1 /* Run the Expat test suite
2 __ __ _
3 ___\ \/ /_ __ __ _| |_
4 / _ \\ /| '_ \ / _` | __|
5 | __// \| |_) | (_| | |_
6 \___/_/\_\ .__/ \__,_|\__|
7 |_| XML parser
8
9 Copyright (c) 2001-2006 Fred L. Drake, Jr. <fdrake@users.sourceforge.net>
10 Copyright (c) 2003 Greg Stein <gstein@users.sourceforge.net>
11 Copyright (c) 2005-2007 Steven Solie <ssolie@users.sourceforge.net>
12 Copyright (c) 2005-2012 Karl Waclawek <karl@waclawek.net>
13 Copyright (c) 2016-2021 Sebastian Pipping <sebastian@pipping.org>
14 Copyright (c) 2017-2018 Rhodri James <rhodri@wildebeest.org.uk>
15 Copyright (c) 2017 Joe Orton <jorton@redhat.com>
16 Copyright (c) 2017 José Gutiérrez de la Concha <jose@zeroc.com>
17 Copyright (c) 2018 Marco Maggi <marco.maggi-ipsu@poste.it>
18 Copyright (c) 2019 David Loffredo <loffredo@steptools.com>
19 Copyright (c) 2020 Tim Gates <tim.gates@iress.com>
20 Licensed under the MIT license:
21
22 Permission is hereby granted, free of charge, to any person obtaining
23 a copy of this software and associated documentation files (the
24 "Software"), to deal in the Software without restriction, including
25 without limitation the rights to use, copy, modify, merge, publish,
26 distribute, sublicense, and/or sell copies of the Software, and to permit
27 persons to whom the Software is furnished to do so, subject to the
28 following conditions:
29
30 The above copyright notice and this permission notice shall be included
31 in all copies or substantial portions of the Software.
32
33 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
34 EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
35 MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
36 NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
37 DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
38 OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
39 USE OR OTHER DEALINGS IN THE SOFTWARE.
40 */
41
42 #if defined(NDEBUG)
43 # undef NDEBUG /* because test suite relies on assert(...) at the moment */
44 #endif
45
46 #include <expat_config.h>
47
48 #include <assert.h>
49 #include <stdlib.h>
50 #include <stdio.h>
51 #include <string.h>
52 #include <stddef.h> /* ptrdiff_t */
53 #include <ctype.h>
54 #include <limits.h>
55 #include <stdint.h> /* intptr_t uint64_t */
56 #include <math.h> /* NAN, INFINITY, isnan */
57
58 #if ! defined(__cplusplus)
59 # include <stdbool.h>
60 #endif
61
62 #include "expat.h"
63 #include "chardata.h"
64 #include "structdata.h"
65 #include "internal.h"
66 #include "minicheck.h"
67 #include "memcheck.h"
68 #include "siphash.h"
69 #include "ascii.h" /* for ASCII_xxx */
70
71 #ifdef XML_LARGE_SIZE
72 # define XML_FMT_INT_MOD "ll"
73 #else
74 # define XML_FMT_INT_MOD "l"
75 #endif
76
77 #ifdef XML_UNICODE_WCHAR_T
78 # define XML_FMT_CHAR "lc"
79 # define XML_FMT_STR "ls"
80 # include <wchar.h>
81 # define xcstrlen(s) wcslen(s)
82 # define xcstrcmp(s, t) wcscmp((s), (t))
83 # define xcstrncmp(s, t, n) wcsncmp((s), (t), (n))
84 # define XCS(s) _XCS(s)
85 # define _XCS(s) L##s
86 #else
87 # ifdef XML_UNICODE
88 # error "No support for UTF-16 character without wchar_t in tests"
89 # else
90 # define XML_FMT_CHAR "c"
91 # define XML_FMT_STR "s"
92 # define xcstrlen(s) strlen(s)
93 # define xcstrcmp(s, t) strcmp((s), (t))
94 # define xcstrncmp(s, t, n) strncmp((s), (t), (n))
95 # define XCS(s) s
96 # endif /* XML_UNICODE */
97 #endif /* XML_UNICODE_WCHAR_T */
98
99 static XML_Parser g_parser = NULL;
100
101 static void
tcase_add_test__ifdef_xml_dtd(TCase * tc,tcase_test_function test)102 tcase_add_test__ifdef_xml_dtd(TCase *tc, tcase_test_function test) {
103 #ifdef XML_DTD
104 tcase_add_test(tc, test);
105 #else
106 UNUSED_P(tc);
107 UNUSED_P(test);
108 #endif
109 }
110
111 static void
basic_setup(void)112 basic_setup(void) {
113 g_parser = XML_ParserCreate(NULL);
114 if (g_parser == NULL)
115 fail("Parser not created.");
116 }
117
118 static void
basic_teardown(void)119 basic_teardown(void) {
120 if (g_parser != NULL) {
121 XML_ParserFree(g_parser);
122 g_parser = NULL;
123 }
124 }
125
126 /* Generate a failure using the parser state to create an error message;
127 this should be used when the parser reports an error we weren't
128 expecting.
129 */
130 static void
_xml_failure(XML_Parser parser,const char * file,int line)131 _xml_failure(XML_Parser parser, const char *file, int line) {
132 char buffer[1024];
133 enum XML_Error err = XML_GetErrorCode(parser);
134 sprintf(buffer,
135 " %d: %" XML_FMT_STR " (line %" XML_FMT_INT_MOD
136 "u, offset %" XML_FMT_INT_MOD "u)\n reported from %s, line %d\n",
137 err, XML_ErrorString(err), XML_GetCurrentLineNumber(parser),
138 XML_GetCurrentColumnNumber(parser), file, line);
139 _fail_unless(0, file, line, buffer);
140 }
141
142 static enum XML_Status
_XML_Parse_SINGLE_BYTES(XML_Parser parser,const char * s,int len,int isFinal)143 _XML_Parse_SINGLE_BYTES(XML_Parser parser, const char *s, int len,
144 int isFinal) {
145 enum XML_Status res = XML_STATUS_ERROR;
146 int offset = 0;
147
148 if (len == 0) {
149 return XML_Parse(parser, s, len, isFinal);
150 }
151
152 for (; offset < len; offset++) {
153 const int innerIsFinal = (offset == len - 1) && isFinal;
154 const char c = s[offset]; /* to help out-of-bounds detection */
155 res = XML_Parse(parser, &c, sizeof(char), innerIsFinal);
156 if (res != XML_STATUS_OK) {
157 return res;
158 }
159 }
160 return res;
161 }
162
163 #define xml_failure(parser) _xml_failure((parser), __FILE__, __LINE__)
164
165 static void
_expect_failure(const char * text,enum XML_Error errorCode,const char * errorMessage,const char * file,int lineno)166 _expect_failure(const char *text, enum XML_Error errorCode,
167 const char *errorMessage, const char *file, int lineno) {
168 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
169 == XML_STATUS_OK)
170 /* Hackish use of _fail_unless() macro, but let's us report
171 the right filename and line number. */
172 _fail_unless(0, file, lineno, errorMessage);
173 if (XML_GetErrorCode(g_parser) != errorCode)
174 _xml_failure(g_parser, file, lineno);
175 }
176
177 #define expect_failure(text, errorCode, errorMessage) \
178 _expect_failure((text), (errorCode), (errorMessage), __FILE__, __LINE__)
179
180 /* Dummy handlers for when we need to set a handler to tickle a bug,
181 but it doesn't need to do anything.
182 */
183 static unsigned long dummy_handler_flags = 0;
184
185 #define DUMMY_START_DOCTYPE_HANDLER_FLAG (1UL << 0)
186 #define DUMMY_END_DOCTYPE_HANDLER_FLAG (1UL << 1)
187 #define DUMMY_ENTITY_DECL_HANDLER_FLAG (1UL << 2)
188 #define DUMMY_NOTATION_DECL_HANDLER_FLAG (1UL << 3)
189 #define DUMMY_ELEMENT_DECL_HANDLER_FLAG (1UL << 4)
190 #define DUMMY_ATTLIST_DECL_HANDLER_FLAG (1UL << 5)
191 #define DUMMY_COMMENT_HANDLER_FLAG (1UL << 6)
192 #define DUMMY_PI_HANDLER_FLAG (1UL << 7)
193 #define DUMMY_START_ELEMENT_HANDLER_FLAG (1UL << 8)
194 #define DUMMY_START_CDATA_HANDLER_FLAG (1UL << 9)
195 #define DUMMY_END_CDATA_HANDLER_FLAG (1UL << 10)
196 #define DUMMY_UNPARSED_ENTITY_DECL_HANDLER_FLAG (1UL << 11)
197 #define DUMMY_START_NS_DECL_HANDLER_FLAG (1UL << 12)
198 #define DUMMY_END_NS_DECL_HANDLER_FLAG (1UL << 13)
199 #define DUMMY_START_DOCTYPE_DECL_HANDLER_FLAG (1UL << 14)
200 #define DUMMY_END_DOCTYPE_DECL_HANDLER_FLAG (1UL << 15)
201 #define DUMMY_SKIP_HANDLER_FLAG (1UL << 16)
202 #define DUMMY_DEFAULT_HANDLER_FLAG (1UL << 17)
203
204 static void XMLCALL
dummy_xdecl_handler(void * userData,const XML_Char * version,const XML_Char * encoding,int standalone)205 dummy_xdecl_handler(void *userData, const XML_Char *version,
206 const XML_Char *encoding, int standalone) {
207 UNUSED_P(userData);
208 UNUSED_P(version);
209 UNUSED_P(encoding);
210 UNUSED_P(standalone);
211 }
212
213 static void XMLCALL
dummy_start_doctype_handler(void * userData,const XML_Char * doctypeName,const XML_Char * sysid,const XML_Char * pubid,int has_internal_subset)214 dummy_start_doctype_handler(void *userData, const XML_Char *doctypeName,
215 const XML_Char *sysid, const XML_Char *pubid,
216 int has_internal_subset) {
217 UNUSED_P(userData);
218 UNUSED_P(doctypeName);
219 UNUSED_P(sysid);
220 UNUSED_P(pubid);
221 UNUSED_P(has_internal_subset);
222 dummy_handler_flags |= DUMMY_START_DOCTYPE_HANDLER_FLAG;
223 }
224
225 static void XMLCALL
dummy_end_doctype_handler(void * userData)226 dummy_end_doctype_handler(void *userData) {
227 UNUSED_P(userData);
228 dummy_handler_flags |= DUMMY_END_DOCTYPE_HANDLER_FLAG;
229 }
230
231 static void XMLCALL
dummy_entity_decl_handler(void * userData,const XML_Char * entityName,int is_parameter_entity,const XML_Char * value,int value_length,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId,const XML_Char * notationName)232 dummy_entity_decl_handler(void *userData, const XML_Char *entityName,
233 int is_parameter_entity, const XML_Char *value,
234 int value_length, const XML_Char *base,
235 const XML_Char *systemId, const XML_Char *publicId,
236 const XML_Char *notationName) {
237 UNUSED_P(userData);
238 UNUSED_P(entityName);
239 UNUSED_P(is_parameter_entity);
240 UNUSED_P(value);
241 UNUSED_P(value_length);
242 UNUSED_P(base);
243 UNUSED_P(systemId);
244 UNUSED_P(publicId);
245 UNUSED_P(notationName);
246 dummy_handler_flags |= DUMMY_ENTITY_DECL_HANDLER_FLAG;
247 }
248
249 static void XMLCALL
dummy_notation_decl_handler(void * userData,const XML_Char * notationName,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)250 dummy_notation_decl_handler(void *userData, const XML_Char *notationName,
251 const XML_Char *base, const XML_Char *systemId,
252 const XML_Char *publicId) {
253 UNUSED_P(userData);
254 UNUSED_P(notationName);
255 UNUSED_P(base);
256 UNUSED_P(systemId);
257 UNUSED_P(publicId);
258 dummy_handler_flags |= DUMMY_NOTATION_DECL_HANDLER_FLAG;
259 }
260
261 static void XMLCALL
dummy_element_decl_handler(void * userData,const XML_Char * name,XML_Content * model)262 dummy_element_decl_handler(void *userData, const XML_Char *name,
263 XML_Content *model) {
264 UNUSED_P(userData);
265 UNUSED_P(name);
266 /* The content model must be freed by the handler. Unfortunately
267 * we cannot pass the parser as the userData because this is used
268 * with other handlers that require other userData.
269 */
270 XML_FreeContentModel(g_parser, model);
271 dummy_handler_flags |= DUMMY_ELEMENT_DECL_HANDLER_FLAG;
272 }
273
274 static void XMLCALL
dummy_attlist_decl_handler(void * userData,const XML_Char * elname,const XML_Char * attname,const XML_Char * att_type,const XML_Char * dflt,int isrequired)275 dummy_attlist_decl_handler(void *userData, const XML_Char *elname,
276 const XML_Char *attname, const XML_Char *att_type,
277 const XML_Char *dflt, int isrequired) {
278 UNUSED_P(userData);
279 UNUSED_P(elname);
280 UNUSED_P(attname);
281 UNUSED_P(att_type);
282 UNUSED_P(dflt);
283 UNUSED_P(isrequired);
284 dummy_handler_flags |= DUMMY_ATTLIST_DECL_HANDLER_FLAG;
285 }
286
287 static void XMLCALL
dummy_comment_handler(void * userData,const XML_Char * data)288 dummy_comment_handler(void *userData, const XML_Char *data) {
289 UNUSED_P(userData);
290 UNUSED_P(data);
291 dummy_handler_flags |= DUMMY_COMMENT_HANDLER_FLAG;
292 }
293
294 static void XMLCALL
dummy_pi_handler(void * userData,const XML_Char * target,const XML_Char * data)295 dummy_pi_handler(void *userData, const XML_Char *target, const XML_Char *data) {
296 UNUSED_P(userData);
297 UNUSED_P(target);
298 UNUSED_P(data);
299 dummy_handler_flags |= DUMMY_PI_HANDLER_FLAG;
300 }
301
302 static void XMLCALL
dummy_start_element(void * userData,const XML_Char * name,const XML_Char ** atts)303 dummy_start_element(void *userData, const XML_Char *name,
304 const XML_Char **atts) {
305 UNUSED_P(userData);
306 UNUSED_P(name);
307 UNUSED_P(atts);
308 dummy_handler_flags |= DUMMY_START_ELEMENT_HANDLER_FLAG;
309 }
310
311 static void XMLCALL
dummy_end_element(void * userData,const XML_Char * name)312 dummy_end_element(void *userData, const XML_Char *name) {
313 UNUSED_P(userData);
314 UNUSED_P(name);
315 }
316
317 static void XMLCALL
dummy_start_cdata_handler(void * userData)318 dummy_start_cdata_handler(void *userData) {
319 UNUSED_P(userData);
320 dummy_handler_flags |= DUMMY_START_CDATA_HANDLER_FLAG;
321 }
322
323 static void XMLCALL
dummy_end_cdata_handler(void * userData)324 dummy_end_cdata_handler(void *userData) {
325 UNUSED_P(userData);
326 dummy_handler_flags |= DUMMY_END_CDATA_HANDLER_FLAG;
327 }
328
329 static void XMLCALL
dummy_cdata_handler(void * userData,const XML_Char * s,int len)330 dummy_cdata_handler(void *userData, const XML_Char *s, int len) {
331 UNUSED_P(userData);
332 UNUSED_P(s);
333 UNUSED_P(len);
334 }
335
336 static void XMLCALL
dummy_start_namespace_decl_handler(void * userData,const XML_Char * prefix,const XML_Char * uri)337 dummy_start_namespace_decl_handler(void *userData, const XML_Char *prefix,
338 const XML_Char *uri) {
339 UNUSED_P(userData);
340 UNUSED_P(prefix);
341 UNUSED_P(uri);
342 dummy_handler_flags |= DUMMY_START_NS_DECL_HANDLER_FLAG;
343 }
344
345 static void XMLCALL
dummy_end_namespace_decl_handler(void * userData,const XML_Char * prefix)346 dummy_end_namespace_decl_handler(void *userData, const XML_Char *prefix) {
347 UNUSED_P(userData);
348 UNUSED_P(prefix);
349 dummy_handler_flags |= DUMMY_END_NS_DECL_HANDLER_FLAG;
350 }
351
352 /* This handler is obsolete, but while the code exists we should
353 * ensure that dealing with the handler is covered by tests.
354 */
355 static void XMLCALL
dummy_unparsed_entity_decl_handler(void * userData,const XML_Char * entityName,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId,const XML_Char * notationName)356 dummy_unparsed_entity_decl_handler(void *userData, const XML_Char *entityName,
357 const XML_Char *base,
358 const XML_Char *systemId,
359 const XML_Char *publicId,
360 const XML_Char *notationName) {
361 UNUSED_P(userData);
362 UNUSED_P(entityName);
363 UNUSED_P(base);
364 UNUSED_P(systemId);
365 UNUSED_P(publicId);
366 UNUSED_P(notationName);
367 dummy_handler_flags |= DUMMY_UNPARSED_ENTITY_DECL_HANDLER_FLAG;
368 }
369
370 static void XMLCALL
dummy_default_handler(void * userData,const XML_Char * s,int len)371 dummy_default_handler(void *userData, const XML_Char *s, int len) {
372 UNUSED_P(userData);
373 UNUSED_P(s);
374 UNUSED_P(len);
375 }
376
377 static void XMLCALL
dummy_start_doctype_decl_handler(void * userData,const XML_Char * doctypeName,const XML_Char * sysid,const XML_Char * pubid,int has_internal_subset)378 dummy_start_doctype_decl_handler(void *userData, const XML_Char *doctypeName,
379 const XML_Char *sysid, const XML_Char *pubid,
380 int has_internal_subset) {
381 UNUSED_P(userData);
382 UNUSED_P(doctypeName);
383 UNUSED_P(sysid);
384 UNUSED_P(pubid);
385 UNUSED_P(has_internal_subset);
386 dummy_handler_flags |= DUMMY_START_DOCTYPE_DECL_HANDLER_FLAG;
387 }
388
389 static void XMLCALL
dummy_end_doctype_decl_handler(void * userData)390 dummy_end_doctype_decl_handler(void *userData) {
391 UNUSED_P(userData);
392 dummy_handler_flags |= DUMMY_END_DOCTYPE_DECL_HANDLER_FLAG;
393 }
394
395 static void XMLCALL
dummy_skip_handler(void * userData,const XML_Char * entityName,int is_parameter_entity)396 dummy_skip_handler(void *userData, const XML_Char *entityName,
397 int is_parameter_entity) {
398 UNUSED_P(userData);
399 UNUSED_P(entityName);
400 UNUSED_P(is_parameter_entity);
401 dummy_handler_flags |= DUMMY_SKIP_HANDLER_FLAG;
402 }
403
404 /* Useful external entity handler */
405 typedef struct ExtOption {
406 const XML_Char *system_id;
407 const char *parse_text;
408 } ExtOption;
409
410 static int XMLCALL
external_entity_optioner(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)411 external_entity_optioner(XML_Parser parser, const XML_Char *context,
412 const XML_Char *base, const XML_Char *systemId,
413 const XML_Char *publicId) {
414 ExtOption *options = (ExtOption *)XML_GetUserData(parser);
415 XML_Parser ext_parser;
416
417 UNUSED_P(base);
418 UNUSED_P(publicId);
419 while (options->parse_text != NULL) {
420 if (! xcstrcmp(systemId, options->system_id)) {
421 enum XML_Status rc;
422 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
423 if (ext_parser == NULL)
424 return XML_STATUS_ERROR;
425 rc = _XML_Parse_SINGLE_BYTES(ext_parser, options->parse_text,
426 (int)strlen(options->parse_text), XML_TRUE);
427 XML_ParserFree(ext_parser);
428 return rc;
429 }
430 options++;
431 }
432 fail("No suitable option found");
433 return XML_STATUS_ERROR;
434 }
435
436 /*
437 * Parameter entity evaluation support.
438 */
439 #define ENTITY_MATCH_FAIL (-1)
440 #define ENTITY_MATCH_NOT_FOUND (0)
441 #define ENTITY_MATCH_SUCCESS (1)
442 static const XML_Char *entity_name_to_match = NULL;
443 static const XML_Char *entity_value_to_match = NULL;
444 static int entity_match_flag = ENTITY_MATCH_NOT_FOUND;
445
446 static void XMLCALL
param_entity_match_handler(void * userData,const XML_Char * entityName,int is_parameter_entity,const XML_Char * value,int value_length,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId,const XML_Char * notationName)447 param_entity_match_handler(void *userData, const XML_Char *entityName,
448 int is_parameter_entity, const XML_Char *value,
449 int value_length, const XML_Char *base,
450 const XML_Char *systemId, const XML_Char *publicId,
451 const XML_Char *notationName) {
452 UNUSED_P(userData);
453 UNUSED_P(base);
454 UNUSED_P(systemId);
455 UNUSED_P(publicId);
456 UNUSED_P(notationName);
457 if (! is_parameter_entity || entity_name_to_match == NULL
458 || entity_value_to_match == NULL) {
459 return;
460 }
461 if (! xcstrcmp(entityName, entity_name_to_match)) {
462 /* The cast here is safe because we control the horizontal and
463 * the vertical, and we therefore know our strings are never
464 * going to overflow an int.
465 */
466 if (value_length != (int)xcstrlen(entity_value_to_match)
467 || xcstrncmp(value, entity_value_to_match, value_length)) {
468 entity_match_flag = ENTITY_MATCH_FAIL;
469 } else {
470 entity_match_flag = ENTITY_MATCH_SUCCESS;
471 }
472 }
473 /* Else leave the match flag alone */
474 }
475
476 /*
477 * Character & encoding tests.
478 */
479
START_TEST(test_nul_byte)480 START_TEST(test_nul_byte) {
481 char text[] = "<doc>\0</doc>";
482
483 /* test that a NUL byte (in US-ASCII data) is an error */
484 if (_XML_Parse_SINGLE_BYTES(g_parser, text, sizeof(text) - 1, XML_TRUE)
485 == XML_STATUS_OK)
486 fail("Parser did not report error on NUL-byte.");
487 if (XML_GetErrorCode(g_parser) != XML_ERROR_INVALID_TOKEN)
488 xml_failure(g_parser);
489 }
490 END_TEST
491
START_TEST(test_u0000_char)492 START_TEST(test_u0000_char) {
493 /* test that a NUL byte (in US-ASCII data) is an error */
494 expect_failure("<doc>�</doc>", XML_ERROR_BAD_CHAR_REF,
495 "Parser did not report error on NUL-byte.");
496 }
497 END_TEST
498
START_TEST(test_siphash_self)499 START_TEST(test_siphash_self) {
500 if (! sip24_valid())
501 fail("SipHash self-test failed");
502 }
503 END_TEST
504
START_TEST(test_siphash_spec)505 START_TEST(test_siphash_spec) {
506 /* https://131002.net/siphash/siphash.pdf (page 19, "Test values") */
507 const char message[] = "\x00\x01\x02\x03\x04\x05\x06\x07\x08\x09"
508 "\x0a\x0b\x0c\x0d\x0e";
509 const size_t len = sizeof(message) - 1;
510 const uint64_t expected = _SIP_ULL(0xa129ca61U, 0x49be45e5U);
511 struct siphash state;
512 struct sipkey key;
513
514 sip_tokey(&key, "\x00\x01\x02\x03\x04\x05\x06\x07\x08\x09"
515 "\x0a\x0b\x0c\x0d\x0e\x0f");
516 sip24_init(&state, &key);
517
518 /* Cover spread across calls */
519 sip24_update(&state, message, 4);
520 sip24_update(&state, message + 4, len - 4);
521
522 /* Cover null length */
523 sip24_update(&state, message, 0);
524
525 if (sip24_final(&state) != expected)
526 fail("sip24_final failed spec test\n");
527
528 /* Cover wrapper */
529 if (siphash24(message, len, &key) != expected)
530 fail("siphash24 failed spec test\n");
531 }
532 END_TEST
533
START_TEST(test_bom_utf8)534 START_TEST(test_bom_utf8) {
535 /* This test is really just making sure we don't core on a UTF-8 BOM. */
536 const char *text = "\357\273\277<e/>";
537
538 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
539 == XML_STATUS_ERROR)
540 xml_failure(g_parser);
541 }
542 END_TEST
543
START_TEST(test_bom_utf16_be)544 START_TEST(test_bom_utf16_be) {
545 char text[] = "\376\377\0<\0e\0/\0>";
546
547 if (_XML_Parse_SINGLE_BYTES(g_parser, text, sizeof(text) - 1, XML_TRUE)
548 == XML_STATUS_ERROR)
549 xml_failure(g_parser);
550 }
551 END_TEST
552
START_TEST(test_bom_utf16_le)553 START_TEST(test_bom_utf16_le) {
554 char text[] = "\377\376<\0e\0/\0>\0";
555
556 if (_XML_Parse_SINGLE_BYTES(g_parser, text, sizeof(text) - 1, XML_TRUE)
557 == XML_STATUS_ERROR)
558 xml_failure(g_parser);
559 }
560 END_TEST
561
562 /* Parse whole buffer at once to exercise a different code path */
START_TEST(test_nobom_utf16_le)563 START_TEST(test_nobom_utf16_le) {
564 char text[] = " \0<\0e\0/\0>\0";
565
566 if (XML_Parse(g_parser, text, sizeof(text) - 1, XML_TRUE) == XML_STATUS_ERROR)
567 xml_failure(g_parser);
568 }
569 END_TEST
570
571 static void XMLCALL
accumulate_characters(void * userData,const XML_Char * s,int len)572 accumulate_characters(void *userData, const XML_Char *s, int len) {
573 CharData_AppendXMLChars((CharData *)userData, s, len);
574 }
575
576 static void XMLCALL
accumulate_attribute(void * userData,const XML_Char * name,const XML_Char ** atts)577 accumulate_attribute(void *userData, const XML_Char *name,
578 const XML_Char **atts) {
579 CharData *storage = (CharData *)userData;
580 UNUSED_P(name);
581 /* Check there are attributes to deal with */
582 if (atts == NULL)
583 return;
584
585 while (storage->count < 0 && atts[0] != NULL) {
586 /* "accumulate" the value of the first attribute we see */
587 CharData_AppendXMLChars(storage, atts[1], -1);
588 atts += 2;
589 }
590 }
591
592 static void
_run_character_check(const char * text,const XML_Char * expected,const char * file,int line)593 _run_character_check(const char *text, const XML_Char *expected,
594 const char *file, int line) {
595 CharData storage;
596
597 CharData_Init(&storage);
598 XML_SetUserData(g_parser, &storage);
599 XML_SetCharacterDataHandler(g_parser, accumulate_characters);
600 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
601 == XML_STATUS_ERROR)
602 _xml_failure(g_parser, file, line);
603 CharData_CheckXMLChars(&storage, expected);
604 }
605
606 #define run_character_check(text, expected) \
607 _run_character_check(text, expected, __FILE__, __LINE__)
608
609 static void
_run_attribute_check(const char * text,const XML_Char * expected,const char * file,int line)610 _run_attribute_check(const char *text, const XML_Char *expected,
611 const char *file, int line) {
612 CharData storage;
613
614 CharData_Init(&storage);
615 XML_SetUserData(g_parser, &storage);
616 XML_SetStartElementHandler(g_parser, accumulate_attribute);
617 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
618 == XML_STATUS_ERROR)
619 _xml_failure(g_parser, file, line);
620 CharData_CheckXMLChars(&storage, expected);
621 }
622
623 #define run_attribute_check(text, expected) \
624 _run_attribute_check(text, expected, __FILE__, __LINE__)
625
626 typedef struct ExtTest {
627 const char *parse_text;
628 const XML_Char *encoding;
629 CharData *storage;
630 } ExtTest;
631
632 static void XMLCALL
ext_accumulate_characters(void * userData,const XML_Char * s,int len)633 ext_accumulate_characters(void *userData, const XML_Char *s, int len) {
634 ExtTest *test_data = (ExtTest *)userData;
635 accumulate_characters(test_data->storage, s, len);
636 }
637
638 static void
_run_ext_character_check(const char * text,ExtTest * test_data,const XML_Char * expected,const char * file,int line)639 _run_ext_character_check(const char *text, ExtTest *test_data,
640 const XML_Char *expected, const char *file, int line) {
641 CharData *const storage = (CharData *)malloc(sizeof(CharData));
642
643 CharData_Init(storage);
644 test_data->storage = storage;
645 XML_SetUserData(g_parser, test_data);
646 XML_SetCharacterDataHandler(g_parser, ext_accumulate_characters);
647 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
648 == XML_STATUS_ERROR)
649 _xml_failure(g_parser, file, line);
650 CharData_CheckXMLChars(storage, expected);
651
652 free(storage);
653 }
654
655 #define run_ext_character_check(text, test_data, expected) \
656 _run_ext_character_check(text, test_data, expected, __FILE__, __LINE__)
657
658 /* Regression test for SF bug #491986. */
START_TEST(test_danish_latin1)659 START_TEST(test_danish_latin1) {
660 const char *text = "<?xml version='1.0' encoding='iso-8859-1'?>\n"
661 "<e>J\xF8rgen \xE6\xF8\xE5\xC6\xD8\xC5</e>";
662 #ifdef XML_UNICODE
663 const XML_Char *expected
664 = XCS("J\x00f8rgen \x00e6\x00f8\x00e5\x00c6\x00d8\x00c5");
665 #else
666 const XML_Char *expected
667 = XCS("J\xC3\xB8rgen \xC3\xA6\xC3\xB8\xC3\xA5\xC3\x86\xC3\x98\xC3\x85");
668 #endif
669 run_character_check(text, expected);
670 }
671 END_TEST
672
673 /* Regression test for SF bug #514281. */
START_TEST(test_french_charref_hexidecimal)674 START_TEST(test_french_charref_hexidecimal) {
675 const char *text = "<?xml version='1.0' encoding='iso-8859-1'?>\n"
676 "<doc>éèàçêÈ</doc>";
677 #ifdef XML_UNICODE
678 const XML_Char *expected = XCS("\x00e9\x00e8\x00e0\x00e7\x00ea\x00c8");
679 #else
680 const XML_Char *expected
681 = XCS("\xC3\xA9\xC3\xA8\xC3\xA0\xC3\xA7\xC3\xAA\xC3\x88");
682 #endif
683 run_character_check(text, expected);
684 }
685 END_TEST
686
START_TEST(test_french_charref_decimal)687 START_TEST(test_french_charref_decimal) {
688 const char *text = "<?xml version='1.0' encoding='iso-8859-1'?>\n"
689 "<doc>éèàçêÈ</doc>";
690 #ifdef XML_UNICODE
691 const XML_Char *expected = XCS("\x00e9\x00e8\x00e0\x00e7\x00ea\x00c8");
692 #else
693 const XML_Char *expected
694 = XCS("\xC3\xA9\xC3\xA8\xC3\xA0\xC3\xA7\xC3\xAA\xC3\x88");
695 #endif
696 run_character_check(text, expected);
697 }
698 END_TEST
699
START_TEST(test_french_latin1)700 START_TEST(test_french_latin1) {
701 const char *text = "<?xml version='1.0' encoding='iso-8859-1'?>\n"
702 "<doc>\xE9\xE8\xE0\xE7\xEa\xC8</doc>";
703 #ifdef XML_UNICODE
704 const XML_Char *expected = XCS("\x00e9\x00e8\x00e0\x00e7\x00ea\x00c8");
705 #else
706 const XML_Char *expected
707 = XCS("\xC3\xA9\xC3\xA8\xC3\xA0\xC3\xA7\xC3\xAA\xC3\x88");
708 #endif
709 run_character_check(text, expected);
710 }
711 END_TEST
712
START_TEST(test_french_utf8)713 START_TEST(test_french_utf8) {
714 const char *text = "<?xml version='1.0' encoding='utf-8'?>\n"
715 "<doc>\xC3\xA9</doc>";
716 #ifdef XML_UNICODE
717 const XML_Char *expected = XCS("\x00e9");
718 #else
719 const XML_Char *expected = XCS("\xC3\xA9");
720 #endif
721 run_character_check(text, expected);
722 }
723 END_TEST
724
725 /* Regression test for SF bug #600479.
726 XXX There should be a test that exercises all legal XML Unicode
727 characters as PCDATA and attribute value content, and XML Name
728 characters as part of element and attribute names.
729 */
START_TEST(test_utf8_false_rejection)730 START_TEST(test_utf8_false_rejection) {
731 const char *text = "<doc>\xEF\xBA\xBF</doc>";
732 #ifdef XML_UNICODE
733 const XML_Char *expected = XCS("\xfebf");
734 #else
735 const XML_Char *expected = XCS("\xEF\xBA\xBF");
736 #endif
737 run_character_check(text, expected);
738 }
739 END_TEST
740
741 /* Regression test for SF bug #477667.
742 This test assures that any 8-bit character followed by a 7-bit
743 character will not be mistakenly interpreted as a valid UTF-8
744 sequence.
745 */
START_TEST(test_illegal_utf8)746 START_TEST(test_illegal_utf8) {
747 char text[100];
748 int i;
749
750 for (i = 128; i <= 255; ++i) {
751 sprintf(text, "<e>%ccd</e>", i);
752 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
753 == XML_STATUS_OK) {
754 sprintf(text, "expected token error for '%c' (ordinal %d) in UTF-8 text",
755 i, i);
756 fail(text);
757 } else if (XML_GetErrorCode(g_parser) != XML_ERROR_INVALID_TOKEN)
758 xml_failure(g_parser);
759 /* Reset the parser since we use the same parser repeatedly. */
760 XML_ParserReset(g_parser, NULL);
761 }
762 }
763 END_TEST
764
765 /* Examples, not masks: */
766 #define UTF8_LEAD_1 "\x7f" /* 0b01111111 */
767 #define UTF8_LEAD_2 "\xdf" /* 0b11011111 */
768 #define UTF8_LEAD_3 "\xef" /* 0b11101111 */
769 #define UTF8_LEAD_4 "\xf7" /* 0b11110111 */
770 #define UTF8_FOLLOW "\xbf" /* 0b10111111 */
771
START_TEST(test_utf8_auto_align)772 START_TEST(test_utf8_auto_align) {
773 struct TestCase {
774 ptrdiff_t expectedMovementInChars;
775 const char *input;
776 };
777
778 struct TestCase cases[] = {
779 {00, ""},
780
781 {00, UTF8_LEAD_1},
782
783 {-1, UTF8_LEAD_2},
784 {00, UTF8_LEAD_2 UTF8_FOLLOW},
785
786 {-1, UTF8_LEAD_3},
787 {-2, UTF8_LEAD_3 UTF8_FOLLOW},
788 {00, UTF8_LEAD_3 UTF8_FOLLOW UTF8_FOLLOW},
789
790 {-1, UTF8_LEAD_4},
791 {-2, UTF8_LEAD_4 UTF8_FOLLOW},
792 {-3, UTF8_LEAD_4 UTF8_FOLLOW UTF8_FOLLOW},
793 {00, UTF8_LEAD_4 UTF8_FOLLOW UTF8_FOLLOW UTF8_FOLLOW},
794 };
795
796 size_t i = 0;
797 bool success = true;
798 for (; i < sizeof(cases) / sizeof(*cases); i++) {
799 const char *fromLim = cases[i].input + strlen(cases[i].input);
800 const char *const fromLimInitially = fromLim;
801 ptrdiff_t actualMovementInChars;
802
803 _INTERNAL_trim_to_complete_utf8_characters(cases[i].input, &fromLim);
804
805 actualMovementInChars = (fromLim - fromLimInitially);
806 if (actualMovementInChars != cases[i].expectedMovementInChars) {
807 size_t j = 0;
808 success = false;
809 printf("[-] UTF-8 case %2u: Expected movement by %2d chars"
810 ", actually moved by %2d chars: \"",
811 (unsigned)(i + 1), (int)cases[i].expectedMovementInChars,
812 (int)actualMovementInChars);
813 for (; j < strlen(cases[i].input); j++) {
814 printf("\\x%02x", (unsigned char)cases[i].input[j]);
815 }
816 printf("\"\n");
817 }
818 }
819
820 if (! success) {
821 fail("UTF-8 auto-alignment is not bullet-proof\n");
822 }
823 }
824 END_TEST
825
START_TEST(test_utf16)826 START_TEST(test_utf16) {
827 /* <?xml version="1.0" encoding="UTF-16"?>
828 * <doc a='123'>some {A} text</doc>
829 *
830 * where {A} is U+FF21, FULLWIDTH LATIN CAPITAL LETTER A
831 */
832 char text[]
833 = "\000<\000?\000x\000m\000\154\000 \000v\000e\000r\000s\000i\000o"
834 "\000n\000=\000'\0001\000.\000\060\000'\000 \000e\000n\000c\000o"
835 "\000d\000i\000n\000g\000=\000'\000U\000T\000F\000-\0001\000\066"
836 "\000'\000?\000>\000\n"
837 "\000<\000d\000o\000c\000 \000a\000=\000'\0001\0002\0003\000'\000>"
838 "\000s\000o\000m\000e\000 \xff\x21\000 \000t\000e\000x\000t\000"
839 "<\000/\000d\000o\000c\000>";
840 #ifdef XML_UNICODE
841 const XML_Char *expected = XCS("some \xff21 text");
842 #else
843 const XML_Char *expected = XCS("some \357\274\241 text");
844 #endif
845 CharData storage;
846
847 CharData_Init(&storage);
848 XML_SetUserData(g_parser, &storage);
849 XML_SetCharacterDataHandler(g_parser, accumulate_characters);
850 if (_XML_Parse_SINGLE_BYTES(g_parser, text, sizeof(text) - 1, XML_TRUE)
851 == XML_STATUS_ERROR)
852 xml_failure(g_parser);
853 CharData_CheckXMLChars(&storage, expected);
854 }
855 END_TEST
856
START_TEST(test_utf16_le_epilog_newline)857 START_TEST(test_utf16_le_epilog_newline) {
858 unsigned int first_chunk_bytes = 17;
859 char text[] = "\xFF\xFE" /* BOM */
860 "<\000e\000/\000>\000" /* document element */
861 "\r\000\n\000\r\000\n\000"; /* epilog */
862
863 if (first_chunk_bytes >= sizeof(text) - 1)
864 fail("bad value of first_chunk_bytes");
865 if (_XML_Parse_SINGLE_BYTES(g_parser, text, first_chunk_bytes, XML_FALSE)
866 == XML_STATUS_ERROR)
867 xml_failure(g_parser);
868 else {
869 enum XML_Status rc;
870 rc = _XML_Parse_SINGLE_BYTES(g_parser, text + first_chunk_bytes,
871 sizeof(text) - first_chunk_bytes - 1,
872 XML_TRUE);
873 if (rc == XML_STATUS_ERROR)
874 xml_failure(g_parser);
875 }
876 }
877 END_TEST
878
879 /* Test that an outright lie in the encoding is faulted */
START_TEST(test_not_utf16)880 START_TEST(test_not_utf16) {
881 const char *text = "<?xml version='1.0' encoding='utf-16'?>"
882 "<doc>Hi</doc>";
883
884 /* Use a handler to provoke the appropriate code paths */
885 XML_SetXmlDeclHandler(g_parser, dummy_xdecl_handler);
886 expect_failure(text, XML_ERROR_INCORRECT_ENCODING,
887 "UTF-16 declared in UTF-8 not faulted");
888 }
889 END_TEST
890
891 /* Test that an unknown encoding is rejected */
START_TEST(test_bad_encoding)892 START_TEST(test_bad_encoding) {
893 const char *text = "<doc>Hi</doc>";
894
895 if (! XML_SetEncoding(g_parser, XCS("unknown-encoding")))
896 fail("XML_SetEncoding failed");
897 expect_failure(text, XML_ERROR_UNKNOWN_ENCODING,
898 "Unknown encoding not faulted");
899 }
900 END_TEST
901
902 /* Regression test for SF bug #481609, #774028. */
START_TEST(test_latin1_umlauts)903 START_TEST(test_latin1_umlauts) {
904 const char *text
905 = "<?xml version='1.0' encoding='iso-8859-1'?>\n"
906 "<e a='\xE4 \xF6 \xFC ä ö ü ä ö ü >'\n"
907 " >\xE4 \xF6 \xFC ä ö ü ä ö ü ></e>";
908 #ifdef XML_UNICODE
909 /* Expected results in UTF-16 */
910 const XML_Char *expected = XCS("\x00e4 \x00f6 \x00fc ")
911 XCS("\x00e4 \x00f6 \x00fc ") XCS("\x00e4 \x00f6 \x00fc >");
912 #else
913 /* Expected results in UTF-8 */
914 const XML_Char *expected = XCS("\xC3\xA4 \xC3\xB6 \xC3\xBC ")
915 XCS("\xC3\xA4 \xC3\xB6 \xC3\xBC ") XCS("\xC3\xA4 \xC3\xB6 \xC3\xBC >");
916 #endif
917
918 run_character_check(text, expected);
919 XML_ParserReset(g_parser, NULL);
920 run_attribute_check(text, expected);
921 /* Repeat with a default handler */
922 XML_ParserReset(g_parser, NULL);
923 XML_SetDefaultHandler(g_parser, dummy_default_handler);
924 run_character_check(text, expected);
925 XML_ParserReset(g_parser, NULL);
926 XML_SetDefaultHandler(g_parser, dummy_default_handler);
927 run_attribute_check(text, expected);
928 }
929 END_TEST
930
931 /* Test that an element name with a 4-byte UTF-8 character is rejected */
START_TEST(test_long_utf8_character)932 START_TEST(test_long_utf8_character) {
933 const char *text
934 = "<?xml version='1.0' encoding='utf-8'?>\n"
935 /* 0xf0 0x90 0x80 0x80 = U+10000, the first Linear B character */
936 "<do\xf0\x90\x80\x80/>";
937 expect_failure(text, XML_ERROR_INVALID_TOKEN,
938 "4-byte UTF-8 character in element name not faulted");
939 }
940 END_TEST
941
942 /* Test that a long latin-1 attribute (too long to convert in one go)
943 * is correctly converted
944 */
START_TEST(test_long_latin1_attribute)945 START_TEST(test_long_latin1_attribute) {
946 const char *text
947 = "<?xml version='1.0' encoding='iso-8859-1'?>\n"
948 "<doc att='"
949 /* 64 characters per line */
950 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
951 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
952 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
953 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
954 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
955 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
956 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
957 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
958 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
959 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
960 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
961 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
962 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
963 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
964 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
965 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
966 /* Last character splits across a buffer boundary */
967 "\xe4'>\n</doc>";
968
969 const XML_Char *expected =
970 /* 64 characters per line */
971 /* clang-format off */
972 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
973 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
974 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
975 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
976 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
977 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
978 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
979 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
980 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
981 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
982 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
983 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
984 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
985 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
986 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
987 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO")
988 /* clang-format on */
989 #ifdef XML_UNICODE
990 XCS("\x00e4");
991 #else
992 XCS("\xc3\xa4");
993 #endif
994
995 run_attribute_check(text, expected);
996 }
997 END_TEST
998
999 /* Test that a long ASCII attribute (too long to convert in one go)
1000 * is correctly converted
1001 */
START_TEST(test_long_ascii_attribute)1002 START_TEST(test_long_ascii_attribute) {
1003 const char *text
1004 = "<?xml version='1.0' encoding='us-ascii'?>\n"
1005 "<doc att='"
1006 /* 64 characters per line */
1007 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
1008 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
1009 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
1010 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
1011 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
1012 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
1013 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
1014 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
1015 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
1016 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
1017 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
1018 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
1019 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
1020 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
1021 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
1022 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
1023 "01234'>\n</doc>";
1024 const XML_Char *expected =
1025 /* 64 characters per line */
1026 /* clang-format off */
1027 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
1028 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
1029 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
1030 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
1031 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
1032 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
1033 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
1034 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
1035 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
1036 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
1037 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
1038 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
1039 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
1040 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
1041 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
1042 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
1043 XCS("01234");
1044 /* clang-format on */
1045
1046 run_attribute_check(text, expected);
1047 }
1048 END_TEST
1049
1050 /* Regression test #1 for SF bug #653180. */
START_TEST(test_line_number_after_parse)1051 START_TEST(test_line_number_after_parse) {
1052 const char *text = "<tag>\n"
1053 "\n"
1054 "\n</tag>";
1055 XML_Size lineno;
1056
1057 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_FALSE)
1058 == XML_STATUS_ERROR)
1059 xml_failure(g_parser);
1060 lineno = XML_GetCurrentLineNumber(g_parser);
1061 if (lineno != 4) {
1062 char buffer[100];
1063 sprintf(buffer, "expected 4 lines, saw %" XML_FMT_INT_MOD "u", lineno);
1064 fail(buffer);
1065 }
1066 }
1067 END_TEST
1068
1069 /* Regression test #2 for SF bug #653180. */
START_TEST(test_column_number_after_parse)1070 START_TEST(test_column_number_after_parse) {
1071 const char *text = "<tag></tag>";
1072 XML_Size colno;
1073
1074 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_FALSE)
1075 == XML_STATUS_ERROR)
1076 xml_failure(g_parser);
1077 colno = XML_GetCurrentColumnNumber(g_parser);
1078 if (colno != 11) {
1079 char buffer[100];
1080 sprintf(buffer, "expected 11 columns, saw %" XML_FMT_INT_MOD "u", colno);
1081 fail(buffer);
1082 }
1083 }
1084 END_TEST
1085
1086 #define STRUCT_START_TAG 0
1087 #define STRUCT_END_TAG 1
1088 static void XMLCALL
start_element_event_handler2(void * userData,const XML_Char * name,const XML_Char ** attr)1089 start_element_event_handler2(void *userData, const XML_Char *name,
1090 const XML_Char **attr) {
1091 StructData *storage = (StructData *)userData;
1092 UNUSED_P(attr);
1093 StructData_AddItem(storage, name, XML_GetCurrentColumnNumber(g_parser),
1094 XML_GetCurrentLineNumber(g_parser), STRUCT_START_TAG);
1095 }
1096
1097 static void XMLCALL
end_element_event_handler2(void * userData,const XML_Char * name)1098 end_element_event_handler2(void *userData, const XML_Char *name) {
1099 StructData *storage = (StructData *)userData;
1100 StructData_AddItem(storage, name, XML_GetCurrentColumnNumber(g_parser),
1101 XML_GetCurrentLineNumber(g_parser), STRUCT_END_TAG);
1102 }
1103
1104 /* Regression test #3 for SF bug #653180. */
START_TEST(test_line_and_column_numbers_inside_handlers)1105 START_TEST(test_line_and_column_numbers_inside_handlers) {
1106 const char *text = "<a>\n" /* Unix end-of-line */
1107 " <b>\r\n" /* Windows end-of-line */
1108 " <c/>\r" /* Mac OS end-of-line */
1109 " </b>\n"
1110 " <d>\n"
1111 " <f/>\n"
1112 " </d>\n"
1113 "</a>";
1114 const StructDataEntry expected[]
1115 = {{XCS("a"), 0, 1, STRUCT_START_TAG}, {XCS("b"), 2, 2, STRUCT_START_TAG},
1116 {XCS("c"), 4, 3, STRUCT_START_TAG}, {XCS("c"), 8, 3, STRUCT_END_TAG},
1117 {XCS("b"), 2, 4, STRUCT_END_TAG}, {XCS("d"), 2, 5, STRUCT_START_TAG},
1118 {XCS("f"), 4, 6, STRUCT_START_TAG}, {XCS("f"), 8, 6, STRUCT_END_TAG},
1119 {XCS("d"), 2, 7, STRUCT_END_TAG}, {XCS("a"), 0, 8, STRUCT_END_TAG}};
1120 const int expected_count = sizeof(expected) / sizeof(StructDataEntry);
1121 StructData storage;
1122
1123 StructData_Init(&storage);
1124 XML_SetUserData(g_parser, &storage);
1125 XML_SetStartElementHandler(g_parser, start_element_event_handler2);
1126 XML_SetEndElementHandler(g_parser, end_element_event_handler2);
1127 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
1128 == XML_STATUS_ERROR)
1129 xml_failure(g_parser);
1130
1131 StructData_CheckItems(&storage, expected, expected_count);
1132 StructData_Dispose(&storage);
1133 }
1134 END_TEST
1135
1136 /* Regression test #4 for SF bug #653180. */
START_TEST(test_line_number_after_error)1137 START_TEST(test_line_number_after_error) {
1138 const char *text = "<a>\n"
1139 " <b>\n"
1140 " </a>"; /* missing </b> */
1141 XML_Size lineno;
1142 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_FALSE)
1143 != XML_STATUS_ERROR)
1144 fail("Expected a parse error");
1145
1146 lineno = XML_GetCurrentLineNumber(g_parser);
1147 if (lineno != 3) {
1148 char buffer[100];
1149 sprintf(buffer, "expected 3 lines, saw %" XML_FMT_INT_MOD "u", lineno);
1150 fail(buffer);
1151 }
1152 }
1153 END_TEST
1154
1155 /* Regression test #5 for SF bug #653180. */
START_TEST(test_column_number_after_error)1156 START_TEST(test_column_number_after_error) {
1157 const char *text = "<a>\n"
1158 " <b>\n"
1159 " </a>"; /* missing </b> */
1160 XML_Size colno;
1161 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_FALSE)
1162 != XML_STATUS_ERROR)
1163 fail("Expected a parse error");
1164
1165 colno = XML_GetCurrentColumnNumber(g_parser);
1166 if (colno != 4) {
1167 char buffer[100];
1168 sprintf(buffer, "expected 4 columns, saw %" XML_FMT_INT_MOD "u", colno);
1169 fail(buffer);
1170 }
1171 }
1172 END_TEST
1173
1174 /* Regression test for SF bug #478332. */
START_TEST(test_really_long_lines)1175 START_TEST(test_really_long_lines) {
1176 /* This parses an input line longer than INIT_DATA_BUF_SIZE
1177 characters long (defined to be 1024 in xmlparse.c). We take a
1178 really cheesy approach to building the input buffer, because
1179 this avoids writing bugs in buffer-filling code.
1180 */
1181 const char *text
1182 = "<e>"
1183 /* 64 chars */
1184 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1185 /* until we have at least 1024 characters on the line: */
1186 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1187 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1188 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1189 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1190 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1191 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1192 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1193 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1194 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1195 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1196 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1197 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1198 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1199 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1200 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1201 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1202 "</e>";
1203 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
1204 == XML_STATUS_ERROR)
1205 xml_failure(g_parser);
1206 }
1207 END_TEST
1208
1209 /* Test cdata processing across a buffer boundary */
START_TEST(test_really_long_encoded_lines)1210 START_TEST(test_really_long_encoded_lines) {
1211 /* As above, except that we want to provoke an output buffer
1212 * overflow with a non-trivial encoding. For this we need to pass
1213 * the whole cdata in one go, not byte-by-byte.
1214 */
1215 void *buffer;
1216 const char *text
1217 = "<?xml version='1.0' encoding='iso-8859-1'?>"
1218 "<e>"
1219 /* 64 chars */
1220 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1221 /* until we have at least 1024 characters on the line: */
1222 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1223 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1224 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1225 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1226 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1227 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1228 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1229 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1230 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1231 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1232 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1233 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1234 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1235 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1236 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1237 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-+"
1238 "</e>";
1239 int parse_len = (int)strlen(text);
1240
1241 /* Need a cdata handler to provoke the code path we want to test */
1242 XML_SetCharacterDataHandler(g_parser, dummy_cdata_handler);
1243 buffer = XML_GetBuffer(g_parser, parse_len);
1244 if (buffer == NULL)
1245 fail("Could not allocate parse buffer");
1246 assert(buffer != NULL);
1247 memcpy(buffer, text, parse_len);
1248 if (XML_ParseBuffer(g_parser, parse_len, XML_TRUE) == XML_STATUS_ERROR)
1249 xml_failure(g_parser);
1250 }
1251 END_TEST
1252
1253 /*
1254 * Element event tests.
1255 */
1256
1257 static void XMLCALL
start_element_event_handler(void * userData,const XML_Char * name,const XML_Char ** atts)1258 start_element_event_handler(void *userData, const XML_Char *name,
1259 const XML_Char **atts) {
1260 UNUSED_P(atts);
1261 CharData_AppendXMLChars((CharData *)userData, name, -1);
1262 }
1263
1264 static void XMLCALL
end_element_event_handler(void * userData,const XML_Char * name)1265 end_element_event_handler(void *userData, const XML_Char *name) {
1266 CharData *storage = (CharData *)userData;
1267 CharData_AppendXMLChars(storage, XCS("/"), 1);
1268 CharData_AppendXMLChars(storage, name, -1);
1269 }
1270
START_TEST(test_end_element_events)1271 START_TEST(test_end_element_events) {
1272 const char *text = "<a><b><c/></b><d><f/></d></a>";
1273 const XML_Char *expected = XCS("/c/b/f/d/a");
1274 CharData storage;
1275
1276 CharData_Init(&storage);
1277 XML_SetUserData(g_parser, &storage);
1278 XML_SetEndElementHandler(g_parser, end_element_event_handler);
1279 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
1280 == XML_STATUS_ERROR)
1281 xml_failure(g_parser);
1282 CharData_CheckXMLChars(&storage, expected);
1283 }
1284 END_TEST
1285
1286 /*
1287 * Attribute tests.
1288 */
1289
1290 /* Helpers used by the following test; this checks any "attr" and "refs"
1291 attributes to make sure whitespace has been normalized.
1292
1293 Return true if whitespace has been normalized in a string, using
1294 the rules for attribute value normalization. The 'is_cdata' flag
1295 is needed since CDATA attributes don't need to have multiple
1296 whitespace characters collapsed to a single space, while other
1297 attribute data types do. (Section 3.3.3 of the recommendation.)
1298 */
1299 static int
is_whitespace_normalized(const XML_Char * s,int is_cdata)1300 is_whitespace_normalized(const XML_Char *s, int is_cdata) {
1301 int blanks = 0;
1302 int at_start = 1;
1303 while (*s) {
1304 if (*s == XCS(' '))
1305 ++blanks;
1306 else if (*s == XCS('\t') || *s == XCS('\n') || *s == XCS('\r'))
1307 return 0;
1308 else {
1309 if (at_start) {
1310 at_start = 0;
1311 if (blanks && ! is_cdata)
1312 /* illegal leading blanks */
1313 return 0;
1314 } else if (blanks > 1 && ! is_cdata)
1315 return 0;
1316 blanks = 0;
1317 }
1318 ++s;
1319 }
1320 if (blanks && ! is_cdata)
1321 return 0;
1322 return 1;
1323 }
1324
1325 /* Check the attribute whitespace checker: */
1326 static void
testhelper_is_whitespace_normalized(void)1327 testhelper_is_whitespace_normalized(void) {
1328 assert(is_whitespace_normalized(XCS("abc"), 0));
1329 assert(is_whitespace_normalized(XCS("abc"), 1));
1330 assert(is_whitespace_normalized(XCS("abc def ghi"), 0));
1331 assert(is_whitespace_normalized(XCS("abc def ghi"), 1));
1332 assert(! is_whitespace_normalized(XCS(" abc def ghi"), 0));
1333 assert(is_whitespace_normalized(XCS(" abc def ghi"), 1));
1334 assert(! is_whitespace_normalized(XCS("abc def ghi"), 0));
1335 assert(is_whitespace_normalized(XCS("abc def ghi"), 1));
1336 assert(! is_whitespace_normalized(XCS("abc def ghi "), 0));
1337 assert(is_whitespace_normalized(XCS("abc def ghi "), 1));
1338 assert(! is_whitespace_normalized(XCS(" "), 0));
1339 assert(is_whitespace_normalized(XCS(" "), 1));
1340 assert(! is_whitespace_normalized(XCS("\t"), 0));
1341 assert(! is_whitespace_normalized(XCS("\t"), 1));
1342 assert(! is_whitespace_normalized(XCS("\n"), 0));
1343 assert(! is_whitespace_normalized(XCS("\n"), 1));
1344 assert(! is_whitespace_normalized(XCS("\r"), 0));
1345 assert(! is_whitespace_normalized(XCS("\r"), 1));
1346 assert(! is_whitespace_normalized(XCS("abc\t def"), 1));
1347 }
1348
1349 static void XMLCALL
check_attr_contains_normalized_whitespace(void * userData,const XML_Char * name,const XML_Char ** atts)1350 check_attr_contains_normalized_whitespace(void *userData, const XML_Char *name,
1351 const XML_Char **atts) {
1352 int i;
1353 UNUSED_P(userData);
1354 UNUSED_P(name);
1355 for (i = 0; atts[i] != NULL; i += 2) {
1356 const XML_Char *attrname = atts[i];
1357 const XML_Char *value = atts[i + 1];
1358 if (xcstrcmp(XCS("attr"), attrname) == 0
1359 || xcstrcmp(XCS("ents"), attrname) == 0
1360 || xcstrcmp(XCS("refs"), attrname) == 0) {
1361 if (! is_whitespace_normalized(value, 0)) {
1362 char buffer[256];
1363 sprintf(buffer,
1364 "attribute value not normalized: %" XML_FMT_STR
1365 "='%" XML_FMT_STR "'",
1366 attrname, value);
1367 fail(buffer);
1368 }
1369 }
1370 }
1371 }
1372
START_TEST(test_attr_whitespace_normalization)1373 START_TEST(test_attr_whitespace_normalization) {
1374 const char *text
1375 = "<!DOCTYPE doc [\n"
1376 " <!ATTLIST doc\n"
1377 " attr NMTOKENS #REQUIRED\n"
1378 " ents ENTITIES #REQUIRED\n"
1379 " refs IDREFS #REQUIRED>\n"
1380 "]>\n"
1381 "<doc attr=' a b c\t\td\te\t' refs=' id-1 \t id-2\t\t' \n"
1382 " ents=' ent-1 \t\r\n"
1383 " ent-2 ' >\n"
1384 " <e id='id-1'/>\n"
1385 " <e id='id-2'/>\n"
1386 "</doc>";
1387
1388 XML_SetStartElementHandler(g_parser,
1389 check_attr_contains_normalized_whitespace);
1390 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
1391 == XML_STATUS_ERROR)
1392 xml_failure(g_parser);
1393 }
1394 END_TEST
1395
1396 /*
1397 * XML declaration tests.
1398 */
1399
START_TEST(test_xmldecl_misplaced)1400 START_TEST(test_xmldecl_misplaced) {
1401 expect_failure("\n"
1402 "<?xml version='1.0'?>\n"
1403 "<a/>",
1404 XML_ERROR_MISPLACED_XML_PI,
1405 "failed to report misplaced XML declaration");
1406 }
1407 END_TEST
1408
START_TEST(test_xmldecl_invalid)1409 START_TEST(test_xmldecl_invalid) {
1410 expect_failure("<?xml version='1.0' \xc3\xa7?>\n<doc/>", XML_ERROR_XML_DECL,
1411 "Failed to report invalid XML declaration");
1412 }
1413 END_TEST
1414
START_TEST(test_xmldecl_missing_attr)1415 START_TEST(test_xmldecl_missing_attr) {
1416 expect_failure("<?xml ='1.0'?>\n<doc/>\n", XML_ERROR_XML_DECL,
1417 "Failed to report missing XML declaration attribute");
1418 }
1419 END_TEST
1420
START_TEST(test_xmldecl_missing_value)1421 START_TEST(test_xmldecl_missing_value) {
1422 expect_failure("<?xml version='1.0' encoding='us-ascii' standalone?>\n"
1423 "<doc/>",
1424 XML_ERROR_XML_DECL,
1425 "Failed to report missing attribute value");
1426 }
1427 END_TEST
1428
1429 /* Regression test for SF bug #584832. */
1430 static int XMLCALL
UnknownEncodingHandler(void * data,const XML_Char * encoding,XML_Encoding * info)1431 UnknownEncodingHandler(void *data, const XML_Char *encoding,
1432 XML_Encoding *info) {
1433 UNUSED_P(data);
1434 if (xcstrcmp(encoding, XCS("unsupported-encoding")) == 0) {
1435 int i;
1436 for (i = 0; i < 256; ++i)
1437 info->map[i] = i;
1438 info->data = NULL;
1439 info->convert = NULL;
1440 info->release = NULL;
1441 return XML_STATUS_OK;
1442 }
1443 return XML_STATUS_ERROR;
1444 }
1445
START_TEST(test_unknown_encoding_internal_entity)1446 START_TEST(test_unknown_encoding_internal_entity) {
1447 const char *text = "<?xml version='1.0' encoding='unsupported-encoding'?>\n"
1448 "<!DOCTYPE test [<!ENTITY foo 'bar'>]>\n"
1449 "<test a='&foo;'/>";
1450
1451 XML_SetUnknownEncodingHandler(g_parser, UnknownEncodingHandler, NULL);
1452 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
1453 == XML_STATUS_ERROR)
1454 xml_failure(g_parser);
1455 }
1456 END_TEST
1457
1458 /* Test unrecognised encoding handler */
1459 static void
dummy_release(void * data)1460 dummy_release(void *data) {
1461 UNUSED_P(data);
1462 }
1463
1464 static int XMLCALL
UnrecognisedEncodingHandler(void * data,const XML_Char * encoding,XML_Encoding * info)1465 UnrecognisedEncodingHandler(void *data, const XML_Char *encoding,
1466 XML_Encoding *info) {
1467 UNUSED_P(data);
1468 UNUSED_P(encoding);
1469 info->data = NULL;
1470 info->convert = NULL;
1471 info->release = dummy_release;
1472 return XML_STATUS_ERROR;
1473 }
1474
START_TEST(test_unrecognised_encoding_internal_entity)1475 START_TEST(test_unrecognised_encoding_internal_entity) {
1476 const char *text = "<?xml version='1.0' encoding='unsupported-encoding'?>\n"
1477 "<!DOCTYPE test [<!ENTITY foo 'bar'>]>\n"
1478 "<test a='&foo;'/>";
1479
1480 XML_SetUnknownEncodingHandler(g_parser, UnrecognisedEncodingHandler, NULL);
1481 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
1482 != XML_STATUS_ERROR)
1483 fail("Unrecognised encoding not rejected");
1484 }
1485 END_TEST
1486
1487 /* Regression test for SF bug #620106. */
1488 static int XMLCALL
external_entity_loader(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)1489 external_entity_loader(XML_Parser parser, const XML_Char *context,
1490 const XML_Char *base, const XML_Char *systemId,
1491 const XML_Char *publicId) {
1492 ExtTest *test_data = (ExtTest *)XML_GetUserData(parser);
1493 XML_Parser extparser;
1494
1495 UNUSED_P(base);
1496 UNUSED_P(systemId);
1497 UNUSED_P(publicId);
1498 extparser = XML_ExternalEntityParserCreate(parser, context, NULL);
1499 if (extparser == NULL)
1500 fail("Could not create external entity parser.");
1501 if (test_data->encoding != NULL) {
1502 if (! XML_SetEncoding(extparser, test_data->encoding))
1503 fail("XML_SetEncoding() ignored for external entity");
1504 }
1505 if (_XML_Parse_SINGLE_BYTES(extparser, test_data->parse_text,
1506 (int)strlen(test_data->parse_text), XML_TRUE)
1507 == XML_STATUS_ERROR) {
1508 xml_failure(extparser);
1509 return XML_STATUS_ERROR;
1510 }
1511 XML_ParserFree(extparser);
1512 return XML_STATUS_OK;
1513 }
1514
START_TEST(test_ext_entity_set_encoding)1515 START_TEST(test_ext_entity_set_encoding) {
1516 const char *text = "<!DOCTYPE doc [\n"
1517 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
1518 "]>\n"
1519 "<doc>&en;</doc>";
1520 ExtTest test_data
1521 = {/* This text says it's an unsupported encoding, but it's really
1522 UTF-8, which we tell Expat using XML_SetEncoding().
1523 */
1524 "<?xml encoding='iso-8859-3'?>\xC3\xA9", XCS("utf-8"), NULL};
1525 #ifdef XML_UNICODE
1526 const XML_Char *expected = XCS("\x00e9");
1527 #else
1528 const XML_Char *expected = XCS("\xc3\xa9");
1529 #endif
1530
1531 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader);
1532 run_ext_character_check(text, &test_data, expected);
1533 }
1534 END_TEST
1535
1536 /* Test external entities with no handler */
START_TEST(test_ext_entity_no_handler)1537 START_TEST(test_ext_entity_no_handler) {
1538 const char *text = "<!DOCTYPE doc [\n"
1539 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
1540 "]>\n"
1541 "<doc>&en;</doc>";
1542
1543 XML_SetDefaultHandler(g_parser, dummy_default_handler);
1544 run_character_check(text, XCS(""));
1545 }
1546 END_TEST
1547
1548 /* Test UTF-8 BOM is accepted */
START_TEST(test_ext_entity_set_bom)1549 START_TEST(test_ext_entity_set_bom) {
1550 const char *text = "<!DOCTYPE doc [\n"
1551 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
1552 "]>\n"
1553 "<doc>&en;</doc>";
1554 ExtTest test_data = {"\xEF\xBB\xBF" /* BOM */
1555 "<?xml encoding='iso-8859-3'?>"
1556 "\xC3\xA9",
1557 XCS("utf-8"), NULL};
1558 #ifdef XML_UNICODE
1559 const XML_Char *expected = XCS("\x00e9");
1560 #else
1561 const XML_Char *expected = XCS("\xc3\xa9");
1562 #endif
1563
1564 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader);
1565 run_ext_character_check(text, &test_data, expected);
1566 }
1567 END_TEST
1568
1569 /* Test that bad encodings are faulted */
1570 typedef struct ext_faults {
1571 const char *parse_text;
1572 const char *fail_text;
1573 const XML_Char *encoding;
1574 enum XML_Error error;
1575 } ExtFaults;
1576
1577 static int XMLCALL
external_entity_faulter(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)1578 external_entity_faulter(XML_Parser parser, const XML_Char *context,
1579 const XML_Char *base, const XML_Char *systemId,
1580 const XML_Char *publicId) {
1581 XML_Parser ext_parser;
1582 ExtFaults *fault = (ExtFaults *)XML_GetUserData(parser);
1583
1584 UNUSED_P(base);
1585 UNUSED_P(systemId);
1586 UNUSED_P(publicId);
1587 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
1588 if (ext_parser == NULL)
1589 fail("Could not create external entity parser");
1590 if (fault->encoding != NULL) {
1591 if (! XML_SetEncoding(ext_parser, fault->encoding))
1592 fail("XML_SetEncoding failed");
1593 }
1594 if (_XML_Parse_SINGLE_BYTES(ext_parser, fault->parse_text,
1595 (int)strlen(fault->parse_text), XML_TRUE)
1596 != XML_STATUS_ERROR)
1597 fail(fault->fail_text);
1598 if (XML_GetErrorCode(ext_parser) != fault->error)
1599 xml_failure(ext_parser);
1600
1601 XML_ParserFree(ext_parser);
1602 return XML_STATUS_ERROR;
1603 }
1604
START_TEST(test_ext_entity_bad_encoding)1605 START_TEST(test_ext_entity_bad_encoding) {
1606 const char *text = "<!DOCTYPE doc [\n"
1607 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
1608 "]>\n"
1609 "<doc>&en;</doc>";
1610 ExtFaults fault
1611 = {"<?xml encoding='iso-8859-3'?>u", "Unsupported encoding not faulted",
1612 XCS("unknown"), XML_ERROR_UNKNOWN_ENCODING};
1613
1614 XML_SetExternalEntityRefHandler(g_parser, external_entity_faulter);
1615 XML_SetUserData(g_parser, &fault);
1616 expect_failure(text, XML_ERROR_EXTERNAL_ENTITY_HANDLING,
1617 "Bad encoding should not have been accepted");
1618 }
1619 END_TEST
1620
1621 /* Try handing an invalid encoding to an external entity parser */
START_TEST(test_ext_entity_bad_encoding_2)1622 START_TEST(test_ext_entity_bad_encoding_2) {
1623 const char *text = "<?xml version='1.0' encoding='us-ascii'?>\n"
1624 "<!DOCTYPE doc SYSTEM 'foo'>\n"
1625 "<doc>&entity;</doc>";
1626 ExtFaults fault
1627 = {"<!ELEMENT doc (#PCDATA)*>", "Unknown encoding not faulted",
1628 XCS("unknown-encoding"), XML_ERROR_UNKNOWN_ENCODING};
1629
1630 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
1631 XML_SetExternalEntityRefHandler(g_parser, external_entity_faulter);
1632 XML_SetUserData(g_parser, &fault);
1633 expect_failure(text, XML_ERROR_EXTERNAL_ENTITY_HANDLING,
1634 "Bad encoding not faulted in external entity handler");
1635 }
1636 END_TEST
1637
1638 /* Test that no error is reported for unknown entities if we don't
1639 read an external subset. This was fixed in Expat 1.95.5.
