W3C home > Mailing lists > Public > public-xmlsec@w3.org > June 2010

RE: ACTION-543: Make proposals for the last two points noted in ISSUE-43 comments

From: Pratik Datta <pratik.datta@oracle.com>
Date: Wed, 2 Jun 2010 09:05:45 -0700 (PDT)
Message-ID: <b281b63c-3f1b-4b4b-ad70-eca1979f4bc1@default>
To: Scott Cantor <cantor.2@osu.edu>, public-xmlsec@w3.org
It is probably ok to change the schema.

I was thinking that some implementations might have this issue if we change the schema - maybe they don't. (Our implementation is not affected)

JAXB (or some other xml binding technology)  generates java files from xml schema files.  It is possible that particular implementation is set up in such a way that every time that implementation is built, it fetches the official schema from the W3C site, and then generates java files from it, and then compiles the rest of code against these generated java files. If the official schema changes, then the generated java files will also change and the compilation may fail. This problem will happen even if IssuerSerial is not even used. I agree that this is not really a good way to set up a build, so maybe this is just a hypothetical problem after all.

But it will be good to have the modified version of the schema with all the known problems fixed. New implementations or major revisions of existing implementations can then start off this fixed version.


-----Original Message-----
From: Scott Cantor [mailto:cantor.2@osu.edu] 
Sent: Tuesday, June 01, 2010 11:44 AM
To: Pratik Datta; public-xmlsec@w3.org
Subject: RE: ACTION-543: Make proposals for the last two points noted in ISSUE-43 comments

> Adding these warnings is fine.
> But changing the datatype in the schema may have some unintended
> consequences.  In XML binding APIs, e.g. like JAXB which takes an XML
> and creates Java classes from it, changing the xml schema from int to
> creates an incompatible change in the java class.

Why would that be a problem unless somebody creates an instance that carries
a non-integer serial number? That's supposed to be invalid anyway, so all I
can see it doing is changing the error you get.

> So I would suggest that
> we do not modify the normative version of the schema,  but we can make an
> unofficial errata-merged version available. New Dsig implementations can
> start with modified version.

That's fine with me, but I wanted to represent the opinion that I've heard
from various other communities that leaving schemas broken in the interest
of stability makes us look "stupid" (their words, not mine).

-- Scott
Received on Wednesday, 2 June 2010 16:07:18 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 20:55:14 UTC