If I sign an xml doc using a filesystem cert, then errors like timeouts and server not found are not an issue, but I'm starting to look an architecture where a locked down network device (net hsm) holds the private key. In this case the keystore is initialized w/ a special provider name. For this flow a network roundtrip happens during signing and errors could occur. Is there anyway to specify things like timeouts? Or is this hidden in the provider code and only exposed thru exceptions?
thanks, Paul.
