 -05:00
Glenn Randers-Pehrson
01e99bbac1 [libpng16] Imported from libpng-1.6.26rc01.tar 2016-10-12 08:16:13 -05:00
Glenn Randers-Pehrson
dd6d7f031f [libpng16] Bump version to 1.6.26beta07 2016-10-07 15:57:32 -05:00
Glenn Randers-Pehrson
f7fe4db91b [libpng16] Imported from libpng-1.6.26beta06.tar 2016-10-07 15:57:10 -05:00
Glenn Randers-Pehrson
a106899acd [libpng16] Use zlib-1.2.8.1 inflateValidate() instead of inflateReset2() to 
avoid ADLER32 evaluation.
 2016-10-07 13:33:50 -05:00
Glenn Randers-Pehrson
ffaeff82d3 [libpng16] Bump version to 1.6.26beta06 2016-10-05 19:43:55 -05:00
Glenn Randers-Pehrson
13bdd8bcdf [libpng16] Imported from libpng-1.6.26beta05.tar 2016-10-05 19:43:35 -05:00
Glenn Randers-Pehrson
7d7694ae6a [libpng16] Changed integer constant 4294967294 to unsigned 4294967294U in pngconf.h 
to avoid a signed/unsigned compare in the preprocessor.
 2016-10-05 09:23:08 -05:00
Glenn Randers-Pehrson
b3540f9932 [libpng16] Bump version to 1.6.26beta05 2016-10-03 12:31:18 -05:00
Glenn Randers-Pehrson
a5084f1522 [libpng16] Imported from libpng-1.6.26beta04.tar 2016-10-03 12:31:06 -05:00
Glenn Randers-Pehrson
565a751ca2 [libpng16] Quieted (bogus?) clang warnings about "absolute value has no effect". 2016-10-02 20:16:36 -05:00
Glenn Randers-Pehrson
f6497e03d1 i[lbpng16] Quieted (bogus?) clang warnings about "absolute value has no effect". 
Fixed offsets in contrib/intel/intel_sse.patch
 2016-10-02 20:07:22 -05:00
Glenn Randers-Pehrson
b7b59b7fe9 [libpng16] Bump version to 1.6.26beta04 2016-10-02 19:18:29 -05:00
Glenn Randers-Pehrson
890611200a [libpng16] Imported from libpng-1.6.26beta03.tar 2016-10-02 19:10:10 -05:00
Glenn Randers-Pehrson
ce45f85c61 [lbpng16] Removed contrib/libtests/*.orig and *.rej that slipped into the 
tarballs.
 2016-10-02 19:03:57 -05:00
Glenn Randers-Pehrson
761d833372 [libpng16] Quieted all remaining -Wconversion compiler warnings 2016-10-02 18:46:35 -05:00
Glenn Randers-Pehrson
3875d9af4c [libpng16] Quieted 45 (out of 86 remaining) -Wconversion compiler warnings 2016-10-02 17:08:46 -05:00
Glenn Randers-Pehrson
ad3318ddc8 [libpng16] Bump version to 1.6.26beta03 2016-10-01 19:44:42 -05:00
Glenn Randers-Pehrson
7184475a98 [libpng16] Imported from libpng-1.6.26beta02.tar 2016-10-01 19:44:32 -05:00
Glenn Randers-Pehrson
c180e7a437 [libpng16] Updated CHANGES and ANNOUNCE 2016-09-30 21:54:06 -05:00
Glenn Randers-Pehrson
fbe3e002bc Merge branch 'libpng16' of git://github.com/jbowler/libpng into libpng16 2016-09-30 21:51:27 -05:00
Glenn Randers-Pehrson
b5b77a72b4 Revert "[libpng16] Quieted about 100 warnings from clang-3.8 in pngtrans.c, pngread.c," 
This reverts commit 97dfccb632.
 2016-09-30 21:34:21 -05:00
Glenn Randers-Pehrson
97dfccb632 [libpng16] Quieted about 100 warnings from clang-3.8 in pngtrans.c, pngread.c, 
pngwrite.c, pngunknown.c, and pngvalid.c.  Several warnings still remain
in pngvalid.c
 2016-09-30 21:02:03 -05:00
John Bowler
319c9852bf Unsigned overflow 
Remove all currently detected cases of unsigned overflow.  Detection is
runtime, so test case dependent.  The changes to pngvalid.c eliminate
spurious and probably invalid tests with one while loop exception.

Apart from that and the change to the dependence on the intended
unsigned overflow in pngtrans.c the changes are limited to altering the
meme for an unsigned 'x' from:

   while (x-- > 0)

to

   for (; x > 0; --x)

This works because, in all cases, the control variable is not used in
the loop.  The 'while' meme was, at one time, warn'ed by GCC so it is
probably a good change, for some weird religious value of good.

