Open hseo8 opened 6 years ago
powell-ofr
commented
6 years ago Unfortunately, this sounds like the previously reported issue, "Revocation checking sometimes finds multiple issuer certs." It's an identified bug. The workaround is for the signer to start the tool and then select Options > uncheck "Revocation checking."
Is there a time frame to push out a permanent fix?
Lee Powell OFR
djpackham
commented
6 years ago Yes, similar to the other issue #25.
We may be able to look into this soon, however, don't have a date we can commit to.
powell-ofr
commented
6 years ago OFR has learned there's an agency that is slated to go "fully digital;" i.e., 100% in their document submission process. OFR applauds this initiative. Unfortunately, the tool's identified revocation checking error is throwing a wet blanket on the party. It adds one more step to the signing process that needs to be as streamlined as possible.
I'm aware there is no time frame for resolution and the workaround is working for the moment. Has the cause of the problem been identified?
Lee Powell OFR
We recently had Java JRE u141 installed and found an issue with PKCS7 2.0. During the "checking expiration date of signing certificate" step of PKCS7, the application just hangs and does not move forward to signing the document. The status bar gets to 80% and hangs accordingly.
The workaround we have this is to go to “Options” with in PKCS7 and uncheck the “Enable Revocation Checking.” Once this is done, it will sign the document.
Any settings that need to be modified within PKCS7 or Java? Is this a known behavior?