Menu
▾
▴
ejbca-develop — Development discussions
You can subscribe to this list here.
| 2001 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
(1) |
Dec
(3) |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2002 |
Jan
(3) |
Feb
(2) |
Mar
(8) |
Apr
(3) |
May
(6) |
Jun
(1) |
Jul
(15) |
Aug
(6) |
Sep
|
Oct
(10) |
Nov
(2) |
Dec
(4) |
| 2003 |
Jan
(1) |
Feb
(7) |
Mar
(3) |
Apr
(6) |
May
(7) |
Jun
(5) |
Jul
(5) |
Aug
(25) |
Sep
(14) |
Oct
(2) |
Nov
|
Dec
(2) |
| 2004 |
Jan
(7) |
Feb
(4) |
Mar
(12) |
Apr
(16) |
May
(43) |
Jun
(56) |
Jul
(43) |
Aug
(40) |
Sep
(66) |
Oct
(12) |
Nov
(26) |
Dec
(10) |
| 2005 |
Jan
(13) |
Feb
(33) |
Mar
(16) |
Apr
(7) |
May
(10) |
Jun
(34) |
Jul
(41) |
Aug
(8) |
Sep
(4) |
Oct
(32) |
Nov
(20) |
Dec
(25) |
| 2006 |
Jan
(30) |
Feb
(101) |
Mar
(5) |
Apr
(75) |
May
(74) |
Jun
(22) |
Jul
(6) |
Aug
(70) |
Sep
(19) |
Oct
(21) |
Nov
(31) |
Dec
(50) |
| 2007 |
Jan
(15) |
Feb
(20) |
Mar
(24) |
Apr
(33) |
May
(13) |
Jun
(18) |
Jul
(13) |
Aug
(7) |
Sep
(63) |
Oct
(68) |
Nov
(29) |
Dec
(68) |
| 2008 |
Jan
(30) |
Feb
(33) |
Mar
(30) |
Apr
(103) |
May
(78) |
Jun
(48) |
Jul
(72) |
Aug
(24) |
Sep
(62) |
Oct
(63) |
Nov
(70) |
Dec
(37) |
| 2009 |
Jan
(34) |
Feb
(35) |
Mar
(64) |
Apr
(34) |
May
(34) |
Jun
(58) |
Jul
(30) |
Aug
(30) |
Sep
(46) |
Oct
(52) |
Nov
(12) |
Dec
(23) |
| 2010 |
Jan
(121) |
Feb
(18) |
Mar
(53) |
Apr
(62) |
May
(62) |
Jun
(20) |
Jul
(33) |
Aug
(20) |
Sep
(36) |
Oct
(35) |
Nov
(44) |
Dec
(63) |
| 2011 |
Jan
(19) |
Feb
(32) |
Mar
(94) |
Apr
(41) |
May
(47) |
Jun
(25) |
Jul
(34) |
Aug
(20) |
Sep
(9) |
Oct
(41) |
Nov
(33) |
Dec
(24) |
| 2012 |
Jan
(12) |
Feb
(36) |
Mar
(48) |
Apr
(32) |
May
(20) |
Jun
(15) |
Jul
(32) |
Aug
(13) |
Sep
(33) |
Oct
(54) |
Nov
(25) |
Dec
(16) |
| 2013 |
Jan
(45) |
Feb
(39) |
Mar
(38) |
Apr
(50) |
May
(29) |
Jun
(30) |
Jul
(33) |
Aug
(12) |
Sep
(9) |
Oct
(25) |
Nov
(29) |
Dec
(20) |
| 2014 |
Jan
(25) |
Feb
(19) |
Mar
(16) |
Apr
(33) |
May
(27) |
Jun
(37) |
Jul
(29) |
Aug
(27) |
Sep
(37) |
Oct
(58) |
Nov
(109) |
Dec
(26) |
| 2015 |
Jan
(4) |
Feb
(35) |
Mar
(22) |
Apr
(35) |
May
(28) |
Jun
(20) |
Jul
(4) |
Aug
(16) |
Sep
(37) |
Oct
(13) |
Nov
(13) |
Dec
(14) |
| 2016 |
Jan
(22) |
Feb
(7) |
Mar
(23) |
Apr
(30) |
May
(10) |
Jun
(10) |
Jul
(15) |
Aug
(12) |
Sep
(22) |
Oct
(31) |
Nov
(5) |
Dec
(5) |
| 2017 |
Jan
(30) |
Feb
(25) |
Mar
(28) |
Apr
(4) |
May
(19) |
Jun
(13) |
Jul
(7) |
Aug
(1) |
Sep
(2) |
Oct
(5) |
Nov
(12) |
Dec
(2) |
| 2018 |
Jan
(7) |
Feb
|
Mar
(7) |
Apr
(2) |
May
(8) |
Jun
(18) |
Jul
(6) |
Aug
(3) |
Sep
(15) |
Oct
(33) |
Nov
(13) |
Dec
(7) |
| 2019 |
Jan
(5) |
Feb
(7) |
Mar
(30) |
Apr
(5) |
May
(4) |
Jun
(69) |
Jul
(86) |
Aug
(22) |
Sep
(6) |
Oct
(7) |
Nov
(5) |
Dec
(3) |
| 2020 |
Jan
(10) |
Feb
(12) |
Mar
(22) |
Apr
(5) |
May
(1) |
Jun
(4) |
Jul
(6) |
Aug
|
Sep
(9) |
Oct
|
Nov
|
Dec
(1) |
| 2021 |
Jan
(4) |
Feb
(11) |
Mar
(7) |
Apr
(7) |
May
|
Jun
(3) |
Jul
(10) |
Aug
(6) |
Sep
|
Oct
|
Nov
(18) |
Dec
(2) |
| 2022 |
Jan
(1) |
Feb
(1) |
Mar
|
Apr
|
May
|
Jun
(2) |
Jul
|
Aug
(4) |
Sep
|
Oct
|
Nov
|
Dec
|
| 2023 |
Jan
|
Feb
|
Mar
|
Apr
(1) |
May
(1) |
Jun
|
Jul
|
Aug
(5) |
Sep
|
Oct
|
Nov
|
Dec
|
|
From: Tomas G. <to...@pr...> - 2018-07-14 12:06:48
|
I believe this is the "tokenType" issue again? Did you solve the migration from a Luna token to a PKCS11CryptoToken? Since you are on a Luna, it should work to modify the CAToken properties settings on your CA. See the PKCS#11 documentation for the old version (v4) for information about P11. Regards, Tomas -- Join PrimeKey Tech Days! 18 - 19 September, Stockholm, Sweden www.primekey.com/tech-days PKI, Crypto, IoT, Cloud, Open Source etc. Networking with some of the best in the business from around the world. Social evening activity in Stockholm. Of course you should join us! On 2018-07-11 22:21, Mehul Chhayani wrote: > Hello Tomas, > > I am trying to reset superadmin password after upgrading EJBCA-ce-6.3.2.6 , but it is throwing me below error , can you please advise me what reason it could be? > > [root@qaejbcatest ejbca]# bin/ejbca.sh ra setendentitystatus superadmin 10 -u superadmin -p > Enter password for parameter (-p): > > Exception in thread "main" javax.ejb.EJBTransactionRolledbackException > at org.jboss.ejb3.tx.Ejb3TxPolicy.handleInCallerTx(Ejb3TxPolicy.java:115) > at org.jboss.aspects.tx.TxPolicy.invokeInCallerTx(TxPolicy.java:130) > at org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:147) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176) > at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216) > at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) > at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) > at com.sun.proxy.$Proxy369.isAuthorizedNoLogging(Unknown Source) > at org.ejbca.core.ejb.ra.EndEntityManagementSessionBean.authorizedToCA(EndEntityManagementSessionBean.java:194) > at org.ejbca.core.ejb.ra.EndEntityManagementSessionBean.assertAuthorizedToCA(EndEntityManagementSessionBean.java:205) > at org.ejbca.core.ejb.ra.EndEntityManagementSessionBean.setUserStatus(EndEntityManagementSessionBean.java:1162) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) > at java.lang.reflect.Method.invoke(Method.java:597) > at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) > at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) > at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) > at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) > at java.lang.reflect.Method.invoke(Method.java:597) > at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) > at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) > at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:79) > at org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.aop.Dispatcher.invoke(Dispatcher.java:91) > at org.jboss.aspects.remoting.AOPRemotingInvocationHandler.invoke(AOPRemotingInvocationHandler.java:82) > at org.jboss.remoting.ServerInvoker.invoke(ServerInvoker.java:891) > at org.jboss.remoting.transport.socket.ServerThread.completeInvocation(ServerThread.java:744) > at org.jboss.remoting.transport.socket.ServerThread.processInvocation(ServerThread.java:697) > at org.jboss.remoting.transport.socket.ServerThread.dorun(ServerThread.java:524) > at org.jboss.remoting.transport.socket.ServerThread.run(ServerThread.java:232) > Caused by: java.lang.NullPointerException > at org.ejbca.core.ejb.authentication.cli.CliAuthenticationToken.matchTokenType(CliAuthenticationToken.java:265) > at org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259) > at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139) > at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192) > ------- > Thank you, > Mehul Chhayani | Deployment Specialist > chh...@ec... > > > -----Original Message----- > From: Mehul Chhayani [mailto:chh...@ec...] > Sent: Tuesday, July 3, 2018 10:07 AM > To: ejb...@li... > Cc: Randy Yu > Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error > > Hello Tomas, > > I am upgrading EJBCA-ce-6.3.2.6 from ejbca_4_0_16 on jboss-5.1.0.GA (old jboss) which is same application server. Can you please provide steps for upgrading migrate to a PKCS11 CA Token ? > > ------- > Thank you, > Mehul Chhayani | Deployment Specialist > chh...@ec... > > > -----Original Message----- > From: Tomas Gustavsson [mailto:to...@pr...] > Sent: Monday, July 2, 2018 5:01 AM > To: ejb...@li... > Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error > > > Hi, > > You have been using an old org.ejbca.core.model.ca.catoken.LunaCAToken. > This was deprecated many years ago, already during EJBCA 4. I guess you > were using EJBCA v3 already, before upgrading to 4 > ? > In order to upgrade to EJBCA 6 you need to migrate to a PKCS11 CA Token > before you upgrade. The LunaCAToken is not available in EJBCA 6 anymore. > > This has been documented somewhere (I'm not around to check that now), > and there are other cases in the forum that has done this. > > Another way of upgrading that you may consider, unless you have vast > amounts of certificates issued, is to make a new install and import CAs, > issue certificates and CRLs from your old installation. This can be done > with the CLI, importca, importcert, importcertdir and importcrl commands. > > That would get you up fresh. > > Regards, > Tomas > > On 2018-06-29 17:34, Mehul Chhayani wrote: >> Hi Tomas, >> >> When I was upgrading today, it was throwing an error during upgrade which is mentioned below in server log and but upgrade: BUILD SUCCESSFUL. Can you advice me on that? >> Total time: 1 minute 7 seconds >> >> 2018-06-29 15:32:30,496 ERROR [org.cesecore.keys.token.CryptoTokenFactory] (WorkerThread#0[127.0.0.1:58696]) No token. Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken >> 2018-06-29 15:32:30,511 ERROR [org.ejbca.core.ejb.upgrade.UpgradeSessionBean] (WorkerThread#0[127.0.0.1:58696]) Error thrown during upgrade: >> javax.ejb.EJBException: java.lang.NullPointerException >> at org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77) >> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83) >> at org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176) >> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216) >> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >> at com.sun.proxy.$Proxy409.mergeCryptoToken(Unknown Source) >> at org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821) >> at org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721) >> at org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586) >> at org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:537) >> at org.cesecore.certificates.ca.CaSessionBean.getCAForEdit(CaSessionBean.java:297) >> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >> at java.lang.reflect.Method.invoke(Method.java:597) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >> at sun.reflect.GeneratedMethodAccessor322.invoke(Unknown Source) >> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >> at java.lang.reflect.Method.invoke(Method.java:597) >> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) >> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) >> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> >> >> upgrade: >> >> BUILD SUCCESSFUL >> Total time: 1 minute 7 seconds >> >> ------- >> Thank you, >> Mehul Chhayani | Deployment Specialist >> chh...@ec... >> >> >> >> -----Original Message----- >> From: Tomas Gustavsson [mailto:to...@pr...] >> Sent: Friday, June 29, 2018 10:06 AM >> To: ejb...@li... >> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >> >> >> Agressively releasing JDBC connection is not an error, it's not any >> problem with the database. >> >> When you enable debug logging you should do so for org.ejbca and >> org.cesecore only. It's not useful to have debug logging for _all_ of >> JBoss, it just makes the log impossible to read. >> >> Use categories like this: >> >> <category name="org.cesecore"> >> <priority value="DEBUG"/> >> </category> >> <category name="org.ejbca"> >> <priority value="DEBUG"/> >> </category> >> >> I think the logs for "ant upgrade" and "ant post-upgrade" are >> interesting probably. >> >> Regards, >> Tomas >> >> On 2018-06-29 15:54, Mehul Chhayani wrote: >>> Hello Tomas, >>> >>> I have read server logs and jboss logs , from logs I can say whenever it tried to connect database while try to open adminweb , it connected to database for a while but after some seconds, it closed connected forcefully (aggressively releasing JDBC connection) , But I can connect new EJBCA-6326 GUI except adminweb page. >>> >>> >>> 2018-06-29 13:48:10,220 DEBUG [org.hibernate.impl.SessionImpl] (http-0.0.0.0-8443-1) opened session at timestamp: 6268027249541120 >>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Looking for a JTA transaction to join >>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.JDBCContext] (http-0.0.0.0-8443-1) successfully registered Synchronization >>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Looking for a JTA transaction to join >>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Transaction already joined >>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) loading entity: [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default] >>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to open PreparedStatement (open PreparedStatements: 0, globally: 0) >>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) opening JDBC connection >>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.SQL] (http-0.0.0.0-8443-1) select adminprefe0_.id as id13_0_, adminprefe0_.data as data13_0_, adminprefe0_.rowProtection as rowProte3_13_0_, adminprefe0_.rowVersion as rowVersion13_0_ from AdminPreferencesData adminprefe0_ where adminprefe0_.id=? >>> 2018-06-29 13:48:10,228 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to open ResultSet (open ResultSets: 0, globally: 0) >>> 2018-06-29 13:48:10,228 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) result row: EntityKey[org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default] >>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to close ResultSet (open ResultSets: 1, globally: 1) >>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to close PreparedStatement (open PreparedStatements: 1, globally: 1) >>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) aggressively releasing JDBC connection >>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) releasing JDBC connection [ (open PreparedStatements: 0, globally: 0) (open ResultSets: 0, globally: 0)] >>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.engine.TwoPhaseLoad] (http-0.0.0.0-8443-1) resolving associations for [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default] >>> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.engine.TwoPhaseLoad] (http-0.0.0.0-8443-1) done materializing entity [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default] >>> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.engine.StatefulPersistenceContext] (http-0.0.0.0-8443-1) initializing non-lazy collections >>> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) done entity load >>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) processing flush-time cascades >>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) dirty checking collections >>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) Flushed: 0 insertions, 0 updates, 0 deletions to 1 objects >>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) Flushed: 0 (re)creations, 0 updates, 0 removals to 0 collections >>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) listing entities: >>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default, rowProtection=null, rowVersion=2, dataUnsafe=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} >>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) aggressively releasing JDBC connection >>> 2018-06-29 13:48:10,232 DEBUG [org.jboss.jpa.deployment.ManagedEntityManagerFactory] (http-0.0.0.0-8443-1) ************** closing entity managersession ************** >>> 2018-06-29 13:48:10,232 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.en.properties >>> 2018-06-29 13:48:10,238 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.bs.properties >>> 2018-06-29 13:48:10,244 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.de.properties >>> 2018-06-29 13:48:10,249 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.es.properties >>> 2018-06-29 13:48:10,251 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.fr.properties >>> 2018-06-29 13:48:10,258 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.it.properties >>> 2018-06-29 13:48:10,260 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.ja.properties >>> 2018-06-29 13:48:10,265 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.pt.properties >>> 2018-06-29 13:48:10,270 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.sv.properties >>> 2018-06-29 13:48:10,273 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.uk.properties >>> 2018-06-29 13:48:10,281 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.zh.properties >>> 2018-06-29 13:48:10,301 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1) >>> java.lang.NullPointerException >>> >>> >>> ------- >>> Thank you, >>> Mehul Chhayani | Deployment Specialist >>> chh...@ec... >>> >>> >>> >>> -----Original Message----- >>> From: Tomas Gustavsson [mailto:to...@pr...] >>> Sent: Friday, June 29, 2018 3:16 AM >>> To: ejb...@li... >>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >>> >>> >>> Hi, >>> >>> If you have problems it's not enough to read the last line only. You >>> need to troubleshoot the steps. Especially the upgrade and post-upgrade >>> steps seems to have some issues, since things have not been updated as >>> they should. >>> >>> You can find some documentation how to troubleshoot here: >>> https://download.primekey.se/docs/EJBCA-Enterprise/6_11_1/adminguide.html#Troubleshooting >>> >>> Monitoring server.log will show you what happens, just as it would show >>> why you get the error you get right now. server.log is your best friends >>> when troubleshooting EJBCA. >>> >>> You probably have to restart JBoss between ant upgrade and port-upgrade. >>> >>> Kind Regards, >>> Tomas >>> >>> PS: I will be away on vacation for the coming weeks and will not be >>> available here >>> >>> On 2018-06-28 22:59, Mehul Chhayani wrote: >>>> Hi Tomas, >>>> >>>> I have mentioneing following steps while upgrade EJBCA-ce-6.3.2.6 from ejbca_4_0_16 on jboss-5.1.0.GA (old jboss). >>>> >>>> ant clean >>>> ant deployear >>>> ant upgrade >>>> ant post-upgrade >>>> ant javatruststore >>>> >>>> output says BUILD successfully that during upgrade. >>>> ------- >>>> Thank you, >>>> Mehul Chhayani | Deployment Specialist >>>> chh...@ec... >>>> >>>> >>>> >>>> -----Original Message----- >>>> From: Tomas Gustavsson [mailto:to...@pr...] >>>> Sent: Thursday, June 28, 2018 5:19 AM >>>> To: ejb...@li... >>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >>>> >>>> >>>> Hi, >>>> >>>> It looks like you are one step further. This is a new error. >>>> >>>> During upgrade and post-upgrade you need to be monitoring for errors. >>>> Perhaps your database privileges does not allow certain operations? So >>>> that some needs to be done manually? >>>> >>>> Logs will tell you what is going on. >>>> >>>> The same with the error below. In the log you will have information >>>> leading up to the error that tells you what is going on and why this >>>> happens. It looks to me as you have some CA tokens which are of >>>> non-standard type, or that was not upgraded properly in a previous step. >>>> A previous upgrade step failing looks consistent with the previous error. >>>> >>>> But the log will tell you what led up to the error you show, and why it >>>> happens. >>>> >>>> If you have documented your complete upgrade process, can you provide >>>> the upgrade steps you perform? Which version, what command what output. >>>> >>>> Regards, >>>> Tomas >>>> >>>> >>>> >>>> On 2018-06-27 21:30, Mehul Chhayani wrote: >>>>> Hi Tomas, >>>>> >>>>> I did ant upgrade and ant post-upgrade on time of upgrading EJBCA, How do I get privileges for a CLI authentication token created, how do I know that is created in database or something during upgrade, I have updated tokenType to CertificateAuthenticationToken / X509CertificateAuthenticationToken in database and also droped manually CAID on AdminGroupData table which should be drop during upgrade, none of them are working, still getting below error. >>>>> >>>>> >>>>> 19:23:10,107 ERROR [[/ejbca/adminweb]] Servlet /ejbca/adminweb threw load() exception >>>>> java.lang.NullPointerException >>>>> at org.cesecore.keys.token.CryptoTokenSessionBean.mergeCryptoToken(CryptoTokenSessionBean.java:131) >>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>>>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>>>> at java.lang.reflect.Method.invoke(Method.java:597) >>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >>>>> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >>>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >>>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source) >>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>>>> at java.lang.reflect.Method.invoke(Method.java:597) >>>>> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >>>>> ------- >>>>> Thank you, >>>>> Mehul Chhayani | Deployment Specialist >>>>> chh...@ec... >>>>> T:416-226-8600 EXT-246 >>>>> >>>>> >>>>> -----Original Message----- >>>>> From: Tomas Gustavsson [mailto:to...@pr...] >>>>> Sent: Wednesday, June 27, 2018 8:56 AM >>>>> To: ejb...@li... >>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >>>>> >>>>> Did you run all ant upgrade and ant post-upgrades that are needed? >>>>> >>>>> You don't have a CLI authentication token created it seems, whcih should >>>>> be created. >>>>> >>>>> For the SuperAdmin rows you can set tokenType to >>>>> CertificateAuthenticationToken. >>>>> The UNUSED rows you can delete. >>>>> >>>>> Regards, >>>>> Tomas >>>>> >>>>> >>>>> On 2018-06-25 22:24, Mehul Chhayani wrote: >>>>>> Hello Tomas, >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> I have checked tokentype=Null of every entity that mentioned >>>>>> AdminEntityData table in database. What would be next step to overcome >>>>>> that problem? See that following table >>>>>> >>>>>> >>>>>> >>>>>> Pk matchwith matchtype matchvalue adminroupdata_adminentities caif >>>>>> rowversion rowprotection tokentype >>>>>> >>>>>> -401175635 8 1001 SuperAdmin >>>>>> -1181650581 -1146543808 0 >>>>>> >>>>>> 329358383 11 2003 UNUSED >>>>>> -1290073541 0 0 >>>>>> >>>>>> 329358381 11 2001 UNUSED >>>>>> -1290073541 0 0 >>>>>> >>>>>> 329358382 11 2002 UNUSED >>>>>> -1290073541 0 0 >>>>>> >>>>>> 329358376 11 2004 UNUSED >>>>>> -1290073541 0 0 >>>>>> >>>>>> -342399384 11 2000 UNUSED >>>>>> 1399736916 -1146543808 0 >>>>>> >>>>>> 2117404180 8 1001 SuperAdmin >>>>>> -1181650581 764062969 0 >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> ------- >>>>>> >>>>>> Thank you, >>>>>> >>>>>> Mehul Chhayani | Deployment Specialist >>>>>> >>>>>> chh...@ec... >>>>>> >>>>>> T:416-226-8600 EXT-246 >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> -----Original Message----- >>>>>> From: Tomas Gustavsson [mailto:to...@pr...] >>>>>> Sent: Monday, June 25, 2018 7:11 AM >>>>>> To: ejb...@li... >>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> Hi, >>>>>> >>>>>> >>>>>> >>>>>> Can you check in your database. Things should move over to >>>>>> >>>>>> RoleMemberData during the migration. Can you check what "tokenType"s you >>>>>> >>>>>> have in RoleMemberData and AdminEntityData. >>>>>> >>>>>> >>>>>> >>>>>> Cheers, >>>>>> >>>>>> Tomas >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> On 2018-06-21 21:43, Mehul Chhayani wrote: >>>>>> >>>>>>> Hi Thomas, >>>>>> >>>>>>> >>>>>> >>>>>>> I tried with this method , it did not worked with old jboss-5.0.1, its >>>>>> complaining when I hit adminweb page, I am mentioning some server log, >>>>>> can you please advise me ? I am not able to reset superadmin password >>>>>> as well >>>>>> >>>>>>> >>>>>> >>>>>>> 2018-06-21 19:09:57,283 DEBUG [org.hibernate.pretty.Printer] >>>>>> (http-0.0.0.0-8443-1) listing entities: >>>>>> >>>>>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.pretty.Printer] >>>>>> (http-0.0.0.0-8443-1) >>>>>> org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default, >>>>>> rowProtection=null, rowVersion=2, >>>>>> dataUnsafe=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} >>>>>> >>>>>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.jdbc.ConnectionManager] >>>>>> (http-0.0.0.0-8443-1) aggressively releasing JDBC connection >>>>>> >>>>>>> 2018-06-21 19:09:57,284 DEBUG >>>>>> [org.jboss.jpa.deployment.ManagedEntityManagerFactory] >>>>>> (http-0.0.0.0-8443-1) ************** closing entity managersession >>>>>> ************** >>>>>> >>>>>>> 2018-06-21 19:09:57,285 DEBUG >>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>>>>> (http-0.0.0.0-8443-1) Loading language from file: >>>>>> /languages/languagefile.en.properties >>>>>> >>>>>>> 2018-06-21 19:09:57,293 DEBUG >>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>>>>> (http-0.0.0.0-8443-1) Loading language from file: >>>>>> /languages/languagefile.bs.properties >>>>>> >>>>>>> 2018-06-21 19:09:57,320 DEBUG >>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>>>>> (http-0.0.0.0-8443-1) Loading language from file: >>>>>> /languages/languagefile.de.properties >>>>>> >>>>>>> 2018-06-21 19:09:57,328 DEBUG >>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>>>>> (http-0.0.0.0-8443-1) Loading language from file: >>>>>> /languages/languagefile.es.properties >>>>>> >>>>>>> 2018-06-21 19:09:57,332 DEBUG >>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>>>>> (http-0.0.0.0-8443-1) Loading language from file: >>>>>> /languages/languagefile.fr.properties >>>>>> >>>>>>> 2018-06-21 19:09:57,345 DEBUG >>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>>>>> (http-0.0.0.0-8443-1) Loading language from file: >>>>>> /languages/languagefile.it.properties >>>>>> >>>>>>> 2018-06-21 19:09:57,349 DEBUG >>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>>>>> (http-0.0.0.0-8443-1) Loading language from file: >>>>>> /languages/languagefile.ja.properties >>>>>> >>>>>>> 2018-06-21 19:09:57,358 DEBUG >>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>>>>> (http-0.0.0.0-8443-1) Loading language from file: >>>>>> /languages/languagefile.pt.properties >>>>>> >>>>>>> 2018-06-21 19:09:57,363 DEBUG >>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>>>>> (http-0.0.0.0-8443-1) Loading language from file: >>>>>> /languages/languagefile.sv.properties >>>>>> >>>>>>> 2018-06-21 19:09:57,367 DEBUG >>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>>>>> (http-0.0.0.0-8443-1) Loading language from file: >>>>>> /languages/languagefile.uk.properties >>>>>> >>>>>>> 2018-06-21 19:09:57,380 DEBUG >>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>>>>> (http-0.0.0.0-8443-1) Loading language from file: >>>>>> /languages/languagefile.zh.properties >>>>>> >>>>>>> 2018-06-21 19:09:57,391 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1) >>>>>> >>>>>>> java.lang.NullPointerException >>>>>> >>>>>>> at >>>>>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305) >>>>>> >>>>>>> at >>>>>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259) >>>>>> >>>>>>> at >>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139) >>>>>> >>>>>>> at >>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192) >>>>>> >>>>>>> at >>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115) >>>>>> >>>>>>> at >>>>>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86) >>>>>> >>>>>>> at >>>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86) >>>>>> >>>>>>> at >>>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136) >>>>>> >>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>>>>> >>>>>>> at >>>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>>>>> >>>>>>> at >>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>>>>> >>>>>>> at java.lang.reflect.Method.invoke(Method.java:597) >>>>>> >>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >>>>>> >>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >>>>>> >>>>>>> at >>>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >>>>>> >>>>>>> at >>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >>>>>> >>>>>>> at >>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >>>>>> >>>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source) >>>>>> >>>>>>> at >>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>>>>> >>>>>>> at java.lang.reflect.Method.invoke(Method.java:597) >>>>>> >>>>>>> at >>>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >>>>>> >>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>>> >>>>>>> at >>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) >>>>>> >>>>>>> at >>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java) >>>>>> >>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>>> >>>>>>> at >>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) >>>>>> >>>>>>> at >>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java) >>>>>> >>>>>>> >>>>>> >>>>>>> >>>>>> >>>>>>> ------- >>>>>> >>>>>>> Thank you, >>>>>> >>>>>>> Mehul Chhayani | Deployment Specialist >>>>>> >>>>>>> chh...@ec... >>>>>> >>>>>>> T:416-226-8600 EXT-246 >>>>>> >>>>>>> >>>>>> >>>>>>> -----Original Message----- >>>>>> >>>>>>> From: Tomas Gustavsson [mailto:to...@pr...] >>>>>> >>>>>>> Sent: Saturday, June 2, 2018 1:56 PM >>>>>> >>>>>>> To: ejb...@li... >>>>>> >>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >>>>>> >>>>>>> >>>>>> >>>>>>> >>>>>> >>>>>>> This one is due to JBoss not cleaning temp files properly every time. >>>>>> >>>>>>> It's a good habit to do this every time you deploy something new: >>>>>> >>>>>>> - rm -rf <jboss>/server/default/tmp >>>>>> >>>>>>> - rm -rf <jboss>/server/default/work >>>>>> >>>>>>> >>>>>> >>>>>>> Regards, >>>>>> >>>>>>> Tomas >>>>>> >>>>>>> >>>>>> >>>>>>> >>>>>> >>>>>>> On 2018-06-01 17:22, Mehul Chhayani wrote: >>>>>> >>>>>>>> Here I have attached members page of the roles in EJBCA-4, if you >>>>>> find that information useful, I am also getting new error while I am >>>>>> hitting adminweb page EJBCA-6.3.2.6 from local network. I have checked >>>>>> firewall rules and access-list. No ip's are blocking there. I am >>>>>> providing new error below , please take a look. >>>>>> >>>>>>>> >>>>>> >>>>>>>> 15:22:13,243 ERROR [[jsp]] Servlet.service() for servlet jsp threw >>>>>> exception >>>>>> >>>>>>>> java.lang.NoClassDefFoundError: >>>>>> org/ejbca/core/model/authorization/AuthorizationDeniedException >>>>>> >>>>>>>> at >>>>>> org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:115) >>>>>> >>>>>>>> at >>>>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70) >>>>>> >>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>>>>> >>>>>>>> at >>>>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369) >>>>>> >>>>>>>> at >>>>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322) >>>>>> >>>>>>>> at >>>>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249) >>>>>> >>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:638) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:444) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:382) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:310) >>>>>> >>>>>>>> at >>>>>> org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:696) >>>>>> >>>>>>>> at >>>>>> org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:667) >>>>>> >>>>>>>> at >>>>>> org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:808) >>>>>> >>>>>>>> at >>>>>> org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:781) >>>>>> >>>>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:143) >>>>>> >>>>>>>> at >>>>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70) >>>>>> >>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>>>>> >>>>>>>> at >>>>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369) >>>>>> >>>>>>>> at >>>>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322) >>>>>> >>>>>>>> at >>>>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249) >>>>>> >>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>>>>> >>>>>>>> at >>>>>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>>>>> >>>>>>>> at >>>>>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>>>>> >>>>>>>> at >>>>>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>>>>> >>>>>>>> at >>>>>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191) >>>>>> >>>>>>>> at >>>>>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433) >>>>>> >>>>>>>> at >>>>>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92) >>>>>> >>>>>>>> at >>>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126) >>>>>> >>>>>>>> at >>>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) >>>>>> >>>>>>>> at >>>>>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) >>>>>> >>>>>>>> at >>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330) >>>>>> >>>>>>>> at >>>>>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829) >>>>>> >>>>>>>> at >>>>>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598) >>>>>> >>>>>>>> at >>>>>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447) >>>>>> >>>>>>>> at java.lang.Thread.run(Thread.java:662) >>>>>> >>>>>>>> >>>>>> >>>>>>>> ------- >>>>>> >>>>>>>> Thank you, >>>>>> >>>>>>>> Mehul Chhayani | Deployment Specialist >>>>>> >>>>>>>> chh...@ec... >>>>>> >>>>>>>> T:416-226-8600 EXT-246 >>>>>> >>>>>>>> >>>>>> >>>>>>>> >>>>>> >>>>>>>> -----Original Message----- >>>>>> >>>>>>>> From: Tomas Gustavsson [mailto:tom...@pr...] >>>>>> >>>>>>>> Sent: Friday, June 1, 2018 9:53 AM >>>>>> >>>>>>>> To: Mehul Chhayani; ejb...@li... >>>>>> >>>>>>>> Cc: Randy Yu >>>>>> >>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >>>>>> >>>>>>>> >>>>>> >>>>>>>> >>>>>> >>>>>>>> Hi, thanks for the info. >>>>>> >>>>>>>> >>>>>> >>>>>>>> What does your roles looks like in EJBCA 4? Is it possible to show >>>>>> >>>>>>>> screenshots of the members page of the roles? It seems to be related to >>>>>> >>>>>>>> this. >>>>>> >>>>>>>> >>>>>> >>>>>>>> Regards, >>>>>> >>>>>>>> Tomas >>>>>> >>>>>>>> >>>>>> >>>>>>>> On 2018-05-31 15:55, Mehul Chhayani wrote: >>>>>> >>>>>>>>> Hello Tomas, >>>>>> >>>>>>>>> >>>>>> >>>>>>>>> We can configure and migrate PKCS#11 after upgrading EJBCA-6236 , >>>>>> what issue is after successfully upgrading EJBCA-6236, we cannot get >>>>>> adminweb page for ejbca and complaining nullpointerexception and it's >>>>>> also not giving much information on that.can you please advise on that? >>>>>> >>>>>>>>> >>>>>> >>>>>>>>> ------- >>>>>> >>>>>>>>> Thank you, >>>>>> >>>>>>>>> Mehul Chhayani | Deployment Specialist >>>>>> >>>>>>>>> chh...@ec... >>>>>> >>>>>>>>> T:416-226-8600 EXT-246 >>>>>> >>>>>>>>> >>>>>> >>>>>>>>> >>>>>> >>>>>>>>> -----Original Message----- >>>>>> >>>>>>>>> From: Tomas Gustavsson [mailto:tom...@pr...] >>>>>> >>>>>>>>> Sent: Wednesday, May 30, 2018 1:34 PM >>>>>> >>>>>>>>> To: Mehul Chhayani; ejb...@li... >>>>>> >>>>>>>>> Cc: Randy Yu >>>>>> >>>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >>>>>> >>>>>>>>> >>>>>> >>>>>>>>> >>>>>> >>>>>>>>> SunPKCS#11 should be included by default in any java installation, also >>>>>> >>>>>>>>> in hava 6 so you should have it already. It's a matter of re-configuring >>>>>> >>>>>>>>> your CA tokens to use the PKCS#11 driver. I think it's described in the >>>>>> >>>>>>>>> doc/UPGRADE document. >>>>>> >>>>>>>>> >>>>>> >>>>>>>>> Regards, >>>>>> >>>>>>>>> Tomas >>>>>> >>>>>>>>> >>>>>> >>>>>>>>> >>>>>> >>>>>>>>> On 2018-05-30 19:23, Mehul Chhayani wrote: >>>>>> >>>>>>>>>> Hi Tomas, >>>>>> >>>>>>>>>> >>>>>> >>>>>>>>>> As you have said migrate to a PKCS#11 CA token means that >>>>>> downloading sunpkcs11.jar file , copy into >>>>>> jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am >>>>>> wrong , can you advise me how to migrate a PKCS#11 CA token while >>>>>> upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA >>>>>> with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna >>>>>> library with custom JKS keystore in Ejbca_4_0_16. >>>>>> >>>>>>>>>> >>>>>> >>>>>>>>>> >>>>>> >>>>>>>>>> ------- >>>>>> >>>>>>>>>> Thank you, >>>>>> >>>>>>>>>> Mehul Chhayani | Deployment Specialist >>>>>> >>>>>>>>>> chh...@ec... >>>>>> >>>>>>>>>> T:416-226-8600 EXT-246 >>>>>> >>>>>>>>>> >>>>>> >>>>>>>>>> >>>>>> >>>>>>>>>> -----Original Message----- >>>>>> >>>>>>>>>> From: Tomas Gustavsson [mailto:to...@pr...] >>>>>> >>>>>>>>>> Sent: Wednesday, May 30, 2018 12:23 PM >>>>>> >>>>>>>>>> To: Mehul Chhayani; ejb...@li... >>>>>> >>>>>>>>>> Cc: Randy Yu >>>>>> >>>>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >>>>>> >>>>>>>>>> >>>>>> >>>>>>>>>> >>>>>> >>>>>>>>>> Hi, >>>>>> >>>>>>>>>> >>>>>> >>>>>>>>>> Sorry, I donät understand that question. Can you elaborate a little bit >>>>>> >>>>>>>>>> what you have done? >>>>>> >>>>>>>>>> >>>>>> >>>>>>>>>> In the previous answer, you should migrate to a PKCS#11 CA token, still >>>>>> >>>>>>>>>> in your EJBCA 4, before upgrading to EJBCA 6. >>>>>> >>>>>>>>>> >>>>>> >>>>>>>>>> Regards, >>>>>> >>>>>>>>>> Tomas >>>>>> >>>>>>>>>> >>>>>> >>>>>>>>>> On 2018-05-30 18:17, Mehul Chhayani wrote: >>>>>> >>>>>>>>>>> Hello Tomas, >>>>>> >>>>>>>>>>> >>>>>> >>>>>>>>>>> Its working on old ejbca-4.0.16 and we did not change any keystore >>>>>> keys or catoken.properties file. But when we are hitting that giving >>>>>> jsp error, can you please tell us what it is causing an error. Or We >>>>>> should compile new ejbca with upgrade jboss or jdk. >>>>>> >>>>>>>>>>> >>>>>> >>>>>>>>>>> >>>>>> >>>>>>>>>>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30 >>>>>> 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127 >>>>>> >>>>>>>>>>> 16:16:16,367 ERROR [jsp] >>>>>> >>>>>>>>>>> java.lang.NullPointerException >>>>>> >>>>>>>>>>> at >>>>>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305) >>>>>> >>>>>>>>>>> at >>>>>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259) >>>>>> >>>>>>>>>>> at >>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139) >>>>>> >>>>>>>>>>> at >>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192) >>>>>> >>>>>>>>>>> at >>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115) >>>>>> >>>>>>>>>>> at >>>>>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86) >>>>>> >>>>>>>>>>> at >>>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86) >>>>>> >>>>>>>>>>> at >>>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136) >>>>>> >>>>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>>>>> >>>>>>>>>>> at >>>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>>>>> >>>>>>>>>>> at >>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>>>>> >>>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >>>>>> >>>>>>>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown >>>>>> Source) >>>>>> >>>>>>>>>>> at >>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>>>>> >>>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>>> >>>>>>>>>>> at >>>>>> org.jboss.ejb3.security.Ejb3Authentic... [truncated message content] |
|
From: Mehul C. <chh...@ec...> - 2018-07-11 20:21:57
|
Hello Tomas,
I am trying to reset superadmin password after upgrading EJBCA-ce-6.3.2.6 , but it is throwing me below error , can you please advise me what reason it could be?
[root@qaejbcatest ejbca]# bin/ejbca.sh ra setendentitystatus superadmin 10 -u superadmin -p
Enter password for parameter (-p):
Exception in thread "main" javax.ejb.EJBTransactionRolledbackException
at org.jboss.ejb3.tx.Ejb3TxPolicy.handleInCallerTx(Ejb3TxPolicy.java:115)
at org.jboss.aspects.tx.TxPolicy.invokeInCallerTx(TxPolicy.java:130)
at org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:147)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
at com.sun.proxy.$Proxy369.isAuthorizedNoLogging(Unknown Source)
at org.ejbca.core.ejb.ra.EndEntityManagementSessionBean.authorizedToCA(EndEntityManagementSessionBean.java:194)
at org.ejbca.core.ejb.ra.EndEntityManagementSessionBean.assertAuthorizedToCA(EndEntityManagementSessionBean.java:205)
at org.ejbca.core.ejb.ra.EndEntityManagementSessionBean.setUserStatus(EndEntityManagementSessionBean.java:1162)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:79)
at org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.aop.Dispatcher.invoke(Dispatcher.java:91)
at org.jboss.aspects.remoting.AOPRemotingInvocationHandler.invoke(AOPRemotingInvocationHandler.java:82)
at org.jboss.remoting.ServerInvoker.invoke(ServerInvoker.java:891)
at org.jboss.remoting.transport.socket.ServerThread.completeInvocation(ServerThread.java:744)
at org.jboss.remoting.transport.socket.ServerThread.processInvocation(ServerThread.java:697)
at org.jboss.remoting.transport.socket.ServerThread.dorun(ServerThread.java:524)
at org.jboss.remoting.transport.socket.ServerThread.run(ServerThread.java:232)
Caused by: java.lang.NullPointerException
at org.ejbca.core.ejb.authentication.cli.CliAuthenticationToken.matchTokenType(CliAuthenticationToken.java:265)
at org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
-------
Thank you,
Mehul Chhayani | Deployment Specialist
chh...@ec...
-----Original Message-----
From: Mehul Chhayani [mailto:chh...@ec...]
Sent: Tuesday, July 3, 2018 10:07 AM
To: ejb...@li...
Cc: Randy Yu
Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
Hello Tomas,
I am upgrading EJBCA-ce-6.3.2.6 from ejbca_4_0_16 on jboss-5.1.0.GA (old jboss) which is same application server. Can you please provide steps for upgrading migrate to a PKCS11 CA Token ?
-------
Thank you,
Mehul Chhayani | Deployment Specialist
chh...@ec...
-----Original Message-----
From: Tomas Gustavsson [mailto:to...@pr...]
Sent: Monday, July 2, 2018 5:01 AM
To: ejb...@li...
Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
Hi,
You have been using an old org.ejbca.core.model.ca.catoken.LunaCAToken.
This was deprecated many years ago, already during EJBCA 4. I guess you
were using EJBCA v3 already, before upgrading to 4
?
In order to upgrade to EJBCA 6 you need to migrate to a PKCS11 CA Token
before you upgrade. The LunaCAToken is not available in EJBCA 6 anymore.
This has been documented somewhere (I'm not around to check that now),
and there are other cases in the forum that has done this.
Another way of upgrading that you may consider, unless you have vast
amounts of certificates issued, is to make a new install and import CAs,
issue certificates and CRLs from your old installation. This can be done
with the CLI, importca, importcert, importcertdir and importcrl commands.
That would get you up fresh.
Regards,
Tomas
On 2018-06-29 17:34, Mehul Chhayani wrote:
> Hi Tomas,
>
> When I was upgrading today, it was throwing an error during upgrade which is mentioned below in server log and but upgrade: BUILD SUCCESSFUL. Can you advice me on that?
