Hi Tomas,
I am using Postgres DB. In the 1st go when i create a new CA from Admin GUI which is signed by external CA, I am successfully able to create a CSR using Make Certificate req button. after some time, I again EDIT the same CA and re-try to generate the CSR using Make Certificate req button, I am getting the below Error.
An exception has occurred.
Date and Patterns must not be null
java.lang.IllegalArgumentException: Date and Patterns must not be null
at org.apache.commons.lang.time.DateUtils.parseDateWithLeniency(DateUtils.java:326)
at org.apache.commons.lang.time.DateUtils.parseDateStrictly(DateUtils.java:305)
at org.cesecore.util.ValidityDate.parseAsIso8601(ValidityDate.java:49)
at org.cesecore.util.ValidityDate.encode(ValidityDate.java:103)
at org.ejbca.ui.web.admin.cainterface.CAInterfaceBean.createCaInfo(CAInterfaceBean.java:1119)
at org.apache.jsp.ca.editcas.editcas_jsp._jspService(editcas_jsp.java:622)
at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:69)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:847)
at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:365)
at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:309)
at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:242)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:847)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:295)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:214)
at org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:246)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:214)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:230)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:149)
at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:389)
at org.jboss.as.jpa.interceptor.WebNonTxEmCloserValve.invoke(WebNonTxEmCloserValve.java:50)
at org.jboss.as.jpa.interceptor.WebNonTxEmCloserValve.invoke(WebNonTxEmCloserValve.java:50)
at org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java: 169)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:145)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:97)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:102)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:336)
at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:856)
at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:653)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:920)
at java.lang.Thread.run(Thread.java:744)
Regards,
Sanaullah
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
there is one more bug as well with 6.0.3.
when I create a cryto token from the GUI with auto active check box ticked. after a day or 2 connection between EJBCA and HSM dropped for some reason may be due to the firewall.EJBCA ask to activate the token. when i enter the password to activate the token, its always says authentication fails and pkcs11 slot can't be initialized.
I have to restart the jboss and then its activated automatically as i have already stored the slot password.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Hi Tomas,
I am using Postgres DB. In the 1st go when i create a new CA from Admin GUI which is signed by external CA, I am successfully able to create a CSR using Make Certificate req button. after some time, I again EDIT the same CA and re-try to generate the CSR using Make Certificate req button, I am getting the below Error.
Regards,
Sanaullah
What version of EJBCA are you using?
6.0.3
there is one more bug as well with 6.0.3.
when I create a cryto token from the GUI with auto active check box ticked. after a day or 2 connection between EJBCA and HSM dropped for some reason may be due to the firewall.EJBCA ask to activate the token. when i enter the password to activate the token, its always says authentication fails and pkcs11 slot can't be initialized.
I have to restart the jboss and then its activated automatically as i have already stored the slot password.
check validity date field of your CA when editing.
the issue raise when re-generating the CSR for external CA where validity field is automatically disabled.
This issue has been fixed for 6.0.4 already. It will be available soon.
https://jira.primekey.se/browse/ECA-3387
Cheers,
Tomas
Thanks Tomas,
6.0.4 soon :)
Hi Tomas,
I got the new Build.
6.0.4
Regards,
Sanaullah