1640 */
START_TEST(test_wfc_undeclared_entity_unread_external_subset)1641 START_TEST(test_wfc_undeclared_entity_unread_external_subset) {
1642 const char *text = "<!DOCTYPE doc SYSTEM 'foo'>\n"
1643 "<doc>&entity;</doc>";
1644
1645 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
1646 == XML_STATUS_ERROR)
1647 xml_failure(g_parser);
1648 }
1649 END_TEST
1650
1651 /* Test that an error is reported for unknown entities if we don't
1652 have an external subset.
1653 */
START_TEST(test_wfc_undeclared_entity_no_external_subset)1654 START_TEST(test_wfc_undeclared_entity_no_external_subset) {
1655 expect_failure("<doc>&entity;</doc>", XML_ERROR_UNDEFINED_ENTITY,
1656 "Parser did not report undefined entity w/out a DTD.");
1657 }
1658 END_TEST
1659
1660 /* Test that an error is reported for unknown entities if we don't
1661 read an external subset, but have been declared standalone.
1662 */
START_TEST(test_wfc_undeclared_entity_standalone)1663 START_TEST(test_wfc_undeclared_entity_standalone) {
1664 const char *text
1665 = "<?xml version='1.0' encoding='us-ascii' standalone='yes'?>\n"
1666 "<!DOCTYPE doc SYSTEM 'foo'>\n"
1667 "<doc>&entity;</doc>";
1668
1669 expect_failure(text, XML_ERROR_UNDEFINED_ENTITY,
1670 "Parser did not report undefined entity (standalone).");
1671 }
1672 END_TEST
1673
1674 /* Test that an error is reported for unknown entities if we have read
1675 an external subset, and standalone is true.
1676 */
START_TEST(test_wfc_undeclared_entity_with_external_subset_standalone)1677 START_TEST(test_wfc_undeclared_entity_with_external_subset_standalone) {
1678 const char *text
1679 = "<?xml version='1.0' encoding='us-ascii' standalone='yes'?>\n"
1680 "<!DOCTYPE doc SYSTEM 'foo'>\n"
1681 "<doc>&entity;</doc>";
1682 ExtTest test_data = {"<!ELEMENT doc (#PCDATA)*>", NULL, NULL};
1683
1684 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
1685 XML_SetUserData(g_parser, &test_data);
1686 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader);
1687 expect_failure(text, XML_ERROR_UNDEFINED_ENTITY,
1688 "Parser did not report undefined entity (external DTD).");
1689 }
1690 END_TEST
1691
1692 /* Test that external entity handling is not done if the parsing flag
1693 * is set to UNLESS_STANDALONE
1694 */
START_TEST(test_entity_with_external_subset_unless_standalone)1695 START_TEST(test_entity_with_external_subset_unless_standalone) {
1696 const char *text
1697 = "<?xml version='1.0' encoding='us-ascii' standalone='yes'?>\n"
1698 "<!DOCTYPE doc SYSTEM 'foo'>\n"
1699 "<doc>&entity;</doc>";
1700 ExtTest test_data = {"<!ENTITY entity 'bar'>", NULL, NULL};
1701
1702 XML_SetParamEntityParsing(g_parser,
1703 XML_PARAM_ENTITY_PARSING_UNLESS_STANDALONE);
1704 XML_SetUserData(g_parser, &test_data);
1705 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader);
1706 expect_failure(text, XML_ERROR_UNDEFINED_ENTITY,
1707 "Parser did not report undefined entity");
1708 }
1709 END_TEST
1710
1711 /* Test that no error is reported for unknown entities if we have read
1712 an external subset, and standalone is false.
1713 */
START_TEST(test_wfc_undeclared_entity_with_external_subset)1714 START_TEST(test_wfc_undeclared_entity_with_external_subset) {
1715 const char *text = "<?xml version='1.0' encoding='us-ascii'?>\n"
1716 "<!DOCTYPE doc SYSTEM 'foo'>\n"
1717 "<doc>&entity;</doc>";
1718 ExtTest test_data = {"<!ELEMENT doc (#PCDATA)*>", NULL, NULL};
1719
1720 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
1721 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader);
1722 run_ext_character_check(text, &test_data, XCS(""));
1723 }
1724 END_TEST
1725
1726 /* Test that an error is reported if our NotStandalone handler fails */
1727 static int XMLCALL
reject_not_standalone_handler(void * userData)1728 reject_not_standalone_handler(void *userData) {
1729 UNUSED_P(userData);
1730 return XML_STATUS_ERROR;
1731 }
1732
START_TEST(test_not_standalone_handler_reject)1733 START_TEST(test_not_standalone_handler_reject) {
1734 const char *text = "<?xml version='1.0' encoding='us-ascii'?>\n"
1735 "<!DOCTYPE doc SYSTEM 'foo'>\n"
1736 "<doc>&entity;</doc>";
1737 ExtTest test_data = {"<!ELEMENT doc (#PCDATA)*>", NULL, NULL};
1738
1739 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
1740 XML_SetUserData(g_parser, &test_data);
1741 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader);
1742 XML_SetNotStandaloneHandler(g_parser, reject_not_standalone_handler);
1743 expect_failure(text, XML_ERROR_NOT_STANDALONE,
1744 "NotStandalone handler failed to reject");
1745
1746 /* Try again but without external entity handling */
1747 XML_ParserReset(g_parser, NULL);
1748 XML_SetNotStandaloneHandler(g_parser, reject_not_standalone_handler);
1749 expect_failure(text, XML_ERROR_NOT_STANDALONE,
1750 "NotStandalone handler failed to reject");
1751 }
1752 END_TEST
1753
1754 /* Test that no error is reported if our NotStandalone handler succeeds */
1755 static int XMLCALL
accept_not_standalone_handler(void * userData)1756 accept_not_standalone_handler(void *userData) {
1757 UNUSED_P(userData);
1758 return XML_STATUS_OK;
1759 }
1760
START_TEST(test_not_standalone_handler_accept)1761 START_TEST(test_not_standalone_handler_accept) {
1762 const char *text = "<?xml version='1.0' encoding='us-ascii'?>\n"
1763 "<!DOCTYPE doc SYSTEM 'foo'>\n"
1764 "<doc>&entity;</doc>";
1765 ExtTest test_data = {"<!ELEMENT doc (#PCDATA)*>", NULL, NULL};
1766
1767 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
1768 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader);
1769 XML_SetNotStandaloneHandler(g_parser, accept_not_standalone_handler);
1770 run_ext_character_check(text, &test_data, XCS(""));
1771
1772 /* Repeat without the external entity handler */
1773 XML_ParserReset(g_parser, NULL);
1774 XML_SetNotStandaloneHandler(g_parser, accept_not_standalone_handler);
1775 run_character_check(text, XCS(""));
1776 }
1777 END_TEST
1778
START_TEST(test_wfc_no_recursive_entity_refs)1779 START_TEST(test_wfc_no_recursive_entity_refs) {
1780 const char *text = "<!DOCTYPE doc [\n"
1781 " <!ENTITY entity '&entity;'>\n"
1782 "]>\n"
1783 "<doc>&entity;</doc>";
1784
1785 expect_failure(text, XML_ERROR_RECURSIVE_ENTITY_REF,
1786 "Parser did not report recursive entity reference.");
1787 }
1788 END_TEST
1789
1790 /* Test incomplete external entities are faulted */
START_TEST(test_ext_entity_invalid_parse)1791 START_TEST(test_ext_entity_invalid_parse) {
1792 const char *text = "<!DOCTYPE doc [\n"
1793 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
1794 "]>\n"
1795 "<doc>&en;</doc>";
1796 const ExtFaults faults[]
1797 = {{"<", "Incomplete element declaration not faulted", NULL,
1798 XML_ERROR_UNCLOSED_TOKEN},
1799 {"<\xe2\x82", /* First two bytes of a three-byte char */
1800 "Incomplete character not faulted", NULL, XML_ERROR_PARTIAL_CHAR},
1801 {"<tag>\xe2\x82", "Incomplete character in CDATA not faulted", NULL,
1802 XML_ERROR_PARTIAL_CHAR},
1803 {NULL, NULL, NULL, XML_ERROR_NONE}};
1804 const ExtFaults *fault = faults;
1805
1806 for (; fault->parse_text != NULL; fault++) {
1807 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
1808 XML_SetExternalEntityRefHandler(g_parser, external_entity_faulter);
1809 XML_SetUserData(g_parser, (void *)fault);
1810 expect_failure(text, XML_ERROR_EXTERNAL_ENTITY_HANDLING,
1811 "Parser did not report external entity error");
1812 XML_ParserReset(g_parser, NULL);
1813 }
1814 }
1815 END_TEST
1816
1817 /* Regression test for SF bug #483514. */
START_TEST(test_dtd_default_handling)1818 START_TEST(test_dtd_default_handling) {
1819 const char *text = "<!DOCTYPE doc [\n"
1820 "<!ENTITY e SYSTEM 'http://example.org/e'>\n"
1821 "<!NOTATION n SYSTEM 'http://example.org/n'>\n"
1822 "<!ELEMENT doc EMPTY>\n"
1823 "<!ATTLIST doc a CDATA #IMPLIED>\n"
1824 "<?pi in dtd?>\n"
1825 "<!--comment in dtd-->\n"
1826 "]><doc/>";
1827
1828 XML_SetDefaultHandler(g_parser, accumulate_characters);
1829 XML_SetStartDoctypeDeclHandler(g_parser, dummy_start_doctype_handler);
1830 XML_SetEndDoctypeDeclHandler(g_parser, dummy_end_doctype_handler);
1831 XML_SetEntityDeclHandler(g_parser, dummy_entity_decl_handler);
1832 XML_SetNotationDeclHandler(g_parser, dummy_notation_decl_handler);
1833 XML_SetElementDeclHandler(g_parser, dummy_element_decl_handler);
1834 XML_SetAttlistDeclHandler(g_parser, dummy_attlist_decl_handler);
1835 XML_SetProcessingInstructionHandler(g_parser, dummy_pi_handler);
1836 XML_SetCommentHandler(g_parser, dummy_comment_handler);
1837 XML_SetStartCdataSectionHandler(g_parser, dummy_start_cdata_handler);
1838 XML_SetEndCdataSectionHandler(g_parser, dummy_end_cdata_handler);
1839 run_character_check(text, XCS("\n\n\n\n\n\n\n<doc/>"));
1840 }
1841 END_TEST
1842
1843 /* Test handling of attribute declarations */
1844 typedef struct AttTest {
1845 const char *definition;
1846 const XML_Char *element_name;
1847 const XML_Char *attr_name;
1848 const XML_Char *attr_type;
1849 const XML_Char *default_value;
1850 int is_required;
1851 } AttTest;
1852
1853 static void XMLCALL
verify_attlist_decl_handler(void * userData,const XML_Char * element_name,const XML_Char * attr_name,const XML_Char * attr_type,const XML_Char * default_value,int is_required)1854 verify_attlist_decl_handler(void *userData, const XML_Char *element_name,
1855 const XML_Char *attr_name,
1856 const XML_Char *attr_type,
1857 const XML_Char *default_value, int is_required) {
1858 AttTest *at = (AttTest *)userData;
1859
1860 if (xcstrcmp(element_name, at->element_name))
1861 fail("Unexpected element name in attribute declaration");
1862 if (xcstrcmp(attr_name, at->attr_name))
1863 fail("Unexpected attribute name in attribute declaration");
1864 if (xcstrcmp(attr_type, at->attr_type))
1865 fail("Unexpected attribute type in attribute declaration");
1866 if ((default_value == NULL && at->default_value != NULL)
1867 || (default_value != NULL && at->default_value == NULL)
1868 || (default_value != NULL && xcstrcmp(default_value, at->default_value)))
1869 fail("Unexpected default value in attribute declaration");
1870 if (is_required != at->is_required)
1871 fail("Requirement mismatch in attribute declaration");
1872 }
1873
START_TEST(test_dtd_attr_handling)1874 START_TEST(test_dtd_attr_handling) {
1875 const char *prolog = "<!DOCTYPE doc [\n"
1876 "<!ELEMENT doc EMPTY>\n";
1877 AttTest attr_data[]
1878 = {{"<!ATTLIST doc a ( one | two | three ) #REQUIRED>\n"
1879 "]>"
1880 "<doc a='two'/>",
1881 XCS("doc"), XCS("a"),
1882 XCS("(one|two|three)"), /* Extraneous spaces will be removed */
1883 NULL, XML_TRUE},
1884 {"<!NOTATION foo SYSTEM 'http://example.org/foo'>\n"
1885 "<!ATTLIST doc a NOTATION (foo) #IMPLIED>\n"
1886 "]>"
1887 "<doc/>",
1888 XCS("doc"), XCS("a"), XCS("NOTATION(foo)"), NULL, XML_FALSE},
1889 {"<!ATTLIST doc a NOTATION (foo) 'bar'>\n"
1890 "]>"
1891 "<doc/>",
1892 XCS("doc"), XCS("a"), XCS("NOTATION(foo)"), XCS("bar"), XML_FALSE},
1893 {"<!ATTLIST doc a CDATA '\xdb\xb2'>\n"
1894 "]>"
1895 "<doc/>",
1896 XCS("doc"), XCS("a"), XCS("CDATA"),
1897 #ifdef XML_UNICODE
1898 XCS("\x06f2"),
1899 #else
1900 XCS("\xdb\xb2"),
1901 #endif
1902 XML_FALSE},
1903 {NULL, NULL, NULL, NULL, NULL, XML_FALSE}};
1904 AttTest *test;
1905
1906 for (test = attr_data; test->definition != NULL; test++) {
1907 XML_SetAttlistDeclHandler(g_parser, verify_attlist_decl_handler);
1908 XML_SetUserData(g_parser, test);
1909 if (_XML_Parse_SINGLE_BYTES(g_parser, prolog, (int)strlen(prolog),
1910 XML_FALSE)
1911 == XML_STATUS_ERROR)
1912 xml_failure(g_parser);
1913 if (_XML_Parse_SINGLE_BYTES(g_parser, test->definition,
1914 (int)strlen(test->definition), XML_TRUE)
1915 == XML_STATUS_ERROR)
1916 xml_failure(g_parser);
1917 XML_ParserReset(g_parser, NULL);
1918 }
1919 }
1920 END_TEST
1921
1922 /* See related SF bug #673791.
1923 When namespace processing is enabled, setting the namespace URI for
1924 a prefix is not allowed; this test ensures that it *is* allowed
1925 when namespace processing is not enabled.
1926 (See Namespaces in XML, section 2.)
1927 */
START_TEST(test_empty_ns_without_namespaces)1928 START_TEST(test_empty_ns_without_namespaces) {
1929 const char *text = "<doc xmlns:prefix='http://example.org/'>\n"
1930 " <e xmlns:prefix=''/>\n"
1931 "</doc>";
1932
1933 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
1934 == XML_STATUS_ERROR)
1935 xml_failure(g_parser);
1936 }
1937 END_TEST
1938
1939 /* Regression test for SF bug #824420.
1940 Checks that an xmlns:prefix attribute set in an attribute's default
1941 value isn't misinterpreted.
1942 */
START_TEST(test_ns_in_attribute_default_without_namespaces)1943 START_TEST(test_ns_in_attribute_default_without_namespaces) {
1944 const char *text = "<!DOCTYPE e:element [\n"
1945 " <!ATTLIST e:element\n"
1946 " xmlns:e CDATA 'http://example.org/'>\n"
1947 " ]>\n"
1948 "<e:element/>";
1949
1950 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
1951 == XML_STATUS_ERROR)
1952 xml_failure(g_parser);
1953 }
1954 END_TEST
1955
1956 static const char *long_character_data_text
1957 = "<?xml version='1.0' encoding='iso-8859-1'?><s>"
1958 "012345678901234567890123456789012345678901234567890123456789"
1959 "012345678901234567890123456789012345678901234567890123456789"
1960 "012345678901234567890123456789012345678901234567890123456789"
1961 "012345678901234567890123456789012345678901234567890123456789"
1962 "012345678901234567890123456789012345678901234567890123456789"
1963 "012345678901234567890123456789012345678901234567890123456789"
1964 "012345678901234567890123456789012345678901234567890123456789"
1965 "012345678901234567890123456789012345678901234567890123456789"
1966 "012345678901234567890123456789012345678901234567890123456789"
1967 "012345678901234567890123456789012345678901234567890123456789"
1968 "012345678901234567890123456789012345678901234567890123456789"
1969 "012345678901234567890123456789012345678901234567890123456789"
1970 "012345678901234567890123456789012345678901234567890123456789"
1971 "012345678901234567890123456789012345678901234567890123456789"
1972 "012345678901234567890123456789012345678901234567890123456789"
1973 "012345678901234567890123456789012345678901234567890123456789"
1974 "012345678901234567890123456789012345678901234567890123456789"
1975 "012345678901234567890123456789012345678901234567890123456789"
1976 "012345678901234567890123456789012345678901234567890123456789"
1977 "012345678901234567890123456789012345678901234567890123456789"
1978 "</s>";
1979
1980 static XML_Bool resumable = XML_FALSE;
1981
1982 static void
clearing_aborting_character_handler(void * userData,const XML_Char * s,int len)1983 clearing_aborting_character_handler(void *userData, const XML_Char *s,
1984 int len) {
1985 UNUSED_P(userData);
1986 UNUSED_P(s);
1987 UNUSED_P(len);
1988 XML_StopParser(g_parser, resumable);
1989 XML_SetCharacterDataHandler(g_parser, NULL);
1990 }
1991
1992 /* Regression test for SF bug #1515266: missing check of stopped
1993 parser in doContext() 'for' loop. */
START_TEST(test_stop_parser_between_char_data_calls)1994 START_TEST(test_stop_parser_between_char_data_calls) {
1995 /* The sample data must be big enough that there are two calls to
1996 the character data handler from within the inner "for" loop of
1997 the XML_TOK_DATA_CHARS case in doContent(), and the character
1998 handler must stop the parser and clear the character data
1999 handler.
2000 */
2001 const char *text = long_character_data_text;
2002
2003 XML_SetCharacterDataHandler(g_parser, clearing_aborting_character_handler);
2004 resumable = XML_FALSE;
2005 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
2006 != XML_STATUS_ERROR)
2007 xml_failure(g_parser);
2008 if (XML_GetErrorCode(g_parser) != XML_ERROR_ABORTED)
2009 xml_failure(g_parser);
2010 }
2011 END_TEST
2012
2013 /* Regression test for SF bug #1515266: missing check of stopped
2014 parser in doContext() 'for' loop. */
START_TEST(test_suspend_parser_between_char_data_calls)2015 START_TEST(test_suspend_parser_between_char_data_calls) {
2016 /* The sample data must be big enough that there are two calls to
2017 the character data handler from within the inner "for" loop of
2018 the XML_TOK_DATA_CHARS case in doContent(), and the character
2019 handler must stop the parser and clear the character data
2020 handler.
2021 */
2022 const char *text = long_character_data_text;
2023
2024 XML_SetCharacterDataHandler(g_parser, clearing_aborting_character_handler);
2025 resumable = XML_TRUE;
2026 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
2027 != XML_STATUS_SUSPENDED)
2028 xml_failure(g_parser);
2029 if (XML_GetErrorCode(g_parser) != XML_ERROR_NONE)
2030 xml_failure(g_parser);
2031 /* Try parsing directly */
2032 if (XML_Parse(g_parser, text, (int)strlen(text), XML_TRUE)
2033 != XML_STATUS_ERROR)
2034 fail("Attempt to continue parse while suspended not faulted");
2035 if (XML_GetErrorCode(g_parser) != XML_ERROR_SUSPENDED)
2036 fail("Suspended parse not faulted with correct error");
2037 }
2038 END_TEST
2039
2040 static XML_Bool abortable = XML_FALSE;
2041
2042 static void
parser_stop_character_handler(void * userData,const XML_Char * s,int len)2043 parser_stop_character_handler(void *userData, const XML_Char *s, int len) {
2044 UNUSED_P(userData);
2045 UNUSED_P(s);
2046 UNUSED_P(len);
2047 XML_StopParser(g_parser, resumable);
2048 XML_SetCharacterDataHandler(g_parser, NULL);
2049 if (! resumable) {
2050 /* Check that aborting an aborted parser is faulted */
2051 if (XML_StopParser(g_parser, XML_FALSE) != XML_STATUS_ERROR)
2052 fail("Aborting aborted parser not faulted");
2053 if (XML_GetErrorCode(g_parser) != XML_ERROR_FINISHED)
2054 xml_failure(g_parser);
2055 } else if (abortable) {
2056 /* Check that aborting a suspended parser works */
2057 if (XML_StopParser(g_parser, XML_FALSE) == XML_STATUS_ERROR)
2058 xml_failure(g_parser);
2059 } else {
2060 /* Check that suspending a suspended parser works */
2061 if (XML_StopParser(g_parser, XML_TRUE) != XML_STATUS_ERROR)
2062 fail("Suspending suspended parser not faulted");
2063 if (XML_GetErrorCode(g_parser) != XML_ERROR_SUSPENDED)
2064 xml_failure(g_parser);
2065 }
2066 }
2067
2068 /* Test repeated calls to XML_StopParser are handled correctly */
START_TEST(test_repeated_stop_parser_between_char_data_calls)2069 START_TEST(test_repeated_stop_parser_between_char_data_calls) {
2070 const char *text = long_character_data_text;
2071
2072 XML_SetCharacterDataHandler(g_parser, parser_stop_character_handler);
2073 resumable = XML_FALSE;
2074 abortable = XML_FALSE;
2075 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
2076 != XML_STATUS_ERROR)
2077 fail("Failed to double-stop parser");
2078
2079 XML_ParserReset(g_parser, NULL);
2080 XML_SetCharacterDataHandler(g_parser, parser_stop_character_handler);
2081 resumable = XML_TRUE;
2082 abortable = XML_FALSE;
2083 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
2084 != XML_STATUS_SUSPENDED)
2085 fail("Failed to double-suspend parser");
2086
2087 XML_ParserReset(g_parser, NULL);
2088 XML_SetCharacterDataHandler(g_parser, parser_stop_character_handler);
2089 resumable = XML_TRUE;
2090 abortable = XML_TRUE;
2091 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
2092 != XML_STATUS_ERROR)
2093 fail("Failed to suspend-abort parser");
2094 }
2095 END_TEST
2096
START_TEST(test_good_cdata_ascii)2097 START_TEST(test_good_cdata_ascii) {
2098 const char *text = "<a><![CDATA[<greeting>Hello, world!</greeting>]]></a>";
2099 const XML_Char *expected = XCS("<greeting>Hello, world!</greeting>");
2100
2101 CharData storage;
2102 CharData_Init(&storage);
2103 XML_SetUserData(g_parser, &storage);
2104 XML_SetCharacterDataHandler(g_parser, accumulate_characters);
2105 /* Add start and end handlers for coverage */
2106 XML_SetStartCdataSectionHandler(g_parser, dummy_start_cdata_handler);
2107 XML_SetEndCdataSectionHandler(g_parser, dummy_end_cdata_handler);
2108
2109 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
2110 == XML_STATUS_ERROR)
2111 xml_failure(g_parser);
2112 CharData_CheckXMLChars(&storage, expected);
2113
2114 /* Try again, this time with a default handler */
2115 XML_ParserReset(g_parser, NULL);
2116 CharData_Init(&storage);
2117 XML_SetUserData(g_parser, &storage);
2118 XML_SetCharacterDataHandler(g_parser, accumulate_characters);
2119 XML_SetDefaultHandler(g_parser, dummy_default_handler);
2120
2121 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
2122 == XML_STATUS_ERROR)
2123 xml_failure(g_parser);
2124 CharData_CheckXMLChars(&storage, expected);
2125 }
2126 END_TEST
2127
START_TEST(test_good_cdata_utf16)2128 START_TEST(test_good_cdata_utf16) {
2129 /* Test data is:
2130 * <?xml version='1.0' encoding='utf-16'?>
2131 * <a><![CDATA[hello]]></a>
2132 */
2133 const char text[]
2134 = "\0<\0?\0x\0m\0l\0"
2135 " \0v\0e\0r\0s\0i\0o\0n\0=\0'\0\x31\0.\0\x30\0'\0"
2136 " \0e\0n\0c\0o\0d\0i\0n\0g\0=\0'\0u\0t\0f\0-\0"
2137 "1\0"
2138 "6\0'"
2139 "\0?\0>\0\n"
2140 "\0<\0a\0>\0<\0!\0[\0C\0D\0A\0T\0A\0[\0h\0e\0l\0l\0o\0]\0]\0>\0<\0/\0a\0>";
2141 const XML_Char *expected = XCS("hello");
2142
2143 CharData storage;
2144 CharData_Init(&storage);
2145 XML_SetUserData(g_parser, &storage);
2146 XML_SetCharacterDataHandler(g_parser, accumulate_characters);
2147
2148 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
2149 == XML_STATUS_ERROR)
2150 xml_failure(g_parser);
2151 CharData_CheckXMLChars(&storage, expected);
2152 }
2153 END_TEST
2154
START_TEST(test_good_cdata_utf16_le)2155 START_TEST(test_good_cdata_utf16_le) {
2156 /* Test data is:
2157 * <?xml version='1.0' encoding='utf-16'?>
2158 * <a><![CDATA[hello]]></a>
2159 */
2160 const char text[]
2161 = "<\0?\0x\0m\0l\0"
2162 " \0v\0e\0r\0s\0i\0o\0n\0=\0'\0\x31\0.\0\x30\0'\0"
2163 " \0e\0n\0c\0o\0d\0i\0n\0g\0=\0'\0u\0t\0f\0-\0"
2164 "1\0"
2165 "6\0'"
2166 "\0?\0>\0\n"
2167 "\0<\0a\0>\0<\0!\0[\0C\0D\0A\0T\0A\0[\0h\0e\0l\0l\0o\0]\0]\0>\0<\0/\0a\0>\0";
2168 const XML_Char *expected = XCS("hello");
2169
2170 CharData storage;
2171 CharData_Init(&storage);
2172 XML_SetUserData(g_parser, &storage);
2173 XML_SetCharacterDataHandler(g_parser, accumulate_characters);
2174
2175 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
2176 == XML_STATUS_ERROR)
2177 xml_failure(g_parser);
2178 CharData_CheckXMLChars(&storage, expected);
2179 }
2180 END_TEST
2181
2182 /* Test UTF16 conversion of a long cdata string */
2183
2184 /* 16 characters: handy macro to reduce visual clutter */
2185 #define A_TO_P_IN_UTF16 "\0A\0B\0C\0D\0E\0F\0G\0H\0I\0J\0K\0L\0M\0N\0O\0P"
2186
START_TEST(test_long_cdata_utf16)2187 START_TEST(test_long_cdata_utf16) {
2188 /* Test data is:
2189 * <?xlm version='1.0' encoding='utf-16'?>
2190 * <a><![CDATA[
2191 * ABCDEFGHIJKLMNOP
2192 * ]]></a>
2193 */
2194 const char text[]
2195 = "\0<\0?\0x\0m\0l\0 "
2196 "\0v\0e\0r\0s\0i\0o\0n\0=\0'\0\x31\0.\0\x30\0'\0 "
2197 "\0e\0n\0c\0o\0d\0i\0n\0g\0=\0'\0u\0t\0f\0-\0\x31\0\x36\0'\0?\0>"
2198 "\0<\0a\0>\0<\0!\0[\0C\0D\0A\0T\0A\0["
2199 /* 64 characters per line */
2200 /* clang-format off */
2201 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16
2202 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16
2203 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16
2204 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16
2205 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16
2206 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16
2207 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16
2208 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16
2209 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16
2210 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16
2211 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16
2212 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16
2213 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16
2214 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16
2215 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16
2216 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16 A_TO_P_IN_UTF16
2217 A_TO_P_IN_UTF16
2218 /* clang-format on */
2219 "\0]\0]\0>\0<\0/\0a\0>";
2220 const XML_Char *expected =
2221 /* clang-format off */
2222 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
2223 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
2224 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
2225 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
2226 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
2227 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
2228 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
2229 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
2230 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
2231 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
2232 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
2233 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
2234 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
2235 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
2236 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
2237 XCS("ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP")
2238 XCS("ABCDEFGHIJKLMNOP");
2239 /* clang-format on */
2240 CharData storage;
2241 void *buffer;
2242
2243 CharData_Init(&storage);
2244 XML_SetUserData(g_parser, &storage);
2245 XML_SetCharacterDataHandler(g_parser, accumulate_characters);
2246 buffer = XML_GetBuffer(g_parser, sizeof(text) - 1);
2247 if (buffer == NULL)
2248 fail("Could not allocate parse buffer");
2249 assert(buffer != NULL);
2250 memcpy(buffer, text, sizeof(text) - 1);
2251 if (XML_ParseBuffer(g_parser, sizeof(text) - 1, XML_TRUE) == XML_STATUS_ERROR)
2252 xml_failure(g_parser);
2253 CharData_CheckXMLChars(&storage, expected);
2254 }
2255 END_TEST
2256
2257 /* Test handling of multiple unit UTF-16 characters */
START_TEST(test_multichar_cdata_utf16)2258 START_TEST(test_multichar_cdata_utf16) {
2259 /* Test data is:
2260 * <?xml version='1.0' encoding='utf-16'?>
2261 * <a><![CDATA[{MINIM}{CROTCHET}]]></a>
2262 *
2263 * where {MINIM} is U+1d15e (a minim or half-note)
2264 * UTF-16: 0xd834 0xdd5e
2265 * UTF-8: 0xf0 0x9d 0x85 0x9e
2266 * and {CROTCHET} is U+1d15f (a crotchet or quarter-note)
2267 * UTF-16: 0xd834 0xdd5f
2268 * UTF-8: 0xf0 0x9d 0x85 0x9f
2269 */
2270 const char text[] = "\0<\0?\0x\0m\0l\0"
2271 " \0v\0e\0r\0s\0i\0o\0n\0=\0'\0\x31\0.\0\x30\0'\0"
2272 " \0e\0n\0c\0o\0d\0i\0n\0g\0=\0'\0u\0t\0f\0-\0"
2273 "1\0"
2274 "6\0'"
2275 "\0?\0>\0\n"
2276 "\0<\0a\0>\0<\0!\0[\0C\0D\0A\0T\0A\0["
2277 "\xd8\x34\xdd\x5e\xd8\x34\xdd\x5f"
2278 "\0]\0]\0>\0<\0/\0a\0>";
2279 #ifdef XML_UNICODE
2280 const XML_Char *expected = XCS("\xd834\xdd5e\xd834\xdd5f");
2281 #else
2282 const XML_Char *expected = XCS("\xf0\x9d\x85\x9e\xf0\x9d\x85\x9f");
2283 #endif
2284 CharData storage;
2285
2286 CharData_Init(&storage);
2287 XML_SetUserData(g_parser, &storage);
2288 XML_SetCharacterDataHandler(g_parser, accumulate_characters);
2289
2290 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
2291 == XML_STATUS_ERROR)
2292 xml_failure(g_parser);
2293 CharData_CheckXMLChars(&storage, expected);
2294 }
2295 END_TEST
2296
2297 /* Test that an element name with a UTF-16 surrogate pair is rejected */
START_TEST(test_utf16_bad_surrogate_pair)2298 START_TEST(test_utf16_bad_surrogate_pair) {
2299 /* Test data is:
2300 * <?xml version='1.0' encoding='utf-16'?>
2301 * <a><![CDATA[{BADLINB}]]></a>
2302 *
2303 * where {BADLINB} is U+10000 (the first Linear B character)
2304 * with the UTF-16 surrogate pair in the wrong order, i.e.
2305 * 0xdc00 0xd800
2306 */
2307 const char text[] = "\0<\0?\0x\0m\0l\0"
2308 " \0v\0e\0r\0s\0i\0o\0n\0=\0'\0\x31\0.\0\x30\0'\0"
2309 " \0e\0n\0c\0o\0d\0i\0n\0g\0=\0'\0u\0t\0f\0-\0"
2310 "1\0"
2311 "6\0'"
2312 "\0?\0>\0\n"
2313 "\0<\0a\0>\0<\0!\0[\0C\0D\0A\0T\0A\0["
2314 "\xdc\x00\xd8\x00"
2315 "\0]\0]\0>\0<\0/\0a\0>";
2316
2317 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
2318 != XML_STATUS_ERROR)
2319 fail("Reversed UTF-16 surrogate pair not faulted");
2320 if (XML_GetErrorCode(g_parser) != XML_ERROR_INVALID_TOKEN)
2321 xml_failure(g_parser);
2322 }
2323 END_TEST
2324
START_TEST(test_bad_cdata)2325 START_TEST(test_bad_cdata) {
2326 struct CaseData {
2327 const char *text;
2328 enum XML_Error expectedError;
2329 };
2330
2331 struct CaseData cases[]
2332 = {{"<a><", XML_ERROR_UNCLOSED_TOKEN},
2333 {"<a><!", XML_ERROR_UNCLOSED_TOKEN},
2334 {"<a><![", XML_ERROR_UNCLOSED_TOKEN},
2335 {"<a><![C", XML_ERROR_UNCLOSED_TOKEN},
2336 {"<a><![CD", XML_ERROR_UNCLOSED_TOKEN},
2337 {"<a><![CDA", XML_ERROR_UNCLOSED_TOKEN},
2338 {"<a><![CDAT", XML_ERROR_UNCLOSED_TOKEN},
2339 {"<a><![CDATA", XML_ERROR_UNCLOSED_TOKEN},
2340
2341 {"<a><![CDATA[", XML_ERROR_UNCLOSED_CDATA_SECTION},
2342 {"<a><![CDATA[]", XML_ERROR_UNCLOSED_CDATA_SECTION},
2343 {"<a><![CDATA[]]", XML_ERROR_UNCLOSED_CDATA_SECTION},
2344
2345 {"<a><!<a/>", XML_ERROR_INVALID_TOKEN},
2346 {"<a><![<a/>", XML_ERROR_UNCLOSED_TOKEN}, /* ?! */
2347 {"<a><![C<a/>", XML_ERROR_UNCLOSED_TOKEN}, /* ?! */
2348 {"<a><![CD<a/>", XML_ERROR_INVALID_TOKEN},
2349 {"<a><![CDA<a/>", XML_ERROR_INVALID_TOKEN},
2350 {"<a><![CDAT<a/>", XML_ERROR_INVALID_TOKEN},
2351 {"<a><![CDATA<a/>", XML_ERROR_INVALID_TOKEN},
2352
2353 {"<a><![CDATA[<a/>", XML_ERROR_UNCLOSED_CDATA_SECTION},
2354 {"<a><![CDATA[]<a/>", XML_ERROR_UNCLOSED_CDATA_SECTION},
2355 {"<a><![CDATA[]]<a/>", XML_ERROR_UNCLOSED_CDATA_SECTION}};
2356
2357 size_t i = 0;
2358 for (; i < sizeof(cases) / sizeof(struct CaseData); i++) {
2359 const enum XML_Status actualStatus = _XML_Parse_SINGLE_BYTES(
2360 g_parser, cases[i].text, (int)strlen(cases[i].text), XML_TRUE);
2361 const enum XML_Error actualError = XML_GetErrorCode(g_parser);
2362
2363 assert(actualStatus == XML_STATUS_ERROR);
2364
2365 if (actualError != cases[i].expectedError) {
2366 char message[100];
2367 sprintf(message,
2368 "Expected error %d but got error %d for case %u: \"%s\"\n",
2369 cases[i].expectedError, actualError, (unsigned int)i + 1,
2370 cases[i].text);
2371 fail(message);
2372 }
2373
2374 XML_ParserReset(g_parser, NULL);
2375 }
2376 }
2377 END_TEST
2378
2379 /* Test failures in UTF-16 CDATA */
START_TEST(test_bad_cdata_utf16)2380 START_TEST(test_bad_cdata_utf16) {
2381 struct CaseData {
2382 size_t text_bytes;
2383 const char *text;
2384 enum XML_Error expected_error;
2385 };
2386
2387 const char prolog[] = "\0<\0?\0x\0m\0l\0"
2388 " \0v\0e\0r\0s\0i\0o\0n\0=\0'\0\x31\0.\0\x30\0'\0"
2389 " \0e\0n\0c\0o\0d\0i\0n\0g\0=\0'\0u\0t\0f\0-\0"
2390 "1\0"
2391 "6\0'"
2392 "\0?\0>\0\n"
2393 "\0<\0a\0>";
2394 struct CaseData cases[] = {
2395 {1, "\0", XML_ERROR_UNCLOSED_TOKEN},
2396 {2, "\0<", XML_ERROR_UNCLOSED_TOKEN},
2397 {3, "\0<\0", XML_ERROR_UNCLOSED_TOKEN},
2398 {4, "\0<\0!", XML_ERROR_UNCLOSED_TOKEN},
2399 {5, "\0<\0!\0", XML_ERROR_UNCLOSED_TOKEN},
2400 {6, "\0<\0!\0[", XML_ERROR_UNCLOSED_TOKEN},
2401 {7, "\0<\0!\0[\0", XML_ERROR_UNCLOSED_TOKEN},
2402 {8, "\0<\0!\0[\0C", XML_ERROR_UNCLOSED_TOKEN},
2403 {9, "\0<\0!\0[\0C\0", XML_ERROR_UNCLOSED_TOKEN},
2404 {10, "\0<\0!\0[\0C\0D", XML_ERROR_UNCLOSED_TOKEN},
2405 {11, "\0<\0!\0[\0C\0D\0", XML_ERROR_UNCLOSED_TOKEN},
2406 {12, "\0<\0!\0[\0C\0D\0A", XML_ERROR_UNCLOSED_TOKEN},
2407 {13, "\0<\0!\0[\0C\0D\0A\0", XML_ERROR_UNCLOSED_TOKEN},
2408 {14, "\0<\0!\0[\0C\0D\0A\0T", XML_ERROR_UNCLOSED_TOKEN},
2409 {15, "\0<\0!\0[\0C\0D\0A\0T\0", XML_ERROR_UNCLOSED_TOKEN},
2410 {16, "\0<\0!\0[\0C\0D\0A\0T\0A", XML_ERROR_UNCLOSED_TOKEN},
2411 {17, "\0<\0!\0[\0C\0D\0A\0T\0A\0", XML_ERROR_UNCLOSED_TOKEN},
2412 {18, "\0<\0!\0[\0C\0D\0A\0T\0A\0[", XML_ERROR_UNCLOSED_CDATA_SECTION},
2413 {19, "\0<\0!\0[\0C\0D\0A\0T\0A\0[\0", XML_ERROR_UNCLOSED_CDATA_SECTION},
2414 {20, "\0<\0!\0[\0C\0D\0A\0T\0A\0[\0Z", XML_ERROR_UNCLOSED_CDATA_SECTION},
2415 /* Now add a four-byte UTF-16 character */
2416 {21, "\0<\0!\0[\0C\0D\0A\0T\0A\0[\0Z\xd8",
2417 XML_ERROR_UNCLOSED_CDATA_SECTION},
2418 {22, "\0<\0!\0[\0C\0D\0A\0T\0A\0[\0Z\xd8\x34", XML_ERROR_PARTIAL_CHAR},
2419 {23, "\0<\0!\0[\0C\0D\0A\0T\0A\0[\0Z\xd8\x34\xdd",
2420 XML_ERROR_PARTIAL_CHAR},
2421 {24, "\0<\0!\0[\0C\0D\0A\0T\0A\0[\0Z\xd8\x34\xdd\x5e",
2422 XML_ERROR_UNCLOSED_CDATA_SECTION}};
2423 size_t i;
2424
2425 for (i = 0; i < sizeof(cases) / sizeof(struct CaseData); i++) {
2426 enum XML_Status actual_status;
2427 enum XML_Error actual_error;
2428
2429 if (_XML_Parse_SINGLE_BYTES(g_parser, prolog, (int)sizeof(prolog) - 1,
2430 XML_FALSE)
2431 == XML_STATUS_ERROR)
2432 xml_failure(g_parser);
2433 actual_status = _XML_Parse_SINGLE_BYTES(g_parser, cases[i].text,
2434 (int)cases[i].text_bytes, XML_TRUE);
2435 assert(actual_status == XML_STATUS_ERROR);
2436 actual_error = XML_GetErrorCode(g_parser);
2437 if (actual_error != cases[i].expected_error) {
2438 char message[1024];
2439
2440 sprintf(message,
2441 "Expected error %d (%" XML_FMT_STR "), got %d (%" XML_FMT_STR
2442 ") for case %lu\n",
2443 cases[i].expected_error, XML_ErrorString(cases[i].expected_error),
2444 actual_error, XML_ErrorString(actual_error),
2445 (long unsigned)(i + 1));
2446 fail(message);
2447 }
2448 XML_ParserReset(g_parser, NULL);
2449 }
2450 }
2451 END_TEST
2452
2453 static const char *long_cdata_text
2454 = "<s><![CDATA["
2455 "012345678901234567890123456789012345678901234567890123456789"
2456 "012345678901234567890123456789012345678901234567890123456789"
2457 "012345678901234567890123456789012345678901234567890123456789"
2458 "012345678901234567890123456789012345678901234567890123456789"
2459 "012345678901234567890123456789012345678901234567890123456789"
2460 "012345678901234567890123456789012345678901234567890123456789"
2461 "012345678901234567890123456789012345678901234567890123456789"
2462 "012345678901234567890123456789012345678901234567890123456789"
2463 "012345678901234567890123456789012345678901234567890123456789"
2464 "012345678901234567890123456789012345678901234567890123456789"
2465 "012345678901234567890123456789012345678901234567890123456789"
2466 "012345678901234567890123456789012345678901234567890123456789"
2467 "012345678901234567890123456789012345678901234567890123456789"
2468 "012345678901234567890123456789012345678901234567890123456789"
2469 "012345678901234567890123456789012345678901234567890123456789"
2470 "012345678901234567890123456789012345678901234567890123456789"
2471 "012345678901234567890123456789012345678901234567890123456789"
2472 "012345678901234567890123456789012345678901234567890123456789"
2473 "012345678901234567890123456789012345678901234567890123456789"
2474 "012345678901234567890123456789012345678901234567890123456789"
2475 "]]></s>";
2476
2477 /* Test stopping the parser in cdata handler */
START_TEST(test_stop_parser_between_cdata_calls)2478 START_TEST(test_stop_parser_between_cdata_calls) {
2479 const char *text = long_cdata_text;
2480
2481 XML_SetCharacterDataHandler(g_parser, clearing_aborting_character_handler);
2482 resumable = XML_FALSE;
2483 expect_failure(text, XML_ERROR_ABORTED, "Parse not aborted in CDATA handler");
2484 }
2485 END_TEST
2486
2487 /* Test suspending the parser in cdata handler */
START_TEST(test_suspend_parser_between_cdata_calls)2488 START_TEST(test_suspend_parser_between_cdata_calls) {
2489 const char *text = long_cdata_text;
2490 enum XML_Status result;
2491
2492 XML_SetCharacterDataHandler(g_parser, clearing_aborting_character_handler);
2493 resumable = XML_TRUE;
2494 result = _XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE);
2495 if (result != XML_STATUS_SUSPENDED) {
2496 if (result == XML_STATUS_ERROR)
2497 xml_failure(g_parser);
2498 fail("Parse not suspended in CDATA handler");
2499 }
2500 if (XML_GetErrorCode(g_parser) != XML_ERROR_NONE)
2501 xml_failure(g_parser);
2502 }
2503 END_TEST
2504
2505 /* Test memory allocation functions */
START_TEST(test_memory_allocation)2506 START_TEST(test_memory_allocation) {
2507 char *buffer = (char *)XML_MemMalloc(g_parser, 256);
2508 char *p;
2509
2510 if (buffer == NULL) {
2511 fail("Allocation failed");
2512 } else {
2513 /* Try writing to memory; some OSes try to cheat! */
2514 buffer[0] = 'T';
2515 buffer[1] = 'E';
2516 buffer[2] = 'S';
2517 buffer[3] = 'T';
2518 buffer[4] = '\0';
2519 if (strcmp(buffer, "TEST") != 0) {
2520 fail("Memory not writable");
2521 } else {
2522 p = (char *)XML_MemRealloc(g_parser, buffer, 512);
2523 if (p == NULL) {
2524 fail("Reallocation failed");
2525 } else {
2526 /* Write again, just to be sure */
2527 buffer = p;
2528 buffer[0] = 'V';
2529 if (strcmp(buffer, "VEST") != 0) {
2530 fail("Reallocated memory not writable");
2531 }
2532 }
2533 }
2534 XML_MemFree(g_parser, buffer);
2535 }
2536 }
2537 END_TEST
2538
2539 static void XMLCALL
record_default_handler(void * userData,const XML_Char * s,int len)2540 record_default_handler(void *userData, const XML_Char *s, int len) {
2541 UNUSED_P(s);
2542 UNUSED_P(len);
2543 CharData_AppendXMLChars((CharData *)userData, XCS("D"), 1);
2544 }
2545
2546 static void XMLCALL
record_cdata_handler(void * userData,const XML_Char * s,int len)2547 record_cdata_handler(void *userData, const XML_Char *s, int len) {
2548 UNUSED_P(s);
2549 UNUSED_P(len);
2550 CharData_AppendXMLChars((CharData *)userData, XCS("C"), 1);
2551 XML_DefaultCurrent(g_parser);
2552 }
2553
2554 static void XMLCALL
record_cdata_nodefault_handler(void * userData,const XML_Char * s,int len)2555 record_cdata_nodefault_handler(void *userData, const XML_Char *s, int len) {
2556 UNUSED_P(s);
2557 UNUSED_P(len);
2558 CharData_AppendXMLChars((CharData *)userData, XCS("c"), 1);
2559 }
2560
2561 static void XMLCALL
record_skip_handler(void * userData,const XML_Char * entityName,int is_parameter_entity)2562 record_skip_handler(void *userData, const XML_Char *entityName,
2563 int is_parameter_entity) {
2564 UNUSED_P(entityName);
2565 CharData_AppendXMLChars((CharData *)userData,
2566 is_parameter_entity ? XCS("E") : XCS("e"), 1);
2567 }
2568
2569 /* Test XML_DefaultCurrent() passes handling on correctly */
START_TEST(test_default_current)2570 START_TEST(test_default_current) {
2571 const char *text = "<doc>hell]</doc>";
2572 const char *entity_text = "<!DOCTYPE doc [\n"
2573 "<!ENTITY entity '%'>\n"
2574 "]>\n"
2575 "<doc>&entity;</doc>";
2576 CharData storage;
2577
2578 XML_SetDefaultHandler(g_parser, record_default_handler);
2579 XML_SetCharacterDataHandler(g_parser, record_cdata_handler);
2580 CharData_Init(&storage);
2581 XML_SetUserData(g_parser, &storage);
2582 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
2583 == XML_STATUS_ERROR)
2584 xml_failure(g_parser);
2585 CharData_CheckXMLChars(&storage, XCS("DCDCDCDCDCDD"));
2586
2587 /* Again, without the defaulting */
2588 XML_ParserReset(g_parser, NULL);
2589 XML_SetDefaultHandler(g_parser, record_default_handler);
2590 XML_SetCharacterDataHandler(g_parser, record_cdata_nodefault_handler);
2591 CharData_Init(&storage);
2592 XML_SetUserData(g_parser, &storage);
2593 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
2594 == XML_STATUS_ERROR)
2595 xml_failure(g_parser);
2596 CharData_CheckXMLChars(&storage, XCS("DcccccD"));
2597
2598 /* Now with an internal entity to complicate matters */
2599 XML_ParserReset(g_parser, NULL);
2600 XML_SetDefaultHandler(g_parser, record_default_handler);
2601 XML_SetCharacterDataHandler(g_parser, record_cdata_handler);
2602 CharData_Init(&storage);
2603 XML_SetUserData(g_parser, &storage);
2604 if (_XML_Parse_SINGLE_BYTES(g_parser, entity_text, (int)strlen(entity_text),
2605 XML_TRUE)
2606 == XML_STATUS_ERROR)
2607 xml_failure(g_parser);
2608 /* The default handler suppresses the entity */
2609 CharData_CheckXMLChars(&storage, XCS("DDDDDDDDDDDDDDDDDDD"));
2610
2611 /* Again, with a skip handler */
2612 XML_ParserReset(g_parser, NULL);
2613 XML_SetDefaultHandler(g_parser, record_default_handler);
2614 XML_SetCharacterDataHandler(g_parser, record_cdata_handler);
2615 XML_SetSkippedEntityHandler(g_parser, record_skip_handler);
2616 CharData_Init(&storage);
2617 XML_SetUserData(g_parser, &storage);
2618 if (_XML_Parse_SINGLE_BYTES(g_parser, entity_text, (int)strlen(entity_text),
2619 XML_TRUE)
2620 == XML_STATUS_ERROR)
2621 xml_failure(g_parser);
2622 /* The default handler suppresses the entity */
2623 CharData_CheckXMLChars(&storage, XCS("DDDDDDDDDDDDDDDDDeD"));
2624
2625 /* This time, allow the entity through */
2626 XML_ParserReset(g_parser, NULL);
2627 XML_SetDefaultHandlerExpand(g_parser, record_default_handler);
2628 XML_SetCharacterDataHandler(g_parser, record_cdata_handler);
2629 CharData_Init(&storage);
2630 XML_SetUserData(g_parser, &storage);
2631 if (_XML_Parse_SINGLE_BYTES(g_parser, entity_text, (int)strlen(entity_text),
2632 XML_TRUE)
2633 == XML_STATUS_ERROR)
2634 xml_failure(g_parser);
2635 CharData_CheckXMLChars(&storage, XCS("DDDDDDDDDDDDDDDDDCDD"));
2636
2637 /* Finally, without passing the cdata to the default handler */
2638 XML_ParserReset(g_parser, NULL);
2639 XML_SetDefaultHandlerExpand(g_parser, record_default_handler);
2640 XML_SetCharacterDataHandler(g_parser, record_cdata_nodefault_handler);
2641 CharData_Init(&storage);
2642 XML_SetUserData(g_parser, &storage);
2643 if (_XML_Parse_SINGLE_BYTES(g_parser, entity_text, (int)strlen(entity_text),
2644 XML_TRUE)
2645 == XML_STATUS_ERROR)
2646 xml_failure(g_parser);
2647 CharData_CheckXMLChars(&storage, XCS("DDDDDDDDDDDDDDDDDcD"));
2648 }
2649 END_TEST
2650
2651 /* Test DTD element parsing code paths */
START_TEST(test_dtd_elements)2652 START_TEST(test_dtd_elements) {
2653 const char *text = "<!DOCTYPE doc [\n"
2654 "<!ELEMENT doc (chapter)>\n"
2655 "<!ELEMENT chapter (#PCDATA)>\n"
2656 "]>\n"
2657 "<doc><chapter>Wombats are go</chapter></doc>";
2658
2659 XML_SetElementDeclHandler(g_parser, dummy_element_decl_handler);
2660 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
2661 == XML_STATUS_ERROR)
2662 xml_failure(g_parser);
2663 }
2664 END_TEST
2665
2666 /* Test foreign DTD handling */
START_TEST(test_set_foreign_dtd)2667 START_TEST(test_set_foreign_dtd) {
2668 const char *text1 = "<?xml version='1.0' encoding='us-ascii'?>\n";
2669 const char *text2 = "<doc>&entity;</doc>";
2670 ExtTest test_data = {"<!ELEMENT doc (#PCDATA)*>", NULL, NULL};
2671
2672 /* Check hash salt is passed through too */
2673 XML_SetHashSalt(g_parser, 0x12345678);
2674 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
2675 XML_SetUserData(g_parser, &test_data);
2676 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader);
2677 /* Add a default handler to exercise more code paths */
2678 XML_SetDefaultHandler(g_parser, dummy_default_handler);
2679 if (XML_UseForeignDTD(g_parser, XML_TRUE) != XML_ERROR_NONE)
2680 fail("Could not set foreign DTD");
2681 if (_XML_Parse_SINGLE_BYTES(g_parser, text1, (int)strlen(text1), XML_FALSE)
2682 == XML_STATUS_ERROR)
2683 xml_failure(g_parser);
2684
2685 /* Ensure that trying to set the DTD after parsing has started
2686 * is faulted, even if it's the same setting.
2687 */
2688 if (XML_UseForeignDTD(g_parser, XML_TRUE)
2689 != XML_ERROR_CANT_CHANGE_FEATURE_ONCE_PARSING)
2690 fail("Failed to reject late foreign DTD setting");
2691 /* Ditto for the hash salt */
2692 if (XML_SetHashSalt(g_parser, 0x23456789))
2693 fail("Failed to reject late hash salt change");
2694
2695 /* Now finish the parse */
2696 if (_XML_Parse_SINGLE_BYTES(g_parser, text2, (int)strlen(text2), XML_TRUE)
2697 == XML_STATUS_ERROR)
2698 xml_failure(g_parser);
2699 }
2700 END_TEST
2701
2702 /* Test foreign DTD handling with a failing NotStandalone handler */
START_TEST(test_foreign_dtd_not_standalone)2703 START_TEST(test_foreign_dtd_not_standalone) {
2704 const char *text = "<?xml version='1.0' encoding='us-ascii'?>\n"
2705 "<doc>&entity;</doc>";
2706 ExtTest test_data = {"<!ELEMENT doc (#PCDATA)*>", NULL, NULL};
2707
2708 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
2709 XML_SetUserData(g_parser, &test_data);
2710 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader);
2711 XML_SetNotStandaloneHandler(g_parser, reject_not_standalone_handler);
2712 if (XML_UseForeignDTD(g_parser, XML_TRUE) != XML_ERROR_NONE)
2713 fail("Could not set foreign DTD");
2714 expect_failure(text, XML_ERROR_NOT_STANDALONE,
2715 "NotStandalonehandler failed to reject");
2716 }
2717 END_TEST
2718
2719 /* Test invalid character in a foreign DTD is faulted */
START_TEST(test_invalid_foreign_dtd)2720 START_TEST(test_invalid_foreign_dtd) {
2721 const char *text = "<?xml version='1.0' encoding='us-ascii'?>\n"
2722 "<doc>&entity;</doc>";
2723 ExtFaults test_data
2724 = {"$", "Dollar not faulted", NULL, XML_ERROR_INVALID_TOKEN};
2725
2726 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
2727 XML_SetUserData(g_parser, &test_data);
2728 XML_SetExternalEntityRefHandler(g_parser, external_entity_faulter);
2729 XML_UseForeignDTD(g_parser, XML_TRUE);
2730 expect_failure(text, XML_ERROR_EXTERNAL_ENTITY_HANDLING,
2731 "Bad DTD should not have been accepted");
2732 }
2733 END_TEST
2734
2735 /* Test foreign DTD use with a doctype */
START_TEST(test_foreign_dtd_with_doctype)2736 START_TEST(test_foreign_dtd_with_doctype) {
2737 const char *text1 = "<?xml version='1.0' encoding='us-ascii'?>\n"
2738 "<!DOCTYPE doc [<!ENTITY entity 'hello world'>]>\n";
2739 const char *text2 = "<doc>&entity;</doc>";
2740 ExtTest test_data = {"<!ELEMENT doc (#PCDATA)*>", NULL, NULL};
2741
2742 /* Check hash salt is passed through too */
2743 XML_SetHashSalt(g_parser, 0x12345678);
2744 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
2745 XML_SetUserData(g_parser, &test_data);
2746 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader);
2747 /* Add a default handler to exercise more code paths */
2748 XML_SetDefaultHandler(g_parser, dummy_default_handler);
2749 if (XML_UseForeignDTD(g_parser, XML_TRUE) != XML_ERROR_NONE)
2750 fail("Could not set foreign DTD");
2751 if (_XML_Parse_SINGLE_BYTES(g_parser, text1, (int)strlen(text1), XML_FALSE)
2752 == XML_STATUS_ERROR)
2753 xml_failure(g_parser);
2754
2755 /* Ensure that trying to set the DTD after parsing has started
2756 * is faulted, even if it's the same setting.
2757 */
2758 if (XML_UseForeignDTD(g_parser, XML_TRUE)
2759 != XML_ERROR_CANT_CHANGE_FEATURE_ONCE_PARSING)
2760 fail("Failed to reject late foreign DTD setting");
2761 /* Ditto for the hash salt */
2762 if (XML_SetHashSalt(g_parser, 0x23456789))
2763 fail("Failed to reject late hash salt change");
2764
2765 /* Now finish the parse */
2766 if (_XML_Parse_SINGLE_BYTES(g_parser, text2, (int)strlen(text2), XML_TRUE)
2767 == XML_STATUS_ERROR)
2768 xml_failure(g_parser);
2769 }
2770 END_TEST
2771
2772 /* Test XML_UseForeignDTD with no external subset present */
2773 static int XMLCALL
external_entity_null_loader(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)2774 external_entity_null_loader(XML_Parser parser, const XML_Char *context,
2775 const XML_Char *base, const XML_Char *systemId,
2776 const XML_Char *publicId) {
2777 UNUSED_P(parser);
2778 UNUSED_P(context);
2779 UNUSED_P(base);
2780 UNUSED_P(systemId);
2781 UNUSED_P(publicId);
2782 return XML_STATUS_OK;
2783 }
2784
START_TEST(test_foreign_dtd_without_external_subset)2785 START_TEST(test_foreign_dtd_without_external_subset) {
2786 const char *text = "<!DOCTYPE doc [<!ENTITY foo 'bar'>]>\n"
2787 "<doc>&foo;</doc>";
2788
2789 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
2790 XML_SetUserData(g_parser, NULL);
2791 XML_SetExternalEntityRefHandler(g_parser, external_entity_null_loader);
2792 XML_UseForeignDTD(g_parser, XML_TRUE);
2793 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
2794 == XML_STATUS_ERROR)
2795 xml_failure(g_parser);
2796 }
2797 END_TEST
2798
START_TEST(test_empty_foreign_dtd)2799 START_TEST(test_empty_foreign_dtd) {
2800 const char *text = "<?xml version='1.0' encoding='us-ascii'?>\n"
2801 "<doc>&entity;</doc>";
2802
2803 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
2804 XML_SetExternalEntityRefHandler(g_parser, external_entity_null_loader);
2805 XML_UseForeignDTD(g_parser, XML_TRUE);
2806 expect_failure(text, XML_ERROR_UNDEFINED_ENTITY,
2807 "Undefined entity not faulted");
2808 }
2809 END_TEST
2810
2811 /* Test XML Base is set and unset appropriately */
START_TEST(test_set_base)2812 START_TEST(test_set_base) {
2813 const XML_Char *old_base;
2814 const XML_Char *new_base = XCS("/local/file/name.xml");
2815
2816 old_base = XML_GetBase(g_parser);
2817 if (XML_SetBase(g_parser, new_base) != XML_STATUS_OK)
2818 fail("Unable to set base");
2819 if (xcstrcmp(XML_GetBase(g_parser), new_base) != 0)
2820 fail("Base setting not correct");
2821 if (XML_SetBase(g_parser, NULL) != XML_STATUS_OK)
2822 fail("Unable to NULL base");
2823 if (XML_GetBase(g_parser) != NULL)
2824 fail("Base setting not nulled");
2825 XML_SetBase(g_parser, old_base);
2826 }
2827 END_TEST
2828
2829 /* Test attribute counts, indexing, etc */
2830 typedef struct attrInfo {
2831 const XML_Char *name;
2832 const XML_Char *value;
2833 } AttrInfo;
2834
2835 typedef struct elementInfo {
2836 const XML_Char *name;
2837 int attr_count;
2838 const XML_Char *id_name;
2839 AttrInfo *attributes;
2840 } ElementInfo;
2841
2842 static void XMLCALL
counting_start_element_handler(void * userData,const XML_Char * name,const XML_Char ** atts)2843 counting_start_element_handler(void *userData, const XML_Char *name,
2844 const XML_Char **atts) {
2845 ElementInfo *info = (ElementInfo *)userData;
2846 AttrInfo *attr;
2847 int count, id, i;
2848
2849 while (info->name != NULL) {
2850 if (! xcstrcmp(name, info->name))
2851 break;
2852 info++;
2853 }
2854 if (info->name == NULL)
2855 fail("Element not recognised");
2856 /* The attribute count is twice what you might expect. It is a
2857 * count of items in atts, an array which contains alternating
2858 * attribute names and attribute values. For the naive user this
2859 * is possibly a little unexpected, but it is what the
2860 * documentation in expat.h tells us to expect.