> Total time: 1 minute 7 seconds
>
> 2018-06-29 15:32:30,496 ERROR [org.cesecore.keys.token.CryptoTokenFactory] (WorkerThread#0[127.0.0.1:58696]) No token. Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken
> 2018-06-29 15:32:30,511 ERROR [org.ejbca.core.ejb.upgrade.UpgradeSessionBean] (WorkerThread#0[127.0.0.1:58696]) Error thrown during upgrade:
> javax.ejb.EJBException: java.lang.NullPointerException
> at org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
> at org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
> at com.sun.proxy.$Proxy409.mergeCryptoToken(Unknown Source)
> at org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821)
> at org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721)
> at org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586)
> at org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:537)
> at org.cesecore.certificates.ca.CaSessionBean.getCAForEdit(CaSessionBean.java:297)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at java.lang.reflect.Method.invoke(Method.java:597)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
> at sun.reflect.GeneratedMethodAccessor322.invoke(Unknown Source)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at java.lang.reflect.Method.invoke(Method.java:597)
> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>
> upgrade:
>
> BUILD SUCCESSFUL
> Total time: 1 minute 7 seconds
>
> -------
> Thank you,
> Mehul Chhayani | Deployment Specialist
> chh...@ec...
>
>
>
> -----Original Message-----
> From: Tomas Gustavsson [mailto:to...@pr...]
> Sent: Friday, June 29, 2018 10:06 AM
> To: ejb...@li...
> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>
> Agressively releasing JDBC connection is not an error, it's not any
> problem with the database.
>
> When you enable debug logging you should do so for org.ejbca and
> org.cesecore only. It's not useful to have debug logging for _all_ of
> JBoss, it just makes the log impossible to read.
>
> Use categories like this:
>
> <category name="org.cesecore">
> <priority value="DEBUG"/>
> </category>
> <category name="org.ejbca">
> <priority value="DEBUG"/>
> </category>
>
> I think the logs for "ant upgrade" and "ant post-upgrade" are
> interesting probably.
>
> Regards,
> Tomas
>
> On 2018-06-29 15:54, Mehul Chhayani wrote:
>> Hello Tomas,
>>
>> I have read server logs and jboss logs , from logs I can say whenever it tried to connect database while try to open adminweb , it connected to database for a while but after some seconds, it closed connected forcefully (aggressively releasing JDBC connection) , But I can connect new EJBCA-6326 GUI except adminweb page.
>>
>>
>> 2018-06-29 13:48:10,220 DEBUG [org.hibernate.impl.SessionImpl] (http-0.0.0.0-8443-1) opened session at timestamp: 6268027249541120
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Looking for a JTA transaction to join
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.JDBCContext] (http-0.0.0.0-8443-1) successfully registered Synchronization
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Looking for a JTA transaction to join
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Transaction already joined
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) loading entity: [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to open PreparedStatement (open PreparedStatements: 0, globally: 0)
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) opening JDBC connection
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.SQL] (http-0.0.0.0-8443-1) select adminprefe0_.id as id13_0_, adminprefe0_.data as data13_0_, adminprefe0_.rowProtection as rowProte3_13_0_, adminprefe0_.rowVersion as rowVersion13_0_ from AdminPreferencesData adminprefe0_ where adminprefe0_.id=?
>> 2018-06-29 13:48:10,228 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to open ResultSet (open ResultSets: 0, globally: 0)
>> 2018-06-29 13:48:10,228 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) result row: EntityKey[org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to close ResultSet (open ResultSets: 1, globally: 1)
>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to close PreparedStatement (open PreparedStatements: 1, globally: 1)
>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) releasing JDBC connection [ (open PreparedStatements: 0, globally: 0) (open ResultSets: 0, globally: 0)]
>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.engine.TwoPhaseLoad] (http-0.0.0.0-8443-1) resolving associations for [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
>> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.engine.TwoPhaseLoad] (http-0.0.0.0-8443-1) done materializing entity [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
>> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.engine.StatefulPersistenceContext] (http-0.0.0.0-8443-1) initializing non-lazy collections
>> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) done entity load
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) processing flush-time cascades
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) dirty checking collections
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) Flushed: 0 insertions, 0 updates, 0 deletions to 1 objects
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) Flushed: 0 (re)creations, 0 updates, 0 removals to 0 collections
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) listing entities:
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default, rowProtection=null, rowVersion=2, dataUnsafe=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}
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
>> 2018-06-29 13:48:10,232 DEBUG [org.jboss.jpa.deployment.ManagedEntityManagerFactory] (http-0.0.0.0-8443-1) ************** closing entity managersession **************
>> 2018-06-29 13:48:10,232 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.en.properties
>> 2018-06-29 13:48:10,238 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.bs.properties
>> 2018-06-29 13:48:10,244 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.de.properties
>> 2018-06-29 13:48:10,249 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.es.properties
>> 2018-06-29 13:48:10,251 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.fr.properties
>> 2018-06-29 13:48:10,258 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.it.properties
>> 2018-06-29 13:48:10,260 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.ja.properties
>> 2018-06-29 13:48:10,265 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.pt.properties
>> 2018-06-29 13:48:10,270 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.sv.properties
>> 2018-06-29 13:48:10,273 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.uk.properties
>> 2018-06-29 13:48:10,281 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.zh.properties
>> 2018-06-29 13:48:10,301 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
>> java.lang.NullPointerException
>>
>>
>> -------
>> Thank you,
>> Mehul Chhayani | Deployment Specialist
>> chh...@ec...
>>
>>
>>
>> -----Original Message-----
>> From: Tomas Gustavsson [mailto:to...@pr...]
>> Sent: Friday, June 29, 2018 3:16 AM
>> To: ejb...@li...
>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>
>> Hi,
>>
>> If you have problems it's not enough to read the last line only. You
>> need to troubleshoot the steps. Especially the upgrade and post-upgrade
>> steps seems to have some issues, since things have not been updated as
>> they should.
>>
>> You can find some documentation how to troubleshoot here:
>> https://download.primekey.se/docs/EJBCA-Enterprise/6_11_1/adminguide.html#Troubleshooting
>>
>> Monitoring server.log will show you what happens, just as it would show
>> why you get the error you get right now. server.log is your best friends
>> when troubleshooting EJBCA.
>>
>> You probably have to restart JBoss between ant upgrade and port-upgrade.
>>
>> Kind Regards,
>> Tomas
>>
>> PS: I will be away on vacation for the coming weeks and will not be
>> available here
>>
>> On 2018-06-28 22:59, Mehul Chhayani wrote:
>>> Hi Tomas,
>>>
>>> I have mentioneing following steps while upgrade EJBCA-ce-6.3.2.6 from ejbca_4_0_16 on jboss-5.1.0.GA (old jboss).
>>>
>>> ant clean
>>> ant deployear
>>> ant upgrade
>>> ant post-upgrade
>>> ant javatruststore
>>>
>>> output says BUILD successfully that during upgrade.
>>> -------
>>> Thank you,
>>> Mehul Chhayani | Deployment Specialist
>>> chh...@ec...
>>>
>>>
>>>
>>> -----Original Message-----
>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>> Sent: Thursday, June 28, 2018 5:19 AM
>>> To: ejb...@li...
>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>
>>>
>>> Hi,
>>>
>>> It looks like you are one step further. This is a new error.
>>>
>>> During upgrade and post-upgrade you need to be monitoring for errors.
>>> Perhaps your database privileges does not allow certain operations? So
>>> that some needs to be done manually?
>>>
>>> Logs will tell you what is going on.
>>>
>>> The same with the error below. In the log you will have information
>>> leading up to the error that tells you what is going on and why this
>>> happens. It looks to me as you have some CA tokens which are of
>>> non-standard type, or that was not upgraded properly in a previous step.
>>> A previous upgrade step failing looks consistent with the previous error.
>>>
>>> But the log will tell you what led up to the error you show, and why it
>>> happens.
>>>
>>> If you have documented your complete upgrade process, can you provide
>>> the upgrade steps you perform? Which version, what command what output.
>>>
>>> Regards,
>>> Tomas
>>>
>>>
>>>
>>> On 2018-06-27 21:30, Mehul Chhayani wrote:
>>>> Hi Tomas,
>>>>
>>>> I did ant upgrade and ant post-upgrade on time of upgrading EJBCA, How do I get privileges for a CLI authentication token created, how do I know that is created in database or something during upgrade, I have updated tokenType to CertificateAuthenticationToken / X509CertificateAuthenticationToken in database and also droped manually CAID on AdminGroupData table which should be drop during upgrade, none of them are working, still getting below error.
>>>>
>>>>
>>>> 19:23:10,107 ERROR [[/ejbca/adminweb]] Servlet /ejbca/adminweb threw load() exception
>>>> java.lang.NullPointerException
>>>> at org.cesecore.keys.token.CryptoTokenSessionBean.mergeCryptoToken(CryptoTokenSessionBean.java:131)
>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>> -------
>>>> Thank you,
>>>> Mehul Chhayani | Deployment Specialist
>>>> chh...@ec...
>>>> T:416-226-8600 EXT-246
>>>>
>>>>
>>>> -----Original Message-----
>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>> Sent: Wednesday, June 27, 2018 8:56 AM
>>>> To: ejb...@li...
>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>> Did you run all ant upgrade and ant post-upgrades that are needed?
>>>>
>>>> You don't have a CLI authentication token created it seems, whcih should
>>>> be created.
>>>>
>>>> For the SuperAdmin rows you can set tokenType to
>>>> CertificateAuthenticationToken.
>>>> The UNUSED rows you can delete.
>>>>
>>>> Regards,
>>>> Tomas
>>>>
>>>>
>>>> On 2018-06-25 22:24, Mehul Chhayani wrote:
>>>>> Hello Tomas,
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> I have checked tokentype=Null of every entity that mentioned
>>>>> AdminEntityData table in database. What would be next step to overcome
>>>>> that problem? See that following table
>>>>>
>>>>>
>>>>>
>>>>> Pk matchwith matchtype matchvalue adminroupdata_adminentities caif
>>>>> rowversion rowprotection tokentype
>>>>>
>>>>> -401175635 8 1001 SuperAdmin
>>>>> -1181650581 -1146543808 0
>>>>>
>>>>> 329358383 11 2003 UNUSED
>>>>> -1290073541 0 0
>>>>>
>>>>> 329358381 11 2001 UNUSED
>>>>> -1290073541 0 0
>>>>>
>>>>> 329358382 11 2002 UNUSED
>>>>> -1290073541 0 0
>>>>>
>>>>> 329358376 11 2004 UNUSED
>>>>> -1290073541 0 0
>>>>>
>>>>> -342399384 11 2000 UNUSED
>>>>> 1399736916 -1146543808 0
>>>>>
>>>>> 2117404180 8 1001 SuperAdmin
>>>>> -1181650581 764062969 0
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> -------
>>>>>
>>>>> Thank you,
>>>>>
>>>>> Mehul Chhayani | Deployment Specialist
>>>>>
>>>>> chh...@ec...
>>>>>
>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> -----Original Message-----
>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>> Sent: Monday, June 25, 2018 7:11 AM
>>>>> To: ejb...@li...
>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> Hi,
>>>>>
>>>>>
>>>>>
>>>>> Can you check in your database. Things should move over to
>>>>>
>>>>> RoleMemberData during the migration. Can you check what "tokenType"s you
>>>>>
>>>>> have in RoleMemberData and AdminEntityData.
>>>>>
>>>>>
>>>>>
>>>>> Cheers,
>>>>>
>>>>> Tomas
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> On 2018-06-21 21:43, Mehul Chhayani wrote:
>>>>>
>>>>>> Hi Thomas,
>>>>>
>>>>>>
>>>>>
>>>>>> I tried with this method , it did not worked with old jboss-5.0.1, its
>>>>> complaining when I hit adminweb page, I am mentioning some server log,
>>>>> can you please advise me ? I am not able to reset superadmin password
>>>>> as well
>>>>>
>>>>>>
>>>>>
>>>>>> 2018-06-21 19:09:57,283 DEBUG [org.hibernate.pretty.Printer]
>>>>> (http-0.0.0.0-8443-1) listing entities:
>>>>>
>>>>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.pretty.Printer]
>>>>> (http-0.0.0.0-8443-1)
>>>>> org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default,
>>>>> rowProtection=null, rowVersion=2,
>>>>> dataUnsafe=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}
>>>>>
>>>>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.jdbc.ConnectionManager]
>>>>> (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
>>>>>
>>>>>> 2018-06-21 19:09:57,284 DEBUG
>>>>> [org.jboss.jpa.deployment.ManagedEntityManagerFactory]
>>>>> (http-0.0.0.0-8443-1) ************** closing entity managersession
>>>>> **************
>>>>>
>>>>>> 2018-06-21 19:09:57,285 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.en.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,293 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.bs.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,320 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.de.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,328 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.es.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,332 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.fr.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,345 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.it.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,349 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.ja.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,358 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.pt.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,363 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.sv.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,367 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.uk.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,380 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.zh.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,391 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
>>>>>
>>>>>> java.lang.NullPointerException
>>>>>
>>>>>> at
>>>>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>>>>
>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>>
>>>>>> at
>>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>>
>>>>>> at
>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>>
>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>>>
>>>>>> at
>>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>>>
>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>>>
>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>>>
>>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>>>>>
>>>>>> at
>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>>
>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>> -------
>>>>>
>>>>>> Thank you,
>>>>>
>>>>>> Mehul Chhayani | Deployment Specialist
>>>>>
>>>>>> chh...@ec...
>>>>>
>>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>>>
>>>>>
>>>>>> -----Original Message-----
>>>>>
>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>>
>>>>>> Sent: Saturday, June 2, 2018 1:56 PM
>>>>>
>>>>>> To: ejb...@li...
>>>>>
>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>> This one is due to JBoss not cleaning temp files properly every time.
>>>>>
>>>>>> It's a good habit to do this every time you deploy something new:
>>>>>
>>>>>> - rm -rf <jboss>/server/default/tmp
>>>>>
>>>>>> - rm -rf <jboss>/server/default/work
>>>>>
>>>>>>
>>>>>
>>>>>> Regards,
>>>>>
>>>>>> Tomas
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>> On 2018-06-01 17:22, Mehul Chhayani wrote:
>>>>>
>>>>>>> Here I have attached members page of the roles in EJBCA-4, if you
>>>>> find that information useful, I am also getting new error while I am
>>>>> hitting adminweb page EJBCA-6.3.2.6 from local network. I have checked
>>>>> firewall rules and access-list. No ip's are blocking there. I am
>>>>> providing new error below , please take a look.
>>>>>
>>>>>>>
>>>>>
>>>>>>> 15:22:13,243 ERROR [[jsp]] Servlet.service() for servlet jsp threw
>>>>> exception
>>>>>
>>>>>>> java.lang.NoClassDefFoundError:
>>>>> org/ejbca/core/model/authorization/AuthorizationDeniedException
>>>>>
>>>>>>> at
>>>>> org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:115)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>>>
>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>>>
>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:638)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:444)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:382)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:310)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:696)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:667)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:808)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:781)
>>>>>
>>>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:143)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>>>
>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>>>
>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>>>>
>>>>>>> at
>>>>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>>>>
>>>>>>> at
>>>>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>>>>
>>>>>>> at
>>>>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>>>>
>>>>>>> at java.lang.Thread.run(Thread.java:662)
>>>>>
>>>>>>>
>>>>>
>>>>>>> -------
>>>>>
>>>>>>> Thank you,
>>>>>
>>>>>>> Mehul Chhayani | Deployment Specialist
>>>>>
>>>>>>> chh...@ec...
>>>>>
>>>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>>>>
>>>>>
>>>>>>>
>>>>>
>>>>>>> -----Original Message-----
>>>>>
>>>>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>>>>
>>>>>>> Sent: Friday, June 1, 2018 9:53 AM
>>>>>
>>>>>>> To: Mehul Chhayani; ejb...@li...
>>>>>
>>>>>>> Cc: Randy Yu
>>>>>
>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>>>
>>>>>
>>>>>>>
>>>>>
>>>>>>> Hi, thanks for the info.
>>>>>
>>>>>>>
>>>>>
>>>>>>> What does your roles looks like in EJBCA 4? Is it possible to show
>>>>>
>>>>>>> screenshots of the members page of the roles? It seems to be related to
>>>>>
>>>>>>> this.
>>>>>
>>>>>>>
>>>>>
>>>>>>> Regards,
>>>>>
>>>>>>> Tomas
>>>>>
>>>>>>>
>>>>>
>>>>>>> On 2018-05-31 15:55, Mehul Chhayani wrote:
>>>>>
>>>>>>>> Hello Tomas,
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> We can configure and migrate PKCS#11 after upgrading EJBCA-6236 ,
>>>>> what issue is after successfully upgrading EJBCA-6236, we cannot get
>>>>> adminweb page for ejbca and complaining nullpointerexception and it's
>>>>> also not giving much information on that.can you please advise on that?
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> -------
>>>>>
>>>>>>>> Thank you,
>>>>>
>>>>>>>> Mehul Chhayani | Deployment Specialist
>>>>>
>>>>>>>> chh...@ec...
>>>>>
>>>>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>>>>>
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> -----Original Message-----
>>>>>
>>>>>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>>>>
>>>>>>>> Sent: Wednesday, May 30, 2018 1:34 PM
>>>>>
>>>>>>>> To: Mehul Chhayani; ejb...@li...
>>>>>
>>>>>>>> Cc: Randy Yu
>>>>>
>>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>>>>
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> SunPKCS#11 should be included by default in any java installation, also
>>>>>
>>>>>>>> in hava 6 so you should have it already. It's a matter of re-configuring
>>>>>
>>>>>>>> your CA tokens to use the PKCS#11 driver. I think it's described in the
>>>>>
>>>>>>>> doc/UPGRADE document.
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> Regards,
>>>>>
>>>>>>>> Tomas
>>>>>
>>>>>>>>
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> On 2018-05-30 19:23, Mehul Chhayani wrote:
>>>>>
>>>>>>>>> Hi Tomas,
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> As you have said migrate to a PKCS#11 CA token means that
>>>>> downloading sunpkcs11.jar file , copy into
>>>>> jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am
>>>>> wrong , can you advise me how to migrate a PKCS#11 CA token while
>>>>> upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA
>>>>> with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna
>>>>> library with custom JKS keystore in Ejbca_4_0_16.
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> -------
>>>>>
>>>>>>>>> Thank you,
>>>>>
>>>>>>>>> Mehul Chhayani | Deployment Specialist
>>>>>
>>>>>>>>> chh...@ec...
>>>>>
>>>>>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> -----Original Message-----
>>>>>
>>>>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>>
>>>>>>>>> Sent: Wednesday, May 30, 2018 12:23 PM
>>>>>
>>>>>>>>> To: Mehul Chhayani; ejb...@li...
>>>>>
>>>>>>>>> Cc: Randy Yu
>>>>>
>>>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> Hi,
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> Sorry, I donät understand that question. Can you elaborate a little bit
>>>>>
>>>>>>>>> what you have done?
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> In the previous answer, you should migrate to a PKCS#11 CA token, still
>>>>>
>>>>>>>>> in your EJBCA 4, before upgrading to EJBCA 6.
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> Regards,
>>>>>
>>>>>>>>> Tomas
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> On 2018-05-30 18:17, Mehul Chhayani wrote:
>>>>>
>>>>>>>>>> Hello Tomas,
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> Its working on old ejbca-4.0.16 and we did not change any keystore
>>>>> keys or catoken.properties file. But when we are hitting that giving
>>>>> jsp error, can you please tell us what it is causing an error. Or We
>>>>> should compile new ejbca with upgrade jboss or jdk.
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30
>>>>> 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127
>>>>>
>>>>>>>>>> 16:16:16,367 ERROR [jsp]
>>>>>
>>>>>>>>>> java.lang.NullPointerException
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>>>>
>>>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>>
>>>>>>>>>> at
>>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>>
>>>>>>>>>> at
>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>>
>>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>>>
>>>>>>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown
>>>>> Source)
>>>>>
>>>>>>>>>> at
>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>>
>>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>>
>>>>>>>>>> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source)
>>>>>
>>>>>>>>>> at
>>>>> org.ejbca.ui.web.admin.configuration.EjbcaWe...
[truncated message content] |
|
From: Mehul C. <chh...@ec...> - 2018-07-03 14:06:55
|
Hello Tomas,
I am upgrading EJBCA-ce-6.3.2.6 from ejbca_4_0_16 on jboss-5.1.0.GA (old jboss) which is same application server. Can you please provide steps for upgrading migrate to a PKCS11 CA Token ?
-------
Thank you,
Mehul Chhayani | Deployment Specialist
chh...@ec...
T:416-226-8600 EXT-246
-----Original Message-----
From: Tomas Gustavsson [mailto:to...@pr...]
Sent: Monday, July 2, 2018 5:01 AM
To: ejb...@li...
Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
Hi,
You have been using an old org.ejbca.core.model.ca.catoken.LunaCAToken.
This was deprecated many years ago, already during EJBCA 4. I guess you
were using EJBCA v3 already, before upgrading to 4
?
In order to upgrade to EJBCA 6 you need to migrate to a PKCS11 CA Token
before you upgrade. The LunaCAToken is not available in EJBCA 6 anymore.
This has been documented somewhere (I'm not around to check that now),
and there are other cases in the forum that has done this.
Another way of upgrading that you may consider, unless you have vast
amounts of certificates issued, is to make a new install and import CAs,
issue certificates and CRLs from your old installation. This can be done
with the CLI, importca, importcert, importcertdir and importcrl commands.
That would get you up fresh.
Regards,
Tomas
On 2018-06-29 17:34, Mehul Chhayani wrote:
> Hi Tomas,
>
> When I was upgrading today, it was throwing an error during upgrade which is mentioned below in server log and but upgrade: BUILD SUCCESSFUL. Can you advice me on that?
> Total time: 1 minute 7 seconds
>
> 2018-06-29 15:32:30,496 ERROR [org.cesecore.keys.token.CryptoTokenFactory] (WorkerThread#0[127.0.0.1:58696]) No token. Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken
> 2018-06-29 15:32:30,511 ERROR [org.ejbca.core.ejb.upgrade.UpgradeSessionBean] (WorkerThread#0[127.0.0.1:58696]) Error thrown during upgrade:
> javax.ejb.EJBException: java.lang.NullPointerException
> at org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
> at org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
> at com.sun.proxy.$Proxy409.mergeCryptoToken(Unknown Source)
> at org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821)
> at org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721)
> at org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586)
> at org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:537)
> at org.cesecore.certificates.ca.CaSessionBean.getCAForEdit(CaSessionBean.java:297)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at java.lang.reflect.Method.invoke(Method.java:597)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
> at sun.reflect.GeneratedMethodAccessor322.invoke(Unknown Source)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at java.lang.reflect.Method.invoke(Method.java:597)
> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>
> upgrade:
>
> BUILD SUCCESSFUL
> Total time: 1 minute 7 seconds
>
> -------
> Thank you,
> Mehul Chhayani | Deployment Specialist
> chh...@ec...
> T:416-226-8600 EXT-246
>
>
> -----Original Message-----
> From: Tomas Gustavsson [mailto:to...@pr...]
> Sent: Friday, June 29, 2018 10:06 AM
> To: ejb...@li...
> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>
> Agressively releasing JDBC connection is not an error, it's not any
> problem with the database.
>
> When you enable debug logging you should do so for org.ejbca and
> org.cesecore only. It's not useful to have debug logging for _all_ of
> JBoss, it just makes the log impossible to read.
>
> Use categories like this:
>
> <category name="org.cesecore">
> <priority value="DEBUG"/>
> </category>
> <category name="org.ejbca">
> <priority value="DEBUG"/>
> </category>
>
> I think the logs for "ant upgrade" and "ant post-upgrade" are
> interesting probably.
>
> Regards,
> Tomas
>
> On 2018-06-29 15:54, Mehul Chhayani wrote:
>> Hello Tomas,
>>
>> I have read server logs and jboss logs , from logs I can say whenever it tried to connect database while try to open adminweb , it connected to database for a while but after some seconds, it closed connected forcefully (aggressively releasing JDBC connection) , But I can connect new EJBCA-6326 GUI except adminweb page.
>>
>>
>> 2018-06-29 13:48:10,220 DEBUG [org.hibernate.impl.SessionImpl] (http-0.0.0.0-8443-1) opened session at timestamp: 6268027249541120
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Looking for a JTA transaction to join
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.JDBCContext] (http-0.0.0.0-8443-1) successfully registered Synchronization
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Looking for a JTA transaction to join
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Transaction already joined
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) loading entity: [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to open PreparedStatement (open PreparedStatements: 0, globally: 0)
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) opening JDBC connection
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.SQL] (http-0.0.0.0-8443-1) select adminprefe0_.id as id13_0_, adminprefe0_.data as data13_0_, adminprefe0_.rowProtection as rowProte3_13_0_, adminprefe0_.rowVersion as rowVersion13_0_ from AdminPreferencesData adminprefe0_ where adminprefe0_.id=?
>> 2018-06-29 13:48:10,228 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to open ResultSet (open ResultSets: 0, globally: 0)
>> 2018-06-29 13:48:10,228 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) result row: EntityKey[org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to close ResultSet (open ResultSets: 1, globally: 1)
>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to close PreparedStatement (open PreparedStatements: 1, globally: 1)
>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) releasing JDBC connection [ (open PreparedStatements: 0, globally: 0) (open ResultSets: 0, globally: 0)]
>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.engine.TwoPhaseLoad] (http-0.0.0.0-8443-1) resolving associations for [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
>> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.engine.TwoPhaseLoad] (http-0.0.0.0-8443-1) done materializing entity [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
>> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.engine.StatefulPersistenceContext] (http-0.0.0.0-8443-1) initializing non-lazy collections
>> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) done entity load
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) processing flush-time cascades
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) dirty checking collections
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) Flushed: 0 insertions, 0 updates, 0 deletions to 1 objects
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) Flushed: 0 (re)creations, 0 updates, 0 removals to 0 collections
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) listing entities:
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default, rowProtection=null, rowVersion=2, dataUnsafe=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}
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
>> 2018-06-29 13:48:10,232 DEBUG [org.jboss.jpa.deployment.ManagedEntityManagerFactory] (http-0.0.0.0-8443-1) ************** closing entity managersession **************
>> 2018-06-29 13:48:10,232 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.en.properties
>> 2018-06-29 13:48:10,238 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.bs.properties
>> 2018-06-29 13:48:10,244 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.de.properties
>> 2018-06-29 13:48:10,249 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.es.properties
>> 2018-06-29 13:48:10,251 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.fr.properties
>> 2018-06-29 13:48:10,258 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.it.properties
>> 2018-06-29 13:48:10,260 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.ja.properties
>> 2018-06-29 13:48:10,265 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.pt.properties
>> 2018-06-29 13:48:10,270 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.sv.properties
>> 2018-06-29 13:48:10,273 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.uk.properties
>> 2018-06-29 13:48:10,281 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.zh.properties
>> 2018-06-29 13:48:10,301 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
>> java.lang.NullPointerException
>>
>>
>> -------
>> Thank you,
>> Mehul Chhayani | Deployment Specialist
>> chh...@ec...
>> T:416-226-8600 EXT-246
>>
>>
>> -----Original Message-----
>> From: Tomas Gustavsson [mailto:to...@pr...]
>> Sent: Friday, June 29, 2018 3:16 AM
>> To: ejb...@li...
>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>
>> Hi,
>>
>> If you have problems it's not enough to read the last line only. You
>> need to troubleshoot the steps. Especially the upgrade and post-upgrade
>> steps seems to have some issues, since things have not been updated as
>> they should.
>>
>> You can find some documentation how to troubleshoot here:
>> https://download.primekey.se/docs/EJBCA-Enterprise/6_11_1/adminguide.html#Troubleshooting
>>
>> Monitoring server.log will show you what happens, just as it would show
>> why you get the error you get right now. server.log is your best friends
>> when troubleshooting EJBCA.
>>
>> You probably have to restart JBoss between ant upgrade and port-upgrade.
>>
>> Kind Regards,
>> Tomas
>>
>> PS: I will be away on vacation for the coming weeks and will not be
>> available here
>>
>> On 2018-06-28 22:59, Mehul Chhayani wrote:
>>> Hi Tomas,
>>>
>>> I have mentioneing following steps while upgrade EJBCA-ce-6.3.2.6 from ejbca_4_0_16 on jboss-5.1.0.GA (old jboss).
>>>
>>> ant clean
>>> ant deployear
>>> ant upgrade
>>> ant post-upgrade
>>> ant javatruststore
>>>
>>> output says BUILD successfully that during upgrade.
>>> -------
>>> Thank you,
>>> Mehul Chhayani | Deployment Specialist
>>> chh...@ec...
>>> T:416-226-8600 EXT-246
>>>
>>>
>>> -----Original Message-----
>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>> Sent: Thursday, June 28, 2018 5:19 AM
>>> To: ejb...@li...
>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>
>>>
>>> Hi,
>>>
>>> It looks like you are one step further. This is a new error.
>>>
>>> During upgrade and post-upgrade you need to be monitoring for errors.
>>> Perhaps your database privileges does not allow certain operations? So
>>> that some needs to be done manually?
>>>
>>> Logs will tell you what is going on.
>>>
>>> The same with the error below. In the log you will have information
>>> leading up to the error that tells you what is going on and why this
>>> happens. It looks to me as you have some CA tokens which are of
>>> non-standard type, or that was not upgraded properly in a previous step.
>>> A previous upgrade step failing looks consistent with the previous error.
>>>
>>> But the log will tell you what led up to the error you show, and why it
>>> happens.
>>>
>>> If you have documented your complete upgrade process, can you provide
>>> the upgrade steps you perform? Which version, what command what output.
>>>
>>> Regards,
>>> Tomas
>>>
>>>
>>>
>>> On 2018-06-27 21:30, Mehul Chhayani wrote:
>>>> Hi Tomas,
>>>>
>>>> I did ant upgrade and ant post-upgrade on time of upgrading EJBCA, How do I get privileges for a CLI authentication token created, how do I know that is created in database or something during upgrade, I have updated tokenType to CertificateAuthenticationToken / X509CertificateAuthenticationToken in database and also droped manually CAID on AdminGroupData table which should be drop during upgrade, none of them are working, still getting below error.
>>>>
>>>>
>>>> 19:23:10,107 ERROR [[/ejbca/adminweb]] Servlet /ejbca/adminweb threw load() exception
>>>> java.lang.NullPointerException
>>>> at org.cesecore.keys.token.CryptoTokenSessionBean.mergeCryptoToken(CryptoTokenSessionBean.java:131)
>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>> -------
>>>> Thank you,
>>>> Mehul Chhayani | Deployment Specialist
>>>> chh...@ec...
>>>> T:416-226-8600 EXT-246
>>>>
>>>>
>>>> -----Original Message-----
>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>> Sent: Wednesday, June 27, 2018 8:56 AM
>>>> To: ejb...@li...
>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>> Did you run all ant upgrade and ant post-upgrades that are needed?
>>>>
>>>> You don't have a CLI authentication token created it seems, whcih should
>>>> be created.
>>>>
>>>> For the SuperAdmin rows you can set tokenType to
>>>> CertificateAuthenticationToken.
>>>> The UNUSED rows you can delete.
>>>>
>>>> Regards,
>>>> Tomas
>>>>
>>>>
>>>> On 2018-06-25 22:24, Mehul Chhayani wrote:
>>>>> Hello Tomas,
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> I have checked tokentype=Null of every entity that mentioned
>>>>> AdminEntityData table in database. What would be next step to overcome
>>>>> that problem? See that following table
>>>>>
>>>>>
>>>>>
>>>>> Pk matchwith matchtype matchvalue adminroupdata_adminentities caif
>>>>> rowversion rowprotection tokentype
>>>>>
>>>>> -401175635 8 1001 SuperAdmin
>>>>> -1181650581 -1146543808 0
>>>>>
>>>>> 329358383 11 2003 UNUSED
>>>>> -1290073541 0 0
>>>>>
>>>>> 329358381 11 2001 UNUSED
>>>>> -1290073541 0 0
>>>>>
>>>>> 329358382 11 2002 UNUSED
>>>>> -1290073541 0 0
>>>>>
>>>>> 329358376 11 2004 UNUSED
>>>>> -1290073541 0 0
>>>>>
>>>>> -342399384 11 2000 UNUSED
>>>>> 1399736916 -1146543808 0
>>>>>
>>>>> 2117404180 8 1001 SuperAdmin
>>>>> -1181650581 764062969 0
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> -------
>>>>>
>>>>> Thank you,
>>>>>
>>>>> Mehul Chhayani | Deployment Specialist
>>>>>
>>>>> chh...@ec...
>>>>>
>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> -----Original Message-----
>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>> Sent: Monday, June 25, 2018 7:11 AM
>>>>> To: ejb...@li...
>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> Hi,
>>>>>
>>>>>
>>>>>
>>>>> Can you check in your database. Things should move over to
>>>>>
>>>>> RoleMemberData during the migration. Can you check what "tokenType"s you
>>>>>
>>>>> have in RoleMemberData and AdminEntityData.
>>>>>
>>>>>
>>>>>
>>>>> Cheers,
>>>>>
>>>>> Tomas
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> On 2018-06-21 21:43, Mehul Chhayani wrote:
>>>>>
>>>>>> Hi Thomas,
>>>>>
>>>>>>
>>>>>
>>>>>> I tried with this method , it did not worked with old jboss-5.0.1, its
>>>>> complaining when I hit adminweb page, I am mentioning some server log,
>>>>> can you please advise me ? I am not able to reset superadmin password
>>>>> as well
>>>>>
>>>>>>
>>>>>
>>>>>> 2018-06-21 19:09:57,283 DEBUG [org.hibernate.pretty.Printer]
>>>>> (http-0.0.0.0-8443-1) listing entities:
>>>>>
>>>>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.pretty.Printer]
>>>>> (http-0.0.0.0-8443-1)
>>>>> org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default,
>>>>> rowProtection=null, rowVersion=2,
>>>>> dataUnsafe=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}
>>>>>
>>>>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.jdbc.ConnectionManager]
>>>>> (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
>>>>>
>>>>>> 2018-06-21 19:09:57,284 DEBUG
>>>>> [org.jboss.jpa.deployment.ManagedEntityManagerFactory]
>>>>> (http-0.0.0.0-8443-1) ************** closing entity managersession
>>>>> **************
>>>>>
>>>>>> 2018-06-21 19:09:57,285 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.en.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,293 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.bs.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,320 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.de.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,328 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.es.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,332 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.fr.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,345 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.it.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,349 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.ja.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,358 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.pt.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,363 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.sv.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,367 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.uk.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,380 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.zh.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,391 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
>>>>>
>>>>>> java.lang.NullPointerException
>>>>>
>>>>>> at
>>>>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>>>>
>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>>
>>>>>> at
>>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>>
>>>>>> at
>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>>
>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>>>
>>>>>> at
>>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>>>
>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>>>
>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>>>
>>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>>>>>
>>>>>> at
>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>>
>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>> -------
>>>>>
>>>>>> Thank you,
>>>>>
>>>>>> Mehul Chhayani | Deployment Specialist
>>>>>
>>>>>> chh...@ec...
>>>>>
>>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>>>
>>>>>
>>>>>> -----Original Message-----
>>>>>
>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>>
>>>>>> Sent: Saturday, June 2, 2018 1:56 PM
>>>>>
>>>>>> To: ejb...@li...
>>>>>
>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>> This one is due to JBoss not cleaning temp files properly every time.
>>>>>
>>>>>> It's a good habit to do this every time you deploy something new:
>>>>>
>>>>>> - rm -rf <jboss>/server/default/tmp
>>>>>
>>>>>> - rm -rf <jboss>/server/default/work
>>>>>
>>>>>>
>>>>>
>>>>>> Regards,
>>>>>
>>>>>> Tomas
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>> On 2018-06-01 17:22, Mehul Chhayani wrote:
>>>>>
>>>>>>> Here I have attached members page of the roles in EJBCA-4, if you
>>>>> find that information useful, I am also getting new error while I am
>>>>> hitting adminweb page EJBCA-6.3.2.6 from local network. I have checked
>>>>> firewall rules and access-list. No ip's are blocking there. I am
>>>>> providing new error below , please take a look.
>>>>>
>>>>>>>
>>>>>
>>>>>>> 15:22:13,243 ERROR [[jsp]] Servlet.service() for servlet jsp threw
>>>>> exception
>>>>>
>>>>>>> java.lang.NoClassDefFoundError:
>>>>> org/ejbca/core/model/authorization/AuthorizationDeniedException
>>>>>
>>>>>>> at
>>>>> org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:115)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>>>
>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>>>
>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:638)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:444)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:382)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:310)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:696)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:667)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:808)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:781)
>>>>>
>>>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:143)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>>>
>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>>>
>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>>>>
>>>>>>> at
>>>>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>>>>
>>>>>>> at
>>>>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>>>>
>>>>>>> at
>>>>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>>>>
>>>>>>> at java.lang.Thread.run(Thread.java:662)
>>>>>
>>>>>>>
>>>>>
>>>>>>> -------
>>>>>
>>>>>>> Thank you,
>>>>>
>>>>>>> Mehul Chhayani | Deployment Specialist
>>>>>
>>>>>>> chh...@ec...
>>>>>
>>>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>>>>
>>>>>
>>>>>>>
>>>>>
>>>>>>> -----Original Message-----
>>>>>
>>>>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>>>>
>>>>>>> Sent: Friday, June 1, 2018 9:53 AM
>>>>>
>>>>>>> To: Mehul Chhayani; ejb...@li...
>>>>>
>>>>>>> Cc: Randy Yu
>>>>>
>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>>>
>>>>>
>>>>>>>
>>>>>
>>>>>>> Hi, thanks for the info.
>>>>>
>>>>>>>
>>>>>
>>>>>>> What does your roles looks like in EJBCA 4? Is it possible to show
>>>>>
>>>>>>> screenshots of the members page of the roles? It seems to be related to
>>>>>
>>>>>>> this.
>>>>>
>>>>>>>
>>>>>
>>>>>>> Regards,
>>>>>
>>>>>>> Tomas
>>>>>
>>>>>>>
>>>>>
>>>>>>> On 2018-05-31 15:55, Mehul Chhayani wrote:
>>>>>
>>>>>>>> Hello Tomas,
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> We can configure and migrate PKCS#11 after upgrading EJBCA-6236 ,
>>>>> what issue is after successfully upgrading EJBCA-6236, we cannot get
>>>>> adminweb page for ejbca and complaining nullpointerexception and it's
>>>>> also not giving much information on that.can you please advise on that?
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> -------
>>>>>
>>>>>>>> Thank you,
>>>>>
>>>>>>>> Mehul Chhayani | Deployment Specialist
>>>>>
>>>>>>>> chh...@ec...
>>>>>
>>>>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>>>>>
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> -----Original Message-----
>>>>>
>>>>>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>>>>
>>>>>>>> Sent: Wednesday, May 30, 2018 1:34 PM
>>>>>
>>>>>>>> To: Mehul Chhayani; ejb...@li...
>>>>>
>>>>>>>> Cc: Randy Yu
>>>>>
>>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>>>>
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> SunPKCS#11 should be included by default in any java installation, also
>>>>>
>>>>>>>> in hava 6 so you should have it already. It's a matter of re-configuring
>>>>>
>>>>>>>> your CA tokens to use the PKCS#11 driver. I think it's described in the
>>>>>
>>>>>>>> doc/UPGRADE document.
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> Regards,
>>>>>
>>>>>>>> Tomas
>>>>>
>>>>>>>>
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> On 2018-05-30 19:23, Mehul Chhayani wrote:
>>>>>
>>>>>>>>> Hi Tomas,
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> As you have said migrate to a PKCS#11 CA token means that
>>>>> downloading sunpkcs11.jar file , copy into
>>>>> jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am
>>>>> wrong , can you advise me how to migrate a PKCS#11 CA token while
>>>>> upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA
>>>>> with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna
>>>>> library with custom JKS keystore in Ejbca_4_0_16.
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> -------
>>>>>
>>>>>>>>> Thank you,
>>>>>
>>>>>>>>> Mehul Chhayani | Deployment Specialist
>>>>>
>>>>>>>>> chh...@ec...
>>>>>
>>>>>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> -----Original Message-----
>>>>>
>>>>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>>
>>>>>>>>> Sent: Wednesday, May 30, 2018 12:23 PM
>>>>>
>>>>>>>>> To: Mehul Chhayani; ejb...@li...
>>>>>
>>>>>>>>> Cc: Randy Yu
>>>>>
>>>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> Hi,
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> Sorry, I donät understand that question. Can you elaborate a little bit
>>>>>
>>>>>>>>> what you have done?
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> In the previous answer, you should migrate to a PKCS#11 CA token, still
>>>>>
>>>>>>>>> in your EJBCA 4, before upgrading to EJBCA 6.
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> Regards,
>>>>>
>>>>>>>>> Tomas
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> On 2018-05-30 18:17, Mehul Chhayani wrote:
>>>>>
>>>>>>>>>> Hello Tomas,
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> Its working on old ejbca-4.0.16 and we did not change any keystore
>>>>> keys or catoken.properties file. But when we are hitting that giving
>>>>> jsp error, can you please tell us what it is causing an error. Or We
>>>>> should compile new ejbca with upgrade jboss or jdk.
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30
>>>>> 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127
>>>>>
>>>>>>>>>> 16:16:16,367 ERROR [jsp]
>>>>>
>>>>>>>>>> java.lang.NullPointerException
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>>>>
>>>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>>
>>>>>>>>>> at
>>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>>
>>>>>>>>>> at
>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>>
>>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>>>
>>>>>>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown
>>>>> Source)
>>>>>
>>>>>>>>>> at
>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>>
>>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>>
>>>>>>>>>> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source)
>>>>>
>>>>>>>>>> at
>>>>> org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238)
>>>>>
>>>>>>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>>>
>>>>>>>>>> at
>>>>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>>>
>>>>>>>>>> at
>>>>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>>>>> at
>>>>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>>>>> at
>>>>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>>>>> at
>>>>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>>>>
>>>>>>>>>> at java.lang.Thread.run(Thread.java:662)
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> -------
>>>>>
>>>>>>>>>> Thank you,
>>>>>
>>>>>>>>>> Mehul Chhayani | Deployment Specialist
>>>>>
>>>>>>>>>> chh...@ec...
>>>>>
>>>>>>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> -----Original Message-----
>>>>>
>>>>>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>>
>>>>>>>>>> Sent: Wednesday, May 30, 2018 3:15 AM
>>>>>
>>>>>>>>>> To: ejb...@li...
>>>>>
>>>>>>>>>> Cc: Randy Yu; Mehul Chhayani
>>>>>
>>>>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> Hi,
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> The reason is that you are using an old Crypto Token type which is not
>>>>>
>>>>>>>>>> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken
>>>>>
>>>>>>>>>> is not valid anymore. You need to migrate to using the generic PKCS#11
>>>>>
>>>>>>>>>> CA token. I think these are sections about this in the old
>>>>>
>>>>>>>>>> documentation. Sometime during EJBCA 4 we deprecated the old token
>>>>> types
>>>>>
>>>>>>>>>> and recommended switching over to PKCS#11 tokens.
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> Regards,
>>>>>
>>>>>>>>>> Tomas
>>>>>
>>>>>>>>>> ---
>>>>>
>>>>>>>>>> Save time and money with an Enterprise support subscription.
