Do schema validation with xmlsec1 in vgauth

Add schema validation for xmlsec1 based SAML verification.

diff --git a/open-vm-tools/vgauth/service/Makefile.am b/open-vm-tools/vgauth/service/Makefile.am
index 584f4e10432c350f4603e6c814aa05c3336c490a..7fedee1f6957c5bd0f8b0dc74034a03fe7714138 100644 (file)
--- a/open-vm-tools/vgauth/service/Makefile.am
+++ b/open-vm-tools/vgauth/service/Makefile.am
@@ -46,6 +46,7 @@ VGAuthService_SCRIPTS += ../serviceImpl/schemas/XMLSchema-hasFacetAndProperty.xs
 VGAuthService_SCRIPTS += ../serviceImpl/schemas/XMLSchema-instance.xsd
 VGAuthService_SCRIPTS += ../serviceImpl/schemas/XMLSchema.xsd
 VGAuthService_SCRIPTS += ../serviceImpl/schemas/xml.xsd
+VGAuthService_SCRIPTS += ../serviceImpl/schemas/catalog.xml
 
 VGAuthService_CPPFLAGS =
 VGAuthService_CPPFLAGS += -DVMTOOLS_USE_GLIB

diff --git a/open-vm-tools/vgauth/serviceImpl/schemas/catalog.xml b/open-vm-tools/vgauth/serviceImpl/schemas/catalog.xml
new file mode 100644 (file)
index 0000000..da78917
--- /dev/null
+++ b/open-vm-tools/vgauth/serviceImpl/schemas/catalog.xml
@@ -0,0 +1,6 @@
+<?xml version="1.0"?>
+<!DOCTYPE catalog PUBLIC "-//OASIS//DTD Entity Resolution XML Catalog V1.0//EN" "http://www.oasis-open.org/committees/entity/release/1.0/catalog.dtd">
+<catalog xmlns="urn:oasis:names:tc:entity:xmlns:xml:catalog">
+  <uri name="http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/xmldsig-core-schema.xsd" uri="xmldsig-core-schema.xsd"/>
+  <uri name="http://www.w3.org/TR/2002/REC-xmlenc-core-20021210/xenc-schema.xsd" uri="xenc-schema.xsd"/>
+</catalog>