2861 */
2862 count = XML_GetSpecifiedAttributeCount(g_parser);
2863 if (info->attr_count * 2 != count) {
2864 fail("Not got expected attribute count");
2865 return;
2866 }
2867 id = XML_GetIdAttributeIndex(g_parser);
2868 if (id == -1 && info->id_name != NULL) {
2869 fail("ID not present");
2870 return;
2871 }
2872 if (id != -1 && xcstrcmp(atts[id], info->id_name)) {
2873 fail("ID does not have the correct name");
2874 return;
2875 }
2876 for (i = 0; i < info->attr_count; i++) {
2877 attr = info->attributes;
2878 while (attr->name != NULL) {
2879 if (! xcstrcmp(atts[0], attr->name))
2880 break;
2881 attr++;
2882 }
2883 if (attr->name == NULL) {
2884 fail("Attribute not recognised");
2885 return;
2886 }
2887 if (xcstrcmp(atts[1], attr->value)) {
2888 fail("Attribute has wrong value");
2889 return;
2890 }
2891 /* Remember, two entries in atts per attribute (see above) */
2892 atts += 2;
2893 }
2894 }
2895
START_TEST(test_attributes)2896 START_TEST(test_attributes) {
2897 const char *text = "<!DOCTYPE doc [\n"
2898 "<!ELEMENT doc (tag)>\n"
2899 "<!ATTLIST doc id ID #REQUIRED>\n"
2900 "]>"
2901 "<doc a='1' id='one' b='2'>"
2902 "<tag c='3'/>"
2903 "</doc>";
2904 AttrInfo doc_info[] = {{XCS("a"), XCS("1")},
2905 {XCS("b"), XCS("2")},
2906 {XCS("id"), XCS("one")},
2907 {NULL, NULL}};
2908 AttrInfo tag_info[] = {{XCS("c"), XCS("3")}, {NULL, NULL}};
2909 ElementInfo info[] = {{XCS("doc"), 3, XCS("id"), NULL},
2910 {XCS("tag"), 1, NULL, NULL},
2911 {NULL, 0, NULL, NULL}};
2912 info[0].attributes = doc_info;
2913 info[1].attributes = tag_info;
2914
2915 XML_SetStartElementHandler(g_parser, counting_start_element_handler);
2916 XML_SetUserData(g_parser, info);
2917 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
2918 == XML_STATUS_ERROR)
2919 xml_failure(g_parser);
2920 }
2921 END_TEST
2922
2923 /* Test reset works correctly in the middle of processing an internal
2924 * entity. Exercises some obscure code in XML_ParserReset().
2925 */
START_TEST(test_reset_in_entity)2926 START_TEST(test_reset_in_entity) {
2927 const char *text = "<!DOCTYPE doc [\n"
2928 "<!ENTITY wombat 'wom'>\n"
2929 "<!ENTITY entity 'hi &wom; there'>\n"
2930 "]>\n"
2931 "<doc>&entity;</doc>";
2932 XML_ParsingStatus status;
2933
2934 resumable = XML_TRUE;
2935 XML_SetCharacterDataHandler(g_parser, clearing_aborting_character_handler);
2936 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_FALSE)
2937 == XML_STATUS_ERROR)
2938 xml_failure(g_parser);
2939 XML_GetParsingStatus(g_parser, &status);
2940 if (status.parsing != XML_SUSPENDED)
2941 fail("Parsing status not SUSPENDED");
2942 XML_ParserReset(g_parser, NULL);
2943 XML_GetParsingStatus(g_parser, &status);
2944 if (status.parsing != XML_INITIALIZED)
2945 fail("Parsing status doesn't reset to INITIALIZED");
2946 }
2947 END_TEST
2948
2949 /* Test that resume correctly passes through parse errors */
START_TEST(test_resume_invalid_parse)2950 START_TEST(test_resume_invalid_parse) {
2951 const char *text = "<doc>Hello</doc"; /* Missing closing wedge */
2952
2953 resumable = XML_TRUE;
2954 XML_SetCharacterDataHandler(g_parser, clearing_aborting_character_handler);
2955 if (XML_Parse(g_parser, text, (int)strlen(text), XML_TRUE)
2956 == XML_STATUS_ERROR)
2957 xml_failure(g_parser);
2958 if (XML_ResumeParser(g_parser) == XML_STATUS_OK)
2959 fail("Resumed invalid parse not faulted");
2960 if (XML_GetErrorCode(g_parser) != XML_ERROR_UNCLOSED_TOKEN)
2961 fail("Invalid parse not correctly faulted");
2962 }
2963 END_TEST
2964
2965 /* Test that re-suspended parses are correctly passed through */
START_TEST(test_resume_resuspended)2966 START_TEST(test_resume_resuspended) {
2967 const char *text = "<doc>Hello<meep/>world</doc>";
2968
2969 resumable = XML_TRUE;
2970 XML_SetCharacterDataHandler(g_parser, clearing_aborting_character_handler);
2971 if (XML_Parse(g_parser, text, (int)strlen(text), XML_TRUE)
2972 == XML_STATUS_ERROR)
2973 xml_failure(g_parser);
2974 resumable = XML_TRUE;
2975 XML_SetCharacterDataHandler(g_parser, clearing_aborting_character_handler);
2976 if (XML_ResumeParser(g_parser) != XML_STATUS_SUSPENDED)
2977 fail("Resumption not suspended");
2978 /* This one should succeed and finish up */
2979 if (XML_ResumeParser(g_parser) != XML_STATUS_OK)
2980 xml_failure(g_parser);
2981 }
2982 END_TEST
2983
2984 /* Test that CDATA shows up correctly through a default handler */
START_TEST(test_cdata_default)2985 START_TEST(test_cdata_default) {
2986 const char *text = "<doc><![CDATA[Hello\nworld]]></doc>";
2987 const XML_Char *expected = XCS("<doc><![CDATA[Hello\nworld]]></doc>");
2988 CharData storage;
2989
2990 CharData_Init(&storage);
2991 XML_SetUserData(g_parser, &storage);
2992 XML_SetDefaultHandler(g_parser, accumulate_characters);
2993
2994 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
2995 == XML_STATUS_ERROR)
2996 xml_failure(g_parser);
2997 CharData_CheckXMLChars(&storage, expected);
2998 }
2999 END_TEST
3000
3001 /* Test resetting a subordinate parser does exactly nothing */
3002 static int XMLCALL
external_entity_resetter(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)3003 external_entity_resetter(XML_Parser parser, const XML_Char *context,
3004 const XML_Char *base, const XML_Char *systemId,
3005 const XML_Char *publicId) {
3006 const char *text = "<!ELEMENT doc (#PCDATA)*>";
3007 XML_Parser ext_parser;
3008 XML_ParsingStatus status;
3009
3010 UNUSED_P(base);
3011 UNUSED_P(systemId);
3012 UNUSED_P(publicId);
3013 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
3014 if (ext_parser == NULL)
3015 fail("Could not create external entity parser");
3016 XML_GetParsingStatus(ext_parser, &status);
3017 if (status.parsing != XML_INITIALIZED) {
3018 fail("Parsing status is not INITIALIZED");
3019 return XML_STATUS_ERROR;
3020 }
3021 if (_XML_Parse_SINGLE_BYTES(ext_parser, text, (int)strlen(text), XML_TRUE)
3022 == XML_STATUS_ERROR) {
3023 xml_failure(parser);
3024 return XML_STATUS_ERROR;
3025 }
3026 XML_GetParsingStatus(ext_parser, &status);
3027 if (status.parsing != XML_FINISHED) {
3028 fail("Parsing status is not FINISHED");
3029 return XML_STATUS_ERROR;
3030 }
3031 /* Check we can't parse here */
3032 if (XML_Parse(ext_parser, text, (int)strlen(text), XML_TRUE)
3033 != XML_STATUS_ERROR)
3034 fail("Parsing when finished not faulted");
3035 if (XML_GetErrorCode(ext_parser) != XML_ERROR_FINISHED)
3036 fail("Parsing when finished faulted with wrong code");
3037 XML_ParserReset(ext_parser, NULL);
3038 XML_GetParsingStatus(ext_parser, &status);
3039 if (status.parsing != XML_FINISHED) {
3040 fail("Parsing status not still FINISHED");
3041 return XML_STATUS_ERROR;
3042 }
3043 XML_ParserFree(ext_parser);
3044 return XML_STATUS_OK;
3045 }
3046
START_TEST(test_subordinate_reset)3047 START_TEST(test_subordinate_reset) {
3048 const char *text = "<?xml version='1.0' encoding='us-ascii'?>\n"
3049 "<!DOCTYPE doc SYSTEM 'foo'>\n"
3050 "<doc>&entity;</doc>";
3051
3052 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
3053 XML_SetExternalEntityRefHandler(g_parser, external_entity_resetter);
3054 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
3055 == XML_STATUS_ERROR)
3056 xml_failure(g_parser);
3057 }
3058 END_TEST
3059
3060 /* Test suspending a subordinate parser */
3061
3062 static void XMLCALL
entity_suspending_decl_handler(void * userData,const XML_Char * name,XML_Content * model)3063 entity_suspending_decl_handler(void *userData, const XML_Char *name,
3064 XML_Content *model) {
3065 XML_Parser ext_parser = (XML_Parser)userData;
3066
3067 UNUSED_P(name);
3068 if (XML_StopParser(ext_parser, XML_TRUE) != XML_STATUS_ERROR)
3069 fail("Attempting to suspend a subordinate parser not faulted");
3070 if (XML_GetErrorCode(ext_parser) != XML_ERROR_SUSPEND_PE)
3071 fail("Suspending subordinate parser get wrong code");
3072 XML_SetElementDeclHandler(ext_parser, NULL);
3073 XML_FreeContentModel(g_parser, model);
3074 }
3075
3076 static int XMLCALL
external_entity_suspender(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)3077 external_entity_suspender(XML_Parser parser, const XML_Char *context,
3078 const XML_Char *base, const XML_Char *systemId,
3079 const XML_Char *publicId) {
3080 const char *text = "<!ELEMENT doc (#PCDATA)*>";
3081 XML_Parser ext_parser;
3082
3083 UNUSED_P(base);
3084 UNUSED_P(systemId);
3085 UNUSED_P(publicId);
3086 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
3087 if (ext_parser == NULL)
3088 fail("Could not create external entity parser");
3089 XML_SetElementDeclHandler(ext_parser, entity_suspending_decl_handler);
3090 XML_SetUserData(ext_parser, ext_parser);
3091 if (_XML_Parse_SINGLE_BYTES(ext_parser, text, (int)strlen(text), XML_TRUE)
3092 == XML_STATUS_ERROR) {
3093 xml_failure(ext_parser);
3094 return XML_STATUS_ERROR;
3095 }
3096 XML_ParserFree(ext_parser);
3097 return XML_STATUS_OK;
3098 }
3099
START_TEST(test_subordinate_suspend)3100 START_TEST(test_subordinate_suspend) {
3101 const char *text = "<?xml version='1.0' encoding='us-ascii'?>\n"
3102 "<!DOCTYPE doc SYSTEM 'foo'>\n"
3103 "<doc>&entity;</doc>";
3104
3105 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
3106 XML_SetExternalEntityRefHandler(g_parser, external_entity_suspender);
3107 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
3108 == XML_STATUS_ERROR)
3109 xml_failure(g_parser);
3110 }
3111 END_TEST
3112
3113 /* Test suspending a subordinate parser from an XML declaration */
3114 /* Increases code coverage of the tests */
3115 static void XMLCALL
entity_suspending_xdecl_handler(void * userData,const XML_Char * version,const XML_Char * encoding,int standalone)3116 entity_suspending_xdecl_handler(void *userData, const XML_Char *version,
3117 const XML_Char *encoding, int standalone) {
3118 XML_Parser ext_parser = (XML_Parser)userData;
3119
3120 UNUSED_P(version);
3121 UNUSED_P(encoding);
3122 UNUSED_P(standalone);
3123 XML_StopParser(ext_parser, resumable);
3124 XML_SetXmlDeclHandler(ext_parser, NULL);
3125 }
3126
3127 static int XMLCALL
external_entity_suspend_xmldecl(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)3128 external_entity_suspend_xmldecl(XML_Parser parser, const XML_Char *context,
3129 const XML_Char *base, const XML_Char *systemId,
3130 const XML_Char *publicId) {
3131 const char *text = "<?xml version='1.0' encoding='us-ascii'?>";
3132 XML_Parser ext_parser;
3133 XML_ParsingStatus status;
3134 enum XML_Status rc;
3135
3136 UNUSED_P(base);
3137 UNUSED_P(systemId);
3138 UNUSED_P(publicId);
3139 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
3140 if (ext_parser == NULL)
3141 fail("Could not create external entity parser");
3142 XML_SetXmlDeclHandler(ext_parser, entity_suspending_xdecl_handler);
3143 XML_SetUserData(ext_parser, ext_parser);
3144 rc = _XML_Parse_SINGLE_BYTES(ext_parser, text, (int)strlen(text), XML_TRUE);
3145 XML_GetParsingStatus(ext_parser, &status);
3146 if (resumable) {
3147 if (rc == XML_STATUS_ERROR)
3148 xml_failure(ext_parser);
3149 if (status.parsing != XML_SUSPENDED)
3150 fail("Ext Parsing status not SUSPENDED");
3151 } else {
3152 if (rc != XML_STATUS_ERROR)
3153 fail("Ext parsing not aborted");
3154 if (XML_GetErrorCode(ext_parser) != XML_ERROR_ABORTED)
3155 xml_failure(ext_parser);
3156 if (status.parsing != XML_FINISHED)
3157 fail("Ext Parsing status not FINISHED");
3158 }
3159
3160 XML_ParserFree(ext_parser);
3161 return XML_STATUS_OK;
3162 }
3163
START_TEST(test_subordinate_xdecl_suspend)3164 START_TEST(test_subordinate_xdecl_suspend) {
3165 const char *text
3166 = "<!DOCTYPE doc [\n"
3167 " <!ENTITY entity SYSTEM 'http://example.org/dummy.ent'>\n"
3168 "]>\n"
3169 "<doc>&entity;</doc>";
3170
3171 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
3172 XML_SetExternalEntityRefHandler(g_parser, external_entity_suspend_xmldecl);
3173 resumable = XML_TRUE;
3174 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
3175 == XML_STATUS_ERROR)
3176 xml_failure(g_parser);
3177 }
3178 END_TEST
3179
START_TEST(test_subordinate_xdecl_abort)3180 START_TEST(test_subordinate_xdecl_abort) {
3181 const char *text
3182 = "<!DOCTYPE doc [\n"
3183 " <!ENTITY entity SYSTEM 'http://example.org/dummy.ent'>\n"
3184 "]>\n"
3185 "<doc>&entity;</doc>";
3186
3187 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
3188 XML_SetExternalEntityRefHandler(g_parser, external_entity_suspend_xmldecl);
3189 resumable = XML_FALSE;
3190 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
3191 == XML_STATUS_ERROR)
3192 xml_failure(g_parser);
3193 }
3194 END_TEST
3195
3196 /* Test external entity fault handling with suspension */
3197 static int XMLCALL
external_entity_suspending_faulter(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)3198 external_entity_suspending_faulter(XML_Parser parser, const XML_Char *context,
3199 const XML_Char *base,
3200 const XML_Char *systemId,
3201 const XML_Char *publicId) {
3202 XML_Parser ext_parser;
3203 ExtFaults *fault = (ExtFaults *)XML_GetUserData(parser);
3204 void *buffer;
3205 int parse_len = (int)strlen(fault->parse_text);
3206
3207 UNUSED_P(base);
3208 UNUSED_P(systemId);
3209 UNUSED_P(publicId);
3210 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
3211 if (ext_parser == NULL)
3212 fail("Could not create external entity parser");
3213 XML_SetXmlDeclHandler(ext_parser, entity_suspending_xdecl_handler);
3214 XML_SetUserData(ext_parser, ext_parser);
3215 resumable = XML_TRUE;
3216 buffer = XML_GetBuffer(ext_parser, parse_len);
3217 if (buffer == NULL)
3218 fail("Could not allocate parse buffer");
3219 assert(buffer != NULL);
3220 memcpy(buffer, fault->parse_text, parse_len);
3221 if (XML_ParseBuffer(ext_parser, parse_len, XML_FALSE) != XML_STATUS_SUSPENDED)
3222 fail("XML declaration did not suspend");
3223 if (XML_ResumeParser(ext_parser) != XML_STATUS_OK)
3224 xml_failure(ext_parser);
3225 if (XML_ParseBuffer(ext_parser, 0, XML_TRUE) != XML_STATUS_ERROR)
3226 fail(fault->fail_text);
3227 if (XML_GetErrorCode(ext_parser) != fault->error)
3228 xml_failure(ext_parser);
3229
3230 XML_ParserFree(ext_parser);
3231 return XML_STATUS_ERROR;
3232 }
3233
START_TEST(test_ext_entity_invalid_suspended_parse)3234 START_TEST(test_ext_entity_invalid_suspended_parse) {
3235 const char *text = "<!DOCTYPE doc [\n"
3236 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
3237 "]>\n"
3238 "<doc>&en;</doc>";
3239 ExtFaults faults[]
3240 = {{"<?xml version='1.0' encoding='us-ascii'?><",
3241 "Incomplete element declaration not faulted", NULL,
3242 XML_ERROR_UNCLOSED_TOKEN},
3243 {/* First two bytes of a three-byte char */
3244 "<?xml version='1.0' encoding='utf-8'?>\xe2\x82",
3245 "Incomplete character not faulted", NULL, XML_ERROR_PARTIAL_CHAR},
3246 {NULL, NULL, NULL, XML_ERROR_NONE}};
3247 ExtFaults *fault;
3248
3249 for (fault = &faults[0]; fault->parse_text != NULL; fault++) {
3250 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
3251 XML_SetExternalEntityRefHandler(g_parser,
3252 external_entity_suspending_faulter);
3253 XML_SetUserData(g_parser, fault);
3254 expect_failure(text, XML_ERROR_EXTERNAL_ENTITY_HANDLING,
3255 "Parser did not report external entity error");
3256 XML_ParserReset(g_parser, NULL);
3257 }
3258 }
3259 END_TEST
3260
3261 /* Test setting an explicit encoding */
START_TEST(test_explicit_encoding)3262 START_TEST(test_explicit_encoding) {
3263 const char *text1 = "<doc>Hello ";
3264 const char *text2 = " World</doc>";
3265
3266 /* Just check that we can set the encoding to NULL before starting */
3267 if (XML_SetEncoding(g_parser, NULL) != XML_STATUS_OK)
3268 fail("Failed to initialise encoding to NULL");
3269 /* Say we are UTF-8 */
3270 if (XML_SetEncoding(g_parser, XCS("utf-8")) != XML_STATUS_OK)
3271 fail("Failed to set explicit encoding");
3272 if (_XML_Parse_SINGLE_BYTES(g_parser, text1, (int)strlen(text1), XML_FALSE)
3273 == XML_STATUS_ERROR)
3274 xml_failure(g_parser);
3275 /* Try to switch encodings mid-parse */
3276 if (XML_SetEncoding(g_parser, XCS("us-ascii")) != XML_STATUS_ERROR)
3277 fail("Allowed encoding change");
3278 if (_XML_Parse_SINGLE_BYTES(g_parser, text2, (int)strlen(text2), XML_TRUE)
3279 == XML_STATUS_ERROR)
3280 xml_failure(g_parser);
3281 /* Try now the parse is over */
3282 if (XML_SetEncoding(g_parser, NULL) != XML_STATUS_OK)
3283 fail("Failed to unset encoding");
3284 }
3285 END_TEST
3286
3287 /* Test handling of trailing CR (rather than newline) */
3288 static void XMLCALL
cr_cdata_handler(void * userData,const XML_Char * s,int len)3289 cr_cdata_handler(void *userData, const XML_Char *s, int len) {
3290 int *pfound = (int *)userData;
3291
3292 /* Internal processing turns the CR into a newline for the
3293 * character data handler, but not for the default handler
3294 */
3295 if (len == 1 && (*s == XCS('\n') || *s == XCS('\r')))
3296 *pfound = 1;
3297 }
3298
START_TEST(test_trailing_cr)3299 START_TEST(test_trailing_cr) {
3300 const char *text = "<doc>\r";
3301 int found_cr;
3302
3303 /* Try with a character handler, for code coverage */
3304 XML_SetCharacterDataHandler(g_parser, cr_cdata_handler);
3305 XML_SetUserData(g_parser, &found_cr);
3306 found_cr = 0;
3307 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
3308 == XML_STATUS_OK)
3309 fail("Failed to fault unclosed doc");
3310 if (found_cr == 0)
3311 fail("Did not catch the carriage return");
3312 XML_ParserReset(g_parser, NULL);
3313
3314 /* Now with a default handler instead */
3315 XML_SetDefaultHandler(g_parser, cr_cdata_handler);
3316 XML_SetUserData(g_parser, &found_cr);
3317 found_cr = 0;
3318 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
3319 == XML_STATUS_OK)
3320 fail("Failed to fault unclosed doc");
3321 if (found_cr == 0)
3322 fail("Did not catch default carriage return");
3323 }
3324 END_TEST
3325
3326 /* Test trailing CR in an external entity parse */
3327 static int XMLCALL
external_entity_cr_catcher(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)3328 external_entity_cr_catcher(XML_Parser parser, const XML_Char *context,
3329 const XML_Char *base, const XML_Char *systemId,
3330 const XML_Char *publicId) {
3331 const char *text = "\r";
3332 XML_Parser ext_parser;
3333
3334 UNUSED_P(base);
3335 UNUSED_P(systemId);
3336 UNUSED_P(publicId);
3337 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
3338 if (ext_parser == NULL)
3339 fail("Could not create external entity parser");
3340 XML_SetCharacterDataHandler(ext_parser, cr_cdata_handler);
3341 if (_XML_Parse_SINGLE_BYTES(ext_parser, text, (int)strlen(text), XML_TRUE)
3342 == XML_STATUS_ERROR)
3343 xml_failure(ext_parser);
3344 XML_ParserFree(ext_parser);
3345 return XML_STATUS_OK;
3346 }
3347
3348 static int XMLCALL
external_entity_bad_cr_catcher(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)3349 external_entity_bad_cr_catcher(XML_Parser parser, const XML_Char *context,
3350 const XML_Char *base, const XML_Char *systemId,
3351 const XML_Char *publicId) {
3352 const char *text = "<tag>\r";
3353 XML_Parser ext_parser;
3354
3355 UNUSED_P(base);
3356 UNUSED_P(systemId);
3357 UNUSED_P(publicId);
3358 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
3359 if (ext_parser == NULL)
3360 fail("Could not create external entity parser");
3361 XML_SetCharacterDataHandler(ext_parser, cr_cdata_handler);
3362 if (_XML_Parse_SINGLE_BYTES(ext_parser, text, (int)strlen(text), XML_TRUE)
3363 == XML_STATUS_OK)
3364 fail("Async entity error not caught");
3365 if (XML_GetErrorCode(ext_parser) != XML_ERROR_ASYNC_ENTITY)
3366 xml_failure(ext_parser);
3367 XML_ParserFree(ext_parser);
3368 return XML_STATUS_OK;
3369 }
3370
START_TEST(test_ext_entity_trailing_cr)3371 START_TEST(test_ext_entity_trailing_cr) {
3372 const char *text = "<!DOCTYPE doc [\n"
3373 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
3374 "]>\n"
3375 "<doc>&en;</doc>";
3376 int found_cr;
3377
3378 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
3379 XML_SetExternalEntityRefHandler(g_parser, external_entity_cr_catcher);
3380 XML_SetUserData(g_parser, &found_cr);
3381 found_cr = 0;
3382 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
3383 != XML_STATUS_OK)
3384 xml_failure(g_parser);
3385 if (found_cr == 0)
3386 fail("No carriage return found");
3387 XML_ParserReset(g_parser, NULL);
3388
3389 /* Try again with a different trailing CR */
3390 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
3391 XML_SetExternalEntityRefHandler(g_parser, external_entity_bad_cr_catcher);
3392 XML_SetUserData(g_parser, &found_cr);
3393 found_cr = 0;
3394 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
3395 != XML_STATUS_OK)
3396 xml_failure(g_parser);
3397 if (found_cr == 0)
3398 fail("No carriage return found");
3399 }
3400 END_TEST
3401
3402 /* Test handling of trailing square bracket */
3403 static void XMLCALL
rsqb_handler(void * userData,const XML_Char * s,int len)3404 rsqb_handler(void *userData, const XML_Char *s, int len) {
3405 int *pfound = (int *)userData;
3406
3407 if (len == 1 && *s == XCS(']'))
3408 *pfound = 1;
3409 }
3410
START_TEST(test_trailing_rsqb)3411 START_TEST(test_trailing_rsqb) {
3412 const char *text8 = "<doc>]";
3413 const char text16[] = "\xFF\xFE<\000d\000o\000c\000>\000]\000";
3414 int found_rsqb;
3415 int text8_len = (int)strlen(text8);
3416
3417 XML_SetCharacterDataHandler(g_parser, rsqb_handler);
3418 XML_SetUserData(g_parser, &found_rsqb);
3419 found_rsqb = 0;
3420 if (_XML_Parse_SINGLE_BYTES(g_parser, text8, text8_len, XML_TRUE)
3421 == XML_STATUS_OK)
3422 fail("Failed to fault unclosed doc");
3423 if (found_rsqb == 0)
3424 fail("Did not catch the right square bracket");
3425
3426 /* Try again with a different encoding */
3427 XML_ParserReset(g_parser, NULL);
3428 XML_SetCharacterDataHandler(g_parser, rsqb_handler);
3429 XML_SetUserData(g_parser, &found_rsqb);
3430 found_rsqb = 0;
3431 if (_XML_Parse_SINGLE_BYTES(g_parser, text16, (int)sizeof(text16) - 1,
3432 XML_TRUE)
3433 == XML_STATUS_OK)
3434 fail("Failed to fault unclosed doc");
3435 if (found_rsqb == 0)
3436 fail("Did not catch the right square bracket");
3437
3438 /* And finally with a default handler */
3439 XML_ParserReset(g_parser, NULL);
3440 XML_SetDefaultHandler(g_parser, rsqb_handler);
3441 XML_SetUserData(g_parser, &found_rsqb);
3442 found_rsqb = 0;
3443 if (_XML_Parse_SINGLE_BYTES(g_parser, text16, (int)sizeof(text16) - 1,
3444 XML_TRUE)
3445 == XML_STATUS_OK)
3446 fail("Failed to fault unclosed doc");
3447 if (found_rsqb == 0)
3448 fail("Did not catch the right square bracket");
3449 }
3450 END_TEST
3451
3452 /* Test trailing right square bracket in an external entity parse */
3453 static int XMLCALL
external_entity_rsqb_catcher(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)3454 external_entity_rsqb_catcher(XML_Parser parser, const XML_Char *context,
3455 const XML_Char *base, const XML_Char *systemId,
3456 const XML_Char *publicId) {
3457 const char *text = "<tag>]";
3458 XML_Parser ext_parser;
3459
3460 UNUSED_P(base);
3461 UNUSED_P(systemId);
3462 UNUSED_P(publicId);
3463 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
3464 if (ext_parser == NULL)
3465 fail("Could not create external entity parser");
3466 XML_SetCharacterDataHandler(ext_parser, rsqb_handler);
3467 if (_XML_Parse_SINGLE_BYTES(ext_parser, text, (int)strlen(text), XML_TRUE)
3468 != XML_STATUS_ERROR)
3469 fail("Async entity error not caught");
3470 if (XML_GetErrorCode(ext_parser) != XML_ERROR_ASYNC_ENTITY)
3471 xml_failure(ext_parser);
3472 XML_ParserFree(ext_parser);
3473 return XML_STATUS_OK;
3474 }
3475
START_TEST(test_ext_entity_trailing_rsqb)3476 START_TEST(test_ext_entity_trailing_rsqb) {
3477 const char *text = "<!DOCTYPE doc [\n"
3478 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
3479 "]>\n"
3480 "<doc>&en;</doc>";
3481 int found_rsqb;
3482
3483 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
3484 XML_SetExternalEntityRefHandler(g_parser, external_entity_rsqb_catcher);
3485 XML_SetUserData(g_parser, &found_rsqb);
3486 found_rsqb = 0;
3487 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
3488 != XML_STATUS_OK)
3489 xml_failure(g_parser);
3490 if (found_rsqb == 0)
3491 fail("No right square bracket found");
3492 }
3493 END_TEST
3494
3495 /* Test CDATA handling in an external entity */
3496 static int XMLCALL
external_entity_good_cdata_ascii(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)3497 external_entity_good_cdata_ascii(XML_Parser parser, const XML_Char *context,
3498 const XML_Char *base, const XML_Char *systemId,
3499 const XML_Char *publicId) {
3500 const char *text = "<a><![CDATA[<greeting>Hello, world!</greeting>]]></a>";
3501 const XML_Char *expected = XCS("<greeting>Hello, world!</greeting>");
3502 CharData storage;
3503 XML_Parser ext_parser;
3504
3505 UNUSED_P(base);
3506 UNUSED_P(systemId);
3507 UNUSED_P(publicId);
3508 CharData_Init(&storage);
3509 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
3510 if (ext_parser == NULL)
3511 fail("Could not create external entity parser");
3512 XML_SetUserData(ext_parser, &storage);
3513 XML_SetCharacterDataHandler(ext_parser, accumulate_characters);
3514
3515 if (_XML_Parse_SINGLE_BYTES(ext_parser, text, (int)strlen(text), XML_TRUE)
3516 == XML_STATUS_ERROR)
3517 xml_failure(ext_parser);
3518 CharData_CheckXMLChars(&storage, expected);
3519
3520 XML_ParserFree(ext_parser);
3521 return XML_STATUS_OK;
3522 }
3523
START_TEST(test_ext_entity_good_cdata)3524 START_TEST(test_ext_entity_good_cdata) {
3525 const char *text = "<!DOCTYPE doc [\n"
3526 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
3527 "]>\n"
3528 "<doc>&en;</doc>";
3529
3530 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
3531 XML_SetExternalEntityRefHandler(g_parser, external_entity_good_cdata_ascii);
3532 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
3533 != XML_STATUS_OK)
3534 xml_failure(g_parser);
3535 }
3536 END_TEST
3537
3538 /* Test user parameter settings */
3539 /* Variable holding the expected handler userData */
3540 static void *handler_data = NULL;
3541 /* Count of the number of times the comment handler has been invoked */
3542 static int comment_count = 0;
3543 /* Count of the number of skipped entities */
3544 static int skip_count = 0;
3545 /* Count of the number of times the XML declaration handler is invoked */
3546 static int xdecl_count = 0;
3547
3548 static void XMLCALL
xml_decl_handler(void * userData,const XML_Char * version,const XML_Char * encoding,int standalone)3549 xml_decl_handler(void *userData, const XML_Char *version,
3550 const XML_Char *encoding, int standalone) {
3551 UNUSED_P(version);
3552 UNUSED_P(encoding);
3553 if (userData != handler_data)
3554 fail("User data (xml decl) not correctly set");
3555 if (standalone != -1)
3556 fail("Standalone not flagged as not present in XML decl");
3557 xdecl_count++;
3558 }
3559
3560 static void XMLCALL
param_check_skip_handler(void * userData,const XML_Char * entityName,int is_parameter_entity)3561 param_check_skip_handler(void *userData, const XML_Char *entityName,
3562 int is_parameter_entity) {
3563 UNUSED_P(entityName);
3564 UNUSED_P(is_parameter_entity);
3565 if (userData != handler_data)
3566 fail("User data (skip) not correctly set");
3567 skip_count++;
3568 }
3569
3570 static void XMLCALL
data_check_comment_handler(void * userData,const XML_Char * data)3571 data_check_comment_handler(void *userData, const XML_Char *data) {
3572 UNUSED_P(data);
3573 /* Check that the userData passed through is what we expect */
3574 if (userData != handler_data)
3575 fail("User data (parser) not correctly set");
3576 /* Check that the user data in the parser is appropriate */
3577 if (XML_GetUserData(userData) != (void *)1)
3578 fail("User data in parser not correctly set");
3579 comment_count++;
3580 }
3581
3582 static int XMLCALL
external_entity_param_checker(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)3583 external_entity_param_checker(XML_Parser parser, const XML_Char *context,
3584 const XML_Char *base, const XML_Char *systemId,
3585 const XML_Char *publicId) {
3586 const char *text = "<!-- Subordinate parser -->\n"
3587 "<!ELEMENT doc (#PCDATA)*>";
3588 XML_Parser ext_parser;
3589
3590 UNUSED_P(base);
3591 UNUSED_P(systemId);
3592 UNUSED_P(publicId);
3593 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
3594 if (ext_parser == NULL)
3595 fail("Could not create external entity parser");
3596 handler_data = ext_parser;
3597 if (_XML_Parse_SINGLE_BYTES(ext_parser, text, (int)strlen(text), XML_TRUE)
3598 == XML_STATUS_ERROR) {
3599 xml_failure(parser);
3600 return XML_STATUS_ERROR;
3601 }
3602 handler_data = parser;
3603 XML_ParserFree(ext_parser);
3604 return XML_STATUS_OK;
3605 }
3606
START_TEST(test_user_parameters)3607 START_TEST(test_user_parameters) {
3608 const char *text = "<?xml version='1.0' encoding='us-ascii'?>\n"
3609 "<!-- Primary parse -->\n"
3610 "<!DOCTYPE doc SYSTEM 'foo'>\n"
3611 "<doc>&entity;";
3612 const char *epilog = "<!-- Back to primary parser -->\n"
3613 "</doc>";
3614
3615 comment_count = 0;
3616 skip_count = 0;
3617 xdecl_count = 0;
3618 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
3619 XML_SetXmlDeclHandler(g_parser, xml_decl_handler);
3620 XML_SetExternalEntityRefHandler(g_parser, external_entity_param_checker);
3621 XML_SetCommentHandler(g_parser, data_check_comment_handler);
3622 XML_SetSkippedEntityHandler(g_parser, param_check_skip_handler);
3623 XML_UseParserAsHandlerArg(g_parser);
3624 XML_SetUserData(g_parser, (void *)1);
3625 handler_data = g_parser;
3626 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_FALSE)
3627 == XML_STATUS_ERROR)
3628 xml_failure(g_parser);
3629 if (comment_count != 2)
3630 fail("Comment handler not invoked enough times");
3631 /* Ensure we can't change policy mid-parse */
3632 if (XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_NEVER))
3633 fail("Changed param entity parsing policy while parsing");
3634 if (_XML_Parse_SINGLE_BYTES(g_parser, epilog, (int)strlen(epilog), XML_TRUE)
3635 == XML_STATUS_ERROR)
3636 xml_failure(g_parser);
3637 if (comment_count != 3)
3638 fail("Comment handler not invoked enough times");
3639 if (skip_count != 1)
3640 fail("Skip handler not invoked enough times");
3641 if (xdecl_count != 1)
3642 fail("XML declaration handler not invoked");
3643 }
3644 END_TEST
3645
3646 /* Test that an explicit external entity handler argument replaces
3647 * the parser as the first argument.
3648 *
3649 * We do not call the first parameter to the external entity handler
3650 * 'parser' for once, since the first time the handler is called it
3651 * will actually be a text string. We need to be able to access the
3652 * global 'parser' variable to create our external entity parser from,
3653 * since there are code paths we need to ensure get executed.
3654 */
3655 static int XMLCALL
external_entity_ref_param_checker(XML_Parser parameter,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)3656 external_entity_ref_param_checker(XML_Parser parameter, const XML_Char *context,
3657 const XML_Char *base,
3658 const XML_Char *systemId,
3659 const XML_Char *publicId) {
3660 const char *text = "<!ELEMENT doc (#PCDATA)*>";
3661 XML_Parser ext_parser;
3662
3663 UNUSED_P(base);
3664 UNUSED_P(systemId);
3665 UNUSED_P(publicId);
3666 if ((void *)parameter != handler_data)
3667 fail("External entity ref handler parameter not correct");
3668
3669 /* Here we use the global 'parser' variable */
3670 ext_parser = XML_ExternalEntityParserCreate(g_parser, context, NULL);
3671 if (ext_parser == NULL)
3672 fail("Could not create external entity parser");
3673 if (_XML_Parse_SINGLE_BYTES(ext_parser, text, (int)strlen(text), XML_TRUE)
3674 == XML_STATUS_ERROR)
3675 xml_failure(ext_parser);
3676
3677 XML_ParserFree(ext_parser);
3678 return XML_STATUS_OK;
3679 }
3680
START_TEST(test_ext_entity_ref_parameter)3681 START_TEST(test_ext_entity_ref_parameter) {
3682 const char *text = "<?xml version='1.0' encoding='us-ascii'?>\n"
3683 "<!DOCTYPE doc SYSTEM 'foo'>\n"
3684 "<doc>&entity;</doc>";
3685
3686 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
3687 XML_SetExternalEntityRefHandler(g_parser, external_entity_ref_param_checker);
3688 /* Set a handler arg that is not NULL and not parser (which is
3689 * what NULL would cause to be passed.
3690 */
3691 XML_SetExternalEntityRefHandlerArg(g_parser, (void *)text);
3692 handler_data = (void *)text;
3693 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
3694 == XML_STATUS_ERROR)
3695 xml_failure(g_parser);
3696
3697 /* Now try again with unset args */
3698 XML_ParserReset(g_parser, NULL);
3699 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
3700 XML_SetExternalEntityRefHandler(g_parser, external_entity_ref_param_checker);
3701 XML_SetExternalEntityRefHandlerArg(g_parser, NULL);
3702 handler_data = (void *)g_parser;
3703 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
3704 == XML_STATUS_ERROR)
3705 xml_failure(g_parser);
3706 }
3707 END_TEST
3708
3709 /* Test the parsing of an empty string */
START_TEST(test_empty_parse)3710 START_TEST(test_empty_parse) {
3711 const char *text = "<doc></doc>";
3712 const char *partial = "<doc>";
3713
3714 if (XML_Parse(g_parser, NULL, 0, XML_FALSE) == XML_STATUS_ERROR)
3715 fail("Parsing empty string faulted");
3716 if (XML_Parse(g_parser, NULL, 0, XML_TRUE) != XML_STATUS_ERROR)
3717 fail("Parsing final empty string not faulted");
3718 if (XML_GetErrorCode(g_parser) != XML_ERROR_NO_ELEMENTS)
3719 fail("Parsing final empty string faulted for wrong reason");
3720
3721 /* Now try with valid text before the empty end */
3722 XML_ParserReset(g_parser, NULL);
3723 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_FALSE)
3724 == XML_STATUS_ERROR)
3725 xml_failure(g_parser);
3726 if (XML_Parse(g_parser, NULL, 0, XML_TRUE) == XML_STATUS_ERROR)
3727 fail("Parsing final empty string faulted");
3728
3729 /* Now try with invalid text before the empty end */
3730 XML_ParserReset(g_parser, NULL);
3731 if (_XML_Parse_SINGLE_BYTES(g_parser, partial, (int)strlen(partial),
3732 XML_FALSE)
3733 == XML_STATUS_ERROR)
3734 xml_failure(g_parser);
3735 if (XML_Parse(g_parser, NULL, 0, XML_TRUE) != XML_STATUS_ERROR)
3736 fail("Parsing final incomplete empty string not faulted");
3737 }
3738 END_TEST
3739
3740 /* Test odd corners of the XML_GetBuffer interface */
3741 static enum XML_Status
get_feature(enum XML_FeatureEnum feature_id,long * presult)3742 get_feature(enum XML_FeatureEnum feature_id, long *presult) {
3743 const XML_Feature *feature = XML_GetFeatureList();
3744
3745 if (feature == NULL)
3746 return XML_STATUS_ERROR;
3747 for (; feature->feature != XML_FEATURE_END; feature++) {
3748 if (feature->feature == feature_id) {
3749 *presult = feature->value;
3750 return XML_STATUS_OK;
3751 }
3752 }
3753 return XML_STATUS_ERROR;
3754 }
3755
3756 /* Having an element name longer than 1024 characters exercises some
3757 * of the pool allocation code in the parser that otherwise does not
3758 * get executed. The count at the end of the line is the number of
3759 * characters (bytes) in the element name by that point.x
3760 */
3761 static const char *get_buffer_test_text
3762 = "<documentwitharidiculouslylongelementnametotease" /* 0x030 */
3763 "aparticularcorneroftheallocationinXML_GetBuffers" /* 0x060 */
3764 "othatwecanimprovethecoverageyetagain012345678901" /* 0x090 */
3765 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x0c0 */
3766 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x0f0 */
3767 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x120 */
3768 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x150 */
3769 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x180 */
3770 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x1b0 */
3771 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x1e0 */
3772 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x210 */
3773 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x240 */
3774 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x270 */
3775 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x2a0 */
3776 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x2d0 */
3777 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x300 */
3778 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x330 */
3779 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x360 */
3780 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x390 */
3781 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x3c0 */
3782 "123456789abcdef0123456789abcdef0123456789abcdef0" /* 0x3f0 */
3783 "123456789abcdef0123456789abcdef0123456789>\n<ef0"; /* 0x420 */
3784
3785 /* Test odd corners of the XML_GetBuffer interface */
START_TEST(test_get_buffer_1)3786 START_TEST(test_get_buffer_1) {
3787 const char *text = get_buffer_test_text;
3788 void *buffer;
3789 long context_bytes;
3790
3791 /* Attempt to allocate a negative length buffer */
3792 if (XML_GetBuffer(g_parser, -12) != NULL)
3793 fail("Negative length buffer not failed");
3794
3795 /* Now get a small buffer and extend it past valid length */
3796 buffer = XML_GetBuffer(g_parser, 1536);
3797 if (buffer == NULL)
3798 fail("1.5K buffer failed");
3799 assert(buffer != NULL);
3800 memcpy(buffer, text, strlen(text));
3801 if (XML_ParseBuffer(g_parser, (int)strlen(text), XML_FALSE)
3802 == XML_STATUS_ERROR)
3803 xml_failure(g_parser);
3804 if (XML_GetBuffer(g_parser, INT_MAX) != NULL)
3805 fail("INT_MAX buffer not failed");
3806
3807 /* Now try extending it a more reasonable but still too large
3808 * amount. The allocator in XML_GetBuffer() doubles the buffer
3809 * size until it exceeds the requested amount or INT_MAX. If it
3810 * exceeds INT_MAX, it rejects the request, so we want a request
3811 * between INT_MAX and INT_MAX/2. A gap of 1K seems comfortable,
3812 * with an extra byte just to ensure that the request is off any
3813 * boundary. The request will be inflated internally by
3814 * XML_CONTEXT_BYTES (if defined), so we subtract that from our
3815 * request.
3816 */
3817 if (get_feature(XML_FEATURE_CONTEXT_BYTES, &context_bytes) != XML_STATUS_OK)
3818 context_bytes = 0;
3819 if (XML_GetBuffer(g_parser, INT_MAX - (context_bytes + 1025)) != NULL)
3820 fail("INT_MAX- buffer not failed");
3821
3822 /* Now try extending it a carefully crafted amount */
3823 if (XML_GetBuffer(g_parser, 1000) == NULL)
3824 fail("1000 buffer failed");
3825 }
3826 END_TEST
3827
3828 /* Test more corners of the XML_GetBuffer interface */
START_TEST(test_get_buffer_2)3829 START_TEST(test_get_buffer_2) {
3830 const char *text = get_buffer_test_text;
3831 void *buffer;
3832
3833 /* Now get a decent buffer */
3834 buffer = XML_GetBuffer(g_parser, 1536);
3835 if (buffer == NULL)
3836 fail("1.5K buffer failed");
3837 assert(buffer != NULL);
3838 memcpy(buffer, text, strlen(text));
3839 if (XML_ParseBuffer(g_parser, (int)strlen(text), XML_FALSE)
3840 == XML_STATUS_ERROR)
3841 xml_failure(g_parser);
3842
3843 /* Extend it, to catch a different code path */
3844 if (XML_GetBuffer(g_parser, 1024) == NULL)
3845 fail("1024 buffer failed");
3846 }
3847 END_TEST
3848
3849 /* Test position information macros */
START_TEST(test_byte_info_at_end)3850 START_TEST(test_byte_info_at_end) {
3851 const char *text = "<doc></doc>";
3852
3853 if (XML_GetCurrentByteIndex(g_parser) != -1
3854 || XML_GetCurrentByteCount(g_parser) != 0)
3855 fail("Byte index/count incorrect at start of parse");
3856 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
3857 == XML_STATUS_ERROR)
3858 xml_failure(g_parser);
3859 /* At end, the count will be zero and the index the end of string */
3860 if (XML_GetCurrentByteCount(g_parser) != 0)
3861 fail("Terminal byte count incorrect");
3862 if (XML_GetCurrentByteIndex(g_parser) != (XML_Index)strlen(text))
3863 fail("Terminal byte index incorrect");
3864 }
3865 END_TEST
3866
3867 /* Test position information from errors */
3868 #define PRE_ERROR_STR "<doc></"
3869 #define POST_ERROR_STR "wombat></doc>"
START_TEST(test_byte_info_at_error)3870 START_TEST(test_byte_info_at_error) {
3871 const char *text = PRE_ERROR_STR POST_ERROR_STR;
3872
3873 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
3874 == XML_STATUS_OK)
3875 fail("Syntax error not faulted");
3876 if (XML_GetCurrentByteCount(g_parser) != 0)
3877 fail("Error byte count incorrect");
3878 if (XML_GetCurrentByteIndex(g_parser) != strlen(PRE_ERROR_STR))
3879 fail("Error byte index incorrect");
3880 }
3881 END_TEST
3882 #undef PRE_ERROR_STR
3883 #undef POST_ERROR_STR
3884
3885 /* Test position information in handler */
3886 typedef struct ByteTestData {
3887 int start_element_len;
3888 int cdata_len;
3889 int total_string_len;
3890 } ByteTestData;
3891
3892 static void
byte_character_handler(void * userData,const XML_Char * s,int len)3893 byte_character_handler(void *userData, const XML_Char *s, int len) {
3894 #ifdef XML_CONTEXT_BYTES
3895 int offset, size;
3896 const char *buffer;
3897 ByteTestData *data = (ByteTestData *)userData;
3898
3899 UNUSED_P(s);
3900 buffer = XML_GetInputContext(g_parser, &offset, &size);
3901 if (buffer == NULL)
3902 fail("Failed to get context buffer");
3903 if (offset != data->start_element_len)
3904 fail("Context offset in unexpected position");
3905 if (len != data->cdata_len)
3906 fail("CDATA length reported incorrectly");
3907 if (size != data->total_string_len)
3908 fail("Context size is not full buffer");
3909 if (XML_GetCurrentByteIndex(g_parser) != offset)
3910 fail("Character byte index incorrect");
3911 if (XML_GetCurrentByteCount(g_parser) != len)
3912 fail("Character byte count incorrect");
3913 #else
3914 UNUSED_P(s);
3915 UNUSED_P(userData);
3916 UNUSED_P(len);
3917 #endif
3918 }
3919
3920 #define START_ELEMENT "<e>"
3921 #define CDATA_TEXT "Hello"
3922 #define END_ELEMENT "</e>"
START_TEST(test_byte_info_at_cdata)3923 START_TEST(test_byte_info_at_cdata) {
3924 const char *text = START_ELEMENT CDATA_TEXT END_ELEMENT;
3925 int offset, size;
3926 ByteTestData data;
3927
3928 /* Check initial context is empty */
3929 if (XML_GetInputContext(g_parser, &offset, &size) != NULL)
3930 fail("Unexpected context at start of parse");
3931
3932 data.start_element_len = (int)strlen(START_ELEMENT);
3933 data.cdata_len = (int)strlen(CDATA_TEXT);
3934 data.total_string_len = (int)strlen(text);
3935 XML_SetCharacterDataHandler(g_parser, byte_character_handler);
3936 XML_SetUserData(g_parser, &data);
3937 if (XML_Parse(g_parser, text, (int)strlen(text), XML_TRUE) != XML_STATUS_OK)
3938 xml_failure(g_parser);
3939 }
3940 END_TEST
3941 #undef START_ELEMENT
3942 #undef CDATA_TEXT
3943 #undef END_ELEMENT
3944
3945 /* Test predefined entities are correctly recognised */
START_TEST(test_predefined_entities)3946 START_TEST(test_predefined_entities) {
3947 const char *text = "<doc><>&"'</doc>";
3948 const XML_Char *expected = XCS("<doc><>&"'</doc>");
3949 const XML_Char *result = XCS("<>&\"'");
3950 CharData storage;
3951
3952 XML_SetDefaultHandler(g_parser, accumulate_characters);
3953 /* run_character_check uses XML_SetCharacterDataHandler(), which
3954 * unfortunately heads off a code path that we need to exercise.
3955 */
3956 CharData_Init(&storage);
3957 XML_SetUserData(g_parser, &storage);
3958 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
3959 == XML_STATUS_ERROR)
3960 xml_failure(g_parser);
3961 /* The default handler doesn't translate the entities */
3962 CharData_CheckXMLChars(&storage, expected);
3963
3964 /* Now try again and check the translation */
3965 XML_ParserReset(g_parser, NULL);
3966 run_character_check(text, result);
3967 }
3968 END_TEST
3969
3970 /* Regression test that an invalid tag in an external parameter
3971 * reference in an external DTD is correctly faulted.
3972 *
3973 * Only a few specific tags are legal in DTDs ignoring comments and
3974 * processing instructions, all of which begin with an exclamation
3975 * mark. "<el/>" is not one of them, so the parser should raise an
3976 * error on encountering it.
3977 */
3978 static int XMLCALL
external_entity_param(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)3979 external_entity_param(XML_Parser parser, const XML_Char *context,
3980 const XML_Char *base, const XML_Char *systemId,
3981 const XML_Char *publicId) {
3982 const char *text1 = "<!ELEMENT doc EMPTY>\n"
3983 "<!ENTITY % e1 SYSTEM '004-2.ent'>\n"
3984 "<!ENTITY % e2 '%e1;'>\n"
3985 "%e1;\n";
3986 const char *text2 = "<!ELEMENT el EMPTY>\n"
3987 "<el/>\n";
3988 XML_Parser ext_parser;
3989
3990 UNUSED_P(base);
3991 UNUSED_P(publicId);
3992 if (systemId == NULL)
3993 return XML_STATUS_OK;
3994
3995 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
3996 if (ext_parser == NULL)
3997 fail("Could not create external entity parser");
3998
3999 if (! xcstrcmp(systemId, XCS("004-1.ent"))) {
4000 if (_XML_Parse_SINGLE_BYTES(ext_parser, text1, (int)strlen(text1), XML_TRUE)
4001 != XML_STATUS_ERROR)
4002 fail("Inner DTD with invalid tag not rejected");
4003 if (XML_GetErrorCode(ext_parser) != XML_ERROR_EXTERNAL_ENTITY_HANDLING)
4004 xml_failure(ext_parser);
4005 } else if (! xcstrcmp(systemId, XCS("004-2.ent"))) {
4006 if (_XML_Parse_SINGLE_BYTES(ext_parser, text2, (int)strlen(text2), XML_TRUE)
4007 != XML_STATUS_ERROR)
4008 fail("Invalid tag in external param not rejected");
4009 if (XML_GetErrorCode(ext_parser) != XML_ERROR_SYNTAX)
4010 xml_failure(ext_parser);
4011 } else {
4012 fail("Unknown system ID");
4013 }
4014
4015 XML_ParserFree(ext_parser);
4016 return XML_STATUS_ERROR;
4017 }
4018
START_TEST(test_invalid_tag_in_dtd)4019 START_TEST(test_invalid_tag_in_dtd) {
4020 const char *text = "<!DOCTYPE doc SYSTEM '004-1.ent'>\n"
4021 "<doc></doc>\n";
4022
4023 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
4024 XML_SetExternalEntityRefHandler(g_parser, external_entity_param);
4025 expect_failure(text, XML_ERROR_EXTERNAL_ENTITY_HANDLING,
4026 "Invalid tag IN DTD external param not rejected");
4027 }
4028 END_TEST
4029
4030 /* Test entities not quite the predefined ones are not mis-recognised */
START_TEST(test_not_predefined_entities)4031 START_TEST(test_not_predefined_entities) {
4032 const char *text[] = {"<doc>&pt;</doc>", "<doc>&amo;</doc>",
4033 "<doc>&quid;</doc>", "<doc>&apod;</doc>", NULL};
4034 int i = 0;
4035
4036 while (text[i] != NULL) {
4037 expect_failure(text[i], XML_ERROR_UNDEFINED_ENTITY,
4038 "Undefined entity not rejected");
4039 XML_ParserReset(g_parser, NULL);
4040 i++;
4041 }
4042 }
4043 END_TEST
4044
4045 /* Test conditional inclusion (IGNORE) */
4046 static int XMLCALL
external_entity_load_ignore(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)4047 external_entity_load_ignore(XML_Parser parser, const XML_Char *context,
4048 const XML_Char *base, const XML_Char *systemId,
4049 const XML_Char *publicId) {
4050 const char *text = "<![IGNORE[<!ELEMENT e (#PCDATA)*>]]>";
4051 XML_Parser ext_parser;
4052
4053 UNUSED_P(base);
4054 UNUSED_P(systemId);
4055 UNUSED_P(publicId);
4056 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
4057 if (ext_parser == NULL)
4058 fail("Could not create external entity parser");
4059 if (_XML_Parse_SINGLE_BYTES(ext_parser, text, (int)strlen(text), XML_TRUE)
4060 == XML_STATUS_ERROR)
4061 xml_failure(parser);
4062
4063 XML_ParserFree(ext_parser);
4064 return XML_STATUS_OK;
4065 }
4066
START_TEST(test_ignore_section)4067 START_TEST(test_ignore_section) {
4068 const char *text = "<!DOCTYPE doc SYSTEM 'foo'>\n"
4069 "<doc><e>&entity;</e></doc>";
4070 const XML_Char *expected
4071 = XCS("<![IGNORE[<!ELEMENT e (#PCDATA)*>]]>\n&entity;");
4072 CharData storage;
4073
4074 CharData_Init(&storage);
4075 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
4076 XML_SetUserData(g_parser, &storage);
4077 XML_SetExternalEntityRefHandler(g_parser, external_entity_load_ignore);
4078 XML_SetDefaultHandler(g_parser, accumulate_characters);
4079 XML_SetStartDoctypeDeclHandler(g_parser, dummy_start_doctype_handler);
4080 XML_SetEndDoctypeDeclHandler(g_parser, dummy_end_doctype_handler);
4081 XML_SetElementDeclHandler(g_parser, dummy_element_decl_handler);
4082 XML_SetStartElementHandler(g_parser, dummy_start_element);
4083 XML_SetEndElementHandler(g_parser, dummy_end_element);
4084 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
4085 == XML_STATUS_ERROR)
4086 xml_failure(g_parser);
4087 CharData_CheckXMLChars(&storage, expected);
4088 }
4089 END_TEST
4090
4091 static int XMLCALL
external_entity_load_ignore_utf16(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)4092 external_entity_load_ignore_utf16(XML_Parser parser, const XML_Char *context,
4093 const XML_Char *base,
4094 const XML_Char *systemId,
4095 const XML_Char *publicId) {
4096 const char text[] =
4097 /* <![IGNORE[<!ELEMENT e (#PCDATA)*>]]> */
4098 "<\0!\0[\0I\0G\0N\0O\0R\0E\0[\0"
4099 "<\0!\0E\0L\0E\0M\0E\0N\0T\0 \0e\0 \0"
4100 "(\0#\0P\0C\0D\0A\0T\0A\0)\0*\0>\0]\0]\0>\0";
4101 XML_Parser ext_parser;
4102
4103 UNUSED_P(base);
4104 UNUSED_P(systemId);
4105 UNUSED_P(publicId);
4106 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
4107 if (ext_parser == NULL)
4108 fail("Could not create external entity parser");
4109 if (_XML_Parse_SINGLE_BYTES(ext_parser, text, (int)sizeof(text) - 1, XML_TRUE)
4110 == XML_STATUS_ERROR)
4111 xml_failure(parser);
4112
4113 XML_ParserFree(ext_parser);
4114 return XML_STATUS_OK;
4115 }
4116
START_TEST(test_ignore_section_utf16)4117 START_TEST(test_ignore_section_utf16) {
4118 const char text[] =
4119 /* <!DOCTYPE d SYSTEM 's'> */
4120 "<\0!\0D\0O\0C\0T\0Y\0P\0E\0 \0d\0 "
4121 "\0S\0Y\0S\0T\0E\0M\0 \0'\0s\0'\0>\0\n\0"
4122 /* <d><e>&en;</e></d> */
4123 "<\0d\0>\0<\0e\0>\0&\0e\0n\0;\0<\0/\0e\0>\0<\0/\0d\0>\0";
4124 const XML_Char *expected = XCS("<![IGNORE[<!ELEMENT e (#PCDATA)*>]]>\n&en;");
4125 CharData storage;
4126
4127 CharData_Init(&storage);
4128 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
4129 XML_SetUserData(g_parser, &storage);
4130 XML_SetExternalEntityRefHandler(g_parser, external_entity_load_ignore_utf16);
4131 XML_SetDefaultHandler(g_parser, accumulate_characters);
4132 XML_SetStartDoctypeDeclHandler(g_parser, dummy_start_doctype_handler);
4133 XML_SetEndDoctypeDeclHandler(g_parser, dummy_end_doctype_handler);
4134 XML_SetElementDeclHandler(g_parser, dummy_element_decl_handler);
4135 XML_SetStartElementHandler(g_parser, dummy_start_element);
4136 XML_SetEndElementHandler(g_parser, dummy_end_element);
4137 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
4138 == XML_STATUS_ERROR)
4139 xml_failure(g_parser);
4140 CharData_CheckXMLChars(&storage, expected);
4141 }
4142 END_TEST
4143
4144 static int XMLCALL
external_entity_load_ignore_utf16_be(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)4145 external_entity_load_ignore_utf16_be(XML_Parser parser, const XML_Char *context,
4146 const XML_Char *base,
4147 const XML_Char *systemId,
4148 const XML_Char *publicId) {
4149 const char text[] =
4150 /* <![IGNORE[<!ELEMENT e (#PCDATA)*>]]> */
4151 "\0<\0!\0[\0I\0G\0N\0O\0R\0E\0["
4152 "\0<\0!\0E\0L\0E\0M\0E\0N\0T\0 \0e\0 "
4153 "\0(\0#\0P\0C\0D\0A\0T\0A\0)\0*\0>\0]\0]\0>";
4154 XML_Parser ext_parser;
4155
4156 UNUSED_P(base);
4157 UNUSED_P(systemId);
4158 UNUSED_P(publicId);
4159 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
4160 if (ext_parser == NULL)
4161 fail("Could not create external entity parser");
4162 if (_XML_Parse_SINGLE_BYTES(ext_parser, text, (int)sizeof(text) - 1, XML_TRUE)
4163 == XML_STATUS_ERROR)
4164 xml_failure(parser);
4165
4166 XML_ParserFree(ext_parser);
4167 return XML_STATUS_OK;
4168 }
4169
START_TEST(test_ignore_section_utf16_be)4170 START_TEST(test_ignore_section_utf16_be) {
4171 const char text[] =
4172 /* <!DOCTYPE d SYSTEM 's'> */
4173 "\0<\0!\0D\0O\0C\0T\0Y\0P\0E\0 \0d\0 "
4174 "\0S\0Y\0S\0T\0E\0M\0 \0'\0s\0'\0>\0\n"
4175 /* <d><e>&en;</e></d> */
4176 "\0<\0d\0>\0<\0e\0>\0&\0e\0n\0;\0<\0/\0e\0>\0<\0/\0d\0>";
4177 const XML_Char *expected = XCS("<![IGNORE[<!ELEMENT e (#PCDATA)*>]]>\n&en;");
4178 CharData storage;
4179
4180 CharData_Init(&storage);
4181 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
4182 XML_SetUserData(g_parser, &storage);
4183 XML_SetExternalEntityRefHandler(g_parser,
4184 external_entity_load_ignore_utf16_be);
4185 XML_SetDefaultHandler(g_parser, accumulate_characters);
4186 XML_SetStartDoctypeDeclHandler(g_parser, dummy_start_doctype_handler);
4187 XML_SetEndDoctypeDeclHandler(g_parser, dummy_end_doctype_handler);
4188 XML_SetElementDeclHandler(g_parser, dummy_element_decl_handler);
4189 XML_SetStartElementHandler(g_parser, dummy_start_element);
4190 XML_SetEndElementHandler(g_parser, dummy_end_element);
4191 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
4192 == XML_STATUS_ERROR)
4193 xml_failure(g_parser);
4194 CharData_CheckXMLChars(&storage, expected);
4195 }
4196 END_TEST
4197
4198 /* Test mis-formatted conditional exclusion */
START_TEST(test_bad_ignore_section)4199 START_TEST(test_bad_ignore_section) {
4200 const char *text = "<!DOCTYPE doc SYSTEM 'foo'>\n"
4201 "<doc><e>&entity;</e></doc>";
4202 ExtFaults faults[]
4203 = {{"<![IGNORE[<!ELEM", "Broken-off declaration not faulted", NULL,
4204 XML_ERROR_SYNTAX},
4205 {"<![IGNORE[\x01]]>", "Invalid XML character not faulted", NULL,
4206 XML_ERROR_INVALID_TOKEN},
4207 {/* FIrst two bytes of a three-byte char */
4208 "<![IGNORE[\xe2\x82", "Partial XML character not faulted", NULL,
4209 XML_ERROR_PARTIAL_CHAR},
4210 {NULL, NULL, NULL, XML_ERROR_NONE}};
4211 ExtFaults *fault;
4212
4213 for (fault = &faults[0]; fault->parse_text != NULL; fault++) {
4214 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
4215 XML_SetExternalEntityRefHandler(g_parser, external_entity_faulter);
4216 XML_SetUserData(g_parser, fault);
4217 expect_failure(text, XML_ERROR_EXTERNAL_ENTITY_HANDLING,
4218 "Incomplete IGNORE section not failed");
4219 XML_ParserReset(g_parser, NULL);
4220 }
4221 }
4222 END_TEST
4223
4224 /* Test recursive parsing */
4225 static int XMLCALL
external_entity_valuer(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)4226 external_entity_valuer(XML_Parser parser, const XML_Char *context,
4227 const XML_Char *base, const XML_Char *systemId,
4228 const XML_Char *publicId) {
4229 const char *text1 = "<!ELEMENT doc EMPTY>\n"
4230 "<!ENTITY % e1 SYSTEM '004-2.ent'>\n"
4231 "<!ENTITY % e2 '%e1;'>\n"
4232 "%e1;\n";
4233 XML_Parser ext_parser;
4234
4235 UNUSED_P(base);
4236 UNUSED_P(publicId);
4237 if (systemId == NULL)
4238 return XML_STATUS_OK;
4239 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
4240 if (ext_parser == NULL)
4241 fail("Could not create external entity parser");
4242 if (! xcstrcmp(systemId, XCS("004-1.ent"))) {
4243 if (_XML_Parse_SINGLE_BYTES(ext_parser, text1, (int)strlen(text1), XML_TRUE)
4244 == XML_STATUS_ERROR)
4245 xml_failure(ext_parser);
4246 } else if (! xcstrcmp(systemId, XCS("004-2.ent"))) {
4247 ExtFaults *fault = (ExtFaults *)XML_GetUserData(parser);
4248 enum XML_Status status;
4249 enum XML_Error error;
4250
4251 status = _XML_Parse_SINGLE_BYTES(ext_parser, fault->parse_text,
4252 (int)strlen(fault->parse_text), XML_TRUE);
4253 if (fault->error == XML_ERROR_NONE) {
4254 if (status == XML_STATUS_ERROR)
4255 xml_failure(ext_parser);
4256 } else {
4257 if (status != XML_STATUS_ERROR)
4258 fail(fault->fail_text);
4259 error = XML_GetErrorCode(ext_parser);
4260 if (error != fault->error
4261 && (fault->error != XML_ERROR_XML_DECL
4262 || error != XML_ERROR_TEXT_DECL))
4263 xml_failure(ext_parser);
4264 }
4265 }
4266
4267 XML_ParserFree(ext_parser);
4268 return XML_STATUS_OK;
4269 }
4270
START_TEST(test_external_entity_values)4271 START_TEST(test_external_entity_values) {
4272 const char *text = "<!DOCTYPE doc SYSTEM '004-1.ent'>\n"
4273 "<doc></doc>\n";
4274 ExtFaults data_004_2[] = {
4275 {"<!ATTLIST doc a1 CDATA 'value'>", NULL, NULL, XML_ERROR_NONE},
4276 {"<!ATTLIST $doc a1 CDATA 'value'>", "Invalid token not faulted", NULL,
4277 XML_ERROR_INVALID_TOKEN},
4278 {"'wombat", "Unterminated string not faulted", NULL,
4279 XML_ERROR_UNCLOSED_TOKEN},
4280 {"\xe2\x82", "Partial UTF-8 character not faulted", NULL,
4281 XML_ERROR_PARTIAL_CHAR},
4282 {"<?xml version='1.0' encoding='utf-8'?>\n", NULL, NULL, XML_ERROR_NONE},
4283 {"<?xml?>", "Malformed XML declaration not faulted", NULL,
4284 XML_ERROR_XML_DECL},
4285 {/* UTF-8 BOM */
4286 "\xEF\xBB\xBF<!ATTLIST doc a1 CDATA 'value'>", NULL, NULL,
4287 XML_ERROR_NONE},
4288 {"<?xml version='1.0' encoding='utf-8'?>\n$",
4289 "Invalid token after text declaration not faulted", NULL,
4290 XML_ERROR_INVALID_TOKEN},
4291 {"<?xml version='1.0' encoding='utf-8'?>\n'wombat",
4292 "Unterminated string after text decl not faulted", NULL,
4293 XML_ERROR_UNCLOSED_TOKEN},
4294 {"<?xml version='1.0' encoding='utf-8'?>\n\xe2\x82",
4295 "Partial UTF-8 character after text decl not faulted", NULL,
4296 XML_ERROR_PARTIAL_CHAR},
4297 {"%e1;", "Recursive parameter entity not faulted", NULL,
4298 XML_ERROR_RECURSIVE_ENTITY_REF},
4299 {NULL, NULL, NULL, XML_ERROR_NONE}};
4300 int i;
4301
4302 for (i = 0; data_004_2[i].parse_text != NULL; i++) {
4303 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
4304 XML_SetExternalEntityRefHandler(g_parser, external_entity_valuer);
4305 XML_SetUserData(g_parser, &data_004_2[i]);
4306 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
4307 == XML_STATUS_ERROR)
4308 xml_failure(g_parser);
4309 XML_ParserReset(g_parser, NULL);
4310 }
4311 }
4312 END_TEST
4313
4314 /* Test the recursive parse interacts with a not standalone handler */
4315 static int XMLCALL
external_entity_not_standalone(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)4316 external_entity_not_standalone(XML_Parser parser, const XML_Char *context,
4317 const XML_Char *base, const XML_Char *systemId,
4318 const XML_Char *publicId) {
4319 const char *text1 = "<!ELEMENT doc EMPTY>\n"
4320 "<!ENTITY % e1 SYSTEM 'bar'>\n"
4321 "%e1;\n";
4322 const char *text2 = "<!ATTLIST doc a1 CDATA 'value'>";
4323 XML_Parser ext_parser;
4324
4325 UNUSED_P(base);
4326 UNUSED_P(publicId);
4327 if (systemId == NULL)
4328 return XML_STATUS_OK;
4329 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
4330 if (ext_parser == NULL)
4331 fail("Could not create external entity parser");
4332 if (! xcstrcmp(systemId, XCS("foo"))) {
4333 XML_SetNotStandaloneHandler(ext_parser, reject_not_standalone_handler);
4334 if (_XML_Parse_SINGLE_BYTES(ext_parser, text1, (int)strlen(text1), XML_TRUE)
4335 != XML_STATUS_ERROR)
4336 fail("Expected not standalone rejection");
4337 if (XML_GetErrorCode(ext_parser) != XML_ERROR_NOT_STANDALONE)
4338 xml_failure(ext_parser);
4339 XML_SetNotStandaloneHandler(ext_parser, NULL);
4340 XML_ParserFree(ext_parser);
4341 return XML_STATUS_ERROR;
4342 } else if (! xcstrcmp(systemId, XCS("bar"))) {
4343 if (_XML_Parse_SINGLE_BYTES(ext_parser, text2, (int)strlen(text2), XML_TRUE)
4344 == XML_STATUS_ERROR)
4345 xml_failure(ext_parser);
4346 }
4347
4348 XML_ParserFree(ext_parser);
4349 return XML_STATUS_OK;
4350 }
4351
START_TEST(test_ext_entity_not_standalone)4352 START_TEST(test_ext_entity_not_standalone) {
4353 const char *text = "<!DOCTYPE doc SYSTEM 'foo'>\n"
4354 "<doc></doc>";
4355
4356 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
4357 XML_SetExternalEntityRefHandler(g_parser, external_entity_not_standalone);
4358 expect_failure(text, XML_ERROR_EXTERNAL_ENTITY_HANDLING,
4359 "Standalone rejection not caught");
4360 }
4361 END_TEST
4362
4363 static int XMLCALL
external_entity_value_aborter(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)4364 external_entity_value_aborter(XML_Parser parser, const XML_Char *context,
4365 const XML_Char *base, const XML_Char *systemId,
4366 const XML_Char *publicId) {
4367 const char *text1 = "<!ELEMENT doc EMPTY>\n"
4368 "<!ENTITY % e1 SYSTEM '004-2.ent'>\n"
4369 "<!ENTITY % e2 '%e1;'>\n"
4370 "%e1;\n";
4371 const char *text2 = "<?xml version='1.0' encoding='utf-8'?>";
4372 XML_Parser ext_parser;
4373
4374 UNUSED_P(base);
4375 UNUSED_P(publicId);
4376 if (systemId == NULL)
4377 return XML_STATUS_OK;
4378 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
4379 if (ext_parser == NULL)
4380 fail("Could not create external entity parser");
4381 if (! xcstrcmp(systemId, XCS("004-1.ent"))) {
4382 if (_XML_Parse_SINGLE_BYTES(ext_parser, text1, (int)strlen(text1), XML_TRUE)
4383 == XML_STATUS_ERROR)
4384 xml_failure(ext_parser);
4385 }
4386 if (! xcstrcmp(systemId, XCS("004-2.ent"))) {
4387 XML_SetXmlDeclHandler(ext_parser, entity_suspending_xdecl_handler);
4388 XML_SetUserData(ext_parser, ext_parser);
4389 if (_XML_Parse_SINGLE_BYTES(ext_parser, text2, (int)strlen(text2), XML_TRUE)
4390 != XML_STATUS_ERROR)
4391 fail("Aborted parse not faulted");
4392 if (XML_GetErrorCode(ext_parser) != XML_ERROR_ABORTED)
4393 xml_failure(ext_parser);
4394 }
4395
4396 XML_ParserFree(ext_parser);
4397 return XML_STATUS_OK;
4398 }
4399
START_TEST(test_ext_entity_value_abort)4400 START_TEST(test_ext_entity_value_abort) {
4401 const char *text = "<!DOCTYPE doc SYSTEM '004-1.ent'>\n"
4402 "<doc></doc>\n";
4403
4404 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
4405 XML_SetExternalEntityRefHandler(g_parser, external_entity_value_aborter);
4406 resumable = XML_FALSE;
4407 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
4408 == XML_STATUS_ERROR)
4409 xml_failure(g_parser);
4410 }
4411 END_TEST
4412
START_TEST(test_bad_public_doctype)4413 START_TEST(test_bad_public_doctype) {
4414 const char *text = "<?xml version='1.0' encoding='utf-8'?>\n"
4415 "<!DOCTYPE doc PUBLIC '{BadName}' 'test'>\n"
4416 "<doc></doc>";
4417
4418 /* Setting a handler provokes a particular code path */
4419 XML_SetDoctypeDeclHandler(g_parser, dummy_start_doctype_handler,
4420 dummy_end_doctype_handler);
4421 expect_failure(text, XML_ERROR_PUBLICID, "Bad Public ID not failed");
4422 }
4423 END_TEST
4424
4425 /* Test based on ibm/valid/P32/ibm32v04.xml */
START_TEST(test_attribute_enum_value)4426 START_TEST(test_attribute_enum_value) {
4427 const char *text = "<?xml version='1.0' standalone='no'?>\n"
4428 "<!DOCTYPE animal SYSTEM 'test.dtd'>\n"
4429 "<animal>This is a \n <a/> \n\nyellow tiger</animal>";
4430 ExtTest dtd_data
4431 = {"<!ELEMENT animal (#PCDATA|a)*>\n"
4432 "<!ELEMENT a EMPTY>\n"
4433 "<!ATTLIST animal xml:space (default|preserve) 'preserve'>",
4434 NULL, NULL};
4435 const XML_Char *expected = XCS("This is a \n \n\nyellow tiger");
4436
4437 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader);
4438 XML_SetUserData(g_parser, &dtd_data);
4439 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
4440 /* An attribute list handler provokes a different code path */
4441 XML_SetAttlistDeclHandler(g_parser, dummy_attlist_decl_handler);
4442 run_ext_character_check(text, &dtd_data, expected);
4443 }
4444 END_TEST
4445
4446 /* Slightly bizarrely, the library seems to silently ignore entity
4447 * definitions for predefined entities, even when they are wrong. The
4448 * language of the XML 1.0 spec is somewhat unhelpful as to what ought
4449 * to happen, so this is currently treated as acceptable.
