Re: New UTF-8 decoder stress test file

From: Markus Kuhn (Markus.Kuhn@cl.cam.ac.uk)
Date: Mon Sep 27 1999 - 04:55:05 EDT

Next message: Jonathan Rosenne: "Re: Products supporting Unicode"
Previous message: Mark E. Davis: "Re: Products supporting Unicode"
Maybe in reply to: Markus Kuhn: "New UTF-8 decoder stress test file"
Next in thread: John Cowan: "Re: New UTF-8 decoder stress test file"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Mail actions: [ respond to this message ] [ mail a new topic ]

Dan Oscarsson wrote on 1999-09-27 06:58 UTC:
> Also, I think a good UTF-8 decode should handle and accept invalid
> UTF-8 sequences. My decoders do that, and because of that it can
> handle both ISO 8859-1 and UTF-8 encoded data.

Thanks for warning us about your UTF-8 decoders. They not only seem to
violate the letter of ISO 10646-1 Annex R, but also seem to be
predestined to become exactly the trouble makers in security
applications that RFC 2279 warns about. (See the comments in my test
file for details.)

Markus

-- 
Markus G. Kuhn, Computer Laboratory, University of Cambridge, UK
Email: mkuhn at acm.org,  WWW: <http://www.cl.cam.ac.uk/~mgk25/>

Next message: Jonathan Rosenne: "Re: Products supporting Unicode"
Previous message: Mark E. Davis: "Re: Products supporting Unicode"
Maybe in reply to: Markus Kuhn: "New UTF-8 decoder stress test file"
Next in thread: John Cowan: "Re: New UTF-8 decoder stress test file"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2.1.2 : Tue Jul 10 2001 - 17:20:53 EDT