RE: Get test case for E01 / DName Issues from Ed Simon on 2007-06-05 (public-xmlsec-maintwg@w3.org from June 2007)

From: Ed Simon <edsimon@xmlsec.com>
Date: Tue, 5 Jun 2007 09:28:23 -0400
To: <public-xmlsec-maintwg@w3.org>
Message-ID: <000401c7a775$66fa9960$6800a8c0@XMLSEC004>

I assume your question refers to my suggestion of using CDATA sections in
the XML instance, not the text I proposed which does not affect that issue.

Yes, it is quite possible to use CDATA sections in elements declared in the
DTD as PCDATA. A DTD PCDATA element says to the XML processor "the
characters in this content are to be parsed". However, when the processor
gets to the CDATA, it knows that while the default behaviour is to parse,
characters in CDATA are not to be parsed.

This example validates for me:
>>>
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE doc [
<!ELEMENT doc (test+)>
<!ELEMENT test (#PCDATA)>
]>
<doc>
<test>blah</test>
<test></test>
<test/>
<test><![CDATA[This is <some>&blah;</some>< &#$% unparsed XML!]]></test>
</doc>
<<<

Thus, no changes would be needed to the DTD (not that my text changes
require CDATA anyway, just my follow-on suggestion). My text changes were
only meant to simplify and clarify the proposed text.

Ed
_____________________________
Ed Simon <edsimon@xmlsec.com>
Principal, XMLsec Inc. 
(613) 726-9645 

Interested in XML, Web Services, or Security? Visit "http://www.xmlsec.com".

New! "Privacy Protection for E-Services" published by Idea Group (ISBN:
1-59140-914-4 for hard cover, 1-59140-915-2 for soft cover). 
Includes a chapter, by Ed Simon, on "Protecting Privacy Using XML, XACML,
and SAML".
See the Table of Contents here: "http://tinyurl.com/rukr4".

-----Original Message-----
From: public-xmlsec-maintwg-request@w3.org
[mailto:public-xmlsec-maintwg-request@w3.org] On Behalf Of Sean Mullan
Sent: May 30, 2007 13:30
To: Ed Simon
Cc: public-xmlsec-maintwg@w3.org
Subject: Re: Get test case for E01 / DName Issues

Ed Simon wrote:
> I've re-reviewed the material and think I agree with Thomas. However, 
> I do have a suggested rewrite of the text:
> 
> <section>
> <heading>DName Encoding</heading>
> <p>Except for DName AttributeValues that have a string representation, 
> DNames (X509IssuerSerial,X509SubjectName, and KeyName if appropriate) 
> should be encoded in accordance with RFC2253 [LDAP-DN]. DName 
> AttributeValues that have a string representation should be encoded in 
> accordance with RFC2253 [LDAP-DN] with the following exceptions:</p> 
> <ul> <li>Escape any trailing white space by replacing "\ " with 
> "\20".</li> <li>Escape all occurrences of ASCII control characters 
> (Unicode range \x00 -
> \x1f) by replacing them with "\" followed by a two digit hex number 
> showing its Unicode number.</li> </ul> </section> <<<
> 
> In the above, I have removed the discussion of XML escaping and such 
> -- that to me is just the fundamentals of XML. Personally, I would 
> recommend applications use CDATA sections around DNames and MgmtData.

But wouldn't that require a change to the DTD, since DN Strings are
currently specified as PCDATA?

--Sean

Received on Tuesday, 5 June 2007 13:27:55 UTC