4450 */
START_TEST(test_predefined_entity_redefinition)4451 START_TEST(test_predefined_entity_redefinition) {
4452 const char *text = "<!DOCTYPE doc [\n"
4453 "<!ENTITY apos 'foo'>\n"
4454 "]>\n"
4455 "<doc>'</doc>";
4456 run_character_check(text, XCS("'"));
4457 }
4458 END_TEST
4459
4460 /* Test that the parser stops processing the DTD after an unresolved
4461 * parameter entity is encountered.
4462 */
START_TEST(test_dtd_stop_processing)4463 START_TEST(test_dtd_stop_processing) {
4464 const char *text = "<!DOCTYPE doc [\n"
4465 "%foo;\n"
4466 "<!ENTITY bar 'bas'>\n"
4467 "]><doc/>";
4468
4469 XML_SetEntityDeclHandler(g_parser, dummy_entity_decl_handler);
4470 dummy_handler_flags = 0;
4471 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
4472 == XML_STATUS_ERROR)
4473 xml_failure(g_parser);
4474 if (dummy_handler_flags != 0)
4475 fail("DTD processing still going after undefined PE");
4476 }
4477 END_TEST
4478
4479 /* Test public notations with no system ID */
START_TEST(test_public_notation_no_sysid)4480 START_TEST(test_public_notation_no_sysid) {
4481 const char *text = "<!DOCTYPE doc [\n"
4482 "<!NOTATION note PUBLIC 'foo'>\n"
4483 "<!ELEMENT doc EMPTY>\n"
4484 "]>\n<doc/>";
4485
4486 dummy_handler_flags = 0;
4487 XML_SetNotationDeclHandler(g_parser, dummy_notation_decl_handler);
4488 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
4489 == XML_STATUS_ERROR)
4490 xml_failure(g_parser);
4491 if (dummy_handler_flags != DUMMY_NOTATION_DECL_HANDLER_FLAG)
4492 fail("Notation declaration handler not called");
4493 }
4494 END_TEST
4495
4496 static void XMLCALL
record_element_start_handler(void * userData,const XML_Char * name,const XML_Char ** atts)4497 record_element_start_handler(void *userData, const XML_Char *name,
4498 const XML_Char **atts) {
4499 UNUSED_P(atts);
4500 CharData_AppendXMLChars((CharData *)userData, name, (int)xcstrlen(name));
4501 }
4502
START_TEST(test_nested_groups)4503 START_TEST(test_nested_groups) {
4504 const char *text
4505 = "<!DOCTYPE doc [\n"
4506 "<!ELEMENT doc "
4507 /* Sixteen elements per line */
4508 "(e,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,"
4509 "(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?"
4510 "))))))))))))))))))))))))))))))))>\n"
4511 "<!ELEMENT e EMPTY>"
4512 "]>\n"
4513 "<doc><e/></doc>";
4514 CharData storage;
4515
4516 CharData_Init(&storage);
4517 XML_SetElementDeclHandler(g_parser, dummy_element_decl_handler);
4518 XML_SetStartElementHandler(g_parser, record_element_start_handler);
4519 XML_SetUserData(g_parser, &storage);
4520 dummy_handler_flags = 0;
4521 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
4522 == XML_STATUS_ERROR)
4523 xml_failure(g_parser);
4524 CharData_CheckXMLChars(&storage, XCS("doce"));
4525 if (dummy_handler_flags != DUMMY_ELEMENT_DECL_HANDLER_FLAG)
4526 fail("Element handler not fired");
4527 }
4528 END_TEST
4529
START_TEST(test_group_choice)4530 START_TEST(test_group_choice) {
4531 const char *text = "<!DOCTYPE doc [\n"
4532 "<!ELEMENT doc (a|b|c)+>\n"
4533 "<!ELEMENT a EMPTY>\n"
4534 "<!ELEMENT b (#PCDATA)>\n"
4535 "<!ELEMENT c ANY>\n"
4536 "]>\n"
4537 "<doc>\n"
4538 "<a/>\n"
4539 "<b attr='foo'>This is a foo</b>\n"
4540 "<c></c>\n"
4541 "</doc>\n";
4542
4543 XML_SetElementDeclHandler(g_parser, dummy_element_decl_handler);
4544 dummy_handler_flags = 0;
4545 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
4546 == XML_STATUS_ERROR)
4547 xml_failure(g_parser);
4548 if (dummy_handler_flags != DUMMY_ELEMENT_DECL_HANDLER_FLAG)
4549 fail("Element handler flag not raised");
4550 }
4551 END_TEST
4552
4553 static int XMLCALL
external_entity_public(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)4554 external_entity_public(XML_Parser parser, const XML_Char *context,
4555 const XML_Char *base, const XML_Char *systemId,
4556 const XML_Char *publicId) {
4557 const char *text1 = (const char *)XML_GetUserData(parser);
4558 const char *text2 = "<!ATTLIST doc a CDATA 'value'>";
4559 const char *text = NULL;
4560 XML_Parser ext_parser;
4561 int parse_res;
4562
4563 UNUSED_P(base);
4564 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
4565 if (ext_parser == NULL)
4566 return XML_STATUS_ERROR;
4567 if (systemId != NULL && ! xcstrcmp(systemId, XCS("http://example.org/"))) {
4568 text = text1;
4569 } else if (publicId != NULL && ! xcstrcmp(publicId, XCS("foo"))) {
4570 text = text2;
4571 } else
4572 fail("Unexpected parameters to external entity parser");
4573 assert(text != NULL);
4574 parse_res
4575 = _XML_Parse_SINGLE_BYTES(ext_parser, text, (int)strlen(text), XML_TRUE);
4576 XML_ParserFree(ext_parser);
4577 return parse_res;
4578 }
4579
START_TEST(test_standalone_parameter_entity)4580 START_TEST(test_standalone_parameter_entity) {
4581 const char *text = "<?xml version='1.0' standalone='yes'?>\n"
4582 "<!DOCTYPE doc SYSTEM 'http://example.org/' [\n"
4583 "<!ENTITY % entity '<!ELEMENT doc (#PCDATA)>'>\n"
4584 "%entity;\n"
4585 "]>\n"
4586 "<doc></doc>";
4587 char dtd_data[] = "<!ENTITY % e1 'foo'>\n";
4588
4589 XML_SetUserData(g_parser, dtd_data);
4590 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
4591 XML_SetExternalEntityRefHandler(g_parser, external_entity_public);
4592 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
4593 == XML_STATUS_ERROR)
4594 xml_failure(g_parser);
4595 }
4596 END_TEST
4597
4598 /* Test skipping of parameter entity in an external DTD */
4599 /* Derived from ibm/invalid/P69/ibm69i01.xml */
START_TEST(test_skipped_parameter_entity)4600 START_TEST(test_skipped_parameter_entity) {
4601 const char *text = "<?xml version='1.0'?>\n"
4602 "<!DOCTYPE root SYSTEM 'http://example.org/dtd.ent' [\n"
4603 "<!ELEMENT root (#PCDATA|a)* >\n"
4604 "]>\n"
4605 "<root></root>";
4606 ExtTest dtd_data = {"%pe2;", NULL, NULL};
4607
4608 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader);
4609 XML_SetUserData(g_parser, &dtd_data);
4610 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
4611 XML_SetSkippedEntityHandler(g_parser, dummy_skip_handler);
4612 dummy_handler_flags = 0;
4613 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
4614 == XML_STATUS_ERROR)
4615 xml_failure(g_parser);
4616 if (dummy_handler_flags != DUMMY_SKIP_HANDLER_FLAG)
4617 fail("Skip handler not executed");
4618 }
4619 END_TEST
4620
4621 /* Test recursive parameter entity definition rejected in external DTD */
START_TEST(test_recursive_external_parameter_entity)4622 START_TEST(test_recursive_external_parameter_entity) {
4623 const char *text = "<?xml version='1.0'?>\n"
4624 "<!DOCTYPE root SYSTEM 'http://example.org/dtd.ent' [\n"
4625 "<!ELEMENT root (#PCDATA|a)* >\n"
4626 "]>\n"
4627 "<root></root>";
4628 ExtFaults dtd_data = {"<!ENTITY % pe2 '%pe2;'>\n%pe2;",
4629 "Recursive external parameter entity not faulted", NULL,
4630 XML_ERROR_RECURSIVE_ENTITY_REF};
4631
4632 XML_SetExternalEntityRefHandler(g_parser, external_entity_faulter);
4633 XML_SetUserData(g_parser, &dtd_data);
4634 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
4635 expect_failure(text, XML_ERROR_EXTERNAL_ENTITY_HANDLING,
4636 "Recursive external parameter not spotted");
4637 }
4638 END_TEST
4639
4640 /* Test undefined parameter entity in external entity handler */
4641 static int XMLCALL
external_entity_devaluer(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)4642 external_entity_devaluer(XML_Parser parser, const XML_Char *context,
4643 const XML_Char *base, const XML_Char *systemId,
4644 const XML_Char *publicId) {
4645 const char *text = "<!ELEMENT doc EMPTY>\n"
4646 "<!ENTITY % e1 SYSTEM 'bar'>\n"
4647 "%e1;\n";
4648 XML_Parser ext_parser;
4649 intptr_t clear_handler = (intptr_t)XML_GetUserData(parser);
4650
4651 UNUSED_P(base);
4652 UNUSED_P(publicId);
4653 if (systemId == NULL || ! xcstrcmp(systemId, XCS("bar")))
4654 return XML_STATUS_OK;
4655 if (xcstrcmp(systemId, XCS("foo")))
4656 fail("Unexpected system ID");
4657 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
4658 if (ext_parser == NULL)
4659 fail("Could note create external entity parser");
4660 if (clear_handler)
4661 XML_SetExternalEntityRefHandler(ext_parser, NULL);
4662 if (_XML_Parse_SINGLE_BYTES(ext_parser, text, (int)strlen(text), XML_TRUE)
4663 == XML_STATUS_ERROR)
4664 xml_failure(ext_parser);
4665
4666 XML_ParserFree(ext_parser);
4667 return XML_STATUS_OK;
4668 }
4669
START_TEST(test_undefined_ext_entity_in_external_dtd)4670 START_TEST(test_undefined_ext_entity_in_external_dtd) {
4671 const char *text = "<!DOCTYPE doc SYSTEM 'foo'>\n"
4672 "<doc></doc>\n";
4673
4674 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
4675 XML_SetExternalEntityRefHandler(g_parser, external_entity_devaluer);
4676 XML_SetUserData(g_parser, (void *)(intptr_t)XML_FALSE);
4677 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
4678 == XML_STATUS_ERROR)
4679 xml_failure(g_parser);
4680
4681 /* Now repeat without the external entity ref handler invoking
4682 * another copy of itself.
4683 */
4684 XML_ParserReset(g_parser, NULL);
4685 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
4686 XML_SetExternalEntityRefHandler(g_parser, external_entity_devaluer);
4687 XML_SetUserData(g_parser, (void *)(intptr_t)XML_TRUE);
4688 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
4689 == XML_STATUS_ERROR)
4690 xml_failure(g_parser);
4691 }
4692 END_TEST
4693
4694 static void XMLCALL
aborting_xdecl_handler(void * userData,const XML_Char * version,const XML_Char * encoding,int standalone)4695 aborting_xdecl_handler(void *userData, const XML_Char *version,
4696 const XML_Char *encoding, int standalone) {
4697 UNUSED_P(userData);
4698 UNUSED_P(version);
4699 UNUSED_P(encoding);
4700 UNUSED_P(standalone);
4701 XML_StopParser(g_parser, resumable);
4702 XML_SetXmlDeclHandler(g_parser, NULL);
4703 }
4704
4705 /* Test suspending the parse on receiving an XML declaration works */
START_TEST(test_suspend_xdecl)4706 START_TEST(test_suspend_xdecl) {
4707 const char *text = long_character_data_text;
4708
4709 XML_SetXmlDeclHandler(g_parser, aborting_xdecl_handler);
4710 resumable = XML_TRUE;
4711 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
4712 != XML_STATUS_SUSPENDED)
4713 xml_failure(g_parser);
4714 if (XML_GetErrorCode(g_parser) != XML_ERROR_NONE)
4715 xml_failure(g_parser);
4716 /* Attempt to start a new parse while suspended */
4717 if (XML_Parse(g_parser, text, (int)strlen(text), XML_TRUE)
4718 != XML_STATUS_ERROR)
4719 fail("Attempt to parse while suspended not faulted");
4720 if (XML_GetErrorCode(g_parser) != XML_ERROR_SUSPENDED)
4721 fail("Suspended parse not faulted with correct error");
4722 }
4723 END_TEST
4724
4725 /* Test aborting the parse in an epilog works */
4726 static void XMLCALL
selective_aborting_default_handler(void * userData,const XML_Char * s,int len)4727 selective_aborting_default_handler(void *userData, const XML_Char *s, int len) {
4728 const XML_Char *match = (const XML_Char *)userData;
4729
4730 if (match == NULL
4731 || (xcstrlen(match) == (unsigned)len && ! xcstrncmp(match, s, len))) {
4732 XML_StopParser(g_parser, resumable);
4733 XML_SetDefaultHandler(g_parser, NULL);
4734 }
4735 }
4736
START_TEST(test_abort_epilog)4737 START_TEST(test_abort_epilog) {
4738 const char *text = "<doc></doc>\n\r\n";
4739 XML_Char match[] = XCS("\r");
4740
4741 XML_SetDefaultHandler(g_parser, selective_aborting_default_handler);
4742 XML_SetUserData(g_parser, match);
4743 resumable = XML_FALSE;
4744 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
4745 != XML_STATUS_ERROR)
4746 fail("Abort not triggered");
4747 if (XML_GetErrorCode(g_parser) != XML_ERROR_ABORTED)
4748 xml_failure(g_parser);
4749 }
4750 END_TEST
4751
4752 /* Test a different code path for abort in the epilog */
START_TEST(test_abort_epilog_2)4753 START_TEST(test_abort_epilog_2) {
4754 const char *text = "<doc></doc>\n";
4755 XML_Char match[] = XCS("\n");
4756
4757 XML_SetDefaultHandler(g_parser, selective_aborting_default_handler);
4758 XML_SetUserData(g_parser, match);
4759 resumable = XML_FALSE;
4760 expect_failure(text, XML_ERROR_ABORTED, "Abort not triggered");
4761 }
4762 END_TEST
4763
4764 /* Test suspension from the epilog */
START_TEST(test_suspend_epilog)4765 START_TEST(test_suspend_epilog) {
4766 const char *text = "<doc></doc>\n";
4767 XML_Char match[] = XCS("\n");
4768
4769 XML_SetDefaultHandler(g_parser, selective_aborting_default_handler);
4770 XML_SetUserData(g_parser, match);
4771 resumable = XML_TRUE;
4772 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
4773 != XML_STATUS_SUSPENDED)
4774 xml_failure(g_parser);
4775 }
4776 END_TEST
4777
4778 static void XMLCALL
suspending_end_handler(void * userData,const XML_Char * s)4779 suspending_end_handler(void *userData, const XML_Char *s) {
4780 UNUSED_P(s);
4781 XML_StopParser((XML_Parser)userData, 1);
4782 }
4783
START_TEST(test_suspend_in_sole_empty_tag)4784 START_TEST(test_suspend_in_sole_empty_tag) {
4785 const char *text = "<doc/>";
4786 enum XML_Status rc;
4787
4788 XML_SetEndElementHandler(g_parser, suspending_end_handler);
4789 XML_SetUserData(g_parser, g_parser);
4790 rc = _XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE);
4791 if (rc == XML_STATUS_ERROR)
4792 xml_failure(g_parser);
4793 else if (rc != XML_STATUS_SUSPENDED)
4794 fail("Suspend not triggered");
4795 rc = XML_ResumeParser(g_parser);
4796 if (rc == XML_STATUS_ERROR)
4797 xml_failure(g_parser);
4798 else if (rc != XML_STATUS_OK)
4799 fail("Resume failed");
4800 }
4801 END_TEST
4802
START_TEST(test_unfinished_epilog)4803 START_TEST(test_unfinished_epilog) {
4804 const char *text = "<doc></doc><";
4805
4806 expect_failure(text, XML_ERROR_UNCLOSED_TOKEN,
4807 "Incomplete epilog entry not faulted");
4808 }
4809 END_TEST
4810
START_TEST(test_partial_char_in_epilog)4811 START_TEST(test_partial_char_in_epilog) {
4812 const char *text = "<doc></doc>\xe2\x82";
4813
4814 /* First check that no fault is raised if the parse is not finished */
4815 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_FALSE)
4816 == XML_STATUS_ERROR)
4817 xml_failure(g_parser);
4818 /* Now check that it is faulted once we finish */
4819 if (XML_ParseBuffer(g_parser, 0, XML_TRUE) != XML_STATUS_ERROR)
4820 fail("Partial character in epilog not faulted");
4821 if (XML_GetErrorCode(g_parser) != XML_ERROR_PARTIAL_CHAR)
4822 xml_failure(g_parser);
4823 }
4824 END_TEST
4825
START_TEST(test_hash_collision)4826 START_TEST(test_hash_collision) {
4827 /* For full coverage of the lookup routine, we need to ensure a
4828 * hash collision even though we can only tell that we have one
4829 * through breakpoint debugging or coverage statistics. The
4830 * following will cause a hash collision on machines with a 64-bit
4831 * long type; others will have to experiment. The full coverage
4832 * tests invoked from qa.sh usually provide a hash collision, but
4833 * not always. This is an attempt to provide insurance.
4834 */
4835 #define COLLIDING_HASH_SALT (unsigned long)_SIP_ULL(0xffffffffU, 0xff99fc90U)
4836 const char *text
4837 = "<doc>\n"
4838 "<a1/><a2/><a3/><a4/><a5/><a6/><a7/><a8/>\n"
4839 "<b1></b1><b2 attr='foo'>This is a foo</b2><b3></b3><b4></b4>\n"
4840 "<b5></b5><b6></b6><b7></b7><b8></b8>\n"
4841 "<c1/><c2/><c3/><c4/><c5/><c6/><c7/><c8/>\n"
4842 "<d1/><d2/><d3/><d4/><d5/><d6/><d7/>\n"
4843 "<d8>This triggers the table growth and collides with b2</d8>\n"
4844 "</doc>\n";
4845
4846 XML_SetHashSalt(g_parser, COLLIDING_HASH_SALT);
4847 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
4848 == XML_STATUS_ERROR)
4849 xml_failure(g_parser);
4850 }
4851 END_TEST
4852 #undef COLLIDING_HASH_SALT
4853
4854 /* Test resuming a parse suspended in entity substitution */
4855 static void XMLCALL
start_element_suspender(void * userData,const XML_Char * name,const XML_Char ** atts)4856 start_element_suspender(void *userData, const XML_Char *name,
4857 const XML_Char **atts) {
4858 UNUSED_P(userData);
4859 UNUSED_P(atts);
4860 if (! xcstrcmp(name, XCS("suspend")))
4861 XML_StopParser(g_parser, XML_TRUE);
4862 if (! xcstrcmp(name, XCS("abort")))
4863 XML_StopParser(g_parser, XML_FALSE);
4864 }
4865
START_TEST(test_suspend_resume_internal_entity)4866 START_TEST(test_suspend_resume_internal_entity) {
4867 const char *text
4868 = "<!DOCTYPE doc [\n"
4869 "<!ENTITY foo '<suspend>Hi<suspend>Ho</suspend></suspend>'>\n"
4870 "]>\n"
4871 "<doc>&foo;</doc>\n";
4872 const XML_Char *expected1 = XCS("Hi");
4873 const XML_Char *expected2 = XCS("HiHo");
4874 CharData storage;
4875
4876 CharData_Init(&storage);
4877 XML_SetStartElementHandler(g_parser, start_element_suspender);
4878 XML_SetCharacterDataHandler(g_parser, accumulate_characters);
4879 XML_SetUserData(g_parser, &storage);
4880 if (XML_Parse(g_parser, text, (int)strlen(text), XML_TRUE)
4881 != XML_STATUS_SUSPENDED)
4882 xml_failure(g_parser);
4883 CharData_CheckXMLChars(&storage, XCS(""));
4884 if (XML_ResumeParser(g_parser) != XML_STATUS_SUSPENDED)
4885 xml_failure(g_parser);
4886 CharData_CheckXMLChars(&storage, expected1);
4887 if (XML_ResumeParser(g_parser) != XML_STATUS_OK)
4888 xml_failure(g_parser);
4889 CharData_CheckXMLChars(&storage, expected2);
4890 }
4891 END_TEST
4892
4893 void
suspending_comment_handler(void * userData,const XML_Char * data)4894 suspending_comment_handler(void *userData, const XML_Char *data) {
4895 UNUSED_P(data);
4896 XML_Parser parser = (XML_Parser)userData;
4897 XML_StopParser(parser, XML_TRUE);
4898 }
4899
START_TEST(test_suspend_resume_internal_entity_issue_629)4900 START_TEST(test_suspend_resume_internal_entity_issue_629) {
4901 const char *const text
4902 = "<!DOCTYPE a [<!ENTITY e '<!--COMMENT-->a'>]><a>&e;<b>\n"
4903 "<"
4904 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4905 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4906 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4907 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4908 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4909 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4910 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4911 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4912 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4913 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4914 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4915 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4916 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4917 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4918 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4919 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4920 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4921 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4922 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4923 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4924 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4925 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4926 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4927 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4928 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4929 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4930 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4931 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4932 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4933 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4934 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4935 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4936 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4937 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4938 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4939 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4940 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4941 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4942 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4943 "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
4944 "/>"
4945 "</b></a>";
4946 const size_t firstChunkSizeBytes = 54;
4947
4948 XML_Parser parser = XML_ParserCreate(NULL);
4949 XML_SetUserData(parser, parser);
4950 XML_SetCommentHandler(parser, suspending_comment_handler);
4951
4952 if (XML_Parse(parser, text, (int)firstChunkSizeBytes, XML_FALSE)
4953 != XML_STATUS_SUSPENDED)
4954 xml_failure(parser);
4955 if (XML_ResumeParser(parser) != XML_STATUS_OK)
4956 xml_failure(parser);
4957 if (XML_Parse(parser, text + firstChunkSizeBytes,
4958 (int)(strlen(text) - firstChunkSizeBytes), XML_TRUE)
4959 != XML_STATUS_OK)
4960 xml_failure(parser);
4961 XML_ParserFree(parser);
4962 }
4963 END_TEST
4964
4965 /* Test syntax error is caught at parse resumption */
START_TEST(test_resume_entity_with_syntax_error)4966 START_TEST(test_resume_entity_with_syntax_error) {
4967 const char *text = "<!DOCTYPE doc [\n"
4968 "<!ENTITY foo '<suspend>Hi</wombat>'>\n"
4969 "]>\n"
4970 "<doc>&foo;</doc>\n";
4971
4972 XML_SetStartElementHandler(g_parser, start_element_suspender);
4973 if (XML_Parse(g_parser, text, (int)strlen(text), XML_TRUE)
4974 != XML_STATUS_SUSPENDED)
4975 xml_failure(g_parser);
4976 if (XML_ResumeParser(g_parser) != XML_STATUS_ERROR)
4977 fail("Syntax error in entity not faulted");
4978 if (XML_GetErrorCode(g_parser) != XML_ERROR_TAG_MISMATCH)
4979 xml_failure(g_parser);
4980 }
4981 END_TEST
4982
4983 /* Test suspending and resuming in a parameter entity substitution */
4984 static void XMLCALL
element_decl_suspender(void * userData,const XML_Char * name,XML_Content * model)4985 element_decl_suspender(void *userData, const XML_Char *name,
4986 XML_Content *model) {
4987 UNUSED_P(userData);
4988 UNUSED_P(name);
4989 XML_StopParser(g_parser, XML_TRUE);
4990 XML_FreeContentModel(g_parser, model);
4991 }
4992
START_TEST(test_suspend_resume_parameter_entity)4993 START_TEST(test_suspend_resume_parameter_entity) {
4994 const char *text = "<!DOCTYPE doc [\n"
4995 "<!ENTITY % foo '<!ELEMENT doc (#PCDATA)*>'>\n"
4996 "%foo;\n"
4997 "]>\n"
4998 "<doc>Hello, world</doc>";
4999 const XML_Char *expected = XCS("Hello, world");
5000 CharData storage;
5001
5002 CharData_Init(&storage);
5003 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
5004 XML_SetElementDeclHandler(g_parser, element_decl_suspender);
5005 XML_SetCharacterDataHandler(g_parser, accumulate_characters);
5006 XML_SetUserData(g_parser, &storage);
5007 if (XML_Parse(g_parser, text, (int)strlen(text), XML_TRUE)
5008 != XML_STATUS_SUSPENDED)
5009 xml_failure(g_parser);
5010 CharData_CheckXMLChars(&storage, XCS(""));
5011 if (XML_ResumeParser(g_parser) != XML_STATUS_OK)
5012 xml_failure(g_parser);
5013 CharData_CheckXMLChars(&storage, expected);
5014 }
5015 END_TEST
5016
5017 /* Test attempting to use parser after an error is faulted */
START_TEST(test_restart_on_error)5018 START_TEST(test_restart_on_error) {
5019 const char *text = "<$doc><doc></doc>";
5020
5021 if (XML_Parse(g_parser, text, (int)strlen(text), XML_TRUE)
5022 != XML_STATUS_ERROR)
5023 fail("Invalid tag name not faulted");
5024 if (XML_GetErrorCode(g_parser) != XML_ERROR_INVALID_TOKEN)
5025 xml_failure(g_parser);
5026 if (XML_Parse(g_parser, NULL, 0, XML_TRUE) != XML_STATUS_ERROR)
5027 fail("Restarting invalid parse not faulted");
5028 if (XML_GetErrorCode(g_parser) != XML_ERROR_INVALID_TOKEN)
5029 xml_failure(g_parser);
5030 }
5031 END_TEST
5032
5033 /* Test that angle brackets in an attribute default value are faulted */
START_TEST(test_reject_lt_in_attribute_value)5034 START_TEST(test_reject_lt_in_attribute_value) {
5035 const char *text = "<!DOCTYPE doc [<!ATTLIST doc a CDATA '<bar>'>]>\n"
5036 "<doc></doc>";
5037
5038 expect_failure(text, XML_ERROR_INVALID_TOKEN,
5039 "Bad attribute default not faulted");
5040 }
5041 END_TEST
5042
START_TEST(test_reject_unfinished_param_in_att_value)5043 START_TEST(test_reject_unfinished_param_in_att_value) {
5044 const char *text = "<!DOCTYPE doc [<!ATTLIST doc a CDATA '&foo'>]>\n"
5045 "<doc></doc>";
5046
5047 expect_failure(text, XML_ERROR_INVALID_TOKEN,
5048 "Bad attribute default not faulted");
5049 }
5050 END_TEST
5051
START_TEST(test_trailing_cr_in_att_value)5052 START_TEST(test_trailing_cr_in_att_value) {
5053 const char *text = "<doc a='value\r'/>";
5054
5055 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
5056 == XML_STATUS_ERROR)
5057 xml_failure(g_parser);
5058 }
5059 END_TEST
5060
5061 /* Try parsing a general entity within a parameter entity in a
5062 * standalone internal DTD. Covers a corner case in the parser.
5063 */
START_TEST(test_standalone_internal_entity)5064 START_TEST(test_standalone_internal_entity) {
5065 const char *text = "<?xml version='1.0' standalone='yes' ?>\n"
5066 "<!DOCTYPE doc [\n"
5067 " <!ELEMENT doc (#PCDATA)>\n"
5068 " <!ENTITY % pe '<!ATTLIST doc att2 CDATA \"≥\">'>\n"
5069 " <!ENTITY ge 'AttDefaultValue'>\n"
5070 " %pe;\n"
5071 "]>\n"
5072 "<doc att2='any'/>";
5073
5074 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
5075 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
5076 == XML_STATUS_ERROR)
5077 xml_failure(g_parser);
5078 }
5079 END_TEST
5080
5081 /* Test that a reference to an unknown external entity is skipped */
START_TEST(test_skipped_external_entity)5082 START_TEST(test_skipped_external_entity) {
5083 const char *text = "<!DOCTYPE doc SYSTEM 'http://example.org/'>\n"
5084 "<doc></doc>\n";
5085 ExtTest test_data = {"<!ELEMENT doc EMPTY>\n"
5086 "<!ENTITY % e2 '%e1;'>\n",
5087 NULL, NULL};
5088
5089 XML_SetUserData(g_parser, &test_data);
5090 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
5091 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader);
5092 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
5093 == XML_STATUS_ERROR)
5094 xml_failure(g_parser);
5095 }
5096 END_TEST
5097
5098 /* Test a different form of unknown external entity */
5099 typedef struct ext_hdlr_data {
5100 const char *parse_text;
5101 XML_ExternalEntityRefHandler handler;
5102 } ExtHdlrData;
5103
5104 static int XMLCALL
external_entity_oneshot_loader(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)5105 external_entity_oneshot_loader(XML_Parser parser, const XML_Char *context,
5106 const XML_Char *base, const XML_Char *systemId,
5107 const XML_Char *publicId) {
5108 ExtHdlrData *test_data = (ExtHdlrData *)XML_GetUserData(parser);
5109 XML_Parser ext_parser;
5110
5111 UNUSED_P(base);
5112 UNUSED_P(systemId);
5113 UNUSED_P(publicId);
5114 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
5115 if (ext_parser == NULL)
5116 fail("Could not create external entity parser.");
5117 /* Use the requested entity parser for further externals */
5118 XML_SetExternalEntityRefHandler(ext_parser, test_data->handler);
5119 if (_XML_Parse_SINGLE_BYTES(ext_parser, test_data->parse_text,
5120 (int)strlen(test_data->parse_text), XML_TRUE)
5121 == XML_STATUS_ERROR) {
5122 xml_failure(ext_parser);
5123 }
5124
5125 XML_ParserFree(ext_parser);
5126 return XML_STATUS_OK;
5127 }
5128
START_TEST(test_skipped_null_loaded_ext_entity)5129 START_TEST(test_skipped_null_loaded_ext_entity) {
5130 const char *text = "<!DOCTYPE doc SYSTEM 'http://example.org/one.ent'>\n"
5131 "<doc />";
5132 ExtHdlrData test_data
5133 = {"<!ENTITY % pe1 SYSTEM 'http://example.org/two.ent'>\n"
5134 "<!ENTITY % pe2 '%pe1;'>\n"
5135 "%pe2;\n",
5136 external_entity_null_loader};
5137
5138 XML_SetUserData(g_parser, &test_data);
5139 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
5140 XML_SetExternalEntityRefHandler(g_parser, external_entity_oneshot_loader);
5141 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
5142 == XML_STATUS_ERROR)
5143 xml_failure(g_parser);
5144 }
5145 END_TEST
5146
START_TEST(test_skipped_unloaded_ext_entity)5147 START_TEST(test_skipped_unloaded_ext_entity) {
5148 const char *text = "<!DOCTYPE doc SYSTEM 'http://example.org/one.ent'>\n"
5149 "<doc />";
5150 ExtHdlrData test_data
5151 = {"<!ENTITY % pe1 SYSTEM 'http://example.org/two.ent'>\n"
5152 "<!ENTITY % pe2 '%pe1;'>\n"
5153 "%pe2;\n",
5154 NULL};
5155
5156 XML_SetUserData(g_parser, &test_data);
5157 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
5158 XML_SetExternalEntityRefHandler(g_parser, external_entity_oneshot_loader);
5159 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
5160 == XML_STATUS_ERROR)
5161 xml_failure(g_parser);
5162 }
5163 END_TEST
5164
5165 /* Test that a parameter entity value ending with a carriage return
5166 * has it translated internally into a newline.
5167 */
START_TEST(test_param_entity_with_trailing_cr)5168 START_TEST(test_param_entity_with_trailing_cr) {
5169 #define PARAM_ENTITY_NAME "pe"
5170 #define PARAM_ENTITY_CORE_VALUE "<!ATTLIST doc att CDATA \"default\">"
5171 const char *text = "<!DOCTYPE doc SYSTEM 'http://example.org/'>\n"
5172 "<doc/>";
5173 ExtTest test_data
5174 = {"<!ENTITY % " PARAM_ENTITY_NAME " '" PARAM_ENTITY_CORE_VALUE "\r'>\n"
5175 "%" PARAM_ENTITY_NAME ";\n",
5176 NULL, NULL};
5177
5178 XML_SetUserData(g_parser, &test_data);
5179 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
5180 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader);
5181 XML_SetEntityDeclHandler(g_parser, param_entity_match_handler);
5182 entity_name_to_match = XCS(PARAM_ENTITY_NAME);
5183 entity_value_to_match = XCS(PARAM_ENTITY_CORE_VALUE) XCS("\n");
5184 entity_match_flag = ENTITY_MATCH_NOT_FOUND;
5185 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
5186 == XML_STATUS_ERROR)
5187 xml_failure(g_parser);
5188 if (entity_match_flag == ENTITY_MATCH_FAIL)
5189 fail("Parameter entity CR->NEWLINE conversion failed");
5190 else if (entity_match_flag == ENTITY_MATCH_NOT_FOUND)
5191 fail("Parameter entity not parsed");
5192 }
5193 #undef PARAM_ENTITY_NAME
5194 #undef PARAM_ENTITY_CORE_VALUE
5195 END_TEST
5196
START_TEST(test_invalid_character_entity)5197 START_TEST(test_invalid_character_entity) {
5198 const char *text = "<!DOCTYPE doc [\n"
5199 " <!ENTITY entity '�'>\n"
5200 "]>\n"
5201 "<doc>&entity;</doc>";
5202
5203 expect_failure(text, XML_ERROR_BAD_CHAR_REF,
5204 "Out of range character reference not faulted");
5205 }
5206 END_TEST
5207
START_TEST(test_invalid_character_entity_2)5208 START_TEST(test_invalid_character_entity_2) {
5209 const char *text = "<!DOCTYPE doc [\n"
5210 " <!ENTITY entity '&#xg0;'>\n"
5211 "]>\n"
5212 "<doc>&entity;</doc>";
5213
5214 expect_failure(text, XML_ERROR_INVALID_TOKEN,
5215 "Out of range character reference not faulted");
5216 }
5217 END_TEST
5218
START_TEST(test_invalid_character_entity_3)5219 START_TEST(test_invalid_character_entity_3) {
5220 const char text[] =
5221 /* <!DOCTYPE doc [\n */
5222 "\0<\0!\0D\0O\0C\0T\0Y\0P\0E\0 \0d\0o\0c\0 \0[\0\n"
5223 /* U+0E04 = KHO KHWAI
5224 * U+0E08 = CHO CHAN */
5225 /* <!ENTITY entity '&\u0e04\u0e08;'>\n */
5226 "\0<\0!\0E\0N\0T\0I\0T\0Y\0 \0e\0n\0t\0i\0t\0y\0 "
5227 "\0'\0&\x0e\x04\x0e\x08\0;\0'\0>\0\n"
5228 /* ]>\n */
5229 "\0]\0>\0\n"
5230 /* <doc>&entity;</doc> */
5231 "\0<\0d\0o\0c\0>\0&\0e\0n\0t\0i\0t\0y\0;\0<\0/\0d\0o\0c\0>";
5232
5233 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
5234 != XML_STATUS_ERROR)
5235 fail("Invalid start of entity name not faulted");
5236 if (XML_GetErrorCode(g_parser) != XML_ERROR_UNDEFINED_ENTITY)
5237 xml_failure(g_parser);
5238 }
5239 END_TEST
5240
START_TEST(test_invalid_character_entity_4)5241 START_TEST(test_invalid_character_entity_4) {
5242 const char *text = "<!DOCTYPE doc [\n"
5243 " <!ENTITY entity '�'>\n" /* = � */
5244 "]>\n"
5245 "<doc>&entity;</doc>";
5246
5247 expect_failure(text, XML_ERROR_BAD_CHAR_REF,
5248 "Out of range character reference not faulted");
5249 }
5250 END_TEST
5251
5252 /* Test that processing instructions are picked up by a default handler */
START_TEST(test_pi_handled_in_default)5253 START_TEST(test_pi_handled_in_default) {
5254 const char *text = "<?test processing instruction?>\n<doc/>";
5255 const XML_Char *expected = XCS("<?test processing instruction?>\n<doc/>");
5256 CharData storage;
5257
5258 CharData_Init(&storage);
5259 XML_SetDefaultHandler(g_parser, accumulate_characters);
5260 XML_SetUserData(g_parser, &storage);
5261 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
5262 == XML_STATUS_ERROR)
5263 xml_failure(g_parser);
5264 CharData_CheckXMLChars(&storage, expected);
5265 }
5266 END_TEST
5267
5268 /* Test that comments are picked up by a default handler */
START_TEST(test_comment_handled_in_default)5269 START_TEST(test_comment_handled_in_default) {
5270 const char *text = "<!-- This is a comment -->\n<doc/>";
5271 const XML_Char *expected = XCS("<!-- This is a comment -->\n<doc/>");
5272 CharData storage;
5273
5274 CharData_Init(&storage);
5275 XML_SetDefaultHandler(g_parser, accumulate_characters);
5276 XML_SetUserData(g_parser, &storage);
5277 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
5278 == XML_STATUS_ERROR)
5279 xml_failure(g_parser);
5280 CharData_CheckXMLChars(&storage, expected);
5281 }
5282 END_TEST
5283
5284 /* Test PIs that look almost but not quite like XML declarations */
5285 static void XMLCALL
accumulate_pi_characters(void * userData,const XML_Char * target,const XML_Char * data)5286 accumulate_pi_characters(void *userData, const XML_Char *target,
5287 const XML_Char *data) {
5288 CharData *storage = (CharData *)userData;
5289
5290 CharData_AppendXMLChars(storage, target, -1);
5291 CharData_AppendXMLChars(storage, XCS(": "), 2);
5292 CharData_AppendXMLChars(storage, data, -1);
5293 CharData_AppendXMLChars(storage, XCS("\n"), 1);
5294 }
5295
START_TEST(test_pi_yml)5296 START_TEST(test_pi_yml) {
5297 const char *text = "<?yml something like data?><doc/>";
5298 const XML_Char *expected = XCS("yml: something like data\n");
5299 CharData storage;
5300
5301 CharData_Init(&storage);
5302 XML_SetProcessingInstructionHandler(g_parser, accumulate_pi_characters);
5303 XML_SetUserData(g_parser, &storage);
5304 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
5305 == XML_STATUS_ERROR)
5306 xml_failure(g_parser);
5307 CharData_CheckXMLChars(&storage, expected);
5308 }
5309 END_TEST
5310
START_TEST(test_pi_xnl)5311 START_TEST(test_pi_xnl) {
5312 const char *text = "<?xnl nothing like data?><doc/>";
5313 const XML_Char *expected = XCS("xnl: nothing like data\n");
5314 CharData storage;
5315
5316 CharData_Init(&storage);
5317 XML_SetProcessingInstructionHandler(g_parser, accumulate_pi_characters);
5318 XML_SetUserData(g_parser, &storage);
5319 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
5320 == XML_STATUS_ERROR)
5321 xml_failure(g_parser);
5322 CharData_CheckXMLChars(&storage, expected);
5323 }
5324 END_TEST
5325
START_TEST(test_pi_xmm)5326 START_TEST(test_pi_xmm) {
5327 const char *text = "<?xmm everything like data?><doc/>";
5328 const XML_Char *expected = XCS("xmm: everything like data\n");
5329 CharData storage;
5330
5331 CharData_Init(&storage);
5332 XML_SetProcessingInstructionHandler(g_parser, accumulate_pi_characters);
5333 XML_SetUserData(g_parser, &storage);
5334 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
5335 == XML_STATUS_ERROR)
5336 xml_failure(g_parser);
5337 CharData_CheckXMLChars(&storage, expected);
5338 }
5339 END_TEST
5340
START_TEST(test_utf16_pi)5341 START_TEST(test_utf16_pi) {
5342 const char text[] =
5343 /* <?{KHO KHWAI}{CHO CHAN}?>
5344 * where {KHO KHWAI} = U+0E04
5345 * and {CHO CHAN} = U+0E08
5346 */
5347 "<\0?\0\x04\x0e\x08\x0e?\0>\0"
5348 /* <q/> */
5349 "<\0q\0/\0>\0";
5350 #ifdef XML_UNICODE
5351 const XML_Char *expected = XCS("\x0e04\x0e08: \n");
5352 #else
5353 const XML_Char *expected = XCS("\xe0\xb8\x84\xe0\xb8\x88: \n");
5354 #endif
5355 CharData storage;
5356
5357 CharData_Init(&storage);
5358 XML_SetProcessingInstructionHandler(g_parser, accumulate_pi_characters);
5359 XML_SetUserData(g_parser, &storage);
5360 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
5361 == XML_STATUS_ERROR)
5362 xml_failure(g_parser);
5363 CharData_CheckXMLChars(&storage, expected);
5364 }
5365 END_TEST
5366
START_TEST(test_utf16_be_pi)5367 START_TEST(test_utf16_be_pi) {
5368 const char text[] =
5369 /* <?{KHO KHWAI}{CHO CHAN}?>
5370 * where {KHO KHWAI} = U+0E04
5371 * and {CHO CHAN} = U+0E08
5372 */
5373 "\0<\0?\x0e\x04\x0e\x08\0?\0>"
5374 /* <q/> */
5375 "\0<\0q\0/\0>";
5376 #ifdef XML_UNICODE
5377 const XML_Char *expected = XCS("\x0e04\x0e08: \n");
5378 #else
5379 const XML_Char *expected = XCS("\xe0\xb8\x84\xe0\xb8\x88: \n");
5380 #endif
5381 CharData storage;
5382
5383 CharData_Init(&storage);
5384 XML_SetProcessingInstructionHandler(g_parser, accumulate_pi_characters);
5385 XML_SetUserData(g_parser, &storage);
5386 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
5387 == XML_STATUS_ERROR)
5388 xml_failure(g_parser);
5389 CharData_CheckXMLChars(&storage, expected);
5390 }
5391 END_TEST
5392
5393 /* Test that comments can be picked up and translated */
5394 static void XMLCALL
accumulate_comment(void * userData,const XML_Char * data)5395 accumulate_comment(void *userData, const XML_Char *data) {
5396 CharData *storage = (CharData *)userData;
5397
5398 CharData_AppendXMLChars(storage, data, -1);
5399 }
5400
START_TEST(test_utf16_be_comment)5401 START_TEST(test_utf16_be_comment) {
5402 const char text[] =
5403 /* <!-- Comment A --> */
5404 "\0<\0!\0-\0-\0 \0C\0o\0m\0m\0e\0n\0t\0 \0A\0 \0-\0-\0>\0\n"
5405 /* <doc/> */
5406 "\0<\0d\0o\0c\0/\0>";
5407 const XML_Char *expected = XCS(" Comment A ");
5408 CharData storage;
5409
5410 CharData_Init(&storage);
5411 XML_SetCommentHandler(g_parser, accumulate_comment);
5412 XML_SetUserData(g_parser, &storage);
5413 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
5414 == XML_STATUS_ERROR)
5415 xml_failure(g_parser);
5416 CharData_CheckXMLChars(&storage, expected);
5417 }
5418 END_TEST
5419
START_TEST(test_utf16_le_comment)5420 START_TEST(test_utf16_le_comment) {
5421 const char text[] =
5422 /* <!-- Comment B --> */
5423 "<\0!\0-\0-\0 \0C\0o\0m\0m\0e\0n\0t\0 \0B\0 \0-\0-\0>\0\n\0"
5424 /* <doc/> */
5425 "<\0d\0o\0c\0/\0>\0";
5426 const XML_Char *expected = XCS(" Comment B ");
5427 CharData storage;
5428
5429 CharData_Init(&storage);
5430 XML_SetCommentHandler(g_parser, accumulate_comment);
5431 XML_SetUserData(g_parser, &storage);
5432 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
5433 == XML_STATUS_ERROR)
5434 xml_failure(g_parser);
5435 CharData_CheckXMLChars(&storage, expected);
5436 }
5437 END_TEST
5438
5439 /* Test that the unknown encoding handler with map entries that expect
5440 * conversion but no conversion function is faulted
5441 */
5442 static int XMLCALL
failing_converter(void * data,const char * s)5443 failing_converter(void *data, const char *s) {
5444 UNUSED_P(data);
5445 UNUSED_P(s);
5446 /* Always claim to have failed */
5447 return -1;
5448 }
5449
5450 static int XMLCALL
prefix_converter(void * data,const char * s)5451 prefix_converter(void *data, const char *s) {
5452 UNUSED_P(data);
5453 /* If the first byte is 0xff, raise an error */
5454 if (s[0] == (char)-1)
5455 return -1;
5456 /* Just add the low bits of the first byte to the second */
5457 return (s[1] + (s[0] & 0x7f)) & 0x01ff;
5458 }
5459
5460 static int XMLCALL
MiscEncodingHandler(void * data,const XML_Char * encoding,XML_Encoding * info)5461 MiscEncodingHandler(void *data, const XML_Char *encoding, XML_Encoding *info) {
5462 int i;
5463 int high_map = -2; /* Assume a 2-byte sequence */
5464
5465 if (! xcstrcmp(encoding, XCS("invalid-9"))
5466 || ! xcstrcmp(encoding, XCS("ascii-like"))
5467 || ! xcstrcmp(encoding, XCS("invalid-len"))
5468 || ! xcstrcmp(encoding, XCS("invalid-a"))
5469 || ! xcstrcmp(encoding, XCS("invalid-surrogate"))
5470 || ! xcstrcmp(encoding, XCS("invalid-high")))
5471 high_map = -1;
5472
5473 for (i = 0; i < 128; ++i)
5474 info->map[i] = i;
5475 for (; i < 256; ++i)
5476 info->map[i] = high_map;
5477
5478 /* If required, put an invalid value in the ASCII entries */
5479 if (! xcstrcmp(encoding, XCS("invalid-9")))
5480 info->map[9] = 5;
5481 /* If required, have a top-bit set character starts a 5-byte sequence */
5482 if (! xcstrcmp(encoding, XCS("invalid-len")))
5483 info->map[0x81] = -5;
5484 /* If required, make a top-bit set character a valid ASCII character */
5485 if (! xcstrcmp(encoding, XCS("invalid-a")))
5486 info->map[0x82] = 'a';
5487 /* If required, give a top-bit set character a forbidden value,
5488 * what would otherwise be the first of a surrogate pair.
5489 */
5490 if (! xcstrcmp(encoding, XCS("invalid-surrogate")))
5491 info->map[0x83] = 0xd801;
5492 /* If required, give a top-bit set character too high a value */
5493 if (! xcstrcmp(encoding, XCS("invalid-high")))
5494 info->map[0x84] = 0x010101;
5495
5496 info->data = data;
5497 info->release = NULL;
5498 if (! xcstrcmp(encoding, XCS("failing-conv")))
5499 info->convert = failing_converter;
5500 else if (! xcstrcmp(encoding, XCS("prefix-conv")))
5501 info->convert = prefix_converter;
5502 else
5503 info->convert = NULL;
5504 return XML_STATUS_OK;
5505 }
5506
START_TEST(test_missing_encoding_conversion_fn)5507 START_TEST(test_missing_encoding_conversion_fn) {
5508 const char *text = "<?xml version='1.0' encoding='no-conv'?>\n"
5509 "<doc>\x81</doc>";
5510
5511 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
5512 /* MiscEncodingHandler sets up an encoding with every top-bit-set
5513 * character introducing a two-byte sequence. For this, it
5514 * requires a convert function. The above function call doesn't
5515 * pass one through, so when BadEncodingHandler actually gets
5516 * called it should supply an invalid encoding.
5517 */
5518 expect_failure(text, XML_ERROR_UNKNOWN_ENCODING,
5519 "Encoding with missing convert() not faulted");
5520 }
5521 END_TEST
5522
START_TEST(test_failing_encoding_conversion_fn)5523 START_TEST(test_failing_encoding_conversion_fn) {
5524 const char *text = "<?xml version='1.0' encoding='failing-conv'?>\n"
5525 "<doc>\x81</doc>";
5526
5527 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
5528 /* BadEncodingHandler sets up an encoding with every top-bit-set
5529 * character introducing a two-byte sequence. For this, it
5530 * requires a convert function. The above function call passes
5531 * one that insists all possible sequences are invalid anyway.
5532 */
5533 expect_failure(text, XML_ERROR_INVALID_TOKEN,
5534 "Encoding with failing convert() not faulted");
5535 }
5536 END_TEST
5537
5538 /* Test unknown encoding conversions */
START_TEST(test_unknown_encoding_success)5539 START_TEST(test_unknown_encoding_success) {
5540 const char *text = "<?xml version='1.0' encoding='prefix-conv'?>\n"
5541 /* Equivalent to <eoc>Hello, world</eoc> */
5542 "<\x81\x64\x80oc>Hello, world</\x81\x64\x80oc>";
5543
5544 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
5545 run_character_check(text, XCS("Hello, world"));
5546 }
5547 END_TEST
5548
5549 /* Test bad name character in unknown encoding */
START_TEST(test_unknown_encoding_bad_name)5550 START_TEST(test_unknown_encoding_bad_name) {
5551 const char *text = "<?xml version='1.0' encoding='prefix-conv'?>\n"
5552 "<\xff\x64oc>Hello, world</\xff\x64oc>";
5553
5554 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
5555 expect_failure(text, XML_ERROR_INVALID_TOKEN,
5556 "Bad name start in unknown encoding not faulted");
5557 }
5558 END_TEST
5559
5560 /* Test bad mid-name character in unknown encoding */
START_TEST(test_unknown_encoding_bad_name_2)5561 START_TEST(test_unknown_encoding_bad_name_2) {
5562 const char *text = "<?xml version='1.0' encoding='prefix-conv'?>\n"
5563 "<d\xffoc>Hello, world</d\xffoc>";
5564
5565 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
5566 expect_failure(text, XML_ERROR_INVALID_TOKEN,
5567 "Bad name in unknown encoding not faulted");
5568 }
5569 END_TEST
5570
5571 /* Test element name that is long enough to fill the conversion buffer
5572 * in an unknown encoding, finishing with an encoded character.
5573 */
START_TEST(test_unknown_encoding_long_name_1)5574 START_TEST(test_unknown_encoding_long_name_1) {
5575 const char *text = "<?xml version='1.0' encoding='prefix-conv'?>\n"
5576 "<abcdefghabcdefghabcdefghijkl\x80m\x80n\x80o\x80p>"
5577 "Hi"
5578 "</abcdefghabcdefghabcdefghijkl\x80m\x80n\x80o\x80p>";
5579 const XML_Char *expected = XCS("abcdefghabcdefghabcdefghijklmnop");
5580 CharData storage;
5581
5582 CharData_Init(&storage);
5583 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
5584 XML_SetStartElementHandler(g_parser, record_element_start_handler);
5585 XML_SetUserData(g_parser, &storage);
5586 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
5587 == XML_STATUS_ERROR)
5588 xml_failure(g_parser);
5589 CharData_CheckXMLChars(&storage, expected);
5590 }
5591 END_TEST
5592
5593 /* Test element name that is long enough to fill the conversion buffer
5594 * in an unknown encoding, finishing with an simple character.
5595 */
START_TEST(test_unknown_encoding_long_name_2)5596 START_TEST(test_unknown_encoding_long_name_2) {
5597 const char *text = "<?xml version='1.0' encoding='prefix-conv'?>\n"
5598 "<abcdefghabcdefghabcdefghijklmnop>"
5599 "Hi"
5600 "</abcdefghabcdefghabcdefghijklmnop>";
5601 const XML_Char *expected = XCS("abcdefghabcdefghabcdefghijklmnop");
5602 CharData storage;
5603
5604 CharData_Init(&storage);
5605 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
5606 XML_SetStartElementHandler(g_parser, record_element_start_handler);
5607 XML_SetUserData(g_parser, &storage);
5608 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
5609 == XML_STATUS_ERROR)
5610 xml_failure(g_parser);
5611 CharData_CheckXMLChars(&storage, expected);
5612 }
5613 END_TEST
5614
START_TEST(test_invalid_unknown_encoding)5615 START_TEST(test_invalid_unknown_encoding) {
5616 const char *text = "<?xml version='1.0' encoding='invalid-9'?>\n"
5617 "<doc>Hello world</doc>";
5618
5619 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
5620 expect_failure(text, XML_ERROR_UNKNOWN_ENCODING,
5621 "Invalid unknown encoding not faulted");
5622 }
5623 END_TEST
5624
START_TEST(test_unknown_ascii_encoding_ok)5625 START_TEST(test_unknown_ascii_encoding_ok) {
5626 const char *text = "<?xml version='1.0' encoding='ascii-like'?>\n"
5627 "<doc>Hello, world</doc>";
5628
5629 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
5630 run_character_check(text, XCS("Hello, world"));
5631 }
5632 END_TEST
5633
START_TEST(test_unknown_ascii_encoding_fail)5634 START_TEST(test_unknown_ascii_encoding_fail) {
5635 const char *text = "<?xml version='1.0' encoding='ascii-like'?>\n"
5636 "<doc>Hello, \x80 world</doc>";
5637
5638 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
5639 expect_failure(text, XML_ERROR_INVALID_TOKEN,
5640 "Invalid character not faulted");
5641 }
5642 END_TEST
5643
START_TEST(test_unknown_encoding_invalid_length)5644 START_TEST(test_unknown_encoding_invalid_length) {
5645 const char *text = "<?xml version='1.0' encoding='invalid-len'?>\n"
5646 "<doc>Hello, world</doc>";
5647
5648 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
5649 expect_failure(text, XML_ERROR_UNKNOWN_ENCODING,
5650 "Invalid unknown encoding not faulted");
5651 }
5652 END_TEST
5653
START_TEST(test_unknown_encoding_invalid_topbit)5654 START_TEST(test_unknown_encoding_invalid_topbit) {
5655 const char *text = "<?xml version='1.0' encoding='invalid-a'?>\n"
5656 "<doc>Hello, world</doc>";
5657
5658 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
5659 expect_failure(text, XML_ERROR_UNKNOWN_ENCODING,
5660 "Invalid unknown encoding not faulted");
5661 }
5662 END_TEST
5663
START_TEST(test_unknown_encoding_invalid_surrogate)5664 START_TEST(test_unknown_encoding_invalid_surrogate) {
5665 const char *text = "<?xml version='1.0' encoding='invalid-surrogate'?>\n"
5666 "<doc>Hello, \x82 world</doc>";
5667
5668 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
5669 expect_failure(text, XML_ERROR_INVALID_TOKEN,
5670 "Invalid unknown encoding not faulted");
5671 }
5672 END_TEST
5673
START_TEST(test_unknown_encoding_invalid_high)5674 START_TEST(test_unknown_encoding_invalid_high) {
5675 const char *text = "<?xml version='1.0' encoding='invalid-high'?>\n"
5676 "<doc>Hello, world</doc>";
5677
5678 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
5679 expect_failure(text, XML_ERROR_UNKNOWN_ENCODING,
5680 "Invalid unknown encoding not faulted");
5681 }
5682 END_TEST
5683
START_TEST(test_unknown_encoding_invalid_attr_value)5684 START_TEST(test_unknown_encoding_invalid_attr_value) {
5685 const char *text = "<?xml version='1.0' encoding='prefix-conv'?>\n"
5686 "<doc attr='\xff\x30'/>";
5687
5688 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
5689 expect_failure(text, XML_ERROR_INVALID_TOKEN,
5690 "Invalid attribute valid not faulted");
5691 }
5692 END_TEST
5693
5694 /* Test an external entity parser set to use latin-1 detects UTF-16
5695 * BOMs correctly.
