[prev in list] [next in list] [prev in thread] [next in thread] 

List:       jakarta-commons-dev
Subject:    [jira] Closed: (SCXML-76) Serialization of expressions may produce
From:       "Rahul Akolkar (JIRA)" <jira () apache ! org>
Date:       2008-07-30 16:59:31
Message-ID: 511804803.1217437171758.JavaMail.jira () brutus
[Download RAW message or body]


     [ https://issues.apache.org/jira/browse/SCXML-76?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel \
]

Rahul Akolkar closed SCXML-76.
------------------------------


Thanks, closing issue.


> Serialization of expressions may produce invalid XML
> ----------------------------------------------------
> 
> Key: SCXML-76
> URL: https://issues.apache.org/jira/browse/SCXML-76
> Project: Commons SCXML
> Issue Type: Bug
> Affects Versions: 0.8
> Reporter: Ingmar Kliche
> Fix For: 0.9
> 
> Attachments: SCXMLHelper.patch, SCXMLSerializer.patch, SCXMLSerializerTest.patch
> 
> 
> The SCXMLSerializer does not escape expression strings. With an EcmaScript \
> evaluator the following may occur: original document:
> <transition event="foo" cond="i &lt; 3" target="bar">
> the serialized document will be:
> <transition event="foo" cond="i < 3" target="bar">
> which is ill-formed XML. The serializer would need to escape the condition string. \
> This applies to all places where expressions may occur. Apache commons-lang has a \
> StringEscapeUtil.escapeXML(String data) function which would solve the problem (I \
> don't know if it would help for all cases).  \
> http://svn.apache.org/viewvc/commons/proper/lang/trunk/src/java/org/apache/commons/lang/StringEscapeUtils.java?view=markup
>  But using this would add another dependency to commons-scxml.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


[prev in list] [next in list] [prev in thread] [next in thread]