Minor changes after the recent security scare (which turned out to be
nothing). In addition to looking for the case of no XML, I run the XML through xmllint. I also changed the error handling a bit so that both of these errors go back to the user instead of us. No idea if the netlab client can deal with that though.