5696 */
5697 enum ee_parse_flags { EE_PARSE_NONE = 0x00, EE_PARSE_FULL_BUFFER = 0x01 };
5698
5699 typedef struct ExtTest2 {
5700 const char *parse_text;
5701 int parse_len;
5702 const XML_Char *encoding;
5703 CharData *storage;
5704 enum ee_parse_flags flags;
5705 } ExtTest2;
5706
5707 static int XMLCALL
external_entity_loader2(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)5708 external_entity_loader2(XML_Parser parser, const XML_Char *context,
5709 const XML_Char *base, const XML_Char *systemId,
5710 const XML_Char *publicId) {
5711 ExtTest2 *test_data = (ExtTest2 *)XML_GetUserData(parser);
5712 XML_Parser extparser;
5713
5714 UNUSED_P(base);
5715 UNUSED_P(systemId);
5716 UNUSED_P(publicId);
5717 extparser = XML_ExternalEntityParserCreate(parser, context, NULL);
5718 if (extparser == NULL)
5719 fail("Coulr not create external entity parser");
5720 if (test_data->encoding != NULL) {
5721 if (! XML_SetEncoding(extparser, test_data->encoding))
5722 fail("XML_SetEncoding() ignored for external entity");
5723 }
5724 if (test_data->flags & EE_PARSE_FULL_BUFFER) {
5725 if (XML_Parse(extparser, test_data->parse_text, test_data->parse_len,
5726 XML_TRUE)
5727 == XML_STATUS_ERROR) {
5728 xml_failure(extparser);
5729 }
5730 } else if (_XML_Parse_SINGLE_BYTES(extparser, test_data->parse_text,
5731 test_data->parse_len, XML_TRUE)
5732 == XML_STATUS_ERROR) {
5733 xml_failure(extparser);
5734 }
5735
5736 XML_ParserFree(extparser);
5737 return XML_STATUS_OK;
5738 }
5739
5740 /* Test that UTF-16 BOM does not select UTF-16 given explicit encoding */
5741 static void XMLCALL
ext2_accumulate_characters(void * userData,const XML_Char * s,int len)5742 ext2_accumulate_characters(void *userData, const XML_Char *s, int len) {
5743 ExtTest2 *test_data = (ExtTest2 *)userData;
5744 accumulate_characters(test_data->storage, s, len);
5745 }
5746
START_TEST(test_ext_entity_latin1_utf16le_bom)5747 START_TEST(test_ext_entity_latin1_utf16le_bom) {
5748 const char *text = "<!DOCTYPE doc [\n"
5749 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
5750 "]>\n"
5751 "<doc>&en;</doc>";
5752 ExtTest2 test_data
5753 = {/* If UTF-16, 0xfeff is the BOM and 0x204c is black left bullet */
5754 /* If Latin-1, 0xff = Y-diaeresis, 0xfe = lowercase thorn,
5755 * 0x4c = L and 0x20 is a space
5756 */
5757 "\xff\xfe\x4c\x20", 4, XCS("iso-8859-1"), NULL, EE_PARSE_NONE};
5758 #ifdef XML_UNICODE
5759 const XML_Char *expected = XCS("\x00ff\x00feL ");
5760 #else
5761 /* In UTF-8, y-diaeresis is 0xc3 0xbf, lowercase thorn is 0xc3 0xbe */
5762 const XML_Char *expected = XCS("\xc3\xbf\xc3\xbeL ");
5763 #endif
5764 CharData storage;
5765
5766 CharData_Init(&storage);
5767 test_data.storage = &storage;
5768 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader2);
5769 XML_SetUserData(g_parser, &test_data);
5770 XML_SetCharacterDataHandler(g_parser, ext2_accumulate_characters);
5771 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
5772 == XML_STATUS_ERROR)
5773 xml_failure(g_parser);
5774 CharData_CheckXMLChars(&storage, expected);
5775 }
5776 END_TEST
5777
START_TEST(test_ext_entity_latin1_utf16be_bom)5778 START_TEST(test_ext_entity_latin1_utf16be_bom) {
5779 const char *text = "<!DOCTYPE doc [\n"
5780 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
5781 "]>\n"
5782 "<doc>&en;</doc>";
5783 ExtTest2 test_data
5784 = {/* If UTF-16, 0xfeff is the BOM and 0x204c is black left bullet */
5785 /* If Latin-1, 0xff = Y-diaeresis, 0xfe = lowercase thorn,
5786 * 0x4c = L and 0x20 is a space
5787 */
5788 "\xfe\xff\x20\x4c", 4, XCS("iso-8859-1"), NULL, EE_PARSE_NONE};
5789 #ifdef XML_UNICODE
5790 const XML_Char *expected = XCS("\x00fe\x00ff L");
5791 #else
5792 /* In UTF-8, y-diaeresis is 0xc3 0xbf, lowercase thorn is 0xc3 0xbe */
5793 const XML_Char *expected = XCS("\xc3\xbe\xc3\xbf L");
5794 #endif
5795 CharData storage;
5796
5797 CharData_Init(&storage);
5798 test_data.storage = &storage;
5799 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader2);
5800 XML_SetUserData(g_parser, &test_data);
5801 XML_SetCharacterDataHandler(g_parser, ext2_accumulate_characters);
5802 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
5803 == XML_STATUS_ERROR)
5804 xml_failure(g_parser);
5805 CharData_CheckXMLChars(&storage, expected);
5806 }
5807 END_TEST
5808
5809 /* Parsing the full buffer rather than a byte at a time makes a
5810 * difference to the encoding scanning code, so repeat the above tests
5811 * without breaking them down by byte.
5812 */
START_TEST(test_ext_entity_latin1_utf16le_bom2)5813 START_TEST(test_ext_entity_latin1_utf16le_bom2) {
5814 const char *text = "<!DOCTYPE doc [\n"
5815 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
5816 "]>\n"
5817 "<doc>&en;</doc>";
5818 ExtTest2 test_data
5819 = {/* If UTF-16, 0xfeff is the BOM and 0x204c is black left bullet */
5820 /* If Latin-1, 0xff = Y-diaeresis, 0xfe = lowercase thorn,
5821 * 0x4c = L and 0x20 is a space
5822 */
5823 "\xff\xfe\x4c\x20", 4, XCS("iso-8859-1"), NULL, EE_PARSE_FULL_BUFFER};
5824 #ifdef XML_UNICODE
5825 const XML_Char *expected = XCS("\x00ff\x00feL ");
5826 #else
5827 /* In UTF-8, y-diaeresis is 0xc3 0xbf, lowercase thorn is 0xc3 0xbe */
5828 const XML_Char *expected = XCS("\xc3\xbf\xc3\xbeL ");
5829 #endif
5830 CharData storage;
5831
5832 CharData_Init(&storage);
5833 test_data.storage = &storage;
5834 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader2);
5835 XML_SetUserData(g_parser, &test_data);
5836 XML_SetCharacterDataHandler(g_parser, ext2_accumulate_characters);
5837 if (XML_Parse(g_parser, text, (int)strlen(text), XML_TRUE)
5838 == XML_STATUS_ERROR)
5839 xml_failure(g_parser);
5840 CharData_CheckXMLChars(&storage, expected);
5841 }
5842 END_TEST
5843
START_TEST(test_ext_entity_latin1_utf16be_bom2)5844 START_TEST(test_ext_entity_latin1_utf16be_bom2) {
5845 const char *text = "<!DOCTYPE doc [\n"
5846 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
5847 "]>\n"
5848 "<doc>&en;</doc>";
5849 ExtTest2 test_data
5850 = {/* If UTF-16, 0xfeff is the BOM and 0x204c is black left bullet */
5851 /* If Latin-1, 0xff = Y-diaeresis, 0xfe = lowercase thorn,
5852 * 0x4c = L and 0x20 is a space
5853 */
5854 "\xfe\xff\x20\x4c", 4, XCS("iso-8859-1"), NULL, EE_PARSE_FULL_BUFFER};
5855 #ifdef XML_UNICODE
5856 const XML_Char *expected = XCS("\x00fe\x00ff L");
5857 #else
5858 /* In UTF-8, y-diaeresis is 0xc3 0xbf, lowercase thorn is 0xc3 0xbe */
5859 const XML_Char *expected = "\xc3\xbe\xc3\xbf L";
5860 #endif
5861 CharData storage;
5862
5863 CharData_Init(&storage);
5864 test_data.storage = &storage;
5865 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader2);
5866 XML_SetUserData(g_parser, &test_data);
5867 XML_SetCharacterDataHandler(g_parser, ext2_accumulate_characters);
5868 if (XML_Parse(g_parser, text, (int)strlen(text), XML_TRUE)
5869 == XML_STATUS_ERROR)
5870 xml_failure(g_parser);
5871 CharData_CheckXMLChars(&storage, expected);
5872 }
5873 END_TEST
5874
5875 /* Test little-endian UTF-16 given an explicit big-endian encoding */
START_TEST(test_ext_entity_utf16_be)5876 START_TEST(test_ext_entity_utf16_be) {
5877 const char *text = "<!DOCTYPE doc [\n"
5878 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
5879 "]>\n"
5880 "<doc>&en;</doc>";
5881 ExtTest2 test_data
5882 = {"<\0e\0/\0>\0", 8, XCS("utf-16be"), NULL, EE_PARSE_NONE};
5883 #ifdef XML_UNICODE
5884 const XML_Char *expected = XCS("\x3c00\x6500\x2f00\x3e00");
5885 #else
5886 const XML_Char *expected = XCS("\xe3\xb0\x80" /* U+3C00 */
5887 "\xe6\x94\x80" /* U+6500 */
5888 "\xe2\xbc\x80" /* U+2F00 */
5889 "\xe3\xb8\x80"); /* U+3E00 */
5890 #endif
5891 CharData storage;
5892
5893 CharData_Init(&storage);
5894 test_data.storage = &storage;
5895 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader2);
5896 XML_SetUserData(g_parser, &test_data);
5897 XML_SetCharacterDataHandler(g_parser, ext2_accumulate_characters);
5898 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
5899 == XML_STATUS_ERROR)
5900 xml_failure(g_parser);
5901 CharData_CheckXMLChars(&storage, expected);
5902 }
5903 END_TEST
5904
5905 /* Test big-endian UTF-16 given an explicit little-endian encoding */
START_TEST(test_ext_entity_utf16_le)5906 START_TEST(test_ext_entity_utf16_le) {
5907 const char *text = "<!DOCTYPE doc [\n"
5908 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
5909 "]>\n"
5910 "<doc>&en;</doc>";
5911 ExtTest2 test_data
5912 = {"\0<\0e\0/\0>", 8, XCS("utf-16le"), NULL, EE_PARSE_NONE};
5913 #ifdef XML_UNICODE
5914 const XML_Char *expected = XCS("\x3c00\x6500\x2f00\x3e00");
5915 #else
5916 const XML_Char *expected = XCS("\xe3\xb0\x80" /* U+3C00 */
5917 "\xe6\x94\x80" /* U+6500 */
5918 "\xe2\xbc\x80" /* U+2F00 */
5919 "\xe3\xb8\x80"); /* U+3E00 */
5920 #endif
5921 CharData storage;
5922
5923 CharData_Init(&storage);
5924 test_data.storage = &storage;
5925 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader2);
5926 XML_SetUserData(g_parser, &test_data);
5927 XML_SetCharacterDataHandler(g_parser, ext2_accumulate_characters);
5928 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
5929 == XML_STATUS_ERROR)
5930 xml_failure(g_parser);
5931 CharData_CheckXMLChars(&storage, expected);
5932 }
5933 END_TEST
5934
5935 /* Test little-endian UTF-16 given no explicit encoding.
5936 * The existing default encoding (UTF-8) is assumed to hold without a
5937 * BOM to contradict it, so the entity value will in fact provoke an
5938 * error because 0x00 is not a valid XML character. We parse the
5939 * whole buffer in one go rather than feeding it in byte by byte to
5940 * exercise different code paths in the initial scanning routines.
5941 */
5942 typedef struct ExtFaults2 {
5943 const char *parse_text;
5944 int parse_len;
5945 const char *fail_text;
5946 const XML_Char *encoding;
5947 enum XML_Error error;
5948 } ExtFaults2;
5949
5950 static int XMLCALL
external_entity_faulter2(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)5951 external_entity_faulter2(XML_Parser parser, const XML_Char *context,
5952 const XML_Char *base, const XML_Char *systemId,
5953 const XML_Char *publicId) {
5954 ExtFaults2 *test_data = (ExtFaults2 *)XML_GetUserData(parser);
5955 XML_Parser extparser;
5956
5957 UNUSED_P(base);
5958 UNUSED_P(systemId);
5959 UNUSED_P(publicId);
5960 extparser = XML_ExternalEntityParserCreate(parser, context, NULL);
5961 if (extparser == NULL)
5962 fail("Could not create external entity parser");
5963 if (test_data->encoding != NULL) {
5964 if (! XML_SetEncoding(extparser, test_data->encoding))
5965 fail("XML_SetEncoding() ignored for external entity");
5966 }
5967 if (XML_Parse(extparser, test_data->parse_text, test_data->parse_len,
5968 XML_TRUE)
5969 != XML_STATUS_ERROR)
5970 fail(test_data->fail_text);
5971 if (XML_GetErrorCode(extparser) != test_data->error)
5972 xml_failure(extparser);
5973
5974 XML_ParserFree(extparser);
5975 return XML_STATUS_ERROR;
5976 }
5977
START_TEST(test_ext_entity_utf16_unknown)5978 START_TEST(test_ext_entity_utf16_unknown) {
5979 const char *text = "<!DOCTYPE doc [\n"
5980 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
5981 "]>\n"
5982 "<doc>&en;</doc>";
5983 ExtFaults2 test_data
5984 = {"a\0b\0c\0", 6, "Invalid character in entity not faulted", NULL,
5985 XML_ERROR_INVALID_TOKEN};
5986
5987 XML_SetExternalEntityRefHandler(g_parser, external_entity_faulter2);
5988 XML_SetUserData(g_parser, &test_data);
5989 expect_failure(text, XML_ERROR_EXTERNAL_ENTITY_HANDLING,
5990 "Invalid character should not have been accepted");
5991 }
5992 END_TEST
5993
5994 /* Test not-quite-UTF-8 BOM (0xEF 0xBB 0xBF) */
START_TEST(test_ext_entity_utf8_non_bom)5995 START_TEST(test_ext_entity_utf8_non_bom) {
5996 const char *text = "<!DOCTYPE doc [\n"
5997 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
5998 "]>\n"
5999 "<doc>&en;</doc>";
6000 ExtTest2 test_data
6001 = {"\xef\xbb\x80", /* Arabic letter DAD medial form, U+FEC0 */
6002 3, NULL, NULL, EE_PARSE_NONE};
6003 #ifdef XML_UNICODE
6004 const XML_Char *expected = XCS("\xfec0");
6005 #else
6006 const XML_Char *expected = XCS("\xef\xbb\x80");
6007 #endif
6008 CharData storage;
6009
6010 CharData_Init(&storage);
6011 test_data.storage = &storage;
6012 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader2);
6013 XML_SetUserData(g_parser, &test_data);
6014 XML_SetCharacterDataHandler(g_parser, ext2_accumulate_characters);
6015 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
6016 == XML_STATUS_ERROR)
6017 xml_failure(g_parser);
6018 CharData_CheckXMLChars(&storage, expected);
6019 }
6020 END_TEST
6021
6022 /* Test that UTF-8 in a CDATA section is correctly passed through */
START_TEST(test_utf8_in_cdata_section)6023 START_TEST(test_utf8_in_cdata_section) {
6024 const char *text = "<doc><![CDATA[one \xc3\xa9 two]]></doc>";
6025 #ifdef XML_UNICODE
6026 const XML_Char *expected = XCS("one \x00e9 two");
6027 #else
6028 const XML_Char *expected = XCS("one \xc3\xa9 two");
6029 #endif
6030
6031 run_character_check(text, expected);
6032 }
6033 END_TEST
6034
6035 /* Test that little-endian UTF-16 in a CDATA section is handled */
START_TEST(test_utf8_in_cdata_section_2)6036 START_TEST(test_utf8_in_cdata_section_2) {
6037 const char *text = "<doc><![CDATA[\xc3\xa9]\xc3\xa9two]]></doc>";
6038 #ifdef XML_UNICODE
6039 const XML_Char *expected = XCS("\x00e9]\x00e9two");
6040 #else
6041 const XML_Char *expected = XCS("\xc3\xa9]\xc3\xa9two");
6042 #endif
6043
6044 run_character_check(text, expected);
6045 }
6046 END_TEST
6047
6048 /* Test trailing spaces in elements are accepted */
6049 static void XMLCALL
record_element_end_handler(void * userData,const XML_Char * name)6050 record_element_end_handler(void *userData, const XML_Char *name) {
6051 CharData *storage = (CharData *)userData;
6052
6053 CharData_AppendXMLChars(storage, XCS("/"), 1);
6054 CharData_AppendXMLChars(storage, name, -1);
6055 }
6056
START_TEST(test_trailing_spaces_in_elements)6057 START_TEST(test_trailing_spaces_in_elements) {
6058 const char *text = "<doc >Hi</doc >";
6059 const XML_Char *expected = XCS("doc/doc");
6060 CharData storage;
6061
6062 CharData_Init(&storage);
6063 XML_SetElementHandler(g_parser, record_element_start_handler,
6064 record_element_end_handler);
6065 XML_SetUserData(g_parser, &storage);
6066 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
6067 == XML_STATUS_ERROR)
6068 xml_failure(g_parser);
6069 CharData_CheckXMLChars(&storage, expected);
6070 }
6071 END_TEST
6072
START_TEST(test_utf16_attribute)6073 START_TEST(test_utf16_attribute) {
6074 const char text[] =
6075 /* <d {KHO KHWAI}{CHO CHAN}='a'/>
6076 * where {KHO KHWAI} = U+0E04 = 0xe0 0xb8 0x84 in UTF-8
6077 * and {CHO CHAN} = U+0E08 = 0xe0 0xb8 0x88 in UTF-8
6078 */
6079 "<\0d\0 \0\x04\x0e\x08\x0e=\0'\0a\0'\0/\0>\0";
6080 const XML_Char *expected = XCS("a");
6081 CharData storage;
6082
6083 CharData_Init(&storage);
6084 XML_SetStartElementHandler(g_parser, accumulate_attribute);
6085 XML_SetUserData(g_parser, &storage);
6086 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
6087 == XML_STATUS_ERROR)
6088 xml_failure(g_parser);
6089 CharData_CheckXMLChars(&storage, expected);
6090 }
6091 END_TEST
6092
START_TEST(test_utf16_second_attr)6093 START_TEST(test_utf16_second_attr) {
6094 /* <d a='1' {KHO KHWAI}{CHO CHAN}='2'/>
6095 * where {KHO KHWAI} = U+0E04 = 0xe0 0xb8 0x84 in UTF-8
6096 * and {CHO CHAN} = U+0E08 = 0xe0 0xb8 0x88 in UTF-8
6097 */
6098 const char text[] = "<\0d\0 \0a\0=\0'\0\x31\0'\0 \0"
6099 "\x04\x0e\x08\x0e=\0'\0\x32\0'\0/\0>\0";
6100 const XML_Char *expected = XCS("1");
6101 CharData storage;
6102
6103 CharData_Init(&storage);
6104 XML_SetStartElementHandler(g_parser, accumulate_attribute);
6105 XML_SetUserData(g_parser, &storage);
6106 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
6107 == XML_STATUS_ERROR)
6108 xml_failure(g_parser);
6109 CharData_CheckXMLChars(&storage, expected);
6110 }
6111 END_TEST
6112
START_TEST(test_attr_after_solidus)6113 START_TEST(test_attr_after_solidus) {
6114 const char *text = "<doc attr1='a' / attr2='b'>";
6115
6116 expect_failure(text, XML_ERROR_INVALID_TOKEN, "Misplaced / not faulted");
6117 }
6118 END_TEST
6119
6120 static void XMLCALL
accumulate_entity_decl(void * userData,const XML_Char * entityName,int is_parameter_entity,const XML_Char * value,int value_length,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId,const XML_Char * notationName)6121 accumulate_entity_decl(void *userData, const XML_Char *entityName,
6122 int is_parameter_entity, const XML_Char *value,
6123 int value_length, const XML_Char *base,
6124 const XML_Char *systemId, const XML_Char *publicId,
6125 const XML_Char *notationName) {
6126 CharData *storage = (CharData *)userData;
6127
6128 UNUSED_P(is_parameter_entity);
6129 UNUSED_P(base);
6130 UNUSED_P(systemId);
6131 UNUSED_P(publicId);
6132 UNUSED_P(notationName);
6133 CharData_AppendXMLChars(storage, entityName, -1);
6134 CharData_AppendXMLChars(storage, XCS("="), 1);
6135 CharData_AppendXMLChars(storage, value, value_length);
6136 CharData_AppendXMLChars(storage, XCS("\n"), 1);
6137 }
6138
START_TEST(test_utf16_pe)6139 START_TEST(test_utf16_pe) {
6140 /* <!DOCTYPE doc [
6141 * <!ENTITY % {KHO KHWAI}{CHO CHAN} '<!ELEMENT doc (#PCDATA)>'>
6142 * %{KHO KHWAI}{CHO CHAN};
6143 * ]>
6144 * <doc></doc>
6145 *
6146 * where {KHO KHWAI} = U+0E04 = 0xe0 0xb8 0x84 in UTF-8
6147 * and {CHO CHAN} = U+0E08 = 0xe0 0xb8 0x88 in UTF-8
6148 */
6149 const char text[] = "\0<\0!\0D\0O\0C\0T\0Y\0P\0E\0 \0d\0o\0c\0 \0[\0\n"
6150 "\0<\0!\0E\0N\0T\0I\0T\0Y\0 \0%\0 \x0e\x04\x0e\x08\0 "
6151 "\0'\0<\0!\0E\0L\0E\0M\0E\0N\0T\0 "
6152 "\0d\0o\0c\0 \0(\0#\0P\0C\0D\0A\0T\0A\0)\0>\0'\0>\0\n"
6153 "\0%\x0e\x04\x0e\x08\0;\0\n"
6154 "\0]\0>\0\n"
6155 "\0<\0d\0o\0c\0>\0<\0/\0d\0o\0c\0>";
6156 #ifdef XML_UNICODE
6157 const XML_Char *expected = XCS("\x0e04\x0e08=<!ELEMENT doc (#PCDATA)>\n");
6158 #else
6159 const XML_Char *expected
6160 = XCS("\xe0\xb8\x84\xe0\xb8\x88=<!ELEMENT doc (#PCDATA)>\n");
6161 #endif
6162 CharData storage;
6163
6164 CharData_Init(&storage);
6165 XML_SetUserData(g_parser, &storage);
6166 XML_SetEntityDeclHandler(g_parser, accumulate_entity_decl);
6167 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
6168 == XML_STATUS_ERROR)
6169 xml_failure(g_parser);
6170 CharData_CheckXMLChars(&storage, expected);
6171 }
6172 END_TEST
6173
6174 /* Test that duff attribute description keywords are rejected */
START_TEST(test_bad_attr_desc_keyword)6175 START_TEST(test_bad_attr_desc_keyword) {
6176 const char *text = "<!DOCTYPE doc [\n"
6177 " <!ATTLIST doc attr CDATA #!IMPLIED>\n"
6178 "]>\n"
6179 "<doc />";
6180
6181 expect_failure(text, XML_ERROR_INVALID_TOKEN,
6182 "Bad keyword !IMPLIED not faulted");
6183 }
6184 END_TEST
6185
6186 /* Test that an invalid attribute description keyword consisting of
6187 * UTF-16 characters with their top bytes non-zero are correctly
6188 * faulted
6189 */
START_TEST(test_bad_attr_desc_keyword_utf16)6190 START_TEST(test_bad_attr_desc_keyword_utf16) {
6191 /* <!DOCTYPE d [
6192 * <!ATTLIST d a CDATA #{KHO KHWAI}{CHO CHAN}>
6193 * ]><d/>
6194 *
6195 * where {KHO KHWAI} = U+0E04 = 0xe0 0xb8 0x84 in UTF-8
6196 * and {CHO CHAN} = U+0E08 = 0xe0 0xb8 0x88 in UTF-8
6197 */
6198 const char text[]
6199 = "\0<\0!\0D\0O\0C\0T\0Y\0P\0E\0 \0d\0 \0[\0\n"
6200 "\0<\0!\0A\0T\0T\0L\0I\0S\0T\0 \0d\0 \0a\0 \0C\0D\0A\0T\0A\0 "
6201 "\0#\x0e\x04\x0e\x08\0>\0\n"
6202 "\0]\0>\0<\0d\0/\0>";
6203
6204 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
6205 != XML_STATUS_ERROR)
6206 fail("Invalid UTF16 attribute keyword not faulted");
6207 if (XML_GetErrorCode(g_parser) != XML_ERROR_SYNTAX)
6208 xml_failure(g_parser);
6209 }
6210 END_TEST
6211
6212 /* Test that invalid syntax in a <!DOCTYPE> is rejected. Do this
6213 * using prefix-encoding (see above) to trigger specific code paths
6214 */
START_TEST(test_bad_doctype)6215 START_TEST(test_bad_doctype) {
6216 const char *text = "<?xml version='1.0' encoding='prefix-conv'?>\n"
6217 "<!DOCTYPE doc [ \x80\x44 ]><doc/>";
6218
6219 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
6220 expect_failure(text, XML_ERROR_SYNTAX,
6221 "Invalid bytes in DOCTYPE not faulted");
6222 }
6223 END_TEST
6224
START_TEST(test_bad_doctype_utf16)6225 START_TEST(test_bad_doctype_utf16) {
6226 const char text[] =
6227 /* <!DOCTYPE doc [ \x06f2 ]><doc/>
6228 *
6229 * U+06F2 = EXTENDED ARABIC-INDIC DIGIT TWO, a valid number
6230 * (name character) but not a valid letter (name start character)
6231 */
6232 "\0<\0!\0D\0O\0C\0T\0Y\0P\0E\0 \0d\0o\0c\0 \0[\0 "
6233 "\x06\xf2"
6234 "\0 \0]\0>\0<\0d\0o\0c\0/\0>";
6235
6236 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
6237 != XML_STATUS_ERROR)
6238 fail("Invalid bytes in DOCTYPE not faulted");
6239 if (XML_GetErrorCode(g_parser) != XML_ERROR_SYNTAX)
6240 xml_failure(g_parser);
6241 }
6242 END_TEST
6243
START_TEST(test_bad_doctype_plus)6244 START_TEST(test_bad_doctype_plus) {
6245 const char *text = "<!DOCTYPE 1+ [ <!ENTITY foo 'bar'> ]>\n"
6246 "<1+>&foo;</1+>";
6247
6248 expect_failure(text, XML_ERROR_INVALID_TOKEN,
6249 "'+' in document name not faulted");
6250 }
6251 END_TEST
6252
START_TEST(test_bad_doctype_star)6253 START_TEST(test_bad_doctype_star) {
6254 const char *text = "<!DOCTYPE 1* [ <!ENTITY foo 'bar'> ]>\n"
6255 "<1*>&foo;</1*>";
6256
6257 expect_failure(text, XML_ERROR_INVALID_TOKEN,
6258 "'*' in document name not faulted");
6259 }
6260 END_TEST
6261
START_TEST(test_bad_doctype_query)6262 START_TEST(test_bad_doctype_query) {
6263 const char *text = "<!DOCTYPE 1? [ <!ENTITY foo 'bar'> ]>\n"
6264 "<1?>&foo;</1?>";
6265
6266 expect_failure(text, XML_ERROR_INVALID_TOKEN,
6267 "'?' in document name not faulted");
6268 }
6269 END_TEST
6270
START_TEST(test_unknown_encoding_bad_ignore)6271 START_TEST(test_unknown_encoding_bad_ignore) {
6272 const char *text = "<?xml version='1.0' encoding='prefix-conv'?>"
6273 "<!DOCTYPE doc SYSTEM 'foo'>"
6274 "<doc><e>&entity;</e></doc>";
6275 ExtFaults fault = {"<![IGNORE[<!ELEMENT \xffG (#PCDATA)*>]]>",
6276 "Invalid character not faulted", XCS("prefix-conv"),
6277 XML_ERROR_INVALID_TOKEN};
6278
6279 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
6280 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
6281 XML_SetExternalEntityRefHandler(g_parser, external_entity_faulter);
6282 XML_SetUserData(g_parser, &fault);
6283 expect_failure(text, XML_ERROR_EXTERNAL_ENTITY_HANDLING,
6284 "Bad IGNORE section with unknown encoding not failed");
6285 }
6286 END_TEST
6287
START_TEST(test_entity_in_utf16_be_attr)6288 START_TEST(test_entity_in_utf16_be_attr) {
6289 const char text[] =
6290 /* <e a='ä ä'></e> */
6291 "\0<\0e\0 \0a\0=\0'\0&\0#\0\x32\0\x32\0\x38\0;\0 "
6292 "\0&\0#\0x\0\x30\0\x30\0E\0\x34\0;\0'\0>\0<\0/\0e\0>";
6293 #ifdef XML_UNICODE
6294 const XML_Char *expected = XCS("\x00e4 \x00e4");
6295 #else
6296 const XML_Char *expected = XCS("\xc3\xa4 \xc3\xa4");
6297 #endif
6298 CharData storage;
6299
6300 CharData_Init(&storage);
6301 XML_SetUserData(g_parser, &storage);
6302 XML_SetStartElementHandler(g_parser, accumulate_attribute);
6303 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
6304 == XML_STATUS_ERROR)
6305 xml_failure(g_parser);
6306 CharData_CheckXMLChars(&storage, expected);
6307 }
6308 END_TEST
6309
START_TEST(test_entity_in_utf16_le_attr)6310 START_TEST(test_entity_in_utf16_le_attr) {
6311 const char text[] =
6312 /* <e a='ä ä'></e> */
6313 "<\0e\0 \0a\0=\0'\0&\0#\0\x32\0\x32\0\x38\0;\0 \0"
6314 "&\0#\0x\0\x30\0\x30\0E\0\x34\0;\0'\0>\0<\0/\0e\0>\0";
6315 #ifdef XML_UNICODE
6316 const XML_Char *expected = XCS("\x00e4 \x00e4");
6317 #else
6318 const XML_Char *expected = XCS("\xc3\xa4 \xc3\xa4");
6319 #endif
6320 CharData storage;
6321
6322 CharData_Init(&storage);
6323 XML_SetUserData(g_parser, &storage);
6324 XML_SetStartElementHandler(g_parser, accumulate_attribute);
6325 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
6326 == XML_STATUS_ERROR)
6327 xml_failure(g_parser);
6328 CharData_CheckXMLChars(&storage, expected);
6329 }
6330 END_TEST
6331
START_TEST(test_entity_public_utf16_be)6332 START_TEST(test_entity_public_utf16_be) {
6333 const char text[] =
6334 /* <!DOCTYPE d [ */
6335 "\0<\0!\0D\0O\0C\0T\0Y\0P\0E\0 \0d\0 \0[\0\n"
6336 /* <!ENTITY % e PUBLIC 'foo' 'bar.ent'> */
6337 "\0<\0!\0E\0N\0T\0I\0T\0Y\0 \0%\0 \0e\0 \0P\0U\0B\0L\0I\0C\0 "
6338 "\0'\0f\0o\0o\0'\0 \0'\0b\0a\0r\0.\0e\0n\0t\0'\0>\0\n"
6339 /* %e; */
6340 "\0%\0e\0;\0\n"
6341 /* ]> */
6342 "\0]\0>\0\n"
6343 /* <d>&j;</d> */
6344 "\0<\0d\0>\0&\0j\0;\0<\0/\0d\0>";
6345 ExtTest2 test_data = {/* <!ENTITY j 'baz'> */
6346 "\0<\0!\0E\0N\0T\0I\0T\0Y\0 \0j\0 \0'\0b\0a\0z\0'\0>",
6347 34, NULL, NULL, EE_PARSE_NONE};
6348 const XML_Char *expected = XCS("baz");
6349 CharData storage;
6350
6351 CharData_Init(&storage);
6352 test_data.storage = &storage;
6353 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
6354 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader2);
6355 XML_SetUserData(g_parser, &test_data);
6356 XML_SetCharacterDataHandler(g_parser, ext2_accumulate_characters);
6357 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
6358 == XML_STATUS_ERROR)
6359 xml_failure(g_parser);
6360 CharData_CheckXMLChars(&storage, expected);
6361 }
6362 END_TEST
6363
START_TEST(test_entity_public_utf16_le)6364 START_TEST(test_entity_public_utf16_le) {
6365 const char text[] =
6366 /* <!DOCTYPE d [ */
6367 "<\0!\0D\0O\0C\0T\0Y\0P\0E\0 \0d\0 \0[\0\n\0"
6368 /* <!ENTITY % e PUBLIC 'foo' 'bar.ent'> */
6369 "<\0!\0E\0N\0T\0I\0T\0Y\0 \0%\0 \0e\0 \0P\0U\0B\0L\0I\0C\0 \0"
6370 "'\0f\0o\0o\0'\0 \0'\0b\0a\0r\0.\0e\0n\0t\0'\0>\0\n\0"
6371 /* %e; */
6372 "%\0e\0;\0\n\0"
6373 /* ]> */
6374 "]\0>\0\n\0"
6375 /* <d>&j;</d> */
6376 "<\0d\0>\0&\0j\0;\0<\0/\0d\0>\0";
6377 ExtTest2 test_data = {/* <!ENTITY j 'baz'> */
6378 "<\0!\0E\0N\0T\0I\0T\0Y\0 \0j\0 \0'\0b\0a\0z\0'\0>\0",
6379 34, NULL, NULL, EE_PARSE_NONE};
6380 const XML_Char *expected = XCS("baz");
6381 CharData storage;
6382
6383 CharData_Init(&storage);
6384 test_data.storage = &storage;
6385 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
6386 XML_SetExternalEntityRefHandler(g_parser, external_entity_loader2);
6387 XML_SetUserData(g_parser, &test_data);
6388 XML_SetCharacterDataHandler(g_parser, ext2_accumulate_characters);
6389 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
6390 == XML_STATUS_ERROR)
6391 xml_failure(g_parser);
6392 CharData_CheckXMLChars(&storage, expected);
6393 }
6394 END_TEST
6395
6396 /* Test that a doctype with neither an internal nor external subset is
6397 * faulted
6398 */
START_TEST(test_short_doctype)6399 START_TEST(test_short_doctype) {
6400 const char *text = "<!DOCTYPE doc></doc>";
6401 expect_failure(text, XML_ERROR_INVALID_TOKEN,
6402 "DOCTYPE without subset not rejected");
6403 }
6404 END_TEST
6405
START_TEST(test_short_doctype_2)6406 START_TEST(test_short_doctype_2) {
6407 const char *text = "<!DOCTYPE doc PUBLIC></doc>";
6408 expect_failure(text, XML_ERROR_SYNTAX,
6409 "DOCTYPE without Public ID not rejected");
6410 }
6411 END_TEST
6412
START_TEST(test_short_doctype_3)6413 START_TEST(test_short_doctype_3) {
6414 const char *text = "<!DOCTYPE doc SYSTEM></doc>";
6415 expect_failure(text, XML_ERROR_SYNTAX,
6416 "DOCTYPE without System ID not rejected");
6417 }
6418 END_TEST
6419
START_TEST(test_long_doctype)6420 START_TEST(test_long_doctype) {
6421 const char *text = "<!DOCTYPE doc PUBLIC 'foo' 'bar' 'baz'></doc>";
6422 expect_failure(text, XML_ERROR_SYNTAX, "DOCTYPE with extra ID not rejected");
6423 }
6424 END_TEST
6425
START_TEST(test_bad_entity)6426 START_TEST(test_bad_entity) {
6427 const char *text = "<!DOCTYPE doc [\n"
6428 " <!ENTITY foo PUBLIC>\n"
6429 "]>\n"
6430 "<doc/>";
6431 expect_failure(text, XML_ERROR_SYNTAX,
6432 "ENTITY without Public ID is not rejected");
6433 }
6434 END_TEST
6435
6436 /* Test unquoted value is faulted */
START_TEST(test_bad_entity_2)6437 START_TEST(test_bad_entity_2) {
6438 const char *text = "<!DOCTYPE doc [\n"
6439 " <!ENTITY % foo bar>\n"
6440 "]>\n"
6441 "<doc/>";
6442 expect_failure(text, XML_ERROR_SYNTAX,
6443 "ENTITY without Public ID is not rejected");
6444 }
6445 END_TEST
6446
START_TEST(test_bad_entity_3)6447 START_TEST(test_bad_entity_3) {
6448 const char *text = "<!DOCTYPE doc [\n"
6449 " <!ENTITY % foo PUBLIC>\n"
6450 "]>\n"
6451 "<doc/>";
6452 expect_failure(text, XML_ERROR_SYNTAX,
6453 "Parameter ENTITY without Public ID is not rejected");
6454 }
6455 END_TEST
6456
START_TEST(test_bad_entity_4)6457 START_TEST(test_bad_entity_4) {
6458 const char *text = "<!DOCTYPE doc [\n"
6459 " <!ENTITY % foo SYSTEM>\n"
6460 "]>\n"
6461 "<doc/>";
6462 expect_failure(text, XML_ERROR_SYNTAX,
6463 "Parameter ENTITY without Public ID is not rejected");
6464 }
6465 END_TEST
6466
START_TEST(test_bad_notation)6467 START_TEST(test_bad_notation) {
6468 const char *text = "<!DOCTYPE doc [\n"
6469 " <!NOTATION n SYSTEM>\n"
6470 "]>\n"
6471 "<doc/>";
6472 expect_failure(text, XML_ERROR_SYNTAX,
6473 "Notation without System ID is not rejected");
6474 }
6475 END_TEST
6476
6477 /* Test for issue #11, wrongly suppressed default handler */
6478 typedef struct default_check {
6479 const XML_Char *expected;
6480 const int expectedLen;
6481 XML_Bool seen;
6482 } DefaultCheck;
6483
6484 static void XMLCALL
checking_default_handler(void * userData,const XML_Char * s,int len)6485 checking_default_handler(void *userData, const XML_Char *s, int len) {
6486 DefaultCheck *data = (DefaultCheck *)userData;
6487 int i;
6488
6489 for (i = 0; data[i].expected != NULL; i++) {
6490 if (data[i].expectedLen == len
6491 && ! memcmp(data[i].expected, s, len * sizeof(XML_Char))) {
6492 data[i].seen = XML_TRUE;
6493 break;
6494 }
6495 }
6496 }
6497
START_TEST(test_default_doctype_handler)6498 START_TEST(test_default_doctype_handler) {
6499 const char *text = "<!DOCTYPE doc PUBLIC 'pubname' 'test.dtd' [\n"
6500 " <!ENTITY foo 'bar'>\n"
6501 "]>\n"
6502 "<doc>&foo;</doc>";
6503 DefaultCheck test_data[] = {{XCS("'pubname'"), 9, XML_FALSE},
6504 {XCS("'test.dtd'"), 10, XML_FALSE},
6505 {NULL, 0, XML_FALSE}};
6506 int i;
6507
6508 XML_SetUserData(g_parser, &test_data);
6509 XML_SetDefaultHandler(g_parser, checking_default_handler);
6510 XML_SetEntityDeclHandler(g_parser, dummy_entity_decl_handler);
6511 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
6512 == XML_STATUS_ERROR)
6513 xml_failure(g_parser);
6514 for (i = 0; test_data[i].expected != NULL; i++)
6515 if (! test_data[i].seen)
6516 fail("Default handler not run for public !DOCTYPE");
6517 }
6518 END_TEST
6519
START_TEST(test_empty_element_abort)6520 START_TEST(test_empty_element_abort) {
6521 const char *text = "<abort/>";
6522
6523 XML_SetStartElementHandler(g_parser, start_element_suspender);
6524 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
6525 != XML_STATUS_ERROR)
6526 fail("Expected to error on abort");
6527 }
6528 END_TEST
6529
6530 /*
6531 * Namespaces tests.
6532 */
6533
6534 static void
namespace_setup(void)6535 namespace_setup(void) {
6536 g_parser = XML_ParserCreateNS(NULL, XCS(' '));
6537 if (g_parser == NULL)
6538 fail("Parser not created.");
6539 }
6540
6541 static void
namespace_teardown(void)6542 namespace_teardown(void) {
6543 basic_teardown();
6544 }
6545
6546 /* Check that an element name and attribute name match the expected values.
6547 The expected values are passed as an array reference of string pointers
6548 provided as the userData argument; the first is the expected
6549 element name, and the second is the expected attribute name.
6550 */
6551 static int triplet_start_flag = XML_FALSE;
6552 static int triplet_end_flag = XML_FALSE;
6553
6554 static void XMLCALL
triplet_start_checker(void * userData,const XML_Char * name,const XML_Char ** atts)6555 triplet_start_checker(void *userData, const XML_Char *name,
6556 const XML_Char **atts) {
6557 XML_Char **elemstr = (XML_Char **)userData;
6558 char buffer[1024];
6559 if (xcstrcmp(elemstr[0], name) != 0) {
6560 sprintf(buffer, "unexpected start string: '%" XML_FMT_STR "'", name);
6561 fail(buffer);
6562 }
6563 if (xcstrcmp(elemstr[1], atts[0]) != 0) {
6564 sprintf(buffer, "unexpected attribute string: '%" XML_FMT_STR "'", atts[0]);
6565 fail(buffer);
6566 }
6567 triplet_start_flag = XML_TRUE;
6568 }
6569
6570 /* Check that the element name passed to the end-element handler matches
6571 the expected value. The expected value is passed as the first element
6572 in an array of strings passed as the userData argument.
6573 */
6574 static void XMLCALL
triplet_end_checker(void * userData,const XML_Char * name)6575 triplet_end_checker(void *userData, const XML_Char *name) {
6576 XML_Char **elemstr = (XML_Char **)userData;
6577 if (xcstrcmp(elemstr[0], name) != 0) {
6578 char buffer[1024];
6579 sprintf(buffer, "unexpected end string: '%" XML_FMT_STR "'", name);
6580 fail(buffer);
6581 }
6582 triplet_end_flag = XML_TRUE;
6583 }
6584
START_TEST(test_return_ns_triplet)6585 START_TEST(test_return_ns_triplet) {
6586 const char *text = "<foo:e xmlns:foo='http://example.org/' bar:a='12'\n"
6587 " xmlns:bar='http://example.org/'>";
6588 const char *epilog = "</foo:e>";
6589 const XML_Char *elemstr[]
6590 = {XCS("http://example.org/ e foo"), XCS("http://example.org/ a bar")};
6591 XML_SetReturnNSTriplet(g_parser, XML_TRUE);
6592 XML_SetUserData(g_parser, (void *)elemstr);
6593 XML_SetElementHandler(g_parser, triplet_start_checker, triplet_end_checker);
6594 XML_SetNamespaceDeclHandler(g_parser, dummy_start_namespace_decl_handler,
6595 dummy_end_namespace_decl_handler);
6596 triplet_start_flag = XML_FALSE;
6597 triplet_end_flag = XML_FALSE;
6598 dummy_handler_flags = 0;
6599 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_FALSE)
6600 == XML_STATUS_ERROR)
6601 xml_failure(g_parser);
6602 if (! triplet_start_flag)
6603 fail("triplet_start_checker not invoked");
6604 /* Check that unsetting "return triplets" fails while still parsing */
6605 XML_SetReturnNSTriplet(g_parser, XML_FALSE);
6606 if (_XML_Parse_SINGLE_BYTES(g_parser, epilog, (int)strlen(epilog), XML_TRUE)
6607 == XML_STATUS_ERROR)
6608 xml_failure(g_parser);
6609 if (! triplet_end_flag)
6610 fail("triplet_end_checker not invoked");
6611 if (dummy_handler_flags
6612 != (DUMMY_START_NS_DECL_HANDLER_FLAG | DUMMY_END_NS_DECL_HANDLER_FLAG))
6613 fail("Namespace handlers not called");
6614 }
6615 END_TEST
6616
6617 static void XMLCALL
overwrite_start_checker(void * userData,const XML_Char * name,const XML_Char ** atts)6618 overwrite_start_checker(void *userData, const XML_Char *name,
6619 const XML_Char **atts) {
6620 CharData *storage = (CharData *)userData;
6621 CharData_AppendXMLChars(storage, XCS("start "), 6);
6622 CharData_AppendXMLChars(storage, name, -1);
6623 while (*atts != NULL) {
6624 CharData_AppendXMLChars(storage, XCS("\nattribute "), 11);
6625 CharData_AppendXMLChars(storage, *atts, -1);
6626 atts += 2;
6627 }
6628 CharData_AppendXMLChars(storage, XCS("\n"), 1);
6629 }
6630
6631 static void XMLCALL
overwrite_end_checker(void * userData,const XML_Char * name)6632 overwrite_end_checker(void *userData, const XML_Char *name) {
6633 CharData *storage = (CharData *)userData;
6634 CharData_AppendXMLChars(storage, XCS("end "), 4);
6635 CharData_AppendXMLChars(storage, name, -1);
6636 CharData_AppendXMLChars(storage, XCS("\n"), 1);
6637 }
6638
6639 static void
run_ns_tagname_overwrite_test(const char * text,const XML_Char * result)6640 run_ns_tagname_overwrite_test(const char *text, const XML_Char *result) {
6641 CharData storage;
6642 CharData_Init(&storage);
6643 XML_SetUserData(g_parser, &storage);
6644 XML_SetElementHandler(g_parser, overwrite_start_checker,
6645 overwrite_end_checker);
6646 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
6647 == XML_STATUS_ERROR)
6648 xml_failure(g_parser);
6649 CharData_CheckXMLChars(&storage, result);
6650 }
6651
6652 /* Regression test for SF bug #566334. */
START_TEST(test_ns_tagname_overwrite)6653 START_TEST(test_ns_tagname_overwrite) {
6654 const char *text = "<n:e xmlns:n='http://example.org/'>\n"
6655 " <n:f n:attr='foo'/>\n"
6656 " <n:g n:attr2='bar'/>\n"
6657 "</n:e>";
6658 const XML_Char *result = XCS("start http://example.org/ e\n")
6659 XCS("start http://example.org/ f\n")
6660 XCS("attribute http://example.org/ attr\n")
6661 XCS("end http://example.org/ f\n")
6662 XCS("start http://example.org/ g\n")
6663 XCS("attribute http://example.org/ attr2\n")
6664 XCS("end http://example.org/ g\n")
6665 XCS("end http://example.org/ e\n");
6666 run_ns_tagname_overwrite_test(text, result);
6667 }
6668 END_TEST
6669
6670 /* Regression test for SF bug #566334. */
START_TEST(test_ns_tagname_overwrite_triplet)6671 START_TEST(test_ns_tagname_overwrite_triplet) {
6672 const char *text = "<n:e xmlns:n='http://example.org/'>\n"
6673 " <n:f n:attr='foo'/>\n"
6674 " <n:g n:attr2='bar'/>\n"
6675 "</n:e>";
6676 const XML_Char *result = XCS("start http://example.org/ e n\n")
6677 XCS("start http://example.org/ f n\n")
6678 XCS("attribute http://example.org/ attr n\n")
6679 XCS("end http://example.org/ f n\n")
6680 XCS("start http://example.org/ g n\n")
6681 XCS("attribute http://example.org/ attr2 n\n")
6682 XCS("end http://example.org/ g n\n")
6683 XCS("end http://example.org/ e n\n");
6684 XML_SetReturnNSTriplet(g_parser, XML_TRUE);
6685 run_ns_tagname_overwrite_test(text, result);
6686 }
6687 END_TEST
6688
6689 /* Regression test for SF bug #620343. */
6690 static void XMLCALL
start_element_fail(void * userData,const XML_Char * name,const XML_Char ** atts)6691 start_element_fail(void *userData, const XML_Char *name,
6692 const XML_Char **atts) {
6693 UNUSED_P(userData);
6694 UNUSED_P(name);
6695 UNUSED_P(atts);
6696
6697 /* We should never get here. */
6698 fail("should never reach start_element_fail()");
6699 }
6700
6701 static void XMLCALL
start_ns_clearing_start_element(void * userData,const XML_Char * prefix,const XML_Char * uri)6702 start_ns_clearing_start_element(void *userData, const XML_Char *prefix,
6703 const XML_Char *uri) {
6704 UNUSED_P(prefix);
6705 UNUSED_P(uri);
6706 XML_SetStartElementHandler((XML_Parser)userData, NULL);
6707 }
6708
START_TEST(test_start_ns_clears_start_element)6709 START_TEST(test_start_ns_clears_start_element) {
6710 /* This needs to use separate start/end tags; using the empty tag
6711 syntax doesn't cause the problematic path through Expat to be
6712 taken.
6713 */
6714 const char *text = "<e xmlns='http://example.org/'></e>";
6715
6716 XML_SetStartElementHandler(g_parser, start_element_fail);
6717 XML_SetStartNamespaceDeclHandler(g_parser, start_ns_clearing_start_element);
6718 XML_SetEndNamespaceDeclHandler(g_parser, dummy_end_namespace_decl_handler);
6719 XML_UseParserAsHandlerArg(g_parser);
6720 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
6721 == XML_STATUS_ERROR)
6722 xml_failure(g_parser);
6723 }
6724 END_TEST
6725
6726 /* Regression test for SF bug #616863. */
6727 static int XMLCALL
external_entity_handler(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)6728 external_entity_handler(XML_Parser parser, const XML_Char *context,
6729 const XML_Char *base, const XML_Char *systemId,
6730 const XML_Char *publicId) {
6731 intptr_t callno = 1 + (intptr_t)XML_GetUserData(parser);
6732 const char *text;
6733 XML_Parser p2;
6734
6735 UNUSED_P(base);
6736 UNUSED_P(systemId);
6737 UNUSED_P(publicId);
6738 if (callno == 1)
6739 text = ("<!ELEMENT doc (e+)>\n"
6740 "<!ATTLIST doc xmlns CDATA #IMPLIED>\n"
6741 "<!ELEMENT e EMPTY>\n");
6742 else
6743 text = ("<?xml version='1.0' encoding='us-ascii'?>"
6744 "<e/>");
6745
6746 XML_SetUserData(parser, (void *)callno);
6747 p2 = XML_ExternalEntityParserCreate(parser, context, NULL);
6748 if (_XML_Parse_SINGLE_BYTES(p2, text, (int)strlen(text), XML_TRUE)
6749 == XML_STATUS_ERROR) {
6750 xml_failure(p2);
6751 return XML_STATUS_ERROR;
6752 }
6753 XML_ParserFree(p2);
6754 return XML_STATUS_OK;
6755 }
6756
START_TEST(test_default_ns_from_ext_subset_and_ext_ge)6757 START_TEST(test_default_ns_from_ext_subset_and_ext_ge) {
6758 const char *text = "<?xml version='1.0'?>\n"
6759 "<!DOCTYPE doc SYSTEM 'http://example.org/doc.dtd' [\n"
6760 " <!ENTITY en SYSTEM 'http://example.org/entity.ent'>\n"
6761 "]>\n"
6762 "<doc xmlns='http://example.org/ns1'>\n"
6763 "&en;\n"
6764 "</doc>";
6765
6766 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
6767 XML_SetExternalEntityRefHandler(g_parser, external_entity_handler);
6768 /* We actually need to set this handler to tickle this bug. */
6769 XML_SetStartElementHandler(g_parser, dummy_start_element);
6770 XML_SetUserData(g_parser, NULL);
6771 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
6772 == XML_STATUS_ERROR)
6773 xml_failure(g_parser);
6774 }
6775 END_TEST
6776
6777 /* Regression test #1 for SF bug #673791. */
START_TEST(test_ns_prefix_with_empty_uri_1)6778 START_TEST(test_ns_prefix_with_empty_uri_1) {
6779 const char *text = "<doc xmlns:prefix='http://example.org/'>\n"
6780 " <e xmlns:prefix=''/>\n"
6781 "</doc>";
6782
6783 expect_failure(text, XML_ERROR_UNDECLARING_PREFIX,
6784 "Did not report re-setting namespace"
6785 " URI with prefix to ''.");
6786 }
6787 END_TEST
6788
6789 /* Regression test #2 for SF bug #673791. */
START_TEST(test_ns_prefix_with_empty_uri_2)6790 START_TEST(test_ns_prefix_with_empty_uri_2) {
6791 const char *text = "<?xml version='1.0'?>\n"
6792 "<docelem xmlns:pre=''/>";
6793
6794 expect_failure(text, XML_ERROR_UNDECLARING_PREFIX,
6795 "Did not report setting namespace URI with prefix to ''.");
6796 }
6797 END_TEST
6798
6799 /* Regression test #3 for SF bug #673791. */
START_TEST(test_ns_prefix_with_empty_uri_3)6800 START_TEST(test_ns_prefix_with_empty_uri_3) {
6801 const char *text = "<!DOCTYPE doc [\n"
6802 " <!ELEMENT doc EMPTY>\n"
6803 " <!ATTLIST doc\n"
6804 " xmlns:prefix CDATA ''>\n"
6805 "]>\n"
6806 "<doc/>";
6807
6808 expect_failure(text, XML_ERROR_UNDECLARING_PREFIX,
6809 "Didn't report attr default setting NS w/ prefix to ''.");
6810 }
6811 END_TEST
6812
6813 /* Regression test #4 for SF bug #673791. */
START_TEST(test_ns_prefix_with_empty_uri_4)6814 START_TEST(test_ns_prefix_with_empty_uri_4) {
6815 const char *text = "<!DOCTYPE doc [\n"
6816 " <!ELEMENT prefix:doc EMPTY>\n"
6817 " <!ATTLIST prefix:doc\n"
6818 " xmlns:prefix CDATA 'http://example.org/'>\n"
6819 "]>\n"
6820 "<prefix:doc/>";
6821 /* Packaged info expected by the end element handler;
6822 the weird structuring lets us re-use the triplet_end_checker()
6823 function also used for another test. */
6824 const XML_Char *elemstr[] = {XCS("http://example.org/ doc prefix")};
6825 XML_SetReturnNSTriplet(g_parser, XML_TRUE);
6826 XML_SetUserData(g_parser, (void *)elemstr);
6827 XML_SetEndElementHandler(g_parser, triplet_end_checker);
6828 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
6829 == XML_STATUS_ERROR)
6830 xml_failure(g_parser);
6831 }
6832 END_TEST
6833
6834 /* Test with non-xmlns prefix */
START_TEST(test_ns_unbound_prefix)6835 START_TEST(test_ns_unbound_prefix) {
6836 const char *text = "<!DOCTYPE doc [\n"
6837 " <!ELEMENT prefix:doc EMPTY>\n"
6838 " <!ATTLIST prefix:doc\n"
6839 " notxmlns:prefix CDATA 'http://example.org/'>\n"
6840 "]>\n"
6841 "<prefix:doc/>";
6842
6843 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
6844 != XML_STATUS_ERROR)
6845 fail("Unbound prefix incorrectly passed");
6846 if (XML_GetErrorCode(g_parser) != XML_ERROR_UNBOUND_PREFIX)
6847 xml_failure(g_parser);
6848 }
6849 END_TEST
6850
START_TEST(test_ns_default_with_empty_uri)6851 START_TEST(test_ns_default_with_empty_uri) {
6852 const char *text = "<doc xmlns='http://example.org/'>\n"
6853 " <e xmlns=''/>\n"
6854 "</doc>";
6855 /* Add some handlers to exercise extra code paths */
6856 XML_SetStartNamespaceDeclHandler(g_parser,
6857 dummy_start_namespace_decl_handler);
6858 XML_SetEndNamespaceDeclHandler(g_parser, dummy_end_namespace_decl_handler);
6859 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
6860 == XML_STATUS_ERROR)
6861 xml_failure(g_parser);
6862 }
6863 END_TEST
6864
6865 /* Regression test for SF bug #692964: two prefixes for one namespace. */
START_TEST(test_ns_duplicate_attrs_diff_prefixes)6866 START_TEST(test_ns_duplicate_attrs_diff_prefixes) {
6867 const char *text = "<doc xmlns:a='http://example.org/a'\n"
6868 " xmlns:b='http://example.org/a'\n"
6869 " a:a='v' b:a='v' />";
6870 expect_failure(text, XML_ERROR_DUPLICATE_ATTRIBUTE,
6871 "did not report multiple attributes with same URI+name");
6872 }
6873 END_TEST
6874
START_TEST(test_ns_duplicate_hashes)6875 START_TEST(test_ns_duplicate_hashes) {
6876 /* The hash of an attribute is calculated as the hash of its URI
6877 * concatenated with a space followed by its name (after the
6878 * colon). We wish to generate attributes with the same hash
6879 * value modulo the attribute table size so that we can check that
6880 * the attribute hash table works correctly. The attribute hash
6881 * table size will be the smallest power of two greater than the
6882 * number of attributes, but at least eight. There is
6883 * unfortunately no programmatic way of getting the hash or the
6884 * table size at user level, but the test code coverage percentage
6885 * will drop if the hashes cease to point to the same row.
6886 *
6887 * The cunning plan is to have few enough attributes to have a
6888 * reliable table size of 8, and have the single letter attribute
6889 * names be 8 characters apart, producing a hash which will be the
6890 * same modulo 8.
6891 */
6892 const char *text = "<doc xmlns:a='http://example.org/a'\n"
6893 " a:a='v' a:i='w' />";
6894 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
6895 == XML_STATUS_ERROR)
6896 xml_failure(g_parser);
6897 }
6898 END_TEST
6899
6900 /* Regression test for SF bug #695401: unbound prefix. */
START_TEST(test_ns_unbound_prefix_on_attribute)6901 START_TEST(test_ns_unbound_prefix_on_attribute) {
6902 const char *text = "<doc a:attr=''/>";
6903 expect_failure(text, XML_ERROR_UNBOUND_PREFIX,
6904 "did not report unbound prefix on attribute");
6905 }
6906 END_TEST
6907
6908 /* Regression test for SF bug #695401: unbound prefix. */
START_TEST(test_ns_unbound_prefix_on_element)6909 START_TEST(test_ns_unbound_prefix_on_element) {
6910 const char *text = "<a:doc/>";
6911 expect_failure(text, XML_ERROR_UNBOUND_PREFIX,
6912 "did not report unbound prefix on element");
6913 }
6914 END_TEST
6915
6916 /* Test that the parsing status is correctly reset by XML_ParserReset().
6917 * We usE test_return_ns_triplet() for our example parse to improve
6918 * coverage of tidying up code executed.
6919 */
START_TEST(test_ns_parser_reset)6920 START_TEST(test_ns_parser_reset) {
6921 XML_ParsingStatus status;
6922
6923 XML_GetParsingStatus(g_parser, &status);
6924 if (status.parsing != XML_INITIALIZED)
6925 fail("parsing status doesn't start INITIALIZED");
6926 test_return_ns_triplet();
6927 XML_GetParsingStatus(g_parser, &status);
6928 if (status.parsing != XML_FINISHED)
6929 fail("parsing status doesn't end FINISHED");
6930 XML_ParserReset(g_parser, NULL);
6931 XML_GetParsingStatus(g_parser, &status);
6932 if (status.parsing != XML_INITIALIZED)
6933 fail("parsing status doesn't reset to INITIALIZED");
6934 }
6935 END_TEST
6936
6937 /* Test that long element names with namespaces are handled correctly */
START_TEST(test_ns_long_element)6938 START_TEST(test_ns_long_element) {
6939 const char *text
6940 = "<foo:thisisalongenoughelementnametotriggerareallocation\n"
6941 " xmlns:foo='http://example.org/' bar:a='12'\n"
6942 " xmlns:bar='http://example.org/'>"
6943 "</foo:thisisalongenoughelementnametotriggerareallocation>";
6944 const XML_Char *elemstr[]
6945 = {XCS("http://example.org/")
6946 XCS(" thisisalongenoughelementnametotriggerareallocation foo"),
6947 XCS("http://example.org/ a bar")};
6948
6949 XML_SetReturnNSTriplet(g_parser, XML_TRUE);
6950 XML_SetUserData(g_parser, (void *)elemstr);
6951 XML_SetElementHandler(g_parser, triplet_start_checker, triplet_end_checker);
6952 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
6953 == XML_STATUS_ERROR)
6954 xml_failure(g_parser);
6955 }
6956 END_TEST
6957
6958 /* Test mixed population of prefixed and unprefixed attributes */
START_TEST(test_ns_mixed_prefix_atts)6959 START_TEST(test_ns_mixed_prefix_atts) {
6960 const char *text = "<e a='12' bar:b='13'\n"
6961 " xmlns:bar='http://example.org/'>"
6962 "</e>";
6963
6964 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
6965 == XML_STATUS_ERROR)
6966 xml_failure(g_parser);
6967 }
6968 END_TEST
6969
6970 /* Test having a long namespaced element name inside a short one.
6971 * This exercises some internal buffer reallocation that is shared
6972 * across elements with the same namespace URI.
6973 */
START_TEST(test_ns_extend_uri_buffer)6974 START_TEST(test_ns_extend_uri_buffer) {
6975 const char *text = "<foo:e xmlns:foo='http://example.org/'>"
6976 " <foo:thisisalongenoughnametotriggerallocationaction"
6977 " foo:a='12' />"
6978 "</foo:e>";
6979 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
6980 == XML_STATUS_ERROR)
6981 xml_failure(g_parser);
6982 }
6983 END_TEST
6984
6985 /* Test that xmlns is correctly rejected as an attribute in the xmlns
6986 * namespace, but not in other namespaces
6987 */
START_TEST(test_ns_reserved_attributes)6988 START_TEST(test_ns_reserved_attributes) {
6989 const char *text1
6990 = "<foo:e xmlns:foo='http://example.org/' xmlns:xmlns='12' />";
6991 const char *text2
6992 = "<foo:e xmlns:foo='http://example.org/' foo:xmlns='12' />";
6993 expect_failure(text1, XML_ERROR_RESERVED_PREFIX_XMLNS,
6994 "xmlns not rejected as an attribute");
6995 XML_ParserReset(g_parser, NULL);
6996 if (_XML_Parse_SINGLE_BYTES(g_parser, text2, (int)strlen(text2), XML_TRUE)
6997 == XML_STATUS_ERROR)
6998 xml_failure(g_parser);
6999 }
7000 END_TEST
7001
7002 /* Test more reserved attributes */
START_TEST(test_ns_reserved_attributes_2)7003 START_TEST(test_ns_reserved_attributes_2) {
7004 const char *text1 = "<foo:e xmlns:foo='http://example.org/'"
7005 " xmlns:xml='http://example.org/' />";
7006 const char *text2
7007 = "<foo:e xmlns:foo='http://www.w3.org/XML/1998/namespace' />";
7008 const char *text3 = "<foo:e xmlns:foo='http://www.w3.org/2000/xmlns/' />";
7009
7010 expect_failure(text1, XML_ERROR_RESERVED_PREFIX_XML,
7011 "xml not rejected as an attribute");
7012 XML_ParserReset(g_parser, NULL);
7013 expect_failure(text2, XML_ERROR_RESERVED_NAMESPACE_URI,
7014 "Use of w3.org URL not faulted");
7015 XML_ParserReset(g_parser, NULL);
7016 expect_failure(text3, XML_ERROR_RESERVED_NAMESPACE_URI,
7017 "Use of w3.org xmlns URL not faulted");
7018 }
7019 END_TEST
7020
7021 /* Test string pool handling of namespace names of 2048 characters */
7022 /* Exercises a particular string pool growth path */
START_TEST(test_ns_extremely_long_prefix)7023 START_TEST(test_ns_extremely_long_prefix) {
7024 /* C99 compilers are only required to support 4095-character
7025 * strings, so the following needs to be split in two to be safe
7026 * for all compilers.