>>>>> Please see
>>>>>
>>>>>>>>>> www.primekey.com for more information.
>>>>>
>>>>>>>>>> https://www.primekey.com/products/software/
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> On 2018-05-29 19:50, Mehul Chhayani wrote:
>>>>>
>>>>>>>>>>> Hello EJBCA Team,
>>>>>
>>>>>>>>>>>
>>>>>
>>>>>>>>>>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of
>>>>>
>>>>>>>>>>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done
>>>>> successfully
>>>>>
>>>>>>>>>>> , no error while deploying through ANT-1.8.3.However when I started
>>>>>
>>>>>>>>>>> jboos with some following error that no token and ejbtimeout, at
>>>>> the end
>>>>>
>>>>>>>>>>> jboss started successfully with some errors, You can access ejbca
>>>>> UI but
>>>>>
>>>>>>>>>>> u cannot hit adminweb it complaining some jsp file with
>>>>>
>>>>>>>>>>> nullpointerexception. Can you please advise on that? If you want
>>>>> I will
>>>>>
>>>>>>>>>>> provide full jboss log. Thanks in advance.
>>>>>
>>>>>>>>>>>
>>>>>
>>>>>>>>>>> *15:56:44,255 ERROR [CryptoTokenFactory] No token.
>>>>>
>>>>>>>>>>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken*
>>>>>
>>>>>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>>>
>>>>>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>>>
>>>>>>>>>>> should be used via the bean container
>>>>>
>>>>>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>>>
>>>>>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>>>
>>>>>>>>>>> should be used via the bean container
>>>>>
>>>>>>>>>>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout*
>>>>>
>>>>>>>>>>> *javax.ejb.EJBException: java.lang.NullPointerException*
>>>>>
>>>>>>>>>>> at
>>>>>
>>>>>>>>>>>
>>>>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
>>>>>
>>>>>>>>>>> at
>>>>> org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
>>>>>
>>>>>>>>>>> at
>>>>>
>>>>>>>>>>>
>>>>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
>>>>>
>>>>>>>>>>> at
>>>>>
>>>>>>>>>>>
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>>> ...
[truncated message content] |
|
From: Tomas G. <to...@pr...> - 2018-07-02 09:01:21
|
Hi,
You have been using an old org.ejbca.core.model.ca.catoken.LunaCAToken.
This was deprecated many years ago, already during EJBCA 4. I guess you
were using EJBCA v3 already, before upgrading to 4
?
In order to upgrade to EJBCA 6 you need to migrate to a PKCS11 CA Token
before you upgrade. The LunaCAToken is not available in EJBCA 6 anymore.
This has been documented somewhere (I'm not around to check that now),
and there are other cases in the forum that has done this.
Another way of upgrading that you may consider, unless you have vast
amounts of certificates issued, is to make a new install and import CAs,
issue certificates and CRLs from your old installation. This can be done
with the CLI, importca, importcert, importcertdir and importcrl commands.
That would get you up fresh.
Regards,
Tomas
On 2018-06-29 17:34, Mehul Chhayani wrote:
> Hi Tomas,
>
> When I was upgrading today, it was throwing an error during upgrade which is mentioned below in server log and but upgrade: BUILD SUCCESSFUL. Can you advice me on that?
> Total time: 1 minute 7 seconds
>
> 2018-06-29 15:32:30,496 ERROR [org.cesecore.keys.token.CryptoTokenFactory] (WorkerThread#0[127.0.0.1:58696]) No token. Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken
> 2018-06-29 15:32:30,511 ERROR [org.ejbca.core.ejb.upgrade.UpgradeSessionBean] (WorkerThread#0[127.0.0.1:58696]) Error thrown during upgrade:
> javax.ejb.EJBException: java.lang.NullPointerException
> at org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
> at org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
> at com.sun.proxy.$Proxy409.mergeCryptoToken(Unknown Source)
> at org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821)
> at org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721)
> at org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586)
> at org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:537)
> at org.cesecore.certificates.ca.CaSessionBean.getCAForEdit(CaSessionBean.java:297)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at java.lang.reflect.Method.invoke(Method.java:597)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
> at sun.reflect.GeneratedMethodAccessor322.invoke(Unknown Source)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at java.lang.reflect.Method.invoke(Method.java:597)
> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>
> upgrade:
>
> BUILD SUCCESSFUL
> Total time: 1 minute 7 seconds
>
> -------
> Thank you,
> Mehul Chhayani | Deployment Specialist
> chh...@ec...
> T:416-226-8600 EXT-246
>
>
> -----Original Message-----
> From: Tomas Gustavsson [mailto:to...@pr...]
> Sent: Friday, June 29, 2018 10:06 AM
> To: ejb...@li...
> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>
> Agressively releasing JDBC connection is not an error, it's not any
> problem with the database.
>
> When you enable debug logging you should do so for org.ejbca and
> org.cesecore only. It's not useful to have debug logging for _all_ of
> JBoss, it just makes the log impossible to read.
>
> Use categories like this:
>
> <category name="org.cesecore">
> <priority value="DEBUG"/>
> </category>
> <category name="org.ejbca">
> <priority value="DEBUG"/>
> </category>
>
> I think the logs for "ant upgrade" and "ant post-upgrade" are
> interesting probably.
>
> Regards,
> Tomas
>
> On 2018-06-29 15:54, Mehul Chhayani wrote:
>> Hello Tomas,
>>
>> I have read server logs and jboss logs , from logs I can say whenever it tried to connect database while try to open adminweb , it connected to database for a while but after some seconds, it closed connected forcefully (aggressively releasing JDBC connection) , But I can connect new EJBCA-6326 GUI except adminweb page.
>>
>>
>> 2018-06-29 13:48:10,220 DEBUG [org.hibernate.impl.SessionImpl] (http-0.0.0.0-8443-1) opened session at timestamp: 6268027249541120
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Looking for a JTA transaction to join
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.JDBCContext] (http-0.0.0.0-8443-1) successfully registered Synchronization
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Looking for a JTA transaction to join
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Transaction already joined
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) loading entity: [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to open PreparedStatement (open PreparedStatements: 0, globally: 0)
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) opening JDBC connection
>> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.SQL] (http-0.0.0.0-8443-1) select adminprefe0_.id as id13_0_, adminprefe0_.data as data13_0_, adminprefe0_.rowProtection as rowProte3_13_0_, adminprefe0_.rowVersion as rowVersion13_0_ from AdminPreferencesData adminprefe0_ where adminprefe0_.id=?
>> 2018-06-29 13:48:10,228 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to open ResultSet (open ResultSets: 0, globally: 0)
>> 2018-06-29 13:48:10,228 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) result row: EntityKey[org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to close ResultSet (open ResultSets: 1, globally: 1)
>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to close PreparedStatement (open PreparedStatements: 1, globally: 1)
>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) releasing JDBC connection [ (open PreparedStatements: 0, globally: 0) (open ResultSets: 0, globally: 0)]
>> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.engine.TwoPhaseLoad] (http-0.0.0.0-8443-1) resolving associations for [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
>> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.engine.TwoPhaseLoad] (http-0.0.0.0-8443-1) done materializing entity [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
>> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.engine.StatefulPersistenceContext] (http-0.0.0.0-8443-1) initializing non-lazy collections
>> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) done entity load
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) processing flush-time cascades
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) dirty checking collections
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) Flushed: 0 insertions, 0 updates, 0 deletions to 1 objects
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) Flushed: 0 (re)creations, 0 updates, 0 removals to 0 collections
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) listing entities:
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default, rowProtection=null, rowVersion=2, dataUnsafe=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}
>> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
>> 2018-06-29 13:48:10,232 DEBUG [org.jboss.jpa.deployment.ManagedEntityManagerFactory] (http-0.0.0.0-8443-1) ************** closing entity managersession **************
>> 2018-06-29 13:48:10,232 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.en.properties
>> 2018-06-29 13:48:10,238 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.bs.properties
>> 2018-06-29 13:48:10,244 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.de.properties
>> 2018-06-29 13:48:10,249 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.es.properties
>> 2018-06-29 13:48:10,251 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.fr.properties
>> 2018-06-29 13:48:10,258 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.it.properties
>> 2018-06-29 13:48:10,260 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.ja.properties
>> 2018-06-29 13:48:10,265 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.pt.properties
>> 2018-06-29 13:48:10,270 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.sv.properties
>> 2018-06-29 13:48:10,273 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.uk.properties
>> 2018-06-29 13:48:10,281 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.zh.properties
>> 2018-06-29 13:48:10,301 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
>> java.lang.NullPointerException
>>
>>
>> -------
>> Thank you,
>> Mehul Chhayani | Deployment Specialist
>> chh...@ec...
>> T:416-226-8600 EXT-246
>>
>>
>> -----Original Message-----
>> From: Tomas Gustavsson [mailto:to...@pr...]
>> Sent: Friday, June 29, 2018 3:16 AM
>> To: ejb...@li...
>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>
>> Hi,
>>
>> If you have problems it's not enough to read the last line only. You
>> need to troubleshoot the steps. Especially the upgrade and post-upgrade
>> steps seems to have some issues, since things have not been updated as
>> they should.
>>
>> You can find some documentation how to troubleshoot here:
>> https://download.primekey.se/docs/EJBCA-Enterprise/6_11_1/adminguide.html#Troubleshooting
>>
>> Monitoring server.log will show you what happens, just as it would show
>> why you get the error you get right now. server.log is your best friends
>> when troubleshooting EJBCA.
>>
>> You probably have to restart JBoss between ant upgrade and port-upgrade.
>>
>> Kind Regards,
>> Tomas
>>
>> PS: I will be away on vacation for the coming weeks and will not be
>> available here
>>
>> On 2018-06-28 22:59, Mehul Chhayani wrote:
>>> Hi Tomas,
>>>
>>> I have mentioneing following steps while upgrade EJBCA-ce-6.3.2.6 from ejbca_4_0_16 on jboss-5.1.0.GA (old jboss).
>>>
>>> ant clean
>>> ant deployear
>>> ant upgrade
>>> ant post-upgrade
>>> ant javatruststore
>>>
>>> output says BUILD successfully that during upgrade.
>>> -------
>>> Thank you,
>>> Mehul Chhayani | Deployment Specialist
>>> chh...@ec...
>>> T:416-226-8600 EXT-246
>>>
>>>
>>> -----Original Message-----
>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>> Sent: Thursday, June 28, 2018 5:19 AM
>>> To: ejb...@li...
>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>
>>>
>>> Hi,
>>>
>>> It looks like you are one step further. This is a new error.
>>>
>>> During upgrade and post-upgrade you need to be monitoring for errors.
>>> Perhaps your database privileges does not allow certain operations? So
>>> that some needs to be done manually?
>>>
>>> Logs will tell you what is going on.
>>>
>>> The same with the error below. In the log you will have information
>>> leading up to the error that tells you what is going on and why this
>>> happens. It looks to me as you have some CA tokens which are of
>>> non-standard type, or that was not upgraded properly in a previous step.
>>> A previous upgrade step failing looks consistent with the previous error.
>>>
>>> But the log will tell you what led up to the error you show, and why it
>>> happens.
>>>
>>> If you have documented your complete upgrade process, can you provide
>>> the upgrade steps you perform? Which version, what command what output.
>>>
>>> Regards,
>>> Tomas
>>>
>>>
>>>
>>> On 2018-06-27 21:30, Mehul Chhayani wrote:
>>>> Hi Tomas,
>>>>
>>>> I did ant upgrade and ant post-upgrade on time of upgrading EJBCA, How do I get privileges for a CLI authentication token created, how do I know that is created in database or something during upgrade, I have updated tokenType to CertificateAuthenticationToken / X509CertificateAuthenticationToken in database and also droped manually CAID on AdminGroupData table which should be drop during upgrade, none of them are working, still getting below error.
>>>>
>>>>
>>>> 19:23:10,107 ERROR [[/ejbca/adminweb]] Servlet /ejbca/adminweb threw load() exception
>>>> java.lang.NullPointerException
>>>> at org.cesecore.keys.token.CryptoTokenSessionBean.mergeCryptoToken(CryptoTokenSessionBean.java:131)
>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>> -------
>>>> Thank you,
>>>> Mehul Chhayani | Deployment Specialist
>>>> chh...@ec...
>>>> T:416-226-8600 EXT-246
>>>>
>>>>
>>>> -----Original Message-----
>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>> Sent: Wednesday, June 27, 2018 8:56 AM
>>>> To: ejb...@li...
>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>> Did you run all ant upgrade and ant post-upgrades that are needed?
>>>>
>>>> You don't have a CLI authentication token created it seems, whcih should
>>>> be created.
>>>>
>>>> For the SuperAdmin rows you can set tokenType to
>>>> CertificateAuthenticationToken.
>>>> The UNUSED rows you can delete.
>>>>
>>>> Regards,
>>>> Tomas
>>>>
>>>>
>>>> On 2018-06-25 22:24, Mehul Chhayani wrote:
>>>>> Hello Tomas,
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> I have checked tokentype=Null of every entity that mentioned
>>>>> AdminEntityData table in database. What would be next step to overcome
>>>>> that problem? See that following table
>>>>>
>>>>>
>>>>>
>>>>> Pk matchwith matchtype matchvalue adminroupdata_adminentities caif
>>>>> rowversion rowprotection tokentype
>>>>>
>>>>> -401175635 8 1001 SuperAdmin
>>>>> -1181650581 -1146543808 0
>>>>>
>>>>> 329358383 11 2003 UNUSED
>>>>> -1290073541 0 0
>>>>>
>>>>> 329358381 11 2001 UNUSED
>>>>> -1290073541 0 0
>>>>>
>>>>> 329358382 11 2002 UNUSED
>>>>> -1290073541 0 0
>>>>>
>>>>> 329358376 11 2004 UNUSED
>>>>> -1290073541 0 0
>>>>>
>>>>> -342399384 11 2000 UNUSED
>>>>> 1399736916 -1146543808 0
>>>>>
>>>>> 2117404180 8 1001 SuperAdmin
>>>>> -1181650581 764062969 0
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> -------
>>>>>
>>>>> Thank you,
>>>>>
>>>>> Mehul Chhayani | Deployment Specialist
>>>>>
>>>>> chh...@ec...
>>>>>
>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> -----Original Message-----
>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>> Sent: Monday, June 25, 2018 7:11 AM
>>>>> To: ejb...@li...
>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> Hi,
>>>>>
>>>>>
>>>>>
>>>>> Can you check in your database. Things should move over to
>>>>>
>>>>> RoleMemberData during the migration. Can you check what "tokenType"s you
>>>>>
>>>>> have in RoleMemberData and AdminEntityData.
>>>>>
>>>>>
>>>>>
>>>>> Cheers,
>>>>>
>>>>> Tomas
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> On 2018-06-21 21:43, Mehul Chhayani wrote:
>>>>>
>>>>>> Hi Thomas,
>>>>>
>>>>>>
>>>>>
>>>>>> I tried with this method , it did not worked with old jboss-5.0.1, its
>>>>> complaining when I hit adminweb page, I am mentioning some server log,
>>>>> can you please advise me ? I am not able to reset superadmin password
>>>>> as well
>>>>>
>>>>>>
>>>>>
>>>>>> 2018-06-21 19:09:57,283 DEBUG [org.hibernate.pretty.Printer]
>>>>> (http-0.0.0.0-8443-1) listing entities:
>>>>>
>>>>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.pretty.Printer]
>>>>> (http-0.0.0.0-8443-1)
>>>>> org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default,
>>>>> rowProtection=null, rowVersion=2,
>>>>> dataUnsafe=2c6d8085f3f28091eae1f6e1aef5f4e9ecaec8e1f3e8cde1f085875a414396e051838082c6808aecefe1e4c6e1e3f4eff2c98089f4e8f2e5f3e8efece4f8f0bfc080808080808cf788808080908080808bf4808ee5eef4f2e9e5f3f0e5f2f0e1e7e5f3f28091eae1f6e1aeece1eee7aec9eef4e5e7e5f292622024770107b8828081c98085f6e1ecf5e5f8f28090eae1f6e1aeece1eee7aecef5ede2e5f2062c159d8b14600b828080f8f080808099f48090f0f2e5e6e5f2e5e4ece1eee7f5e1e7e5f3f180fe808380808080f48091ecefe7e5eef4f2e9e5f3f0e5f2f0e1e7e5f3f180fe808380808099f4808eece1f3f4e6e9ecf4e5f2edefe4e5f3f180fe808380808080f48091ece1f3f4ecefe7e6e9ecf4e5f2edefe4e5f3f180fe808380808080f48085f4e8e5ede5f4808de4e5e6e1f5ecf4dff4e8e5ede5f48091f3e5e3efeee4e1f2f9ece1eee7f5e1e7e5f3f180fe808380808080f4808bece1f3f4f0f2efe6e9ece5f3f180fe808380808080f48091e6f2efeef4f0e1e7e5e3e1f3f4e1f4f5f3f3f28091eae1f6e1aeece1eee7aec2efefece5e1ee4da0f200551c7a6e828081da8085f6e1ecf5e5f8f081f48093e6f2efeef4f0e1e7e5f0f5e2f1f3f4e1f4f5f3f180fe8096f48087f6e5f2f3e9efeef3f2808feae1f6e1aeece1eee7aec6ecefe1f45a6d49225bbc706c828081c68085f6e1ecf5e5f8f180fe8084bf008080f8}
>>>>>
>>>>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.jdbc.ConnectionManager]
>>>>> (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
>>>>>
>>>>>> 2018-06-21 19:09:57,284 DEBUG
>>>>> [org.jboss.jpa.deployment.ManagedEntityManagerFactory]
>>>>> (http-0.0.0.0-8443-1) ************** closing entity managersession
>>>>> **************
>>>>>
>>>>>> 2018-06-21 19:09:57,285 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.en.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,293 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.bs.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,320 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.de.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,328 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.es.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,332 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.fr.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,345 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.it.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,349 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.ja.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,358 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.pt.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,363 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.sv.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,367 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.uk.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,380 DEBUG
>>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>>> /languages/languagefile.zh.properties
>>>>>
>>>>>> 2018-06-21 19:09:57,391 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
>>>>>
>>>>>> java.lang.NullPointerException
>>>>>
>>>>>> at
>>>>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>>>>
>>>>>> at
>>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>>>>
>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>>
>>>>>> at
>>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>>
>>>>>> at
>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>>
>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>>>
>>>>>> at
>>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>>>
>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>>>
>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>>>
>>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>>>>>
>>>>>> at
>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>>
>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>>>
>>>>>> at
>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>> -------
>>>>>
>>>>>> Thank you,
>>>>>
>>>>>> Mehul Chhayani | Deployment Specialist
>>>>>
>>>>>> chh...@ec...
>>>>>
>>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>>>
>>>>>
>>>>>> -----Original Message-----
>>>>>
>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>>
>>>>>> Sent: Saturday, June 2, 2018 1:56 PM
>>>>>
>>>>>> To: ejb...@li...
>>>>>
>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>> This one is due to JBoss not cleaning temp files properly every time.
>>>>>
>>>>>> It's a good habit to do this every time you deploy something new:
>>>>>
>>>>>> - rm -rf <jboss>/server/default/tmp
>>>>>
>>>>>> - rm -rf <jboss>/server/default/work
>>>>>
>>>>>>
>>>>>
>>>>>> Regards,
>>>>>
>>>>>> Tomas
>>>>>
>>>>>>
>>>>>
>>>>>>
>>>>>
>>>>>> On 2018-06-01 17:22, Mehul Chhayani wrote:
>>>>>
>>>>>>> Here I have attached members page of the roles in EJBCA-4, if you
>>>>> find that information useful, I am also getting new error while I am
>>>>> hitting adminweb page EJBCA-6.3.2.6 from local network. I have checked
>>>>> firewall rules and access-list. No ip's are blocking there. I am
>>>>> providing new error below , please take a look.
>>>>>
>>>>>>>
>>>>>
>>>>>>> 15:22:13,243 ERROR [[jsp]] Servlet.service() for servlet jsp threw
>>>>> exception
>>>>>
>>>>>>> java.lang.NoClassDefFoundError:
>>>>> org/ejbca/core/model/authorization/AuthorizationDeniedException
>>>>>
>>>>>>> at
>>>>> org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:115)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>>>
>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>>>
>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:638)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:444)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:382)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:310)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:696)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:667)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:808)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:781)
>>>>>
>>>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:143)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>>>
>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>>>
>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>>>
>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>>>>
>>>>>>> at
>>>>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>>>>
>>>>>>> at
>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>>>>
>>>>>>> at
>>>>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>>>>
>>>>>>> at
>>>>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>>>>
>>>>>>> at
>>>>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>>>>
>>>>>>> at java.lang.Thread.run(Thread.java:662)
>>>>>
>>>>>>>
>>>>>
>>>>>>> -------
>>>>>
>>>>>>> Thank you,
>>>>>
>>>>>>> Mehul Chhayani | Deployment Specialist
>>>>>
>>>>>>> chh...@ec...
>>>>>
>>>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>>>>
>>>>>
>>>>>>>
>>>>>
>>>>>>> -----Original Message-----
>>>>>
>>>>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>>>>
>>>>>>> Sent: Friday, June 1, 2018 9:53 AM
>>>>>
>>>>>>> To: Mehul Chhayani; ejb...@li...
>>>>>
>>>>>>> Cc: Randy Yu
>>>>>
>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>>>
>>>>>
>>>>>>>
>>>>>
>>>>>>> Hi, thanks for the info.
>>>>>
>>>>>>>
>>>>>
>>>>>>> What does your roles looks like in EJBCA 4? Is it possible to show
>>>>>
>>>>>>> screenshots of the members page of the roles? It seems to be related to
>>>>>
>>>>>>> this.
>>>>>
>>>>>>>
>>>>>
>>>>>>> Regards,
>>>>>
>>>>>>> Tomas
>>>>>
>>>>>>>
>>>>>
>>>>>>> On 2018-05-31 15:55, Mehul Chhayani wrote:
>>>>>
>>>>>>>> Hello Tomas,
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> We can configure and migrate PKCS#11 after upgrading EJBCA-6236 ,
>>>>> what issue is after successfully upgrading EJBCA-6236, we cannot get
>>>>> adminweb page for ejbca and complaining nullpointerexception and it's
>>>>> also not giving much information on that.can you please advise on that?
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> -------
>>>>>
>>>>>>>> Thank you,
>>>>>
>>>>>>>> Mehul Chhayani | Deployment Specialist
>>>>>
>>>>>>>> chh...@ec...
>>>>>
>>>>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>>>>>
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> -----Original Message-----
>>>>>
>>>>>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>>>>
>>>>>>>> Sent: Wednesday, May 30, 2018 1:34 PM
>>>>>
>>>>>>>> To: Mehul Chhayani; ejb...@li...
>>>>>
>>>>>>>> Cc: Randy Yu
>>>>>
>>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>>>>
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> SunPKCS#11 should be included by default in any java installation, also
>>>>>
>>>>>>>> in hava 6 so you should have it already. It's a matter of re-configuring
>>>>>
>>>>>>>> your CA tokens to use the PKCS#11 driver. I think it's described in the
>>>>>
>>>>>>>> doc/UPGRADE document.
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> Regards,
>>>>>
>>>>>>>> Tomas
>>>>>
>>>>>>>>
>>>>>
>>>>>>>>
>>>>>
>>>>>>>> On 2018-05-30 19:23, Mehul Chhayani wrote:
>>>>>
>>>>>>>>> Hi Tomas,
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> As you have said migrate to a PKCS#11 CA token means that
>>>>> downloading sunpkcs11.jar file , copy into
>>>>> jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am
>>>>> wrong , can you advise me how to migrate a PKCS#11 CA token while
>>>>> upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA
>>>>> with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna
>>>>> library with custom JKS keystore in Ejbca_4_0_16.
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> -------
>>>>>
>>>>>>>>> Thank you,
>>>>>
>>>>>>>>> Mehul Chhayani | Deployment Specialist
>>>>>
>>>>>>>>> chh...@ec...
>>>>>
>>>>>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> -----Original Message-----
>>>>>
>>>>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>>
>>>>>>>>> Sent: Wednesday, May 30, 2018 12:23 PM
>>>>>
>>>>>>>>> To: Mehul Chhayani; ejb...@li...
>>>>>
>>>>>>>>> Cc: Randy Yu
>>>>>
>>>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> Hi,
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> Sorry, I donät understand that question. Can you elaborate a little bit
>>>>>
>>>>>>>>> what you have done?
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> In the previous answer, you should migrate to a PKCS#11 CA token, still
>>>>>
>>>>>>>>> in your EJBCA 4, before upgrading to EJBCA 6.
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> Regards,
>>>>>
>>>>>>>>> Tomas
>>>>>
>>>>>>>>>
>>>>>
>>>>>>>>> On 2018-05-30 18:17, Mehul Chhayani wrote:
>>>>>
>>>>>>>>>> Hello Tomas,
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> Its working on old ejbca-4.0.16 and we did not change any keystore
>>>>> keys or catoken.properties file. But when we are hitting that giving
>>>>> jsp error, can you please tell us what it is causing an error. Or We
>>>>> should compile new ejbca with upgrade jboss or jdk.
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30
>>>>> 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127
>>>>>
>>>>>>>>>> 16:16:16,367 ERROR [jsp]
>>>>>
>>>>>>>>>> java.lang.NullPointerException
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>>>>
>>>>>>>>>> at
>>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>>>>
>>>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>>
>>>>>>>>>> at
>>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>>
>>>>>>>>>> at
>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>>
>>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>>>
>>>>>>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown
>>>>> Source)
>>>>>
>>>>>>>>>> at
>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>>
>>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>>
>>>>>>>>>> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source)
>>>>>
>>>>>>>>>> at
>>>>> org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238)
>>>>>
>>>>>>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>>>
>>>>>>>>>> at
>>>>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>>>
>>>>>>>>>> at
>>>>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>>>>> at
>>>>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>>>>> at
>>>>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>>>>> at
>>>>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>>>>
>>>>>>>>>> at
>>>>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>>>>
>>>>>>>>>> at
>>>>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>>>>
>>>>>>>>>> at java.lang.Thread.run(Thread.java:662)
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> -------
>>>>>
>>>>>>>>>> Thank you,
>>>>>
>>>>>>>>>> Mehul Chhayani | Deployment Specialist
>>>>>
>>>>>>>>>> chh...@ec...
>>>>>
>>>>>>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> -----Original Message-----
>>>>>
>>>>>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>>
>>>>>>>>>> Sent: Wednesday, May 30, 2018 3:15 AM
>>>>>
>>>>>>>>>> To: ejb...@li...
>>>>>
>>>>>>>>>> Cc: Randy Yu; Mehul Chhayani
>>>>>
>>>>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> Hi,
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> The reason is that you are using an old Crypto Token type which is not
>>>>>
>>>>>>>>>> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken
>>>>>
>>>>>>>>>> is not valid anymore. You need to migrate to using the generic PKCS#11
>>>>>
>>>>>>>>>> CA token. I think these are sections about this in the old
>>>>>
>>>>>>>>>> documentation. Sometime during EJBCA 4 we deprecated the old token
>>>>> types
>>>>>
>>>>>>>>>> and recommended switching over to PKCS#11 tokens.
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> Regards,
>>>>>
>>>>>>>>>> Tomas
>>>>>
>>>>>>>>>> ---
>>>>>
>>>>>>>>>> Save time and money with an Enterprise support subscription.
>>>>> Please see
>>>>>
>>>>>>>>>> www.primekey.com for more information.
>>>>>
>>>>>>>>>> https://www.primekey.com/products/software/
>>>>>
>>>>>>>>>>
>>>>>
>>>>>>>>>> On 2018-05-29 19:50, Mehul Chhayani wrote:
>>>>>
>>>>>>>>>>> Hello EJBCA Team,
>>>>>
>>>>>>>>>>>
>>>>>
>>>>>>>>>>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of
>>>>>
>>>>>>>>>>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done
>>>>> successfully
>>>>>
>>>>>>>>>>> , no error while deploying through ANT-1.8.3.However when I started
>>>>>
>>>>>>>>>>> jboos with some following error that no token and ejbtimeout, at
>>>>> the end
>>>>>
>>>>>>>>>>> jboss started successfully with some errors, You can access ejbca
>>>>> UI but
>>>>>
>>>>>>>>>>> u cannot hit adminweb it complaining some jsp file with
>>>>>
>>>>>>>>>>> nullpointerexception. Can you please advise on that? If you want
>>>>> I will
>>>>>
>>>>>>>>>>> provide full jboss log. Thanks in advance.
>>>>>
>>>>>>>>>>>
>>>>>
>>>>>>>>>>> *15:56:44,255 ERROR [CryptoTokenFactory] No token.
>>>>>
>>>>>>>>>>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken*
>>>>>
>>>>>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>>>
>>>>>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>>>
>>>>>>>>>>> should be used via the bean container
>>>>>
>>>>>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>>>
>>>>>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>>>
>>>>>>>>>>> should be used via the bean container
>>>>>
>>>>>>>>>>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout*
>>>>>
>>>>>>>>>>> *javax.ejb.EJBException: java.lang.NullPointerException*
>>>>>
>>>>>>>>>>> at
>>>>>
>>>>>>>>>>>
>>>>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
>>>>>
>>>>>>>>>>> at
>>>>> org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
>>>>>
>>>>>>>>>>> at
>>>>>
>>>>>>>>>>>
>>>>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
>>>>>
>>>>>>>>>>> at
>>>>>
>>>>>>>>>>>
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>>> at
>>>>>
>>>>>>>>>>>
>>>>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>>>>
>>>>>>>>>>> at
>>>>>
>>>>>>>>>>>
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>>> at
>>>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>>
>>>>>>>>>>> at
>>>>>
>>>>>>>>>>>
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>
>>>>>>>>>>> at
>>>>>
>>>>>>>>>>>
>>...
[truncated message content] |
|
From: Mehul C. <chh...@ec...> - 2018-06-29 15:35:12
|
Hi Tomas,
When I was upgrading today, it was throwing an error during upgrade which is mentioned below in server log and but upgrade: BUILD SUCCESSFUL. Can you advice me on that?
Total time: 1 minute 7 seconds
2018-06-29 15:32:30,496 ERROR [org.cesecore.keys.token.CryptoTokenFactory] (WorkerThread#0[127.0.0.1:58696]) No token. Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken
2018-06-29 15:32:30,511 ERROR [org.ejbca.core.ejb.upgrade.UpgradeSessionBean] (WorkerThread#0[127.0.0.1:58696]) Error thrown during upgrade:
javax.ejb.EJBException: java.lang.NullPointerException
at org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
at org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
at com.sun.proxy.$Proxy409.mergeCryptoToken(Unknown Source)
at org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821)
at org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721)
at org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586)
at org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:537)
at org.cesecore.certificates.ca.CaSessionBean.getCAForEdit(CaSessionBean.java:297)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
at sun.reflect.GeneratedMethodAccessor322.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
upgrade:
BUILD SUCCESSFUL
Total time: 1 minute 7 seconds
-------
Thank you,
Mehul Chhayani | Deployment Specialist
chh...@ec...
T:416-226-8600 EXT-246
-----Original Message-----
From: Tomas Gustavsson [mailto:to...@pr...]
Sent: Friday, June 29, 2018 10:06 AM
To: ejb...@li...
Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
Agressively releasing JDBC connection is not an error, it's not any
problem with the database.
When you enable debug logging you should do so for org.ejbca and
org.cesecore only. It's not useful to have debug logging for _all_ of
JBoss, it just makes the log impossible to read.
Use categories like this:
<category name="org.cesecore">
<priority value="DEBUG"/>
</category>
<category name="org.ejbca">
<priority value="DEBUG"/>
</category>
I think the logs for "ant upgrade" and "ant post-upgrade" are
interesting probably.
Regards,
Tomas
On 2018-06-29 15:54, Mehul Chhayani wrote:
> Hello Tomas,
>
> I have read server logs and jboss logs , from logs I can say whenever it tried to connect database while try to open adminweb , it connected to database for a while but after some seconds, it closed connected forcefully (aggressively releasing JDBC connection) , But I can connect new EJBCA-6326 GUI except adminweb page.
>
>
> 2018-06-29 13:48:10,220 DEBUG [org.hibernate.impl.SessionImpl] (http-0.0.0.0-8443-1) opened session at timestamp: 6268027249541120
> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Looking for a JTA transaction to join
> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.JDBCContext] (http-0.0.0.0-8443-1) successfully registered Synchronization
> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Looking for a JTA transaction to join
> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Transaction already joined
> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) loading entity: [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to open PreparedStatement (open PreparedStatements: 0, globally: 0)
> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) opening JDBC connection
> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.SQL] (http-0.0.0.0-8443-1) select adminprefe0_.id as id13_0_, adminprefe0_.data as data13_0_, adminprefe0_.rowProtection as rowProte3_13_0_, adminprefe0_.rowVersion as rowVersion13_0_ from AdminPreferencesData adminprefe0_ where adminprefe0_.id=?
> 2018-06-29 13:48:10,228 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to open ResultSet (open ResultSets: 0, globally: 0)
> 2018-06-29 13:48:10,228 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) result row: EntityKey[org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to close ResultSet (open ResultSets: 1, globally: 1)
> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to close PreparedStatement (open PreparedStatements: 1, globally: 1)
> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) releasing JDBC connection [ (open PreparedStatements: 0, globally: 0) (open ResultSets: 0, globally: 0)]
> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.engine.TwoPhaseLoad] (http-0.0.0.0-8443-1) resolving associations for [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.engine.TwoPhaseLoad] (http-0.0.0.0-8443-1) done materializing entity [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.engine.StatefulPersistenceContext] (http-0.0.0.0-8443-1) initializing non-lazy collections
> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) done entity load
> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) processing flush-time cascades
> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) dirty checking collections
> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) Flushed: 0 insertions, 0 updates, 0 deletions to 1 objects
> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) Flushed: 0 (re)creations, 0 updates, 0 removals to 0 collections
> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) listing entities:
> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default, rowProtection=null, rowVersion=2, dataUnsafe=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}
> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
> 2018-06-29 13:48:10,232 DEBUG [org.jboss.jpa.deployment.ManagedEntityManagerFactory] (http-0.0.0.0-8443-1) ************** closing entity managersession **************
> 2018-06-29 13:48:10,232 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.en.properties
> 2018-06-29 13:48:10,238 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.bs.properties
> 2018-06-29 13:48:10,244 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.de.properties
> 2018-06-29 13:48:10,249 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.es.properties
> 2018-06-29 13:48:10,251 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.fr.properties
> 2018-06-29 13:48:10,258 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.it.properties
> 2018-06-29 13:48:10,260 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.ja.properties
> 2018-06-29 13:48:10,265 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.pt.properties
> 2018-06-29 13:48:10,270 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.sv.properties
> 2018-06-29 13:48:10,273 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.uk.properties
> 2018-06-29 13:48:10,281 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.zh.properties
> 2018-06-29 13:48:10,301 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
> java.lang.NullPointerException
>
>
> -------
> Thank you,
> Mehul Chhayani | Deployment Specialist
> chh...@ec...
> T:416-226-8600 EXT-246
>
>
> -----Original Message-----
> From: Tomas Gustavsson [mailto:to...@pr...]
> Sent: Friday, June 29, 2018 3:16 AM
> To: ejb...@li...
> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>
> Hi,
>
> If you have problems it's not enough to read the last line only. You
> need to troubleshoot the steps. Especially the upgrade and post-upgrade
> steps seems to have some issues, since things have not been updated as
> they should.
>
> You can find some documentation how to troubleshoot here:
> https://download.primekey.se/docs/EJBCA-Enterprise/6_11_1/adminguide.html#Troubleshooting
>
> Monitoring server.log will show you what happens, just as it would show
> why you get the error you get right now. server.log is your best friends
> when troubleshooting EJBCA.
>
> You probably have to restart JBoss between ant upgrade and port-upgrade.
>
> Kind Regards,
> Tomas
>
> PS: I will be away on vacation for the coming weeks and will not be
> available here
>
> On 2018-06-28 22:59, Mehul Chhayani wrote:
>> Hi Tomas,
>>
>> I have mentioneing following steps while upgrade EJBCA-ce-6.3.2.6 from ejbca_4_0_16 on jboss-5.1.0.GA (old jboss).
>>
>> ant clean
>> ant deployear
>> ant upgrade
>> ant post-upgrade
>> ant javatruststore
>>
>> output says BUILD successfully that during upgrade.
>> -------
>> Thank you,
>> Mehul Chhayani | Deployment Specialist
>> chh...@ec...
>> T:416-226-8600 EXT-246
>>
>>
>> -----Original Message-----
>> From: Tomas Gustavsson [mailto:to...@pr...]
>> Sent: Thursday, June 28, 2018 5:19 AM
>> To: ejb...@li...
>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>
>> Hi,
>>
>> It looks like you are one step further. This is a new error.
>>
>> During upgrade and post-upgrade you need to be monitoring for errors.
>> Perhaps your database privileges does not allow certain operations? So
>> that some needs to be done manually?
>>
>> Logs will tell you what is going on.
>>
>> The same with the error below. In the log you will have information
>> leading up to the error that tells you what is going on and why this
>> happens. It looks to me as you have some CA tokens which are of
>> non-standard type, or that was not upgraded properly in a previous step.
>> A previous upgrade step failing looks consistent with the previous error.
>>
>> But the log will tell you what led up to the error you show, and why it
>> happens.
>>
>> If you have documented your complete upgrade process, can you provide
>> the upgrade steps you perform? Which version, what command what output.
>>
>> Regards,
>> Tomas
>>
>>
>>
>> On 2018-06-27 21:30, Mehul Chhayani wrote:
>>> Hi Tomas,
>>>
>>> I did ant upgrade and ant post-upgrade on time of upgrading EJBCA, How do I get privileges for a CLI authentication token created, how do I know that is created in database or something during upgrade, I have updated tokenType to CertificateAuthenticationToken / X509CertificateAuthenticationToken in database and also droped manually CAID on AdminGroupData table which should be drop during upgrade, none of them are working, still getting below error.
>>>
>>>
>>> 19:23:10,107 ERROR [[/ejbca/adminweb]] Servlet /ejbca/adminweb threw load() exception
>>> java.lang.NullPointerException
>>> at org.cesecore.keys.token.CryptoTokenSessionBean.mergeCryptoToken(CryptoTokenSessionBean.java:131)
>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>> -------
>>> Thank you,
>>> Mehul Chhayani | Deployment Specialist
>>> chh...@ec...
>>> T:416-226-8600 EXT-246
>>>
>>>
>>> -----Original Message-----
>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>> Sent: Wednesday, June 27, 2018 8:56 AM
>>> To: ejb...@li...
>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>
>>> Did you run all ant upgrade and ant post-upgrades that are needed?
>>>
>>> You don't have a CLI authentication token created it seems, whcih should
>>> be created.
>>>
>>> For the SuperAdmin rows you can set tokenType to
>>> CertificateAuthenticationToken.
>>> The UNUSED rows you can delete.
>>>
>>> Regards,
>>> Tomas
>>>
>>>
>>> On 2018-06-25 22:24, Mehul Chhayani wrote:
>>>> Hello Tomas,
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> I have checked tokentype=Null of every entity that mentioned
>>>> AdminEntityData table in database. What would be next step to overcome
>>>> that problem? See that following table
>>>>
>>>>
>>>>
>>>> Pk matchwith matchtype matchvalue adminroupdata_adminentities caif
>>>> rowversion rowprotection tokentype
>>>>
>>>> -401175635 8 1001 SuperAdmin
>>>> -1181650581 -1146543808 0
>>>>
>>>> 329358383 11 2003 UNUSED
>>>> -1290073541 0 0
>>>>
>>>> 329358381 11 2001 UNUSED
>>>> -1290073541 0 0
>>>>
>>>> 329358382 11 2002 UNUSED
>>>> -1290073541 0 0
>>>>
>>>> 329358376 11 2004 UNUSED
>>>> -1290073541 0 0
>>>>
>>>> -342399384 11 2000 UNUSED
>>>> 1399736916 -1146543808 0
>>>>
>>>> 2117404180 8 1001 SuperAdmin
>>>> -1181650581 764062969 0
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> -------
>>>>
>>>> Thank you,
>>>>
>>>> Mehul Chhayani | Deployment Specialist
>>>>
>>>> chh...@ec...
>>>>
>>>> T:416-226-8600 EXT-246
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> -----Original Message-----
>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>> Sent: Monday, June 25, 2018 7:11 AM
>>>> To: ejb...@li...
>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> Hi,
>>>>
>>>>
>>>>
>>>> Can you check in your database. Things should move over to
>>>>
>>>> RoleMemberData during the migration. Can you check what "tokenType"s you
>>>>
>>>> have in RoleMemberData and AdminEntityData.
