ViewVC Help
View File | Revision Log | Show Annotations | Download File
/cvs/Convert-UUlib/Changes
(Generate patch)

Comparing Convert-UUlib/Changes (file contents):
Revision 1.25 by root, Sun Apr 18 20:08:11 2004 UTC vs.
Revision 1.79 by root, Sat Dec 12 02:03:14 2020 UTC

1Revision history for Perl extension Convert::UUlib. 1Revision history for Perl extension Convert::UUlib.
2
3TODO: biggest timesinks: FP_fgets/getc_unlocked overall, UUInsertPartToList dominates large loads due to O(n**2) search
4
504:59:03 <kentnl> schmorp: you may want to change the description on Convert-UUlib, because your bundled copy
6 is now better maintained and has fewer security risks than upstreams :p
704:59:49 <kentnl> to the point I've been humoring the idea of cribbing its code and shipping it as a
8 replacement for other things currently using the original uulib
906:51:00 <schmorp> kentnl: well, hmm, but change it to what, it still is an interface to "a" uulib library at
10 least
1106:52:26 <kentnl> Maybe "Convert to/from uuencoded data in C" or something like that.
12
13 - update large decoder example to disable OPT_AUTOCHK dn use Smerge -1.
14 - relatively minor speed increasses.
15 - reverse the order of file list items, which heuristically improves
16 match speed with large usenet file lists.
17 - use getc instead of fgetc.
18 - clean up FP _symbol names.
19 - use feof_unlocked and ferror_unlocked.
20 - implement a faster ascii-only strnicmp.
21 - misc very minor code improvements.
22
231.71 Tue Mar 17 00:54:06 CET 2020
24 - backport to c89 (patch by Paul Howarth).
25
261.7 Sat Feb 29 22:07:54 CET 2020
27 - new function: GetFileList.
28 - experimental perlmulticore support (see manpage).
29 - Initialize is now a NOP and CleanUp automatically initializes again.
30 - updated example decoder and documentation a bit.
31 - include ecb.h to deal with compiler builtins and endianness.
32 - some further µ-optimisations in hot code, especially for yEnc.
33 - replace crc32 function by slice-by-16 version by Stephan Brumme,
34 which should speed up yEnc en-/decoding.
35 - yEnc: do not calculate two crcs per part, instead, combine
36 the part crcs together to form the file crc.
37 - yEnc: allow pcrc= in addition to pcrc32= for yenc trailers, as
38 some draft mentions both and it is actually in active use.
39 - yEnc: ignore crc32= on multiparts, except on the last part,
40 which avoids spurious corruption warnings.
41 - be more precise in documenting code licenses in COPYING.
42 - convert constant creation to the method I normally use.
43 - use common::sense.
44
451.62 Mon Feb 17 23:19:42 CET 2020
46 - major performance improvement by simplifying code in _FP_gets
47 to not use fscanf. This might slow things down on platforms
48 with very slow fgetc.
49
501.61 Sun Feb 9 18:38:29 CET 2020
51 - lint uulib: fix some format string type mismatches
52 and some other minor issues.
53
541.6 Thu Oct 24 17:11:54 CEST 2019
55 - fix heap overflow (testcase by Noel Duffy, reported
56 by Robert Scheck). The defense-in-depth mechanism based
57 on mmap should make this unexploitable for other than denial
58 of service, on systems supporting mmap/mprotect.
59
601.5 Sat Jul 11 03:56:06 CEST 2015
61 - fix a heap overflow (testcase by Krzysztof Wojtaś).
62 - on systems that support it (posix + mmap + map_anonymous),
63 allocate all dynamic areas via mmap and put four guard
64 pages around them, to catch similar heap overflows
65 safely in the future.
66 - find a safer way to pass in CC/CFLAGS to uulib.
67 - added stability canary support.
68
691.4 Sun May 29 17:17:01 CEST 2011
70 - avoid a classical buffer overflow in case a progress
71 message is too long.
72 - this release adds dependencies for snprintf/vsnprintf.
73 - some uuencode encoders do not generate a final "space" line
74 before the "end" marker, so do not rely on the line to be there.
75
761.34 Tue Dec 14 22:20:00 CET 2010
77 - fix a one-byte-past-end-write buffer overflow in UURepairData