7027 */
7028 const char *text1
7029 = "<doc "
7030 /* 64 character on each line */
7031 /* ...gives a total length of 2048 */
7032 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7033 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7034 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7035 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7036 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7037 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7038 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7039 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7040 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7041 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7042 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7043 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7044 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7045 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7046 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7047 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7048 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7049 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7050 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7051 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7052 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7053 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7054 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7055 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7056 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7057 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7058 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7059 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7060 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7061 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7062 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7063 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7064 ":a='12'";
7065 const char *text2
7066 = " xmlns:"
7067 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7068 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7069 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7070 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7071 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7072 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7073 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7074 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7075 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7076 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7077 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7078 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7079 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7080 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7081 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7082 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7083 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7084 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7085 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7086 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7087 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7088 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7089 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7090 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7091 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7092 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7093 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7094 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7095 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7096 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7097 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7098 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7099 "='foo'\n>"
7100 "</doc>";
7101
7102 if (_XML_Parse_SINGLE_BYTES(g_parser, text1, (int)strlen(text1), XML_FALSE)
7103 == XML_STATUS_ERROR)
7104 xml_failure(g_parser);
7105 if (_XML_Parse_SINGLE_BYTES(g_parser, text2, (int)strlen(text2), XML_TRUE)
7106 == XML_STATUS_ERROR)
7107 xml_failure(g_parser);
7108 }
7109 END_TEST
7110
7111 /* Test unknown encoding handlers in namespace setup */
START_TEST(test_ns_unknown_encoding_success)7112 START_TEST(test_ns_unknown_encoding_success) {
7113 const char *text = "<?xml version='1.0' encoding='prefix-conv'?>\n"
7114 "<foo:e xmlns:foo='http://example.org/'>Hi</foo:e>";
7115
7116 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
7117 run_character_check(text, XCS("Hi"));
7118 }
7119 END_TEST
7120
7121 /* Test that too many colons are rejected */
START_TEST(test_ns_double_colon)7122 START_TEST(test_ns_double_colon) {
7123 const char *text = "<foo:e xmlns:foo='http://example.org/' foo:a:b='bar' />";
7124 const enum XML_Status status
7125 = _XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE);
7126 #ifdef XML_NS
7127 if ((status == XML_STATUS_OK)
7128 || (XML_GetErrorCode(g_parser) != XML_ERROR_INVALID_TOKEN)) {
7129 fail("Double colon in attribute name not faulted"
7130 " (despite active namespace support)");
7131 }
7132 #else
7133 if (status != XML_STATUS_OK) {
7134 fail("Double colon in attribute name faulted"
7135 " (despite inactive namespace support");
7136 }
7137 #endif
7138 }
7139 END_TEST
7140
START_TEST(test_ns_double_colon_element)7141 START_TEST(test_ns_double_colon_element) {
7142 const char *text = "<foo:bar:e xmlns:foo='http://example.org/' />";
7143 const enum XML_Status status
7144 = _XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE);
7145 #ifdef XML_NS
7146 if ((status == XML_STATUS_OK)
7147 || (XML_GetErrorCode(g_parser) != XML_ERROR_INVALID_TOKEN)) {
7148 fail("Double colon in element name not faulted"
7149 " (despite active namespace support)");
7150 }
7151 #else
7152 if (status != XML_STATUS_OK) {
7153 fail("Double colon in element name faulted"
7154 " (despite inactive namespace support");
7155 }
7156 #endif
7157 }
7158 END_TEST
7159
7160 /* Test that non-name characters after a colon are rejected */
START_TEST(test_ns_bad_attr_leafname)7161 START_TEST(test_ns_bad_attr_leafname) {
7162 const char *text = "<foo:e xmlns:foo='http://example.org/' foo:?ar='baz' />";
7163
7164 expect_failure(text, XML_ERROR_INVALID_TOKEN,
7165 "Invalid character in leafname not faulted");
7166 }
7167 END_TEST
7168
START_TEST(test_ns_bad_element_leafname)7169 START_TEST(test_ns_bad_element_leafname) {
7170 const char *text = "<foo:?oc xmlns:foo='http://example.org/' />";
7171
7172 expect_failure(text, XML_ERROR_INVALID_TOKEN,
7173 "Invalid character in element leafname not faulted");
7174 }
7175 END_TEST
7176
7177 /* Test high-byte-set UTF-16 characters are valid in a leafname */
START_TEST(test_ns_utf16_leafname)7178 START_TEST(test_ns_utf16_leafname) {
7179 const char text[] =
7180 /* <n:e xmlns:n='URI' n:{KHO KHWAI}='a' />
7181 * where {KHO KHWAI} = U+0E04 = 0xe0 0xb8 0x84 in UTF-8
7182 */
7183 "<\0n\0:\0e\0 \0x\0m\0l\0n\0s\0:\0n\0=\0'\0U\0R\0I\0'\0 \0"
7184 "n\0:\0\x04\x0e=\0'\0a\0'\0 \0/\0>\0";
7185 const XML_Char *expected = XCS("a");
7186 CharData storage;
7187
7188 CharData_Init(&storage);
7189 XML_SetStartElementHandler(g_parser, accumulate_attribute);
7190 XML_SetUserData(g_parser, &storage);
7191 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
7192 == XML_STATUS_ERROR)
7193 xml_failure(g_parser);
7194 CharData_CheckXMLChars(&storage, expected);
7195 }
7196 END_TEST
7197
START_TEST(test_ns_utf16_element_leafname)7198 START_TEST(test_ns_utf16_element_leafname) {
7199 const char text[] =
7200 /* <n:{KHO KHWAI} xmlns:n='URI'/>
7201 * where {KHO KHWAI} = U+0E04 = 0xe0 0xb8 0x84 in UTF-8
7202 */
7203 "\0<\0n\0:\x0e\x04\0 \0x\0m\0l\0n\0s\0:\0n\0=\0'\0U\0R\0I\0'\0/\0>";
7204 #ifdef XML_UNICODE
7205 const XML_Char *expected = XCS("URI \x0e04");
7206 #else
7207 const XML_Char *expected = XCS("URI \xe0\xb8\x84");
7208 #endif
7209 CharData storage;
7210
7211 CharData_Init(&storage);
7212 XML_SetStartElementHandler(g_parser, start_element_event_handler);
7213 XML_SetUserData(g_parser, &storage);
7214 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
7215 == XML_STATUS_ERROR)
7216 xml_failure(g_parser);
7217 CharData_CheckXMLChars(&storage, expected);
7218 }
7219 END_TEST
7220
START_TEST(test_ns_utf16_doctype)7221 START_TEST(test_ns_utf16_doctype) {
7222 const char text[] =
7223 /* <!DOCTYPE foo:{KHO KHWAI} [ <!ENTITY bar 'baz'> ]>\n
7224 * where {KHO KHWAI} = U+0E04 = 0xe0 0xb8 0x84 in UTF-8
7225 */
7226 "\0<\0!\0D\0O\0C\0T\0Y\0P\0E\0 \0f\0o\0o\0:\x0e\x04\0 "
7227 "\0[\0 \0<\0!\0E\0N\0T\0I\0T\0Y\0 \0b\0a\0r\0 \0'\0b\0a\0z\0'\0>\0 "
7228 "\0]\0>\0\n"
7229 /* <foo:{KHO KHWAI} xmlns:foo='URI'>&bar;</foo:{KHO KHWAI}> */
7230 "\0<\0f\0o\0o\0:\x0e\x04\0 "
7231 "\0x\0m\0l\0n\0s\0:\0f\0o\0o\0=\0'\0U\0R\0I\0'\0>"
7232 "\0&\0b\0a\0r\0;"
7233 "\0<\0/\0f\0o\0o\0:\x0e\x04\0>";
7234 #ifdef XML_UNICODE
7235 const XML_Char *expected = XCS("URI \x0e04");
7236 #else
7237 const XML_Char *expected = XCS("URI \xe0\xb8\x84");
7238 #endif
7239 CharData storage;
7240
7241 CharData_Init(&storage);
7242 XML_SetUserData(g_parser, &storage);
7243 XML_SetStartElementHandler(g_parser, start_element_event_handler);
7244 XML_SetUnknownEncodingHandler(g_parser, MiscEncodingHandler, NULL);
7245 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
7246 == XML_STATUS_ERROR)
7247 xml_failure(g_parser);
7248 CharData_CheckXMLChars(&storage, expected);
7249 }
7250 END_TEST
7251
START_TEST(test_ns_invalid_doctype)7252 START_TEST(test_ns_invalid_doctype) {
7253 const char *text = "<!DOCTYPE foo:!bad [ <!ENTITY bar 'baz' ]>\n"
7254 "<foo:!bad>&bar;</foo:!bad>";
7255
7256 expect_failure(text, XML_ERROR_INVALID_TOKEN,
7257 "Invalid character in document local name not faulted");
7258 }
7259 END_TEST
7260
START_TEST(test_ns_double_colon_doctype)7261 START_TEST(test_ns_double_colon_doctype) {
7262 const char *text = "<!DOCTYPE foo:a:doc [ <!ENTITY bar 'baz' ]>\n"
7263 "<foo:a:doc>&bar;</foo:a:doc>";
7264
7265 expect_failure(text, XML_ERROR_SYNTAX,
7266 "Double colon in document name not faulted");
7267 }
7268 END_TEST
7269
7270 /* Control variable; the number of times duff_allocator() will successfully
7271 * allocate */
7272 #define ALLOC_ALWAYS_SUCCEED (-1)
7273 #define REALLOC_ALWAYS_SUCCEED (-1)
7274
7275 static intptr_t allocation_count = ALLOC_ALWAYS_SUCCEED;
7276 static intptr_t reallocation_count = REALLOC_ALWAYS_SUCCEED;
7277
7278 /* Crocked allocator for allocation failure tests */
7279 static void *
duff_allocator(size_t size)7280 duff_allocator(size_t size) {
7281 if (allocation_count == 0)
7282 return NULL;
7283 if (allocation_count != ALLOC_ALWAYS_SUCCEED)
7284 allocation_count--;
7285 return malloc(size);
7286 }
7287
7288 /* Crocked reallocator for allocation failure tests */
7289 static void *
duff_reallocator(void * ptr,size_t size)7290 duff_reallocator(void *ptr, size_t size) {
7291 if (reallocation_count == 0)
7292 return NULL;
7293 if (reallocation_count != REALLOC_ALWAYS_SUCCEED)
7294 reallocation_count--;
7295 return realloc(ptr, size);
7296 }
7297
7298 /* Test that a failure to allocate the parser structure fails gracefully */
START_TEST(test_misc_alloc_create_parser)7299 START_TEST(test_misc_alloc_create_parser) {
7300 XML_Memory_Handling_Suite memsuite = {duff_allocator, realloc, free};
7301 unsigned int i;
7302 const unsigned int max_alloc_count = 10;
7303
7304 /* Something this simple shouldn't need more than 10 allocations */
7305 for (i = 0; i < max_alloc_count; i++) {
7306 allocation_count = i;
7307 g_parser = XML_ParserCreate_MM(NULL, &memsuite, NULL);
7308 if (g_parser != NULL)
7309 break;
7310 }
7311 if (i == 0)
7312 fail("Parser unexpectedly ignored failing allocator");
7313 else if (i == max_alloc_count)
7314 fail("Parser not created with max allocation count");
7315 }
7316 END_TEST
7317
7318 /* Test memory allocation failures for a parser with an encoding */
START_TEST(test_misc_alloc_create_parser_with_encoding)7319 START_TEST(test_misc_alloc_create_parser_with_encoding) {
7320 XML_Memory_Handling_Suite memsuite = {duff_allocator, realloc, free};
7321 unsigned int i;
7322 const unsigned int max_alloc_count = 10;
7323
7324 /* Try several levels of allocation */
7325 for (i = 0; i < max_alloc_count; i++) {
7326 allocation_count = i;
7327 g_parser = XML_ParserCreate_MM(XCS("us-ascii"), &memsuite, NULL);
7328 if (g_parser != NULL)
7329 break;
7330 }
7331 if (i == 0)
7332 fail("Parser ignored failing allocator");
7333 else if (i == max_alloc_count)
7334 fail("Parser not created with max allocation count");
7335 }
7336 END_TEST
7337
7338 /* Test that freeing a NULL parser doesn't cause an explosion.
7339 * (Not actually tested anywhere else)
7340 */
START_TEST(test_misc_null_parser)7341 START_TEST(test_misc_null_parser) {
7342 XML_ParserFree(NULL);
7343 }
7344 END_TEST
7345
7346 /* Test that XML_ErrorString rejects out-of-range codes */
START_TEST(test_misc_error_string)7347 START_TEST(test_misc_error_string) {
7348 if (XML_ErrorString((enum XML_Error) - 1) != NULL)
7349 fail("Negative error code not rejected");
7350 if (XML_ErrorString((enum XML_Error)100) != NULL)
7351 fail("Large error code not rejected");
7352 }
7353 END_TEST
7354
7355 /* Test the version information is consistent */
7356
7357 /* Since we are working in XML_LChars (potentially 16-bits), we
7358 * can't use the standard C library functions for character
7359 * manipulation and have to roll our own.
7360 */
7361 static int
parse_version(const XML_LChar * version_text,XML_Expat_Version * version_struct)7362 parse_version(const XML_LChar *version_text,
7363 XML_Expat_Version *version_struct) {
7364 if (! version_text)
7365 return XML_FALSE;
7366
7367 while (*version_text != 0x00) {
7368 if (*version_text >= ASCII_0 && *version_text <= ASCII_9)
7369 break;
7370 version_text++;
7371 }
7372 if (*version_text == 0x00)
7373 return XML_FALSE;
7374
7375 /* version_struct->major = strtoul(version_text, 10, &version_text) */
7376 version_struct->major = 0;
7377 while (*version_text >= ASCII_0 && *version_text <= ASCII_9) {
7378 version_struct->major
7379 = 10 * version_struct->major + (*version_text++ - ASCII_0);
7380 }
7381 if (*version_text++ != ASCII_PERIOD)
7382 return XML_FALSE;
7383
7384 /* Now for the minor version number */
7385 version_struct->minor = 0;
7386 while (*version_text >= ASCII_0 && *version_text <= ASCII_9) {
7387 version_struct->minor
7388 = 10 * version_struct->minor + (*version_text++ - ASCII_0);
7389 }
7390 if (*version_text++ != ASCII_PERIOD)
7391 return XML_FALSE;
7392
7393 /* Finally the micro version number */
7394 version_struct->micro = 0;
7395 while (*version_text >= ASCII_0 && *version_text <= ASCII_9) {
7396 version_struct->micro
7397 = 10 * version_struct->micro + (*version_text++ - ASCII_0);
7398 }
7399 if (*version_text != 0x00)
7400 return XML_FALSE;
7401 return XML_TRUE;
7402 }
7403
7404 static int
versions_equal(const XML_Expat_Version * first,const XML_Expat_Version * second)7405 versions_equal(const XML_Expat_Version *first,
7406 const XML_Expat_Version *second) {
7407 return (first->major == second->major && first->minor == second->minor
7408 && first->micro == second->micro);
7409 }
7410
START_TEST(test_misc_version)7411 START_TEST(test_misc_version) {
7412 XML_Expat_Version read_version = XML_ExpatVersionInfo();
7413 /* Silence compiler warning with the following assignment */
7414 XML_Expat_Version parsed_version = {0, 0, 0};
7415 const XML_LChar *version_text = XML_ExpatVersion();
7416
7417 if (version_text == NULL)
7418 fail("Could not obtain version text");
7419 assert(version_text != NULL);
7420 if (! parse_version(version_text, &parsed_version))
7421 fail("Unable to parse version text");
7422 if (! versions_equal(&read_version, &parsed_version))
7423 fail("Version mismatch");
7424
7425 #if ! defined(XML_UNICODE) || defined(XML_UNICODE_WCHAR_T)
7426 if (xcstrcmp(version_text, XCS("expat_2.4.1"))) /* needs bump on releases */
7427 fail("XML_*_VERSION in expat.h out of sync?\n");
7428 #else
7429 /* If we have XML_UNICODE defined but not XML_UNICODE_WCHAR_T
7430 * then XML_LChar is defined as char, for some reason.
7431 */
7432 if (strcmp(version_text, "expat_2.2.5")) /* needs bump on releases */
7433 fail("XML_*_VERSION in expat.h out of sync?\n");
7434 #endif /* ! defined(XML_UNICODE) || defined(XML_UNICODE_WCHAR_T) */
7435 }
7436 END_TEST
7437
7438 /* Test feature information */
START_TEST(test_misc_features)7439 START_TEST(test_misc_features) {
7440 const XML_Feature *features = XML_GetFeatureList();
7441
7442 /* Prevent problems with double-freeing parsers */
7443 g_parser = NULL;
7444 if (features == NULL) {
7445 fail("Failed to get feature information");
7446 } else {
7447 /* Loop through the features checking what we can */
7448 while (features->feature != XML_FEATURE_END) {
7449 switch (features->feature) {
7450 case XML_FEATURE_SIZEOF_XML_CHAR:
7451 if (features->value != sizeof(XML_Char))
7452 fail("Incorrect size of XML_Char");
7453 break;
7454 case XML_FEATURE_SIZEOF_XML_LCHAR:
7455 if (features->value != sizeof(XML_LChar))
7456 fail("Incorrect size of XML_LChar");
7457 break;
7458 default:
7459 break;
7460 }
7461 features++;
7462 }
7463 }
7464 }
7465 END_TEST
7466
7467 /* Regression test for GitHub Issue #17: memory leak parsing attribute
7468 * values with mixed bound and unbound namespaces.
7469 */
START_TEST(test_misc_attribute_leak)7470 START_TEST(test_misc_attribute_leak) {
7471 const char *text = "<D xmlns:L=\"D\" l:a='' L:a=''/>";
7472 XML_Memory_Handling_Suite memsuite
7473 = {tracking_malloc, tracking_realloc, tracking_free};
7474
7475 g_parser = XML_ParserCreate_MM(XCS("UTF-8"), &memsuite, XCS("\n"));
7476 expect_failure(text, XML_ERROR_UNBOUND_PREFIX, "Unbound prefixes not found");
7477 XML_ParserFree(g_parser);
7478 /* Prevent the teardown trying to double free */
7479 g_parser = NULL;
7480
7481 if (! tracking_report())
7482 fail("Memory leak found");
7483 }
7484 END_TEST
7485
7486 /* Test parser created for UTF-16LE is successful */
START_TEST(test_misc_utf16le)7487 START_TEST(test_misc_utf16le) {
7488 const char text[] =
7489 /* <?xml version='1.0'?><q>Hi</q> */
7490 "<\0?\0x\0m\0l\0 \0"
7491 "v\0e\0r\0s\0i\0o\0n\0=\0'\0\x31\0.\0\x30\0'\0?\0>\0"
7492 "<\0q\0>\0H\0i\0<\0/\0q\0>\0";
7493 const XML_Char *expected = XCS("Hi");
7494 CharData storage;
7495
7496 g_parser = XML_ParserCreate(XCS("UTF-16LE"));
7497 if (g_parser == NULL)
7498 fail("Parser not created");
7499
7500 CharData_Init(&storage);
7501 XML_SetUserData(g_parser, &storage);
7502 XML_SetCharacterDataHandler(g_parser, accumulate_characters);
7503 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)sizeof(text) - 1, XML_TRUE)
7504 == XML_STATUS_ERROR)
7505 xml_failure(g_parser);
7506 CharData_CheckXMLChars(&storage, expected);
7507 }
7508 END_TEST
7509
7510 typedef struct {
7511 XML_Parser parser;
7512 int deep;
7513 } DataIssue240;
7514
7515 static void
start_element_issue_240(void * userData,const XML_Char * name,const XML_Char ** atts)7516 start_element_issue_240(void *userData, const XML_Char *name,
7517 const XML_Char **atts) {
7518 DataIssue240 *mydata = (DataIssue240 *)userData;
7519 UNUSED_P(name);
7520 UNUSED_P(atts);
7521 mydata->deep++;
7522 }
7523
7524 static void
end_element_issue_240(void * userData,const XML_Char * name)7525 end_element_issue_240(void *userData, const XML_Char *name) {
7526 DataIssue240 *mydata = (DataIssue240 *)userData;
7527
7528 UNUSED_P(name);
7529 mydata->deep--;
7530 if (mydata->deep == 0) {
7531 XML_StopParser(mydata->parser, 0);
7532 }
7533 }
7534
START_TEST(test_misc_stop_during_end_handler_issue_240_1)7535 START_TEST(test_misc_stop_during_end_handler_issue_240_1) {
7536 XML_Parser parser;
7537 DataIssue240 *mydata;
7538 enum XML_Status result;
7539 const char *const doc1 = "<doc><e1/><e><foo/></e></doc>";
7540
7541 parser = XML_ParserCreate(NULL);
7542 XML_SetElementHandler(parser, start_element_issue_240, end_element_issue_240);
7543 mydata = (DataIssue240 *)malloc(sizeof(DataIssue240));
7544 mydata->parser = parser;
7545 mydata->deep = 0;
7546 XML_SetUserData(parser, mydata);
7547
7548 result = XML_Parse(parser, doc1, (int)strlen(doc1), 1);
7549 XML_ParserFree(parser);
7550 free(mydata);
7551 if (result != XML_STATUS_ERROR)
7552 fail("Stopping the parser did not work as expected");
7553 }
7554 END_TEST
7555
START_TEST(test_misc_stop_during_end_handler_issue_240_2)7556 START_TEST(test_misc_stop_during_end_handler_issue_240_2) {
7557 XML_Parser parser;
7558 DataIssue240 *mydata;
7559 enum XML_Status result;
7560 const char *const doc2 = "<doc><elem/></doc>";
7561
7562 parser = XML_ParserCreate(NULL);
7563 XML_SetElementHandler(parser, start_element_issue_240, end_element_issue_240);
7564 mydata = (DataIssue240 *)malloc(sizeof(DataIssue240));
7565 mydata->parser = parser;
7566 mydata->deep = 0;
7567 XML_SetUserData(parser, mydata);
7568
7569 result = XML_Parse(parser, doc2, (int)strlen(doc2), 1);
7570 XML_ParserFree(parser);
7571 free(mydata);
7572 if (result != XML_STATUS_ERROR)
7573 fail("Stopping the parser did not work as expected");
7574 }
7575 END_TEST
7576
START_TEST(test_misc_deny_internal_entity_closing_doctype_issue_317)7577 START_TEST(test_misc_deny_internal_entity_closing_doctype_issue_317) {
7578 const char *const inputOne = "<!DOCTYPE d [\n"
7579 "<!ENTITY % e ']><d/>'>\n"
7580 "\n"
7581 "%e;";
7582 const char *const inputTwo = "<!DOCTYPE d [\n"
7583 "<!ENTITY % e1 ']><d/>'><!ENTITY % e2 '&e1;'>\n"
7584 "\n"
7585 "%e2;";
7586 const char *const inputThree = "<!DOCTYPE d [\n"
7587 "<!ENTITY % e ']><d'>\n"
7588 "\n"
7589 "%e;";
7590 const char *const inputIssue317 = "<!DOCTYPE doc [\n"
7591 "<!ENTITY % foo ']>\n"
7592 "<doc>Hell<oc (#PCDATA)*>'>\n"
7593 "%foo;\n"
7594 "]>\n"
7595 "<doc>Hello, world</dVc>";
7596
7597 const char *const inputs[] = {inputOne, inputTwo, inputThree, inputIssue317};
7598 size_t inputIndex = 0;
7599
7600 for (; inputIndex < sizeof(inputs) / sizeof(inputs[0]); inputIndex++) {
7601 XML_Parser parser;
7602 enum XML_Status parseResult;
7603 int setParamEntityResult;
7604 XML_Size lineNumber;
7605 XML_Size columnNumber;
7606 const char *const input = inputs[inputIndex];
7607
7608 parser = XML_ParserCreate(NULL);
7609 setParamEntityResult
7610 = XML_SetParamEntityParsing(parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
7611 if (setParamEntityResult != 1)
7612 fail("Failed to set XML_PARAM_ENTITY_PARSING_ALWAYS.");
7613
7614 parseResult = XML_Parse(parser, input, (int)strlen(input), 0);
7615 if (parseResult != XML_STATUS_ERROR) {
7616 parseResult = XML_Parse(parser, "", 0, 1);
7617 if (parseResult != XML_STATUS_ERROR) {
7618 fail("Parsing was expected to fail but succeeded.");
7619 }
7620 }
7621
7622 if (XML_GetErrorCode(parser) != XML_ERROR_INVALID_TOKEN)
7623 fail("Error code does not match XML_ERROR_INVALID_TOKEN");
7624
7625 lineNumber = XML_GetCurrentLineNumber(parser);
7626 if (lineNumber != 4)
7627 fail("XML_GetCurrentLineNumber does not work as expected.");
7628
7629 columnNumber = XML_GetCurrentColumnNumber(parser);
7630 if (columnNumber != 0)
7631 fail("XML_GetCurrentColumnNumber does not work as expected.");
7632
7633 XML_ParserFree(parser);
7634 }
7635 }
7636 END_TEST
7637
7638 static int XMLCALL
external_entity_parser_create_alloc_fail_handler(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)7639 external_entity_parser_create_alloc_fail_handler(XML_Parser parser,
7640 const XML_Char *context,
7641 const XML_Char *base,
7642 const XML_Char *systemId,
7643 const XML_Char *publicId) {
7644 UNUSED_P(base);
7645 UNUSED_P(systemId);
7646 UNUSED_P(publicId);
7647
7648 if (context != NULL)
7649 fail("Unexpected non-NULL context");
7650
7651 // The following number intends to fail the upcoming allocation in line
7652 // "parser->m_protocolEncodingName = copyString(encodingName,
7653 // &(parser->m_mem));" in function parserInit.
7654 allocation_count = 3;
7655
7656 const XML_Char *const encodingName = XCS("UTF-8"); // needs something non-NULL
7657 const XML_Parser ext_parser
7658 = XML_ExternalEntityParserCreate(parser, context, encodingName);
7659 if (ext_parser != NULL)
7660 fail(
7661 "Call to XML_ExternalEntityParserCreate was expected to fail out-of-memory");
7662
7663 allocation_count = ALLOC_ALWAYS_SUCCEED;
7664 return XML_STATUS_ERROR;
7665 }
7666
START_TEST(test_alloc_reset_after_external_entity_parser_create_fail)7667 START_TEST(test_alloc_reset_after_external_entity_parser_create_fail) {
7668 const char *const text = "<!DOCTYPE doc SYSTEM 'foo'><doc/>";
7669
7670 XML_SetExternalEntityRefHandler(
7671 g_parser, external_entity_parser_create_alloc_fail_handler);
7672 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
7673
7674 if (XML_Parse(g_parser, text, (int)strlen(text), XML_TRUE)
7675 != XML_STATUS_ERROR)
7676 fail("Call to parse was expected to fail");
7677
7678 if (XML_GetErrorCode(g_parser) != XML_ERROR_EXTERNAL_ENTITY_HANDLING)
7679 fail("Call to parse was expected to fail from the external entity handler");
7680
7681 XML_ParserReset(g_parser, NULL);
7682 }
7683 END_TEST
7684
7685 static void
alloc_setup(void)7686 alloc_setup(void) {
7687 XML_Memory_Handling_Suite memsuite = {duff_allocator, duff_reallocator, free};
7688
7689 /* Ensure the parser creation will go through */
7690 allocation_count = ALLOC_ALWAYS_SUCCEED;
7691 reallocation_count = REALLOC_ALWAYS_SUCCEED;
7692 g_parser = XML_ParserCreate_MM(NULL, &memsuite, NULL);
7693 if (g_parser == NULL)
7694 fail("Parser not created");
7695 }
7696
7697 static void
alloc_teardown(void)7698 alloc_teardown(void) {
7699 basic_teardown();
7700 }
7701
7702 /* Test the effects of allocation failures on xml declaration processing */
START_TEST(test_alloc_parse_xdecl)7703 START_TEST(test_alloc_parse_xdecl) {
7704 const char *text = "<?xml version='1.0' encoding='utf-8'?>\n"
7705 "<doc>Hello, world</doc>";
7706 int i;
7707 const int max_alloc_count = 15;
7708
7709 for (i = 0; i < max_alloc_count; i++) {
7710 allocation_count = i;
7711 XML_SetXmlDeclHandler(g_parser, dummy_xdecl_handler);
7712 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
7713 != XML_STATUS_ERROR)
7714 break;
7715 /* Resetting the parser is insufficient, because some memory
7716 * allocations are cached within the parser. Instead we use
7717 * the teardown and setup routines to ensure that we have the
7718 * right sort of parser back in our hands.
7719 */
7720 alloc_teardown();
7721 alloc_setup();
7722 }
7723 if (i == 0)
7724 fail("Parse succeeded despite failing allocator");
7725 if (i == max_alloc_count)
7726 fail("Parse failed with max allocations");
7727 }
7728 END_TEST
7729
7730 /* As above, but with an encoding big enough to cause storing the
7731 * version information to expand the string pool being used.
7732 */
7733 static int XMLCALL
long_encoding_handler(void * userData,const XML_Char * encoding,XML_Encoding * info)7734 long_encoding_handler(void *userData, const XML_Char *encoding,
7735 XML_Encoding *info) {
7736 int i;
7737
7738 UNUSED_P(userData);
7739 UNUSED_P(encoding);
7740 for (i = 0; i < 256; i++)
7741 info->map[i] = i;
7742 info->data = NULL;
7743 info->convert = NULL;
7744 info->release = NULL;
7745 return XML_STATUS_OK;
7746 }
7747
START_TEST(test_alloc_parse_xdecl_2)7748 START_TEST(test_alloc_parse_xdecl_2) {
7749 const char *text
7750 = "<?xml version='1.0' encoding='"
7751 /* Each line is 64 characters */
7752 "ThisIsAStupidlyLongEncodingNameIntendedToTriggerPoolGrowth123456"
7753 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7754 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7755 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7756 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7757 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7758 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7759 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7760 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7761 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7762 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7763 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7764 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7765 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7766 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7767 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMN"
7768 "'?>"
7769 "<doc>Hello, world</doc>";
7770 int i;
7771 const int max_alloc_count = 20;
7772
7773 for (i = 0; i < max_alloc_count; i++) {
7774 allocation_count = i;
7775 XML_SetXmlDeclHandler(g_parser, dummy_xdecl_handler);
7776 XML_SetUnknownEncodingHandler(g_parser, long_encoding_handler, NULL);
7777 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
7778 != XML_STATUS_ERROR)
7779 break;
7780 /* See comment in test_alloc_parse_xdecl() */
7781 alloc_teardown();
7782 alloc_setup();
7783 }
7784 if (i == 0)
7785 fail("Parse succeeded despite failing allocator");
7786 if (i == max_alloc_count)
7787 fail("Parse failed with max allocations");
7788 }
7789 END_TEST
7790
7791 /* Test the effects of allocation failures on a straightforward parse */
START_TEST(test_alloc_parse_pi)7792 START_TEST(test_alloc_parse_pi) {
7793 const char *text = "<?xml version='1.0' encoding='utf-8'?>\n"
7794 "<?pi unknown?>\n"
7795 "<doc>"
7796 "Hello, world"
7797 "</doc>";
7798 int i;
7799 const int max_alloc_count = 15;
7800
7801 for (i = 0; i < max_alloc_count; i++) {
7802 allocation_count = i;
7803 XML_SetProcessingInstructionHandler(g_parser, dummy_pi_handler);
7804 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
7805 != XML_STATUS_ERROR)
7806 break;
7807 /* See comment in test_alloc_parse_xdecl() */
7808 alloc_teardown();
7809 alloc_setup();
7810 }
7811 if (i == 0)
7812 fail("Parse succeeded despite failing allocator");
7813 if (i == max_alloc_count)
7814 fail("Parse failed with max allocations");
7815 }
7816 END_TEST
7817
START_TEST(test_alloc_parse_pi_2)7818 START_TEST(test_alloc_parse_pi_2) {
7819 const char *text = "<?xml version='1.0' encoding='utf-8'?>\n"
7820 "<doc>"
7821 "Hello, world"
7822 "<?pi unknown?>\n"
7823 "</doc>";
7824 int i;
7825 const int max_alloc_count = 15;
7826
7827 for (i = 0; i < max_alloc_count; i++) {
7828 allocation_count = i;
7829 XML_SetProcessingInstructionHandler(g_parser, dummy_pi_handler);
7830 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
7831 != XML_STATUS_ERROR)
7832 break;
7833 /* See comment in test_alloc_parse_xdecl() */
7834 alloc_teardown();
7835 alloc_setup();
7836 }
7837 if (i == 0)
7838 fail("Parse succeeded despite failing allocator");
7839 if (i == max_alloc_count)
7840 fail("Parse failed with max allocations");
7841 }
7842 END_TEST
7843
START_TEST(test_alloc_parse_pi_3)7844 START_TEST(test_alloc_parse_pi_3) {
7845 const char *text
7846 = "<?"
7847 /* 64 characters per line */
7848 "This processing instruction should be long enough to ensure that"
7849 "it triggers the growth of an internal string pool when the "
7850 "allocator fails at a cruicial moment FGHIJKLMNOPABCDEFGHIJKLMNOP"
7851 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7852 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7853 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7854 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7855 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7856 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7857 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7858 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7859 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7860 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7861 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7862 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7863 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
7864 "Q?><doc/>";
7865 int i;
7866 const int max_alloc_count = 20;
7867
7868 for (i = 0; i < max_alloc_count; i++) {
7869 allocation_count = i;
7870 XML_SetProcessingInstructionHandler(g_parser, dummy_pi_handler);
7871 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
7872 != XML_STATUS_ERROR)
7873 break;
7874 /* See comment in test_alloc_parse_xdecl() */
7875 alloc_teardown();
7876 alloc_setup();
7877 }
7878 if (i == 0)
7879 fail("Parse succeeded despite failing allocator");
7880 if (i == max_alloc_count)
7881 fail("Parse failed with max allocations");
7882 }
7883 END_TEST
7884
START_TEST(test_alloc_parse_comment)7885 START_TEST(test_alloc_parse_comment) {
7886 const char *text = "<?xml version='1.0' encoding='utf-8'?>\n"
7887 "<!-- Test parsing this comment -->"
7888 "<doc>Hi</doc>";
7889 int i;
7890 const int max_alloc_count = 15;
7891
7892 for (i = 0; i < max_alloc_count; i++) {
7893 allocation_count = i;
7894 XML_SetCommentHandler(g_parser, dummy_comment_handler);
7895 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
7896 != XML_STATUS_ERROR)
7897 break;
7898 /* See comment in test_alloc_parse_xdecl() */
7899 alloc_teardown();
7900 alloc_setup();
7901 }
7902 if (i == 0)
7903 fail("Parse succeeded despite failing allocator");
7904 if (i == max_alloc_count)
7905 fail("Parse failed with max allocations");
7906 }
7907 END_TEST
7908
START_TEST(test_alloc_parse_comment_2)7909 START_TEST(test_alloc_parse_comment_2) {
7910 const char *text = "<?xml version='1.0' encoding='utf-8'?>\n"
7911 "<doc>"
7912 "Hello, world"
7913 "<!-- Parse this comment too -->"
7914 "</doc>";
7915 int i;
7916 const int max_alloc_count = 15;
7917
7918 for (i = 0; i < max_alloc_count; i++) {
7919 allocation_count = i;
7920 XML_SetCommentHandler(g_parser, dummy_comment_handler);
7921 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
7922 != XML_STATUS_ERROR)
7923 break;
7924 /* See comment in test_alloc_parse_xdecl() */
7925 alloc_teardown();
7926 alloc_setup();
7927 }
7928 if (i == 0)
7929 fail("Parse succeeded despite failing allocator");
7930 if (i == max_alloc_count)
7931 fail("Parse failed with max allocations");
7932 }
7933 END_TEST
7934
7935 static int XMLCALL
external_entity_duff_loader(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)7936 external_entity_duff_loader(XML_Parser parser, const XML_Char *context,
7937 const XML_Char *base, const XML_Char *systemId,
7938 const XML_Char *publicId) {
7939 XML_Parser new_parser;
7940 unsigned int i;
7941 const unsigned int max_alloc_count = 10;
7942
7943 UNUSED_P(base);
7944 UNUSED_P(systemId);
7945 UNUSED_P(publicId);
7946 /* Try a few different allocation levels */
7947 for (i = 0; i < max_alloc_count; i++) {
7948 allocation_count = i;
7949 new_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
7950 if (new_parser != NULL) {
7951 XML_ParserFree(new_parser);
7952 break;
7953 }
7954 }
7955 if (i == 0)
7956 fail("External parser creation ignored failing allocator");
7957 else if (i == max_alloc_count)
7958 fail("Extern parser not created with max allocation count");
7959
7960 /* Make sure other random allocation doesn't now fail */
7961 allocation_count = ALLOC_ALWAYS_SUCCEED;
7962
7963 /* Make sure the failure code path is executed too */
7964 return XML_STATUS_ERROR;
7965 }
7966
7967 /* Test that external parser creation running out of memory is
7968 * correctly reported. Based on the external entity test cases.
7969 */
START_TEST(test_alloc_create_external_parser)7970 START_TEST(test_alloc_create_external_parser) {
7971 const char *text = "<?xml version='1.0' encoding='us-ascii'?>\n"
7972 "<!DOCTYPE doc SYSTEM 'foo'>\n"
7973 "<doc>&entity;</doc>";
7974 char foo_text[] = "<!ELEMENT doc (#PCDATA)*>";
7975
7976 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
7977 XML_SetUserData(g_parser, foo_text);
7978 XML_SetExternalEntityRefHandler(g_parser, external_entity_duff_loader);
7979 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
7980 != XML_STATUS_ERROR) {
7981 fail("External parser allocator returned success incorrectly");
7982 }
7983 }
7984 END_TEST
7985
7986 /* More external parser memory allocation testing */
START_TEST(test_alloc_run_external_parser)7987 START_TEST(test_alloc_run_external_parser) {
7988 const char *text = "<?xml version='1.0' encoding='us-ascii'?>\n"
7989 "<!DOCTYPE doc SYSTEM 'foo'>\n"
7990 "<doc>&entity;</doc>";
7991 char foo_text[] = "<!ELEMENT doc (#PCDATA)*>";
7992 unsigned int i;
7993 const unsigned int max_alloc_count = 15;
7994
7995 for (i = 0; i < max_alloc_count; i++) {
7996 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
7997 XML_SetUserData(g_parser, foo_text);
7998 XML_SetExternalEntityRefHandler(g_parser, external_entity_null_loader);
7999 allocation_count = i;
8000 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
8001 != XML_STATUS_ERROR)
8002 break;
8003 /* See comment in test_alloc_parse_xdecl() */
8004 alloc_teardown();
8005 alloc_setup();
8006 }
8007 if (i == 0)
8008 fail("Parsing ignored failing allocator");
8009 else if (i == max_alloc_count)
8010 fail("Parsing failed with allocation count 10");
8011 }
8012 END_TEST
8013
8014 static int XMLCALL
external_entity_dbl_handler(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)8015 external_entity_dbl_handler(XML_Parser parser, const XML_Char *context,
8016 const XML_Char *base, const XML_Char *systemId,
8017 const XML_Char *publicId) {
8018 intptr_t callno = (intptr_t)XML_GetUserData(parser);
8019 const char *text;
8020 XML_Parser new_parser;
8021 int i;
8022 const int max_alloc_count = 20;
8023
8024 UNUSED_P(base);
8025 UNUSED_P(systemId);
8026 UNUSED_P(publicId);
8027 if (callno == 0) {
8028 /* First time through, check how many calls to malloc occur */
8029 text = ("<!ELEMENT doc (e+)>\n"
8030 "<!ATTLIST doc xmlns CDATA #IMPLIED>\n"
8031 "<!ELEMENT e EMPTY>\n");
8032 allocation_count = 10000;
8033 new_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
8034 if (new_parser == NULL) {
8035 fail("Unable to allocate first external parser");
8036 return XML_STATUS_ERROR;
8037 }
8038 /* Stash the number of calls in the user data */
8039 XML_SetUserData(parser, (void *)(intptr_t)(10000 - allocation_count));
8040 } else {
8041 text = ("<?xml version='1.0' encoding='us-ascii'?>"
8042 "<e/>");
8043 /* Try at varying levels to exercise more code paths */
8044 for (i = 0; i < max_alloc_count; i++) {
8045 allocation_count = callno + i;
8046 new_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
8047 if (new_parser != NULL)
8048 break;
8049 }
8050 if (i == 0) {
8051 fail("Second external parser unexpectedly created");
8052 XML_ParserFree(new_parser);
8053 return XML_STATUS_ERROR;
8054 } else if (i == max_alloc_count) {
8055 fail("Second external parser not created");
8056 return XML_STATUS_ERROR;
8057 }
8058 }
8059
8060 allocation_count = ALLOC_ALWAYS_SUCCEED;
8061 if (_XML_Parse_SINGLE_BYTES(new_parser, text, (int)strlen(text), XML_TRUE)
8062 == XML_STATUS_ERROR) {
8063 xml_failure(new_parser);
8064 return XML_STATUS_ERROR;
8065 }
8066 XML_ParserFree(new_parser);
8067 return XML_STATUS_OK;
8068 }
8069
8070 /* Test that running out of memory in dtdCopy is correctly reported.
8071 * Based on test_default_ns_from_ext_subset_and_ext_ge()
8072 */
START_TEST(test_alloc_dtd_copy_default_atts)8073 START_TEST(test_alloc_dtd_copy_default_atts) {
8074 const char *text = "<?xml version='1.0'?>\n"
8075 "<!DOCTYPE doc SYSTEM 'http://example.org/doc.dtd' [\n"
8076 " <!ENTITY en SYSTEM 'http://example.org/entity.ent'>\n"
8077 "]>\n"
8078 "<doc xmlns='http://example.org/ns1'>\n"
8079 "&en;\n"
8080 "</doc>";
8081
8082 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
8083 XML_SetExternalEntityRefHandler(g_parser, external_entity_dbl_handler);
8084 XML_SetUserData(g_parser, NULL);
8085 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
8086 == XML_STATUS_ERROR)
8087 xml_failure(g_parser);
8088 }
8089 END_TEST
8090
8091 static int XMLCALL
external_entity_dbl_handler_2(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)8092 external_entity_dbl_handler_2(XML_Parser parser, const XML_Char *context,
8093 const XML_Char *base, const XML_Char *systemId,
8094 const XML_Char *publicId) {
8095 intptr_t callno = (intptr_t)XML_GetUserData(parser);
8096 const char *text;
8097 XML_Parser new_parser;
8098 enum XML_Status rv;
8099
8100 UNUSED_P(base);
8101 UNUSED_P(systemId);
8102 UNUSED_P(publicId);
8103 if (callno == 0) {
8104 /* Try different allocation levels for whole exercise */
8105 text = ("<!ELEMENT doc (e+)>\n"
8106 "<!ATTLIST doc xmlns CDATA #IMPLIED>\n"
8107 "<!ELEMENT e EMPTY>\n");
8108 XML_SetUserData(parser, (void *)(intptr_t)1);
8109 new_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
8110 if (new_parser == NULL)
8111 return XML_STATUS_ERROR;
8112 rv = _XML_Parse_SINGLE_BYTES(new_parser, text, (int)strlen(text), XML_TRUE);
8113 } else {
8114 /* Just run through once */
8115 text = ("<?xml version='1.0' encoding='us-ascii'?>"
8116 "<e/>");
8117 new_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
8118 if (new_parser == NULL)
8119 return XML_STATUS_ERROR;
8120 rv = _XML_Parse_SINGLE_BYTES(new_parser, text, (int)strlen(text), XML_TRUE);
8121 }
8122 XML_ParserFree(new_parser);
8123 if (rv == XML_STATUS_ERROR)
8124 return XML_STATUS_ERROR;
8125 return XML_STATUS_OK;
8126 }
8127
8128 /* Test more external entity allocation failure paths */
START_TEST(test_alloc_external_entity)8129 START_TEST(test_alloc_external_entity) {
8130 const char *text = "<?xml version='1.0'?>\n"
8131 "<!DOCTYPE doc SYSTEM 'http://example.org/doc.dtd' [\n"
8132 " <!ENTITY en SYSTEM 'http://example.org/entity.ent'>\n"
8133 "]>\n"
8134 "<doc xmlns='http://example.org/ns1'>\n"
8135 "&en;\n"
8136 "</doc>";
8137 int i;
8138 const int alloc_test_max_repeats = 50;
8139
8140 for (i = 0; i < alloc_test_max_repeats; i++) {
8141 allocation_count = -1;
8142 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
8143 XML_SetExternalEntityRefHandler(g_parser, external_entity_dbl_handler_2);
8144 XML_SetUserData(g_parser, NULL);
8145 allocation_count = i;
8146 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
8147 == XML_STATUS_OK)
8148 break;
8149 /* See comment in test_alloc_parse_xdecl() */
8150 alloc_teardown();
8151 alloc_setup();
8152 }
8153 allocation_count = -1;
8154 if (i == 0)
8155 fail("External entity parsed despite duff allocator");
8156 if (i == alloc_test_max_repeats)
8157 fail("External entity not parsed at max allocation count");
8158 }
8159 END_TEST
8160
8161 /* Test more allocation failure paths */
8162 static int XMLCALL
external_entity_alloc_set_encoding(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)8163 external_entity_alloc_set_encoding(XML_Parser parser, const XML_Char *context,
8164 const XML_Char *base,
8165 const XML_Char *systemId,
8166 const XML_Char *publicId) {
8167 /* As for external_entity_loader() */
8168 const char *text = "<?xml encoding='iso-8859-3'?>"
8169 "\xC3\xA9";
8170 XML_Parser ext_parser;
8171 enum XML_Status status;
8172
8173 UNUSED_P(base);
8174 UNUSED_P(systemId);
8175 UNUSED_P(publicId);
8176 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
8177 if (ext_parser == NULL)
8178 return XML_STATUS_ERROR;
8179 if (! XML_SetEncoding(ext_parser, XCS("utf-8"))) {
8180 XML_ParserFree(ext_parser);
8181 return XML_STATUS_ERROR;
8182 }
8183 status
8184 = _XML_Parse_SINGLE_BYTES(ext_parser, text, (int)strlen(text), XML_TRUE);
8185 XML_ParserFree(ext_parser);
8186 if (status == XML_STATUS_ERROR)
8187 return XML_STATUS_ERROR;
8188 return XML_STATUS_OK;
8189 }
8190
START_TEST(test_alloc_ext_entity_set_encoding)8191 START_TEST(test_alloc_ext_entity_set_encoding) {
8192 const char *text = "<!DOCTYPE doc [\n"
8193 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
8194 "]>\n"
8195 "<doc>&en;</doc>";
8196 int i;
8197 const int max_allocation_count = 30;
8198
8199 for (i = 0; i < max_allocation_count; i++) {
8200 XML_SetExternalEntityRefHandler(g_parser,
8201 external_entity_alloc_set_encoding);
8202 allocation_count = i;
8203 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
8204 == XML_STATUS_OK)
8205 break;
8206 allocation_count = -1;
8207 /* See comment in test_alloc_parse_xdecl() */
8208 alloc_teardown();
8209 alloc_setup();
8210 }
8211 if (i == 0)
8212 fail("Encoding check succeeded despite failing allocator");
8213 if (i == max_allocation_count)
8214 fail("Encoding failed at max allocation count");
8215 }
8216 END_TEST
8217
8218 static int XMLCALL
unknown_released_encoding_handler(void * data,const XML_Char * encoding,XML_Encoding * info)8219 unknown_released_encoding_handler(void *data, const XML_Char *encoding,
8220 XML_Encoding *info) {
8221 UNUSED_P(data);
8222 if (! xcstrcmp(encoding, XCS("unsupported-encoding"))) {
8223 int i;
8224
8225 for (i = 0; i < 256; i++)
8226 info->map[i] = i;
8227 info->data = NULL;
8228 info->convert = NULL;
8229 info->release = dummy_release;
8230 return XML_STATUS_OK;
8231 }
8232 return XML_STATUS_ERROR;
8233 }
8234
8235 /* Test the effects of allocation failure in internal entities.
8236 * Based on test_unknown_encoding_internal_entity
8237 */
START_TEST(test_alloc_internal_entity)8238 START_TEST(test_alloc_internal_entity) {
8239 const char *text = "<?xml version='1.0' encoding='unsupported-encoding'?>\n"
8240 "<!DOCTYPE test [<!ENTITY foo 'bar'>]>\n"
8241 "<test a='&foo;'/>";
8242 unsigned int i;
8243 const unsigned int max_alloc_count = 20;
8244
8245 for (i = 0; i < max_alloc_count; i++) {
8246 allocation_count = i;
8247 XML_SetUnknownEncodingHandler(g_parser, unknown_released_encoding_handler,
8248 NULL);
8249 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
8250 != XML_STATUS_ERROR)
8251 break;
8252 /* See comment in test_alloc_parse_xdecl() */
8253 alloc_teardown();
8254 alloc_setup();
8255 }
8256 if (i == 0)
8257 fail("Internal entity worked despite failing allocations");
8258 else if (i == max_alloc_count)
8259 fail("Internal entity failed at max allocation count");
8260 }
8261 END_TEST
8262
8263 /* Test the robustness against allocation failure of element handling
8264 * Based on test_dtd_default_handling().
8265 */
START_TEST(test_alloc_dtd_default_handling)8266 START_TEST(test_alloc_dtd_default_handling) {
8267 const char *text = "<!DOCTYPE doc [\n"
8268 "<!ENTITY e SYSTEM 'http://example.org/e'>\n"
8269 "<!NOTATION n SYSTEM 'http://example.org/n'>\n"
8270 "<!ENTITY e1 SYSTEM 'http://example.org/e' NDATA n>\n"
8271 "<!ELEMENT doc (#PCDATA)>\n"
8272 "<!ATTLIST doc a CDATA #IMPLIED>\n"
8273 "<?pi in dtd?>\n"
8274 "<!--comment in dtd-->\n"
8275 "]>\n"
8276 "<doc><![CDATA[text in doc]]></doc>";
8277 const XML_Char *expected = XCS("\n\n\n\n\n\n\n\n\n<doc>text in doc</doc>");
8278 CharData storage;
8279 int i;
8280 const int max_alloc_count = 25;
8281
8282 for (i = 0; i < max_alloc_count; i++) {
8283 allocation_count = i;
8284 dummy_handler_flags = 0;
8285 XML_SetDefaultHandler(g_parser, accumulate_characters);
8286 XML_SetDoctypeDeclHandler(g_parser, dummy_start_doctype_handler,
8287 dummy_end_doctype_handler);
8288 XML_SetEntityDeclHandler(g_parser, dummy_entity_decl_handler);
8289 XML_SetNotationDeclHandler(g_parser, dummy_notation_decl_handler);
8290 XML_SetElementDeclHandler(g_parser, dummy_element_decl_handler);
8291 XML_SetAttlistDeclHandler(g_parser, dummy_attlist_decl_handler);
8292 XML_SetProcessingInstructionHandler(g_parser, dummy_pi_handler);
8293 XML_SetCommentHandler(g_parser, dummy_comment_handler);
8294 XML_SetCdataSectionHandler(g_parser, dummy_start_cdata_handler,
8295 dummy_end_cdata_handler);
8296 XML_SetUnparsedEntityDeclHandler(g_parser,
8297 dummy_unparsed_entity_decl_handler);
8298 CharData_Init(&storage);
8299 XML_SetUserData(g_parser, &storage);
8300 XML_SetCharacterDataHandler(g_parser, accumulate_characters);
8301 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
8302 != XML_STATUS_ERROR)
8303 break;
8304 /* See comment in test_alloc_parse_xdecl() */
8305 alloc_teardown();
8306 alloc_setup();
8307 }
8308 if (i == 0)
8309 fail("Default DTD parsed despite allocation failures");
8310 if (i == max_alloc_count)
8311 fail("Default DTD not parsed with maximum alloc count");
8312 CharData_CheckXMLChars(&storage, expected);
8313 if (dummy_handler_flags
8314 != (DUMMY_START_DOCTYPE_HANDLER_FLAG | DUMMY_END_DOCTYPE_HANDLER_FLAG
8315 | DUMMY_ENTITY_DECL_HANDLER_FLAG | DUMMY_NOTATION_DECL_HANDLER_FLAG
8316 | DUMMY_ELEMENT_DECL_HANDLER_FLAG | DUMMY_ATTLIST_DECL_HANDLER_FLAG
8317 | DUMMY_COMMENT_HANDLER_FLAG | DUMMY_PI_HANDLER_FLAG
8318 | DUMMY_START_CDATA_HANDLER_FLAG | DUMMY_END_CDATA_HANDLER_FLAG
8319 | DUMMY_UNPARSED_ENTITY_DECL_HANDLER_FLAG))
8320 fail("Not all handlers were called");
8321 }
8322 END_TEST
8323
8324 /* Test robustness of XML_SetEncoding() with a failing allocator */
START_TEST(test_alloc_explicit_encoding)8325 START_TEST(test_alloc_explicit_encoding) {
8326 int i;
8327 const int max_alloc_count = 5;
8328
8329 for (i = 0; i < max_alloc_count; i++) {
8330 allocation_count = i;
8331 if (XML_SetEncoding(g_parser, XCS("us-ascii")) == XML_STATUS_OK)
8332 break;
8333 }
8334 if (i == 0)
8335 fail("Encoding set despite failing allocator");
8336 else if (i == max_alloc_count)
8337 fail("Encoding not set at max allocation count");
8338 }
8339 END_TEST
8340
8341 /* Test robustness of XML_SetBase against a failing allocator */
START_TEST(test_alloc_set_base)8342 START_TEST(test_alloc_set_base) {
8343 const XML_Char *new_base = XCS("/local/file/name.xml");
8344 int i;
8345 const int max_alloc_count = 5;
8346
8347 for (i = 0; i < max_alloc_count; i++) {
8348 allocation_count = i;
8349 if (XML_SetBase(g_parser, new_base) == XML_STATUS_OK)
8350 break;
8351 }
8352 if (i == 0)
8353 fail("Base set despite failing allocator");
8354 else if (i == max_alloc_count)
8355 fail("Base not set with max allocation count");
8356 }
8357 END_TEST
8358
8359 /* Test buffer extension in the face of a duff reallocator */
START_TEST(test_alloc_realloc_buffer)8360 START_TEST(test_alloc_realloc_buffer) {
8361 const char *text = get_buffer_test_text;
8362 void *buffer;
8363 int i;
8364 const int max_realloc_count = 10;
8365
8366 /* Get a smallish buffer */
8367 for (i = 0; i < max_realloc_count; i++) {
8368 reallocation_count = i;
8369 buffer = XML_GetBuffer(g_parser, 1536);
8370 if (buffer == NULL)
8371 fail("1.5K buffer reallocation failed");
8372 assert(buffer != NULL);
8373 memcpy(buffer, text, strlen(text));
8374 if (XML_ParseBuffer(g_parser, (int)strlen(text), XML_FALSE)
8375 == XML_STATUS_OK)
8376 break;
8377 /* See comment in test_alloc_parse_xdecl() */
8378 alloc_teardown();
8379 alloc_setup();
8380 }
8381 reallocation_count = -1;
8382 if (i == 0)
8383 fail("Parse succeeded with no reallocation");
8384 else if (i == max_realloc_count)
8385 fail("Parse failed with max reallocation count");
8386 }
8387 END_TEST
8388
8389 /* Same test for external entity parsers */
8390 static int XMLCALL
external_entity_reallocator(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)8391 external_entity_reallocator(XML_Parser parser, const XML_Char *context,
8392 const XML_Char *base, const XML_Char *systemId,
8393 const XML_Char *publicId) {
8394 const char *text = get_buffer_test_text;
8395 XML_Parser ext_parser;
8396 void *buffer;
8397 enum XML_Status status;
8398
8399 UNUSED_P(base);
8400 UNUSED_P(systemId);
8401 UNUSED_P(publicId);
8402 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
8403 if (ext_parser == NULL)
8404 fail("Could not create external entity parser");
8405
8406 reallocation_count = (intptr_t)XML_GetUserData(parser);
8407 buffer = XML_GetBuffer(ext_parser, 1536);
8408 if (buffer == NULL)
8409 fail("Buffer allocation failed");
8410 assert(buffer != NULL);
8411 memcpy(buffer, text, strlen(text));
8412 status = XML_ParseBuffer(ext_parser, (int)strlen(text), XML_FALSE);
8413 reallocation_count = -1;
8414 XML_ParserFree(ext_parser);
8415 return (status == XML_STATUS_OK) ? XML_STATUS_OK : XML_STATUS_ERROR;
8416 }
8417
START_TEST(test_alloc_ext_entity_realloc_buffer)8418 START_TEST(test_alloc_ext_entity_realloc_buffer) {
8419 const char *text = "<!DOCTYPE doc [\n"
8420 " <!ENTITY en SYSTEM 'http://example.org/dummy.ent'>\n"
8421 "]>\n"
8422 "<doc>&en;</doc>";
8423 int i;
8424 const int max_realloc_count = 10;
8425
8426 for (i = 0; i < max_realloc_count; i++) {
8427 XML_SetExternalEntityRefHandler(g_parser, external_entity_reallocator);
8428 XML_SetUserData(g_parser, (void *)(intptr_t)i);
8429 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
8430 == XML_STATUS_OK)
8431 break;
8432 /* See comment in test_alloc_parse_xdecl() */
8433 alloc_teardown();
8434 alloc_setup();
8435 }
8436 if (i == 0)
8437 fail("Succeeded with no reallocations");
8438 if (i == max_realloc_count)
8439 fail("Failed with max reallocations");
8440 }
8441 END_TEST
8442
8443 /* Test elements with many attributes are handled correctly */
START_TEST(test_alloc_realloc_many_attributes)8444 START_TEST(test_alloc_realloc_many_attributes) {
8445 const char *text = "<!DOCTYPE doc [\n"
8446 "<!ATTLIST doc za CDATA 'default'>\n"
8447 "<!ATTLIST doc zb CDATA 'def2'>\n"
8448 "<!ATTLIST doc zc CDATA 'def3'>\n"
8449 "]>\n"
8450 "<doc a='1'"
8451 " b='2'"
8452 " c='3'"
8453 " d='4'"
8454 " e='5'"
8455 " f='6'"
8456 " g='7'"
8457 " h='8'"
8458 " i='9'"
8459 " j='10'"
8460 " k='11'"
8461 " l='12'"
8462 " m='13'"
8463 " n='14'"
8464 " p='15'"
8465 " q='16'"
8466 " r='17'"
8467 " s='18'>"
8468 "</doc>";
8469 int i;
8470 const int max_realloc_count = 10;
8471
8472 for (i = 0; i < max_realloc_count; i++) {
8473 reallocation_count = i;
8474 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
8475 != XML_STATUS_ERROR)
8476 break;
8477 /* See comment in test_alloc_parse_xdecl() */
8478 alloc_teardown();
8479 alloc_setup();
8480 }
8481 if (i == 0)
8482 fail("Parse succeeded despite no reallocations");
8483 if (i == max_realloc_count)
8484 fail("Parse failed at max reallocations");
8485 }
8486 END_TEST
8487
8488 /* Test handling of a public entity with failing allocator */
START_TEST(test_alloc_public_entity_value)8489 START_TEST(test_alloc_public_entity_value) {
8490 const char *text = "<!DOCTYPE doc SYSTEM 'http://example.org/'>\n"
8491 "<doc></doc>\n";
8492 char dtd_text[]
8493 = "<!ELEMENT doc EMPTY>\n"
8494 "<!ENTITY % e1 PUBLIC 'foo' 'bar.ent'>\n"
8495 "<!ENTITY % "
8496 /* Each line is 64 characters */
8497 "ThisIsAStupidlyLongParameterNameIntendedToTriggerPoolGrowth12345"
8498 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8499 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8500 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8501 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8502 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8503 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8504 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8505 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8506 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8507 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8508 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8509 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8510 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8511 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8512 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8513 " '%e1;'>\n"
8514 "%e1;\n";
8515 int i;
8516 const int max_alloc_count = 50;
8517
8518 for (i = 0; i < max_alloc_count; i++) {
8519 allocation_count = i;
8520 dummy_handler_flags = 0;
8521 XML_SetUserData(g_parser, dtd_text);
8522 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
8523 XML_SetExternalEntityRefHandler(g_parser, external_entity_public);
8524 /* Provoke a particular code path */
8525 XML_SetEntityDeclHandler(g_parser, dummy_entity_decl_handler);
8526 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
8527 != XML_STATUS_ERROR)
8528 break;
8529 /* See comment in test_alloc_parse_xdecl() */
8530 alloc_teardown();
8531 alloc_setup();
8532 }
8533 if (i == 0)
8534 fail("Parsing worked despite failing allocation");
8535 if (i == max_alloc_count)
8536 fail("Parsing failed at max allocation count");
8537 if (dummy_handler_flags != DUMMY_ENTITY_DECL_HANDLER_FLAG)
8538 fail("Entity declaration handler not called");
8539 }
8540 END_TEST
8541
START_TEST(test_alloc_realloc_subst_public_entity_value)8542 START_TEST(test_alloc_realloc_subst_public_entity_value) {
8543 const char *text = "<!DOCTYPE doc SYSTEM 'http://example.org/'>\n"
8544 "<doc></doc>\n";
8545 char dtd_text[]
8546 = "<!ELEMENT doc EMPTY>\n"
8547 "<!ENTITY % "
8548 /* Each line is 64 characters */
8549 "ThisIsAStupidlyLongParameterNameIntendedToTriggerPoolGrowth12345"
8550 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8551 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8552 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8553 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8554 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8555 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8556 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8557 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8558 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8559 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8560 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8561 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8562 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8563 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8564 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8565 " PUBLIC 'foo' 'bar.ent'>\n"
8566 "%ThisIsAStupidlyLongParameterNameIntendedToTriggerPoolGrowth12345"
8567 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8568 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8569 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8570 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8571 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8572 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8573 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8574 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8575 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8576 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8577 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8578 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8579 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8580 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8581 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP;";
8582 int i;
8583 const int max_realloc_count = 10;
8584
8585 for (i = 0; i < max_realloc_count; i++) {
8586 reallocation_count = i;
8587 XML_SetUserData(g_parser, dtd_text);
8588 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
8589 XML_SetExternalEntityRefHandler(g_parser, external_entity_public);
8590 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
8591 != XML_STATUS_ERROR)
8592 break;
8593 /* See comment in test_alloc_parse_xdecl() */
8594 alloc_teardown();
8595 alloc_setup();
8596 }
8597 if (i == 0)
8598 fail("Parsing worked despite failing reallocation");
8599 if (i == max_realloc_count)
8600 fail("Parsing failed at max reallocation count");
8601 }
8602 END_TEST
8603
START_TEST(test_alloc_parse_public_doctype)8604 START_TEST(test_alloc_parse_public_doctype) {
8605 const char *text
8606 = "<?xml version='1.0' encoding='utf-8'?>\n"
8607 "<!DOCTYPE doc PUBLIC '"
8608 /* 64 characters per line */
8609 "http://example.com/a/long/enough/name/to/trigger/pool/growth/zz/"
8610 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
8611 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
8612 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
8613 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
8614 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
8615 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
8616 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
8617 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
8618 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
8619 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
8620 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
8621 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
8622 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
8623 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
8624 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
8625 "' 'test'>\n"
8626 "<doc></doc>";
8627 int i;
8628 const int max_alloc_count = 25;
8629
8630 for (i = 0; i < max_alloc_count; i++) {
8631 allocation_count = i;
8632 dummy_handler_flags = 0;
8633 XML_SetDoctypeDeclHandler(g_parser, dummy_start_doctype_decl_handler,
8634 dummy_end_doctype_decl_handler);
8635 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
8636 != XML_STATUS_ERROR)
8637 break;
8638 /* See comment in test_alloc_parse_xdecl() */
8639 alloc_teardown();
8640 alloc_setup();
8641 }
8642 if (i == 0)
8643 fail("Parse succeeded despite failing allocator");
8644 if (i == max_alloc_count)
8645 fail("Parse failed at maximum allocation count");
8646 if (dummy_handler_flags
8647 != (DUMMY_START_DOCTYPE_DECL_HANDLER_FLAG
8648 | DUMMY_END_DOCTYPE_DECL_HANDLER_FLAG))
8649 fail("Doctype handler functions not called");
8650 }
8651 END_TEST
8652
START_TEST(test_alloc_parse_public_doctype_long_name)8653 START_TEST(test_alloc_parse_public_doctype_long_name) {
8654 const char *text
8655 = "<?xml version='1.0' encoding='utf-8'?>\n"
8656 "<!DOCTYPE doc PUBLIC 'http://example.com/foo' '"
8657 /* 64 characters per line */
8658 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNOP"
8659 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNOP"
8660 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNOP"
8661 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNOP"
8662 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNOP"
8663 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNOP"
8664 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNOP"
8665 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNOP"
8666 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNOP"
8667 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNOP"
8668 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNOP"
8669 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNOP"
8670 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNOP"
8671 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNOP"
8672 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNOP"
8673 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNOP"
8674 "'>\n"
8675 "<doc></doc>";
8676 int i;
8677 const int max_alloc_count = 25;
8678
8679 for (i = 0; i < max_alloc_count; i++) {
8680 allocation_count = i;
8681 XML_SetDoctypeDeclHandler(g_parser, dummy_start_doctype_decl_handler,
8682 dummy_end_doctype_decl_handler);
8683 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
8684 != XML_STATUS_ERROR)
8685 break;
8686 /* See comment in test_alloc_parse_xdecl() */
8687 alloc_teardown();
8688 alloc_setup();
8689 }
8690 if (i == 0)
8691 fail("Parse succeeded despite failing allocator");
8692 if (i == max_alloc_count)
8693 fail("Parse failed at maximum allocation count");
8694 }
8695 END_TEST
8696
8697 static int XMLCALL
external_entity_alloc(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)8698 external_entity_alloc(XML_Parser parser, const XML_Char *context,
8699 const XML_Char *base, const XML_Char *systemId,
8700 const XML_Char *publicId) {
8701 const char *text = (const char *)XML_GetUserData(parser);
8702 XML_Parser ext_parser;
8703 int parse_res;
8704
8705 UNUSED_P(base);
8706 UNUSED_P(systemId);
8707 UNUSED_P(publicId);
8708 ext_parser = XML_ExternalEntityParserCreate(parser, context, NULL);
8709 if (ext_parser == NULL)
8710 return XML_STATUS_ERROR;
8711 parse_res
8712 = _XML_Parse_SINGLE_BYTES(ext_parser, text, (int)strlen(text), XML_TRUE);
8713 XML_ParserFree(ext_parser);
8714 return parse_res;
8715 }
8716
8717 /* Test foreign DTD handling */
START_TEST(test_alloc_set_foreign_dtd)8718 START_TEST(test_alloc_set_foreign_dtd) {
8719 const char *text1 = "<?xml version='1.0' encoding='us-ascii'?>\n"
8720 "<doc>&entity;</doc>";
8721 char text2[] = "<!ELEMENT doc (#PCDATA)*>";
8722 int i;
8723 const int max_alloc_count = 25;
8724
8725 for (i = 0; i < max_alloc_count; i++) {
8726 allocation_count = i;
8727 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
8728 XML_SetUserData(g_parser, &text2);
8729 XML_SetExternalEntityRefHandler(g_parser, external_entity_alloc);
8730 if (XML_UseForeignDTD(g_parser, XML_TRUE) != XML_ERROR_NONE)
8731 fail("Could not set foreign DTD");
8732 if (_XML_Parse_SINGLE_BYTES(g_parser, text1, (int)strlen(text1), XML_TRUE)
8733 != XML_STATUS_ERROR)
8734 break;
8735 /* See comment in test_alloc_parse_xdecl() */
8736 alloc_teardown();
8737 alloc_setup();
8738 }
8739 if (i == 0)
8740 fail("Parse succeeded despite failing allocator");
8741 if (i == max_alloc_count)
8742 fail("Parse failed at maximum allocation count");
8743 }
8744 END_TEST
8745
8746 /* Test based on ibm/valid/P32/ibm32v04.xml */
START_TEST(test_alloc_attribute_enum_value)8747 START_TEST(test_alloc_attribute_enum_value) {
8748 const char *text = "<?xml version='1.0' standalone='no'?>\n"
8749 "<!DOCTYPE animal SYSTEM 'test.dtd'>\n"
8750 "<animal>This is a \n <a/> \n\nyellow tiger</animal>";
8751 char dtd_text[] = "<!ELEMENT animal (#PCDATA|a)*>\n"
8752 "<!ELEMENT a EMPTY>\n"
8753 "<!ATTLIST animal xml:space (default|preserve) 'preserve'>";
8754 int i;
8755 const int max_alloc_count = 30;
8756
8757 for (i = 0; i < max_alloc_count; i++) {
8758 allocation_count = i;
8759 XML_SetExternalEntityRefHandler(g_parser, external_entity_alloc);
8760 XML_SetUserData(g_parser, dtd_text);
8761 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
8762 /* An attribute list handler provokes a different code path */
8763 XML_SetAttlistDeclHandler(g_parser, dummy_attlist_decl_handler);
8764 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
8765 != XML_STATUS_ERROR)
8766 break;
8767 /* See comment in test_alloc_parse_xdecl() */
8768 alloc_teardown();
8769 alloc_setup();
8770 }
8771 if (i == 0)
8772 fail("Parse succeeded despite failing allocator");
8773 if (i == max_alloc_count)
8774 fail("Parse failed at maximum allocation count");
8775 }
8776 END_TEST
8777
8778 /* Test attribute enums sufficient to overflow the string pool */
START_TEST(test_alloc_realloc_attribute_enum_value)8779 START_TEST(test_alloc_realloc_attribute_enum_value) {
8780 const char *text = "<?xml version='1.0' standalone='no'?>\n"
8781 "<!DOCTYPE animal SYSTEM 'test.dtd'>\n"
8782 "<animal>This is a yellow tiger</animal>";
8783 /* We wish to define a collection of attribute enums that will
8784 * cause the string pool storing them to have to expand. This
8785 * means more than 1024 bytes, including the parentheses and
8786 * separator bars.
