Bug #908: RGW allows users to create buckets and objects with invalid names
properly escape XML
Properly escape the XML that we're sending in RGW.
For example, if the user sticks a control character in a bucket name, we may need to escape that in our bucket list response. Etc.
I think the characters that need to be escaped are:
control characters: 0x00-0x09, 0x0b-0x0c, 0x0e-0x1f characters used by xml itself: <>"'&
I think libexpat should already have something like this. We just need to ensure that we use it properly in RGW.