Signed-off-by: John Bowler <jbowler@acm.org>
 2016-09-30 18:37:22 -07:00
Glenn Randers-Pehrson
1b363fa6b0 [libpng16] Quieted 116 (out of 288) -Wconversion compiler warnings by changing 
flag definitions in pngpriv.h from 0xnnnn to 0xnnnnU and trivial changes
in png.c, pngread.c, and pngwutil.c.
 2016-09-30 17:19:12 -05:00
Glenn Randers-Pehrson
fa24421216 [libpng16] Quieted 74 (out of 288) -Wconversion compiler warnings by changing 
flag definitions in pngpriv.h from 0xnnnn to 0xnnnnU.
 2016-09-30 16:26:07 -05:00
Glenn Randers-Pehrson
d84fd77bf8 [libpng16] Quieted a warning from clang-3.8 in pngtrans.c. 2016-09-30 14:22:57 -05:00
Glenn Randers-Pehrson
04dab1e82d [libpng16] Updated the documentation about CRC and ADLER32 handling. 2016-09-26 11:15:22 -05:00
Glenn Randers-Pehrson
394be58371 [libpng16] Bump version to 1.6.26beta02 2016-09-26 08:58:04 -05:00
Glenn Randers-Pehrson
217546ae43 [libpng16] Imported from libpng-1.6.26beta01.tar 2016-09-26 08:57:44 -05:00
Glenn Randers-Pehrson
8aa1638ccc [libpng16] Add tests/badcrc.png and tests/badadler.png to tests/pngtest. 
Merged pngtest.c with libpng-1.7.0beta84/pngtest.c
 2016-09-26 08:09:44 -05:00
Glenn Randers-Pehrson
89ea081433 [libpng16] If CRC handling of critical chunks has been set to PNG_CRC_QUIET_USE, 
ignore the ADLER32 checksum in the IDAT chunk as well as the chunk CRCs.
 2016-09-25 17:42:15 -05:00
Glenn Randers-Pehrson
7835716cef [libpng16] Changed PNG_ZLIB_VERNUM to ZLIB_VERNUM in pngpriv.h, pngstruct.h, 
and pngrutil.c.
 2016-09-19 16:46:54 -05:00
Glenn Randers-Pehrson
cb1787f033 [libpng16] Conditionally compile png_set_benign_error in pngtest.c 2016-09-11 22:02:57 -05:00
Glenn Randers-Pehrson
1842d7c865 [libpng16] Issue a png_benign_error instead of a png_error on ADLER32 mismatch 
while decoding compressed data chunks.
 2016-09-11 22:02:05 -05:00
Glenn Randers-Pehrson
bc2bb96cd7 [libpng16] Conditionally compile png_set_benign_errors() in pngread.c 2016-09-11 19:22:28 -05:00
Glenn Randers-Pehrson
5cb1700702 [libpng16] Update CHANGES and ANNOUNCE and last-changed date in pngset.c 2016-09-03 11:51:29 -05:00
John Bowler
7dc0329250 [libpng16] png_set_pCAL: do not png_error on read 
Because png_handle_pCAL has allocated memory to free.

Signed-off-by: John Bowler <jbowler@acm.org>
 2016-09-02 19:26:42 -07:00
Glenn Randers-Pehrson
90ea4af4a1 [libpng16] Update CHANGES and ANNOUNCE 2016-09-01 17:28:08 -05:00
Glenn Randers-Pehrson
a744b11975 Merge branch 'libpng16' of git://github.com/jbowler/libpng into libpng16 2016-09-01 17:11:57 -05:00
John Bowler
597b1a1b5e Merge branch 'libpng16' of ../../libpng into libpng16 2016-09-01 13:27:58 -07:00
John Bowler
f0b453bc3e [libpng16] pngfix zero-length IDAT fix 
When an input file contains a zero length IDAT and pngfix is not applying the
IDAT rechunking (--max) option pngfix will go into a loop writing the zero
length IDAT for ever.

This is a fairly minor issue for interactive use; zero length IDAT is very rare,
the problem is obvious (pngfix hangs) and the fix (use --max, or --max=4096
etc), while not obvious, is easy.

For non-interactive use, e.g. trying to automatically repair a PNG that cannot
be read by libpng, there are security consequences:

1) pngfix hangs.  This may permit a DoS attack.
2) When the --out option is used pngfix will just keep writing.  This is a very
likely DoS scenario.

Signed-off-by: John Bowler <jbowler@acm.org>
 2016-09-01 07:22:40 -07:00
Glenn Randers-Pehrson
c9d7b865b6 [libpng16] Bump version to 1.6.26beta01 2016-08-31 23:19:25 -05:00
Glenn Randers-Pehrson
e3a6631123 [libpng16] Imported from libpng-1.6.25.tar 2016-08-31 22:30:47 -05:00
Glenn Randers-Pehrson
434aecf327 [libpng16] Bump version to 1.6.25rc06 2016-08-30 11:21:11 -05:00
Glenn Randers-Pehrson
abd88841ef [libpng16] Imported from libpng-1.6.25rc05.tar 2016-08-30 11:15:49 -05:00
Glenn Randers-Pehrson
42e5441888 [libpng16] Bump version to 1.6.25rc05 2016-08-30 10:46:51 -05:00
Glenn Randers-Pehrson
01b6ca34b7 [libpng16] Imported from libpng-1.6.25rc04.tar 2016-08-30 10:46:43 -05:00