>>>>
>>>>
>>>>
>>>> Cheers,
>>>>
>>>> Tomas
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> On 2018-06-21 21:43, Mehul Chhayani wrote:
>>>>
>>>>> Hi Thomas,
>>>>
>>>>>
>>>>
>>>>> I tried with this method , it did not worked with old jboss-5.0.1, its
>>>> complaining when I hit adminweb page, I am mentioning some server log,
>>>> can you please advise me ? I am not able to reset superadmin password
>>>> as well
>>>>
>>>>>
>>>>
>>>>> 2018-06-21 19:09:57,283 DEBUG [org.hibernate.pretty.Printer]
>>>> (http-0.0.0.0-8443-1) listing entities:
>>>>
>>>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.pretty.Printer]
>>>> (http-0.0.0.0-8443-1)
>>>> org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default,
>>>> rowProtection=null, rowVersion=2,
>>>> dataUnsafe=2c6d8085f3f28091eae1f6e1aef5f4e9ecaec8e1f3e8cde1f085875a414396e051838082c6808aecefe1e4c6e1e3f4eff2c98089f4e8f2e5f3e8efece4f8f0bfc080808080808cf788808080908080808bf4808ee5eef4f2e9e5f3f0e5f2f0e1e7e5f3f28091eae1f6e1aeece1eee7aec9eef4e5e7e5f292622024770107b8828081c98085f6e1ecf5e5f8f28090eae1f6e1aeece1eee7aecef5ede2e5f2062c159d8b14600b828080f8f080808099f48090f0f2e5e6e5f2e5e4ece1eee7f5e1e7e5f3f180fe808380808080f48091ecefe7e5eef4f2e9e5f3f0e5f2f0e1e7e5f3f180fe808380808099f4808eece1f3f4e6e9ecf4e5f2edefe4e5f3f180fe808380808080f48091ece1f3f4ecefe7e6e9ecf4e5f2edefe4e5f3f180fe808380808080f48085f4e8e5ede5f4808de4e5e6e1f5ecf4dff4e8e5ede5f48091f3e5e3efeee4e1f2f9ece1eee7f5e1e7e5f3f180fe808380808080f4808bece1f3f4f0f2efe6e9ece5f3f180fe808380808080f48091e6f2efeef4f0e1e7e5e3e1f3f4e1f4f5f3f3f28091eae1f6e1aeece1eee7aec2efefece5e1ee4da0f200551c7a6e828081da8085f6e1ecf5e5f8f081f48093e6f2efeef4f0e1e7e5f0f5e2f1f3f4e1f4f5f3f180fe8096f48087f6e5f2f3e9efeef3f2808feae1f6e1aeece1eee7aec6ecefe1f45a6d49225bbc706c828081c68085f6e1ecf5e5f8f180fe8084bf008080f8}
>>>>
>>>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.jdbc.ConnectionManager]
>>>> (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
>>>>
>>>>> 2018-06-21 19:09:57,284 DEBUG
>>>> [org.jboss.jpa.deployment.ManagedEntityManagerFactory]
>>>> (http-0.0.0.0-8443-1) ************** closing entity managersession
>>>> **************
>>>>
>>>>> 2018-06-21 19:09:57,285 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.en.properties
>>>>
>>>>> 2018-06-21 19:09:57,293 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.bs.properties
>>>>
>>>>> 2018-06-21 19:09:57,320 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.de.properties
>>>>
>>>>> 2018-06-21 19:09:57,328 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.es.properties
>>>>
>>>>> 2018-06-21 19:09:57,332 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.fr.properties
>>>>
>>>>> 2018-06-21 19:09:57,345 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.it.properties
>>>>
>>>>> 2018-06-21 19:09:57,349 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.ja.properties
>>>>
>>>>> 2018-06-21 19:09:57,358 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.pt.properties
>>>>
>>>>> 2018-06-21 19:09:57,363 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.sv.properties
>>>>
>>>>> 2018-06-21 19:09:57,367 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.uk.properties
>>>>
>>>>> 2018-06-21 19:09:57,380 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.zh.properties
>>>>
>>>>> 2018-06-21 19:09:57,391 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
>>>>
>>>>> java.lang.NullPointerException
>>>>
>>>>> at
>>>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>>>
>>>>> at
>>>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>>>
>>>>> at
>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>>>
>>>>> at
>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>>>
>>>>> at
>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>>>
>>>>> at
>>>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>>>
>>>>> at
>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>>>
>>>>> at
>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>>>
>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>
>>>>> at
>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>
>>>>> at
>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>
>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>
>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>>
>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>>
>>>>> at
>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>>
>>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>>
>>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>>
>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>>>>
>>>>> at
>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>
>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>
>>>>> at
>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>>
>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>>
>>>>> at
>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
>>>>
>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>>
>>>>> at
>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
>>>>
>>>>>
>>>>
>>>>>
>>>>
>>>>> -------
>>>>
>>>>> Thank you,
>>>>
>>>>> Mehul Chhayani | Deployment Specialist
>>>>
>>>>> chh...@ec...
>>>>
>>>>> T:416-226-8600 EXT-246
>>>>
>>>>>
>>>>
>>>>> -----Original Message-----
>>>>
>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>
>>>>> Sent: Saturday, June 2, 2018 1:56 PM
>>>>
>>>>> To: ejb...@li...
>>>>
>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>>>
>>>>
>>>>>
>>>>
>>>>> This one is due to JBoss not cleaning temp files properly every time.
>>>>
>>>>> It's a good habit to do this every time you deploy something new:
>>>>
>>>>> - rm -rf <jboss>/server/default/tmp
>>>>
>>>>> - rm -rf <jboss>/server/default/work
>>>>
>>>>>
>>>>
>>>>> Regards,
>>>>
>>>>> Tomas
>>>>
>>>>>
>>>>
>>>>>
>>>>
>>>>> On 2018-06-01 17:22, Mehul Chhayani wrote:
>>>>
>>>>>> Here I have attached members page of the roles in EJBCA-4, if you
>>>> find that information useful, I am also getting new error while I am
>>>> hitting adminweb page EJBCA-6.3.2.6 from local network. I have checked
>>>> firewall rules and access-list. No ip's are blocking there. I am
>>>> providing new error below , please take a look.
>>>>
>>>>>>
>>>>
>>>>>> 15:22:13,243 ERROR [[jsp]] Servlet.service() for servlet jsp threw
>>>> exception
>>>>
>>>>>> java.lang.NoClassDefFoundError:
>>>> org/ejbca/core/model/authorization/AuthorizationDeniedException
>>>>
>>>>>> at
>>>> org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:115)
>>>>
>>>>>> at
>>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>>
>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>
>>>>>> at
>>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>>
>>>>>> at
>>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>>
>>>>>> at
>>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>>
>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:638)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:444)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:382)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:310)
>>>>
>>>>>> at
>>>> org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:696)
>>>>
>>>>>> at
>>>> org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:667)
>>>>
>>>>>> at
>>>> org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:808)
>>>>
>>>>>> at
>>>> org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:781)
>>>>
>>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:143)
>>>>
>>>>>> at
>>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>>
>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>
>>>>>> at
>>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>>
>>>>>> at
>>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>>
>>>>>> at
>>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>>
>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>> at
>>>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>> at
>>>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>> at
>>>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>> at
>>>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>>>
>>>>>> at
>>>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>>>
>>>>>> at
>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>>>
>>>>>> at
>>>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>>>
>>>>>> at
>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>>>
>>>>>> at
>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>>>
>>>>>> at
>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>>>
>>>>>> at
>>>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>>>
>>>>>> at
>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>>>
>>>>>> at
>>>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>>>
>>>>>> at
>>>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>>>
>>>>>> at
>>>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>>>
>>>>>> at java.lang.Thread.run(Thread.java:662)
>>>>
>>>>>>
>>>>
>>>>>> -------
>>>>
>>>>>> Thank you,
>>>>
>>>>>> Mehul Chhayani | Deployment Specialist
>>>>
>>>>>> chh...@ec...
>>>>
>>>>>> T:416-226-8600 EXT-246
>>>>
>>>>>>
>>>>
>>>>>>
>>>>
>>>>>> -----Original Message-----
>>>>
>>>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>>>
>>>>>> Sent: Friday, June 1, 2018 9:53 AM
>>>>
>>>>>> To: Mehul Chhayani; ejb...@li...
>>>>
>>>>>> Cc: Randy Yu
>>>>
>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>>>>
>>>>
>>>>>>
>>>>
>>>>>> Hi, thanks for the info.
>>>>
>>>>>>
>>>>
>>>>>> What does your roles looks like in EJBCA 4? Is it possible to show
>>>>
>>>>>> screenshots of the members page of the roles? It seems to be related to
>>>>
>>>>>> this.
>>>>
>>>>>>
>>>>
>>>>>> Regards,
>>>>
>>>>>> Tomas
>>>>
>>>>>>
>>>>
>>>>>> On 2018-05-31 15:55, Mehul Chhayani wrote:
>>>>
>>>>>>> Hello Tomas,
>>>>
>>>>>>>
>>>>
>>>>>>> We can configure and migrate PKCS#11 after upgrading EJBCA-6236 ,
>>>> what issue is after successfully upgrading EJBCA-6236, we cannot get
>>>> adminweb page for ejbca and complaining nullpointerexception and it's
>>>> also not giving much information on that.can you please advise on that?
>>>>
>>>>>>>
>>>>
>>>>>>> -------
>>>>
>>>>>>> Thank you,
>>>>
>>>>>>> Mehul Chhayani | Deployment Specialist
>>>>
>>>>>>> chh...@ec...
>>>>
>>>>>>> T:416-226-8600 EXT-246
>>>>
>>>>>>>
>>>>
>>>>>>>
>>>>
>>>>>>> -----Original Message-----
>>>>
>>>>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>>>
>>>>>>> Sent: Wednesday, May 30, 2018 1:34 PM
>>>>
>>>>>>> To: Mehul Chhayani; ejb...@li...
>>>>
>>>>>>> Cc: Randy Yu
>>>>
>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>>>>>
>>>>
>>>>>>>
>>>>
>>>>>>> SunPKCS#11 should be included by default in any java installation, also
>>>>
>>>>>>> in hava 6 so you should have it already. It's a matter of re-configuring
>>>>
>>>>>>> your CA tokens to use the PKCS#11 driver. I think it's described in the
>>>>
>>>>>>> doc/UPGRADE document.
>>>>
>>>>>>>
>>>>
>>>>>>> Regards,
>>>>
>>>>>>> Tomas
>>>>
>>>>>>>
>>>>
>>>>>>>
>>>>
>>>>>>> On 2018-05-30 19:23, Mehul Chhayani wrote:
>>>>
>>>>>>>> Hi Tomas,
>>>>
>>>>>>>>
>>>>
>>>>>>>> As you have said migrate to a PKCS#11 CA token means that
>>>> downloading sunpkcs11.jar file , copy into
>>>> jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am
>>>> wrong , can you advise me how to migrate a PKCS#11 CA token while
>>>> upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA
>>>> with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna
>>>> library with custom JKS keystore in Ejbca_4_0_16.
>>>>
>>>>>>>>
>>>>
>>>>>>>>
>>>>
>>>>>>>> -------
>>>>
>>>>>>>> Thank you,
>>>>
>>>>>>>> Mehul Chhayani | Deployment Specialist
>>>>
>>>>>>>> chh...@ec...
>>>>
>>>>>>>> T:416-226-8600 EXT-246
>>>>
>>>>>>>>
>>>>
>>>>>>>>
>>>>
>>>>>>>> -----Original Message-----
>>>>
>>>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>
>>>>>>>> Sent: Wednesday, May 30, 2018 12:23 PM
>>>>
>>>>>>>> To: Mehul Chhayani; ejb...@li...
>>>>
>>>>>>>> Cc: Randy Yu
>>>>
>>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>>>>>>
>>>>
>>>>>>>>
>>>>
>>>>>>>> Hi,
>>>>
>>>>>>>>
>>>>
>>>>>>>> Sorry, I donät understand that question. Can you elaborate a little bit
>>>>
>>>>>>>> what you have done?
>>>>
>>>>>>>>
>>>>
>>>>>>>> In the previous answer, you should migrate to a PKCS#11 CA token, still
>>>>
>>>>>>>> in your EJBCA 4, before upgrading to EJBCA 6.
>>>>
>>>>>>>>
>>>>
>>>>>>>> Regards,
>>>>
>>>>>>>> Tomas
>>>>
>>>>>>>>
>>>>
>>>>>>>> On 2018-05-30 18:17, Mehul Chhayani wrote:
>>>>
>>>>>>>>> Hello Tomas,
>>>>
>>>>>>>>>
>>>>
>>>>>>>>> Its working on old ejbca-4.0.16 and we did not change any keystore
>>>> keys or catoken.properties file. But when we are hitting that giving
>>>> jsp error, can you please tell us what it is causing an error. Or We
>>>> should compile new ejbca with upgrade jboss or jdk.
>>>>
>>>>>>>>>
>>>>
>>>>>>>>>
>>>>
>>>>>>>>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30
>>>> 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127
>>>>
>>>>>>>>> 16:16:16,367 ERROR [jsp]
>>>>
>>>>>>>>> java.lang.NullPointerException
>>>>
>>>>>>>>> at
>>>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>>>
>>>>>>>>> at
>>>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>>>
>>>>>>>>> at
>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>>>
>>>>>>>>> at
>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>>>
>>>>>>>>> at
>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>>>
>>>>>>>>> at
>>>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>>>
>>>>>>>>> at
>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>>>
>>>>>>>>> at
>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>>>
>>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>
>>>>>>>>> at
>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>
>>>>>>>>> at
>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>
>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>>
>>>>>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown
>>>> Source)
>>>>
>>>>>>>>> at
>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>
>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66)
>>>>
>>>>>>>>> at
>>>> org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>
>>>>>>>>> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source)
>>>>
>>>>>>>>> at
>>>> org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238)
>>>>
>>>>>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83)
>>>>
>>>>>>>>> at
>>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>>
>>>>>>>>> at
>>>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>
>>>>>>>>> at
>>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>>
>>>>>>>>> at
>>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>>
>>>>>>>>> at
>>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>>
>>>>>>>>> at
>>>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>>>>> at
>>>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>>>>> at
>>>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>>>>> at
>>>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>>>>> at
>>>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>>>
>>>>>>>>> at
>>>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>>>
>>>>>>>>> at
>>>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>>>
>>>>>>>>> at
>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>>>
>>>>>>>>> at
>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>>>
>>>>>>>>> at
>>>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>>>
>>>>>>>>> at
>>>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>>>
>>>>>>>>> at
>>>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>>>
>>>>>>>>> at java.lang.Thread.run(Thread.java:662)
>>>>
>>>>>>>>>
>>>>
>>>>>>>>>
>>>>
>>>>>>>>>
>>>>
>>>>>>>>>
>>>>
>>>>>>>>> -------
>>>>
>>>>>>>>> Thank you,
>>>>
>>>>>>>>> Mehul Chhayani | Deployment Specialist
>>>>
>>>>>>>>> chh...@ec...
>>>>
>>>>>>>>> T:416-226-8600 EXT-246
>>>>
>>>>>>>>>
>>>>
>>>>>>>>> -----Original Message-----
>>>>
>>>>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>
>>>>>>>>> Sent: Wednesday, May 30, 2018 3:15 AM
>>>>
>>>>>>>>> To: ejb...@li...
>>>>
>>>>>>>>> Cc: Randy Yu; Mehul Chhayani
>>>>
>>>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>>>>>>>
>>>>
>>>>>>>>>
>>>>
>>>>>>>>> Hi,
>>>>
>>>>>>>>>
>>>>
>>>>>>>>> The reason is that you are using an old Crypto Token type which is not
>>>>
>>>>>>>>> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken
>>>>
>>>>>>>>> is not valid anymore. You need to migrate to using the generic PKCS#11
>>>>
>>>>>>>>> CA token. I think these are sections about this in the old
>>>>
>>>>>>>>> documentation. Sometime during EJBCA 4 we deprecated the old token
>>>> types
>>>>
>>>>>>>>> and recommended switching over to PKCS#11 tokens.
>>>>
>>>>>>>>>
>>>>
>>>>>>>>> Regards,
>>>>
>>>>>>>>> Tomas
>>>>
>>>>>>>>> ---
>>>>
>>>>>>>>> Save time and money with an Enterprise support subscription.
>>>> Please see
>>>>
>>>>>>>>> www.primekey.com for more information.
>>>>
>>>>>>>>> https://www.primekey.com/products/software/
>>>>
>>>>>>>>>
>>>>
>>>>>>>>> On 2018-05-29 19:50, Mehul Chhayani wrote:
>>>>
>>>>>>>>>> Hello EJBCA Team,
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of
>>>>
>>>>>>>>>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done
>>>> successfully
>>>>
>>>>>>>>>> , no error while deploying through ANT-1.8.3.However when I started
>>>>
>>>>>>>>>> jboos with some following error that no token and ejbtimeout, at
>>>> the end
>>>>
>>>>>>>>>> jboss started successfully with some errors, You can access ejbca
>>>> UI but
>>>>
>>>>>>>>>> u cannot hit adminweb it complaining some jsp file with
>>>>
>>>>>>>>>> nullpointerexception. Can you please advise on that? If you want
>>>> I will
>>>>
>>>>>>>>>> provide full jboss log. Thanks in advance.
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>> *15:56:44,255 ERROR [CryptoTokenFactory] No token.
>>>>
>>>>>>>>>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken*
>>>>
>>>>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>>
>>>>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>>
>>>>>>>>>> should be used via the bean container
>>>>
>>>>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>>
>>>>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>>
>>>>>>>>>> should be used via the bean container
>>>>
>>>>>>>>>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout*
>>>>
>>>>>>>>>> *javax.ejb.EJBException: java.lang.NullPointerException*
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
>>>>
>>>>>>>>>> at
>>>> org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>
>>>>>>>>>> at com.sun.proxy.$Proxy341.mergeCryptoToken(Unknown Source)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean....
[truncated message content] |
|
From: Tomas G. <to...@pr...> - 2018-06-29 14:05:58
|
Agressively releasing JDBC connection is not an error, it's not any
problem with the database.
When you enable debug logging you should do so for org.ejbca and
org.cesecore only. It's not useful to have debug logging for _all_ of
JBoss, it just makes the log impossible to read.
Use categories like this:
<category name="org.cesecore">
<priority value="DEBUG"/>
</category>
<category name="org.ejbca">
<priority value="DEBUG"/>
</category>
I think the logs for "ant upgrade" and "ant post-upgrade" are
interesting probably.
Regards,
Tomas
On 2018-06-29 15:54, Mehul Chhayani wrote:
> Hello Tomas,
>
> I have read server logs and jboss logs , from logs I can say whenever it tried to connect database while try to open adminweb , it connected to database for a while but after some seconds, it closed connected forcefully (aggressively releasing JDBC connection) , But I can connect new EJBCA-6326 GUI except adminweb page.
>
>
> 2018-06-29 13:48:10,220 DEBUG [org.hibernate.impl.SessionImpl] (http-0.0.0.0-8443-1) opened session at timestamp: 6268027249541120
> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Looking for a JTA transaction to join
> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.JDBCContext] (http-0.0.0.0-8443-1) successfully registered Synchronization
> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Looking for a JTA transaction to join
> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Transaction already joined
> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) loading entity: [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to open PreparedStatement (open PreparedStatements: 0, globally: 0)
> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) opening JDBC connection
> 2018-06-29 13:48:10,221 DEBUG [org.hibernate.SQL] (http-0.0.0.0-8443-1) select adminprefe0_.id as id13_0_, adminprefe0_.data as data13_0_, adminprefe0_.rowProtection as rowProte3_13_0_, adminprefe0_.rowVersion as rowVersion13_0_ from AdminPreferencesData adminprefe0_ where adminprefe0_.id=?
> 2018-06-29 13:48:10,228 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to open ResultSet (open ResultSets: 0, globally: 0)
> 2018-06-29 13:48:10,228 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) result row: EntityKey[org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to close ResultSet (open ResultSets: 1, globally: 1)
> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to close PreparedStatement (open PreparedStatements: 1, globally: 1)
> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) releasing JDBC connection [ (open PreparedStatements: 0, globally: 0) (open ResultSets: 0, globally: 0)]
> 2018-06-29 13:48:10,229 DEBUG [org.hibernate.engine.TwoPhaseLoad] (http-0.0.0.0-8443-1) resolving associations for [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.engine.TwoPhaseLoad] (http-0.0.0.0-8443-1) done materializing entity [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.engine.StatefulPersistenceContext] (http-0.0.0.0-8443-1) initializing non-lazy collections
> 2018-06-29 13:48:10,230 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) done entity load
> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) processing flush-time cascades
> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) dirty checking collections
> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) Flushed: 0 insertions, 0 updates, 0 deletions to 1 objects
> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) Flushed: 0 (re)creations, 0 updates, 0 removals to 0 collections
> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) listing entities:
> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default, rowProtection=null, rowVersion=2, dataUnsafe=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}
> 2018-06-29 13:48:10,231 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
> 2018-06-29 13:48:10,232 DEBUG [org.jboss.jpa.deployment.ManagedEntityManagerFactory] (http-0.0.0.0-8443-1) ************** closing entity managersession **************
> 2018-06-29 13:48:10,232 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.en.properties
> 2018-06-29 13:48:10,238 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.bs.properties
> 2018-06-29 13:48:10,244 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.de.properties
> 2018-06-29 13:48:10,249 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.es.properties
> 2018-06-29 13:48:10,251 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.fr.properties
> 2018-06-29 13:48:10,258 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.it.properties
> 2018-06-29 13:48:10,260 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.ja.properties
> 2018-06-29 13:48:10,265 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.pt.properties
> 2018-06-29 13:48:10,270 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.sv.properties
> 2018-06-29 13:48:10,273 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.uk.properties
> 2018-06-29 13:48:10,281 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.zh.properties
> 2018-06-29 13:48:10,301 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
> java.lang.NullPointerException
>
>
> -------
> Thank you,
> Mehul Chhayani | Deployment Specialist
> chh...@ec...
> T:416-226-8600 EXT-246
>
>
> -----Original Message-----
> From: Tomas Gustavsson [mailto:to...@pr...]
> Sent: Friday, June 29, 2018 3:16 AM
> To: ejb...@li...
> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>
> Hi,
>
> If you have problems it's not enough to read the last line only. You
> need to troubleshoot the steps. Especially the upgrade and post-upgrade
> steps seems to have some issues, since things have not been updated as
> they should.
>
> You can find some documentation how to troubleshoot here:
> https://download.primekey.se/docs/EJBCA-Enterprise/6_11_1/adminguide.html#Troubleshooting
>
> Monitoring server.log will show you what happens, just as it would show
> why you get the error you get right now. server.log is your best friends
> when troubleshooting EJBCA.
>
> You probably have to restart JBoss between ant upgrade and port-upgrade.
>
> Kind Regards,
> Tomas
>
> PS: I will be away on vacation for the coming weeks and will not be
> available here
>
> On 2018-06-28 22:59, Mehul Chhayani wrote:
>> Hi Tomas,
>>
>> I have mentioneing following steps while upgrade EJBCA-ce-6.3.2.6 from ejbca_4_0_16 on jboss-5.1.0.GA (old jboss).
>>
>> ant clean
>> ant deployear
>> ant upgrade
>> ant post-upgrade
>> ant javatruststore
>>
>> output says BUILD successfully that during upgrade.
>> -------
>> Thank you,
>> Mehul Chhayani | Deployment Specialist
>> chh...@ec...
>> T:416-226-8600 EXT-246
>>
>>
>> -----Original Message-----
>> From: Tomas Gustavsson [mailto:to...@pr...]
>> Sent: Thursday, June 28, 2018 5:19 AM
>> To: ejb...@li...
>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>
>> Hi,
>>
>> It looks like you are one step further. This is a new error.
>>
>> During upgrade and post-upgrade you need to be monitoring for errors.
>> Perhaps your database privileges does not allow certain operations? So
>> that some needs to be done manually?
>>
>> Logs will tell you what is going on.
>>
>> The same with the error below. In the log you will have information
>> leading up to the error that tells you what is going on and why this
>> happens. It looks to me as you have some CA tokens which are of
>> non-standard type, or that was not upgraded properly in a previous step.
>> A previous upgrade step failing looks consistent with the previous error.
>>
>> But the log will tell you what led up to the error you show, and why it
>> happens.
>>
>> If you have documented your complete upgrade process, can you provide
>> the upgrade steps you perform? Which version, what command what output.
>>
>> Regards,
>> Tomas
>>
>>
>>
>> On 2018-06-27 21:30, Mehul Chhayani wrote:
>>> Hi Tomas,
>>>
>>> I did ant upgrade and ant post-upgrade on time of upgrading EJBCA, How do I get privileges for a CLI authentication token created, how do I know that is created in database or something during upgrade, I have updated tokenType to CertificateAuthenticationToken / X509CertificateAuthenticationToken in database and also droped manually CAID on AdminGroupData table which should be drop during upgrade, none of them are working, still getting below error.
>>>
>>>
>>> 19:23:10,107 ERROR [[/ejbca/adminweb]] Servlet /ejbca/adminweb threw load() exception
>>> java.lang.NullPointerException
>>> at org.cesecore.keys.token.CryptoTokenSessionBean.mergeCryptoToken(CryptoTokenSessionBean.java:131)
>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>> -------
>>> Thank you,
>>> Mehul Chhayani | Deployment Specialist
>>> chh...@ec...
>>> T:416-226-8600 EXT-246
>>>
>>>
>>> -----Original Message-----
>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>> Sent: Wednesday, June 27, 2018 8:56 AM
>>> To: ejb...@li...
>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>
>>> Did you run all ant upgrade and ant post-upgrades that are needed?
>>>
>>> You don't have a CLI authentication token created it seems, whcih should
>>> be created.
>>>
>>> For the SuperAdmin rows you can set tokenType to
>>> CertificateAuthenticationToken.
>>> The UNUSED rows you can delete.
>>>
>>> Regards,
>>> Tomas
>>>
>>>
>>> On 2018-06-25 22:24, Mehul Chhayani wrote:
>>>> Hello Tomas,
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> I have checked tokentype=Null of every entity that mentioned
>>>> AdminEntityData table in database. What would be next step to overcome
>>>> that problem? See that following table
>>>>
>>>>
>>>>
>>>> Pk matchwith matchtype matchvalue adminroupdata_adminentities caif
>>>> rowversion rowprotection tokentype
>>>>
>>>> -401175635 8 1001 SuperAdmin
>>>> -1181650581 -1146543808 0
>>>>
>>>> 329358383 11 2003 UNUSED
>>>> -1290073541 0 0
>>>>
>>>> 329358381 11 2001 UNUSED
>>>> -1290073541 0 0
>>>>
>>>> 329358382 11 2002 UNUSED
>>>> -1290073541 0 0
>>>>
>>>> 329358376 11 2004 UNUSED
>>>> -1290073541 0 0
>>>>
>>>> -342399384 11 2000 UNUSED
>>>> 1399736916 -1146543808 0
>>>>
>>>> 2117404180 8 1001 SuperAdmin
>>>> -1181650581 764062969 0
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> -------
>>>>
>>>> Thank you,
>>>>
>>>> Mehul Chhayani | Deployment Specialist
>>>>
>>>> chh...@ec...
>>>>
>>>> T:416-226-8600 EXT-246
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> -----Original Message-----
>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>> Sent: Monday, June 25, 2018 7:11 AM
>>>> To: ejb...@li...
>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> Hi,
>>>>
>>>>
>>>>
>>>> Can you check in your database. Things should move over to
>>>>
>>>> RoleMemberData during the migration. Can you check what "tokenType"s you
>>>>
>>>> have in RoleMemberData and AdminEntityData.
>>>>
>>>>
>>>>
>>>> Cheers,
>>>>
>>>> Tomas
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> On 2018-06-21 21:43, Mehul Chhayani wrote:
>>>>
>>>>> Hi Thomas,
>>>>
>>>>>
>>>>
>>>>> I tried with this method , it did not worked with old jboss-5.0.1, its
>>>> complaining when I hit adminweb page, I am mentioning some server log,
>>>> can you please advise me ? I am not able to reset superadmin password
>>>> as well
>>>>
>>>>>
>>>>
>>>>> 2018-06-21 19:09:57,283 DEBUG [org.hibernate.pretty.Printer]
>>>> (http-0.0.0.0-8443-1) listing entities:
>>>>
>>>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.pretty.Printer]
>>>> (http-0.0.0.0-8443-1)
>>>> org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default,
>>>> rowProtection=null, rowVersion=2,
>>>> dataUnsafe=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}
>>>>
>>>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.jdbc.ConnectionManager]
>>>> (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
>>>>
>>>>> 2018-06-21 19:09:57,284 DEBUG
>>>> [org.jboss.jpa.deployment.ManagedEntityManagerFactory]
>>>> (http-0.0.0.0-8443-1) ************** closing entity managersession
>>>> **************
>>>>
>>>>> 2018-06-21 19:09:57,285 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.en.properties
>>>>
>>>>> 2018-06-21 19:09:57,293 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.bs.properties
>>>>
>>>>> 2018-06-21 19:09:57,320 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.de.properties
>>>>
>>>>> 2018-06-21 19:09:57,328 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.es.properties
>>>>
>>>>> 2018-06-21 19:09:57,332 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.fr.properties
>>>>
>>>>> 2018-06-21 19:09:57,345 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.it.properties
>>>>
>>>>> 2018-06-21 19:09:57,349 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.ja.properties
>>>>
>>>>> 2018-06-21 19:09:57,358 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.pt.properties
>>>>
>>>>> 2018-06-21 19:09:57,363 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.sv.properties
>>>>
>>>>> 2018-06-21 19:09:57,367 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.uk.properties
>>>>
>>>>> 2018-06-21 19:09:57,380 DEBUG
>>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>>> (http-0.0.0.0-8443-1) Loading language from file:
>>>> /languages/languagefile.zh.properties
>>>>
>>>>> 2018-06-21 19:09:57,391 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
>>>>
>>>>> java.lang.NullPointerException
>>>>
>>>>> at
>>>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>>>
>>>>> at
>>>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>>>
>>>>> at
>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>>>
>>>>> at
>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>>>
>>>>> at
>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>>>
>>>>> at
>>>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>>>
>>>>> at
>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>>>
>>>>> at
>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>>>
>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>
>>>>> at
>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>
>>>>> at
>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>
>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>
>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>>
>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>>
>>>>> at
>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>>
>>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>>
>>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>>
>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>>>>
>>>>> at
>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>
>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>
>>>>> at
>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>>
>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>>
>>>>> at
>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
>>>>
>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>>
>>>>> at
>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
>>>>
>>>>>
>>>>
>>>>>
>>>>
>>>>> -------
>>>>
>>>>> Thank you,
>>>>
>>>>> Mehul Chhayani | Deployment Specialist
>>>>
>>>>> chh...@ec...
>>>>
>>>>> T:416-226-8600 EXT-246
>>>>
>>>>>
>>>>
>>>>> -----Original Message-----
>>>>
>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>
>>>>> Sent: Saturday, June 2, 2018 1:56 PM
>>>>
>>>>> To: ejb...@li...
>>>>
>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>>>
>>>>
>>>>>
>>>>
>>>>> This one is due to JBoss not cleaning temp files properly every time.
>>>>
>>>>> It's a good habit to do this every time you deploy something new:
>>>>
>>>>> - rm -rf <jboss>/server/default/tmp
>>>>
>>>>> - rm -rf <jboss>/server/default/work
>>>>
>>>>>
>>>>
>>>>> Regards,
>>>>
>>>>> Tomas
>>>>
>>>>>
>>>>
>>>>>
>>>>
>>>>> On 2018-06-01 17:22, Mehul Chhayani wrote:
>>>>
>>>>>> Here I have attached members page of the roles in EJBCA-4, if you
>>>> find that information useful, I am also getting new error while I am
>>>> hitting adminweb page EJBCA-6.3.2.6 from local network. I have checked
>>>> firewall rules and access-list. No ip's are blocking there. I am
>>>> providing new error below , please take a look.
>>>>
>>>>>>
>>>>
>>>>>> 15:22:13,243 ERROR [[jsp]] Servlet.service() for servlet jsp threw
>>>> exception
>>>>
>>>>>> java.lang.NoClassDefFoundError:
>>>> org/ejbca/core/model/authorization/AuthorizationDeniedException
>>>>
>>>>>> at
>>>> org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:115)
>>>>
>>>>>> at
>>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>>
>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>
>>>>>> at
>>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>>
>>>>>> at
>>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>>
>>>>>> at
>>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>>
>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:638)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:444)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:382)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:310)
>>>>
>>>>>> at
>>>> org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:696)
>>>>
>>>>>> at
>>>> org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:667)
>>>>
>>>>>> at
>>>> org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:808)
>>>>
>>>>>> at
>>>> org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:781)
>>>>
>>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:143)
>>>>
>>>>>> at
>>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>>
>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>
>>>>>> at
>>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>>
>>>>>> at
>>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>>
>>>>>> at
>>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>>
>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>> at
>>>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>> at
>>>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>> at
>>>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>> at
>>>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>>>
>>>>>> at
>>>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>>>
>>>>>> at
>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>>>
>>>>>> at
>>>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>>>
>>>>>> at
>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>>>
>>>>>> at
>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>>>
>>>>>> at
>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>>>
>>>>>> at
>>>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>>>
>>>>>> at
>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>>>
>>>>>> at
>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>>>
>>>>>> at
>>>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>>>
>>>>>> at
>>>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>>>
>>>>>> at
>>>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>>>
>>>>>> at java.lang.Thread.run(Thread.java:662)
>>>>
>>>>>>
>>>>
>>>>>> -------
>>>>
>>>>>> Thank you,
>>>>
>>>>>> Mehul Chhayani | Deployment Specialist
>>>>
>>>>>> chh...@ec...
>>>>
>>>>>> T:416-226-8600 EXT-246
>>>>
>>>>>>
>>>>
>>>>>>
>>>>
>>>>>> -----Original Message-----
>>>>
>>>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>>>
>>>>>> Sent: Friday, June 1, 2018 9:53 AM
>>>>
>>>>>> To: Mehul Chhayani; ejb...@li...
>>>>
>>>>>> Cc: Randy Yu
>>>>
>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>>>>
>>>>
>>>>>>
>>>>
>>>>>> Hi, thanks for the info.
>>>>
>>>>>>
>>>>
>>>>>> What does your roles looks like in EJBCA 4? Is it possible to show
>>>>
>>>>>> screenshots of the members page of the roles? It seems to be related to
>>>>
>>>>>> this.
>>>>
>>>>>>
>>>>
>>>>>> Regards,
>>>>
>>>>>> Tomas
>>>>
>>>>>>
>>>>
>>>>>> On 2018-05-31 15:55, Mehul Chhayani wrote:
>>>>
>>>>>>> Hello Tomas,
>>>>
>>>>>>>
>>>>
>>>>>>> We can configure and migrate PKCS#11 after upgrading EJBCA-6236 ,
>>>> what issue is after successfully upgrading EJBCA-6236, we cannot get
>>>> adminweb page for ejbca and complaining nullpointerexception and it's
>>>> also not giving much information on that.can you please advise on that?
>>>>
>>>>>>>
>>>>
>>>>>>> -------
>>>>
>>>>>>> Thank you,
>>>>
>>>>>>> Mehul Chhayani | Deployment Specialist
>>>>
>>>>>>> chh...@ec...
>>>>
>>>>>>> T:416-226-8600 EXT-246
>>>>
>>>>>>>
>>>>
>>>>>>>
>>>>
>>>>>>> -----Original Message-----
>>>>
>>>>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>>>
>>>>>>> Sent: Wednesday, May 30, 2018 1:34 PM
>>>>
>>>>>>> To: Mehul Chhayani; ejb...@li...
>>>>
>>>>>>> Cc: Randy Yu
>>>>
>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>>>>>
>>>>
>>>>>>>
>>>>
>>>>>>> SunPKCS#11 should be included by default in any java installation, also
>>>>
>>>>>>> in hava 6 so you should have it already. It's a matter of re-configuring
>>>>
>>>>>>> your CA tokens to use the PKCS#11 driver. I think it's described in the
>>>>
>>>>>>> doc/UPGRADE document.
>>>>
>>>>>>>
>>>>
>>>>>>> Regards,
>>>>
>>>>>>> Tomas
>>>>
>>>>>>>
>>>>
>>>>>>>
>>>>
>>>>>>> On 2018-05-30 19:23, Mehul Chhayani wrote:
>>>>
>>>>>>>> Hi Tomas,
>>>>
>>>>>>>>
>>>>
>>>>>>>> As you have said migrate to a PKCS#11 CA token means that
>>>> downloading sunpkcs11.jar file , copy into
>>>> jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am
>>>> wrong , can you advise me how to migrate a PKCS#11 CA token while
>>>> upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA
>>>> with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna
>>>> library with custom JKS keystore in Ejbca_4_0_16.
>>>>
>>>>>>>>
>>>>
>>>>>>>>
>>>>
>>>>>>>> -------
>>>>
>>>>>>>> Thank you,
>>>>
>>>>>>>> Mehul Chhayani | Deployment Specialist
>>>>
>>>>>>>> chh...@ec...
>>>>
>>>>>>>> T:416-226-8600 EXT-246
>>>>
>>>>>>>>
>>>>
>>>>>>>>
>>>>
>>>>>>>> -----Original Message-----
>>>>
>>>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>
>>>>>>>> Sent: Wednesday, May 30, 2018 12:23 PM
>>>>
>>>>>>>> To: Mehul Chhayani; ejb...@li...
>>>>
>>>>>>>> Cc: Randy Yu
>>>>
>>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>>>>>>
>>>>
>>>>>>>>
>>>>
>>>>>>>> Hi,
>>>>
>>>>>>>>
>>>>
>>>>>>>> Sorry, I donät understand that question. Can you elaborate a little bit
>>>>
>>>>>>>> what you have done?
>>>>
>>>>>>>>
>>>>
>>>>>>>> In the previous answer, you should migrate to a PKCS#11 CA token, still
>>>>
>>>>>>>> in your EJBCA 4, before upgrading to EJBCA 6.
>>>>
>>>>>>>>
>>>>
>>>>>>>> Regards,
>>>>
>>>>>>>> Tomas
>>>>
>>>>>>>>
>>>>
>>>>>>>> On 2018-05-30 18:17, Mehul Chhayani wrote:
>>>>
>>>>>>>>> Hello Tomas,
>>>>
>>>>>>>>>
>>>>
>>>>>>>>> Its working on old ejbca-4.0.16 and we did not change any keystore
>>>> keys or catoken.properties file. But when we are hitting that giving
>>>> jsp error, can you please tell us what it is causing an error. Or We
>>>> should compile new ejbca with upgrade jboss or jdk.
>>>>
>>>>>>>>>
>>>>
>>>>>>>>>
>>>>
>>>>>>>>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30
>>>> 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127
>>>>
>>>>>>>>> 16:16:16,367 ERROR [jsp]
>>>>
>>>>>>>>> java.lang.NullPointerException
>>>>
>>>>>>>>> at
>>>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>>>
>>>>>>>>> at
>>>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>>>
>>>>>>>>> at
>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>>>
>>>>>>>>> at
>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>>>
>>>>>>>>> at
>>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>>>
>>>>>>>>> at
>>>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>>>
>>>>>>>>> at
>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>>>
>>>>>>>>> at
>>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>>>
>>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>
>>>>>>>>> at
>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>
>>>>>>>>> at
>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>
>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>>
>>>>>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown
>>>> Source)
>>>>
>>>>>>>>> at
>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>
>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66)
>>>>
>>>>>>>>> at
>>>> org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>>>
>>>>>>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>
>>>>>>>>> at
>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>
>>>>>>>>> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source)
>>>>
>>>>>>>>> at
>>>> org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238)
>>>>
>>>>>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83)
>>>>
>>>>>>>>> at
>>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>>
>>>>>>>>> at
>>>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>
>>>>>>>>> at
>>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>>
>>>>>>>>> at
>>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>>
>>>>>>>>> at
>>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>>
>>>>>>>>> at
>>>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>>>>> at
>>>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>>>>> at
>>>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>>>>> at
>>>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>>>>> at
>>>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>>>
>>>>>>>>> at
>>>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>>>
>>>>>>>>> at
>>>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>>>
>>>>>>>>> at
>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>>>
>>>>>>>>> at
>>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>>>
>>>>>>>>> at
>>>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>>>
>>>>>>>>> at
>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>>>
>>>>>>>>> at
>>>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>>>
>>>>>>>>> at
>>>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>>>
>>>>>>>>> at
>>>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>>>
>>>>>>>>> at java.lang.Thread.run(Thread.java:662)
>>>>
>>>>>>>>>
>>>>
>>>>>>>>>
>>>>
>>>>>>>>>
>>>>
>>>>>>>>>
>>>>
>>>>>>>>> -------
>>>>
>>>>>>>>> Thank you,
>>>>
>>>>>>>>> Mehul Chhayani | Deployment Specialist
>>>>
>>>>>>>>> chh...@ec...
>>>>
>>>>>>>>> T:416-226-8600 EXT-246
>>>>
>>>>>>>>>
>>>>
>>>>>>>>> -----Original Message-----
>>>>
>>>>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>
>>>>>>>>> Sent: Wednesday, May 30, 2018 3:15 AM
>>>>
>>>>>>>>> To: ejb...@li...
>>>>
>>>>>>>>> Cc: Randy Yu; Mehul Chhayani
>>>>
>>>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>>>>>>>
>>>>
>>>>>>>>>
>>>>
>>>>>>>>> Hi,
>>>>
>>>>>>>>>
>>>>
>>>>>>>>> The reason is that you are using an old Crypto Token type which is not
>>>>
>>>>>>>>> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken
>>>>
>>>>>>>>> is not valid anymore. You need to migrate to using the generic PKCS#11
>>>>
>>>>>>>>> CA token. I think these are sections about this in the old
>>>>
>>>>>>>>> documentation. Sometime during EJBCA 4 we deprecated the old token
>>>> types
>>>>
>>>>>>>>> and recommended switching over to PKCS#11 tokens.
>>>>
>>>>>>>>>
>>>>
>>>>>>>>> Regards,
>>>>
>>>>>>>>> Tomas
>>>>
>>>>>>>>> ---
>>>>
>>>>>>>>> Save time and money with an Enterprise support subscription.
>>>> Please see
>>>>
>>>>>>>>> www.primekey.com for more information.
>>>>
>>>>>>>>> https://www.primekey.com/products/software/
>>>>
>>>>>>>>>
>>>>
>>>>>>>>> On 2018-05-29 19:50, Mehul Chhayani wrote:
>>>>
>>>>>>>>>> Hello EJBCA Team,
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of
>>>>
>>>>>>>>>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done
>>>> successfully
>>>>
>>>>>>>>>> , no error while deploying through ANT-1.8.3.However when I started
>>>>
>>>>>>>>>> jboos with some following error that no token and ejbtimeout, at
>>>> the end
>>>>
>>>>>>>>>> jboss started successfully with some errors, You can access ejbca
>>>> UI but
>>>>
>>>>>>>>>> u cannot hit adminweb it complaining some jsp file with
>>>>
>>>>>>>>>> nullpointerexception. Can you please advise on that? If you want
>>>> I will
>>>>
>>>>>>>>>> provide full jboss log. Thanks in advance.
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>> *15:56:44,255 ERROR [CryptoTokenFactory] No token.
>>>>
>>>>>>>>>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken*
>>>>
>>>>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>>
>>>>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>>
>>>>>>>>>> should be used via the bean container
>>>>
>>>>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>>
>>>>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>>
>>>>>>>>>> should be used via the bean container
>>>>
>>>>>>>>>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout*
>>>>
>>>>>>>>>> *javax.ejb.EJBException: java.lang.NullPointerException*
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
>>>>
>>>>>>>>>> at
>>>> org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>
>>>>>>>>>> at com.sun.proxy.$Proxy341.mergeCryptoToken(Unknown Source)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.cesecore.certificates.ca.CaSessionBean.getCa(CaSessionBean.java:671)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:531)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.cesecore.certificates.ca.CaSessionBean.getCAInfoInternal(CaSessionBean.java:334)
>>>>
>>>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native
>>>> Method)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>
>>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>>
>>>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native
>>>> Method)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>
>>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_18362751.invoke(InvocationContextInterceptor_z_fillMethod_18362751.java)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_18362751.invoke(InvocationContextInterceptor_z_setup_18362751.java)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>
>>>>>>>>>> at
>>>>
>>>>>>>>>>
>>>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>> *17:40:47,957 INFO [Log4jDevice] 2018-05-29
>>>>
>>>>>>>>>>
>>>> 17:40:47+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=**x.x.x.x*
>>>>
>>>>>>>>>> 17:40:48,090 ERROR [jsp]
>>>>
>>>>>>>>>> java.lang.NullPointerException
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>>
>>>> ------------------------------------------------------------------------------
>>>>
>>>>>>>>>> Check out the vibrant tech community on one of the world's most
>>>>
>>>>>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>> _______________________________________________
>>>>
>>>>>>>>>> Ejbca-develop mailing list
>>>>
>>>>>>>>>> Ejb...@li...
