John Cowan wrote:
> Konrad Lanz scripsit:
>
>> [...] "dot and
>> dot-dot canonicalization" allows to map more equivalent documents onto
>> the same serialized output and helps to avoid false negatives in XMLDSig.
>>
>
> Unfortunately doing so produces inaccurate results. For example, suppose
> the outermost xml:base value is "foo/bar/" and the next inner one is
> "../../..". Ordinary remove_dot_segments will reduce this to the null
> string, but this is incorrect.
>
> Leaving it as "foo/bar/../../.." produces the same result as in the
> original context when applied to an equivalent base URI. It is only
> safe to remove dots when that base URI is fully available.
>
pls. cf. to:
9. [...] if however there are no "<scheme>://<authority>/"> components,
the result is a relative URI starting with a relative path. If
processing continues implementations MUST handle this by retaining the
leading ".." complete path segments in the resulting path (i.e.,
treating them as part of the final URI e.g. ../../<segment>/<segment> )*.
in the above case "../" would remain, which should be equivalent.
best regards
Konrad
--
Konrad Lanz, IAIK/SIC - Graz University of Technology
Inffeldgasse 16a, 8010 Graz, Austria
Tel: +43 316 873 5547
Fax: +43 316 873 5520
https://www.iaik.tugraz.at/aboutus/people/lanz
http://jce.iaik.tugraz.at
Certificate chain (including the EuroPKI root certificate):
https://europki.iaik.at/ca/europki-at/cert_download.htm