JDK-6438917 : JNLP parser accepts illegal XML in comments
- Type: Bug
- Component: deploy
- Sub-Component: webstart
- Affected Version: 6
- Priority: P4
- Status: Resolved
- Resolution: Other
- OS: solaris_2.5.1
- CPU: sparc
- Submitted: 2006-06-15
- Updated: 2015-02-10
- Resolved: 2015-02-10
The Version table provides details related to the release that this issue/RFE will be addressed.
Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
To download the current JDK release, click here.
Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
To download the current JDK release, click here.
| JDK 8 | JDK 9 |
|---|---|
8u20Fixed  |
9Fixed |
Description
If a JNLP file contains a comment with a double hyphen between the beginning ("<!--") and end ("-->") delimeters of the comment, the XML parser will accept the file and skip over the entire comment. However, according to the XML standard this is incorrect:
http://www.w3.org/TR/2004/REC-xml-20040204/#sec-comments
Specifically, the sentence "For compatibility, the string "--" (double-hyphen) MUST NOT occur within comments..." applies here. On the Mac this is a problem because we use the OS call CFXMLTreeCreateFromDataWithError when building a bundled application from the JNLP file, and it fails to parse the file because of the illegal comment in the file.
This was reported by a developer as a bug on Mac OS X's Java because 'it works on other platforms', but the root problem is incorrect behavior in the shared code (see com.sun.deploy.xml.XMLParser.skipXMLComment())
Comments
|