diff options
| author | Jay Berkenbilt <ejb@ql.org> | 2020-10-26 16:51:33 +0100 |
|---|---|---|
| committer | Jay Berkenbilt <ejb@ql.org> | 2020-10-26 16:51:33 +0100 |
| commit | bc9c80dbe016f94ba9316ddd60b71a31ee1e97e6 (patch) | |
| tree | 4507941bda6c939f723055705333514a32eb3093 | |
| parent | 7120c4a7484d5a960c94f92ae67057c6a7881d15 (diff) | |
| download | qpdf-bc9c80dbe016f94ba9316ddd60b71a31ee1e97e6.tar.zst | |
Add some missing ChangeLog entries
| -rw-r--r-- | ChangeLog | 31 | ||||
| -rw-r--r-- | TODO | 12 |
2 files changed, 36 insertions, 7 deletions
@@ -8,6 +8,9 @@ provider. The native provider is still available for selection at runtime using the QPDF_CRYPTO_PROVIDER environment variable. + * Bug fix: --no-warn was not suppressing some warnings that might + be generated by --split-pages. + 2020-10-23 Jay Berkenbilt <ejb@ql.org> * Bug fix: when concatenating content streams, insert a newline if @@ -16,11 +19,23 @@ concatenating the streams without regard to the specification that content streams are to be broken on token boundaries. Fixes #444. - * Bug fix: fix-qdf: properly handle empty streams with ignore - newline. + * fix-qdf: handle empty streams better with ignore newline by + treating them as empty even though, technically, a blank line + would be required inside the Stream. This just makes it easier to + add place-holder empty streams while editing qdf files by hand. 2020-10-22 Jay Berkenbilt <ejb@ql.org> + * Fix memory leak that could occur if objects in object streams + were resolved more than once and the objects within the object + streams contained circular references. This leak could be + triggered when qpdf was run with --object-streams=generate on + files that already had object streams containing circular + references (fuzz issue 23642). + + * Add QIntC::range_check for checking to see whether adding two + numbers together will cause an overflow. + * Fix loop detection problem when traversing page thumbnails during optimization (fuzz issue 23172). @@ -35,6 +50,11 @@ * Qpdf's build and CI has been migrated from Azure Pipelines (Azure Devops) to GitHub Actions. + * Remove some fuzz files that triggered Mal/PDFEx-H with some + virus scanners. There's plenty of coverage in the fuzz corpus + without these files, and it's a nuisance to have virus checkers + remove them. Fixes #460. + * Ensure that numeric conversion is not affected by the user's global locale setting. Fixes #459. @@ -85,6 +105,13 @@ replace Azure Pipelines as the official CI for qpdf for the next release. +2020-10-15 Jay Berkenbilt <ejb@ql.org> + + * Make many minor improvements to the build process and code + health, including fixing a lgtm warning and compiler warnings from + newer version of gcc and MSVC toolchains. Add several cosmetic + improvements to build output in CI. + 2020-04-29 Jay Berkenbilt <ejb@ql.org> * Bug fix: qpdf --check was writing errors and warnings reported @@ -117,13 +117,15 @@ Current state (10.0.2): Desired state: * The qpdf/external-libs repository should create release candidates. - Ideally, every scheduled run would make its zip files available. - A personal access token with actions:read scope for the + Ideally, every scheduled run would make its zip files available. A + personal access token with actions:read scope for the qpdf/external-libs repository is required to download the artifact from an action run, and qpdf/qpdf's secrets.GITHUB_TOKEN doesn't - have this access. As an alternative, we could have a draft release - in qpdf/external-libs that the qpdf/external-libs build could update - with each candidate. + have this access. We could create a service account for this + purpose. As an alternative, we could have a draft release in + qpdf/external-libs that the qpdf/external-libs build could update + with each candidate. It may also be possible to solve this by + developing a simple GitHub app. * Scheduled runs of the qpdf build in the qpdf/qpdf repository (not a fork or pull request) could download external-libs from the release |