causes some test issues 3 tests in TestSignatureInfo fail Caused by: javax.xml.crypto.MarshalException: A maxiumum of 30 references per Manifest are allowed with secure validation at org.apache.jcp.xml.dsig.internal.dom.DOMManifest.<init>(DOMManifest.java:105) at org.apache.jcp.xml.dsig.internal.dom.DOMXMLObject.<init>(DOMXMLObject.java:111) at org.apache.jcp.xml.dsig.internal.dom.DOMXMLSignature.<init>(DOMXMLSignature.java:165) at org.apache.jcp.xml.dsig.internal.dom.DOMXMLSignatureFactory.unmarshal(DOMXMLSignatureFactory.java:189) at org.apache.jcp.xml.dsig.internal.dom.DOMXMLSignatureFactory.unmarshalXMLSignature(DOMXMLSignatureFactory.java:144) at org.apache.poi.poifs.crypt.dsig.SignaturePart.validate(SignaturePart.java:129)
Starting with xmlsec 2.3.0 a limit introduced in xmlsec 1.5.0 was affecting POIs signature verification especially for PPTX. In r1894701 , I've introduced a config option to disable secure validation and commented about the gained/lost features if enabled/disabled. [1] https://santuario.apache.org/faq.html#faq-4.SecureValidation