>>>>
>>>>>>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>>
>>>> ------------------------------------------------------------------------------
>>>>
>>>>>>>>>> Check out the vibrant tech community on one of the world's most
>>>>
>>>>>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>>
>>>>
>>>>>>>>>> _______________________________________________
>>>>
>>>>>>>>>> Ejbca-develop mailing list
>>>>
>>>>>>>>>> Ejb...@li...
>>>>
>>>>>>>>>> https://lists.sourceforge.net/list...
[truncated message content] |
|
From: Mehul C. <chh...@ec...> - 2018-06-29 13:54:28
|
Hello Tomas,
I have read server logs and jboss logs , from logs I can say whenever it tried to connect database while try to open adminweb , it connected to database for a while but after some seconds, it closed connected forcefully (aggressively releasing JDBC connection) , But I can connect new EJBCA-6326 GUI except adminweb page.
2018-06-29 13:48:10,220 DEBUG [org.hibernate.impl.SessionImpl] (http-0.0.0.0-8443-1) opened session at timestamp: 6268027249541120
2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Looking for a JTA transaction to join
2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.JDBCContext] (http-0.0.0.0-8443-1) successfully registered Synchronization
2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Looking for a JTA transaction to join
2018-06-29 13:48:10,221 DEBUG [org.hibernate.ejb.AbstractEntityManagerImpl] (http-0.0.0.0-8443-1) Transaction already joined
2018-06-29 13:48:10,221 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) loading entity: [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to open PreparedStatement (open PreparedStatements: 0, globally: 0)
2018-06-29 13:48:10,221 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) opening JDBC connection
2018-06-29 13:48:10,221 DEBUG [org.hibernate.SQL] (http-0.0.0.0-8443-1) select adminprefe0_.id as id13_0_, adminprefe0_.data as data13_0_, adminprefe0_.rowProtection as rowProte3_13_0_, adminprefe0_.rowVersion as rowVersion13_0_ from AdminPreferencesData adminprefe0_ where adminprefe0_.id=?
2018-06-29 13:48:10,228 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to open ResultSet (open ResultSets: 0, globally: 0)
2018-06-29 13:48:10,228 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) result row: EntityKey[org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to close ResultSet (open ResultSets: 1, globally: 1)
2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.AbstractBatcher] (http-0.0.0.0-8443-1) about to close PreparedStatement (open PreparedStatements: 1, globally: 1)
2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
2018-06-29 13:48:10,229 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) releasing JDBC connection [ (open PreparedStatements: 0, globally: 0) (open ResultSets: 0, globally: 0)]
2018-06-29 13:48:10,229 DEBUG [org.hibernate.engine.TwoPhaseLoad] (http-0.0.0.0-8443-1) resolving associations for [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
2018-06-29 13:48:10,230 DEBUG [org.hibernate.engine.TwoPhaseLoad] (http-0.0.0.0-8443-1) done materializing entity [org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData#default]
2018-06-29 13:48:10,230 DEBUG [org.hibernate.engine.StatefulPersistenceContext] (http-0.0.0.0-8443-1) initializing non-lazy collections
2018-06-29 13:48:10,230 DEBUG [org.hibernate.loader.Loader] (http-0.0.0.0-8443-1) done entity load
2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) processing flush-time cascades
2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) dirty checking collections
2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) Flushed: 0 insertions, 0 updates, 0 deletions to 1 objects
2018-06-29 13:48:10,231 DEBUG [org.hibernate.event.def.AbstractFlushingEventListener] (http-0.0.0.0-8443-1) Flushed: 0 (re)creations, 0 updates, 0 removals to 0 collections
2018-06-29 13:48:10,231 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) listing entities:
2018-06-29 13:48:10,231 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default, rowProtection=null, rowVersion=2, dataUnsafe=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}
2018-06-29 13:48:10,231 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
2018-06-29 13:48:10,232 DEBUG [org.jboss.jpa.deployment.ManagedEntityManagerFactory] (http-0.0.0.0-8443-1) ************** closing entity managersession **************
2018-06-29 13:48:10,232 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.en.properties
2018-06-29 13:48:10,238 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.bs.properties
2018-06-29 13:48:10,244 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.de.properties
2018-06-29 13:48:10,249 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.es.properties
2018-06-29 13:48:10,251 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.fr.properties
2018-06-29 13:48:10,258 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.it.properties
2018-06-29 13:48:10,260 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.ja.properties
2018-06-29 13:48:10,265 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.pt.properties
2018-06-29 13:48:10,270 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.sv.properties
2018-06-29 13:48:10,273 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.uk.properties
2018-06-29 13:48:10,281 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.zh.properties
2018-06-29 13:48:10,301 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
java.lang.NullPointerException
-------
Thank you,
Mehul Chhayani | Deployment Specialist
chh...@ec...
T:416-226-8600 EXT-246
-----Original Message-----
From: Tomas Gustavsson [mailto:to...@pr...]
Sent: Friday, June 29, 2018 3:16 AM
To: ejb...@li...
Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
Hi,
If you have problems it's not enough to read the last line only. You
need to troubleshoot the steps. Especially the upgrade and post-upgrade
steps seems to have some issues, since things have not been updated as
they should.
You can find some documentation how to troubleshoot here:
https://download.primekey.se/docs/EJBCA-Enterprise/6_11_1/adminguide.html#Troubleshooting
Monitoring server.log will show you what happens, just as it would show
why you get the error you get right now. server.log is your best friends
when troubleshooting EJBCA.
You probably have to restart JBoss between ant upgrade and port-upgrade.
Kind Regards,
Tomas
PS: I will be away on vacation for the coming weeks and will not be
available here
On 2018-06-28 22:59, Mehul Chhayani wrote:
> Hi Tomas,
>
> I have mentioneing following steps while upgrade EJBCA-ce-6.3.2.6 from ejbca_4_0_16 on jboss-5.1.0.GA (old jboss).
>
> ant clean
> ant deployear
> ant upgrade
> ant post-upgrade
> ant javatruststore
>
> output says BUILD successfully that during upgrade.
> -------
> Thank you,
> Mehul Chhayani | Deployment Specialist
> chh...@ec...
> T:416-226-8600 EXT-246
>
>
> -----Original Message-----
> From: Tomas Gustavsson [mailto:to...@pr...]
> Sent: Thursday, June 28, 2018 5:19 AM
> To: ejb...@li...
> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>
> Hi,
>
> It looks like you are one step further. This is a new error.
>
> During upgrade and post-upgrade you need to be monitoring for errors.
> Perhaps your database privileges does not allow certain operations? So
> that some needs to be done manually?
>
> Logs will tell you what is going on.
>
> The same with the error below. In the log you will have information
> leading up to the error that tells you what is going on and why this
> happens. It looks to me as you have some CA tokens which are of
> non-standard type, or that was not upgraded properly in a previous step.
> A previous upgrade step failing looks consistent with the previous error.
>
> But the log will tell you what led up to the error you show, and why it
> happens.
>
> If you have documented your complete upgrade process, can you provide
> the upgrade steps you perform? Which version, what command what output.
>
> Regards,
> Tomas
>
>
>
> On 2018-06-27 21:30, Mehul Chhayani wrote:
>> Hi Tomas,
>>
>> I did ant upgrade and ant post-upgrade on time of upgrading EJBCA, How do I get privileges for a CLI authentication token created, how do I know that is created in database or something during upgrade, I have updated tokenType to CertificateAuthenticationToken / X509CertificateAuthenticationToken in database and also droped manually CAID on AdminGroupData table which should be drop during upgrade, none of them are working, still getting below error.
>>
>>
>> 19:23:10,107 ERROR [[/ejbca/adminweb]] Servlet /ejbca/adminweb threw load() exception
>> java.lang.NullPointerException
>> at org.cesecore.keys.token.CryptoTokenSessionBean.mergeCryptoToken(CryptoTokenSessionBean.java:131)
>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>> at java.lang.reflect.Method.invoke(Method.java:597)
>> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>> at java.lang.reflect.Method.invoke(Method.java:597)
>> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>> -------
>> Thank you,
>> Mehul Chhayani | Deployment Specialist
>> chh...@ec...
>> T:416-226-8600 EXT-246
>>
>>
>> -----Original Message-----
>> From: Tomas Gustavsson [mailto:to...@pr...]
>> Sent: Wednesday, June 27, 2018 8:56 AM
>> To: ejb...@li...
>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>> Did you run all ant upgrade and ant post-upgrades that are needed?
>>
>> You don't have a CLI authentication token created it seems, whcih should
>> be created.
>>
>> For the SuperAdmin rows you can set tokenType to
>> CertificateAuthenticationToken.
>> The UNUSED rows you can delete.
>>
>> Regards,
>> Tomas
>>
>>
>> On 2018-06-25 22:24, Mehul Chhayani wrote:
>>> Hello Tomas,
>>>
>>>
>>>
>>>
>>>
>>> I have checked tokentype=Null of every entity that mentioned
>>> AdminEntityData table in database. What would be next step to overcome
>>> that problem? See that following table
>>>
>>>
>>>
>>> Pk matchwith matchtype matchvalue adminroupdata_adminentities caif
>>> rowversion rowprotection tokentype
>>>
>>> -401175635 8 1001 SuperAdmin
>>> -1181650581 -1146543808 0
>>>
>>> 329358383 11 2003 UNUSED
>>> -1290073541 0 0
>>>
>>> 329358381 11 2001 UNUSED
>>> -1290073541 0 0
>>>
>>> 329358382 11 2002 UNUSED
>>> -1290073541 0 0
>>>
>>> 329358376 11 2004 UNUSED
>>> -1290073541 0 0
>>>
>>> -342399384 11 2000 UNUSED
>>> 1399736916 -1146543808 0
>>>
>>> 2117404180 8 1001 SuperAdmin
>>> -1181650581 764062969 0
>>>
>>>
>>>
>>>
>>>
>>> -------
>>>
>>> Thank you,
>>>
>>> Mehul Chhayani | Deployment Specialist
>>>
>>> chh...@ec...
>>>
>>> T:416-226-8600 EXT-246
>>>
>>>
>>>
>>>
>>>
>>> -----Original Message-----
>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>> Sent: Monday, June 25, 2018 7:11 AM
>>> To: ejb...@li...
>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>
>>>
>>>
>>>
>>>
>>> Hi,
>>>
>>>
>>>
>>> Can you check in your database. Things should move over to
>>>
>>> RoleMemberData during the migration. Can you check what "tokenType"s you
>>>
>>> have in RoleMemberData and AdminEntityData.
>>>
>>>
>>>
>>> Cheers,
>>>
>>> Tomas
>>>
>>>
>>>
>>>
>>>
>>> On 2018-06-21 21:43, Mehul Chhayani wrote:
>>>
>>>> Hi Thomas,
>>>
>>>>
>>>
>>>> I tried with this method , it did not worked with old jboss-5.0.1, its
>>> complaining when I hit adminweb page, I am mentioning some server log,
>>> can you please advise me ? I am not able to reset superadmin password
>>> as well
>>>
>>>>
>>>
>>>> 2018-06-21 19:09:57,283 DEBUG [org.hibernate.pretty.Printer]
>>> (http-0.0.0.0-8443-1) listing entities:
>>>
>>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.pretty.Printer]
>>> (http-0.0.0.0-8443-1)
>>> org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default,
>>> rowProtection=null, rowVersion=2,
>>> dataUnsafe=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}
>>>
>>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.jdbc.ConnectionManager]
>>> (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
>>>
>>>> 2018-06-21 19:09:57,284 DEBUG
>>> [org.jboss.jpa.deployment.ManagedEntityManagerFactory]
>>> (http-0.0.0.0-8443-1) ************** closing entity managersession
>>> **************
>>>
>>>> 2018-06-21 19:09:57,285 DEBUG
>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>> (http-0.0.0.0-8443-1) Loading language from file:
>>> /languages/languagefile.en.properties
>>>
>>>> 2018-06-21 19:09:57,293 DEBUG
>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>> (http-0.0.0.0-8443-1) Loading language from file:
>>> /languages/languagefile.bs.properties
>>>
>>>> 2018-06-21 19:09:57,320 DEBUG
>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>> (http-0.0.0.0-8443-1) Loading language from file:
>>> /languages/languagefile.de.properties
>>>
>>>> 2018-06-21 19:09:57,328 DEBUG
>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>> (http-0.0.0.0-8443-1) Loading language from file:
>>> /languages/languagefile.es.properties
>>>
>>>> 2018-06-21 19:09:57,332 DEBUG
>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>> (http-0.0.0.0-8443-1) Loading language from file:
>>> /languages/languagefile.fr.properties
>>>
>>>> 2018-06-21 19:09:57,345 DEBUG
>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>> (http-0.0.0.0-8443-1) Loading language from file:
>>> /languages/languagefile.it.properties
>>>
>>>> 2018-06-21 19:09:57,349 DEBUG
>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>> (http-0.0.0.0-8443-1) Loading language from file:
>>> /languages/languagefile.ja.properties
>>>
>>>> 2018-06-21 19:09:57,358 DEBUG
>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>> (http-0.0.0.0-8443-1) Loading language from file:
>>> /languages/languagefile.pt.properties
>>>
>>>> 2018-06-21 19:09:57,363 DEBUG
>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>> (http-0.0.0.0-8443-1) Loading language from file:
>>> /languages/languagefile.sv.properties
>>>
>>>> 2018-06-21 19:09:57,367 DEBUG
>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>> (http-0.0.0.0-8443-1) Loading language from file:
>>> /languages/languagefile.uk.properties
>>>
>>>> 2018-06-21 19:09:57,380 DEBUG
>>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>>> (http-0.0.0.0-8443-1) Loading language from file:
>>> /languages/languagefile.zh.properties
>>>
>>>> 2018-06-21 19:09:57,391 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
>>>
>>>> java.lang.NullPointerException
>>>
>>>> at
>>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>>
>>>> at
>>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>>
>>>> at
>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>>
>>>> at
>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>>
>>>> at
>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>>
>>>> at
>>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>>
>>>> at
>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>>
>>>> at
>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>>
>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>
>>>> at
>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>
>>>> at
>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>
>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>
>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>
>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>
>>>> at
>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>
>>>> at
>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>
>>>> at
>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>
>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>>>
>>>> at
>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>
>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>
>>>> at
>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>
>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>> at
>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>
>>>> at
>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
>>>
>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>> at
>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>
>>>> at
>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
>>>
>>>>
>>>
>>>>
>>>
>>>> -------
>>>
>>>> Thank you,
>>>
>>>> Mehul Chhayani | Deployment Specialist
>>>
>>>> chh...@ec...
>>>
>>>> T:416-226-8600 EXT-246
>>>
>>>>
>>>
>>>> -----Original Message-----
>>>
>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>
>>>> Sent: Saturday, June 2, 2018 1:56 PM
>>>
>>>> To: ejb...@li...
>>>
>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>
>>>>
>>>
>>>>
>>>
>>>> This one is due to JBoss not cleaning temp files properly every time.
>>>
>>>> It's a good habit to do this every time you deploy something new:
>>>
>>>> - rm -rf <jboss>/server/default/tmp
>>>
>>>> - rm -rf <jboss>/server/default/work
>>>
>>>>
>>>
>>>> Regards,
>>>
>>>> Tomas
>>>
>>>>
>>>
>>>>
>>>
>>>> On 2018-06-01 17:22, Mehul Chhayani wrote:
>>>
>>>>> Here I have attached members page of the roles in EJBCA-4, if you
>>> find that information useful, I am also getting new error while I am
>>> hitting adminweb page EJBCA-6.3.2.6 from local network. I have checked
>>> firewall rules and access-list. No ip's are blocking there. I am
>>> providing new error below , please take a look.
>>>
>>>>>
>>>
>>>>> 15:22:13,243 ERROR [[jsp]] Servlet.service() for servlet jsp threw
>>> exception
>>>
>>>>> java.lang.NoClassDefFoundError:
>>> org/ejbca/core/model/authorization/AuthorizationDeniedException
>>>
>>>>> at
>>> org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:115)
>>>
>>>>> at
>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>
>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>
>>>>> at
>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>
>>>>> at
>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>
>>>>> at
>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>
>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>
>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>
>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>
>>>>> at
>>> org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:638)
>>>
>>>>> at
>>> org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:444)
>>>
>>>>> at
>>> org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:382)
>>>
>>>>> at
>>> org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:310)
>>>
>>>>> at
>>> org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:696)
>>>
>>>>> at
>>> org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:667)
>>>
>>>>> at
>>> org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:808)
>>>
>>>>> at
>>> org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:781)
>>>
>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:143)
>>>
>>>>> at
>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>
>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>
>>>>> at
>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>
>>>>> at
>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>
>>>>> at
>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>
>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>
>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>
>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>
>>>>> at
>>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>>
>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>
>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>
>>>>> at
>>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>>
>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>
>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>
>>>>> at
>>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>>
>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>
>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>
>>>>> at
>>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>>
>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>
>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>
>>>>> at
>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>>
>>>>> at
>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>>
>>>>> at
>>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>>
>>>>> at
>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>>
>>>>> at
>>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>>
>>>>> at
>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>>
>>>>> at
>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>>
>>>>> at
>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>>
>>>>> at
>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>>
>>>>> at
>>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>>
>>>>> at
>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>>
>>>>> at
>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>>
>>>>> at
>>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>>
>>>>> at
>>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>>
>>>>> at
>>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>>
>>>>> at java.lang.Thread.run(Thread.java:662)
>>>
>>>>>
>>>
>>>>> -------
>>>
>>>>> Thank you,
>>>
>>>>> Mehul Chhayani | Deployment Specialist
>>>
>>>>> chh...@ec...
>>>
>>>>> T:416-226-8600 EXT-246
>>>
>>>>>
>>>
>>>>>
>>>
>>>>> -----Original Message-----
>>>
>>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>>
>>>>> Sent: Friday, June 1, 2018 9:53 AM
>>>
>>>>> To: Mehul Chhayani; ejb...@li...
>>>
>>>>> Cc: Randy Yu
>>>
>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>
>>>>>
>>>
>>>>>
>>>
>>>>> Hi, thanks for the info.
>>>
>>>>>
>>>
>>>>> What does your roles looks like in EJBCA 4? Is it possible to show
>>>
>>>>> screenshots of the members page of the roles? It seems to be related to
>>>
>>>>> this.
>>>
>>>>>
>>>
>>>>> Regards,
>>>
>>>>> Tomas
>>>
>>>>>
>>>
>>>>> On 2018-05-31 15:55, Mehul Chhayani wrote:
>>>
>>>>>> Hello Tomas,
>>>
>>>>>>
>>>
>>>>>> We can configure and migrate PKCS#11 after upgrading EJBCA-6236 ,
>>> what issue is after successfully upgrading EJBCA-6236, we cannot get
>>> adminweb page for ejbca and complaining nullpointerexception and it's
>>> also not giving much information on that.can you please advise on that?
>>>
>>>>>>
>>>
>>>>>> -------
>>>
>>>>>> Thank you,
>>>
>>>>>> Mehul Chhayani | Deployment Specialist
>>>
>>>>>> chh...@ec...
>>>
>>>>>> T:416-226-8600 EXT-246
>>>
>>>>>>
>>>
>>>>>>
>>>
>>>>>> -----Original Message-----
>>>
>>>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>>
>>>>>> Sent: Wednesday, May 30, 2018 1:34 PM
>>>
>>>>>> To: Mehul Chhayani; ejb...@li...
>>>
>>>>>> Cc: Randy Yu
>>>
>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>
>>>>>>
>>>
>>>>>>
>>>
>>>>>> SunPKCS#11 should be included by default in any java installation, also
>>>
>>>>>> in hava 6 so you should have it already. It's a matter of re-configuring
>>>
>>>>>> your CA tokens to use the PKCS#11 driver. I think it's described in the
>>>
>>>>>> doc/UPGRADE document.
>>>
>>>>>>
>>>
>>>>>> Regards,
>>>
>>>>>> Tomas
>>>
>>>>>>
>>>
>>>>>>
>>>
>>>>>> On 2018-05-30 19:23, Mehul Chhayani wrote:
>>>
>>>>>>> Hi Tomas,
>>>
>>>>>>>
>>>
>>>>>>> As you have said migrate to a PKCS#11 CA token means that
>>> downloading sunpkcs11.jar file , copy into
>>> jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am
>>> wrong , can you advise me how to migrate a PKCS#11 CA token while
>>> upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA
>>> with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna
>>> library with custom JKS keystore in Ejbca_4_0_16.
>>>
>>>>>>>
>>>
>>>>>>>
>>>
>>>>>>> -------
>>>
>>>>>>> Thank you,
>>>
>>>>>>> Mehul Chhayani | Deployment Specialist
>>>
>>>>>>> chh...@ec...
>>>
>>>>>>> T:416-226-8600 EXT-246
>>>
>>>>>>>
>>>
>>>>>>>
>>>
>>>>>>> -----Original Message-----
>>>
>>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>
>>>>>>> Sent: Wednesday, May 30, 2018 12:23 PM
>>>
>>>>>>> To: Mehul Chhayani; ejb...@li...
>>>
>>>>>>> Cc: Randy Yu
>>>
>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>
>>>>>>>
>>>
>>>>>>>
>>>
>>>>>>> Hi,
>>>
>>>>>>>
>>>
>>>>>>> Sorry, I donät understand that question. Can you elaborate a little bit
>>>
>>>>>>> what you have done?
>>>
>>>>>>>
>>>
>>>>>>> In the previous answer, you should migrate to a PKCS#11 CA token, still
>>>
>>>>>>> in your EJBCA 4, before upgrading to EJBCA 6.
>>>
>>>>>>>
>>>
>>>>>>> Regards,
>>>
>>>>>>> Tomas
>>>
>>>>>>>
>>>
>>>>>>> On 2018-05-30 18:17, Mehul Chhayani wrote:
>>>
>>>>>>>> Hello Tomas,
>>>
>>>>>>>>
>>>
>>>>>>>> Its working on old ejbca-4.0.16 and we did not change any keystore
>>> keys or catoken.properties file. But when we are hitting that giving
>>> jsp error, can you please tell us what it is causing an error. Or We
>>> should compile new ejbca with upgrade jboss or jdk.
>>>
>>>>>>>>
>>>
>>>>>>>>
>>>
>>>>>>>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30
>>> 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127
>>>
>>>>>>>> 16:16:16,367 ERROR [jsp]
>>>
>>>>>>>> java.lang.NullPointerException
>>>
>>>>>>>> at
>>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>>
>>>>>>>> at
>>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>>
>>>>>>>> at
>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>>
>>>>>>>> at
>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>>
>>>>>>>> at
>>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>>
>>>>>>>> at
>>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>>
>>>>>>>> at
>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>>
>>>>>>>> at
>>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>>
>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>
>>>>>>>> at
>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>
>>>>>>>> at
>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>
>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>
>>>>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown
>>> Source)
>>>
>>>>>>>> at
>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>
>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>
>>>>>>>> at
>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>
>>>>>>>> at
>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>
>>>>>>>> at
>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>> at
>>> org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66)
>>>
>>>>>>>> at
>>> org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>> at
>>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>> at
>>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>>
>>>>>>>> at
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>
>>>>>>>> at
>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>
>>>>>>>> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source)
>>>
>>>>>>>> at
>>> org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238)
>>>
>>>>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83)
>>>
>>>>>>>> at
>>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>
>>>>>>>> at
>>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>
>>>>>>>> at
>>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>
>>>>>>>> at
>>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>
>>>>>>>> at
>>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>
>>>>>>>> at
>>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>
>>>>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>
>>>>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>
>>>>>>>> at
>>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>>
>>>>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>
>>>>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>
>>>>>>>> at
>>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>>
>>>>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>
>>>>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>
>>>>>>>> at
>>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>>
>>>>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>
>>>>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>
>>>>>>>> at
>>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>>
>>>>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>
>>>>>>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>
>>>>>>>> at
>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>>
>>>>>>>> at
>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>>
>>>>>>>> at
>>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>>
>>>>>>>> at
>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>>
>>>>>>>> at
>>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>>
>>>>>>>> at
>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>>
>>>>>>>> at
>>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>>
>>>>>>>> at
>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>>
>>>>>>>> at
>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>>
>>>>>>>> at
>>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>>
>>>>>>>> at
>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>>
>>>>>>>> at
>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>>
>>>>>>>> at
>>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>>
>>>>>>>> at
>>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>>
>>>>>>>> at
>>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>>
>>>>>>>> at java.lang.Thread.run(Thread.java:662)
>>>
>>>>>>>>
>>>
>>>>>>>>
>>>
>>>>>>>>
>>>
>>>>>>>>
>>>
>>>>>>>> -------
>>>
>>>>>>>> Thank you,
>>>
>>>>>>>> Mehul Chhayani | Deployment Specialist
>>>
>>>>>>>> chh...@ec...
>>>
>>>>>>>> T:416-226-8600 EXT-246
>>>
>>>>>>>>
>>>
>>>>>>>> -----Original Message-----
>>>
>>>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>
>>>>>>>> Sent: Wednesday, May 30, 2018 3:15 AM
>>>
>>>>>>>> To: ejb...@li...
>>>
>>>>>>>> Cc: Randy Yu; Mehul Chhayani
>>>
>>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>
>>>>>>>>
>>>
>>>>>>>>
>>>
>>>>>>>> Hi,
>>>
>>>>>>>>
>>>
>>>>>>>> The reason is that you are using an old Crypto Token type which is not
>>>
>>>>>>>> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken
>>>
>>>>>>>> is not valid anymore. You need to migrate to using the generic PKCS#11
>>>
>>>>>>>> CA token. I think these are sections about this in the old
>>>
>>>>>>>> documentation. Sometime during EJBCA 4 we deprecated the old token
>>> types
>>>
>>>>>>>> and recommended switching over to PKCS#11 tokens.
>>>
>>>>>>>>
>>>
>>>>>>>> Regards,
>>>
>>>>>>>> Tomas
>>>
>>>>>>>> ---
>>>
>>>>>>>> Save time and money with an Enterprise support subscription.
>>> Please see
>>>
>>>>>>>> www.primekey.com for more information.
>>>
>>>>>>>> https://www.primekey.com/products/software/
>>>
>>>>>>>>
>>>
>>>>>>>> On 2018-05-29 19:50, Mehul Chhayani wrote:
>>>
>>>>>>>>> Hello EJBCA Team,
>>>
>>>>>>>>>
>>>
>>>>>>>>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of
>>>
>>>>>>>>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done
>>> successfully
>>>
>>>>>>>>> , no error while deploying through ANT-1.8.3.However when I started
>>>
>>>>>>>>> jboos with some following error that no token and ejbtimeout, at
>>> the end
>>>
>>>>>>>>> jboss started successfully with some errors, You can access ejbca
>>> UI but
>>>
>>>>>>>>> u cannot hit adminweb it complaining some jsp file with
>>>
>>>>>>>>> nullpointerexception. Can you please advise on that? If you want
>>> I will
>>>
>>>>>>>>> provide full jboss log. Thanks in advance.
>>>
>>>>>>>>>
>>>
>>>>>>>>> *15:56:44,255 ERROR [CryptoTokenFactory] No token.
>>>
>>>>>>>>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken*
>>>
>>>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>
>>>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>
>>>>>>>>> should be used via the bean container
>>>
>>>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>
>>>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>
>>>>>>>>> should be used via the bean container
>>>
>>>>>>>>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout*
>>>
>>>>>>>>> *javax.ejb.EJBException: java.lang.NullPointerException*
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
>>>
>>>>>>>>> at
>>> org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>>> at
>>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>
>>>>>>>>> at com.sun.proxy.$Proxy341.mergeCryptoToken(Unknown Source)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.cesecore.certificates.ca.CaSessionBean.getCa(CaSessionBean.java:671)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:531)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.cesecore.certificates.ca.CaSessionBean.getCAInfoInternal(CaSessionBean.java:334)
>>>
>>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native
>>> Method)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>
>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>
>>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native
>>> Method)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>
>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_18362751.invoke(InvocationContextInterceptor_z_fillMethod_18362751.java)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_18362751.invoke(InvocationContextInterceptor_z_setup_18362751.java)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>
>>>>>>>>> at
>>>
>>>>>>>>>
>>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>>
>>>>>>>>>
>>>
>>>>>>>>>
>>>
>>>>>>>>>
>>>
>>>>>>>>>
>>>
>>>>>>>>> *17:40:47,957 INFO [Log4jDevice] 2018-05-29
>>>
>>>>>>>>>
>>> 17:40:47+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=**x.x.x.x*
>>>
>>>>>>>>> 17:40:48,090 ERROR [jsp]
>>>
>>>>>>>>> java.lang.NullPointerException
>>>
>>>>>>>>>
>>>
>>>>>>>>>
>>>
>>>>>>>>>
>>>
>>>>>>>>>
>>> ------------------------------------------------------------------------------
>>>
>>>>>>>>> Check out the vibrant tech community on one of the world's most
>>>
>>>>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>>
>>>>>>>>>
>>>
>>>>>>>>>
>>>
>>>>>>>>>
>>>
>>>>>>>>> _______________________________________________
>>>
>>>>>>>>> Ejbca-develop mailing list
>>>
>>>>>>>>> Ejb...@li...
>>>
>>>>>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>>
>>>>>>>>>
>>>
>>>>>>>>>
>>>
>>>>>>>>>
>>>
>>>>>>>>>
>>> ------------------------------------------------------------------------------
>>>
>>>>>>>>> Check out the vibrant tech community on one of the world's most
>>>
>>>>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>>
>>>>>>>>>
>>>
>>>>>>>>>
>>>
>>>>>>>>> _______________________________________________
>>>
>>>>>>>>> Ejbca-develop mailing list
>>>
>>>>>>>>> Ejb...@li...
>>>
>>>>>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>>
>>>>
>>>
>>>>
>>> ------------------------------------------------------------------------------
>>>
>>>> Check out the vibrant tech community on one of the world's most
>>>
>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>>
>>>> _______________________________________________
>>>
>>>> Ejbca-develop mailing list
>>>
>>>> Ejb...@li...
>>>
>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>>
>>>>
>>> ------------------------------------------------------------------------------
>>>
>>>> Check out the vibrant tech community on one of the world's most
>>>
>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>>
>>>> _______________________________________________
>>>
>>>> Ejbca-develop mailing list
>>>
>>>> Ejb...@li...
>>>
>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>>
>>>>
>>>
>>> ------------------------------------------------------------------------------
>>>
>>> Check out the vibrant tech community on one of the world's most
>>>
>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>>
>>> _______________________________________________
>>>
>>> Ejbca-develop mailing list
>>>
>>> Ejb...@li...
>>>
>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>>
>>>
>>>
>>> ------------------------------------------------------------------------------
>>> Check out the vibrant tech community on one of the world's most
>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>>
>>>
>>>
>>> _______________________________________________
>>> Ejbca-develop mailing list
>>> Ejb...@li...
>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>>
>> ------------------------------------------------------------------------------
>> Check out the vibrant tech community on one of the world's most
>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>> _______________________________________________
>> Ejbca-develop mailing list
>> Ejb...@li...
>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>> -----------------------------------------------------...
