SP 2.0: Metadata with EncryptionMethod elements fails to load

[Russ Allbery]

Ferenc Wagner <wferi at niif.hu> writes:

> We were hit by https://bugs.internet2.edu/jira/browse/CPPOST-7 hard.
> http://svn.middleware.georgetown.edu/view/cpp-opensaml2?view=rev&revision=385
> reveals that it's fixed by the short patch
>
> --- trunk/saml/saml2/metadata/impl/MetadataSchemaValidators.cpp	2008/03/22 19:46:17	384
> +++ trunk/saml/saml2/metadata/impl/MetadataSchemaValidators.cpp	2008/03/25 20:15:39	385
> @@ -326,6 +326,9 @@
>      REGISTER_TYPE(RequestedAttribute);
>      REGISTER_TYPE(SPSSODescriptor);
>  
> +    q=QName(SAML20MD_NS,xmlencryption::EncryptionMethod::LOCAL_NAME);
> +    XMLObjectBuilder::registerBuilder(q,new xmlencryption::EncryptionMethodBuilder());
> +    
>      q=QName(samlconstants::SAML1MD_NS,SourceID::LOCAL_NAME);
>      XMLObjectBuilder::registerBuilder(q,new SourceIDBuilder());
>      SchemaValidators.registerValidator(q,new SourceIDSchemaValidator());
>
> Russ, do you think we could possibly push this fix into Lenny?

That looks fairly safe to me.  It looks like it's also applicable to 2.1,
so go ahead and create a bug branch for it, merge it into master, and also
apply the fix to the lenny branch.  I'll upload and ask for a release
exception.

> (And congrats for the TC membership!  So can we have 2.1 in Lenny now? :)

*laugh*.  Thank you!  And no, I'm hoping that we'll get lenny within a
month.  We're mostly waiting on the next D-I release.

-- 
Russ Allbery (rra at debian.org)               <http://www.eyrie.org/~eagle/>