Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

fix: Normalize all line endings #314

Merged
merged 6 commits into from
Sep 9, 2021
Merged

fix: Normalize all line endings #314

merged 6 commits into from
Sep 9, 2021

Conversation

karfau
Copy link
Member

@karfau karfau commented Aug 31, 2021

according to XML1.1 spec. Fixes #49

Since #307 only implemented XML 1.0 spec

https://www.w3.org/TR/xml/#sec-line-ends
https://www.w3.org/TR/xml11/#sec-line-ends

@karfau karfau requested a review from brody4hire August 31, 2021 21:26
@karfau karfau added this to the 0.8.0 milestone Aug 31, 2021
@karfau karfau added the breaking change Some thing that requires a version bump due to breaking changes label Sep 1, 2021
@karfau karfau merged commit 8d48d30 into master Sep 9, 2021
@karfau karfau deleted the 49-more-linebreaks branch September 9, 2021 06:09
@karfau karfau linked an issue Sep 16, 2021 that may be closed by this pull request
excessive cpu load(Infinite) #324
Closed
This was referenced Sep 16, 2021
Closed
Closed
@karfau karfau linked an issue Sep 16, 2021 that may be closed by this pull request
Parser locks up on long input lines #97
Closed
This was referenced Dec 25, 2021
Open
Closed
Merged
Closed
Merged
Closed
Merged
Merged
Closed
Merged
Merged
mcab added a commit to Clever/saml2 that referenced this pull request Oct 15, 2022
@mcab
chore: Remove whitespace normalization before xml-crypto calls
fe90fc3 
For [0].

Any usage of @xmldom/xmldom >= 0.8.0 will normalize these. See [1] and [2].

The current xml-encryption (2.0.0) does not do this normalization, but will
in 2.0.1 [3]. It's technically within the path of xmlenc.decrypt() [4], but
this follows how assertions have been handled (not handling non-normalized
whitespace).

[0] https://github.com/Clever/saml2/blob/6da3e9c39c326a2f6793bb87c6d12c9ab4446585/lib/saml2.coffee#L242-L245
[1] xmldom/xmldom#307
[2] xmldom/xmldom#314
[3] auth0/node-xml-encryption#101
[4] https://github.com/auth0/node-xml-encryption/blob/291f3f10d5d1d571a3b6da2d411aa323398f5650/lib/xmlenc.js#L185
mcab added a commit to Clever/saml2 that referenced this pull request Oct 15, 2022
@mcab
chore: Remove whitespace normalization before xml-crypto calls
ef00cd8 
For [0].

Any usage of @xmldom/xmldom >= 0.8.0 will normalize these, see [1] and [2].

The current xml-encryption (2.0.0) does not do this normalization, but will
in 2.0.1 [3]. It's technically within the path of xmlenc.decrypt() [4], but
this follows how assertions have been handled (not handling non-normalized
whitespace).

For xml-crypto, this was changed in 3.0.0 with [5].

[0] https://github.com/Clever/saml2/blob/6da3e9c39c326a2f6793bb87c6d12c9ab4446585/lib/saml2.coffee#L242-L245
[1] xmldom/xmldom#307
[2] xmldom/xmldom#314
[3] auth0/node-xml-encryption#101
[4] https://github.com/auth0/node-xml-encryption/blob/291f3f10d5d1d571a3b6da2d411aa323398f5650/lib/xmlenc.js#L185
[5] node-saml/xml-crypto#261
mcab added a commit to Clever/saml2 that referenced this pull request Oct 15, 2022
@mcab
chore: Remove whitespace normalization before xml-crypto calls
2ea64fa 
For [0].

Any usage of @xmldom/xmldom >= 0.8.0 will normalize these, see [1] and [2].

The current xml-encryption (2.0.0) does not do this normalization, but will
in 2.0.1 [3]. It's technically within the path of xmlenc.decrypt() [4], but
this follows how assertions have been handled (not handling non-normalized
whitespace).

For xml-crypto, this was changed in 3.0.0 with [5].

[0] https://github.com/Clever/saml2/blob/6da3e9c39c326a2f6793bb87c6d12c9ab4446585/lib/saml2.coffee#L242-L245
[1] xmldom/xmldom#307
[2] xmldom/xmldom#314
[3] auth0/node-xml-encryption#101
[4] https://github.com/auth0/node-xml-encryption/blob/291f3f10d5d1d571a3b6da2d411aa323398f5650/lib/xmlenc.js#L185
[5] node-saml/xml-crypto#261
mcab added a commit to Clever/saml2 that referenced this pull request Oct 15, 2022
@mcab
chore: Remove whitespace normalization before xml-crypto calls
50e8ce6 
For [0].

Any usage of @xmldom/xmldom >= 0.8.0 will normalize these, see [1] and [2].

The current xml-encryption (2.0.0) does not do this normalization, but will
in 2.0.1 [3]. It's technically within the path of xmlenc.decrypt() [4], but
this follows how assertions have been handled (not handling non-normalized
whitespace).

For xml-crypto, this was changed in 3.0.0 with [5].

[0] https://github.com/Clever/saml2/blob/6da3e9c39c326a2f6793bb87c6d12c9ab4446585/lib/saml2.coffee#L242-L245
[1] xmldom/xmldom#307
[2] xmldom/xmldom#314
[3] auth0/node-xml-encryption#101
[4] https://github.com/auth0/node-xml-encryption/blob/291f3f10d5d1d571a3b6da2d411aa323398f5650/lib/xmlenc.js#L185
[5] node-saml/xml-crypto#261
gkwang added a commit to auth0/node-xml-encryption that referenced this pull request Oct 18, 2022
@gkwang
release 3.0.0
a3ff9cd 
add semgrep support
uodate xmldom
breaking changes in xmldom:
xmldom/xmldom#310
xmldom/xmldom#314
xmldom/xmldom#307
@gkwang gkwang mentioned this pull request Oct 18, 2022
Merged
4 tasks
gkwang added a commit to auth0/node-xml-encryption that referenced this pull request Oct 18, 2022
@gkwang
release 3.0.0 (#104)
6ae0fcd 
add semgrep support
uodate xmldom
breaking changes in xmldom:
xmldom/xmldom#310
xmldom/xmldom#314
xmldom/xmldom#307
# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers

@brody4hire brody4hire Awaiting requested review from brody4hire

Assignees
No one assigned
Labels
breaking change Some thing that requires a version bump due to breaking changes
Projects
None yet
Milestone
0.8.0
Development

Successfully merging this pull request may close these issues.

excessive cpu load(Infinite) Parser locks up on long input lines DOMParser does not normalize line breaks
1 participant
@karfau