[truncated message content] |
|
From: Tomas G. <to...@pr...> - 2018-06-29 07:16:29
|
Hi, If you have problems it's not enough to read the last line only. You need to troubleshoot the steps. Especially the upgrade and post-upgrade steps seems to have some issues, since things have not been updated as they should. You can find some documentation how to troubleshoot here: https://download.primekey.se/docs/EJBCA-Enterprise/6_11_1/adminguide.html#Troubleshooting Monitoring server.log will show you what happens, just as it would show why you get the error you get right now. server.log is your best friends when troubleshooting EJBCA. You probably have to restart JBoss between ant upgrade and port-upgrade. Kind Regards, Tomas PS: I will be away on vacation for the coming weeks and will not be available here On 2018-06-28 22:59, Mehul Chhayani wrote: > Hi Tomas, > > I have mentioneing following steps while upgrade EJBCA-ce-6.3.2.6 from ejbca_4_0_16 on jboss-5.1.0.GA (old jboss). > > ant clean > ant deployear > ant upgrade > ant post-upgrade > ant javatruststore > > output says BUILD successfully that during upgrade. > ------- > Thank you, > Mehul Chhayani | Deployment Specialist > chh...@ec... > T:416-226-8600 EXT-246 > > > -----Original Message----- > From: Tomas Gustavsson [mailto:to...@pr...] > Sent: Thursday, June 28, 2018 5:19 AM > To: ejb...@li... > Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error > > > Hi, > > It looks like you are one step further. This is a new error. > > During upgrade and post-upgrade you need to be monitoring for errors. > Perhaps your database privileges does not allow certain operations? So > that some needs to be done manually? > > Logs will tell you what is going on. > > The same with the error below. In the log you will have information > leading up to the error that tells you what is going on and why this > happens. It looks to me as you have some CA tokens which are of > non-standard type, or that was not upgraded properly in a previous step. > A previous upgrade step failing looks consistent with the previous error. > > But the log will tell you what led up to the error you show, and why it > happens. > > If you have documented your complete upgrade process, can you provide > the upgrade steps you perform? Which version, what command what output. > > Regards, > Tomas > > > > On 2018-06-27 21:30, Mehul Chhayani wrote: >> Hi Tomas, >> >> I did ant upgrade and ant post-upgrade on time of upgrading EJBCA, How do I get privileges for a CLI authentication token created, how do I know that is created in database or something during upgrade, I have updated tokenType to CertificateAuthenticationToken / X509CertificateAuthenticationToken in database and also droped manually CAID on AdminGroupData table which should be drop during upgrade, none of them are working, still getting below error. >> >> >> 19:23:10,107 ERROR [[/ejbca/adminweb]] Servlet /ejbca/adminweb threw load() exception >> java.lang.NullPointerException >> at org.cesecore.keys.token.CryptoTokenSessionBean.mergeCryptoToken(CryptoTokenSessionBean.java:131) >> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >> at java.lang.reflect.Method.invoke(Method.java:597) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source) >> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >> at java.lang.reflect.Method.invoke(Method.java:597) >> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >> ------- >> Thank you, >> Mehul Chhayani | Deployment Specialist >> chh...@ec... >> T:416-226-8600 EXT-246 >> >> >> -----Original Message----- >> From: Tomas Gustavsson [mailto:to...@pr...] >> Sent: Wednesday, June 27, 2018 8:56 AM >> To: ejb...@li... >> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >> >> Did you run all ant upgrade and ant post-upgrades that are needed? >> >> You don't have a CLI authentication token created it seems, whcih should >> be created. >> >> For the SuperAdmin rows you can set tokenType to >> CertificateAuthenticationToken. >> The UNUSED rows you can delete. >> >> Regards, >> Tomas >> >> >> On 2018-06-25 22:24, Mehul Chhayani wrote: >>> Hello Tomas, >>> >>> >>> >>> >>> >>> I have checked tokentype=Null of every entity that mentioned >>> AdminEntityData table in database. What would be next step to overcome >>> that problem? See that following table >>> >>> >>> >>> Pk matchwith matchtype matchvalue adminroupdata_adminentities caif >>> rowversion rowprotection tokentype >>> >>> -401175635 8 1001 SuperAdmin >>> -1181650581 -1146543808 0 >>> >>> 329358383 11 2003 UNUSED >>> -1290073541 0 0 >>> >>> 329358381 11 2001 UNUSED >>> -1290073541 0 0 >>> >>> 329358382 11 2002 UNUSED >>> -1290073541 0 0 >>> >>> 329358376 11 2004 UNUSED >>> -1290073541 0 0 >>> >>> -342399384 11 2000 UNUSED >>> 1399736916 -1146543808 0 >>> >>> 2117404180 8 1001 SuperAdmin >>> -1181650581 764062969 0 >>> >>> >>> >>> >>> >>> ------- >>> >>> Thank you, >>> >>> Mehul Chhayani | Deployment Specialist >>> >>> chh...@ec... >>> >>> T:416-226-8600 EXT-246 >>> >>> >>> >>> >>> >>> -----Original Message----- >>> From: Tomas Gustavsson [mailto:to...@pr...] >>> Sent: Monday, June 25, 2018 7:11 AM >>> To: ejb...@li... >>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >>> >>> >>> >>> >>> >>> Hi, >>> >>> >>> >>> Can you check in your database. Things should move over to >>> >>> RoleMemberData during the migration. Can you check what "tokenType"s you >>> >>> have in RoleMemberData and AdminEntityData. >>> >>> >>> >>> Cheers, >>> >>> Tomas >>> >>> >>> >>> >>> >>> On 2018-06-21 21:43, Mehul Chhayani wrote: >>> >>>> Hi Thomas, >>> >>>> >>> >>>> I tried with this method , it did not worked with old jboss-5.0.1, its >>> complaining when I hit adminweb page, I am mentioning some server log, >>> can you please advise me ? I am not able to reset superadmin password >>> as well >>> >>>> >>> >>>> 2018-06-21 19:09:57,283 DEBUG [org.hibernate.pretty.Printer] >>> (http-0.0.0.0-8443-1) listing entities: >>> >>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.pretty.Printer] >>> (http-0.0.0.0-8443-1) >>> org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default, >>> rowProtection=null, rowVersion=2, >>> dataUnsafe=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} >>> >>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.jdbc.ConnectionManager] >>> (http-0.0.0.0-8443-1) aggressively releasing JDBC connection >>> >>>> 2018-06-21 19:09:57,284 DEBUG >>> [org.jboss.jpa.deployment.ManagedEntityManagerFactory] >>> (http-0.0.0.0-8443-1) ************** closing entity managersession >>> ************** >>> >>>> 2018-06-21 19:09:57,285 DEBUG >>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>> (http-0.0.0.0-8443-1) Loading language from file: >>> /languages/languagefile.en.properties >>> >>>> 2018-06-21 19:09:57,293 DEBUG >>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>> (http-0.0.0.0-8443-1) Loading language from file: >>> /languages/languagefile.bs.properties >>> >>>> 2018-06-21 19:09:57,320 DEBUG >>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>> (http-0.0.0.0-8443-1) Loading language from file: >>> /languages/languagefile.de.properties >>> >>>> 2018-06-21 19:09:57,328 DEBUG >>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>> (http-0.0.0.0-8443-1) Loading language from file: >>> /languages/languagefile.es.properties >>> >>>> 2018-06-21 19:09:57,332 DEBUG >>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>> (http-0.0.0.0-8443-1) Loading language from file: >>> /languages/languagefile.fr.properties >>> >>>> 2018-06-21 19:09:57,345 DEBUG >>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>> (http-0.0.0.0-8443-1) Loading language from file: >>> /languages/languagefile.it.properties >>> >>>> 2018-06-21 19:09:57,349 DEBUG >>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>> (http-0.0.0.0-8443-1) Loading language from file: >>> /languages/languagefile.ja.properties >>> >>>> 2018-06-21 19:09:57,358 DEBUG >>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>> (http-0.0.0.0-8443-1) Loading language from file: >>> /languages/languagefile.pt.properties >>> >>>> 2018-06-21 19:09:57,363 DEBUG >>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>> (http-0.0.0.0-8443-1) Loading language from file: >>> /languages/languagefile.sv.properties >>> >>>> 2018-06-21 19:09:57,367 DEBUG >>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>> (http-0.0.0.0-8443-1) Loading language from file: >>> /languages/languagefile.uk.properties >>> >>>> 2018-06-21 19:09:57,380 DEBUG >>> [org.ejbca.ui.web.admin.configuration.WebLanguages] >>> (http-0.0.0.0-8443-1) Loading language from file: >>> /languages/languagefile.zh.properties >>> >>>> 2018-06-21 19:09:57,391 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1) >>> >>>> java.lang.NullPointerException >>> >>>> at >>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305) >>> >>>> at >>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259) >>> >>>> at >>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139) >>> >>>> at >>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192) >>> >>>> at >>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115) >>> >>>> at >>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86) >>> >>>> at >>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86) >>> >>>> at >>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136) >>> >>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>> >>>> at >>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>> >>>> at >>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>> >>>> at java.lang.reflect.Method.invoke(Method.java:597) >>> >>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >>> >>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >>> >>>> at >>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >>> >>>> at >>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >>> >>>> at >>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >>> >>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source) >>> >>>> at >>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>> >>>> at java.lang.reflect.Method.invoke(Method.java:597) >>> >>>> at >>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >>> >>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>> at >>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) >>> >>>> at >>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java) >>> >>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>> at >>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) >>> >>>> at >>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java) >>> >>>> >>> >>>> >>> >>>> ------- >>> >>>> Thank you, >>> >>>> Mehul Chhayani | Deployment Specialist >>> >>>> chh...@ec... >>> >>>> T:416-226-8600 EXT-246 >>> >>>> >>> >>>> -----Original Message----- >>> >>>> From: Tomas Gustavsson [mailto:to...@pr...] >>> >>>> Sent: Saturday, June 2, 2018 1:56 PM >>> >>>> To: ejb...@li... >>> >>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >>> >>>> >>> >>>> >>> >>>> This one is due to JBoss not cleaning temp files properly every time. >>> >>>> It's a good habit to do this every time you deploy something new: >>> >>>> - rm -rf <jboss>/server/default/tmp >>> >>>> - rm -rf <jboss>/server/default/work >>> >>>> >>> >>>> Regards, >>> >>>> Tomas >>> >>>> >>> >>>> >>> >>>> On 2018-06-01 17:22, Mehul Chhayani wrote: >>> >>>>> Here I have attached members page of the roles in EJBCA-4, if you >>> find that information useful, I am also getting new error while I am >>> hitting adminweb page EJBCA-6.3.2.6 from local network. I have checked >>> firewall rules and access-list. No ip's are blocking there. I am >>> providing new error below , please take a look. >>> >>>>> >>> >>>>> 15:22:13,243 ERROR [[jsp]] Servlet.service() for servlet jsp threw >>> exception >>> >>>>> java.lang.NoClassDefFoundError: >>> org/ejbca/core/model/authorization/AuthorizationDeniedException >>> >>>>> at >>> org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:115) >>> >>>>> at >>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70) >>> >>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>> >>>>> at >>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369) >>> >>>>> at >>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322) >>> >>>>> at >>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249) >>> >>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>> >>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) >>> >>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> >>>>> at >>> org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:638) >>> >>>>> at >>> org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:444) >>> >>>>> at >>> org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:382) >>> >>>>> at >>> org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:310) >>> >>>>> at >>> org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:696) >>> >>>>> at >>> org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:667) >>> >>>>> at >>> org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:808) >>> >>>>> at >>> org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:781) >>> >>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:143) >>> >>>>> at >>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70) >>> >>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>> >>>>> at >>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369) >>> >>>>> at >>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322) >>> >>>>> at >>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249) >>> >>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>> >>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) >>> >>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> >>>>> at >>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198) >>> >>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>> >>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> >>>>> at >>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36) >>> >>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>> >>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> >>>>> at >>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109) >>> >>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>> >>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> >>>>> at >>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96) >>> >>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>> >>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> >>>>> at >>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235) >>> >>>>> at >>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191) >>> >>>>> at >>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190) >>> >>>>> at >>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433) >>> >>>>> at >>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92) >>> >>>>> at >>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126) >>> >>>>> at >>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70) >>> >>>>> at >>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) >>> >>>>> at >>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) >>> >>>>> at >>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158) >>> >>>>> at >>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) >>> >>>>> at >>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330) >>> >>>>> at >>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829) >>> >>>>> at >>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598) >>> >>>>> at >>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447) >>> >>>>> at java.lang.Thread.run(Thread.java:662) >>> >>>>> >>> >>>>> ------- >>> >>>>> Thank you, >>> >>>>> Mehul Chhayani | Deployment Specialist >>> >>>>> chh...@ec... >>> >>>>> T:416-226-8600 EXT-246 >>> >>>>> >>> >>>>> >>> >>>>> -----Original Message----- >>> >>>>> From: Tomas Gustavsson [mailto:tom...@pr...] >>> >>>>> Sent: Friday, June 1, 2018 9:53 AM >>> >>>>> To: Mehul Chhayani; ejb...@li... >>> >>>>> Cc: Randy Yu >>> >>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >>> >>>>> >>> >>>>> >>> >>>>> Hi, thanks for the info. >>> >>>>> >>> >>>>> What does your roles looks like in EJBCA 4? Is it possible to show >>> >>>>> screenshots of the members page of the roles? It seems to be related to >>> >>>>> this. >>> >>>>> >>> >>>>> Regards, >>> >>>>> Tomas >>> >>>>> >>> >>>>> On 2018-05-31 15:55, Mehul Chhayani wrote: >>> >>>>>> Hello Tomas, >>> >>>>>> >>> >>>>>> We can configure and migrate PKCS#11 after upgrading EJBCA-6236 , >>> what issue is after successfully upgrading EJBCA-6236, we cannot get >>> adminweb page for ejbca and complaining nullpointerexception and it's >>> also not giving much information on that.can you please advise on that? >>> >>>>>> >>> >>>>>> ------- >>> >>>>>> Thank you, >>> >>>>>> Mehul Chhayani | Deployment Specialist >>> >>>>>> chh...@ec... >>> >>>>>> T:416-226-8600 EXT-246 >>> >>>>>> >>> >>>>>> >>> >>>>>> -----Original Message----- >>> >>>>>> From: Tomas Gustavsson [mailto:tom...@pr...] >>> >>>>>> Sent: Wednesday, May 30, 2018 1:34 PM >>> >>>>>> To: Mehul Chhayani; ejb...@li... >>> >>>>>> Cc: Randy Yu >>> >>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >>> >>>>>> >>> >>>>>> >>> >>>>>> SunPKCS#11 should be included by default in any java installation, also >>> >>>>>> in hava 6 so you should have it already. It's a matter of re-configuring >>> >>>>>> your CA tokens to use the PKCS#11 driver. I think it's described in the >>> >>>>>> doc/UPGRADE document. >>> >>>>>> >>> >>>>>> Regards, >>> >>>>>> Tomas >>> >>>>>> >>> >>>>>> >>> >>>>>> On 2018-05-30 19:23, Mehul Chhayani wrote: >>> >>>>>>> Hi Tomas, >>> >>>>>>> >>> >>>>>>> As you have said migrate to a PKCS#11 CA token means that >>> downloading sunpkcs11.jar file , copy into >>> jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am >>> wrong , can you advise me how to migrate a PKCS#11 CA token while >>> upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA >>> with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna >>> library with custom JKS keystore in Ejbca_4_0_16. >>> >>>>>>> >>> >>>>>>> >>> >>>>>>> ------- >>> >>>>>>> Thank you, >>> >>>>>>> Mehul Chhayani | Deployment Specialist >>> >>>>>>> chh...@ec... >>> >>>>>>> T:416-226-8600 EXT-246 >>> >>>>>>> >>> >>>>>>> >>> >>>>>>> -----Original Message----- >>> >>>>>>> From: Tomas Gustavsson [mailto:to...@pr...] >>> >>>>>>> Sent: Wednesday, May 30, 2018 12:23 PM >>> >>>>>>> To: Mehul Chhayani; ejb...@li... >>> >>>>>>> Cc: Randy Yu >>> >>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >>> >>>>>>> >>> >>>>>>> >>> >>>>>>> Hi, >>> >>>>>>> >>> >>>>>>> Sorry, I donät understand that question. Can you elaborate a little bit >>> >>>>>>> what you have done? >>> >>>>>>> >>> >>>>>>> In the previous answer, you should migrate to a PKCS#11 CA token, still >>> >>>>>>> in your EJBCA 4, before upgrading to EJBCA 6. >>> >>>>>>> >>> >>>>>>> Regards, >>> >>>>>>> Tomas >>> >>>>>>> >>> >>>>>>> On 2018-05-30 18:17, Mehul Chhayani wrote: >>> >>>>>>>> Hello Tomas, >>> >>>>>>>> >>> >>>>>>>> Its working on old ejbca-4.0.16 and we did not change any keystore >>> keys or catoken.properties file. But when we are hitting that giving >>> jsp error, can you please tell us what it is causing an error. Or We >>> should compile new ejbca with upgrade jboss or jdk. >>> >>>>>>>> >>> >>>>>>>> >>> >>>>>>>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30 >>> 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127 >>> >>>>>>>> 16:16:16,367 ERROR [jsp] >>> >>>>>>>> java.lang.NullPointerException >>> >>>>>>>> at >>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305) >>> >>>>>>>> at >>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259) >>> >>>>>>>> at >>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139) >>> >>>>>>>> at >>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192) >>> >>>>>>>> at >>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115) >>> >>>>>>>> at >>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86) >>> >>>>>>>> at >>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86) >>> >>>>>>>> at >>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136) >>> >>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>> >>>>>>>> at >>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>> >>>>>>>> at >>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>> >>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >>> >>>>>>>> at >>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >>> >>>>>>>> at >>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >>> >>>>>>>> at >>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >>> >>>>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown >>> Source) >>> >>>>>>>> at >>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>> >>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597) >>> >>>>>>>> at >>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>> at >>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) >>> >>>>>>>> at >>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>> at >>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) >>> >>>>>>>> at >>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>> at >>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>> at >>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>> at >>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>> at >>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>> at >>> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>> at >>> org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66) >>> >>>>>>>> at >>> org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>> at >>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>> at >>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>> at >>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>> at >>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>> at >>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>> at >>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>> at >>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67) >>> >>>>>>>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>> at >>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176) >>> >>>>>>>> at >>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216) >>> >>>>>>>> at >>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >>> >>>>>>>> at >>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >>> >>>>>>>> at >>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >>> >>>>>>>> at >>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >>> >>>>>>>> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source) >>> >>>>>>>> at >>> org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238) >>> >>>>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83) >>> >>>>>>>> at >>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70) >>> >>>>>>>> at >>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>> >>>>>>>> at >>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369) >>> >>>>>>>> at >>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322) >>> >>>>>>>> at >>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249) >>> >>>>>>>> at >>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>> >>>>>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) >>> >>>>>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> >>>>>>>> at >>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198) >>> >>>>>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>> >>>>>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> >>>>>>>> at >>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36) >>> >>>>>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>> >>>>>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> >>>>>>>> at >>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109) >>> >>>>>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>> >>>>>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> >>>>>>>> at >>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96) >>> >>>>>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>> >>>>>>>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> >>>>>>>> at >>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235) >>> >>>>>>>> at >>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191) >>> >>>>>>>> at >>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190) >>> >>>>>>>> at >>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433) >>> >>>>>>>> at >>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92) >>> >>>>>>>> at >>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126) >>> >>>>>>>> at >>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70) >>> >>>>>>>> at >>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) >>> >>>>>>>> at >>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) >>> >>>>>>>> at >>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158) >>> >>>>>>>> at >>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) >>> >>>>>>>> at >>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330) >>> >>>>>>>> at >>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829) >>> >>>>>>>> at >>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598) >>> >>>>>>>> at >>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447) >>> >>>>>>>> at java.lang.Thread.run(Thread.java:662) >>> >>>>>>>> >>> >>>>>>>> >>> >>>>>>>> >>> >>>>>>>> >>> >>>>>>>> ------- >>> >>>>>>>> Thank you, >>> >>>>>>>> Mehul Chhayani | Deployment Specialist >>> >>>>>>>> chh...@ec... >>> >>>>>>>> T:416-226-8600 EXT-246 >>> >>>>>>>> >>> >>>>>>>> -----Original Message----- >>> >>>>>>>> From: Tomas Gustavsson [mailto:to...@pr...] >>> >>>>>>>> Sent: Wednesday, May 30, 2018 3:15 AM >>> >>>>>>>> To: ejb...@li... >>> >>>>>>>> Cc: Randy Yu; Mehul Chhayani >>> >>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >>> >>>>>>>> >>> >>>>>>>> >>> >>>>>>>> Hi, >>> >>>>>>>> >>> >>>>>>>> The reason is that you are using an old Crypto Token type which is not >>> >>>>>>>> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken >>> >>>>>>>> is not valid anymore. You need to migrate to using the generic PKCS#11 >>> >>>>>>>> CA token. I think these are sections about this in the old >>> >>>>>>>> documentation. Sometime during EJBCA 4 we deprecated the old token >>> types >>> >>>>>>>> and recommended switching over to PKCS#11 tokens. >>> >>>>>>>> >>> >>>>>>>> Regards, >>> >>>>>>>> Tomas >>> >>>>>>>> --- >>> >>>>>>>> Save time and money with an Enterprise support subscription. >>> Please see >>> >>>>>>>> www.primekey.com for more information. >>> >>>>>>>> https://www.primekey.com/products/software/ >>> >>>>>>>> >>> >>>>>>>> On 2018-05-29 19:50, Mehul Chhayani wrote: >>> >>>>>>>>> Hello EJBCA Team, >>> >>>>>>>>> >>> >>>>>>>>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of >>> >>>>>>>>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done >>> successfully >>> >>>>>>>>> , no error while deploying through ANT-1.8.3.However when I started >>> >>>>>>>>> jboos with some following error that no token and ejbtimeout, at >>> the end >>> >>>>>>>>> jboss started successfully with some errors, You can access ejbca >>> UI but >>> >>>>>>>>> u cannot hit adminweb it complaining some jsp file with >>> >>>>>>>>> nullpointerexception. Can you please advise on that? If you want >>> I will >>> >>>>>>>>> provide full jboss log. Thanks in advance. >>> >>>>>>>>> >>> >>>>>>>>> *15:56:44,255 ERROR [CryptoTokenFactory] No token. >>> >>>>>>>>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken* >>> >>>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use >>> >>>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry >>> >>>>>>>>> should be used via the bean container >>> >>>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use >>> >>>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry >>> >>>>>>>>> should be used via the bean container >>> >>>>>>>>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout* >>> >>>>>>>>> *javax.ejb.EJBException: java.lang.NullPointerException* >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77) >>> >>>>>>>>> at >>> org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>>> at >>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >>> >>>>>>>>> at com.sun.proxy.$Proxy341.mergeCryptoToken(Unknown Source) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.cesecore.certificates.ca.CaSessionBean.getCa(CaSessionBean.java:671) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:531) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.cesecore.certificates.ca.CaSessionBean.getCAInfoInternal(CaSessionBean.java:334) >>> >>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native >>> Method) >>> >>>>>>>>> at >>> >>>>>>>>> >>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>> >>>>>>>>> at >>> >>>>>>>>> >>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>> >>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >>> >>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native >>> Method) >>> >>>>>>>>> at >>> >>>>>>>>> >>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>> >>>>>>>>> at >>> >>>>>>>>> >>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>> >>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_18362751.invoke(InvocationContextInterceptor_z_fillMethod_18362751.java) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_18362751.invoke(InvocationContextInterceptor_z_setup_18362751.java) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> >>>>>>>>> at >>> >>>>>>>>> >>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47) >>> >>>>>>>>> >>> >>>>>>>>> >>> >>>>>>>>> >>> >>>>>>>>> >>> >>>>>>>>> *17:40:47,957 INFO [Log4jDevice] 2018-05-29 >>> >>>>>>>>> >>> 17:40:47+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=**x.x.x.x* >>> >>>>>>>>> 17:40:48,090 ERROR [jsp] >>> >>>>>>>>> java.lang.NullPointerException >>> >>>>>>>>> >>> >>>>>>>>> >>> >>>>>>>>> >>> >>>>>>>>> >>> ------------------------------------------------------------------------------ >>> >>>>>>>>> Check out the vibrant tech community on one of the world's most >>> >>>>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot >>> >>>>>>>>> >>> >>>>>>>>> >>> >>>>>>>>> >>> >>>>>>>>> _______________________________________________ >>> >>>>>>>>> Ejbca-develop mailing list >>> >>>>>>>>> Ejb...@li... >>> >>>>>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>> >>>>>>>>> >>> >>>>>>>>> >>> >>>>>>>>> >>> >>>>>>>>> >>> ------------------------------------------------------------------------------ >>> >>>>>>>>> Check out the vibrant tech community on one of the world's most >>> >>>>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot >>> >>>>>>>>> >>> >>>>>>>>> >>> >>>>>>>>> _______________________________________________ >>> >>>>>>>>> Ejbca-develop mailing list >>> >>>>>>>>> Ejb...@li... >>> >>>>>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>> >>>> >>> >>>> >>> ------------------------------------------------------------------------------ >>> >>>> Check out the vibrant tech community on one of the world's most >>> >>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot >>> >>>> _______________________________________________ >>> >>>> Ejbca-develop mailing list >>> >>>> Ejb...@li... >>> >>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>> >>>> >>> ------------------------------------------------------------------------------ >>> >>>> Check out the vibrant tech community on one of the world's most >>> >>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot >>> >>>> _______________________________________________ >>> >>>> Ejbca-develop mailing list >>> >>>> Ejb...@li... >>> >>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>> >>>> >>> >>> ------------------------------------------------------------------------------ >>> >>> Check out the vibrant tech community on one of the world's most >>> >>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot >>> >>> _______________________________________________ >>> >>> Ejbca-develop mailing list >>> >>> Ejb...@li... >>> >>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>> >>> >>> >>> ------------------------------------------------------------------------------ >>> Check out the vibrant tech community on one of the world's most >>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot >>> >>> >>> >>> _______________________________________________ >>> Ejbca-develop mailing list >>> Ejb...@li... >>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>> >> ------------------------------------------------------------------------------ >> Check out the vibrant tech community on one of the world's most >> engaging tech sites, Slashdot.org! http://sdm.link/slashdot >> _______________________________________________ >> Ejbca-develop mailing list >> Ejb...@li... >> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >> ------------------------------------------------------------------------------ >> Check out the vibrant tech community on one of the world's most >> engaging tech sites, Slashdot.org! http://sdm.link/slashdot >> _______________________________________________ >> Ejbca-develop mailing list >> Ejb...@li... >> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >> > ------------------------------------------------------------------------------ > Check out the vibrant tech community on one of the world's most > engaging tech sites, Slashdot.org! http://sdm.link/slashdot > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > ------------------------------------------------------------------------------ > Check out the vibrant tech community on one of the world's most > engaging tech sites, Slashdot.org! http://sdm.link/slashdot > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
|
From: Mehul C. <chh...@ec...> - 2018-06-28 20:59:27
|
Hi Tomas,
I have mentioneing following steps while upgrade EJBCA-ce-6.3.2.6 from ejbca_4_0_16 on jboss-5.1.0.GA (old jboss).
ant clean
ant deployear
ant upgrade
ant post-upgrade
ant javatruststore
output says BUILD successfully that during upgrade.
-------
Thank you,
Mehul Chhayani | Deployment Specialist
chh...@ec...
T:416-226-8600 EXT-246
-----Original Message-----
From: Tomas Gustavsson [mailto:to...@pr...]
Sent: Thursday, June 28, 2018 5:19 AM
To: ejb...@li...
Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
Hi,
It looks like you are one step further. This is a new error.
During upgrade and post-upgrade you need to be monitoring for errors.
Perhaps your database privileges does not allow certain operations? So
that some needs to be done manually?
Logs will tell you what is going on.
The same with the error below. In the log you will have information
leading up to the error that tells you what is going on and why this
happens. It looks to me as you have some CA tokens which are of
non-standard type, or that was not upgraded properly in a previous step.
A previous upgrade step failing looks consistent with the previous error.
But the log will tell you what led up to the error you show, and why it
happens.
If you have documented your complete upgrade process, can you provide
the upgrade steps you perform? Which version, what command what output.
Regards,
Tomas
On 2018-06-27 21:30, Mehul Chhayani wrote:
> Hi Tomas,
>
> I did ant upgrade and ant post-upgrade on time of upgrading EJBCA, How do I get privileges for a CLI authentication token created, how do I know that is created in database or something during upgrade, I have updated tokenType to CertificateAuthenticationToken / X509CertificateAuthenticationToken in database and also droped manually CAID on AdminGroupData table which should be drop during upgrade, none of them are working, still getting below error.
>
>
> 19:23:10,107 ERROR [[/ejbca/adminweb]] Servlet /ejbca/adminweb threw load() exception
> java.lang.NullPointerException
> at org.cesecore.keys.token.CryptoTokenSessionBean.mergeCryptoToken(CryptoTokenSessionBean.java:131)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at java.lang.reflect.Method.invoke(Method.java:597)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at java.lang.reflect.Method.invoke(Method.java:597)
> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
> -------
> Thank you,
> Mehul Chhayani | Deployment Specialist
> chh...@ec...
> T:416-226-8600 EXT-246
>
>
> -----Original Message-----
> From: Tomas Gustavsson [mailto:to...@pr...]
> Sent: Wednesday, June 27, 2018 8:56 AM
> To: ejb...@li...
> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
> Did you run all ant upgrade and ant post-upgrades that are needed?
>
> You don't have a CLI authentication token created it seems, whcih should
> be created.
>
> For the SuperAdmin rows you can set tokenType to
> CertificateAuthenticationToken.
> The UNUSED rows you can delete.
>
> Regards,
> Tomas
>
>
> On 2018-06-25 22:24, Mehul Chhayani wrote:
>> Hello Tomas,
>>
>>
>>
>>
>>
>> I have checked tokentype=Null of every entity that mentioned
>> AdminEntityData table in database. What would be next step to overcome
>> that problem? See that following table
>>
>>
>>
>> Pk matchwith matchtype matchvalue adminroupdata_adminentities caif
>> rowversion rowprotection tokentype
>>
>> -401175635 8 1001 SuperAdmin
>> -1181650581 -1146543808 0
>>
>> 329358383 11 2003 UNUSED
>> -1290073541 0 0
>>
>> 329358381 11 2001 UNUSED
>> -1290073541 0 0
>>
>> 329358382 11 2002 UNUSED
>> -1290073541 0 0
>>
>> 329358376 11 2004 UNUSED
>> -1290073541 0 0
>>
>> -342399384 11 2000 UNUSED
>> 1399736916 -1146543808 0
>>
>> 2117404180 8 1001 SuperAdmin
>> -1181650581 764062969 0
>>
>>
>>
>>
>>
>> -------
>>
>> Thank you,
>>
>> Mehul Chhayani | Deployment Specialist
>>
>> chh...@ec...
>>
>> T:416-226-8600 EXT-246
>>
>>
>>
>>
>>
>> -----Original Message-----
>> From: Tomas Gustavsson [mailto:to...@pr...]
>> Sent: Monday, June 25, 2018 7:11 AM
>> To: ejb...@li...
>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>
>>
>>
>>
>> Hi,
>>
>>
>>
>> Can you check in your database. Things should move over to
>>
>> RoleMemberData during the migration. Can you check what "tokenType"s you
>>
>> have in RoleMemberData and AdminEntityData.
>>
>>
>>
>> Cheers,
>>
>> Tomas
>>
>>
>>
>>
>>
>> On 2018-06-21 21:43, Mehul Chhayani wrote:
>>
>>> Hi Thomas,
>>
>>>
>>
>>> I tried with this method , it did not worked with old jboss-5.0.1, its
>> complaining when I hit adminweb page, I am mentioning some server log,
>> can you please advise me ? I am not able to reset superadmin password
>> as well
>>
>>>
>>
>>> 2018-06-21 19:09:57,283 DEBUG [org.hibernate.pretty.Printer]
>> (http-0.0.0.0-8443-1) listing entities:
>>
>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.pretty.Printer]
>> (http-0.0.0.0-8443-1)
>> org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default,
>> rowProtection=null, rowVersion=2,
>> dataUnsafe=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}
>>
>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.jdbc.ConnectionManager]
>> (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
>>
>>> 2018-06-21 19:09:57,284 DEBUG
>> [org.jboss.jpa.deployment.ManagedEntityManagerFactory]
>> (http-0.0.0.0-8443-1) ************** closing entity managersession
>> **************
>>
>>> 2018-06-21 19:09:57,285 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.en.properties
>>
>>> 2018-06-21 19:09:57,293 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.bs.properties
>>
>>> 2018-06-21 19:09:57,320 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.de.properties
>>
>>> 2018-06-21 19:09:57,328 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.es.properties
>>
>>> 2018-06-21 19:09:57,332 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.fr.properties
>>
>>> 2018-06-21 19:09:57,345 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.it.properties
>>
>>> 2018-06-21 19:09:57,349 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.ja.properties
>>
>>> 2018-06-21 19:09:57,358 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.pt.properties
>>
>>> 2018-06-21 19:09:57,363 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.sv.properties
>>
>>> 2018-06-21 19:09:57,367 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.uk.properties
>>
>>> 2018-06-21 19:09:57,380 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.zh.properties
>>
>>> 2018-06-21 19:09:57,391 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
>>
>>> java.lang.NullPointerException
>>
>>> at
>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>
>>> at
>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>
>>> at
>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>
>>> at
>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>
>>> at
>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>
>>> at
>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>
>>> at
>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>
>>> at
>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>
>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>
>>> at
>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>
>>> at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>
>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>
>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>
>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>
>>> at
>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>
>>> at
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>
>>> at
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>
>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>>
>>> at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>
>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>
>>> at
>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>
>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>> at
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>
>>> at
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
>>
>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>> at
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>
>>> at
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
>>
>>>
>>
>>>
>>
>>> -------
>>
>>> Thank you,
>>
>>> Mehul Chhayani | Deployment Specialist
>>
>>> chh...@ec...
>>
>>> T:416-226-8600 EXT-246
>>
>>>
>>
>>> -----Original Message-----
>>
>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>
>>> Sent: Saturday, June 2, 2018 1:56 PM
>>
>>> To: ejb...@li...
>>
>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>>
>>
>>>
>>
>>> This one is due to JBoss not cleaning temp files properly every time.
>>
>>> It's a good habit to do this every time you deploy something new:
>>
>>> - rm -rf <jboss>/server/default/tmp
>>
>>> - rm -rf <jboss>/server/default/work
>>
>>>
>>
>>> Regards,
>>
>>> Tomas
>>
>>>
>>
>>>
>>
>>> On 2018-06-01 17:22, Mehul Chhayani wrote:
>>
>>>> Here I have attached members page of the roles in EJBCA-4, if you
>> find that information useful, I am also getting new error while I am
>> hitting adminweb page EJBCA-6.3.2.6 from local network. I have checked
>> firewall rules and access-list. No ip's are blocking there. I am
>> providing new error below , please take a look.
>>
>>>>
>>
>>>> 15:22:13,243 ERROR [[jsp]] Servlet.service() for servlet jsp threw
>> exception
>>
>>>> java.lang.NoClassDefFoundError:
>> org/ejbca/core/model/authorization/AuthorizationDeniedException
>>
>>>> at
>> org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:115)
>>
>>>> at
>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>
>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>
>>>> at
>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>
>>>> at
>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>
>>>> at
>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>
>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>> at
>> org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:638)
>>
>>>> at
>> org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:444)
>>
>>>> at
>> org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:382)
>>
>>>> at
>> org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:310)
>>
>>>> at
>> org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:696)
>>
>>>> at
>> org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:667)
>>
>>>> at
>> org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:808)
>>
>>>> at
>> org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:781)
>>
>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:143)
>>
>>>> at
>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>
>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>
>>>> at
>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>
>>>> at
>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>
>>>> at
>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>
>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>> at
>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>> at
>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>> at
>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>> at
>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>> at
>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>
>>>> at
>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>
>>>> at
>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>
>>>> at
>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>
>>>> at
>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>
>>>> at
>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>
>>>> at
>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>
>>>> at
>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>
>>>> at
>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>
>>>> at
>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>
>>>> at
>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>
>>>> at
>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>
>>>> at
>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>
>>>> at
>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>
>>>> at
>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>
>>>> at java.lang.Thread.run(Thread.java:662)
>>
>>>>
>>
>>>> -------
>>
>>>> Thank you,
>>
>>>> Mehul Chhayani | Deployment Specialist
>>
>>>> chh...@ec...
>>
>>>> T:416-226-8600 EXT-246
>>
>>>>
>>
>>>>
>>
>>>> -----Original Message-----
>>
>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>
>>>> Sent: Friday, June 1, 2018 9:53 AM
>>
>>>> To: Mehul Chhayani; ejb...@li...
>>
>>>> Cc: Randy Yu
>>
>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>>>
>>
>>>>
>>
>>>> Hi, thanks for the info.
>>
>>>>
>>
>>>> What does your roles looks like in EJBCA 4? Is it possible to show
>>
>>>> screenshots of the members page of the roles? It seems to be related to
>>
>>>> this.
>>
>>>>
>>
>>>> Regards,
>>
>>>> Tomas
>>
>>>>
>>
>>>> On 2018-05-31 15:55, Mehul Chhayani wrote:
>>
>>>>> Hello Tomas,
>>
>>>>>
>>
>>>>> We can configure and migrate PKCS#11 after upgrading EJBCA-6236 ,
>> what issue is after successfully upgrading EJBCA-6236, we cannot get
>> adminweb page for ejbca and complaining nullpointerexception and it's
>> also not giving much information on that.can you please advise on that?
>>
>>>>>
>>
>>>>> -------
>>
>>>>> Thank you,
>>
>>>>> Mehul Chhayani | Deployment Specialist
>>
>>>>> chh...@ec...
>>
>>>>> T:416-226-8600 EXT-246
>>
>>>>>
>>
>>>>>
>>
>>>>> -----Original Message-----
>>
>>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>
>>>>> Sent: Wednesday, May 30, 2018 1:34 PM
>>
>>>>> To: Mehul Chhayani; ejb...@li...
>>
>>>>> Cc: Randy Yu
>>
>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>>>>
>>
>>>>>
>>
>>>>> SunPKCS#11 should be included by default in any java installation, also
>>
>>>>> in hava 6 so you should have it already. It's a matter of re-configuring
>>
>>>>> your CA tokens to use the PKCS#11 driver. I think it's described in the
>>
>>>>> doc/UPGRADE document.
>>
>>>>>
>>
>>>>> Regards,
>>
>>>>> Tomas
>>
>>>>>
>>
>>>>>
>>
>>>>> On 2018-05-30 19:23, Mehul Chhayani wrote:
>>
>>>>>> Hi Tomas,
>>
>>>>>>
>>
>>>>>> As you have said migrate to a PKCS#11 CA token means that
>> downloading sunpkcs11.jar file , copy into
>> jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am
>> wrong , can you advise me how to migrate a PKCS#11 CA token while
>> upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA
>> with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna
>> library with custom JKS keystore in Ejbca_4_0_16.
>>
>>>>>>
>>
>>>>>>
>>
>>>>>> -------
>>
>>>>>> Thank you,
>>
>>>>>> Mehul Chhayani | Deployment Specialist
>>
>>>>>> chh...@ec...
>>
>>>>>> T:416-226-8600 EXT-246
>>
>>>>>>
>>
>>>>>>
>>
>>>>>> -----Original Message-----
>>
>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>
>>>>>> Sent: Wednesday, May 30, 2018 12:23 PM
>>
>>>>>> To: Mehul Chhayani; ejb...@li...
>>
>>>>>> Cc: Randy Yu
>>
>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>>>>>
>>
>>>>>>
>>
>>>>>> Hi,
>>
>>>>>>
>>
>>>>>> Sorry, I donät understand that question. Can you elaborate a little bit
>>
>>>>>> what you have done?
>>
>>>>>>
>>
>>>>>> In the previous answer, you should migrate to a PKCS#11 CA token, still
>>
>>>>>> in your EJBCA 4, before upgrading to EJBCA 6.
>>
>>>>>>
>>
>>>>>> Regards,
>>
>>>>>> Tomas
>>
>>>>>>
>>
>>>>>> On 2018-05-30 18:17, Mehul Chhayani wrote:
>>
>>>>>>> Hello Tomas,
>>
>>>>>>>
>>
>>>>>>> Its working on old ejbca-4.0.16 and we did not change any keystore
>> keys or catoken.properties file. But when we are hitting that giving
>> jsp error, can you please tell us what it is causing an error. Or We
>> should compile new ejbca with upgrade jboss or jdk.
>>
>>>>>>>
>>
>>>>>>>
>>
>>>>>>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30
>> 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127
>>
>>>>>>> 16:16:16,367 ERROR [jsp]
>>
>>>>>>> java.lang.NullPointerException
>>
>>>>>>> at
>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>
>>>>>>> at
>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>
>>>>>>> at
>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>
>>>>>>> at
>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>
>>>>>>> at
>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>
>>>>>>> at
>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>
>>>>>>> at
>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>
>>>>>>> at
>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>
>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>
>>>>>>> at
>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>
>>>>>>> at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>
>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>
>>>>>>> at
>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>
>>>>>>> at
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>
>>>>>>> at
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>
>>>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown
>> Source)
>>
>>>>>>> at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>
>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>
>>>>>>> at
>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>
>>>>>>> at
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>
>>>>>>> at
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66)
>>
>>>>>>> at
>> org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>
>>>>>>> at
>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>
>>>>>>> at
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>
>>>>>>> at
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>
>>>>>>> at
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>
>>>>>>> at
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>
>>>>>>> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source)
>>
>>>>>>> at
>> org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238)
>>
>>>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83)
>>
>>>>>>> at
>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>
>>>>>>> at
>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>
>>>>>>> at
>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>
>>>>>>> at
>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>
>>>>>>> at
>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>
>>>>>>> at
>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>>>>> at
>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>>>>> at
>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>>>>> at
>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>>>>> at
>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>>>>> at
>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>
>>>>>>> at
>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>
>>>>>>> at
>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>
>>>>>>> at
>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>
>>>>>>> at
>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>
>>>>>>> at
>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>
>>>>>>> at
>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>
>>>>>>> at
>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>
>>>>>>> at
>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>
>>>>>>> at
>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>
>>>>>>> at
>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>
>>>>>>> at
>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>
>>>>>>> at
>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>
>>>>>>> at
>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>
>>>>>>> at
>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>
>>>>>>> at java.lang.Thread.run(Thread.java:662)
>>
>>>>>>>
>>
>>>>>>>
>>
>>>>>>>
>>
>>>>>>>
>>
>>>>>>> -------
>>
>>>>>>> Thank you,
>>
>>>>>>> Mehul Chhayani | Deployment Specialist
>>
>>>>>>> chh...@ec...
>>
>>>>>>> T:416-226-8600 EXT-246
>>
>>>>>>>
>>
>>>>>>> -----Original Message-----
>>
>>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>
>>>>>>> Sent: Wednesday, May 30, 2018 3:15 AM
>>
>>>>>>> To: ejb...@li...
>>
>>>>>>> Cc: Randy Yu; Mehul Chhayani
>>
>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>>>>>>
>>
>>>>>>>
>>
>>>>>>> Hi,
>>
>>>>>>>
>>
>>>>>>> The reason is that you are using an old Crypto Token type which is not
>>
>>>>>>> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken
>>
>>>>>>> is not valid anymore. You need to migrate to using the generic PKCS#11
>>
>>>>>>> CA token. I think these are sections about this in the old
>>
>>>>>>> documentation. Sometime during EJBCA 4 we deprecated the old token
>> types
>>
>>>>>>> and recommended switching over to PKCS#11 tokens.
>>
>>>>>>>
>>
>>>>>>> Regards,
>>
>>>>>>> Tomas
>>
>>>>>>> ---
>>
>>>>>>> Save time and money with an Enterprise support subscription.
>> Please see
>>
>>>>>>> www.primekey.com for more information.
>>
>>>>>>> https://www.primekey.com/products/software/
>>
>>>>>>>
>>
>>>>>>> On 2018-05-29 19:50, Mehul Chhayani wrote:
>>
>>>>>>>> Hello EJBCA Team,
>>
>>>>>>>>
>>
>>>>>>>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of
>>
>>>>>>>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done
>> successfully
>>
>>>>>>>> , no error while deploying through ANT-1.8.3.However when I started
>>
>>>>>>>> jboos with some following error that no token and ejbtimeout, at
>> the end
>>
>>>>>>>> jboss started successfully with some errors, You can access ejbca
>> UI but
>>
>>>>>>>> u cannot hit adminweb it complaining some jsp file with
>>
>>>>>>>> nullpointerexception. Can you please advise on that? If you want
>> I will
>>
>>>>>>>> provide full jboss log. Thanks in advance.
>>
>>>>>>>>
>>
>>>>>>>> *15:56:44,255 ERROR [CryptoTokenFactory] No token.
>>
>>>>>>>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken*
>>
>>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>
>>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>
>>>>>>>> should be used via the bean container
>>
>>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>
>>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>
>>>>>>>> should be used via the bean container
>>
>>>>>>>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout*
>>
>>>>>>>> *javax.ejb.EJBException: java.lang.NullPointerException*
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
>>
>>>>>>>> at
>> org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>
>>>>>>>> at com.sun.proxy.$Proxy341.mergeCryptoToken(Unknown Source)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.cesecore.certificates.ca.CaSessionBean.getCa(CaSessionBean.java:671)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:531)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.cesecore.certificates.ca.CaSessionBean.getCAInfoInternal(CaSessionBean.java:334)
>>
>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native
>> Method)
>>
>>>>>>>> at
>>
>>>>>>>>
>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>
>>>>>>>> at
>>
>>>>>>>>
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>
>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>
>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native
>> Method)
>>
>>>>>>>> at
>>
>>>>>>>>
>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>
>>>>>>>> at
>>
>>>>>>>>
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>
>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_18362751.invoke(InvocationContextInterceptor_z_fillMethod_18362751.java)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_18362751.invoke(InvocationContextInterceptor_z_setup_18362751.java)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>> *17:40:47,957 INFO [Log4jDevice] 2018-05-29
>>
>>>>>>>>
>> 17:40:47+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=**x.x.x.x*
>>
>>>>>>>> 17:40:48,090 ERROR [jsp]
>>
>>>>>>>> java.lang.NullPointerException
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>>
>> ------------------------------------------------------------------------------
>>
>>>>>>>> Check out the vibrant tech community on one of the world's most
>>
>>>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>> _______________________________________________
>>
>>>>>>>> Ejbca-develop mailing list
>>
>>>>>>>> Ejb...@li...
>>
>>>>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>>
>> ------------------------------------------------------------------------------
>>
>>>>>>>> Check out the vibrant tech community on one of the world's most
>>
>>>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>> _______________________________________________
>>
>>>>>>>> Ejbca-develop mailing list
>>
>>>>>>>> Ejb...@li...
>>
>>>>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>
>>>
>>
>>>
>> ------------------------------------------------------------------------------
>>
>>> Check out the vibrant tech community on one of the world's most
>>
>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>
>>> _______________________________________________
>>
>>> Ejbca-develop mailing list
>>
>>> Ejb...@li...
>>
>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>
>>>
>> ------------------------------------------------------------------------------
>>
>>> Check out the vibrant tech community on one of the world's most
>>
>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>
>>> _______________________________________________
>>
>>> Ejbca-develop mailing list
>>
>>> Ejb...@li...
>>
>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>
>>>
>>
>> ------------------------------------------------------------------------------
>>
>> Check out the vibrant tech community on one of the world's most
>>
>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>
>> _______________________________________________
>>
>> Ejbca-develop mailing list
>>
>> Ejb...@li...
>>
>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>
>>
>>
>> ------------------------------------------------------------------------------
>> Check out the vibrant tech community on one of the world's most
>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>
>>
>>
>> _______________________________________________
>> Ejbca-develop mailing list
>> Ejb...@li...
>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>
> ------------------------------------------------------------------------------
> Check out the vibrant tech community on one of the world's most
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
> _______________________________________________
> Ejbca-develop mailing list
> Ejb...@li...
> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
> ------------------------------------------------------------------------------
> Check out the vibrant tech community on one of the world's most
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
> _______________________________________________
> Ejbca-develop mailing list
> Ejb...@li...
> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Ejbca-develop mailing list
Ejb...@li...
https://lists.sourceforge.net/lists/listinfo/ejbca-develop
|
|
From: Tomas G. <to...@pr...> - 2018-06-28 09:54:13
|
* * *Invitation to PrimeKey Tech Days 2018* 18 - 19 September, Stockholm Sweden We are happy to invite you to PrimeKey Tech Days 2018! PrimeKey Tech Days is our two day tech event featuring speakers in PKI, Crypto, Open Source, eIDAS, Digital Signing and many other interesting topics in IT-Security. https://www.primekey.com/tech-days/ *Join us and listen to distinguished speakers from:* - Google - Ericsson - Legion of the Bouncy Castle - Utimaco - DarkMatter - Siemens - InfoSec Global - Nimbus Technologieberatung GmbH - PrimeKey - ...and more *Develop both your skills and your network* PrimeKey Tech Days is a great chance to learn about what's new in the field, to get inspiration and to network with some of the best PKI, Crypto and IT-Security from around the globe. This is a hard core tech event, so you'll meet engineers, PKI experts, Solution Architects, Developers, and many more skilled IT-Security professionals from all types of companies and organizations. * * *Dinner and boat ride* The agenda on Tuesday includes an evening boat tour of scenic Stockholm, followed by dinner at Fotografiska with a spectacular view of the Stockholm seaside. Fotografiska has recently been awarded “The world’s best museum restaurant”. This evening activity is a great chance for you to expand your network, not only with PrimeKey but with IT-Security professionals from all over the globe. We look forward to seeing you in Stockholm! For continous updates, new speakers and more; follow us on LinkedIn and Twitter. https://www.linkedin.com/company/primekey-solutions-ab https://www.twitter.com/primekeyPKI! <https://www.twitter.com/primekeyPKI%21> We hope to see you in September! / The PrimeKey team Read more and Sign up: https://www.primekey.com/tech-days/ See the event film: https://youtu.be/lNK-w4uKs-E Best regards, *Tomas Gustavsson * -- PrimeKey *Follow PrimeKey* *https://www.linkedin.com/company/primekey-solutions-ab* https://www.twitter.com/primekeyPKI Find PrimeKey on AWS <https://aws.amazon.com/marketplace/seller-profile?id=7edf9048-58e6-4086-9d98-b8e0c1d78fce&ref=dtl_B078PLGJWL> |
|
From: Tomas G. <to...@pr...> - 2018-06-28 09:18:46
|
Hi,
It looks like you are one step further. This is a new error.
During upgrade and post-upgrade you need to be monitoring for errors.
Perhaps your database privileges does not allow certain operations? So
that some needs to be done manually?
Logs will tell you what is going on.
The same with the error below. In the log you will have information
leading up to the error that tells you what is going on and why this
happens. It looks to me as you have some CA tokens which are of
non-standard type, or that was not upgraded properly in a previous step.
A previous upgrade step failing looks consistent with the previous error.
But the log will tell you what led up to the error you show, and why it
happens.
If you have documented your complete upgrade process, can you provide
the upgrade steps you perform? Which version, what command what output.
Regards,
Tomas
On 2018-06-27 21:30, Mehul Chhayani wrote:
> Hi Tomas,
>
> I did ant upgrade and ant post-upgrade on time of upgrading EJBCA, How do I get privileges for a CLI authentication token created, how do I know that is created in database or something during upgrade, I have updated tokenType to CertificateAuthenticationToken / X509CertificateAuthenticationToken in database and also droped manually CAID on AdminGroupData table which should be drop during upgrade, none of them are working, still getting below error.
>
>
> 19:23:10,107 ERROR [[/ejbca/adminweb]] Servlet /ejbca/adminweb threw load() exception
> java.lang.NullPointerException
> at org.cesecore.keys.token.CryptoTokenSessionBean.mergeCryptoToken(CryptoTokenSessionBean.java:131)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at java.lang.reflect.Method.invoke(Method.java:597)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at java.lang.reflect.Method.invoke(Method.java:597)
> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
> -------
> Thank you,
> Mehul Chhayani | Deployment Specialist
> chh...@ec...
> T:416-226-8600 EXT-246
>
>
> -----Original Message-----
> From: Tomas Gustavsson [mailto:to...@pr...]
> Sent: Wednesday, June 27, 2018 8:56 AM
> To: ejb...@li...
> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
> Did you run all ant upgrade and ant post-upgrades that are needed?
>
> You don't have a CLI authentication token created it seems, whcih should
> be created.
>
> For the SuperAdmin rows you can set tokenType to
> CertificateAuthenticationToken.
> The UNUSED rows you can delete.
>
> Regards,
> Tomas
>
>
> On 2018-06-25 22:24, Mehul Chhayani wrote:
>> Hello Tomas,
>>
>>
>>
>>
>>
>> I have checked tokentype=Null of every entity that mentioned
>> AdminEntityData table in database. What would be next step to overcome
>> that problem? See that following table
>>
>>
>>
>> Pk matchwith matchtype matchvalue adminroupdata_adminentities caif
>> rowversion rowprotection tokentype
>>
>> -401175635 8 1001 SuperAdmin
>> -1181650581 -1146543808 0
>>
>> 329358383 11 2003 UNUSED
>> -1290073541 0 0
>>
>> 329358381 11 2001 UNUSED
>> -1290073541 0 0
>>
>> 329358382 11 2002 UNUSED
>> -1290073541 0 0
>>
>> 329358376 11 2004 UNUSED
>> -1290073541 0 0
>>
>> -342399384 11 2000 UNUSED
>> 1399736916 -1146543808 0
>>
>> 2117404180 8 1001 SuperAdmin
>> -1181650581 764062969 0
>>
>>
>>
>>
>>
>> -------
>>
>> Thank you,
>>
>> Mehul Chhayani | Deployment Specialist
>>
>> chh...@ec...
>>
>> T:416-226-8600 EXT-246
>>
>>
>>
>>
>>
>> -----Original Message-----
>> From: Tomas Gustavsson [mailto:to...@pr...]
>> Sent: Monday, June 25, 2018 7:11 AM
>> To: ejb...@li...
>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>
>>
>>
>>
>> Hi,
>>
>>
>>
>> Can you check in your database. Things should move over to
>>
>> RoleMemberData during the migration. Can you check what "tokenType"s you
>>
>> have in RoleMemberData and AdminEntityData.
