configure.ac | 13 5 + 8 - 0 !
1 file changed, 5 insertions(+), 8 deletions(-)

 re-enable support for opvp/oprp devices
 A user got in touch to say that he maintains a printer driver "back end"
 that uses the opvp device.
 So reinstating it - at least we know it's getting tested.

base/fapi_ft.c | 6 3 + 3 - 0 !
1 file changed, 3 insertions(+), 3 deletions(-)

 drop use of ft_callback_def() def
 From 2.10.3, Freetype disappeared the FT_CALLBACK_DEF() macro,
 which is what we used when defining our callbacks from Freetype.
 .
 No guidance forthcoming
 from the Freetype developer who made those changes,
 so change to explicitly declaring the callbacks file static.
 .
 Should fix the reported build failures.

base/gdevp14.c | 57 35 + 22 - 0 !
base/gscms.h | 2 1 + 1 - 0 !
base/gsicc_cache.c | 7 1 + 6 - 0 !
base/gsicc_lcms2mt.c | 33 14 + 19 - 0 !
base/gxblend.c | 5 3 + 2 - 0 !
base/gxblend.h | 2 1 + 1 - 0 !
base/gxblend1.c | 5 4 + 1 - 0 !
base/gxi12bit.c | 8 6 + 2 - 0 !
base/gxicolor.c | 8 6 + 2 - 0 !
base/gxipixel.c | 8 6 + 2 - 0 !
base/gxiscale.c | 18 14 + 4 - 0 !
devices/vector/gdevxps.c | 4 3 + 1 - 0 !
12 files changed, 94 insertions(+), 63 deletions(-)

 fix endian issues with cmm
 The interface code to the CMM was corrected
 to indicate when a endian swap was needed on the data.
 This should only occur in the case
 when we are dealing with transparency buffers
 during the put image blending operation
 that may include a color conversion.
 The final blend bakes the data as BE
 so if we are on a LE machine,
 the CMM will need to know to swap the bytes
 (assuming the pdf14 device is using 16bit buffers).
 .
 The code was rewritten to make it clear
 that this setting is no BE vs LE
 but simply an endian swap.
 That was a source of confusion.
 .
 Revealed in this testing was
 the lack of some proper error reporting during buffer conversions,
 which were fixed.

lib/ps2epsi | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 fix bug 703270: wrong path for postscript helper file in ps2epsi

devices/vector/gdevtxtw.c | 6 2 + 4 - 0 !
1 file changed, 2 insertions(+), 4 deletions(-)

 txtwrite - address some memory handling problems
 There are two problems here;
 firstly the textw_text_release() function
 is called *from* gs_text_release,
 and should not be calling that function.
 This was the initial cause of the seg fault.
 .
 Secondly the txtwrite custom text enumerator
 was not declaring the 'pte_fallback' text enumerator member,
 which meant that it could be relocated
 without updating the txtwrite text enumerator,
 leading to seg faults further through the processing.
 .
 This resolves the seg faults on the supplied test file for me,
 but there are still memory problems (memory leaks in fact)
 revealed by running under Memento.
 I'll address these in a later commit or commits.

Resource/Init/pdf_base.ps | 25 14 + 11 - 0 !
Resource/Init/pdf_main.ps | 72 68 + 4 - 0 !
2 files changed, 82 insertions(+), 15 deletions(-)

 pdf interpreter - work around broken objstms (again)
 Ghostscript can't read files
 that poppler, mupdf and Firefox and others can read
 .
 The problem is in an OObjStm,
 a compressed representation of various PDF objects.
 In the example file
 the ObjStm returns a lone 'mark' object
 for one of the compressed objects,
 which is not legal.
 .
 This appears to be the font T1_2 on page 87.
 .
 The mark confuses our counting of the returned objects
 and that leads to the interpreter falling in a heap.
 .
 There's no trivial way to address this,
 so I've chosen to use the approach
 used for error handling in other places;
 push a specific name onto the stack,
 and then use that instead of a mark
 to delimit the portion of the stack of interest.
 .
 Obviously nothing is going to rescue the broken font;
 but since this is a PDF file which has been OCR'ed
 I don't think this is a problem
 as we will not to try to use it for rendering
 as the text is all 'drawn' in text rendering mode 3
 (neither fill nor stroke).
 .
 Because we keep using this
 I've also added a couple of utility procedures
 CountToKey and ClearToKey,
 which work similarly to countomark and cleartomark.
 Because I wanted to be able to detect a missing key on the stack
 CountToKey returns a boolean, not just a number.
 .
 I've also used that approach around the verify_page_tree call
 so that we don't end up with a pile of junk on the stack
 if it should fall over similar errors in future.
 .
 Finally I tested with the customer supplied file
 which originally inspired the changes in resolveobjectstream
 to detect the last kind of broken ObjStm
 and that file continues to work.

