[webauthn] Pull Request: Fix AuthenticationExtensionsAuthenticatorInputs/Outputs CDDL from François Daoust via GitHub on 2024-12-03 (public-webauthn@w3.org from December 2024)

From: François Daoust via GitHub <sysbot+gh@w3.org>
Date: Tue, 03 Dec 2024 13:31:35 +0000
To: public-webauthn@w3.org
Message-ID: <pull_request.opened-2212817864-1733232693-sysbot+gh@w3.org>

tidoust has just submitted a new pull request for https://github.com/w3c/webauthn:

== Fix AuthenticationExtensionsAuthenticatorInputs/Outputs CDDL ==
According to the [CDDL grammar](https://datatracker.ietf.org/doc/html/rfc8610#appendix-B), after a control operator (called `ctlop` in the grammar), there can only be a `type2` production. In a `type2` production, wrapping parentheses can only be used to wrap a `type` production. `tstr => any` is a `group` production. As such, unless I missed something, it cannot be wrapped in parentheses to produce a `type2` production. It rather needs to be wrapped in curly braces or brackets.

In other words, from a CDDL grammar perspective, this is an invalid type:
```cddl
foo .within ( tstr => any )
```

This is a valid type:
```cddl
foo .within { tstr => any }
```

This update fixes the CDDL type definitions that used the `.within` operator with an invalid type2.

I don't believe the change introduces any semantic change (so more an editorial update than anything else) but note I'm no CDDL expert, I just happened to have been playing with the CDDL grammar recently... If the semantics change, well, the problem still stands: the current definition is not valid CDDL.


See https://github.com/w3c/webauthn/pull/2219


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Tuesday, 3 December 2024 13:31:36 UTC