77use DOMElement ;
88use SimpleSAML \XMLSecurity \Constants as C ;
99use SimpleSAML \XMLSecurity \Exception \CanonicalizationFailedException ;
10+ use SimpleSAML \XMLSecurity \Exception \ReferenceValidationFailedException ;
11+ use SimpleSAML \XMLSecurity \Utils \XPath ;
1012use SimpleSAML \XMLSecurity \XML \ds \Transforms ;
1113use SimpleSAML \XPath \Constants as XPATH_C ;
1214
@@ -121,6 +123,7 @@ public function processTransforms(
121123 $ canonicalMethodC14N_EXCLUSIVE_WITHOUT_COMMENTS ;
122124 $ arXPathnull ;
123125 $ prefixListnull ;
126+
124127 foreach ($ transformsgetTransform () as $ transform
125128 $ canonicalMethod$ transformgetAlgorithm ()->getValue ();
126129 switch ($ canonicalMethod
@@ -140,15 +143,22 @@ public function processTransforms(
140143 $ arXPath
141144 $ xpathValue$ xpathgetContent ()->getValue ();
142145 $ arXPath'query ' ] = '(.//. | .//@* | .//namespace::*)[ ' . $ xpathValue'] ' ;
143-
144- // $arXpath['namespaces'] = $xpath->getNamespaces();
145- // TODO: review if $nsnode->localName is equivalent to the keys in getNamespaces()
146- // $nslist = $xp->query('./namespace::*', $node);
147- // foreach ($nslist as $nsnode) {
148- // if ($nsnode->localName != "xml") {
149- // $arXPath['namespaces'][$nsnode->localName] = $nsnode->nodeValue;
150- // }
151- // }
146+ $ arXpath'namespaces ' ] = $ xpathgetNamespaces ();
147+
148+ $ xpCachegetXPath ($ transformtoXML ());
149+ $ nslist$ xpCachequery ('./namespace::* ' , $ xpathtoXML ());
150+ Assert::lessThanEq (
151+ $ nslistcount (),
152+ C::MAX_XPATH_NAMESPACES ,
153+ ReferenceValidationFailedException::class,
154+ 'Too many namespaces. ' ,
155+ );
156+
157+ foreach ($ nslistas $ nsnode
158+ if ($ nsnodelocalName != "xml " ) {
159+ $ arXPath'namespaces ' ][$ nsnodelocalName ] = $ nsnodenodeValue ;
160+ }
161+ }
152162 }
153163 break ;
154164 }
0 commit comments