8787 */
8788 char dtd_text[]
8789 = "<!ELEMENT animal (#PCDATA)*>\n"
8790 "<!ATTLIST animal thing "
8791 "(default"
8792 /* Each line is 64 characters */
8793 "|ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8794 "|BBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8795 "|CBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8796 "|DBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8797 "|EBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8798 "|FBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8799 "|GBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8800 "|HBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8801 "|IBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8802 "|JBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8803 "|KBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8804 "|LBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8805 "|MBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8806 "|NBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8807 "|OBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8808 "|PBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO)"
8809 " 'default'>";
8810 int i;
8811 const int max_realloc_count = 10;
8812
8813 for (i = 0; i < max_realloc_count; i++) {
8814 reallocation_count = i;
8815 XML_SetExternalEntityRefHandler(g_parser, external_entity_alloc);
8816 XML_SetUserData(g_parser, dtd_text);
8817 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
8818 /* An attribute list handler provokes a different code path */
8819 XML_SetAttlistDeclHandler(g_parser, dummy_attlist_decl_handler);
8820 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
8821 != XML_STATUS_ERROR)
8822 break;
8823 /* See comment in test_alloc_parse_xdecl() */
8824 alloc_teardown();
8825 alloc_setup();
8826 }
8827 if (i == 0)
8828 fail("Parse succeeded despite failing reallocator");
8829 if (i == max_realloc_count)
8830 fail("Parse failed at maximum reallocation count");
8831 }
8832 END_TEST
8833
8834 /* Test attribute enums in a #IMPLIED attribute forcing pool growth */
START_TEST(test_alloc_realloc_implied_attribute)8835 START_TEST(test_alloc_realloc_implied_attribute) {
8836 /* Forcing this particular code path is a balancing act. The
8837 * addition of the closing parenthesis and terminal NUL must be
8838 * what pushes the string of enums over the 1024-byte limit,
8839 * otherwise a different code path will pick up the realloc.
8840 */
8841 const char *text
8842 = "<!DOCTYPE doc [\n"
8843 "<!ELEMENT doc EMPTY>\n"
8844 "<!ATTLIST doc a "
8845 /* Each line is 64 characters */
8846 "(ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8847 "|BBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8848 "|CBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8849 "|DBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8850 "|EBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8851 "|FBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8852 "|GBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8853 "|HBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8854 "|IBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8855 "|JBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8856 "|KBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8857 "|LBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8858 "|MBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8859 "|NBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8860 "|OBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8861 "|PBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMN)"
8862 " #IMPLIED>\n"
8863 "]><doc/>";
8864 int i;
8865 const int max_realloc_count = 10;
8866
8867 for (i = 0; i < max_realloc_count; i++) {
8868 reallocation_count = i;
8869 XML_SetAttlistDeclHandler(g_parser, dummy_attlist_decl_handler);
8870 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
8871 != XML_STATUS_ERROR)
8872 break;
8873 /* See comment in test_alloc_parse_xdecl() */
8874 alloc_teardown();
8875 alloc_setup();
8876 }
8877 if (i == 0)
8878 fail("Parse succeeded despite failing reallocator");
8879 if (i == max_realloc_count)
8880 fail("Parse failed at maximum reallocation count");
8881 }
8882 END_TEST
8883
8884 /* Test attribute enums in a defaulted attribute forcing pool growth */
START_TEST(test_alloc_realloc_default_attribute)8885 START_TEST(test_alloc_realloc_default_attribute) {
8886 /* Forcing this particular code path is a balancing act. The
8887 * addition of the closing parenthesis and terminal NUL must be
8888 * what pushes the string of enums over the 1024-byte limit,
8889 * otherwise a different code path will pick up the realloc.
8890 */
8891 const char *text
8892 = "<!DOCTYPE doc [\n"
8893 "<!ELEMENT doc EMPTY>\n"
8894 "<!ATTLIST doc a "
8895 /* Each line is 64 characters */
8896 "(ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8897 "|BBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8898 "|CBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8899 "|DBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8900 "|EBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8901 "|FBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8902 "|GBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8903 "|HBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8904 "|IBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8905 "|JBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8906 "|KBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8907 "|LBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8908 "|MBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8909 "|NBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8910 "|OBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO"
8911 "|PBCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMN)"
8912 " 'ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNO'"
8913 ">\n]><doc/>";
8914 int i;
8915 const int max_realloc_count = 10;
8916
8917 for (i = 0; i < max_realloc_count; i++) {
8918 reallocation_count = i;
8919 XML_SetAttlistDeclHandler(g_parser, dummy_attlist_decl_handler);
8920 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
8921 != XML_STATUS_ERROR)
8922 break;
8923 /* See comment in test_alloc_parse_xdecl() */
8924 alloc_teardown();
8925 alloc_setup();
8926 }
8927 if (i == 0)
8928 fail("Parse succeeded despite failing reallocator");
8929 if (i == max_realloc_count)
8930 fail("Parse failed at maximum reallocation count");
8931 }
8932 END_TEST
8933
8934 /* Test long notation name with dodgy allocator */
START_TEST(test_alloc_notation)8935 START_TEST(test_alloc_notation) {
8936 const char *text
8937 = "<!DOCTYPE doc [\n"
8938 "<!NOTATION "
8939 /* Each line is 64 characters */
8940 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8941 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8942 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8943 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8944 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8945 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8946 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8947 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8948 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8949 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8950 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8951 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8952 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8953 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8954 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8955 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8956 " SYSTEM 'http://example.org/n'>\n"
8957 "<!ENTITY e SYSTEM 'http://example.org/e' NDATA "
8958 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8959 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8960 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8961 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8962 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8963 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8964 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8965 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8966 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8967 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8968 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8969 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8970 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8971 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8972 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8973 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
8974 ">\n"
8975 "<!ELEMENT doc EMPTY>\n"
8976 "]>\n<doc/>";
8977 int i;
8978 const int max_alloc_count = 20;
8979
8980 for (i = 0; i < max_alloc_count; i++) {
8981 allocation_count = i;
8982 dummy_handler_flags = 0;
8983 XML_SetNotationDeclHandler(g_parser, dummy_notation_decl_handler);
8984 XML_SetEntityDeclHandler(g_parser, dummy_entity_decl_handler);
8985 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
8986 != XML_STATUS_ERROR)
8987 break;
8988 /* See comment in test_alloc_parse_xdecl() */
8989 alloc_teardown();
8990 alloc_setup();
8991 }
8992 if (i == 0)
8993 fail("Parse succeeded despite allocation failures");
8994 if (i == max_alloc_count)
8995 fail("Parse failed at maximum allocation count");
8996 if (dummy_handler_flags
8997 != (DUMMY_ENTITY_DECL_HANDLER_FLAG | DUMMY_NOTATION_DECL_HANDLER_FLAG))
8998 fail("Entity declaration handler not called");
8999 }
9000 END_TEST
9001
9002 /* Test public notation with dodgy allocator */
START_TEST(test_alloc_public_notation)9003 START_TEST(test_alloc_public_notation) {
9004 const char *text
9005 = "<!DOCTYPE doc [\n"
9006 "<!NOTATION note PUBLIC '"
9007 /* 64 characters per line */
9008 "http://example.com/a/long/enough/name/to/trigger/pool/growth/zz/"
9009 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9010 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9011 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9012 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9013 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9014 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9015 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9016 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9017 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9018 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9019 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9020 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9021 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9022 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9023 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9024 "' 'foo'>\n"
9025 "<!ENTITY e SYSTEM 'http://example.com/e' NDATA note>\n"
9026 "<!ELEMENT doc EMPTY>\n"
9027 "]>\n<doc/>";
9028 int i;
9029 const int max_alloc_count = 20;
9030
9031 for (i = 0; i < max_alloc_count; i++) {
9032 allocation_count = i;
9033 dummy_handler_flags = 0;
9034 XML_SetNotationDeclHandler(g_parser, dummy_notation_decl_handler);
9035 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9036 != XML_STATUS_ERROR)
9037 break;
9038 /* See comment in test_alloc_parse_xdecl() */
9039 alloc_teardown();
9040 alloc_setup();
9041 }
9042 if (i == 0)
9043 fail("Parse succeeded despite allocation failures");
9044 if (i == max_alloc_count)
9045 fail("Parse failed at maximum allocation count");
9046 if (dummy_handler_flags != DUMMY_NOTATION_DECL_HANDLER_FLAG)
9047 fail("Notation handler not called");
9048 }
9049 END_TEST
9050
9051 /* Test public notation with dodgy allocator */
START_TEST(test_alloc_system_notation)9052 START_TEST(test_alloc_system_notation) {
9053 const char *text
9054 = "<!DOCTYPE doc [\n"
9055 "<!NOTATION note SYSTEM '"
9056 /* 64 characters per line */
9057 "http://example.com/a/long/enough/name/to/trigger/pool/growth/zz/"
9058 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9059 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9060 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9061 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9062 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9063 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9064 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9065 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9066 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9067 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9068 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9069 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9070 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9071 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9072 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
9073 "'>\n"
9074 "<!ENTITY e SYSTEM 'http://example.com/e' NDATA note>\n"
9075 "<!ELEMENT doc EMPTY>\n"
9076 "]>\n<doc/>";
9077 int i;
9078 const int max_alloc_count = 20;
9079
9080 for (i = 0; i < max_alloc_count; i++) {
9081 allocation_count = i;
9082 dummy_handler_flags = 0;
9083 XML_SetNotationDeclHandler(g_parser, dummy_notation_decl_handler);
9084 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9085 != XML_STATUS_ERROR)
9086 break;
9087 /* See comment in test_alloc_parse_xdecl() */
9088 alloc_teardown();
9089 alloc_setup();
9090 }
9091 if (i == 0)
9092 fail("Parse succeeded despite allocation failures");
9093 if (i == max_alloc_count)
9094 fail("Parse failed at maximum allocation count");
9095 if (dummy_handler_flags != DUMMY_NOTATION_DECL_HANDLER_FLAG)
9096 fail("Notation handler not called");
9097 }
9098 END_TEST
9099
START_TEST(test_alloc_nested_groups)9100 START_TEST(test_alloc_nested_groups) {
9101 const char *text
9102 = "<!DOCTYPE doc [\n"
9103 "<!ELEMENT doc "
9104 /* Sixteen elements per line */
9105 "(e,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,"
9106 "(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?"
9107 "))))))))))))))))))))))))))))))))>\n"
9108 "<!ELEMENT e EMPTY>"
9109 "]>\n"
9110 "<doc><e/></doc>";
9111 CharData storage;
9112 int i;
9113 const int max_alloc_count = 20;
9114
9115 for (i = 0; i < max_alloc_count; i++) {
9116 allocation_count = i;
9117 CharData_Init(&storage);
9118 XML_SetElementDeclHandler(g_parser, dummy_element_decl_handler);
9119 XML_SetStartElementHandler(g_parser, record_element_start_handler);
9120 XML_SetUserData(g_parser, &storage);
9121 dummy_handler_flags = 0;
9122 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9123 != XML_STATUS_ERROR)
9124 break;
9125 /* See comment in test_alloc_parse_xdecl() */
9126 alloc_teardown();
9127 alloc_setup();
9128 }
9129
9130 if (i == 0)
9131 fail("Parse succeeded despite failing reallocator");
9132 if (i == max_alloc_count)
9133 fail("Parse failed at maximum reallocation count");
9134 CharData_CheckXMLChars(&storage, XCS("doce"));
9135 if (dummy_handler_flags != DUMMY_ELEMENT_DECL_HANDLER_FLAG)
9136 fail("Element handler not fired");
9137 }
9138 END_TEST
9139
START_TEST(test_alloc_realloc_nested_groups)9140 START_TEST(test_alloc_realloc_nested_groups) {
9141 const char *text
9142 = "<!DOCTYPE doc [\n"
9143 "<!ELEMENT doc "
9144 /* Sixteen elements per line */
9145 "(e,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,"
9146 "(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?,(e?"
9147 "))))))))))))))))))))))))))))))))>\n"
9148 "<!ELEMENT e EMPTY>"
9149 "]>\n"
9150 "<doc><e/></doc>";
9151 CharData storage;
9152 int i;
9153 const int max_realloc_count = 10;
9154
9155 for (i = 0; i < max_realloc_count; i++) {
9156 reallocation_count = i;
9157 CharData_Init(&storage);
9158 XML_SetElementDeclHandler(g_parser, dummy_element_decl_handler);
9159 XML_SetStartElementHandler(g_parser, record_element_start_handler);
9160 XML_SetUserData(g_parser, &storage);
9161 dummy_handler_flags = 0;
9162 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9163 != XML_STATUS_ERROR)
9164 break;
9165 /* See comment in test_alloc_parse_xdecl() */
9166 alloc_teardown();
9167 alloc_setup();
9168 }
9169
9170 if (i == 0)
9171 fail("Parse succeeded despite failing reallocator");
9172 if (i == max_realloc_count)
9173 fail("Parse failed at maximum reallocation count");
9174 CharData_CheckXMLChars(&storage, XCS("doce"));
9175 if (dummy_handler_flags != DUMMY_ELEMENT_DECL_HANDLER_FLAG)
9176 fail("Element handler not fired");
9177 }
9178 END_TEST
9179
START_TEST(test_alloc_large_group)9180 START_TEST(test_alloc_large_group) {
9181 const char *text = "<!DOCTYPE doc [\n"
9182 "<!ELEMENT doc ("
9183 "a1|a2|a3|a4|a5|a6|a7|a8|"
9184 "b1|b2|b3|b4|b5|b6|b7|b8|"
9185 "c1|c2|c3|c4|c5|c6|c7|c8|"
9186 "d1|d2|d3|d4|d5|d6|d7|d8|"
9187 "e1"
9188 ")+>\n"
9189 "]>\n"
9190 "<doc>\n"
9191 "<a1/>\n"
9192 "</doc>\n";
9193 int i;
9194 const int max_alloc_count = 50;
9195
9196 for (i = 0; i < max_alloc_count; i++) {
9197 allocation_count = i;
9198 XML_SetElementDeclHandler(g_parser, dummy_element_decl_handler);
9199 dummy_handler_flags = 0;
9200 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9201 != XML_STATUS_ERROR)
9202 break;
9203 /* See comment in test_alloc_parse_xdecl() */
9204 alloc_teardown();
9205 alloc_setup();
9206 }
9207 if (i == 0)
9208 fail("Parse succeeded despite failing allocator");
9209 if (i == max_alloc_count)
9210 fail("Parse failed at maximum allocation count");
9211 if (dummy_handler_flags != DUMMY_ELEMENT_DECL_HANDLER_FLAG)
9212 fail("Element handler flag not raised");
9213 }
9214 END_TEST
9215
START_TEST(test_alloc_realloc_group_choice)9216 START_TEST(test_alloc_realloc_group_choice) {
9217 const char *text = "<!DOCTYPE doc [\n"
9218 "<!ELEMENT doc ("
9219 "a1|a2|a3|a4|a5|a6|a7|a8|"
9220 "b1|b2|b3|b4|b5|b6|b7|b8|"
9221 "c1|c2|c3|c4|c5|c6|c7|c8|"
9222 "d1|d2|d3|d4|d5|d6|d7|d8|"
9223 "e1"
9224 ")+>\n"
9225 "]>\n"
9226 "<doc>\n"
9227 "<a1/>\n"
9228 "<b2 attr='foo'>This is a foo</b2>\n"
9229 "<c3></c3>\n"
9230 "</doc>\n";
9231 int i;
9232 const int max_realloc_count = 10;
9233
9234 for (i = 0; i < max_realloc_count; i++) {
9235 reallocation_count = i;
9236 XML_SetElementDeclHandler(g_parser, dummy_element_decl_handler);
9237 dummy_handler_flags = 0;
9238 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9239 != XML_STATUS_ERROR)
9240 break;
9241 /* See comment in test_alloc_parse_xdecl() */
9242 alloc_teardown();
9243 alloc_setup();
9244 }
9245 if (i == 0)
9246 fail("Parse succeeded despite failing reallocator");
9247 if (i == max_realloc_count)
9248 fail("Parse failed at maximum reallocation count");
9249 if (dummy_handler_flags != DUMMY_ELEMENT_DECL_HANDLER_FLAG)
9250 fail("Element handler flag not raised");
9251 }
9252 END_TEST
9253
START_TEST(test_alloc_pi_in_epilog)9254 START_TEST(test_alloc_pi_in_epilog) {
9255 const char *text = "<doc></doc>\n"
9256 "<?pi in epilog?>";
9257 int i;
9258 const int max_alloc_count = 15;
9259
9260 for (i = 0; i < max_alloc_count; i++) {
9261 allocation_count = i;
9262 XML_SetProcessingInstructionHandler(g_parser, dummy_pi_handler);
9263 dummy_handler_flags = 0;
9264 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9265 != XML_STATUS_ERROR)
9266 break;
9267 /* See comment in test_alloc_parse_xdecl() */
9268 alloc_teardown();
9269 alloc_setup();
9270 }
9271 if (i == 0)
9272 fail("Parse completed despite failing allocator");
9273 if (i == max_alloc_count)
9274 fail("Parse failed at maximum allocation count");
9275 if (dummy_handler_flags != DUMMY_PI_HANDLER_FLAG)
9276 fail("Processing instruction handler not invoked");
9277 }
9278 END_TEST
9279
START_TEST(test_alloc_comment_in_epilog)9280 START_TEST(test_alloc_comment_in_epilog) {
9281 const char *text = "<doc></doc>\n"
9282 "<!-- comment in epilog -->";
9283 int i;
9284 const int max_alloc_count = 15;
9285
9286 for (i = 0; i < max_alloc_count; i++) {
9287 allocation_count = i;
9288 XML_SetCommentHandler(g_parser, dummy_comment_handler);
9289 dummy_handler_flags = 0;
9290 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9291 != XML_STATUS_ERROR)
9292 break;
9293 /* See comment in test_alloc_parse_xdecl() */
9294 alloc_teardown();
9295 alloc_setup();
9296 }
9297 if (i == 0)
9298 fail("Parse completed despite failing allocator");
9299 if (i == max_alloc_count)
9300 fail("Parse failed at maximum allocation count");
9301 if (dummy_handler_flags != DUMMY_COMMENT_HANDLER_FLAG)
9302 fail("Processing instruction handler not invoked");
9303 }
9304 END_TEST
9305
START_TEST(test_alloc_realloc_long_attribute_value)9306 START_TEST(test_alloc_realloc_long_attribute_value) {
9307 const char *text
9308 = "<!DOCTYPE doc [<!ENTITY foo '"
9309 /* Each line is 64 characters */
9310 "This entity will be substituted as an attribute value, and is "
9311 "calculated to be exactly long enough that the terminating NUL "
9312 "that the library adds internally will trigger the string pool to"
9313 "grow. GHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9314 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9315 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9316 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9317 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9318 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9319 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9320 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9321 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9322 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9323 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9324 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9325 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9326 "'>]>\n"
9327 "<doc a='&foo;'></doc>";
9328 int i;
9329 const int max_realloc_count = 10;
9330
9331 for (i = 0; i < max_realloc_count; i++) {
9332 reallocation_count = i;
9333 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9334 != XML_STATUS_ERROR)
9335 break;
9336 /* See comment in test_alloc_parse_xdecl() */
9337 alloc_teardown();
9338 alloc_setup();
9339 }
9340 if (i == 0)
9341 fail("Parse succeeded despite failing reallocator");
9342 if (i == max_realloc_count)
9343 fail("Parse failed at maximum reallocation count");
9344 }
9345 END_TEST
9346
START_TEST(test_alloc_attribute_whitespace)9347 START_TEST(test_alloc_attribute_whitespace) {
9348 const char *text = "<doc a=' '></doc>";
9349 int i;
9350 const int max_alloc_count = 15;
9351
9352 for (i = 0; i < max_alloc_count; i++) {
9353 allocation_count = i;
9354 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9355 != XML_STATUS_ERROR)
9356 break;
9357 /* See comment in test_alloc_parse_xdecl() */
9358 alloc_teardown();
9359 alloc_setup();
9360 }
9361 if (i == 0)
9362 fail("Parse succeeded despite failing allocator");
9363 if (i == max_alloc_count)
9364 fail("Parse failed at maximum allocation count");
9365 }
9366 END_TEST
9367
START_TEST(test_alloc_attribute_predefined_entity)9368 START_TEST(test_alloc_attribute_predefined_entity) {
9369 const char *text = "<doc a='&'></doc>";
9370 int i;
9371 const int max_alloc_count = 15;
9372
9373 for (i = 0; i < max_alloc_count; i++) {
9374 allocation_count = i;
9375 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9376 != XML_STATUS_ERROR)
9377 break;
9378 /* See comment in test_alloc_parse_xdecl() */
9379 alloc_teardown();
9380 alloc_setup();
9381 }
9382 if (i == 0)
9383 fail("Parse succeeded despite failing allocator");
9384 if (i == max_alloc_count)
9385 fail("Parse failed at maximum allocation count");
9386 }
9387 END_TEST
9388
9389 /* Test that a character reference at the end of a suitably long
9390 * default value for an attribute can trigger pool growth, and recovers
9391 * if the allocator fails on it.
9392 */
START_TEST(test_alloc_long_attr_default_with_char_ref)9393 START_TEST(test_alloc_long_attr_default_with_char_ref) {
9394 const char *text
9395 = "<!DOCTYPE doc [<!ATTLIST doc a CDATA '"
9396 /* 64 characters per line */
9397 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9398 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9399 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9400 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9401 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9402 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9403 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9404 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9405 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9406 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9407 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9408 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9409 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9410 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9411 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9412 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHI"
9413 "1'>]>\n"
9414 "<doc/>";
9415 int i;
9416 const int max_alloc_count = 20;
9417
9418 for (i = 0; i < max_alloc_count; i++) {
9419 allocation_count = i;
9420 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9421 != XML_STATUS_ERROR)
9422 break;
9423 /* See comment in test_alloc_parse_xdecl() */
9424 alloc_teardown();
9425 alloc_setup();
9426 }
9427 if (i == 0)
9428 fail("Parse succeeded despite failing allocator");
9429 if (i == max_alloc_count)
9430 fail("Parse failed at maximum allocation count");
9431 }
9432 END_TEST
9433
9434 /* Test that a long character reference substitution triggers a pool
9435 * expansion correctly for an attribute value.
9436 */
START_TEST(test_alloc_long_attr_value)9437 START_TEST(test_alloc_long_attr_value) {
9438 const char *text
9439 = "<!DOCTYPE test [<!ENTITY foo '\n"
9440 /* 64 characters per line */
9441 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9442 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9443 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9444 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9445 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9446 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9447 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9448 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9449 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9450 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9451 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9452 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9453 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9454 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9455 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9456 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9457 "'>]>\n"
9458 "<test a='&foo;'/>";
9459 int i;
9460 const int max_alloc_count = 25;
9461
9462 for (i = 0; i < max_alloc_count; i++) {
9463 allocation_count = i;
9464 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9465 != XML_STATUS_ERROR)
9466 break;
9467 /* See comment in test_alloc_parse_xdecl() */
9468 alloc_teardown();
9469 alloc_setup();
9470 }
9471 if (i == 0)
9472 fail("Parse succeeded despite failing allocator");
9473 if (i == max_alloc_count)
9474 fail("Parse failed at maximum allocation count");
9475 }
9476 END_TEST
9477
9478 /* Test that an error in a nested parameter entity substitution is
9479 * handled correctly. It seems unlikely that the code path being
9480 * exercised can be reached purely by carefully crafted XML, but an
9481 * allocation error in the right place will definitely do it.
9482 */
START_TEST(test_alloc_nested_entities)9483 START_TEST(test_alloc_nested_entities) {
9484 const char *text = "<!DOCTYPE doc SYSTEM 'http://example.org/one.ent'>\n"
9485 "<doc />";
9486 ExtFaults test_data
9487 = {"<!ENTITY % pe1 '"
9488 /* 64 characters per line */
9489 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9490 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9491 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9492 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9493 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9494 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9495 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9496 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9497 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9498 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9499 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9500 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9501 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9502 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9503 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9504 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9505 "'>\n"
9506 "<!ENTITY % pe2 '%pe1;'>\n"
9507 "%pe2;",
9508 "Memory Fail not faulted", NULL, XML_ERROR_NO_MEMORY};
9509
9510 /* Causes an allocation error in a nested storeEntityValue() */
9511 allocation_count = 12;
9512 XML_SetUserData(g_parser, &test_data);
9513 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
9514 XML_SetExternalEntityRefHandler(g_parser, external_entity_faulter);
9515 expect_failure(text, XML_ERROR_EXTERNAL_ENTITY_HANDLING,
9516 "Entity allocation failure not noted");
9517 }
9518 END_TEST
9519
START_TEST(test_alloc_realloc_param_entity_newline)9520 START_TEST(test_alloc_realloc_param_entity_newline) {
9521 const char *text = "<!DOCTYPE doc SYSTEM 'http://example.org/'>\n"
9522 "<doc/>";
9523 char dtd_text[]
9524 = "<!ENTITY % pe '<!ATTLIST doc att CDATA \""
9525 /* 64 characters per line */
9526 "This default value is carefully crafted so that the carriage "
9527 "return right at the end of the entity string causes an internal "
9528 "string pool to have to grow. This allows us to test the alloc "
9529 "failure path from that point. OPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9530 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9531 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9532 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9533 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9534 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9535 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9536 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9537 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9538 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9539 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9540 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9541 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDE"
9542 "\">\n'>"
9543 "%pe;\n";
9544 int i;
9545 const int max_realloc_count = 5;
9546
9547 for (i = 0; i < max_realloc_count; i++) {
9548 reallocation_count = i;
9549 XML_SetUserData(g_parser, dtd_text);
9550 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
9551 XML_SetExternalEntityRefHandler(g_parser, external_entity_alloc);
9552 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9553 != XML_STATUS_ERROR)
9554 break;
9555 /* See comment in test_alloc_parse_xdecl() */
9556 alloc_teardown();
9557 alloc_setup();
9558 }
9559 if (i == 0)
9560 fail("Parse succeeded despite failing reallocator");
9561 if (i == max_realloc_count)
9562 fail("Parse failed at maximum reallocation count");
9563 }
9564 END_TEST
9565
START_TEST(test_alloc_realloc_ce_extends_pe)9566 START_TEST(test_alloc_realloc_ce_extends_pe) {
9567 const char *text = "<!DOCTYPE doc SYSTEM 'http://example.org/'>\n"
9568 "<doc/>";
9569 char dtd_text[]
9570 = "<!ENTITY % pe '<!ATTLIST doc att CDATA \""
9571 /* 64 characters per line */
9572 "This default value is carefully crafted so that the character "
9573 "entity at the end causes an internal string pool to have to "
9574 "grow. This allows us to test the allocation failure path from "
9575 "that point onwards. EFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9576 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9577 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9578 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9579 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9580 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9581 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9582 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9583 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9584 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9585 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9586 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
9587 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGQ"
9588 "\">\n'>"
9589 "%pe;\n";
9590 int i;
9591 const int max_realloc_count = 5;
9592
9593 for (i = 0; i < max_realloc_count; i++) {
9594 reallocation_count = i;
9595 XML_SetUserData(g_parser, dtd_text);
9596 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
9597 XML_SetExternalEntityRefHandler(g_parser, external_entity_alloc);
9598 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9599 != XML_STATUS_ERROR)
9600 break;
9601 /* See comment in test_alloc_parse_xdecl() */
9602 alloc_teardown();
9603 alloc_setup();
9604 }
9605 if (i == 0)
9606 fail("Parse succeeded despite failing reallocator");
9607 if (i == max_realloc_count)
9608 fail("Parse failed at maximum reallocation count");
9609 }
9610 END_TEST
9611
START_TEST(test_alloc_realloc_attributes)9612 START_TEST(test_alloc_realloc_attributes) {
9613 const char *text = "<!DOCTYPE doc [\n"
9614 " <!ATTLIST doc\n"
9615 " a1 (a|b|c) 'a'\n"
9616 " a2 (foo|bar) #IMPLIED\n"
9617 " a3 NMTOKEN #IMPLIED\n"
9618 " a4 NMTOKENS #IMPLIED\n"
9619 " a5 ID #IMPLIED\n"
9620 " a6 IDREF #IMPLIED\n"
9621 " a7 IDREFS #IMPLIED\n"
9622 " a8 ENTITY #IMPLIED\n"
9623 " a9 ENTITIES #IMPLIED\n"
9624 " a10 CDATA #IMPLIED\n"
9625 " >]>\n"
9626 "<doc>wombat</doc>\n";
9627 int i;
9628 const int max_realloc_count = 5;
9629
9630 for (i = 0; i < max_realloc_count; i++) {
9631 reallocation_count = i;
9632 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9633 != XML_STATUS_ERROR)
9634 break;
9635 /* See comment in test_alloc_parse_xdecl() */
9636 alloc_teardown();
9637 alloc_setup();
9638 }
9639
9640 if (i == 0)
9641 fail("Parse succeeded despite failing reallocator");
9642 if (i == max_realloc_count)
9643 fail("Parse failed at maximum reallocation count");
9644 }
9645 END_TEST
9646
START_TEST(test_alloc_long_doc_name)9647 START_TEST(test_alloc_long_doc_name) {
9648 const char *text =
9649 /* 64 characters per line */
9650 "<LongRootElementNameThatWillCauseTheNextAllocationToExpandTheStr"
9651 "ingPoolForTheDTDQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
9652 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
9653 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
9654 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
9655 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
9656 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
9657 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
9658 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
9659 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
9660 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
9661 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
9662 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
9663 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
9664 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
9665 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
9666 " a='1'/>";
9667 int i;
9668 const int max_alloc_count = 20;
9669
9670 for (i = 0; i < max_alloc_count; i++) {
9671 allocation_count = i;
9672 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9673 != XML_STATUS_ERROR)
9674 break;
9675 /* See comment in test_alloc_parse_xdecl() */
9676 alloc_teardown();
9677 alloc_setup();
9678 }
9679 if (i == 0)
9680 fail("Parsing worked despite failing reallocations");
9681 else if (i == max_alloc_count)
9682 fail("Parsing failed even at max reallocation count");
9683 }
9684 END_TEST
9685
START_TEST(test_alloc_long_base)9686 START_TEST(test_alloc_long_base) {
9687 const char *text = "<!DOCTYPE doc [\n"
9688 " <!ENTITY e SYSTEM 'foo'>\n"
9689 "]>\n"
9690 "<doc>&e;</doc>";
9691 char entity_text[] = "Hello world";
9692 const XML_Char *base =
9693 /* 64 characters per line */
9694 /* clang-format off */
9695 XCS("LongBaseURI/that/will/overflow/an/internal/buffer/and/cause/it/t")
9696 XCS("o/have/to/grow/PQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/")
9697 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/")
9698 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/")
9699 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/")
9700 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/")
9701 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/")
9702 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/")
9703 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/")
9704 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/")
9705 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/")
9706 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/")
9707 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/")
9708 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/")
9709 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/")
9710 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/");
9711 /* clang-format on */
9712 int i;
9713 const int max_alloc_count = 25;
9714
9715 for (i = 0; i < max_alloc_count; i++) {
9716 allocation_count = i;
9717 XML_SetUserData(g_parser, entity_text);
9718 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
9719 XML_SetExternalEntityRefHandler(g_parser, external_entity_alloc);
9720 if (XML_SetBase(g_parser, base) == XML_STATUS_ERROR) {
9721 XML_ParserReset(g_parser, NULL);
9722 continue;
9723 }
9724 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9725 != XML_STATUS_ERROR)
9726 break;
9727 /* See comment in test_alloc_parse_xdecl() */
9728 alloc_teardown();
9729 alloc_setup();
9730 }
9731 if (i == 0)
9732 fail("Parsing worked despite failing allocations");
9733 else if (i == max_alloc_count)
9734 fail("Parsing failed even at max allocation count");
9735 }
9736 END_TEST
9737
START_TEST(test_alloc_long_public_id)9738 START_TEST(test_alloc_long_public_id) {
9739 const char *text
9740 = "<!DOCTYPE doc [\n"
9741 " <!ENTITY e PUBLIC '"
9742 /* 64 characters per line */
9743 "LongPublicIDThatShouldResultInAnInternalStringPoolGrowingAtASpec"
9744 "ificMomentKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9745 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9746 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9747 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9748 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9749 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9750 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9751 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9752 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9753 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9754 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9755 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9756 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9757 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9758 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9759 "' 'bar'>\n"
9760 "]>\n"
9761 "<doc>&e;</doc>";
9762 char entity_text[] = "Hello world";
9763 int i;
9764 const int max_alloc_count = 40;
9765
9766 for (i = 0; i < max_alloc_count; i++) {
9767 allocation_count = i;
9768 XML_SetUserData(g_parser, entity_text);
9769 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
9770 XML_SetExternalEntityRefHandler(g_parser, external_entity_alloc);
9771 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9772 != XML_STATUS_ERROR)
9773 break;
9774 /* See comment in test_alloc_parse_xdecl() */
9775 alloc_teardown();
9776 alloc_setup();
9777 }
9778 if (i == 0)
9779 fail("Parsing worked despite failing allocations");
9780 else if (i == max_alloc_count)
9781 fail("Parsing failed even at max allocation count");
9782 }
9783 END_TEST
9784
START_TEST(test_alloc_long_entity_value)9785 START_TEST(test_alloc_long_entity_value) {
9786 const char *text
9787 = "<!DOCTYPE doc [\n"
9788 " <!ENTITY e1 '"
9789 /* 64 characters per line */
9790 "Long entity value that should provoke a string pool to grow whil"
9791 "e setting up to parse the external entity below. xyz0123456789AB"
9792 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9793 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9794 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9795 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9796 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9797 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9798 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9799 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9800 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9801 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9802 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9803 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9804 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9805 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9806 "'>\n"
9807 " <!ENTITY e2 SYSTEM 'bar'>\n"
9808 "]>\n"
9809 "<doc>&e2;</doc>";
9810 char entity_text[] = "Hello world";
9811 int i;
9812 const int max_alloc_count = 40;
9813
9814 for (i = 0; i < max_alloc_count; i++) {
9815 allocation_count = i;
9816 XML_SetUserData(g_parser, entity_text);
9817 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
9818 XML_SetExternalEntityRefHandler(g_parser, external_entity_alloc);
9819 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9820 != XML_STATUS_ERROR)
9821 break;
9822 /* See comment in test_alloc_parse_xdecl() */
9823 alloc_teardown();
9824 alloc_setup();
9825 }
9826 if (i == 0)
9827 fail("Parsing worked despite failing allocations");
9828 else if (i == max_alloc_count)
9829 fail("Parsing failed even at max allocation count");
9830 }
9831 END_TEST
9832
START_TEST(test_alloc_long_notation)9833 START_TEST(test_alloc_long_notation) {
9834 const char *text
9835 = "<!DOCTYPE doc [\n"
9836 " <!NOTATION note SYSTEM '"
9837 /* 64 characters per line */
9838 "ALongNotationNameThatShouldProvokeStringPoolGrowthWhileCallingAn"
9839 "ExternalEntityParserUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9840 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9841 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9842 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9843 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9844 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9845 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9846 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9847 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9848 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9849 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9850 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9851 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9852 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9853 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9854 "'>\n"
9855 " <!ENTITY e1 SYSTEM 'foo' NDATA "
9856 /* 64 characters per line */
9857 "ALongNotationNameThatShouldProvokeStringPoolGrowthWhileCallingAn"
9858 "ExternalEntityParserUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9859 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9860 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9861 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9862 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9863 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9864 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9865 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9866 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9867 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9868 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9869 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9870 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9871 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9872 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AB"
9873 ">\n"
9874 " <!ENTITY e2 SYSTEM 'bar'>\n"
9875 "]>\n"
9876 "<doc>&e2;</doc>";
9877 ExtOption options[]
9878 = {{XCS("foo"), "Entity Foo"}, {XCS("bar"), "Entity Bar"}, {NULL, NULL}};
9879 int i;
9880 const int max_alloc_count = 40;
9881
9882 for (i = 0; i < max_alloc_count; i++) {
9883 allocation_count = i;
9884 XML_SetUserData(g_parser, options);
9885 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
9886 XML_SetExternalEntityRefHandler(g_parser, external_entity_optioner);
9887 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9888 != XML_STATUS_ERROR)
9889 break;
9890
9891 /* See comment in test_alloc_parse_xdecl() */
9892 alloc_teardown();
9893 alloc_setup();
9894 }
9895 if (i == 0)
9896 fail("Parsing worked despite failing allocations");
9897 else if (i == max_alloc_count)
9898 fail("Parsing failed even at max allocation count");
9899 }
9900 END_TEST
9901
9902 static void
nsalloc_setup(void)9903 nsalloc_setup(void) {
9904 XML_Memory_Handling_Suite memsuite = {duff_allocator, duff_reallocator, free};
9905 XML_Char ns_sep[2] = {' ', '\0'};
9906
9907 /* Ensure the parser creation will go through */
9908 allocation_count = ALLOC_ALWAYS_SUCCEED;
9909 reallocation_count = REALLOC_ALWAYS_SUCCEED;
9910 g_parser = XML_ParserCreate_MM(NULL, &memsuite, ns_sep);
9911 if (g_parser == NULL)
9912 fail("Parser not created");
9913 }
9914
9915 static void
nsalloc_teardown(void)9916 nsalloc_teardown(void) {
9917 basic_teardown();
9918 }
9919
9920 /* Test the effects of allocation failure in simple namespace parsing.
9921 * Based on test_ns_default_with_empty_uri()
9922 */
START_TEST(test_nsalloc_xmlns)9923 START_TEST(test_nsalloc_xmlns) {
9924 const char *text = "<doc xmlns='http://example.org/'>\n"
9925 " <e xmlns=''/>\n"
9926 "</doc>";
9927 unsigned int i;
9928 const unsigned int max_alloc_count = 30;
9929
9930 for (i = 0; i < max_alloc_count; i++) {
9931 allocation_count = i;
9932 /* Exercise more code paths with a default handler */
9933 XML_SetDefaultHandler(g_parser, dummy_default_handler);
9934 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
9935 != XML_STATUS_ERROR)
9936 break;
9937 /* Resetting the parser is insufficient, because some memory
9938 * allocations are cached within the parser. Instead we use
9939 * the teardown and setup routines to ensure that we have the
9940 * right sort of parser back in our hands.
9941 */
9942 nsalloc_teardown();
9943 nsalloc_setup();
9944 }
9945 if (i == 0)
9946 fail("Parsing worked despite failing allocations");
9947 else if (i == max_alloc_count)
9948 fail("Parsing failed even at maximum allocation count");
9949 }
9950 END_TEST
9951
9952 /* Test XML_ParseBuffer interface with namespace and a dicky allocator */
START_TEST(test_nsalloc_parse_buffer)9953 START_TEST(test_nsalloc_parse_buffer) {
9954 const char *text = "<doc>Hello</doc>";
9955 void *buffer;
9956
9957 /* Try a parse before the start of the world */
9958 /* (Exercises new code path) */
9959 if (XML_ParseBuffer(g_parser, 0, XML_FALSE) != XML_STATUS_ERROR)
9960 fail("Pre-init XML_ParseBuffer not faulted");
9961 if (XML_GetErrorCode(g_parser) != XML_ERROR_NO_BUFFER)
9962 fail("Pre-init XML_ParseBuffer faulted for wrong reason");
9963
9964 buffer = XML_GetBuffer(g_parser, 1 /* any small number greater than 0 */);
9965 if (buffer == NULL)
9966 fail("Could not acquire parse buffer");
9967
9968 allocation_count = 0;
9969 if (XML_ParseBuffer(g_parser, 0, XML_FALSE) != XML_STATUS_ERROR)
9970 fail("Pre-init XML_ParseBuffer not faulted");
9971 if (XML_GetErrorCode(g_parser) != XML_ERROR_NO_MEMORY)
9972 fail("Pre-init XML_ParseBuffer faulted for wrong reason");
9973
9974 /* Now with actual memory allocation */
9975 allocation_count = ALLOC_ALWAYS_SUCCEED;
9976 if (XML_ParseBuffer(g_parser, 0, XML_FALSE) != XML_STATUS_OK)
9977 xml_failure(g_parser);
9978
9979 /* Check that resuming an unsuspended parser is faulted */
9980 if (XML_ResumeParser(g_parser) != XML_STATUS_ERROR)
9981 fail("Resuming unsuspended parser not faulted");
9982 if (XML_GetErrorCode(g_parser) != XML_ERROR_NOT_SUSPENDED)
9983 xml_failure(g_parser);
9984
9985 /* Get the parser into suspended state */
9986 XML_SetCharacterDataHandler(g_parser, clearing_aborting_character_handler);
9987 resumable = XML_TRUE;
9988 buffer = XML_GetBuffer(g_parser, (int)strlen(text));
9989 if (buffer == NULL)
9990 fail("Could not acquire parse buffer");
9991 assert(buffer != NULL);
9992 memcpy(buffer, text, strlen(text));
9993 if (XML_ParseBuffer(g_parser, (int)strlen(text), XML_TRUE)
9994 != XML_STATUS_SUSPENDED)
9995 xml_failure(g_parser);
9996 if (XML_GetErrorCode(g_parser) != XML_ERROR_NONE)
9997 xml_failure(g_parser);
9998 if (XML_ParseBuffer(g_parser, (int)strlen(text), XML_TRUE)
9999 != XML_STATUS_ERROR)
10000 fail("Suspended XML_ParseBuffer not faulted");
10001 if (XML_GetErrorCode(g_parser) != XML_ERROR_SUSPENDED)
10002 xml_failure(g_parser);
10003 if (XML_GetBuffer(g_parser, (int)strlen(text)) != NULL)
10004 fail("Suspended XML_GetBuffer not faulted");
10005
10006 /* Get it going again and complete the world */
10007 XML_SetCharacterDataHandler(g_parser, NULL);
10008 if (XML_ResumeParser(g_parser) != XML_STATUS_OK)
10009 xml_failure(g_parser);
10010 if (XML_ParseBuffer(g_parser, (int)strlen(text), XML_TRUE)
10011 != XML_STATUS_ERROR)
10012 fail("Post-finishing XML_ParseBuffer not faulted");
10013 if (XML_GetErrorCode(g_parser) != XML_ERROR_FINISHED)
10014 xml_failure(g_parser);
10015 if (XML_GetBuffer(g_parser, (int)strlen(text)) != NULL)
10016 fail("Post-finishing XML_GetBuffer not faulted");
10017 }
10018 END_TEST
10019
10020 /* Check handling of long prefix names (pool growth) */
START_TEST(test_nsalloc_long_prefix)10021 START_TEST(test_nsalloc_long_prefix) {
10022 const char *text
10023 = "<"
10024 /* 64 characters per line */
10025 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10026 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10027 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10028 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10029 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10030 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10031 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10032 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10033 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10034 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10035 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10036 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10037 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10038 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10039 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10040 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10041 ":foo xmlns:"
10042 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10043 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10044 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10045 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10046 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10047 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10048 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10049 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10050 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10051 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10052 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10053 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10054 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10055 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10056 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10057 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10058 "='http://example.org/'>"
10059 "</"
10060 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10061 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10062 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10063 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10064 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10065 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10066 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10067 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10068 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10069 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10070 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10071 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10072 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10073 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10074 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10075 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10076 ":foo>";
10077 int i;
10078 const int max_alloc_count = 40;
10079
10080 for (i = 0; i < max_alloc_count; i++) {
10081 allocation_count = i;
10082 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
10083 != XML_STATUS_ERROR)
10084 break;
10085 /* See comment in test_nsalloc_xmlns() */
10086 nsalloc_teardown();
10087 nsalloc_setup();
10088 }
10089 if (i == 0)
10090 fail("Parsing worked despite failing allocations");
10091 else if (i == max_alloc_count)
10092 fail("Parsing failed even at max allocation count");
10093 }
10094 END_TEST
10095
10096 /* Check handling of long uri names (pool growth) */
START_TEST(test_nsalloc_long_uri)10097 START_TEST(test_nsalloc_long_uri) {
10098 const char *text
10099 = "<foo:e xmlns:foo='http://example.org/"
10100 /* 64 characters per line */
10101 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10102 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10103 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10104 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10105 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10106 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10107 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10108 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10109 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10110 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10111 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10112 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10113 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10114 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10115 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10116 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10117 "' bar:a='12'\n"
10118 "xmlns:bar='http://example.org/"
10119 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10120 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10121 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10122 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10123 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10124 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10125 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10126 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10127 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10128 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10129 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10130 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10131 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10132 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10133 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10134 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789A/"
10135 "'>"
10136 "</foo:e>";
10137 int i;
10138 const int max_alloc_count = 40;
10139
10140 for (i = 0; i < max_alloc_count; i++) {
10141 allocation_count = i;
10142 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
10143 != XML_STATUS_ERROR)
10144 break;
10145 /* See comment in test_nsalloc_xmlns() */
10146 nsalloc_teardown();
10147 nsalloc_setup();
10148 }
10149 if (i == 0)
10150 fail("Parsing worked despite failing allocations");
10151 else if (i == max_alloc_count)
10152 fail("Parsing failed even at max allocation count");
10153 }
10154 END_TEST
10155
10156 /* Test handling of long attribute names with prefixes */
START_TEST(test_nsalloc_long_attr)10157 START_TEST(test_nsalloc_long_attr) {
10158 const char *text
10159 = "<foo:e xmlns:foo='http://example.org/' bar:"
10160 /* 64 characters per line */
10161 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10162 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10163 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10164 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10165 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10166 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10167 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10168 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10169 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10170 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10171 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10172 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10173 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10174 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10175 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10176 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10177 "='12'\n"
10178 "xmlns:bar='http://example.org/'>"
10179 "</foo:e>";
10180 int i;
10181 const int max_alloc_count = 40;
10182
10183 for (i = 0; i < max_alloc_count; i++) {
10184 allocation_count = i;
10185 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
10186 != XML_STATUS_ERROR)
10187 break;
10188 /* See comment in test_nsalloc_xmlns() */
10189 nsalloc_teardown();
10190 nsalloc_setup();
10191 }
10192 if (i == 0)
10193 fail("Parsing worked despite failing allocations");
10194 else if (i == max_alloc_count)
10195 fail("Parsing failed even at max allocation count");
10196 }
10197 END_TEST
10198
10199 /* Test handling of an attribute name with a long namespace prefix */
START_TEST(test_nsalloc_long_attr_prefix)10200 START_TEST(test_nsalloc_long_attr_prefix) {
10201 const char *text
10202 = "<foo:e xmlns:foo='http://example.org/' "
10203 /* 64 characters per line */
10204 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10205 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10206 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10207 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10208 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10209 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10210 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10211 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10212 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10213 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10214 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10215 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10216 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10217 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10218 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10219 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10220 ":a='12'\n"
10221 "xmlns:"
10222 /* 64 characters per line */
10223 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10224 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10225 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10226 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10227 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10228 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10229 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10230 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10231 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10232 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10233 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10234 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10235 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10236 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10237 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10238 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10239 "='http://example.org/'>"
10240 "</foo:e>";
10241 const XML_Char *elemstr[] = {
10242 /* clang-format off */
10243 XCS("http://example.org/ e foo"),
10244 XCS("http://example.org/ a ")
10245 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ")
10246 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ")
10247 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ")
10248 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ")
10249 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ")
10250 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ")
10251 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ")
10252 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ")
10253 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ")
10254 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ")
10255 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ")
10256 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ")
10257 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ")
10258 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ")
10259 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ")
10260 XCS("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ")
10261 /* clang-format on */
10262 };
10263 int i;
10264 const int max_alloc_count = 40;
10265
10266 for (i = 0; i < max_alloc_count; i++) {
10267 allocation_count = i;
10268 XML_SetReturnNSTriplet(g_parser, XML_TRUE);
10269 XML_SetUserData(g_parser, (void *)elemstr);
10270 XML_SetElementHandler(g_parser, triplet_start_checker, triplet_end_checker);
10271 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
10272 != XML_STATUS_ERROR)
10273 break;
10274 /* See comment in test_nsalloc_xmlns() */
10275 nsalloc_teardown();
10276 nsalloc_setup();
10277 }
10278 if (i == 0)
10279 fail("Parsing worked despite failing allocations");
10280 else if (i == max_alloc_count)
10281 fail("Parsing failed even at max allocation count");
10282 }
10283 END_TEST
10284
10285 /* Test attribute handling in the face of a dodgy reallocator */
START_TEST(test_nsalloc_realloc_attributes)10286 START_TEST(test_nsalloc_realloc_attributes) {
10287 const char *text = "<foo:e xmlns:foo='http://example.org/' bar:a='12'\n"
10288 " xmlns:bar='http://example.org/'>"
10289 "</foo:e>";
10290 int i;
10291 const int max_realloc_count = 10;
10292
10293 for (i = 0; i < max_realloc_count; i++) {
10294 reallocation_count = i;
10295 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
10296 != XML_STATUS_ERROR)
10297 break;
10298 /* See comment in test_nsalloc_xmlns() */
10299 nsalloc_teardown();
10300 nsalloc_setup();
10301 }
10302 if (i == 0)
10303 fail("Parsing worked despite failing reallocations");
10304 else if (i == max_realloc_count)
10305 fail("Parsing failed at max reallocation count");
10306 }
10307 END_TEST
10308
10309 /* Test long element names with namespaces under a failing allocator */
START_TEST(test_nsalloc_long_element)10310 START_TEST(test_nsalloc_long_element) {
10311 const char *text
10312 = "<foo:thisisalongenoughelementnametotriggerareallocation\n"
10313 " xmlns:foo='http://example.org/' bar:a='12'\n"
10314 " xmlns:bar='http://example.org/'>"
10315 "</foo:thisisalongenoughelementnametotriggerareallocation>";
10316 const XML_Char *elemstr[]
10317 = {XCS("http://example.org/")
10318 XCS(" thisisalongenoughelementnametotriggerareallocation foo"),
10319 XCS("http://example.org/ a bar")};
10320 int i;
10321 const int max_alloc_count = 30;
10322
10323 for (i = 0; i < max_alloc_count; i++) {
10324 allocation_count = i;
10325 XML_SetReturnNSTriplet(g_parser, XML_TRUE);
10326 XML_SetUserData(g_parser, (void *)elemstr);
10327 XML_SetElementHandler(g_parser, triplet_start_checker, triplet_end_checker);
10328 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
10329 != XML_STATUS_ERROR)
10330 break;
10331 /* See comment in test_nsalloc_xmlns() */
10332 nsalloc_teardown();
10333 nsalloc_setup();
10334 }
10335 if (i == 0)
10336 fail("Parsing worked despite failing reallocations");
10337 else if (i == max_alloc_count)
10338 fail("Parsing failed at max reallocation count");
10339 }
10340 END_TEST
10341
10342 /* Test the effects of reallocation failure when reassigning a
10343 * binding.
10344 *
10345 * XML_ParserReset does not free the BINDING structures used by a
10346 * parser, but instead adds them to an internal free list to be reused
10347 * as necessary. Likewise the URI buffers allocated for the binding
10348 * aren't freed, but kept attached to their existing binding. If the
10349 * new binding has a longer URI, it will need reallocation. This test
10350 * provokes that reallocation, and tests the control path if it fails.
10351 */
START_TEST(test_nsalloc_realloc_binding_uri)10352 START_TEST(test_nsalloc_realloc_binding_uri) {
10353 const char *first = "<doc xmlns='http://example.org/'>\n"
10354 " <e xmlns='' />\n"
10355 "</doc>";
10356 const char *second
10357 = "<doc xmlns='http://example.org/long/enough/URI/to/reallocate/'>\n"
10358 " <e xmlns='' />\n"
10359 "</doc>";
10360 unsigned i;
10361 const unsigned max_realloc_count = 10;
10362
10363 /* First, do a full parse that will leave bindings around */
10364 if (_XML_Parse_SINGLE_BYTES(g_parser, first, (int)strlen(first), XML_TRUE)
10365 == XML_STATUS_ERROR)
10366 xml_failure(g_parser);
10367
10368 /* Now repeat with a longer URI and a duff reallocator */
10369 for (i = 0; i < max_realloc_count; i++) {
10370 XML_ParserReset(g_parser, NULL);
10371 reallocation_count = i;
10372 if (_XML_Parse_SINGLE_BYTES(g_parser, second, (int)strlen(second), XML_TRUE)
10373 != XML_STATUS_ERROR)
10374 break;
10375 }
10376 if (i == 0)
10377 fail("Parsing worked despite failing reallocation");
10378 else if (i == max_realloc_count)
10379 fail("Parsing failed at max reallocation count");
10380 }
10381 END_TEST
10382
10383 /* Check handling of long prefix names (pool growth) */
START_TEST(test_nsalloc_realloc_long_prefix)10384 START_TEST(test_nsalloc_realloc_long_prefix) {
10385 const char *text
10386 = "<"
10387 /* 64 characters per line */
10388 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10389 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10390 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10391 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10392 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10393 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10394 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10395 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10396 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10397 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10398 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10399 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10400 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10401 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10402 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10403 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10404 ":foo xmlns:"
10405 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10406 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10407 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10408 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10409 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10410 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10411 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10412 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10413 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10414 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10415 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10416 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10417 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10418 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10419 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10420 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10421 "='http://example.org/'>"
10422 "</"
10423 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10424 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10425 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10426 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10427 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10428 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10429 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10430 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10431 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10432 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10433 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10434 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10435 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10436 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10437 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10438 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10439 ":foo>";
10440 int i;
10441 const int max_realloc_count = 12;
10442
10443 for (i = 0; i < max_realloc_count; i++) {
10444 reallocation_count = i;
10445 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
10446 != XML_STATUS_ERROR)
10447 break;
10448 /* See comment in test_nsalloc_xmlns() */
10449 nsalloc_teardown();
10450 nsalloc_setup();
10451 }
10452 if (i == 0)
10453 fail("Parsing worked despite failing reallocations");
10454 else if (i == max_realloc_count)
10455 fail("Parsing failed even at max reallocation count");
10456 }
10457 END_TEST
10458
10459 /* Check handling of even long prefix names (different code path) */
START_TEST(test_nsalloc_realloc_longer_prefix)10460 START_TEST(test_nsalloc_realloc_longer_prefix) {
10461 const char *text
10462 = "<"
10463 /* 64 characters per line */
10464 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10465 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10466 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10467 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10468 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10469 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10470 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10471 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10472 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10473 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10474 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10475 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10476 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10477 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10478 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10479 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10480 "Q:foo xmlns:"
10481 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10482 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10483 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10484 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10485 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10486 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10487 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10488 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10489 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10490 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10491 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10492 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10493 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10494 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10495 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10496 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10497 "Q='http://example.org/'>"
10498 "</"
10499 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10500 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10501 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10502 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10503 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10504 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10505 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10506 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10507 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10508 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10509 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10510 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10511 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10512 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10513 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10514 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10515 "Q:foo>";
10516 int i;
10517 const int max_realloc_count = 12;
10518
10519 for (i = 0; i < max_realloc_count; i++) {
10520 reallocation_count = i;
10521 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
10522 != XML_STATUS_ERROR)
10523 break;
10524 /* See comment in test_nsalloc_xmlns() */
10525 nsalloc_teardown();
10526 nsalloc_setup();
10527 }
10528 if (i == 0)
10529 fail("Parsing worked despite failing reallocations");
10530 else if (i == max_realloc_count)
10531 fail("Parsing failed even at max reallocation count");
10532 }
10533 END_TEST
10534
START_TEST(test_nsalloc_long_namespace)10535 START_TEST(test_nsalloc_long_namespace) {
10536 const char *text1
10537 = "<"
10538 /* 64 characters per line */
10539 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10540 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10541 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10542 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10543 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10544 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10545 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10546 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10547 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10548 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10549 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10550 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10551 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10552 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10553 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10554 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10555 ":e xmlns:"
10556 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10557 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10558 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10559 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10560 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10561 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10562 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10563 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10564 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10565 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10566 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10567 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10568 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10569 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10570 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10571 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10572 "='http://example.org/'>\n";
10573 const char *text2
10574 = "<"
10575 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10576 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10577 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10578 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10579 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10580 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10581 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10582 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10583 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10584 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10585 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10586 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10587 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10588 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10589 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10590 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10591 ":f "
10592 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10593 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10594 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10595 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10596 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10597 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10598 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10599 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10600 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10601 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10602 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10603 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10604 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10605 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10606 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10607 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10608 ":attr='foo'/>\n"
10609 "</"
10610 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10611 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10612 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10613 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10614 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10615 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10616 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10617 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10618 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10619 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10620 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10621 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10622 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10623 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10624 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10625 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10626 ":e>";
10627 int i;
10628 const int max_alloc_count = 40;
10629
10630 for (i = 0; i < max_alloc_count; i++) {
10631 allocation_count = i;
10632 if (_XML_Parse_SINGLE_BYTES(g_parser, text1, (int)strlen(text1), XML_FALSE)
10633 != XML_STATUS_ERROR
10634 && _XML_Parse_SINGLE_BYTES(g_parser, text2, (int)strlen(text2),
10635 XML_TRUE)
10636 != XML_STATUS_ERROR)
10637 break;
10638 /* See comment in test_nsalloc_xmlns() */
10639 nsalloc_teardown();
10640 nsalloc_setup();
10641 }
10642 if (i == 0)
10643 fail("Parsing worked despite failing allocations");
10644 else if (i == max_alloc_count)
10645 fail("Parsing failed even at max allocation count");
10646 }
10647 END_TEST
10648
10649 /* Using a slightly shorter namespace name provokes allocations in
10650 * slightly different places in the code.
10651 */
START_TEST(test_nsalloc_less_long_namespace)10652 START_TEST(test_nsalloc_less_long_namespace) {
10653 const char *text
10654 = "<"
10655 /* 64 characters per line */
10656 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10657 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10658 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10659 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10660 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10661 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10662 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10663 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz012345678"
10664 ":e xmlns:"
10665 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10666 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10667 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10668 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10669 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10670 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10671 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10672 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz012345678"
10673 "='http://example.org/'>\n"
10674 "<"
10675 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10676 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10677 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10678 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10679 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10680 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10681 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10682 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz012345678"
10683 ":f "
10684 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10685 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10686 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10687 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10688 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10689 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10690 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10691 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz012345678"
10692 ":att='foo'/>\n"
10693 "</"
10694 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10695 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10696 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10697 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10698 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10699 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10700 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789AZ"
10701 "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz012345678"
10702 ":e>";
10703 int i;
10704 const int max_alloc_count = 40;
10705
10706 for (i = 0; i < max_alloc_count; i++) {
10707 allocation_count = i;
10708 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
10709 != XML_STATUS_ERROR)
10710 break;
10711 /* See comment in test_nsalloc_xmlns() */
10712 nsalloc_teardown();
10713 nsalloc_setup();
10714 }
10715 if (i == 0)
10716 fail("Parsing worked despite failing allocations");
10717 else if (i == max_alloc_count)
10718 fail("Parsing failed even at max allocation count");
10719 }
10720 END_TEST
10721
START_TEST(test_nsalloc_long_context)10722 START_TEST(test_nsalloc_long_context) {
10723 const char *text
10724 = "<!DOCTYPE doc SYSTEM 'foo' [\n"
10725 " <!ATTLIST doc baz ID #REQUIRED>\n"
10726 " <!ENTITY en SYSTEM 'bar'>\n"
10727 "]>\n"
10728 "<doc xmlns='http://example.org/"
10729 /* 64 characters per line */
10730 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10731 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10732 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10733 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10734 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10735 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10736 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10737 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10738 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10739 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10740 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10741 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10742 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10743 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10744 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10745 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKL"
10746 "' baz='2'>\n"
10747 "&en;"
10748 "</doc>";
10749 ExtOption options[] = {
10750 {XCS("foo"), "<!ELEMENT e EMPTY>"}, {XCS("bar"), "<e/>"}, {NULL, NULL}};
10751 int i;
10752 const int max_alloc_count = 70;
10753
10754 for (i = 0; i < max_alloc_count; i++) {
10755 allocation_count = i;
10756 XML_SetUserData(g_parser, options);
10757 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
10758 XML_SetExternalEntityRefHandler(g_parser, external_entity_optioner);
10759 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
10760 != XML_STATUS_ERROR)
10761 break;
10762
10763 /* See comment in test_nsalloc_xmlns() */
10764 nsalloc_teardown();
10765 nsalloc_setup();
10766 }
10767 if (i == 0)
10768 fail("Parsing worked despite failing allocations");
10769 else if (i == max_alloc_count)
10770 fail("Parsing failed even at max allocation count");
10771 }
10772 END_TEST
10773
10774 /* This function is void; it will throw a fail() on error, so if it
10775 * returns normally it must have succeeded.