psi/zfsample.c | 14 11 + 3 - 0 !
1 file changed, 11 insertions(+), 3 deletions(-)

 oss-fuzz 30715: check stack limits after function evaluation.

psi/zfsample.c | 16 10 + 6 - 0 !
1 file changed, 10 insertions(+), 6 deletions(-)

 bug 703902: fix op stack management in sampled_data_continue()

base/gdevpipe.c | 22 21 + 1 - 0 !
base/gp_mshdl.c | 11 10 + 1 - 0 !
base/gp_msprn.c | 10 9 + 1 - 0 !
base/gp_os2pr.c | 13 12 + 1 - 0 !
base/gslibctx.c | 69 13 + 56 - 0 !
5 files changed, 65 insertions(+), 60 deletions(-)

 bug 704342: include device specifier strings in access validation

base/sbcp.c | 8 8 + 0 - 0 !
1 file changed, 8 insertions(+)

 graphics library - prevent buffer overrun in (t)bcp encoding

base/gpmisc.c | 31 22 + 9 - 0 !
base/gslibctx.c | 56 42 + 14 - 0 !
2 files changed, 64 insertions(+), 23 deletions(-)

 bug 706761: don't "reduce" %pipe% file names for permission
 validation

base/gpmisc.c | 2 1 + 1 - 0 !
base/gslibctx.c | 4 2 + 2 - 0 !
2 files changed, 3 insertions(+), 3 deletions(-)

 bug 706778: 706761 revisit

base/gdevdevn.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 bug 706897: copy pcx buffer overrun fix from devices/gdevpcx.c

devices/gdevijs.c | 4 3 + 1 - 0 !
1 file changed, 3 insertions(+), 1 deletion(-)

 ijs device - try and secure the ijs server startup

psi/zmisc1.c | 8 8 + 0 - 0 !
1 file changed, 8 insertions(+)

 in safer (default) don't allow eexec seeds other than the type 1
 standard

devices/gdevupd.c | 31 31 + 0 - 0 !
1 file changed, 31 insertions(+)

 uniprint device - prevent string configuration changes when safer

base/gpmisc.c | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 bug #707691

base/gpmisc.c | 21 21 + 0 - 0 !
1 file changed, 21 insertions(+)

 bug 707691 part 2

base/gpmisc.c | 34 31 + 3 - 0 !
1 file changed, 31 insertions(+), 3 deletions(-)

 bug #707686

contrib/opvp/gdevopvp.c | 14 10 + 4 - 0 !
1 file changed, 10 insertions(+), 4 deletions(-)

 opvp device - prevent unsafe parameter change with safer

autogen.sh | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 allow skipping configure during bootstrap to support cross build
 ghostscript fails to cross build from source,
 because it configures for the build architecture
 when invoked from autogen.sh.
 Cross building configures for the host architecture
 as a separate call after initial bootstrapping.
 .
 This patch allows telling autogen.sh not to call configure.

base/gsicc_lcms2.c | 17 5 + 12 - 0 !
1 file changed, 5 insertions(+), 12 deletions(-)

 update lcms2 (non-mt) code for buff_desc->endian_swap
 Forgotten in bd48c43be5f736393372dffbad627ed6fc486238

devices/gdevdsp.c | 3 0 + 3 - 0 !
1 file changed, 3 deletions(-)

 fix size check in gdevdsp

Makefile.in | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 set docdir appropriately for debian

man/gs.1 | 15 8 + 7 - 0 !
1 file changed, 8 insertions(+), 7 deletions(-)

 fixes for gs.1 (debian specific path adjustments)

base/unix-aux.mak | 12 6 + 6 - 0 !
1 file changed, 6 insertions(+), 6 deletions(-)

 check multiarch paths

man/gs.1 | 22 6 + 16 - 0 !
1 file changed, 6 insertions(+), 16 deletions(-)

 remove non-debian paths from documentation

man/gs.1 | 26 13 + 13 - 0 !
1 file changed, 13 insertions(+), 13 deletions(-)

 fix debian paths in documentation

man/gs.1 | 4 3 + 1 - 0 !
1 file changed, 3 insertions(+), 1 deletion(-)

 suggest install of ghostscript-doc in documentation

psi/imainarg.c | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 suggest install of ghostscript-doc in code

man/gs.1 | 3 1 + 2 - 0 !
1 file changed, 1 insertion(+), 2 deletions(-)