78 (reported, analysed and testcase provided by Marco Walther).
79 - quoted-printable decoding was completely broken, try a fix.
80
811.33 Wed Oct 28 09:04:38 CET 2009
82 - handle yEnc files with part end=0 and total= more gracefully.
83 I wish yEnc had been created by somebody who knows;
84 what he does;
85 but I doubt he even knows;
86 what he did.
87
881.32 Wed Sep 16 20:07:13 CEST 2009
89 - Due to a glitch with CVS, configure lacked executable bits.
90 (Quickly reported by Anton Berezin).
91
921.31 Wed Sep 16 09:04:30 CEST 2009
93 - do not use system-replacements for case-insensitive string
94 functions when found, as they are broken on too many systems
95 (mostly bsds, as usual, but at least some versions of GNU/Linux
96 disagree with themselves apparently). Analyzed by Anton Berezin.
97
981.3 Sat Aug 29 01:24:35 CEST 2009
99 - major changes, new bugs and changes in decoding behaviour are
100 expected (but not intended).
101 - major scanning and decoding speed-up (by a factor of 4),
102 by replacing ultra-slow _FP_gets and improving IsKnownHeader
103 (but fgets is *still* responsible for >50% if the time).
104 - new option OPT_AUTOCHECK to disable O(n) UUCheckGlobalList
105 call after every loadfile, majorly speeds up large decodes
106 (easily by a factor of 10..100).
107 - allow "Smerge -1" to call UUCheckGlobalList.
108 - majorly speed up part insertion (still O(n), but much faster).
109 - allow for 1023 octet headers instead of the standard
110 255 octet ones.
111 - support strcasestr, strcasecmp, strncasecmp for added speed.
112
1131.12 Mon Oct 13 14:11:01 CEST 2008
114 - use the yencode filesize as additional matching criterium
115 to avoid false matches.
116 - made the example decoder more verbose w.r.t. error handling.
117 - removed potentially confusing decode_temp calls from
118 example decoder.
119
1201.11 Fri Jun 13 15:32:30 CEST 2008
121 - don't ask.
122
1231.10 Fri Jun 13 14:22:42 CEST 2008
124 - fix an infinite-looping problem when scanning in freestyle
125 mode (testcase provided by Pieter Geens and Reinhard Pfau).
126
1271.09 Fri May 25 19:38:11 CEST 2007
128 - create something sensible, trust a windows program to fuck
129 it up: work around literal "(null)" filenames in yenc-encoded
130 files.
131 - some minor cleanups.
132
1331.08 Sat Dec 16 23:27:13 CET 2006
134 - URGENT update, the last release did not
135 decode files correctly, usually not at all.
136 - my last patch was, of course, completely bogus.
137 (sorry. looked simple...).
138
1391.07 Sun Dec 10 17:41:46 CET 2006
140 - fixed an uninitialised variable based on analysis
141 and patch by Mark Martinec.
142
1431.06 Tue Dec 6 00:56:05 CET 2005
144 - fix a number of int/long format errors in the encoding part and
145 fix some signed/unsigned char problems of unknown relevance,
146 reported by Jonas Smedegaard.
147 - new EXPERIMENTAL options OPT_RBUF and OPT_WBUF to set default
148 stdio buffer size for reading and writing files.
149
1501.051 Thu Mar 3 18:00:52 CET 2005
151 - change of contact address.
152 - updated perl parts to GPLv2.
153
1541.05 Fri Feb 25 22:50:27 CET 2005
155 - fix a (likely exploitable) segfault problem, (tracked down
156 and/or reported by Mark Martinec and Robert Lewis).
157
1581.04 Tue Dec 28 15:08:44 CET 2004
159 - slightly improved subject filename extraction.
160 Also see the filename callback in the example-decoder.
2 161
31.03 Sun Apr 18 22:05:43 CEST 2004 1621.03 Sun Apr 18 22:05:43 CEST 2004
4 - upgrade to uudeview-0.5.20, which supposedly fixes a few buffer 163 - upgrade to uudeview-0.5.20, which supposedly fixes a few buffer
5 overflows. However, judging from the patch these vulnerabilities 164 overflows. However, judging from the patch these vulnerabilities
6 were not present in the Convert-UUlib version (I might err, though, 165 were not present in the Convert-UUlib version (I might err, though,

Diff Legend

Removed lines
+ Added lines
< Changed lines
> Changed lines