10776 */
10777 static void
context_realloc_test(const char * text)10778 context_realloc_test(const char *text) {
10779 ExtOption options[] = {
10780 {XCS("foo"), "<!ELEMENT e EMPTY>"}, {XCS("bar"), "<e/>"}, {NULL, NULL}};
10781 int i;
10782 const int max_realloc_count = 6;
10783
10784 for (i = 0; i < max_realloc_count; i++) {
10785 reallocation_count = i;
10786 XML_SetUserData(g_parser, options);
10787 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
10788 XML_SetExternalEntityRefHandler(g_parser, external_entity_optioner);
10789 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
10790 != XML_STATUS_ERROR)
10791 break;
10792 /* See comment in test_nsalloc_xmlns() */
10793 nsalloc_teardown();
10794 nsalloc_setup();
10795 }
10796 if (i == 0)
10797 fail("Parsing worked despite failing reallocations");
10798 else if (i == max_realloc_count)
10799 fail("Parsing failed even at max reallocation count");
10800 }
10801
START_TEST(test_nsalloc_realloc_long_context)10802 START_TEST(test_nsalloc_realloc_long_context) {
10803 const char *text
10804 = "<!DOCTYPE doc SYSTEM 'foo' [\n"
10805 " <!ENTITY en SYSTEM 'bar'>\n"
10806 "]>\n"
10807 "<doc xmlns='http://example.org/"
10808 /* 64 characters per line */
10809 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10810 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10811 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10812 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10813 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10814 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10815 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10816 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10817 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10818 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10819 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10820 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10821 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10822 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10823 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10824 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKL"
10825 "'>\n"
10826 "&en;"
10827 "</doc>";
10828
10829 context_realloc_test(text);
10830 }
10831 END_TEST
10832
START_TEST(test_nsalloc_realloc_long_context_2)10833 START_TEST(test_nsalloc_realloc_long_context_2) {
10834 const char *text
10835 = "<!DOCTYPE doc SYSTEM 'foo' [\n"
10836 " <!ENTITY en SYSTEM 'bar'>\n"
10837 "]>\n"
10838 "<doc xmlns='http://example.org/"
10839 /* 64 characters per line */
10840 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10841 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10842 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10843 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10844 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10845 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10846 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10847 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10848 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10849 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10850 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10851 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10852 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10853 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10854 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10855 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJK"
10856 "'>\n"
10857 "&en;"
10858 "</doc>";
10859
10860 context_realloc_test(text);
10861 }
10862 END_TEST
10863
START_TEST(test_nsalloc_realloc_long_context_3)10864 START_TEST(test_nsalloc_realloc_long_context_3) {
10865 const char *text
10866 = "<!DOCTYPE doc SYSTEM 'foo' [\n"
10867 " <!ENTITY en SYSTEM 'bar'>\n"
10868 "]>\n"
10869 "<doc xmlns='http://example.org/"
10870 /* 64 characters per line */
10871 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10872 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10873 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10874 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10875 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10876 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10877 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10878 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10879 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10880 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10881 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10882 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10883 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10884 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10885 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10886 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGH"
10887 "'>\n"
10888 "&en;"
10889 "</doc>";
10890
10891 context_realloc_test(text);
10892 }
10893 END_TEST
10894
START_TEST(test_nsalloc_realloc_long_context_4)10895 START_TEST(test_nsalloc_realloc_long_context_4) {
10896 const char *text
10897 = "<!DOCTYPE doc SYSTEM 'foo' [\n"
10898 " <!ENTITY en SYSTEM 'bar'>\n"
10899 "]>\n"
10900 "<doc xmlns='http://example.org/"
10901 /* 64 characters per line */
10902 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10903 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10904 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10905 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10906 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10907 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10908 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10909 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10910 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10911 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10912 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10913 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10914 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10915 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10916 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10917 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO"
10918 "'>\n"
10919 "&en;"
10920 "</doc>";
10921
10922 context_realloc_test(text);
10923 }
10924 END_TEST
10925
START_TEST(test_nsalloc_realloc_long_context_5)10926 START_TEST(test_nsalloc_realloc_long_context_5) {
10927 const char *text
10928 = "<!DOCTYPE doc SYSTEM 'foo' [\n"
10929 " <!ENTITY en SYSTEM 'bar'>\n"
10930 "]>\n"
10931 "<doc xmlns='http://example.org/"
10932 /* 64 characters per line */
10933 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10934 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10935 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10936 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10937 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10938 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10939 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10940 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10941 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10942 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10943 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10944 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10945 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10946 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10947 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10948 "ABC"
10949 "'>\n"
10950 "&en;"
10951 "</doc>";
10952
10953 context_realloc_test(text);
10954 }
10955 END_TEST
10956
START_TEST(test_nsalloc_realloc_long_context_6)10957 START_TEST(test_nsalloc_realloc_long_context_6) {
10958 const char *text
10959 = "<!DOCTYPE doc SYSTEM 'foo' [\n"
10960 " <!ENTITY en SYSTEM 'bar'>\n"
10961 "]>\n"
10962 "<doc xmlns='http://example.org/"
10963 /* 64 characters per line */
10964 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10965 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10966 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10967 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10968 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10969 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10970 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10971 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10972 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10973 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10974 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10975 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10976 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10977 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10978 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNOP"
10979 "'>\n"
10980 "&en;"
10981 "</doc>";
10982
10983 context_realloc_test(text);
10984 }
10985 END_TEST
10986
START_TEST(test_nsalloc_realloc_long_context_7)10987 START_TEST(test_nsalloc_realloc_long_context_7) {
10988 const char *text
10989 = "<!DOCTYPE doc SYSTEM 'foo' [\n"
10990 " <!ENTITY en SYSTEM 'bar'>\n"
10991 "]>\n"
10992 "<doc xmlns='http://example.org/"
10993 /* 64 characters per line */
10994 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10995 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10996 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10997 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10998 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
10999 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11000 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11001 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11002 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11003 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11004 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11005 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11006 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11007 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11008 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11009 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLM"
11010 "'>\n"
11011 "&en;"
11012 "</doc>";
11013
11014 context_realloc_test(text);
11015 }
11016 END_TEST
11017
START_TEST(test_nsalloc_realloc_long_ge_name)11018 START_TEST(test_nsalloc_realloc_long_ge_name) {
11019 const char *text
11020 = "<!DOCTYPE doc SYSTEM 'foo' [\n"
11021 " <!ENTITY "
11022 /* 64 characters per line */
11023 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11024 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11025 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11026 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11027 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11028 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11029 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11030 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11031 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11032 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11033 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11034 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11035 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11036 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11037 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11038 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11039 " SYSTEM 'bar'>\n"
11040 "]>\n"
11041 "<doc xmlns='http://example.org/baz'>\n"
11042 "&"
11043 /* 64 characters per line */
11044 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11045 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11046 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11047 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11048 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11049 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11050 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11051 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11052 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11053 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11054 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11055 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11056 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11057 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11058 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11059 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11060 ";"
11061 "</doc>";
11062 ExtOption options[] = {
11063 {XCS("foo"), "<!ELEMENT el EMPTY>"}, {XCS("bar"), "<el/>"}, {NULL, NULL}};
11064 int i;
11065 const int max_realloc_count = 10;
11066
11067 for (i = 0; i < max_realloc_count; i++) {
11068 reallocation_count = i;
11069 XML_SetUserData(g_parser, options);
11070 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
11071 XML_SetExternalEntityRefHandler(g_parser, external_entity_optioner);
11072 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
11073 != XML_STATUS_ERROR)
11074 break;
11075 /* See comment in test_nsalloc_xmlns() */
11076 nsalloc_teardown();
11077 nsalloc_setup();
11078 }
11079 if (i == 0)
11080 fail("Parsing worked despite failing reallocations");
11081 else if (i == max_realloc_count)
11082 fail("Parsing failed even at max reallocation count");
11083 }
11084 END_TEST
11085
11086 /* Test that when a namespace is passed through the context mechanism
11087 * to an external entity parser, the parsers handle reallocation
11088 * failures correctly. The prefix is exactly the right length to
11089 * provoke particular uncommon code paths.
11090 */
START_TEST(test_nsalloc_realloc_long_context_in_dtd)11091 START_TEST(test_nsalloc_realloc_long_context_in_dtd) {
11092 const char *text1
11093 = "<!DOCTYPE "
11094 /* 64 characters per line */
11095 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11096 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11097 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11098 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11099 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11100 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11101 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11102 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11103 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11104 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11105 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11106 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11107 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11108 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11109 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11110 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11111 ":doc [\n"
11112 " <!ENTITY First SYSTEM 'foo/First'>\n"
11113 "]>\n"
11114 "<"
11115 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11116 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11117 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11118 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11119 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11120 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11121 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11122 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11123 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11124 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11125 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11126 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11127 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11128 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11129 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11130 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11131 ":doc xmlns:"
11132 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11133 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11134 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11135 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11136 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11137 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11138 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11139 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11140 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11141 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11142 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11143 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11144 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11145 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11146 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11147 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11148 "='foo/Second'>&First;";
11149 const char *text2
11150 = "</"
11151 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11152 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11153 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11154 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11155 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11156 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11157 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11158 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11159 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11160 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11161 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11162 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11163 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11164 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11165 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11166 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11167 ":doc>";
11168 ExtOption options[] = {{XCS("foo/First"), "Hello world"}, {NULL, NULL}};
11169 int i;
11170 const int max_realloc_count = 20;
11171
11172 for (i = 0; i < max_realloc_count; i++) {
11173 reallocation_count = i;
11174 XML_SetUserData(g_parser, options);
11175 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
11176 XML_SetExternalEntityRefHandler(g_parser, external_entity_optioner);
11177 if (_XML_Parse_SINGLE_BYTES(g_parser, text1, (int)strlen(text1), XML_FALSE)
11178 != XML_STATUS_ERROR
11179 && _XML_Parse_SINGLE_BYTES(g_parser, text2, (int)strlen(text2),
11180 XML_TRUE)
11181 != XML_STATUS_ERROR)
11182 break;
11183 /* See comment in test_nsalloc_xmlns() */
11184 nsalloc_teardown();
11185 nsalloc_setup();
11186 }
11187 if (i == 0)
11188 fail("Parsing worked despite failing reallocations");
11189 else if (i == max_realloc_count)
11190 fail("Parsing failed even at max reallocation count");
11191 }
11192 END_TEST
11193
START_TEST(test_nsalloc_long_default_in_ext)11194 START_TEST(test_nsalloc_long_default_in_ext) {
11195 const char *text
11196 = "<!DOCTYPE doc [\n"
11197 " <!ATTLIST e a1 CDATA '"
11198 /* 64 characters per line */
11199 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11200 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11201 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11202 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11203 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11204 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11205 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11206 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11207 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11208 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11209 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11210 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11211 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11212 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11213 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11214 "ABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOPABCDEFGHIJKLMNOP"
11215 "'>\n"
11216 " <!ENTITY x SYSTEM 'foo'>\n"
11217 "]>\n"
11218 "<doc>&x;</doc>";
11219 ExtOption options[] = {{XCS("foo"), "<e/>"}, {NULL, NULL}};
11220 int i;
11221 const int max_alloc_count = 50;
11222
11223 for (i = 0; i < max_alloc_count; i++) {
11224 allocation_count = i;
11225 XML_SetUserData(g_parser, options);
11226 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
11227 XML_SetExternalEntityRefHandler(g_parser, external_entity_optioner);
11228 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
11229 != XML_STATUS_ERROR)
11230 break;
11231
11232 /* See comment in test_nsalloc_xmlns() */
11233 nsalloc_teardown();
11234 nsalloc_setup();
11235 }
11236 if (i == 0)
11237 fail("Parsing worked despite failing allocations");
11238 else if (i == max_alloc_count)
11239 fail("Parsing failed even at max allocation count");
11240 }
11241 END_TEST
11242
START_TEST(test_nsalloc_long_systemid_in_ext)11243 START_TEST(test_nsalloc_long_systemid_in_ext) {
11244 const char *text
11245 = "<!DOCTYPE doc SYSTEM 'foo' [\n"
11246 " <!ENTITY en SYSTEM '"
11247 /* 64 characters per line */
11248 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11249 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11250 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11251 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11252 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11253 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11254 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11255 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11256 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11257 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11258 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11259 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11260 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11261 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11262 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11263 "ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"
11264 "'>\n"
11265 "]>\n"
11266 "<doc>&en;</doc>";
11267 ExtOption options[] = {
11268 {XCS("foo"), "<!ELEMENT e EMPTY>"},
11269 {/* clang-format off */
11270 XCS("ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/")
11271 XCS("ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/")
11272 XCS("ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/")
11273 XCS("ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/")
11274 XCS("ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/")
11275 XCS("ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/")
11276 XCS("ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/")
11277 XCS("ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/")
11278 XCS("ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/")
11279 XCS("ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/")
11280 XCS("ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/")
11281 XCS("ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/")
11282 XCS("ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/")
11283 XCS("ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/")
11284 XCS("ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/")
11285 XCS("ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/ABCDEFGHIJKLMNO/"),
11286 /* clang-format on */
11287 "<e/>"},
11288 {NULL, NULL}};
11289 int i;
11290 const int max_alloc_count = 55;
11291
11292 for (i = 0; i < max_alloc_count; i++) {
11293 allocation_count = i;
11294 XML_SetUserData(g_parser, options);
11295 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
11296 XML_SetExternalEntityRefHandler(g_parser, external_entity_optioner);
11297 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
11298 != XML_STATUS_ERROR)
11299 break;
11300
11301 /* See comment in test_nsalloc_xmlns() */
11302 nsalloc_teardown();
11303 nsalloc_setup();
11304 }
11305 if (i == 0)
11306 fail("Parsing worked despite failing allocations");
11307 else if (i == max_alloc_count)
11308 fail("Parsing failed even at max allocation count");
11309 }
11310 END_TEST
11311
11312 /* Test the effects of allocation failure on parsing an element in a
11313 * namespace. Based on test_nsalloc_long_context.
11314 */
START_TEST(test_nsalloc_prefixed_element)11315 START_TEST(test_nsalloc_prefixed_element) {
11316 const char *text = "<!DOCTYPE pfx:element SYSTEM 'foo' [\n"
11317 " <!ATTLIST pfx:element baz ID #REQUIRED>\n"
11318 " <!ENTITY en SYSTEM 'bar'>\n"
11319 "]>\n"
11320 "<pfx:element xmlns:pfx='http://example.org/' baz='2'>\n"
11321 "&en;"
11322 "</pfx:element>";
11323 ExtOption options[] = {
11324 {XCS("foo"), "<!ELEMENT e EMPTY>"}, {XCS("bar"), "<e/>"}, {NULL, NULL}};
11325 int i;
11326 const int max_alloc_count = 70;
11327
11328 for (i = 0; i < max_alloc_count; i++) {
11329 allocation_count = i;
11330 XML_SetUserData(g_parser, options);
11331 XML_SetParamEntityParsing(g_parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
11332 XML_SetExternalEntityRefHandler(g_parser, external_entity_optioner);
11333 if (_XML_Parse_SINGLE_BYTES(g_parser, text, (int)strlen(text), XML_TRUE)
11334 != XML_STATUS_ERROR)
11335 break;
11336
11337 /* See comment in test_nsalloc_xmlns() */
11338 nsalloc_teardown();
11339 nsalloc_setup();
11340 }
11341 if (i == 0)
11342 fail("Success despite failing allocator");
11343 else if (i == max_alloc_count)
11344 fail("Failed even at full allocation count");
11345 }
11346 END_TEST
11347
11348 #if defined(XML_DTD)
11349 typedef enum XML_Status (*XmlParseFunction)(XML_Parser, const char *, int, int);
11350
11351 struct AccountingTestCase {
11352 const char *primaryText;
11353 const char *firstExternalText; /* often NULL */
11354 const char *secondExternalText; /* often NULL */
11355 const unsigned long long expectedCountBytesIndirectExtra;
11356 XML_Bool singleBytesWanted;
11357 };
11358
11359 static int
accounting_external_entity_ref_handler(XML_Parser parser,const XML_Char * context,const XML_Char * base,const XML_Char * systemId,const XML_Char * publicId)11360 accounting_external_entity_ref_handler(XML_Parser parser,
11361 const XML_Char *context,
11362 const XML_Char *base,
11363 const XML_Char *systemId,
11364 const XML_Char *publicId) {
11365 UNUSED_P(context);
11366 UNUSED_P(base);
11367 UNUSED_P(publicId);
11368
11369 const struct AccountingTestCase *const testCase
11370 = (const struct AccountingTestCase *)XML_GetUserData(parser);
11371
11372 const char *externalText = NULL;
11373 if (xcstrcmp(systemId, XCS("first.ent")) == 0) {
11374 externalText = testCase->firstExternalText;
11375 } else if (xcstrcmp(systemId, XCS("second.ent")) == 0) {
11376 externalText = testCase->secondExternalText;
11377 } else {
11378 assert(! "systemId is neither \"first.ent\" nor \"second.ent\"");
11379 }
11380 assert(externalText);
11381
11382 XML_Parser entParser = XML_ExternalEntityParserCreate(parser, context, 0);
11383 assert(entParser);
11384
11385 const XmlParseFunction xmlParseFunction
11386 = testCase->singleBytesWanted ? _XML_Parse_SINGLE_BYTES : XML_Parse;
11387
11388 const enum XML_Status status = xmlParseFunction(
11389 entParser, externalText, (int)strlen(externalText), XML_TRUE);
11390
11391 XML_ParserFree(entParser);
11392 return status;
11393 }
11394
START_TEST(test_accounting_precision)11395 START_TEST(test_accounting_precision) {
11396 const XML_Bool filled_later = XML_TRUE; /* value is arbitrary */
11397 struct AccountingTestCase cases[] = {
11398 {"<e/>", NULL, NULL, 0, 0},
11399 {"<e></e>", NULL, NULL, 0, 0},
11400
11401 /* Attributes */
11402 {"<e k1=\"v2\" k2=\"v2\"/>", NULL, NULL, 0, filled_later},
11403 {"<e k1=\"v2\" k2=\"v2\"></e>", NULL, NULL, 0, 0},
11404 {"<p:e xmlns:p=\"https://domain.invalid/\" />", NULL, NULL, 0,
11405 filled_later},
11406 {"<e k=\"&'><"\" />", NULL, NULL,
11407 sizeof(XML_Char) * 5 /* number of predefined entites */, filled_later},
11408 {"<e1 xmlns='https://example.org/'>\n"
11409 " <e2 xmlns=''/>\n"
11410 "</e1>",
11411 NULL, NULL, 0, filled_later},
11412
11413 /* Text */
11414 {"<e>text</e>", NULL, NULL, 0, filled_later},
11415 {"<e1><e2>text1<e3/>text2</e2></e1>", NULL, NULL, 0, filled_later},
11416 {"<e>&'><"</e>", NULL, NULL,
11417 sizeof(XML_Char) * 5 /* number of predefined entites */, filled_later},
11418 {"<e>A)</e>", NULL, NULL, 0, filled_later},
11419
11420 /* Prolog */
11421 {"<?xml version=\"1.0\"?><root/>", NULL, NULL, 0, filled_later},
11422
11423 /* Whitespace */
11424 {" <e1> <e2> </e2> </e1> ", NULL, NULL, 0, filled_later},
11425 {"<e1 ><e2 /></e1 >", NULL, NULL, 0, filled_later},
11426 {"<e1><e2 k = \"v\"/><e3 k = 'v'/></e1>", NULL, NULL, 0, filled_later},
11427
11428 /* Comments */
11429 {"<!-- Comment --><e><!-- Comment --></e>", NULL, NULL, 0, filled_later},
11430
11431 /* Processing instructions */
11432 {"<?xml-stylesheet type=\"text/xsl\" href=\"https://domain.invalid/\" media=\"all\"?><e/>",
11433 NULL, NULL, 0, filled_later},
11434 {"<?pi0?><?pi1 ?><?pi2 ?><!DOCTYPE r SYSTEM 'first.ent'><r/>",
11435 "<?pi3?><!ENTITY % e1 SYSTEM 'second.ent'><?pi4?>%e1;<?pi5?>", "<?pi6?>",
11436 0, filled_later},
11437
11438 /* CDATA */
11439 {"<e><![CDATA[one two three]]></e>", NULL, NULL, 0, filled_later},
11440 /* The following is the essence of this OSS-Fuzz finding:
11441 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34302
11442 https://oss-fuzz.com/testcase-detail/4860575394955264
11443 */
11444 {"<!DOCTYPE r [\n"
11445 "<!ENTITY e \"111<![CDATA[2 <= 2]]>333\">\n"
11446 "]>\n"
11447 "<r>&e;</r>\n",
11448 NULL, NULL, sizeof(XML_Char) * strlen("111<![CDATA[2 <= 2]]>333"),
11449 filled_later},
11450
11451 /* Conditional sections */
11452 {"<!DOCTYPE r [\n"
11453 "<!ENTITY % draft 'INCLUDE'>\n"
11454 "<!ENTITY % final 'IGNORE'>\n"
11455 "<!ENTITY % import SYSTEM \"first.ent\">\n"
11456 "%import;\n"
11457 "]>\n"
11458 "<r/>\n",
11459 "<![%draft;[<!--1-->]]>\n"
11460 "<![%final;[<!--22-->]]>",
11461 NULL, sizeof(XML_Char) * (strlen("INCLUDE") + strlen("IGNORE")),
11462 filled_later},
11463
11464 /* General entities */
11465 {"<!DOCTYPE root [\n"
11466 "<!ENTITY nine \"123456789\">\n"
11467 "]>\n"
11468 "<root>&nine;</root>",
11469 NULL, NULL, sizeof(XML_Char) * strlen("123456789"), filled_later},
11470 {"<!DOCTYPE root [\n"
11471 "<!ENTITY nine \"123456789\">\n"
11472 "]>\n"
11473 "<root k1=\"&nine;\"/>",
11474 NULL, NULL, sizeof(XML_Char) * strlen("123456789"), filled_later},
11475 {"<!DOCTYPE root [\n"
11476 "<!ENTITY nine \"123456789\">\n"
11477 "<!ENTITY nine2 \"&nine;&nine;\">\n"
11478 "]>\n"
11479 "<root>&nine2;&nine2;&nine2;</root>",
11480 NULL, NULL,
11481 sizeof(XML_Char) * 3 /* calls to &nine2; */ * 2 /* calls to &nine; */
11482 * (strlen("&nine;") + strlen("123456789")),
11483 filled_later},
11484 {"<!DOCTYPE r [\n"
11485 " <!ENTITY five SYSTEM 'first.ent'>\n"
11486 "]>\n"
11487 "<r>&five;</r>",
11488 "12345", NULL, 0, filled_later},
11489
11490 /* Parameter entities */
11491 {"<!DOCTYPE r [\n"
11492 "<!ENTITY % comment \"<!---->\">\n"
11493 "%comment;\n"
11494 "]>\n"
11495 "<r/>",
11496 NULL, NULL, sizeof(XML_Char) * strlen("<!---->"), filled_later},
11497 {"<!DOCTYPE r [\n"
11498 "<!ENTITY % ninedef \"<!ENTITY nine "123456789">\">\n"
11499 "%ninedef;\n"
11500 "]>\n"
11501 "<r>&nine;</r>",
11502 NULL, NULL,
11503 sizeof(XML_Char)
11504 * (strlen("<!ENTITY nine \"123456789\">") + strlen("123456789")),
11505 filled_later},
11506 {"<!DOCTYPE r [\n"
11507 "<!ENTITY % comment \"<!--1-->\">\n"
11508 "<!ENTITY % comment2 \"%comment;<!--22-->%comment;\">\n"
11509 "%comment2;\n"
11510 "]>\n"
11511 "<r/>\n",
11512 NULL, NULL,
11513 sizeof(XML_Char)
11514 * (strlen("%comment;<!--22-->%comment;") + 2 * strlen("<!--1-->")),
11515 filled_later},
11516 {"<!DOCTYPE r [\n"
11517 " <!ENTITY % five \"12345\">\n"
11518 " <!ENTITY % five2def \"<!ENTITY five2 "[%five;][%five;]]]]">\">\n"
11519 " %five2def;\n"
11520 "]>\n"
11521 "<r>&five2;</r>",
11522 NULL, NULL, /* from "%five2def;": */
11523 sizeof(XML_Char)
11524 * (strlen("<!ENTITY five2 \"[%five;][%five;]]]]\">")
11525 + 2 /* calls to "%five;" */ * strlen("12345")
11526 + /* from "&five2;": */ strlen("[12345][12345]]]]")),
11527 filled_later},
11528 {"<!DOCTYPE r SYSTEM \"first.ent\">\n"
11529 "<r/>",
11530 "<!ENTITY % comment '<!--1-->'>\n"
11531 "<!ENTITY % comment2 '<!--22-->%comment;<!--22-->%comment;<!--22-->'>\n"
11532 "%comment2;",
11533 NULL,
11534 sizeof(XML_Char)
11535 * (strlen("<!--22-->%comment;<!--22-->%comment;<!--22-->")
11536 + 2 /* calls to "%comment;" */ * strlen("<!---->")),
11537 filled_later},
11538 {"<!DOCTYPE r SYSTEM 'first.ent'>\n"
11539 "<r/>",
11540 "<!ENTITY % e1 PUBLIC 'foo' 'second.ent'>\n"
11541 "<!ENTITY % e2 '<!--22-->%e1;<!--22-->'>\n"
11542 "%e2;\n",
11543 "<!--1-->", sizeof(XML_Char) * strlen("<!--22--><!--1--><!--22-->"),
11544 filled_later},
11545 {
11546 "<!DOCTYPE r SYSTEM 'first.ent'>\n"
11547 "<r/>",
11548 "<!ENTITY % e1 SYSTEM 'second.ent'>\n"
11549 "<!ENTITY % e2 '%e1;'>",
11550 "<?xml version='1.0' encoding='utf-8'?>\n"
11551 "hello\n"
11552 "xml" /* without trailing newline! */,
11553 0,
11554 filled_later,
11555 },
11556 {
11557 "<!DOCTYPE r SYSTEM 'first.ent'>\n"
11558 "<r/>",
11559 "<!ENTITY % e1 SYSTEM 'second.ent'>\n"
11560 "<!ENTITY % e2 '%e1;'>",
11561 "<?xml version='1.0' encoding='utf-8'?>\n"
11562 "hello\n"
11563 "xml\n" /* with trailing newline! */,
11564 0,
11565 filled_later,
11566 },
11567 {"<!DOCTYPE doc SYSTEM 'first.ent'>\n"
11568 "<doc></doc>\n",
11569 "<!ELEMENT doc EMPTY>\n"
11570 "<!ENTITY % e1 SYSTEM 'second.ent'>\n"
11571 "<!ENTITY % e2 '%e1;'>\n"
11572 "%e1;\n",
11573 "\xEF\xBB\xBF<!ATTLIST doc a1 CDATA 'value'>" /* UTF-8 BOM */,
11574 strlen("\xEF\xBB\xBF<!ATTLIST doc a1 CDATA 'value'>"), filled_later},
11575 {"<!DOCTYPE r [\n"
11576 " <!ENTITY five SYSTEM 'first.ent'>\n"
11577 "]>\n"
11578 "<r>&five;</r>",
11579 "\xEF\xBB\xBF" /* UTF-8 BOM */, NULL, 0, filled_later},
11580 };
11581
11582 const size_t countCases = sizeof(cases) / sizeof(cases[0]);
11583 size_t u = 0;
11584 for (; u < countCases; u++) {
11585 size_t v = 0;
11586 for (; v < 2; v++) {
11587 const XML_Bool singleBytesWanted = (v == 0) ? XML_FALSE : XML_TRUE;
11588 const unsigned long long expectedCountBytesDirect
11589 = strlen(cases[u].primaryText);
11590 const unsigned long long expectedCountBytesIndirect
11591 = (cases[u].firstExternalText ? strlen(cases[u].firstExternalText)
11592 : 0)
11593 + (cases[u].secondExternalText ? strlen(cases[u].secondExternalText)
11594 : 0)
11595 + cases[u].expectedCountBytesIndirectExtra;
11596
11597 XML_Parser parser = XML_ParserCreate(NULL);
11598 XML_SetParamEntityParsing(parser, XML_PARAM_ENTITY_PARSING_ALWAYS);
11599 if (cases[u].firstExternalText) {
11600 XML_SetExternalEntityRefHandler(parser,
11601 accounting_external_entity_ref_handler);
11602 XML_SetUserData(parser, (void *)&cases[u]);
11603 cases[u].singleBytesWanted = singleBytesWanted;
11604 }
11605
11606 const XmlParseFunction xmlParseFunction
11607 = singleBytesWanted ? _XML_Parse_SINGLE_BYTES : XML_Parse;
11608
11609 enum XML_Status status
11610 = xmlParseFunction(parser, cases[u].primaryText,
11611 (int)strlen(cases[u].primaryText), XML_TRUE);
11612 if (status != XML_STATUS_OK) {
11613 _xml_failure(parser, __FILE__, __LINE__);
11614 }
11615
11616 const unsigned long long actualCountBytesDirect
11617 = testingAccountingGetCountBytesDirect(parser);
11618 const unsigned long long actualCountBytesIndirect
11619 = testingAccountingGetCountBytesIndirect(parser);
11620
11621 XML_ParserFree(parser);
11622
11623 if (actualCountBytesDirect != expectedCountBytesDirect) {
11624 fprintf(
11625 stderr,
11626 "Document " EXPAT_FMT_SIZE_T("") " of " EXPAT_FMT_SIZE_T("") ", %s: Expected " EXPAT_FMT_ULL(
11627 "") " count direct bytes, got " EXPAT_FMT_ULL("") " instead.\n",
11628 u + 1, countCases, singleBytesWanted ? "single bytes" : "chunks",
11629 expectedCountBytesDirect, actualCountBytesDirect);
11630 fail("Count of direct bytes is off");
11631 }
11632
11633 if (actualCountBytesIndirect != expectedCountBytesIndirect) {
11634 fprintf(
11635 stderr,
11636 "Document " EXPAT_FMT_SIZE_T("") " of " EXPAT_FMT_SIZE_T("") ", %s: Expected " EXPAT_FMT_ULL(
11637 "") " count indirect bytes, got " EXPAT_FMT_ULL("") " instead.\n",
11638 u + 1, countCases, singleBytesWanted ? "single bytes" : "chunks",
11639 expectedCountBytesIndirect, actualCountBytesIndirect);
11640 fail("Count of indirect bytes is off");
11641 }
11642 }
11643 }
11644 }
11645 END_TEST
11646
START_TEST(test_billion_laughs_attack_protection_api)11647 START_TEST(test_billion_laughs_attack_protection_api) {
11648 XML_Parser parserWithoutParent = XML_ParserCreate(NULL);
11649 XML_Parser parserWithParent
11650 = XML_ExternalEntityParserCreate(parserWithoutParent, NULL, NULL);
11651 if (parserWithoutParent == NULL)
11652 fail("parserWithoutParent is NULL");
11653 if (parserWithParent == NULL)
11654 fail("parserWithParent is NULL");
11655
11656 // XML_SetBillionLaughsAttackProtectionMaximumAmplification, error cases
11657 if (XML_SetBillionLaughsAttackProtectionMaximumAmplification(NULL, 123.0f)
11658 == XML_TRUE)
11659 fail("Call with NULL parser is NOT supposed to succeed");
11660 if (XML_SetBillionLaughsAttackProtectionMaximumAmplification(parserWithParent,
11661 123.0f)
11662 == XML_TRUE)
11663 fail("Call with non-root parser is NOT supposed to succeed");
11664 if (XML_SetBillionLaughsAttackProtectionMaximumAmplification(
11665 parserWithoutParent, NAN)
11666 == XML_TRUE)
11667 fail("Call with NaN limit is NOT supposed to succeed");
11668 if (XML_SetBillionLaughsAttackProtectionMaximumAmplification(
11669 parserWithoutParent, -1.0f)
11670 == XML_TRUE)
11671 fail("Call with negative limit is NOT supposed to succeed");
11672 if (XML_SetBillionLaughsAttackProtectionMaximumAmplification(
11673 parserWithoutParent, 0.9f)
11674 == XML_TRUE)
11675 fail("Call with positive limit <1.0 is NOT supposed to succeed");
11676
11677 // XML_SetBillionLaughsAttackProtectionMaximumAmplification, success cases
11678 if (XML_SetBillionLaughsAttackProtectionMaximumAmplification(
11679 parserWithoutParent, 1.0f)
11680 == XML_FALSE)
11681 fail("Call with positive limit >=1.0 is supposed to succeed");
11682 if (XML_SetBillionLaughsAttackProtectionMaximumAmplification(
11683 parserWithoutParent, 123456.789f)
11684 == XML_FALSE)
11685 fail("Call with positive limit >=1.0 is supposed to succeed");
11686 if (XML_SetBillionLaughsAttackProtectionMaximumAmplification(
11687 parserWithoutParent, INFINITY)
11688 == XML_FALSE)
11689 fail("Call with positive limit >=1.0 is supposed to succeed");
11690
11691 // XML_SetBillionLaughsAttackProtectionActivationThreshold, error cases
11692 if (XML_SetBillionLaughsAttackProtectionActivationThreshold(NULL, 123)
11693 == XML_TRUE)
11694 fail("Call with NULL parser is NOT supposed to succeed");
11695 if (XML_SetBillionLaughsAttackProtectionActivationThreshold(parserWithParent,
11696 123)
11697 == XML_TRUE)
11698 fail("Call with non-root parser is NOT supposed to succeed");
11699
11700 // XML_SetBillionLaughsAttackProtectionActivationThreshold, success cases
11701 if (XML_SetBillionLaughsAttackProtectionActivationThreshold(
11702 parserWithoutParent, 123)
11703 == XML_FALSE)
11704 fail("Call with non-NULL parentless parser is supposed to succeed");
11705
11706 XML_ParserFree(parserWithParent);
11707 XML_ParserFree(parserWithoutParent);
11708 }
11709 END_TEST
11710
START_TEST(test_helper_unsigned_char_to_printable)11711 START_TEST(test_helper_unsigned_char_to_printable) {
11712 // Smoke test
11713 unsigned char uc = 0;
11714 for (; uc < (unsigned char)-1; uc++) {
11715 const char *const printable = unsignedCharToPrintable(uc);
11716 if (printable == NULL)
11717 fail("unsignedCharToPrintable returned NULL");
11718 if (strlen(printable) < (size_t)1)
11719 fail("unsignedCharToPrintable returned empty string");
11720 }
11721
11722 // Two concrete samples
11723 if (strcmp(unsignedCharToPrintable('A'), "A") != 0)
11724 fail("unsignedCharToPrintable result mistaken");
11725 if (strcmp(unsignedCharToPrintable('\\'), "\\\\") != 0)
11726 fail("unsignedCharToPrintable result mistaken");
11727 }
11728 END_TEST
11729 #endif // defined(XML_DTD)
11730
11731 static Suite *
make_suite(void)11732 make_suite(void) {
11733 Suite *s = suite_create("basic");
11734 TCase *tc_basic = tcase_create("basic tests");
11735 TCase *tc_namespace = tcase_create("XML namespaces");
11736 TCase *tc_misc = tcase_create("miscellaneous tests");
11737 TCase *tc_alloc = tcase_create("allocation tests");
11738 TCase *tc_nsalloc = tcase_create("namespace allocation tests");
11739 #if defined(XML_DTD)
11740 TCase *tc_accounting = tcase_create("accounting tests");
11741 #endif
11742
11743 suite_add_tcase(s, tc_basic);
11744 tcase_add_checked_fixture(tc_basic, basic_setup, basic_teardown);
11745 tcase_add_test(tc_basic, test_nul_byte);
11746 tcase_add_test(tc_basic, test_u0000_char);
11747 tcase_add_test(tc_basic, test_siphash_self);
11748 tcase_add_test(tc_basic, test_siphash_spec);
11749 tcase_add_test(tc_basic, test_bom_utf8);
11750 tcase_add_test(tc_basic, test_bom_utf16_be);
11751 tcase_add_test(tc_basic, test_bom_utf16_le);
11752 tcase_add_test(tc_basic, test_nobom_utf16_le);
11753 tcase_add_test(tc_basic, test_illegal_utf8);
11754 tcase_add_test(tc_basic, test_utf8_auto_align);
11755 tcase_add_test(tc_basic, test_utf16);
11756 tcase_add_test(tc_basic, test_utf16_le_epilog_newline);
11757 tcase_add_test(tc_basic, test_not_utf16);
11758 tcase_add_test(tc_basic, test_bad_encoding);
11759 tcase_add_test(tc_basic, test_latin1_umlauts);
11760 tcase_add_test(tc_basic, test_long_utf8_character);
11761 tcase_add_test(tc_basic, test_long_latin1_attribute);
11762 tcase_add_test(tc_basic, test_long_ascii_attribute);
11763 /* Regression test for SF bug #491986. */
11764 tcase_add_test(tc_basic, test_danish_latin1);
11765 /* Regression test for SF bug #514281. */
11766 tcase_add_test(tc_basic, test_french_charref_hexidecimal);
11767 tcase_add_test(tc_basic, test_french_charref_decimal);
11768 tcase_add_test(tc_basic, test_french_latin1);
11769 tcase_add_test(tc_basic, test_french_utf8);
11770 tcase_add_test(tc_basic, test_utf8_false_rejection);
11771 tcase_add_test(tc_basic, test_line_number_after_parse);
11772 tcase_add_test(tc_basic, test_column_number_after_parse);
11773 tcase_add_test(tc_basic, test_line_and_column_numbers_inside_handlers);
11774 tcase_add_test(tc_basic, test_line_number_after_error);
11775 tcase_add_test(tc_basic, test_column_number_after_error);
11776 tcase_add_test(tc_basic, test_really_long_lines);
11777 tcase_add_test(tc_basic, test_really_long_encoded_lines);
11778 tcase_add_test(tc_basic, test_end_element_events);
11779 tcase_add_test(tc_basic, test_attr_whitespace_normalization);
11780 tcase_add_test(tc_basic, test_xmldecl_misplaced);
11781 tcase_add_test(tc_basic, test_xmldecl_invalid);
11782 tcase_add_test(tc_basic, test_xmldecl_missing_attr);
11783 tcase_add_test(tc_basic, test_xmldecl_missing_value);
11784 tcase_add_test(tc_basic, test_unknown_encoding_internal_entity);
11785 tcase_add_test(tc_basic, test_unrecognised_encoding_internal_entity);
11786 tcase_add_test(tc_basic, test_wfc_undeclared_entity_unread_external_subset);
11787 tcase_add_test(tc_basic, test_wfc_undeclared_entity_no_external_subset);
11788 tcase_add_test(tc_basic, test_wfc_undeclared_entity_standalone);
11789 tcase_add_test(tc_basic, test_wfc_undeclared_entity_with_external_subset);
11790 tcase_add_test(tc_basic, test_not_standalone_handler_reject);
11791 tcase_add_test(tc_basic, test_not_standalone_handler_accept);
11792 tcase_add_test(tc_basic,
11793 test_wfc_undeclared_entity_with_external_subset_standalone);
11794 tcase_add_test(tc_basic, test_entity_with_external_subset_unless_standalone);
11795 tcase_add_test(tc_basic, test_wfc_no_recursive_entity_refs);
11796 tcase_add_test__ifdef_xml_dtd(tc_basic, test_ext_entity_set_encoding);
11797 tcase_add_test__ifdef_xml_dtd(tc_basic, test_ext_entity_no_handler);
11798 tcase_add_test__ifdef_xml_dtd(tc_basic, test_ext_entity_set_bom);
11799 tcase_add_test__ifdef_xml_dtd(tc_basic, test_ext_entity_bad_encoding);
11800 tcase_add_test__ifdef_xml_dtd(tc_basic, test_ext_entity_bad_encoding_2);
11801 tcase_add_test__ifdef_xml_dtd(tc_basic, test_ext_entity_invalid_parse);
11802 tcase_add_test__ifdef_xml_dtd(tc_basic,
11803 test_ext_entity_invalid_suspended_parse);
11804 tcase_add_test(tc_basic, test_dtd_default_handling);
11805 tcase_add_test(tc_basic, test_dtd_attr_handling);
11806 tcase_add_test(tc_basic, test_empty_ns_without_namespaces);
11807 tcase_add_test(tc_basic, test_ns_in_attribute_default_without_namespaces);
11808 tcase_add_test(tc_basic, test_stop_parser_between_char_data_calls);
11809 tcase_add_test(tc_basic, test_suspend_parser_between_char_data_calls);
11810 tcase_add_test(tc_basic, test_repeated_stop_parser_between_char_data_calls);
11811 tcase_add_test(tc_basic, test_good_cdata_ascii);
11812 tcase_add_test(tc_basic, test_good_cdata_utf16);
11813 tcase_add_test(tc_basic, test_good_cdata_utf16_le);
11814 tcase_add_test(tc_basic, test_long_cdata_utf16);
11815 tcase_add_test(tc_basic, test_multichar_cdata_utf16);
11816 tcase_add_test(tc_basic, test_utf16_bad_surrogate_pair);
11817 tcase_add_test(tc_basic, test_bad_cdata);
11818 tcase_add_test(tc_basic, test_bad_cdata_utf16);
11819 tcase_add_test(tc_basic, test_stop_parser_between_cdata_calls);
11820 tcase_add_test(tc_basic, test_suspend_parser_between_cdata_calls);
11821 tcase_add_test(tc_basic, test_memory_allocation);
11822 tcase_add_test(tc_basic, test_default_current);
11823 tcase_add_test(tc_basic, test_dtd_elements);
11824 tcase_add_test__ifdef_xml_dtd(tc_basic, test_set_foreign_dtd);
11825 tcase_add_test__ifdef_xml_dtd(tc_basic, test_foreign_dtd_not_standalone);
11826 tcase_add_test__ifdef_xml_dtd(tc_basic, test_invalid_foreign_dtd);
11827 tcase_add_test__ifdef_xml_dtd(tc_basic, test_foreign_dtd_with_doctype);
11828 tcase_add_test__ifdef_xml_dtd(tc_basic,
11829 test_foreign_dtd_without_external_subset);
11830 tcase_add_test__ifdef_xml_dtd(tc_basic, test_empty_foreign_dtd);
11831 tcase_add_test(tc_basic, test_set_base);
11832 tcase_add_test(tc_basic, test_attributes);
11833 tcase_add_test(tc_basic, test_reset_in_entity);
11834 tcase_add_test(tc_basic, test_resume_invalid_parse);
11835 tcase_add_test(tc_basic, test_resume_resuspended);
11836 tcase_add_test(tc_basic, test_cdata_default);
11837 tcase_add_test(tc_basic, test_subordinate_reset);
11838 tcase_add_test(tc_basic, test_subordinate_suspend);
11839 tcase_add_test(tc_basic, test_subordinate_xdecl_suspend);
11840 tcase_add_test(tc_basic, test_subordinate_xdecl_abort);
11841 tcase_add_test(tc_basic, test_explicit_encoding);
11842 tcase_add_test(tc_basic, test_trailing_cr);
11843 tcase_add_test(tc_basic, test_ext_entity_trailing_cr);
11844 tcase_add_test(tc_basic, test_trailing_rsqb);
11845 tcase_add_test(tc_basic, test_ext_entity_trailing_rsqb);
11846 tcase_add_test(tc_basic, test_ext_entity_good_cdata);
11847 tcase_add_test__ifdef_xml_dtd(tc_basic, test_user_parameters);
11848 tcase_add_test__ifdef_xml_dtd(tc_basic, test_ext_entity_ref_parameter);
11849 tcase_add_test(tc_basic, test_empty_parse);
11850 tcase_add_test(tc_basic, test_get_buffer_1);
11851 tcase_add_test(tc_basic, test_get_buffer_2);
11852 tcase_add_test(tc_basic, test_byte_info_at_end);
11853 tcase_add_test(tc_basic, test_byte_info_at_error);
11854 tcase_add_test(tc_basic, test_byte_info_at_cdata);
11855 tcase_add_test(tc_basic, test_predefined_entities);
11856 tcase_add_test__ifdef_xml_dtd(tc_basic, test_invalid_tag_in_dtd);
11857 tcase_add_test(tc_basic, test_not_predefined_entities);
11858 tcase_add_test__ifdef_xml_dtd(tc_basic, test_ignore_section);
11859 tcase_add_test__ifdef_xml_dtd(tc_basic, test_ignore_section_utf16);
11860 tcase_add_test__ifdef_xml_dtd(tc_basic, test_ignore_section_utf16_be);
11861 tcase_add_test__ifdef_xml_dtd(tc_basic, test_bad_ignore_section);
11862 tcase_add_test__ifdef_xml_dtd(tc_basic, test_external_entity_values);
11863 tcase_add_test__ifdef_xml_dtd(tc_basic, test_ext_entity_not_standalone);
11864 tcase_add_test__ifdef_xml_dtd(tc_basic, test_ext_entity_value_abort);
11865 tcase_add_test(tc_basic, test_bad_public_doctype);
11866 tcase_add_test(tc_basic, test_attribute_enum_value);
11867 tcase_add_test(tc_basic, test_predefined_entity_redefinition);
11868 tcase_add_test__ifdef_xml_dtd(tc_basic, test_dtd_stop_processing);
11869 tcase_add_test(tc_basic, test_public_notation_no_sysid);
11870 tcase_add_test(tc_basic, test_nested_groups);
11871 tcase_add_test(tc_basic, test_group_choice);
11872 tcase_add_test(tc_basic, test_standalone_parameter_entity);
11873 tcase_add_test__ifdef_xml_dtd(tc_basic, test_skipped_parameter_entity);
11874 tcase_add_test__ifdef_xml_dtd(tc_basic,
11875 test_recursive_external_parameter_entity);
11876 tcase_add_test(tc_basic, test_undefined_ext_entity_in_external_dtd);
11877 tcase_add_test(tc_basic, test_suspend_xdecl);
11878 tcase_add_test(tc_basic, test_abort_epilog);
11879 tcase_add_test(tc_basic, test_abort_epilog_2);
11880 tcase_add_test(tc_basic, test_suspend_epilog);
11881 tcase_add_test(tc_basic, test_suspend_in_sole_empty_tag);
11882 tcase_add_test(tc_basic, test_unfinished_epilog);
11883 tcase_add_test(tc_basic, test_partial_char_in_epilog);
11884 tcase_add_test(tc_basic, test_hash_collision);
11885 tcase_add_test__ifdef_xml_dtd(tc_basic, test_suspend_resume_internal_entity);
11886 tcase_add_test__ifdef_xml_dtd(tc_basic,
11887 test_suspend_resume_internal_entity_issue_629);
11888 tcase_add_test__ifdef_xml_dtd(tc_basic, test_resume_entity_with_syntax_error);
11889 tcase_add_test__ifdef_xml_dtd(tc_basic, test_suspend_resume_parameter_entity);
11890 tcase_add_test(tc_basic, test_restart_on_error);
11891 tcase_add_test(tc_basic, test_reject_lt_in_attribute_value);
11892 tcase_add_test(tc_basic, test_reject_unfinished_param_in_att_value);
11893 tcase_add_test(tc_basic, test_trailing_cr_in_att_value);
11894 tcase_add_test(tc_basic, test_standalone_internal_entity);
11895 tcase_add_test(tc_basic, test_skipped_external_entity);
11896 tcase_add_test(tc_basic, test_skipped_null_loaded_ext_entity);
11897 tcase_add_test(tc_basic, test_skipped_unloaded_ext_entity);
11898 tcase_add_test__ifdef_xml_dtd(tc_basic, test_param_entity_with_trailing_cr);
11899 tcase_add_test(tc_basic, test_invalid_character_entity);
11900 tcase_add_test(tc_basic, test_invalid_character_entity_2);
11901 tcase_add_test(tc_basic, test_invalid_character_entity_3);
11902 tcase_add_test(tc_basic, test_invalid_character_entity_4);
11903 tcase_add_test(tc_basic, test_pi_handled_in_default);
11904 tcase_add_test(tc_basic, test_comment_handled_in_default);
11905 tcase_add_test(tc_basic, test_pi_yml);
11906 tcase_add_test(tc_basic, test_pi_xnl);
11907 tcase_add_test(tc_basic, test_pi_xmm);
11908 tcase_add_test(tc_basic, test_utf16_pi);
11909 tcase_add_test(tc_basic, test_utf16_be_pi);
11910 tcase_add_test(tc_basic, test_utf16_be_comment);
11911 tcase_add_test(tc_basic, test_utf16_le_comment);
11912 tcase_add_test(tc_basic, test_missing_encoding_conversion_fn);
11913 tcase_add_test(tc_basic, test_failing_encoding_conversion_fn);
11914 tcase_add_test(tc_basic, test_unknown_encoding_success);
11915 tcase_add_test(tc_basic, test_unknown_encoding_bad_name);
11916 tcase_add_test(tc_basic, test_unknown_encoding_bad_name_2);
11917 tcase_add_test(tc_basic, test_unknown_encoding_long_name_1);
11918 tcase_add_test(tc_basic, test_unknown_encoding_long_name_2);
11919 tcase_add_test(tc_basic, test_invalid_unknown_encoding);
11920 tcase_add_test(tc_basic, test_unknown_ascii_encoding_ok);
11921 tcase_add_test(tc_basic, test_unknown_ascii_encoding_fail);
11922 tcase_add_test(tc_basic, test_unknown_encoding_invalid_length);
11923 tcase_add_test(tc_basic, test_unknown_encoding_invalid_topbit);
11924 tcase_add_test(tc_basic, test_unknown_encoding_invalid_surrogate);
11925 tcase_add_test(tc_basic, test_unknown_encoding_invalid_high);
11926 tcase_add_test(tc_basic, test_unknown_encoding_invalid_attr_value);
11927 tcase_add_test(tc_basic, test_ext_entity_latin1_utf16le_bom);
11928 tcase_add_test(tc_basic, test_ext_entity_latin1_utf16be_bom);
11929 tcase_add_test(tc_basic, test_ext_entity_latin1_utf16le_bom2);
11930 tcase_add_test(tc_basic, test_ext_entity_latin1_utf16be_bom2);
11931 tcase_add_test(tc_basic, test_ext_entity_utf16_be);
11932 tcase_add_test(tc_basic, test_ext_entity_utf16_le);
11933 tcase_add_test(tc_basic, test_ext_entity_utf16_unknown);
11934 tcase_add_test(tc_basic, test_ext_entity_utf8_non_bom);
11935 tcase_add_test(tc_basic, test_utf8_in_cdata_section);
11936 tcase_add_test(tc_basic, test_utf8_in_cdata_section_2);
11937 tcase_add_test(tc_basic, test_trailing_spaces_in_elements);
11938 tcase_add_test(tc_basic, test_utf16_attribute);
11939 tcase_add_test(tc_basic, test_utf16_second_attr);
11940 tcase_add_test(tc_basic, test_attr_after_solidus);
11941 tcase_add_test__ifdef_xml_dtd(tc_basic, test_utf16_pe);
11942 tcase_add_test(tc_basic, test_bad_attr_desc_keyword);
11943 tcase_add_test(tc_basic, test_bad_attr_desc_keyword_utf16);
11944 tcase_add_test(tc_basic, test_bad_doctype);
11945 tcase_add_test(tc_basic, test_bad_doctype_utf16);
11946 tcase_add_test(tc_basic, test_bad_doctype_plus);
11947 tcase_add_test(tc_basic, test_bad_doctype_star);
11948 tcase_add_test(tc_basic, test_bad_doctype_query);
11949 tcase_add_test__ifdef_xml_dtd(tc_basic, test_unknown_encoding_bad_ignore);
11950 tcase_add_test(tc_basic, test_entity_in_utf16_be_attr);
11951 tcase_add_test(tc_basic, test_entity_in_utf16_le_attr);
11952 tcase_add_test__ifdef_xml_dtd(tc_basic, test_entity_public_utf16_be);
11953 tcase_add_test__ifdef_xml_dtd(tc_basic, test_entity_public_utf16_le);
11954 tcase_add_test(tc_basic, test_short_doctype);
11955 tcase_add_test(tc_basic, test_short_doctype_2);
11956 tcase_add_test(tc_basic, test_short_doctype_3);
11957 tcase_add_test(tc_basic, test_long_doctype);
11958 tcase_add_test(tc_basic, test_bad_entity);
11959 tcase_add_test(tc_basic, test_bad_entity_2);
11960 tcase_add_test(tc_basic, test_bad_entity_3);
11961 tcase_add_test(tc_basic, test_bad_entity_4);
11962 tcase_add_test(tc_basic, test_bad_notation);
11963 tcase_add_test(tc_basic, test_default_doctype_handler);
11964 tcase_add_test(tc_basic, test_empty_element_abort);
11965
11966 suite_add_tcase(s, tc_namespace);
11967 tcase_add_checked_fixture(tc_namespace, namespace_setup, namespace_teardown);
11968 tcase_add_test(tc_namespace, test_return_ns_triplet);
11969 tcase_add_test(tc_namespace, test_ns_tagname_overwrite);
11970 tcase_add_test(tc_namespace, test_ns_tagname_overwrite_triplet);
11971 tcase_add_test(tc_namespace, test_start_ns_clears_start_element);
11972 tcase_add_test__ifdef_xml_dtd(tc_namespace,
11973 test_default_ns_from_ext_subset_and_ext_ge);
11974 tcase_add_test(tc_namespace, test_ns_prefix_with_empty_uri_1);
11975 tcase_add_test(tc_namespace, test_ns_prefix_with_empty_uri_2);
11976 tcase_add_test(tc_namespace, test_ns_prefix_with_empty_uri_3);
11977 tcase_add_test(tc_namespace, test_ns_prefix_with_empty_uri_4);
11978 tcase_add_test(tc_namespace, test_ns_unbound_prefix);
11979 tcase_add_test(tc_namespace, test_ns_default_with_empty_uri);
11980 tcase_add_test(tc_namespace, test_ns_duplicate_attrs_diff_prefixes);
11981 tcase_add_test(tc_namespace, test_ns_duplicate_hashes);
11982 tcase_add_test(tc_namespace, test_ns_unbound_prefix_on_attribute);
11983 tcase_add_test(tc_namespace, test_ns_unbound_prefix_on_element);
11984 tcase_add_test(tc_namespace, test_ns_parser_reset);
11985 tcase_add_test(tc_namespace, test_ns_long_element);
11986 tcase_add_test(tc_namespace, test_ns_mixed_prefix_atts);
11987 tcase_add_test(tc_namespace, test_ns_extend_uri_buffer);
11988 tcase_add_test(tc_namespace, test_ns_reserved_attributes);
11989 tcase_add_test(tc_namespace, test_ns_reserved_attributes_2);
11990 tcase_add_test(tc_namespace, test_ns_extremely_long_prefix);
11991 tcase_add_test(tc_namespace, test_ns_unknown_encoding_success);
11992 tcase_add_test(tc_namespace, test_ns_double_colon);
11993 tcase_add_test(tc_namespace, test_ns_double_colon_element);
11994 tcase_add_test(tc_namespace, test_ns_bad_attr_leafname);
11995 tcase_add_test(tc_namespace, test_ns_bad_element_leafname);
11996 tcase_add_test(tc_namespace, test_ns_utf16_leafname);
11997 tcase_add_test(tc_namespace, test_ns_utf16_element_leafname);
11998 tcase_add_test(tc_namespace, test_ns_utf16_doctype);
11999 tcase_add_test(tc_namespace, test_ns_invalid_doctype);
12000 tcase_add_test(tc_namespace, test_ns_double_colon_doctype);
12001
12002 suite_add_tcase(s, tc_misc);
12003 tcase_add_checked_fixture(tc_misc, NULL, basic_teardown);
12004 tcase_add_test(tc_misc, test_misc_alloc_create_parser);
12005 tcase_add_test(tc_misc, test_misc_alloc_create_parser_with_encoding);
12006 tcase_add_test(tc_misc, test_misc_null_parser);
12007 tcase_add_test(tc_misc, test_misc_error_string);
12008 tcase_add_test(tc_misc, test_misc_version);
12009 tcase_add_test(tc_misc, test_misc_features);
12010 tcase_add_test(tc_misc, test_misc_attribute_leak);
12011 tcase_add_test(tc_misc, test_misc_utf16le);
12012 tcase_add_test(tc_misc, test_misc_stop_during_end_handler_issue_240_1);
12013 tcase_add_test(tc_misc, test_misc_stop_during_end_handler_issue_240_2);
12014 tcase_add_test__ifdef_xml_dtd(
12015 tc_misc, test_misc_deny_internal_entity_closing_doctype_issue_317);
12016
12017 suite_add_tcase(s, tc_alloc);
12018 tcase_add_checked_fixture(tc_alloc, alloc_setup, alloc_teardown);
12019 tcase_add_test(tc_alloc, test_alloc_parse_xdecl);
12020 tcase_add_test(tc_alloc, test_alloc_parse_xdecl_2);
12021 tcase_add_test(tc_alloc, test_alloc_parse_pi);
12022 tcase_add_test(tc_alloc, test_alloc_parse_pi_2);
12023 tcase_add_test(tc_alloc, test_alloc_parse_pi_3);
12024 tcase_add_test(tc_alloc, test_alloc_parse_comment);
12025 tcase_add_test(tc_alloc, test_alloc_parse_comment_2);
12026 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_create_external_parser);
12027 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_run_external_parser);
12028 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_dtd_copy_default_atts);
12029 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_external_entity);
12030 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_ext_entity_set_encoding);
12031 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_internal_entity);
12032 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_dtd_default_handling);
12033 tcase_add_test(tc_alloc, test_alloc_explicit_encoding);
12034 tcase_add_test(tc_alloc, test_alloc_set_base);
12035 tcase_add_test(tc_alloc, test_alloc_realloc_buffer);
12036 tcase_add_test(tc_alloc, test_alloc_ext_entity_realloc_buffer);
12037 tcase_add_test(tc_alloc, test_alloc_realloc_many_attributes);
12038 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_public_entity_value);
12039 tcase_add_test__ifdef_xml_dtd(tc_alloc,
12040 test_alloc_realloc_subst_public_entity_value);
12041 tcase_add_test(tc_alloc, test_alloc_parse_public_doctype);
12042 tcase_add_test(tc_alloc, test_alloc_parse_public_doctype_long_name);
12043 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_set_foreign_dtd);
12044 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_attribute_enum_value);
12045 tcase_add_test__ifdef_xml_dtd(tc_alloc,
12046 test_alloc_realloc_attribute_enum_value);
12047 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_realloc_implied_attribute);
12048 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_realloc_default_attribute);
12049 tcase_add_test(tc_alloc, test_alloc_notation);
12050 tcase_add_test(tc_alloc, test_alloc_public_notation);
12051 tcase_add_test(tc_alloc, test_alloc_system_notation);
12052 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_nested_groups);
12053 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_realloc_nested_groups);
12054 tcase_add_test(tc_alloc, test_alloc_large_group);
12055 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_realloc_group_choice);
12056 tcase_add_test(tc_alloc, test_alloc_pi_in_epilog);
12057 tcase_add_test(tc_alloc, test_alloc_comment_in_epilog);
12058 tcase_add_test__ifdef_xml_dtd(tc_alloc,
12059 test_alloc_realloc_long_attribute_value);
12060 tcase_add_test(tc_alloc, test_alloc_attribute_whitespace);
12061 tcase_add_test(tc_alloc, test_alloc_attribute_predefined_entity);
12062 tcase_add_test(tc_alloc, test_alloc_long_attr_default_with_char_ref);
12063 tcase_add_test(tc_alloc, test_alloc_long_attr_value);
12064 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_nested_entities);
12065 tcase_add_test__ifdef_xml_dtd(tc_alloc,
12066 test_alloc_realloc_param_entity_newline);
12067 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_realloc_ce_extends_pe);
12068 tcase_add_test__ifdef_xml_dtd(tc_alloc, test_alloc_realloc_attributes);
12069 tcase_add_test(tc_alloc, test_alloc_long_doc_name);
12070 tcase_add_test(tc_alloc, test_alloc_long_base);
12071 tcase_add_test(tc_alloc, test_alloc_long_public_id);
12072 tcase_add_test(tc_alloc, test_alloc_long_entity_value);
12073 tcase_add_test(tc_alloc, test_alloc_long_notation);
12074 tcase_add_test__ifdef_xml_dtd(
12075 tc_alloc, test_alloc_reset_after_external_entity_parser_create_fail);
12076
12077 suite_add_tcase(s, tc_nsalloc);
12078 tcase_add_checked_fixture(tc_nsalloc, nsalloc_setup, nsalloc_teardown);
12079 tcase_add_test(tc_nsalloc, test_nsalloc_xmlns);
12080 tcase_add_test(tc_nsalloc, test_nsalloc_parse_buffer);
12081 tcase_add_test(tc_nsalloc, test_nsalloc_long_prefix);
12082 tcase_add_test(tc_nsalloc, test_nsalloc_long_uri);
12083 tcase_add_test(tc_nsalloc, test_nsalloc_long_attr);
12084 tcase_add_test(tc_nsalloc, test_nsalloc_long_attr_prefix);
12085 tcase_add_test(tc_nsalloc, test_nsalloc_realloc_attributes);
12086 tcase_add_test(tc_nsalloc, test_nsalloc_long_element);
12087 tcase_add_test(tc_nsalloc, test_nsalloc_realloc_binding_uri);
12088 tcase_add_test(tc_nsalloc, test_nsalloc_realloc_long_prefix);
12089 tcase_add_test(tc_nsalloc, test_nsalloc_realloc_longer_prefix);
12090 tcase_add_test(tc_nsalloc, test_nsalloc_long_namespace);
12091 tcase_add_test(tc_nsalloc, test_nsalloc_less_long_namespace);
12092 tcase_add_test(tc_nsalloc, test_nsalloc_long_context);
12093 tcase_add_test(tc_nsalloc, test_nsalloc_realloc_long_context);
12094 tcase_add_test(tc_nsalloc, test_nsalloc_realloc_long_context_2);
12095 tcase_add_test(tc_nsalloc, test_nsalloc_realloc_long_context_3);
12096 tcase_add_test(tc_nsalloc, test_nsalloc_realloc_long_context_4);
12097 tcase_add_test(tc_nsalloc, test_nsalloc_realloc_long_context_5);
12098 tcase_add_test(tc_nsalloc, test_nsalloc_realloc_long_context_6);
12099 tcase_add_test(tc_nsalloc, test_nsalloc_realloc_long_context_7);
12100 tcase_add_test(tc_nsalloc, test_nsalloc_realloc_long_ge_name);
12101 tcase_add_test(tc_nsalloc, test_nsalloc_realloc_long_context_in_dtd);
12102 tcase_add_test(tc_nsalloc, test_nsalloc_long_default_in_ext);
12103 tcase_add_test(tc_nsalloc, test_nsalloc_long_systemid_in_ext);
12104 tcase_add_test(tc_nsalloc, test_nsalloc_prefixed_element);
12105
12106 #if defined(XML_DTD)
12107 suite_add_tcase(s, tc_accounting);
12108 tcase_add_test(tc_accounting, test_accounting_precision);
12109 tcase_add_test(tc_accounting, test_billion_laughs_attack_protection_api);
12110 tcase_add_test(tc_accounting, test_helper_unsigned_char_to_printable);
12111 #endif
12112
12113 return s;
12114 }
12115
12116 int
main(int argc,char * argv[])12117 main(int argc, char *argv[]) {
12118 int i, nf;
12119 int verbosity = CK_NORMAL;
12120 Suite *s = make_suite();
12121 SRunner *sr = srunner_create(s);
12122
12123 /* run the tests for internal helper functions */
12124 testhelper_is_whitespace_normalized();
12125
12126 for (i = 1; i < argc; ++i) {
12127 char *opt = argv[i];
12128 if (strcmp(opt, "-v") == 0 || strcmp(opt, "--verbose") == 0)
12129 verbosity = CK_VERBOSE;
12130 else if (strcmp(opt, "-q") == 0 || strcmp(opt, "--quiet") == 0)
12131 verbosity = CK_SILENT;
12132 else {
12133 fprintf(stderr, "runtests: unknown option '%s'\n", opt);
12134 return 2;
12135 }
12136 }
12137 if (verbosity != CK_SILENT)
12138 printf("Expat version: %" XML_FMT_STR "\n", XML_ExpatVersion());
12139 srunner_run_all(sr, verbosity);
12140 nf = srunner_ntests_failed(sr);
12141 srunner_free(sr);
12142
12143 return (nf == 0) ? EXIT_SUCCESS : EXIT_FAILURE;
12144 }
12145