Signature.initSign with SHA1withECDSA and PKCS11 provider throws "java.security.ProviderException: Initialization failed" if the same Signature instance had been previously used for verification and a subsequent verify or update call had failed. The initSign method should cancel the current operation and succeed. This is the only algorithm that exhibits this behavior with the SunPKCS11 provider.