>>
>>
>>
>> Cheers,
>>
>> Tomas
>>
>>
>>
>>
>>
>> On 2018-06-21 21:43, Mehul Chhayani wrote:
>>
>>> Hi Thomas,
>>
>>>
>>
>>> I tried with this method , it did not worked with old jboss-5.0.1, its
>> complaining when I hit adminweb page, I am mentioning some server log,
>> can you please advise me ? I am not able to reset superadmin password
>> as well
>>
>>>
>>
>>> 2018-06-21 19:09:57,283 DEBUG [org.hibernate.pretty.Printer]
>> (http-0.0.0.0-8443-1) listing entities:
>>
>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.pretty.Printer]
>> (http-0.0.0.0-8443-1)
>> org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default,
>> rowProtection=null, rowVersion=2,
>> dataUnsafe=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}
>>
>>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.jdbc.ConnectionManager]
>> (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
>>
>>> 2018-06-21 19:09:57,284 DEBUG
>> [org.jboss.jpa.deployment.ManagedEntityManagerFactory]
>> (http-0.0.0.0-8443-1) ************** closing entity managersession
>> **************
>>
>>> 2018-06-21 19:09:57,285 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.en.properties
>>
>>> 2018-06-21 19:09:57,293 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.bs.properties
>>
>>> 2018-06-21 19:09:57,320 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.de.properties
>>
>>> 2018-06-21 19:09:57,328 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.es.properties
>>
>>> 2018-06-21 19:09:57,332 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.fr.properties
>>
>>> 2018-06-21 19:09:57,345 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.it.properties
>>
>>> 2018-06-21 19:09:57,349 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.ja.properties
>>
>>> 2018-06-21 19:09:57,358 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.pt.properties
>>
>>> 2018-06-21 19:09:57,363 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.sv.properties
>>
>>> 2018-06-21 19:09:57,367 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.uk.properties
>>
>>> 2018-06-21 19:09:57,380 DEBUG
>> [org.ejbca.ui.web.admin.configuration.WebLanguages]
>> (http-0.0.0.0-8443-1) Loading language from file:
>> /languages/languagefile.zh.properties
>>
>>> 2018-06-21 19:09:57,391 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
>>
>>> java.lang.NullPointerException
>>
>>> at
>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>
>>> at
>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>
>>> at
>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>
>>> at
>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>
>>> at
>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>
>>> at
>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>
>>> at
>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>
>>> at
>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>
>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>
>>> at
>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>
>>> at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>
>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>
>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>
>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>
>>> at
>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>
>>> at
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>
>>> at
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>
>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>>
>>> at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>
>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>
>>> at
>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>
>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>> at
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>
>>> at
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
>>
>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>> at
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>
>>> at
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
>>
>>>
>>
>>>
>>
>>> -------
>>
>>> Thank you,
>>
>>> Mehul Chhayani | Deployment Specialist
>>
>>> chh...@ec...
>>
>>> T:416-226-8600 EXT-246
>>
>>>
>>
>>> -----Original Message-----
>>
>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>
>>> Sent: Saturday, June 2, 2018 1:56 PM
>>
>>> To: ejb...@li...
>>
>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>>
>>
>>>
>>
>>> This one is due to JBoss not cleaning temp files properly every time.
>>
>>> It's a good habit to do this every time you deploy something new:
>>
>>> - rm -rf <jboss>/server/default/tmp
>>
>>> - rm -rf <jboss>/server/default/work
>>
>>>
>>
>>> Regards,
>>
>>> Tomas
>>
>>>
>>
>>>
>>
>>> On 2018-06-01 17:22, Mehul Chhayani wrote:
>>
>>>> Here I have attached members page of the roles in EJBCA-4, if you
>> find that information useful, I am also getting new error while I am
>> hitting adminweb page EJBCA-6.3.2.6 from local network. I have checked
>> firewall rules and access-list. No ip's are blocking there. I am
>> providing new error below , please take a look.
>>
>>>>
>>
>>>> 15:22:13,243 ERROR [[jsp]] Servlet.service() for servlet jsp threw
>> exception
>>
>>>> java.lang.NoClassDefFoundError:
>> org/ejbca/core/model/authorization/AuthorizationDeniedException
>>
>>>> at
>> org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:115)
>>
>>>> at
>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>
>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>
>>>> at
>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>
>>>> at
>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>
>>>> at
>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>
>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>> at
>> org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:638)
>>
>>>> at
>> org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:444)
>>
>>>> at
>> org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:382)
>>
>>>> at
>> org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:310)
>>
>>>> at
>> org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:696)
>>
>>>> at
>> org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:667)
>>
>>>> at
>> org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:808)
>>
>>>> at
>> org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:781)
>>
>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:143)
>>
>>>> at
>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>
>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>
>>>> at
>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>
>>>> at
>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>
>>>> at
>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>
>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>> at
>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>> at
>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>> at
>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>> at
>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>
>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>> at
>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>
>>>> at
>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>
>>>> at
>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>
>>>> at
>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>
>>>> at
>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>
>>>> at
>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>
>>>> at
>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>
>>>> at
>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>
>>>> at
>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>
>>>> at
>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>
>>>> at
>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>
>>>> at
>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>
>>>> at
>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>
>>>> at
>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>
>>>> at
>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>
>>>> at java.lang.Thread.run(Thread.java:662)
>>
>>>>
>>
>>>> -------
>>
>>>> Thank you,
>>
>>>> Mehul Chhayani | Deployment Specialist
>>
>>>> chh...@ec...
>>
>>>> T:416-226-8600 EXT-246
>>
>>>>
>>
>>>>
>>
>>>> -----Original Message-----
>>
>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>
>>>> Sent: Friday, June 1, 2018 9:53 AM
>>
>>>> To: Mehul Chhayani; ejb...@li...
>>
>>>> Cc: Randy Yu
>>
>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>>>
>>
>>>>
>>
>>>> Hi, thanks for the info.
>>
>>>>
>>
>>>> What does your roles looks like in EJBCA 4? Is it possible to show
>>
>>>> screenshots of the members page of the roles? It seems to be related to
>>
>>>> this.
>>
>>>>
>>
>>>> Regards,
>>
>>>> Tomas
>>
>>>>
>>
>>>> On 2018-05-31 15:55, Mehul Chhayani wrote:
>>
>>>>> Hello Tomas,
>>
>>>>>
>>
>>>>> We can configure and migrate PKCS#11 after upgrading EJBCA-6236 ,
>> what issue is after successfully upgrading EJBCA-6236, we cannot get
>> adminweb page for ejbca and complaining nullpointerexception and it's
>> also not giving much information on that.can you please advise on that?
>>
>>>>>
>>
>>>>> -------
>>
>>>>> Thank you,
>>
>>>>> Mehul Chhayani | Deployment Specialist
>>
>>>>> chh...@ec...
>>
>>>>> T:416-226-8600 EXT-246
>>
>>>>>
>>
>>>>>
>>
>>>>> -----Original Message-----
>>
>>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>
>>>>> Sent: Wednesday, May 30, 2018 1:34 PM
>>
>>>>> To: Mehul Chhayani; ejb...@li...
>>
>>>>> Cc: Randy Yu
>>
>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>>>>
>>
>>>>>
>>
>>>>> SunPKCS#11 should be included by default in any java installation, also
>>
>>>>> in hava 6 so you should have it already. It's a matter of re-configuring
>>
>>>>> your CA tokens to use the PKCS#11 driver. I think it's described in the
>>
>>>>> doc/UPGRADE document.
>>
>>>>>
>>
>>>>> Regards,
>>
>>>>> Tomas
>>
>>>>>
>>
>>>>>
>>
>>>>> On 2018-05-30 19:23, Mehul Chhayani wrote:
>>
>>>>>> Hi Tomas,
>>
>>>>>>
>>
>>>>>> As you have said migrate to a PKCS#11 CA token means that
>> downloading sunpkcs11.jar file , copy into
>> jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am
>> wrong , can you advise me how to migrate a PKCS#11 CA token while
>> upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA
>> with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna
>> library with custom JKS keystore in Ejbca_4_0_16.
>>
>>>>>>
>>
>>>>>>
>>
>>>>>> -------
>>
>>>>>> Thank you,
>>
>>>>>> Mehul Chhayani | Deployment Specialist
>>
>>>>>> chh...@ec...
>>
>>>>>> T:416-226-8600 EXT-246
>>
>>>>>>
>>
>>>>>>
>>
>>>>>> -----Original Message-----
>>
>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>
>>>>>> Sent: Wednesday, May 30, 2018 12:23 PM
>>
>>>>>> To: Mehul Chhayani; ejb...@li...
>>
>>>>>> Cc: Randy Yu
>>
>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>>>>>
>>
>>>>>>
>>
>>>>>> Hi,
>>
>>>>>>
>>
>>>>>> Sorry, I donät understand that question. Can you elaborate a little bit
>>
>>>>>> what you have done?
>>
>>>>>>
>>
>>>>>> In the previous answer, you should migrate to a PKCS#11 CA token, still
>>
>>>>>> in your EJBCA 4, before upgrading to EJBCA 6.
>>
>>>>>>
>>
>>>>>> Regards,
>>
>>>>>> Tomas
>>
>>>>>>
>>
>>>>>> On 2018-05-30 18:17, Mehul Chhayani wrote:
>>
>>>>>>> Hello Tomas,
>>
>>>>>>>
>>
>>>>>>> Its working on old ejbca-4.0.16 and we did not change any keystore
>> keys or catoken.properties file. But when we are hitting that giving
>> jsp error, can you please tell us what it is causing an error. Or We
>> should compile new ejbca with upgrade jboss or jdk.
>>
>>>>>>>
>>
>>>>>>>
>>
>>>>>>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30
>> 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127
>>
>>>>>>> 16:16:16,367 ERROR [jsp]
>>
>>>>>>> java.lang.NullPointerException
>>
>>>>>>> at
>> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>
>>>>>>> at
>> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>
>>>>>>> at
>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>
>>>>>>> at
>> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>
>>>>>>> at
>> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>
>>>>>>> at
>> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>
>>>>>>> at
>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>
>>>>>>> at
>> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>
>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>
>>>>>>> at
>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>
>>>>>>> at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>
>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>
>>>>>>> at
>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>
>>>>>>> at
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>
>>>>>>> at
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>
>>>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown
>> Source)
>>
>>>>>>> at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>
>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>
>>>>>>> at
>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>
>>>>>>> at
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>
>>>>>>> at
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66)
>>
>>>>>>> at
>> org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>
>>>>>>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>> at
>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>
>>>>>>> at
>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>
>>>>>>> at
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>
>>>>>>> at
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>
>>>>>>> at
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>
>>>>>>> at
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>
>>>>>>> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source)
>>
>>>>>>> at
>> org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238)
>>
>>>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83)
>>
>>>>>>> at
>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>
>>>>>>> at
>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>
>>>>>>> at
>> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>
>>>>>>> at
>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>
>>>>>>> at
>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>
>>>>>>> at
>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>>>>> at
>> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>>>>> at
>> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>>>>> at
>> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>>>>> at
>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>
>>>>>>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>
>>>>>>> at
>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>
>>>>>>> at
>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>
>>>>>>> at
>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>
>>>>>>> at
>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>
>>>>>>> at
>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>
>>>>>>> at
>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>
>>>>>>> at
>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>
>>>>>>> at
>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>
>>>>>>> at
>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>
>>>>>>> at
>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>
>>>>>>> at
>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>
>>>>>>> at
>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>
>>>>>>> at
>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>
>>>>>>> at
>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>
>>>>>>> at
>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>
>>>>>>> at java.lang.Thread.run(Thread.java:662)
>>
>>>>>>>
>>
>>>>>>>
>>
>>>>>>>
>>
>>>>>>>
>>
>>>>>>> -------
>>
>>>>>>> Thank you,
>>
>>>>>>> Mehul Chhayani | Deployment Specialist
>>
>>>>>>> chh...@ec...
>>
>>>>>>> T:416-226-8600 EXT-246
>>
>>>>>>>
>>
>>>>>>> -----Original Message-----
>>
>>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>
>>>>>>> Sent: Wednesday, May 30, 2018 3:15 AM
>>
>>>>>>> To: ejb...@li...
>>
>>>>>>> Cc: Randy Yu; Mehul Chhayani
>>
>>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>>>>>>
>>
>>>>>>>
>>
>>>>>>> Hi,
>>
>>>>>>>
>>
>>>>>>> The reason is that you are using an old Crypto Token type which is not
>>
>>>>>>> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken
>>
>>>>>>> is not valid anymore. You need to migrate to using the generic PKCS#11
>>
>>>>>>> CA token. I think these are sections about this in the old
>>
>>>>>>> documentation. Sometime during EJBCA 4 we deprecated the old token
>> types
>>
>>>>>>> and recommended switching over to PKCS#11 tokens.
>>
>>>>>>>
>>
>>>>>>> Regards,
>>
>>>>>>> Tomas
>>
>>>>>>> ---
>>
>>>>>>> Save time and money with an Enterprise support subscription.
>> Please see
>>
>>>>>>> www.primekey.com for more information.
>>
>>>>>>> https://www.primekey.com/products/software/
>>
>>>>>>>
>>
>>>>>>> On 2018-05-29 19:50, Mehul Chhayani wrote:
>>
>>>>>>>> Hello EJBCA Team,
>>
>>>>>>>>
>>
>>>>>>>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of
>>
>>>>>>>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done
>> successfully
>>
>>>>>>>> , no error while deploying through ANT-1.8.3.However when I started
>>
>>>>>>>> jboos with some following error that no token and ejbtimeout, at
>> the end
>>
>>>>>>>> jboss started successfully with some errors, You can access ejbca
>> UI but
>>
>>>>>>>> u cannot hit adminweb it complaining some jsp file with
>>
>>>>>>>> nullpointerexception. Can you please advise on that? If you want
>> I will
>>
>>>>>>>> provide full jboss log. Thanks in advance.
>>
>>>>>>>>
>>
>>>>>>>> *15:56:44,255 ERROR [CryptoTokenFactory] No token.
>>
>>>>>>>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken*
>>
>>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>
>>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>
>>>>>>>> should be used via the bean container
>>
>>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>
>>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>
>>>>>>>> should be used via the bean container
>>
>>>>>>>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout*
>>
>>>>>>>> *javax.ejb.EJBException: java.lang.NullPointerException*
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
>>
>>>>>>>> at
>> org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>
>>>>>>>> at com.sun.proxy.$Proxy341.mergeCryptoToken(Unknown Source)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.cesecore.certificates.ca.CaSessionBean.getCa(CaSessionBean.java:671)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:531)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.cesecore.certificates.ca.CaSessionBean.getCAInfoInternal(CaSessionBean.java:334)
>>
>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native
>> Method)
>>
>>>>>>>> at
>>
>>>>>>>>
>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>
>>>>>>>> at
>>
>>>>>>>>
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>
>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>
>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native
>> Method)
>>
>>>>>>>> at
>>
>>>>>>>>
>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>
>>>>>>>> at
>>
>>>>>>>>
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>
>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_18362751.invoke(InvocationContextInterceptor_z_fillMethod_18362751.java)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_18362751.invoke(InvocationContextInterceptor_z_setup_18362751.java)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>
>>>>>>>> at
>>
>>>>>>>>
>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>> *17:40:47,957 INFO [Log4jDevice] 2018-05-29
>>
>>>>>>>>
>> 17:40:47+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=**x.x.x.x*
>>
>>>>>>>> 17:40:48,090 ERROR [jsp]
>>
>>>>>>>> java.lang.NullPointerException
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>>
>> ------------------------------------------------------------------------------
>>
>>>>>>>> Check out the vibrant tech community on one of the world's most
>>
>>>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>> _______________________________________________
>>
>>>>>>>> Ejbca-develop mailing list
>>
>>>>>>>> Ejb...@li...
>>
>>>>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>>
>> ------------------------------------------------------------------------------
>>
>>>>>>>> Check out the vibrant tech community on one of the world's most
>>
>>>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>
>>>>>>>>
>>
>>>>>>>>
>>
>>>>>>>> _______________________________________________
>>
>>>>>>>> Ejbca-develop mailing list
>>
>>>>>>>> Ejb...@li...
>>
>>>>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>
>>>
>>
>>>
>> ------------------------------------------------------------------------------
>>
>>> Check out the vibrant tech community on one of the world's most
>>
>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>
>>> _______________________________________________
>>
>>> Ejbca-develop mailing list
>>
>>> Ejb...@li...
>>
>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>
>>>
>> ------------------------------------------------------------------------------
>>
>>> Check out the vibrant tech community on one of the world's most
>>
>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>
>>> _______________________________________________
>>
>>> Ejbca-develop mailing list
>>
>>> Ejb...@li...
>>
>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>
>>>
>>
>> ------------------------------------------------------------------------------
>>
>> Check out the vibrant tech community on one of the world's most
>>
>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>
>> _______________________________________________
>>
>> Ejbca-develop mailing list
>>
>> Ejb...@li...
>>
>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>
>>
>>
>> ------------------------------------------------------------------------------
>> Check out the vibrant tech community on one of the world's most
>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>
>>
>>
>> _______________________________________________
>> Ejbca-develop mailing list
>> Ejb...@li...
>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>
> ------------------------------------------------------------------------------
> Check out the vibrant tech community on one of the world's most
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
> _______________________________________________
> Ejbca-develop mailing list
> Ejb...@li...
> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
> ------------------------------------------------------------------------------
> Check out the vibrant tech community on one of the world's most
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
> _______________________________________________
> Ejbca-develop mailing list
> Ejb...@li...
> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
|
|
From: Mehul C. <chh...@ec...> - 2018-06-27 19:31:14
|
Hi Tomas,
I did ant upgrade and ant post-upgrade on time of upgrading EJBCA, How do I get privileges for a CLI authentication token created, how do I know that is created in database or something during upgrade, I have updated tokenType to CertificateAuthenticationToken / X509CertificateAuthenticationToken in database and also droped manually CAID on AdminGroupData table which should be drop during upgrade, none of them are working, still getting below error.
19:23:10,107 ERROR [[/ejbca/adminweb]] Servlet /ejbca/adminweb threw load() exception
java.lang.NullPointerException
at org.cesecore.keys.token.CryptoTokenSessionBean.mergeCryptoToken(CryptoTokenSessionBean.java:131)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
-------
Thank you,
Mehul Chhayani | Deployment Specialist
chh...@ec...
T:416-226-8600 EXT-246
-----Original Message-----
From: Tomas Gustavsson [mailto:to...@pr...]
Sent: Wednesday, June 27, 2018 8:56 AM
To: ejb...@li...
Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
Did you run all ant upgrade and ant post-upgrades that are needed?
You don't have a CLI authentication token created it seems, whcih should
be created.
For the SuperAdmin rows you can set tokenType to
CertificateAuthenticationToken.
The UNUSED rows you can delete.
Regards,
Tomas
On 2018-06-25 22:24, Mehul Chhayani wrote:
> Hello Tomas,
>
>
>
>
>
> I have checked tokentype=Null of every entity that mentioned
> AdminEntityData table in database. What would be next step to overcome
> that problem? See that following table
>
>
>
> Pk matchwith matchtype matchvalue adminroupdata_adminentities caif
> rowversion rowprotection tokentype
>
> -401175635 8 1001 SuperAdmin
> -1181650581 -1146543808 0
>
> 329358383 11 2003 UNUSED
> -1290073541 0 0
>
> 329358381 11 2001 UNUSED
> -1290073541 0 0
>
> 329358382 11 2002 UNUSED
> -1290073541 0 0
>
> 329358376 11 2004 UNUSED
> -1290073541 0 0
>
> -342399384 11 2000 UNUSED
> 1399736916 -1146543808 0
>
> 2117404180 8 1001 SuperAdmin
> -1181650581 764062969 0
>
>
>
>
>
> -------
>
> Thank you,
>
> Mehul Chhayani | Deployment Specialist
>
> chh...@ec...
>
> T:416-226-8600 EXT-246
>
>
>
>
>
> -----Original Message-----
> From: Tomas Gustavsson [mailto:to...@pr...]
> Sent: Monday, June 25, 2018 7:11 AM
> To: ejb...@li...
> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>
>
>
>
> Hi,
>
>
>
> Can you check in your database. Things should move over to
>
> RoleMemberData during the migration. Can you check what "tokenType"s you
>
> have in RoleMemberData and AdminEntityData.
>
>
>
> Cheers,
>
> Tomas
>
>
>
>
>
> On 2018-06-21 21:43, Mehul Chhayani wrote:
>
>> Hi Thomas,
>
>>
>
>> I tried with this method , it did not worked with old jboss-5.0.1, its
> complaining when I hit adminweb page, I am mentioning some server log,
> can you please advise me ? I am not able to reset superadmin password
> as well
>
>>
>
>> 2018-06-21 19:09:57,283 DEBUG [org.hibernate.pretty.Printer]
> (http-0.0.0.0-8443-1) listing entities:
>
>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.pretty.Printer]
> (http-0.0.0.0-8443-1)
> org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default,
> rowProtection=null, rowVersion=2,
> dataUnsafe=2c6d8085f3f28091eae1f6e1aef5f4e9ecaec8e1f3e8cde1f085875a414396e051838082c6808aecefe1e4c6e1e3f4eff2c98089f4e8f2e5f3e8efece4f8f0bfc080808080808cf788808080908080808bf4808ee5eef4f2e9e5f3f0e5f2f0e1e7e5f3f28091eae1f6e1aeece1eee7aec9eef4e5e7e5f292622024770107b8828081c98085f6e1ecf5e5f8f28090eae1f6e1aeece1eee7aecef5ede2e5f2062c159d8b14600b828080f8f080808099f48090f0f2e5e6e5f2e5e4ece1eee7f5e1e7e5f3f180fe808380808080f48091ecefe7e5eef4f2e9e5f3f0e5f2f0e1e7e5f3f180fe808380808099f4808eece1f3f4e6e9ecf4e5f2edefe4e5f3f180fe808380808080f48091ece1f3f4ecefe7e6e9ecf4e5f2edefe4e5f3f180fe808380808080f48085f4e8e5ede5f4808de4e5e6e1f5ecf4dff4e8e5ede5f48091f3e5e3efeee4e1f2f9ece1eee7f5e1e7e5f3f180fe808380808080f4808bece1f3f4f0f2efe6e9ece5f3f180fe808380808080f48091e6f2efeef4f0e1e7e5e3e1f3f4e1f4f5f3f3f28091eae1f6e1aeece1eee7aec2efefece5e1ee4da0f200551c7a6e828081da8085f6e1ecf5e5f8f081f48093e6f2efeef4f0e1e7e5f0f5e2f1f3f4e1f4f5f3f180fe8096f48087f6e5f2f3e9efeef3f2808feae1f6e1aeece1eee7aec6ecefe1f45a6d49225bbc706c828081c68085f6e1ecf5e5f8f180fe8084bf008080f8}
>
>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.jdbc.ConnectionManager]
> (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
>
>> 2018-06-21 19:09:57,284 DEBUG
> [org.jboss.jpa.deployment.ManagedEntityManagerFactory]
> (http-0.0.0.0-8443-1) ************** closing entity managersession
> **************
>
>> 2018-06-21 19:09:57,285 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.en.properties
>
>> 2018-06-21 19:09:57,293 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.bs.properties
>
>> 2018-06-21 19:09:57,320 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.de.properties
>
>> 2018-06-21 19:09:57,328 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.es.properties
>
>> 2018-06-21 19:09:57,332 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.fr.properties
>
>> 2018-06-21 19:09:57,345 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.it.properties
>
>> 2018-06-21 19:09:57,349 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.ja.properties
>
>> 2018-06-21 19:09:57,358 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.pt.properties
>
>> 2018-06-21 19:09:57,363 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.sv.properties
>
>> 2018-06-21 19:09:57,367 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.uk.properties
>
>> 2018-06-21 19:09:57,380 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.zh.properties
>
>> 2018-06-21 19:09:57,391 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
>
>> java.lang.NullPointerException
>
>> at
> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>
>> at
> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>
>> at
> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>
>> at
> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>
>> at
> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>
>> at
> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>
>> at
> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>
>> at
> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>
>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>
>> at
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>
>> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>
>> at java.lang.reflect.Method.invoke(Method.java:597)
>
>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>
>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>
>> at
> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>
>> at
> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>
>> at
> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>
>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>
>> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>
>> at java.lang.reflect.Method.invoke(Method.java:597)
>
>> at
> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>
>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>> at
> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>
>> at
> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
>
>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>> at
> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>
>> at
> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
>
>>
>
>>
>
>> -------
>
>> Thank you,
>
>> Mehul Chhayani | Deployment Specialist
>
>> chh...@ec...
>
>> T:416-226-8600 EXT-246
>
>>
>
>> -----Original Message-----
>
>> From: Tomas Gustavsson [mailto:to...@pr...]
>
>> Sent: Saturday, June 2, 2018 1:56 PM
>
>> To: ejb...@li...
>
>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>>
>
>>
>
>> This one is due to JBoss not cleaning temp files properly every time.
>
>> It's a good habit to do this every time you deploy something new:
>
>> - rm -rf <jboss>/server/default/tmp
>
>> - rm -rf <jboss>/server/default/work
>
>>
>
>> Regards,
>
>> Tomas
>
>>
>
>>
>
>> On 2018-06-01 17:22, Mehul Chhayani wrote:
>
>>> Here I have attached members page of the roles in EJBCA-4, if you
> find that information useful, I am also getting new error while I am
> hitting adminweb page EJBCA-6.3.2.6 from local network. I have checked
> firewall rules and access-list. No ip's are blocking there. I am
> providing new error below , please take a look.
>
>>>
>
>>> 15:22:13,243 ERROR [[jsp]] Servlet.service() for servlet jsp threw
> exception
>
>>> java.lang.NoClassDefFoundError:
> org/ejbca/core/model/authorization/AuthorizationDeniedException
>
>>> at
> org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:115)
>
>>> at
> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>
>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>
>>> at
> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>
>>> at
> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>
>>> at
> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>
>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>> at
> org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:638)
>
>>> at
> org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:444)
>
>>> at
> org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:382)
>
>>> at
> org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:310)
>
>>> at
> org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:696)
>
>>> at
> org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:667)
>
>>> at
> org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:808)
>
>>> at
> org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:781)
>
>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:143)
>
>>> at
> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>
>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>
>>> at
> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>
>>> at
> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>
>>> at
> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>
>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>> at
> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>> at
> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>> at
> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>> at
> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>> at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>
>>> at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>
>>> at
> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>
>>> at
> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>
>>> at
> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>
>>> at
> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>
>>> at
> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>
>>> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>
>>> at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>
>>> at
> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>
>>> at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>
>>> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>
>>> at
> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>
>>> at
> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>
>>> at
> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>
>>> at java.lang.Thread.run(Thread.java:662)
>
>>>
>
>>> -------
>
>>> Thank you,
>
>>> Mehul Chhayani | Deployment Specialist
>
>>> chh...@ec...
>
>>> T:416-226-8600 EXT-246
>
>>>
>
>>>
>
>>> -----Original Message-----
>
>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>
>>> Sent: Friday, June 1, 2018 9:53 AM
>
>>> To: Mehul Chhayani; ejb...@li...
>
>>> Cc: Randy Yu
>
>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>>>
>
>>>
>
>>> Hi, thanks for the info.
>
>>>
>
>>> What does your roles looks like in EJBCA 4? Is it possible to show
>
>>> screenshots of the members page of the roles? It seems to be related to
>
>>> this.
>
>>>
>
>>> Regards,
>
>>> Tomas
>
>>>
>
>>> On 2018-05-31 15:55, Mehul Chhayani wrote:
>
>>>> Hello Tomas,
>
>>>>
>
>>>> We can configure and migrate PKCS#11 after upgrading EJBCA-6236 ,
> what issue is after successfully upgrading EJBCA-6236, we cannot get
> adminweb page for ejbca and complaining nullpointerexception and it's
> also not giving much information on that.can you please advise on that?
>
>>>>
>
>>>> -------
>
>>>> Thank you,
>
>>>> Mehul Chhayani | Deployment Specialist
>
>>>> chh...@ec...
>
>>>> T:416-226-8600 EXT-246
>
>>>>
>
>>>>
>
>>>> -----Original Message-----
>
>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>
>>>> Sent: Wednesday, May 30, 2018 1:34 PM
>
>>>> To: Mehul Chhayani; ejb...@li...
>
>>>> Cc: Randy Yu
>
>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>>>>
>
>>>>
>
>>>> SunPKCS#11 should be included by default in any java installation, also
>
>>>> in hava 6 so you should have it already. It's a matter of re-configuring
>
>>>> your CA tokens to use the PKCS#11 driver. I think it's described in the
>
>>>> doc/UPGRADE document.
>
>>>>
>
>>>> Regards,
>
>>>> Tomas
>
>>>>
>
>>>>
>
>>>> On 2018-05-30 19:23, Mehul Chhayani wrote:
>
>>>>> Hi Tomas,
>
>>>>>
>
>>>>> As you have said migrate to a PKCS#11 CA token means that
> downloading sunpkcs11.jar file , copy into
> jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am
> wrong , can you advise me how to migrate a PKCS#11 CA token while
> upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA
> with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna
> library with custom JKS keystore in Ejbca_4_0_16.
>
>>>>>
>
>>>>>
>
>>>>> -------
>
>>>>> Thank you,
>
>>>>> Mehul Chhayani | Deployment Specialist
>
>>>>> chh...@ec...
>
>>>>> T:416-226-8600 EXT-246
>
>>>>>
>
>>>>>
>
>>>>> -----Original Message-----
>
>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>
>>>>> Sent: Wednesday, May 30, 2018 12:23 PM
>
>>>>> To: Mehul Chhayani; ejb...@li...
>
>>>>> Cc: Randy Yu
>
>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>>>>>
>
>>>>>
>
>>>>> Hi,
>
>>>>>
>
>>>>> Sorry, I donät understand that question. Can you elaborate a little bit
>
>>>>> what you have done?
>
>>>>>
>
>>>>> In the previous answer, you should migrate to a PKCS#11 CA token, still
>
>>>>> in your EJBCA 4, before upgrading to EJBCA 6.
>
>>>>>
>
>>>>> Regards,
>
>>>>> Tomas
>
>>>>>
>
>>>>> On 2018-05-30 18:17, Mehul Chhayani wrote:
>
>>>>>> Hello Tomas,
>
>>>>>>
>
>>>>>> Its working on old ejbca-4.0.16 and we did not change any keystore
> keys or catoken.properties file. But when we are hitting that giving
> jsp error, can you please tell us what it is causing an error. Or We
> should compile new ejbca with upgrade jboss or jdk.
>
>>>>>>
>
>>>>>>
>
>>>>>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30
> 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127
>
>>>>>> 16:16:16,367 ERROR [jsp]
>
>>>>>> java.lang.NullPointerException
>
>>>>>> at
> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>
>>>>>> at
> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>
>>>>>> at
> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>
>>>>>> at
> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>
>>>>>> at
> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>
>>>>>> at
> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>
>>>>>> at
> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>
>>>>>> at
> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>
>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>
>>>>>> at
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>
>>>>>> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>
>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>
>>>>>> at
> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>
>>>>>> at
> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>
>>>>>> at
> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>
>>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown
> Source)
>
>>>>>> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>
>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>
>>>>>> at
> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>
>>>>>> at
> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>
>>>>>> at
> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66)
>
>>>>>> at
> org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>
>>>>>> at
> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>
>>>>>> at
> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>
>>>>>> at
> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>
>>>>>> at
> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>
>>>>>> at
> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>
>>>>>> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source)
>
>>>>>> at
> org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238)
>
>>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83)
>
>>>>>> at
> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>
>>>>>> at
> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>
>>>>>> at
> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>
>>>>>> at
> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>
>>>>>> at
> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>
>>>>>> at
> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>>>>> at
> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>>>>> at
> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>>>>> at
> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>>>>> at
> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>>>>> at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>
>>>>>> at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>
>>>>>> at
> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>
>>>>>> at
> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>
>>>>>> at
> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>
>>>>>> at
> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>
>>>>>> at
> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>
>>>>>> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>
>>>>>> at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>
>>>>>> at
> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>
>>>>>> at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>
>>>>>> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>
>>>>>> at
> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>
>>>>>> at
> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>
>>>>>> at
> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>
>>>>>> at java.lang.Thread.run(Thread.java:662)
>
>>>>>>
>
>>>>>>
>
>>>>>>
>
>>>>>>
>
>>>>>> -------
>
>>>>>> Thank you,
>
>>>>>> Mehul Chhayani | Deployment Specialist
>
>>>>>> chh...@ec...
>
>>>>>> T:416-226-8600 EXT-246
>
>>>>>>
>
>>>>>> -----Original Message-----
>
>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>
>>>>>> Sent: Wednesday, May 30, 2018 3:15 AM
>
>>>>>> To: ejb...@li...
>
>>>>>> Cc: Randy Yu; Mehul Chhayani
>
>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>>>>>>
>
>>>>>>
>
>>>>>> Hi,
>
>>>>>>
>
>>>>>> The reason is that you are using an old Crypto Token type which is not
>
>>>>>> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken
>
>>>>>> is not valid anymore. You need to migrate to using the generic PKCS#11
>
>>>>>> CA token. I think these are sections about this in the old
>
>>>>>> documentation. Sometime during EJBCA 4 we deprecated the old token
> types
>
>>>>>> and recommended switching over to PKCS#11 tokens.
>
>>>>>>
>
>>>>>> Regards,
>
>>>>>> Tomas
>
>>>>>> ---
>
>>>>>> Save time and money with an Enterprise support subscription.
> Please see
>
>>>>>> www.primekey.com for more information.
>
>>>>>> https://www.primekey.com/products/software/
>
>>>>>>
>
>>>>>> On 2018-05-29 19:50, Mehul Chhayani wrote:
>
>>>>>>> Hello EJBCA Team,
>
>>>>>>>
>
>>>>>>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of
>
>>>>>>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done
> successfully
>
>>>>>>> , no error while deploying through ANT-1.8.3.However when I started
>
>>>>>>> jboos with some following error that no token and ejbtimeout, at
> the end
>
>>>>>>> jboss started successfully with some errors, You can access ejbca
> UI but
>
>>>>>>> u cannot hit adminweb it complaining some jsp file with
>
>>>>>>> nullpointerexception. Can you please advise on that? If you want
> I will
>
>>>>>>> provide full jboss log. Thanks in advance.
>
>>>>>>>
>
>>>>>>> *15:56:44,255 ERROR [CryptoTokenFactory] No token.
>
>>>>>>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken*
>
>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>
>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>
>>>>>>> should be used via the bean container
>
>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>
>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>
>>>>>>> should be used via the bean container
>
>>>>>>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout*
>
>>>>>>> *javax.ejb.EJBException: java.lang.NullPointerException*
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
>
>>>>>>> at
> org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>
>>>>>>> at com.sun.proxy.$Proxy341.mergeCryptoToken(Unknown Source)
>
>>>>>>> at
>
>>>>>>>
> org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821)
>
>>>>>>> at
>
>>>>>>>
> org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721)
>
>>>>>>> at
>
>>>>>>>
> org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586)
>
>>>>>>> at
>
>>>>>>>
> org.cesecore.certificates.ca.CaSessionBean.getCa(CaSessionBean.java:671)
>
>>>>>>> at
>
>>>>>>>
> org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:531)
>
>>>>>>> at
>
>>>>>>>
> org.cesecore.certificates.ca.CaSessionBean.getCAInfoInternal(CaSessionBean.java:334)
>
>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native
> Method)
>
>>>>>>> at
>
>>>>>>>
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>
>>>>>>> at
>
>>>>>>>
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>
>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>
>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native
> Method)
>
>>>>>>> at
>
>>>>>>>
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>
>>>>>>> at
>
>>>>>>>
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>
>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_18362751.invoke(InvocationContextInterceptor_z_fillMethod_18362751.java)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_18362751.invoke(InvocationContextInterceptor_z_setup_18362751.java)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>
>>>>>>>
>
>>>>>>>
>
>>>>>>>
>
>>>>>>>
>
>>>>>>> *17:40:47,957 INFO [Log4jDevice] 2018-05-29
>
>>>>>>>
> 17:40:47+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=**x.x.x.x*
>
>>>>>>> 17:40:48,090 ERROR [jsp]
>
>>>>>>> java.lang.NullPointerException
>
>>>>>>>
>
>>>>>>>
>
>>>>>>>
>
>>>>>>>
> ------------------------------------------------------------------------------
>
>>>>>>> Check out the vibrant tech community on one of the world's most
>
>>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>
>>>>>>>
>
>>>>>>>
>
>>>>>>>
>
>>>>>>> _______________________________________________
>
>>>>>>> Ejbca-develop mailing list
>
>>>>>>> Ejb...@li...
>
>>>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
>>>>>>>
>
>>>>>>>
>
>>>>>>>
>
>>>>>>>
> ------------------------------------------------------------------------------
>
>>>>>>> Check out the vibrant tech community on one of the world's most
>
>>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>
>>>>>>>
>
>>>>>>>
>
>>>>>>> _______________________________________________
>
>>>>>>> Ejbca-develop mailing list
>
>>>>>>> Ejb...@li...
>
>>>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
>>
>
>>
> ------------------------------------------------------------------------------
>
>> Check out the vibrant tech community on one of the world's most
>
>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>
>> _______________________________________________
>
>> Ejbca-develop mailing list
>
>> Ejb...@li...
>
>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
>>
> ------------------------------------------------------------------------------
>
>> Check out the vibrant tech community on one of the world's most
>
>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>
>> _______________________________________________
>
>> Ejbca-develop mailing list
>
>> Ejb...@li...
>
>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
>>
>
> ------------------------------------------------------------------------------
>
> Check out the vibrant tech community on one of the world's most
>
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>
> _______________________________________________
>
> Ejbca-develop mailing list
>
> Ejb...@li...
>
> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
>
>
> ------------------------------------------------------------------------------
> Check out the vibrant tech community on one of the world's most
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>
>
>
> _______________________________________________
> Ejbca-develop mailing list
> Ejb...@li...
> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Ejbca-develop mailing list
Ejb...@li...
https://lists.sourceforge.net/lists/listinfo/ejbca-develop
|
|
From: Tomas G. <to...@pr...> - 2018-06-27 12:55:53
|
Did you run all ant upgrade and ant post-upgrades that are needed?
You don't have a CLI authentication token created it seems, whcih should
be created.
For the SuperAdmin rows you can set tokenType to
CertificateAuthenticationToken.
The UNUSED rows you can delete.
Regards,
Tomas
On 2018-06-25 22:24, Mehul Chhayani wrote:
> Hello Tomas,
>
>
>
>
>
> I have checked tokentype=Null of every entity that mentioned
> AdminEntityData table in database. What would be next step to overcome
> that problem? See that following table
>
>
>
> Pk matchwith matchtype matchvalue adminroupdata_adminentities caif
> rowversion rowprotection tokentype
>
> -401175635 8 1001 SuperAdmin
> -1181650581 -1146543808 0
>
> 329358383 11 2003 UNUSED
> -1290073541 0 0
>
> 329358381 11 2001 UNUSED
> -1290073541 0 0
>
> 329358382 11 2002 UNUSED
> -1290073541 0 0
>
> 329358376 11 2004 UNUSED
> -1290073541 0 0
>
> -342399384 11 2000 UNUSED
> 1399736916 -1146543808 0
>
> 2117404180 8 1001 SuperAdmin
> -1181650581 764062969 0
>
>
>
>
>
> -------
>
> Thank you,
>
> Mehul Chhayani | Deployment Specialist
>
> chh...@ec...
>
> T:416-226-8600 EXT-246
>
>
>
>
>
> -----Original Message-----
> From: Tomas Gustavsson [mailto:to...@pr...]
> Sent: Monday, June 25, 2018 7:11 AM
> To: ejb...@li...
> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>
>
>
>
> Hi,
>
>
>
> Can you check in your database. Things should move over to
>
> RoleMemberData during the migration. Can you check what "tokenType"s you
>
> have in RoleMemberData and AdminEntityData.
>
>
>
> Cheers,
>
> Tomas
>
>
>
>
>
> On 2018-06-21 21:43, Mehul Chhayani wrote:
>
>> Hi Thomas,
>
>>
>
>> I tried with this method , it did not worked with old jboss-5.0.1, its
> complaining when I hit adminweb page, I am mentioning some server log,
> can you please advise me ? I am not able to reset superadmin password
> as well
>
>>
>
>> 2018-06-21 19:09:57,283 DEBUG [org.hibernate.pretty.Printer]
> (http-0.0.0.0-8443-1) listing entities:
>
>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.pretty.Printer]
> (http-0.0.0.0-8443-1)
> org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default,
> rowProtection=null, rowVersion=2,
> dataUnsafe=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}
>
>> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.jdbc.ConnectionManager]
> (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
>
>> 2018-06-21 19:09:57,284 DEBUG
> [org.jboss.jpa.deployment.ManagedEntityManagerFactory]
> (http-0.0.0.0-8443-1) ************** closing entity managersession
> **************
>
>> 2018-06-21 19:09:57,285 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.en.properties
>
>> 2018-06-21 19:09:57,293 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.bs.properties
>
>> 2018-06-21 19:09:57,320 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.de.properties
>
>> 2018-06-21 19:09:57,328 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.es.properties
>
>> 2018-06-21 19:09:57,332 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.fr.properties
>
>> 2018-06-21 19:09:57,345 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.it.properties
>
>> 2018-06-21 19:09:57,349 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.ja.properties
>
>> 2018-06-21 19:09:57,358 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.pt.properties
>
>> 2018-06-21 19:09:57,363 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.sv.properties
>
>> 2018-06-21 19:09:57,367 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.uk.properties
>
>> 2018-06-21 19:09:57,380 DEBUG
> [org.ejbca.ui.web.admin.configuration.WebLanguages]
> (http-0.0.0.0-8443-1) Loading language from file:
> /languages/languagefile.zh.properties
>
>> 2018-06-21 19:09:57,391 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
>
>> java.lang.NullPointerException
>
>> at
> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>
>> at
> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>
>> at
> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>
>> at
> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>
>> at
> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>
>> at
> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>
>> at
> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>
>> at
> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>
>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>
>> at
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>
>> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>
>> at java.lang.reflect.Method.invoke(Method.java:597)
>
>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>
>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>
>> at
> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>
>> at
> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>
>> at
> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>
>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>
>> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>
>> at java.lang.reflect.Method.invoke(Method.java:597)
>
>> at
> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>
>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>> at
> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>
>> at
> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
>
>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>> at
> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>
>> at
> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
>
>>
>
>>
>
>> -------
>
>> Thank you,
>
>> Mehul Chhayani | Deployment Specialist
>
>> chh...@ec...
