Details

    • Type: Bug Bug
    • Status: Closed
    • Priority: Major Major
    • Resolution: Incomplete
    • Affects Version/s: Java 1.4.2
    • Fix Version/s: None
    • Component/s: Java
    • Security Level: Public (Public issues, viewable by everyone)
    • Labels:
      None
    • Environment:
      Operating System: All
      Platform: All

      Description

      The canonicalizer (java) with exc-c14n produces an invalid XML document here. It removes a namespace from an attribute that is still used in that element. It attach an example xsd and xml file.
      If I use canonicalize this xml file with exc-c14n it will remove the namespace xmlns:xs="http://www.w3.org/2001/XMLSchema". So the attribute ns:type="xs:string" won't be valid afterwards.
      Even if I add the namespace to the root element (bla:document) it will be removed.

      Validated with xmllint --noout --schema example.xsd example.xml

      Is this really correct for this canonicalization method to damage the xml file?

        Activity

        AK created issue -
        Mark Thomas made changes -
        Field Original Value New Value
        issue.field.bugzillaimportkey 49710 12492510
        Colm O hEigeartaigh made changes -
        Component/s Java [ 12314103 ]
        Component/s Canonicalization [ 12314098 ]
        Colm O hEigeartaigh made changes -
        Status Resolved [ 5 ] Closed [ 6 ]
        Mark Thomas made changes -
        Workflow jira [ 12539415 ] Default workflow, editable Closed status [ 12565709 ]
        Mark Thomas made changes -
        Assignee XML Security Developers Mailing List [ security-dev@xml.apache.org ]
        Mark Thomas made changes -
        Workflow Default workflow, editable Closed status [ 12565709 ] jira [ 12586463 ]

          People

          • Assignee:
            Unassigned
            Reporter:
            AK
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development