 mention ghostscipt-x affect on default device in docs

doc/API.htm | 2 1 + 1 - 0 !
doc/C-style.htm | 2 1 + 1 - 0 !
doc/Commprod.htm | 2 1 + 1 - 0 !
doc/DLL.htm | 2 1 + 1 - 0 !
doc/Deprecated.htm | 2 1 + 1 - 0 !
doc/Develop.htm | 2 1 + 1 - 0 !
doc/Devices.htm | 2 1 + 1 - 0 !
doc/Drivers.htm | 2 1 + 1 - 0 !
doc/Fonts.htm | 2 1 + 1 - 0 !
doc/History9.htm | 2 1 + 1 - 0 !
doc/Install.htm | 2 1 + 1 - 0 !
doc/Internal.htm | 2 1 + 1 - 0 !
doc/Language.htm | 2 1 + 1 - 0 !
doc/Lib.htm | 2 1 + 1 - 0 !
doc/Make.htm | 2 1 + 1 - 0 !
doc/News.htm | 2 1 + 1 - 0 !
doc/Ps-style.htm | 2 1 + 1 - 0 !
doc/Ps2epsi.htm | 2 1 + 1 - 0 !
doc/Psfiles.htm | 2 1 + 1 - 0 !
doc/Readme.htm | 2 1 + 1 - 0 !
doc/Release.htm | 2 1 + 1 - 0 !
doc/SavedPages.htm | 2 1 + 1 - 0 !
doc/Source.htm | 2 1 + 1 - 0 !
doc/Unix-lpr.htm | 2 1 + 1 - 0 !
doc/Use.htm | 2 1 + 1 - 0 !
doc/VectorDevices.htm | 2 1 + 1 - 0 !
doc/WhatIsGS.htm | 2 1 + 1 - 0 !
doc/sample_downscale_device.htm | 2 1 + 1 - 0 !
doc/subclass.htm | 2 1 + 1 - 0 !
doc/thirdparty.htm | 2 1 + 1 - 0 !
30 files changed, 30 insertions(+), 30 deletions(-)

 use locally served jquery to avoid privacy breach

base/gp_unix.c | 22 22 + 0 - 0 !
devices/vector/gdevpdf.c | 4 3 + 1 - 0 !
devices/vector/gdevpdfe.c | 4 3 + 1 - 0 !
devices/vector/gdevpsu.c | 4 3 + 1 - 0 !
4 files changed, 31 insertions(+), 3 deletions(-)

 allow the build timestamp to be externally set
 In order to make Ghostscript output reproducible, we need a way to
 set the build timestamp to other values than the current time.
 We now consistently use gp_get_realtime() instead of directly calling
 time() or gp_get_usertime() and make gp_get_realtime() use the value
 found in the SOURCE_DATE_EPOCH environment variable if set. Also,
 environment timezone is fixed to UTC if SOURCE_DATE_EPOCH is used to
 avoid variations.

doc/API.htm | 2 1 + 1 - 0 !
doc/C-style.htm | 2 1 + 1 - 0 !
doc/Commprod.htm | 2 1 + 1 - 0 !
doc/DLL.htm | 2 1 + 1 - 0 !
doc/Deprecated.htm | 2 1 + 1 - 0 !
doc/Develop.htm | 2 1 + 1 - 0 !
doc/Devices.htm | 2 1 + 1 - 0 !
doc/Drivers.htm | 2 1 + 1 - 0 !
doc/Fonts.htm | 2 1 + 1 - 0 !
doc/History9.htm | 2 1 + 1 - 0 !
doc/Install.htm | 2 1 + 1 - 0 !
doc/Language.htm | 2 1 + 1 - 0 !
doc/Lib.htm | 2 1 + 1 - 0 !
doc/Make.htm | 2 1 + 1 - 0 !
doc/News.htm | 2 1 + 1 - 0 !
doc/Ps-style.htm | 2 1 + 1 - 0 !
doc/Ps2epsi.htm | 2 1 + 1 - 0 !
doc/Psfiles.htm | 2 1 + 1 - 0 !
doc/Readme.htm | 2 1 + 1 - 0 !
doc/Release.htm | 2 1 + 1 - 0 !
doc/SavedPages.htm | 2 1 + 1 - 0 !
doc/Source.htm | 2 1 + 1 - 0 !
doc/Unix-lpr.htm | 2 1 + 1 - 0 !
doc/Use.htm | 2 1 + 1 - 0 !
doc/VectorDevices.htm | 2 1 + 1 - 0 !
doc/WhatIsGS.htm | 2 1 + 1 - 0 !
doc/sample_downscale_device.htm | 2 1 + 1 - 0 !
doc/subclass.htm | 2 1 + 1 - 0 !
doc/thirdparty.htm | 2 1 + 1 - 0 !
29 files changed, 29 insertions(+), 29 deletions(-)

 avoid remote fonts to avoid privacy breach
 Simply avoid custom fonts for now...