>
>> T:416-226-8600 EXT-246
>
>>
>
>> -----Original Message-----
>
>> From: Tomas Gustavsson [mailto:to...@pr...]
>
>> Sent: Saturday, June 2, 2018 1:56 PM
>
>> To: ejb...@li...
>
>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>>
>
>>
>
>> This one is due to JBoss not cleaning temp files properly every time.
>
>> It's a good habit to do this every time you deploy something new:
>
>> - rm -rf <jboss>/server/default/tmp
>
>> - rm -rf <jboss>/server/default/work
>
>>
>
>> Regards,
>
>> Tomas
>
>>
>
>>
>
>> On 2018-06-01 17:22, Mehul Chhayani wrote:
>
>>> Here I have attached members page of the roles in EJBCA-4, if you
> find that information useful, I am also getting new error while I am
> hitting adminweb page EJBCA-6.3.2.6 from local network. I have checked
> firewall rules and access-list. No ip's are blocking there. I am
> providing new error below , please take a look.
>
>>>
>
>>> 15:22:13,243 ERROR [[jsp]] Servlet.service() for servlet jsp threw
> exception
>
>>> java.lang.NoClassDefFoundError:
> org/ejbca/core/model/authorization/AuthorizationDeniedException
>
>>> at
> org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:115)
>
>>> at
> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>
>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>
>>> at
> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>
>>> at
> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>
>>> at
> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>
>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>> at
> org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:638)
>
>>> at
> org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:444)
>
>>> at
> org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:382)
>
>>> at
> org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:310)
>
>>> at
> org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:696)
>
>>> at
> org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:667)
>
>>> at
> org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:808)
>
>>> at
> org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:781)
>
>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:143)
>
>>> at
> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>
>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>
>>> at
> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>
>>> at
> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>
>>> at
> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>
>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>> at
> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>> at
> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>> at
> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>> at
> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>
>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>> at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>
>>> at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>
>>> at
> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>
>>> at
> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>
>>> at
> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>
>>> at
> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>
>>> at
> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>
>>> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>
>>> at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>
>>> at
> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>
>>> at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>
>>> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>
>>> at
> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>
>>> at
> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>
>>> at
> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>
>>> at java.lang.Thread.run(Thread.java:662)
>
>>>
>
>>> -------
>
>>> Thank you,
>
>>> Mehul Chhayani | Deployment Specialist
>
>>> chh...@ec...
>
>>> T:416-226-8600 EXT-246
>
>>>
>
>>>
>
>>> -----Original Message-----
>
>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>
>>> Sent: Friday, June 1, 2018 9:53 AM
>
>>> To: Mehul Chhayani; ejb...@li...
>
>>> Cc: Randy Yu
>
>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>>>
>
>>>
>
>>> Hi, thanks for the info.
>
>>>
>
>>> What does your roles looks like in EJBCA 4? Is it possible to show
>
>>> screenshots of the members page of the roles? It seems to be related to
>
>>> this.
>
>>>
>
>>> Regards,
>
>>> Tomas
>
>>>
>
>>> On 2018-05-31 15:55, Mehul Chhayani wrote:
>
>>>> Hello Tomas,
>
>>>>
>
>>>> We can configure and migrate PKCS#11 after upgrading EJBCA-6236 ,
> what issue is after successfully upgrading EJBCA-6236, we cannot get
> adminweb page for ejbca and complaining nullpointerexception and it's
> also not giving much information on that.can you please advise on that?
>
>>>>
>
>>>> -------
>
>>>> Thank you,
>
>>>> Mehul Chhayani | Deployment Specialist
>
>>>> chh...@ec...
>
>>>> T:416-226-8600 EXT-246
>
>>>>
>
>>>>
>
>>>> -----Original Message-----
>
>>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>
>>>> Sent: Wednesday, May 30, 2018 1:34 PM
>
>>>> To: Mehul Chhayani; ejb...@li...
>
>>>> Cc: Randy Yu
>
>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>>>>
>
>>>>
>
>>>> SunPKCS#11 should be included by default in any java installation, also
>
>>>> in hava 6 so you should have it already. It's a matter of re-configuring
>
>>>> your CA tokens to use the PKCS#11 driver. I think it's described in the
>
>>>> doc/UPGRADE document.
>
>>>>
>
>>>> Regards,
>
>>>> Tomas
>
>>>>
>
>>>>
>
>>>> On 2018-05-30 19:23, Mehul Chhayani wrote:
>
>>>>> Hi Tomas,
>
>>>>>
>
>>>>> As you have said migrate to a PKCS#11 CA token means that
> downloading sunpkcs11.jar file , copy into
> jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am
> wrong , can you advise me how to migrate a PKCS#11 CA token while
> upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA
> with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna
> library with custom JKS keystore in Ejbca_4_0_16.
>
>>>>>
>
>>>>>
>
>>>>> -------
>
>>>>> Thank you,
>
>>>>> Mehul Chhayani | Deployment Specialist
>
>>>>> chh...@ec...
>
>>>>> T:416-226-8600 EXT-246
>
>>>>>
>
>>>>>
>
>>>>> -----Original Message-----
>
>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>
>>>>> Sent: Wednesday, May 30, 2018 12:23 PM
>
>>>>> To: Mehul Chhayani; ejb...@li...
>
>>>>> Cc: Randy Yu
>
>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>>>>>
>
>>>>>
>
>>>>> Hi,
>
>>>>>
>
>>>>> Sorry, I donät understand that question. Can you elaborate a little bit
>
>>>>> what you have done?
>
>>>>>
>
>>>>> In the previous answer, you should migrate to a PKCS#11 CA token, still
>
>>>>> in your EJBCA 4, before upgrading to EJBCA 6.
>
>>>>>
>
>>>>> Regards,
>
>>>>> Tomas
>
>>>>>
>
>>>>> On 2018-05-30 18:17, Mehul Chhayani wrote:
>
>>>>>> Hello Tomas,
>
>>>>>>
>
>>>>>> Its working on old ejbca-4.0.16 and we did not change any keystore
> keys or catoken.properties file. But when we are hitting that giving
> jsp error, can you please tell us what it is causing an error. Or We
> should compile new ejbca with upgrade jboss or jdk.
>
>>>>>>
>
>>>>>>
>
>>>>>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30
> 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127
>
>>>>>> 16:16:16,367 ERROR [jsp]
>
>>>>>> java.lang.NullPointerException
>
>>>>>> at
> org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>
>>>>>> at
> org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>
>>>>>> at
> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>
>>>>>> at
> org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>
>>>>>> at
> org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>
>>>>>> at
> org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>
>>>>>> at
> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>
>>>>>> at
> org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>
>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>
>>>>>> at
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>
>>>>>> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>
>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>
>>>>>> at
> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>
>>>>>> at
> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>
>>>>>> at
> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>
>>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown
> Source)
>
>>>>>> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>
>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>
>>>>>> at
> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>
>>>>>> at
> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>
>>>>>> at
> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66)
>
>>>>>> at
> org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>
>>>>>> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>> at
> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>
>>>>>> at
> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>
>>>>>> at
> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>
>>>>>> at
> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>
>>>>>> at
> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>
>>>>>> at
> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>
>>>>>> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source)
>
>>>>>> at
> org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238)
>
>>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83)
>
>>>>>> at
> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>
>>>>>> at
> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>
>>>>>> at
> org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>
>>>>>> at
> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>
>>>>>> at
> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>
>>>>>> at
> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>>>>> at
> org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>>>>> at
> org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>>>>> at
> org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>>>>> at
> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>
>>>>>> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>
>>>>>> at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>
>>>>>> at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>
>>>>>> at
> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>
>>>>>> at
> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>
>>>>>> at
> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>
>>>>>> at
> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>
>>>>>> at
> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>
>>>>>> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>
>>>>>> at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>
>>>>>> at
> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>
>>>>>> at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>
>>>>>> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>
>>>>>> at
> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>
>>>>>> at
> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>
>>>>>> at
> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>
>>>>>> at java.lang.Thread.run(Thread.java:662)
>
>>>>>>
>
>>>>>>
>
>>>>>>
>
>>>>>>
>
>>>>>> -------
>
>>>>>> Thank you,
>
>>>>>> Mehul Chhayani | Deployment Specialist
>
>>>>>> chh...@ec...
>
>>>>>> T:416-226-8600 EXT-246
>
>>>>>>
>
>>>>>> -----Original Message-----
>
>>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>
>>>>>> Sent: Wednesday, May 30, 2018 3:15 AM
>
>>>>>> To: ejb...@li...
>
>>>>>> Cc: Randy Yu; Mehul Chhayani
>
>>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>>>>>>
>
>>>>>>
>
>>>>>> Hi,
>
>>>>>>
>
>>>>>> The reason is that you are using an old Crypto Token type which is not
>
>>>>>> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken
>
>>>>>> is not valid anymore. You need to migrate to using the generic PKCS#11
>
>>>>>> CA token. I think these are sections about this in the old
>
>>>>>> documentation. Sometime during EJBCA 4 we deprecated the old token
> types
>
>>>>>> and recommended switching over to PKCS#11 tokens.
>
>>>>>>
>
>>>>>> Regards,
>
>>>>>> Tomas
>
>>>>>> ---
>
>>>>>> Save time and money with an Enterprise support subscription.
> Please see
>
>>>>>> www.primekey.com for more information.
>
>>>>>> https://www.primekey.com/products/software/
>
>>>>>>
>
>>>>>> On 2018-05-29 19:50, Mehul Chhayani wrote:
>
>>>>>>> Hello EJBCA Team,
>
>>>>>>>
>
>>>>>>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of
>
>>>>>>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done
> successfully
>
>>>>>>> , no error while deploying through ANT-1.8.3.However when I started
>
>>>>>>> jboos with some following error that no token and ejbtimeout, at
> the end
>
>>>>>>> jboss started successfully with some errors, You can access ejbca
> UI but
>
>>>>>>> u cannot hit adminweb it complaining some jsp file with
>
>>>>>>> nullpointerexception. Can you please advise on that? If you want
> I will
>
>>>>>>> provide full jboss log. Thanks in advance.
>
>>>>>>>
>
>>>>>>> *15:56:44,255 ERROR [CryptoTokenFactory] No token.
>
>>>>>>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken*
>
>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>
>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>
>>>>>>> should be used via the bean container
>
>>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>
>>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>
>>>>>>> should be used via the bean container
>
>>>>>>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout*
>
>>>>>>> *javax.ejb.EJBException: java.lang.NullPointerException*
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
>
>>>>>>> at
> org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>
>>>>>>> at com.sun.proxy.$Proxy341.mergeCryptoToken(Unknown Source)
>
>>>>>>> at
>
>>>>>>>
> org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821)
>
>>>>>>> at
>
>>>>>>>
> org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721)
>
>>>>>>> at
>
>>>>>>>
> org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586)
>
>>>>>>> at
>
>>>>>>>
> org.cesecore.certificates.ca.CaSessionBean.getCa(CaSessionBean.java:671)
>
>>>>>>> at
>
>>>>>>>
> org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:531)
>
>>>>>>> at
>
>>>>>>>
> org.cesecore.certificates.ca.CaSessionBean.getCAInfoInternal(CaSessionBean.java:334)
>
>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native
> Method)
>
>>>>>>> at
>
>>>>>>>
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>
>>>>>>> at
>
>>>>>>>
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>
>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>
>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native
> Method)
>
>>>>>>> at
>
>>>>>>>
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>
>>>>>>> at
>
>>>>>>>
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>
>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_18362751.invoke(InvocationContextInterceptor_z_fillMethod_18362751.java)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_18362751.invoke(InvocationContextInterceptor_z_setup_18362751.java)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>
>>>>>>> at
>
>>>>>>>
> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>
>>>>>>>
>
>>>>>>>
>
>>>>>>>
>
>>>>>>>
>
>>>>>>> *17:40:47,957 INFO [Log4jDevice] 2018-05-29
>
>>>>>>>
> 17:40:47+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=**x.x.x.x*
>
>>>>>>> 17:40:48,090 ERROR [jsp]
>
>>>>>>> java.lang.NullPointerException
>
>>>>>>>
>
>>>>>>>
>
>>>>>>>
>
>>>>>>>
> ------------------------------------------------------------------------------
>
>>>>>>> Check out the vibrant tech community on one of the world's most
>
>>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>
>>>>>>>
>
>>>>>>>
>
>>>>>>>
>
>>>>>>> _______________________________________________
>
>>>>>>> Ejbca-develop mailing list
>
>>>>>>> Ejb...@li...
>
>>>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
>>>>>>>
>
>>>>>>>
>
>>>>>>>
>
>>>>>>>
> ------------------------------------------------------------------------------
>
>>>>>>> Check out the vibrant tech community on one of the world's most
>
>>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>
>>>>>>>
>
>>>>>>>
>
>>>>>>> _______________________________________________
>
>>>>>>> Ejbca-develop mailing list
>
>>>>>>> Ejb...@li...
>
>>>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
>>
>
>>
> ------------------------------------------------------------------------------
>
>> Check out the vibrant tech community on one of the world's most
>
>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>
>> _______________________________________________
>
>> Ejbca-develop mailing list
>
>> Ejb...@li...
>
>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
>>
> ------------------------------------------------------------------------------
>
>> Check out the vibrant tech community on one of the world's most
>
>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>
>> _______________________________________________
>
>> Ejbca-develop mailing list
>
>> Ejb...@li...
>
>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
>>
>
> ------------------------------------------------------------------------------
>
> Check out the vibrant tech community on one of the world's most
>
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>
> _______________________________________________
>
> Ejbca-develop mailing list
>
> Ejb...@li...
>
> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
>
>
> ------------------------------------------------------------------------------
> Check out the vibrant tech community on one of the world's most
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>
>
>
> _______________________________________________
> Ejbca-develop mailing list
> Ejb...@li...
> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
|
|
From: Mehul C. <chh...@ec...> - 2018-06-25 20:24:31
|
Hello Tomas,
I have checked tokentype=Null of every entity that mentioned AdminEntityData table in database. What would be next step to overcome that problem? See that following table
Pk matchwith matchtype matchvalue adminroupdata_adminentities caif rowversion rowprotection tokentype
-401175635 8 1001 SuperAdmin -1181650581 -1146543808 0
329358383 11 2003 UNUSED -1290073541 0 0
329358381 11 2001 UNUSED -1290073541 0 0
329358382 11 2002 UNUSED -1290073541 0 0
329358376 11 2004 UNUSED -1290073541 0 0
-342399384 11 2000 UNUSED 1399736916 -1146543808 0
2117404180 8 1001 SuperAdmin -1181650581 764062969 0
-------
Thank you,
Mehul Chhayani | Deployment Specialist
chh...@ec...
T:416-226-8600 EXT-246
-----Original Message-----
From: Tomas Gustavsson [mailto:to...@pr...]
Sent: Monday, June 25, 2018 7:11 AM
To: ejb...@li...
Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
Hi,
Can you check in your database. Things should move over to
RoleMemberData during the migration. Can you check what "tokenType"s you
have in RoleMemberData and AdminEntityData.
Cheers,
Tomas
On 2018-06-21 21:43, Mehul Chhayani wrote:
> Hi Thomas,
>
> I tried with this method , it did not worked with old jboss-5.0.1, its complaining when I hit adminweb page, I am mentioning some server log, can you please advise me ? I am not able to reset superadmin password as well
>
> 2018-06-21 19:09:57,283 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) listing entities:
> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default, rowProtection=null, rowVersion=2, dataUnsafe=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}
> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
> 2018-06-21 19:09:57,284 DEBUG [org.jboss.jpa.deployment.ManagedEntityManagerFactory] (http-0.0.0.0-8443-1) ************** closing entity managersession **************
> 2018-06-21 19:09:57,285 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.en.properties
> 2018-06-21 19:09:57,293 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.bs.properties
> 2018-06-21 19:09:57,320 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.de.properties
> 2018-06-21 19:09:57,328 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.es.properties
> 2018-06-21 19:09:57,332 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.fr.properties
> 2018-06-21 19:09:57,345 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.it.properties
> 2018-06-21 19:09:57,349 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.ja.properties
> 2018-06-21 19:09:57,358 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.pt.properties
> 2018-06-21 19:09:57,363 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.sv.properties
> 2018-06-21 19:09:57,367 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.uk.properties
> 2018-06-21 19:09:57,380 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.zh.properties
> 2018-06-21 19:09:57,391 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
> java.lang.NullPointerException
> at org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
> at org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
> at org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
> at org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at java.lang.reflect.Method.invoke(Method.java:597)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at java.lang.reflect.Method.invoke(Method.java:597)
> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
>
>
> -------
> Thank you,
> Mehul Chhayani | Deployment Specialist
> chh...@ec...
> T:416-226-8600 EXT-246
>
> -----Original Message-----
> From: Tomas Gustavsson [mailto:to...@pr...]
> Sent: Saturday, June 2, 2018 1:56 PM
> To: ejb...@li...
> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>
> This one is due to JBoss not cleaning temp files properly every time.
> It's a good habit to do this every time you deploy something new:
> - rm -rf <jboss>/server/default/tmp
> - rm -rf <jboss>/server/default/work
>
> Regards,
> Tomas
>
>
> On 2018-06-01 17:22, Mehul Chhayani wrote:
>> Here I have attached members page of the roles in EJBCA-4, if you find that information useful, I am also getting new error while I am hitting adminweb page EJBCA-6.3.2.6 from local network. I have checked firewall rules and access-list. No ip's are blocking there. I am providing new error below , please take a look.
>>
>> 15:22:13,243 ERROR [[jsp]] Servlet.service() for servlet jsp threw exception
>> java.lang.NoClassDefFoundError: org/ejbca/core/model/authorization/AuthorizationDeniedException
>> at org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:115)
>> at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>> at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>> at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>> at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:638)
>> at org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:444)
>> at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:382)
>> at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:310)
>> at org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:696)
>> at org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:667)
>> at org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:808)
>> at org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:781)
>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:143)
>> at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>> at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>> at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>> at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> at org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> at org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> at org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>> at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>> at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>> at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>> at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>> at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>> at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>> at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>> at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>> at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>> at java.lang.Thread.run(Thread.java:662)
>>
>> -------
>> Thank you,
>> Mehul Chhayani | Deployment Specialist
>> chh...@ec...
>> T:416-226-8600 EXT-246
>>
>>
>> -----Original Message-----
>> From: Tomas Gustavsson [mailto:tom...@pr...]
>> Sent: Friday, June 1, 2018 9:53 AM
>> To: Mehul Chhayani; ejb...@li...
>> Cc: Randy Yu
>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>
>> Hi, thanks for the info.
>>
>> What does your roles looks like in EJBCA 4? Is it possible to show
>> screenshots of the members page of the roles? It seems to be related to
>> this.
>>
>> Regards,
>> Tomas
>>
>> On 2018-05-31 15:55, Mehul Chhayani wrote:
>>> Hello Tomas,
>>>
>>> We can configure and migrate PKCS#11 after upgrading EJBCA-6236 , what issue is after successfully upgrading EJBCA-6236, we cannot get adminweb page for ejbca and complaining nullpointerexception and it's also not giving much information on that.can you please advise on that?
>>>
>>> -------
>>> Thank you,
>>> Mehul Chhayani | Deployment Specialist
>>> chh...@ec...
>>> T:416-226-8600 EXT-246
>>>
>>>
>>> -----Original Message-----
>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>> Sent: Wednesday, May 30, 2018 1:34 PM
>>> To: Mehul Chhayani; ejb...@li...
>>> Cc: Randy Yu
>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>
>>>
>>> SunPKCS#11 should be included by default in any java installation, also
>>> in hava 6 so you should have it already. It's a matter of re-configuring
>>> your CA tokens to use the PKCS#11 driver. I think it's described in the
>>> doc/UPGRADE document.
>>>
>>> Regards,
>>> Tomas
>>>
>>>
>>> On 2018-05-30 19:23, Mehul Chhayani wrote:
>>>> Hi Tomas,
>>>>
>>>> As you have said migrate to a PKCS#11 CA token means that downloading sunpkcs11.jar file , copy into jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am wrong , can you advise me how to migrate a PKCS#11 CA token while upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna library with custom JKS keystore in Ejbca_4_0_16.
>>>>
>>>>
>>>> -------
>>>> Thank you,
>>>> Mehul Chhayani | Deployment Specialist
>>>> chh...@ec...
>>>> T:416-226-8600 EXT-246
>>>>
>>>>
>>>> -----Original Message-----
>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>> Sent: Wednesday, May 30, 2018 12:23 PM
>>>> To: Mehul Chhayani; ejb...@li...
>>>> Cc: Randy Yu
>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>>
>>>> Hi,
>>>>
>>>> Sorry, I donät understand that question. Can you elaborate a little bit
>>>> what you have done?
>>>>
>>>> In the previous answer, you should migrate to a PKCS#11 CA token, still
>>>> in your EJBCA 4, before upgrading to EJBCA 6.
>>>>
>>>> Regards,
>>>> Tomas
>>>>
>>>> On 2018-05-30 18:17, Mehul Chhayani wrote:
>>>>> Hello Tomas,
>>>>>
>>>>> Its working on old ejbca-4.0.16 and we did not change any keystore keys or catoken.properties file. But when we are hitting that giving jsp error, can you please tell us what it is causing an error. Or We should compile new ejbca with upgrade jboss or jdk.
>>>>>
>>>>>
>>>>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127
>>>>> 16:16:16,367 ERROR [jsp]
>>>>> java.lang.NullPointerException
>>>>> at org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>>>> at org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>>>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>>>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>>>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>>>> at org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>>>> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>>>> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>>> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>>> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>>> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66)
>>>>> at org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>>>> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source)
>>>>> at org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238)
>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83)
>>>>> at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>> at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>>> at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>>> at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>> at org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>> at org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>> at org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>> at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>> at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>>>> at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>>>> at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>>>> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>>>> at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>>>> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>>>> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>>>> at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>>>> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>>>> at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>>>> at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>>>> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>>>> at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>>>> at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>>>> at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>>>> at java.lang.Thread.run(Thread.java:662)
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> -------
>>>>> Thank you,
>>>>> Mehul Chhayani | Deployment Specialist
>>>>> chh...@ec...
>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>> -----Original Message-----
>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>> Sent: Wednesday, May 30, 2018 3:15 AM
>>>>> To: ejb...@li...
>>>>> Cc: Randy Yu; Mehul Chhayani
>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>
>>>>> Hi,
>>>>>
>>>>> The reason is that you are using an old Crypto Token type which is not
>>>>> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken
>>>>> is not valid anymore. You need to migrate to using the generic PKCS#11
>>>>> CA token. I think these are sections about this in the old
>>>>> documentation. Sometime during EJBCA 4 we deprecated the old token types
>>>>> and recommended switching over to PKCS#11 tokens.
>>>>>
>>>>> Regards,
>>>>> Tomas
>>>>> ---
>>>>> Save time and money with an Enterprise support subscription. Please see
>>>>> www.primekey.com for more information.
>>>>> https://www.primekey.com/products/software/
>>>>>
>>>>> On 2018-05-29 19:50, Mehul Chhayani wrote:
>>>>>> Hello EJBCA Team,
>>>>>>
>>>>>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of
>>>>>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done successfully
>>>>>> , no error while deploying through ANT-1.8.3.However when I started
>>>>>> jboos with some following error that no token and ejbtimeout, at the end
>>>>>> jboss started successfully with some errors, You can access ejbca UI but
>>>>>> u cannot hit adminweb it complaining some jsp file with
>>>>>> nullpointerexception. Can you please advise on that? If you want I will
>>>>>> provide full jboss log. Thanks in advance.
>>>>>>
>>>>>> *15:56:44,255 ERROR [CryptoTokenFactory] No token.
>>>>>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken*
>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>>>> should be used via the bean container
>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>>>> should be used via the bean container
>>>>>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout*
>>>>>> *javax.ejb.EJBException: java.lang.NullPointerException*
>>>>>> at
>>>>>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
>>>>>> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
>>>>>> at
>>>>>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>>>>> at
>>>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>>>>> at
>>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>>> at
>>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>>> at com.sun.proxy.$Proxy341.mergeCryptoToken(Unknown Source)
>>>>>> at
>>>>>> org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821)
>>>>>> at
>>>>>> org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721)
>>>>>> at
>>>>>> org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586)
>>>>>> at
>>>>>> org.cesecore.certificates.ca.CaSessionBean.getCa(CaSessionBean.java:671)
>>>>>> at
>>>>>> org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:531)
>>>>>> at
>>>>>> org.cesecore.certificates.ca.CaSessionBean.getCAInfoInternal(CaSessionBean.java:334)
>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>>> at
>>>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>>> at
>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>>>> at
>>>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>>>> at
>>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>>>> at
>>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>>> at
>>>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>>> at
>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>>> at
>>>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>>>> at
>>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_18362751.invoke(InvocationContextInterceptor_z_fillMethod_18362751.java)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>>>> at
>>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_18362751.invoke(InvocationContextInterceptor_z_setup_18362751.java)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>> *17:40:47,957 INFO [Log4jDevice] 2018-05-29
>>>>>> 17:40:47+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=**x.x.x.x*
>>>>>> 17:40:48,090 ERROR [jsp]
>>>>>> java.lang.NullPointerException
>>>>>>
>>>>>>
>>>>>>
>>>>>> ------------------------------------------------------------------------------
>>>>>> Check out the vibrant tech community on one of the world's most
>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>>>>>
>>>>>>
>>>>>>
>>>>>> _______________________________________________
>>>>>> Ejbca-develop mailing list
>>>>>> Ejb...@li...
>>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>>>>>
>>>>>>
>>>>>>
>>>>>> ------------------------------------------------------------------------------
>>>>>> Check out the vibrant tech community on one of the world's most
>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>>>>>
>>>>>>
>>>>>> _______________________________________________
>>>>>> Ejbca-develop mailing list
>>>>>> Ejb...@li...
>>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
> ------------------------------------------------------------------------------
> Check out the vibrant tech community on one of the world's most
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
> _______________________________________________
> Ejbca-develop mailing list
> Ejb...@li...
> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
> ------------------------------------------------------------------------------
> Check out the vibrant tech community on one of the world's most
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
> _______________________________________________
> Ejbca-develop mailing list
> Ejb...@li...
> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Ejbca-develop mailing list
Ejb...@li...
https://lists.sourceforge.net/lists/listinfo/ejbca-develop
|
|
From: Tomas G. <to...@pr...> - 2018-06-25 11:11:02
|
Hi,
Can you check in your database. Things should move over to
RoleMemberData during the migration. Can you check what "tokenType"s you
have in RoleMemberData and AdminEntityData.
Cheers,
Tomas
On 2018-06-21 21:43, Mehul Chhayani wrote:
> Hi Thomas,
>
> I tried with this method , it did not worked with old jboss-5.0.1, its complaining when I hit adminweb page, I am mentioning some server log, can you please advise me ? I am not able to reset superadmin password as well
>
> 2018-06-21 19:09:57,283 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) listing entities:
> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default, rowProtection=null, rowVersion=2, dataUnsafe=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}
> 2018-06-21 19:09:57,284 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
> 2018-06-21 19:09:57,284 DEBUG [org.jboss.jpa.deployment.ManagedEntityManagerFactory] (http-0.0.0.0-8443-1) ************** closing entity managersession **************
> 2018-06-21 19:09:57,285 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.en.properties
> 2018-06-21 19:09:57,293 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.bs.properties
> 2018-06-21 19:09:57,320 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.de.properties
> 2018-06-21 19:09:57,328 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.es.properties
> 2018-06-21 19:09:57,332 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.fr.properties
> 2018-06-21 19:09:57,345 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.it.properties
> 2018-06-21 19:09:57,349 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.ja.properties
> 2018-06-21 19:09:57,358 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.pt.properties
> 2018-06-21 19:09:57,363 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.sv.properties
> 2018-06-21 19:09:57,367 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.uk.properties
> 2018-06-21 19:09:57,380 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.zh.properties
> 2018-06-21 19:09:57,391 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
> java.lang.NullPointerException
> at org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
> at org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
> at org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
> at org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at java.lang.reflect.Method.invoke(Method.java:597)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at java.lang.reflect.Method.invoke(Method.java:597)
> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
>
>
> -------
> Thank you,
> Mehul Chhayani | Deployment Specialist
> chh...@ec...
> T:416-226-8600 EXT-246
>
> -----Original Message-----
> From: Tomas Gustavsson [mailto:to...@pr...]
> Sent: Saturday, June 2, 2018 1:56 PM
> To: ejb...@li...
> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>
> This one is due to JBoss not cleaning temp files properly every time.
> It's a good habit to do this every time you deploy something new:
> - rm -rf <jboss>/server/default/tmp
> - rm -rf <jboss>/server/default/work
>
> Regards,
> Tomas
>
>
> On 2018-06-01 17:22, Mehul Chhayani wrote:
>> Here I have attached members page of the roles in EJBCA-4, if you find that information useful, I am also getting new error while I am hitting adminweb page EJBCA-6.3.2.6 from local network. I have checked firewall rules and access-list. No ip's are blocking there. I am providing new error below , please take a look.
>>
>> 15:22:13,243 ERROR [[jsp]] Servlet.service() for servlet jsp threw exception
>> java.lang.NoClassDefFoundError: org/ejbca/core/model/authorization/AuthorizationDeniedException
>> at org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:115)
>> at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>> at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>> at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>> at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:638)
>> at org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:444)
>> at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:382)
>> at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:310)
>> at org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:696)
>> at org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:667)
>> at org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:808)
>> at org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:781)
>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:143)
>> at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>> at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>> at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>> at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> at org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> at org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> at org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>> at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>> at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>> at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>> at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>> at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>> at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>> at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>> at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>> at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>> at java.lang.Thread.run(Thread.java:662)
>>
>> -------
>> Thank you,
>> Mehul Chhayani | Deployment Specialist
>> chh...@ec...
>> T:416-226-8600 EXT-246
>>
>>
>> -----Original Message-----
>> From: Tomas Gustavsson [mailto:tom...@pr...]
>> Sent: Friday, June 1, 2018 9:53 AM
>> To: Mehul Chhayani; ejb...@li...
>> Cc: Randy Yu
>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>
>> Hi, thanks for the info.
>>
>> What does your roles looks like in EJBCA 4? Is it possible to show
>> screenshots of the members page of the roles? It seems to be related to
>> this.
>>
>> Regards,
>> Tomas
>>
>> On 2018-05-31 15:55, Mehul Chhayani wrote:
>>> Hello Tomas,
>>>
>>> We can configure and migrate PKCS#11 after upgrading EJBCA-6236 , what issue is after successfully upgrading EJBCA-6236, we cannot get adminweb page for ejbca and complaining nullpointerexception and it's also not giving much information on that.can you please advise on that?
>>>
>>> -------
>>> Thank you,
>>> Mehul Chhayani | Deployment Specialist
>>> chh...@ec...
>>> T:416-226-8600 EXT-246
>>>
>>>
>>> -----Original Message-----
>>> From: Tomas Gustavsson [mailto:tom...@pr...]
>>> Sent: Wednesday, May 30, 2018 1:34 PM
>>> To: Mehul Chhayani; ejb...@li...
>>> Cc: Randy Yu
>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>
>>>
>>> SunPKCS#11 should be included by default in any java installation, also
>>> in hava 6 so you should have it already. It's a matter of re-configuring
>>> your CA tokens to use the PKCS#11 driver. I think it's described in the
>>> doc/UPGRADE document.
>>>
>>> Regards,
>>> Tomas
>>>
>>>
>>> On 2018-05-30 19:23, Mehul Chhayani wrote:
>>>> Hi Tomas,
>>>>
>>>> As you have said migrate to a PKCS#11 CA token means that downloading sunpkcs11.jar file , copy into jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am wrong , can you advise me how to migrate a PKCS#11 CA token while upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna library with custom JKS keystore in Ejbca_4_0_16.
>>>>
>>>>
>>>> -------
>>>> Thank you,
>>>> Mehul Chhayani | Deployment Specialist
>>>> chh...@ec...
>>>> T:416-226-8600 EXT-246
>>>>
>>>>
>>>> -----Original Message-----
>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>> Sent: Wednesday, May 30, 2018 12:23 PM
>>>> To: Mehul Chhayani; ejb...@li...
>>>> Cc: Randy Yu
>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>>
>>>> Hi,
>>>>
>>>> Sorry, I donät understand that question. Can you elaborate a little bit
>>>> what you have done?
>>>>
>>>> In the previous answer, you should migrate to a PKCS#11 CA token, still
>>>> in your EJBCA 4, before upgrading to EJBCA 6.
>>>>
>>>> Regards,
>>>> Tomas
>>>>
>>>> On 2018-05-30 18:17, Mehul Chhayani wrote:
>>>>> Hello Tomas,
>>>>>
>>>>> Its working on old ejbca-4.0.16 and we did not change any keystore keys or catoken.properties file. But when we are hitting that giving jsp error, can you please tell us what it is causing an error. Or We should compile new ejbca with upgrade jboss or jdk.
>>>>>
>>>>>
>>>>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127
>>>>> 16:16:16,367 ERROR [jsp]
>>>>> java.lang.NullPointerException
>>>>> at org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>>>> at org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>>>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>>>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>>>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>>>> at org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>>>> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>>>> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>>> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>>> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>>> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66)
>>>>> at org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>>>> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source)
>>>>> at org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238)
>>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83)
>>>>> at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>> at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>>> at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>>> at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>> at org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>> at org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>> at org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>> at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>>> at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>>>> at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>>>> at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>>>> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>>>> at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>>>> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>>>> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>>>> at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>>>> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>>>> at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>>>> at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>>>> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>>>> at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>>>> at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>>>> at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>>>> at java.lang.Thread.run(Thread.java:662)
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> -------
>>>>> Thank you,
>>>>> Mehul Chhayani | Deployment Specialist
>>>>> chh...@ec...
>>>>> T:416-226-8600 EXT-246
>>>>>
>>>>> -----Original Message-----
>>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>>> Sent: Wednesday, May 30, 2018 3:15 AM
>>>>> To: ejb...@li...
>>>>> Cc: Randy Yu; Mehul Chhayani
>>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>>
>>>>>
>>>>> Hi,
>>>>>
>>>>> The reason is that you are using an old Crypto Token type which is not
>>>>> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken
>>>>> is not valid anymore. You need to migrate to using the generic PKCS#11
>>>>> CA token. I think these are sections about this in the old
>>>>> documentation. Sometime during EJBCA 4 we deprecated the old token types
>>>>> and recommended switching over to PKCS#11 tokens.
>>>>>
>>>>> Regards,
>>>>> Tomas
>>>>> ---
>>>>> Save time and money with an Enterprise support subscription. Please see
>>>>> www.primekey.com for more information.
>>>>> https://www.primekey.com/products/software/
>>>>>
>>>>> On 2018-05-29 19:50, Mehul Chhayani wrote:
>>>>>> Hello EJBCA Team,
>>>>>>
>>>>>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of
>>>>>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done successfully
>>>>>> , no error while deploying through ANT-1.8.3.However when I started
>>>>>> jboos with some following error that no token and ejbtimeout, at the end
>>>>>> jboss started successfully with some errors, You can access ejbca UI but
>>>>>> u cannot hit adminweb it complaining some jsp file with
>>>>>> nullpointerexception. Can you please advise on that? If you want I will
>>>>>> provide full jboss log. Thanks in advance.
>>>>>>
>>>>>> *15:56:44,255 ERROR [CryptoTokenFactory] No token.
>>>>>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken*
>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>>>> should be used via the bean container
>>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>>>> should be used via the bean container
>>>>>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout*
>>>>>> *javax.ejb.EJBException: java.lang.NullPointerException*
>>>>>> at
>>>>>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
>>>>>> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
>>>>>> at
>>>>>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>>>>> at
>>>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>>>>> at
>>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>>> at
>>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>>> at com.sun.proxy.$Proxy341.mergeCryptoToken(Unknown Source)
>>>>>> at
>>>>>> org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821)
>>>>>> at
>>>>>> org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721)
>>>>>> at
>>>>>> org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586)
>>>>>> at
>>>>>> org.cesecore.certificates.ca.CaSessionBean.getCa(CaSessionBean.java:671)
>>>>>> at
>>>>>> org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:531)
>>>>>> at
>>>>>> org.cesecore.certificates.ca.CaSessionBean.getCAInfoInternal(CaSessionBean.java:334)
>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>>> at
>>>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>>> at
>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>>>> at
>>>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>>>> at
>>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>>>> at
>>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>>> at
>>>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>>> at
>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>>> at
>>>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>>>> at
>>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_18362751.invoke(InvocationContextInterceptor_z_fillMethod_18362751.java)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>>>> at
>>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_18362751.invoke(InvocationContextInterceptor_z_setup_18362751.java)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>>>>> at
>>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>>> at
>>>>>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>> *17:40:47,957 INFO [Log4jDevice] 2018-05-29
>>>>>> 17:40:47+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=**x.x.x.x*
>>>>>> 17:40:48,090 ERROR [jsp]
>>>>>> java.lang.NullPointerException
>>>>>>
>>>>>>
>>>>>>
>>>>>> ------------------------------------------------------------------------------
>>>>>> Check out the vibrant tech community on one of the world's most
>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>>>>>
>>>>>>
>>>>>>
>>>>>> _______________________________________________
>>>>>> Ejbca-develop mailing list
>>>>>> Ejb...@li...
>>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>>>>>
>>>>>>
>>>>>>
>>>>>> ------------------------------------------------------------------------------
>>>>>> Check out the vibrant tech community on one of the world's most
>>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>>>>>
>>>>>>
>>>>>> _______________________________________________
>>>>>> Ejbca-develop mailing list
>>>>>> Ejb...@li...
>>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
> ------------------------------------------------------------------------------
> Check out the vibrant tech community on one of the world's most
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
> _______________________________________________
> Ejbca-develop mailing list
> Ejb...@li...
> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
> ------------------------------------------------------------------------------
> Check out the vibrant tech community on one of the world's most
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
> _______________________________________________
> Ejbca-develop mailing list
> Ejb...@li...
> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
|
|
From: Mehul C. <chh...@ec...> - 2018-06-21 19:43:52
|
Hi Thomas,
I tried with this method , it did not worked with old jboss-5.0.1, its complaining when I hit adminweb page, I am mentioning some server log, can you please advise me ? I am not able to reset superadmin password as well
2018-06-21 19:09:57,283 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) listing entities:
2018-06-21 19:09:57,284 DEBUG [org.hibernate.pretty.Printer] (http-0.0.0.0-8443-1) org.ejbca.core.ejb.ra.raadmin.AdminPreferencesData{id=default, rowProtection=null, rowVersion=2, dataUnsafe=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}
2018-06-21 19:09:57,284 DEBUG [org.hibernate.jdbc.ConnectionManager] (http-0.0.0.0-8443-1) aggressively releasing JDBC connection
2018-06-21 19:09:57,284 DEBUG [org.jboss.jpa.deployment.ManagedEntityManagerFactory] (http-0.0.0.0-8443-1) ************** closing entity managersession **************
2018-06-21 19:09:57,285 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.en.properties
2018-06-21 19:09:57,293 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.bs.properties
2018-06-21 19:09:57,320 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.de.properties
2018-06-21 19:09:57,328 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.es.properties
2018-06-21 19:09:57,332 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.fr.properties
2018-06-21 19:09:57,345 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.it.properties
2018-06-21 19:09:57,349 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.ja.properties
2018-06-21 19:09:57,358 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.pt.properties
2018-06-21 19:09:57,363 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.sv.properties
2018-06-21 19:09:57,367 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.uk.properties
2018-06-21 19:09:57,380 DEBUG [org.ejbca.ui.web.admin.configuration.WebLanguages] (http-0.0.0.0-8443-1) Loading language from file: /languages/languagefile.zh.properties
2018-06-21 19:09:57,391 ERROR [errorpage.jsp] (http-0.0.0.0-8443-1)
java.lang.NullPointerException
at org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
at org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
at org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
at org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_23897045.invoke(InvocationContextInterceptor_z_fillMethod_23897045.java)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_23897045.invoke(InvocationContextInterceptor_z_setup_23897045.java)
-------
Thank you,
Mehul Chhayani | Deployment Specialist
chh...@ec...
T:416-226-8600 EXT-246
-----Original Message-----
From: Tomas Gustavsson [mailto:to...@pr...]
Sent: Saturday, June 2, 2018 1:56 PM
To: ejb...@li...
Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
This one is due to JBoss not cleaning temp files properly every time.
It's a good habit to do this every time you deploy something new:
- rm -rf <jboss>/server/default/tmp
- rm -rf <jboss>/server/default/work
Regards,
Tomas
On 2018-06-01 17:22, Mehul Chhayani wrote:
> Here I have attached members page of the roles in EJBCA-4, if you find that information useful, I am also getting new error while I am hitting adminweb page EJBCA-6.3.2.6 from local network. I have checked firewall rules and access-list. No ip's are blocking there. I am providing new error below , please take a look.
>
> 15:22:13,243 ERROR [[jsp]] Servlet.service() for servlet jsp threw exception
> java.lang.NoClassDefFoundError: org/ejbca/core/model/authorization/AuthorizationDeniedException
> at org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:115)
> at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
> at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
> at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
> at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:638)
> at org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:444)
> at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:382)
> at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:310)
> at org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:696)
> at org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:667)
> at org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:808)
> at org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:781)
> at org.apache.jsp.index_jsp._jspService(index_jsp.java:143)
> at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
> at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
> at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
> at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> at org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> at org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> at org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
> at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
> at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
> at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
> at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
> at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
> at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
> at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
> at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
> at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
> at java.lang.Thread.run(Thread.java:662)
>
> -------
> Thank you,
> Mehul Chhayani | Deployment Specialist
> chh...@ec...
> T:416-226-8600 EXT-246
>
>
> -----Original Message-----
> From: Tomas Gustavsson [mailto:tom...@pr...]
> Sent: Friday, June 1, 2018 9:53 AM
> To: Mehul Chhayani; ejb...@li...
> Cc: Randy Yu
> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>
> Hi, thanks for the info.
>
> What does your roles looks like in EJBCA 4? Is it possible to show
> screenshots of the members page of the roles? It seems to be related to
> this.
>
> Regards,
> Tomas
>
> On 2018-05-31 15:55, Mehul Chhayani wrote:
>> Hello Tomas,
>>
>> We can configure and migrate PKCS#11 after upgrading EJBCA-6236 , what issue is after successfully upgrading EJBCA-6236, we cannot get adminweb page for ejbca and complaining nullpointerexception and it's also not giving much information on that.can you please advise on that?
>>
>> -------
>> Thank you,
>> Mehul Chhayani | Deployment Specialist
>> chh...@ec...
>> T:416-226-8600 EXT-246
>>
>>
>> -----Original Message-----
>> From: Tomas Gustavsson [mailto:tom...@pr...]
>> Sent: Wednesday, May 30, 2018 1:34 PM
>> To: Mehul Chhayani; ejb...@li...
>> Cc: Randy Yu
>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>
>> SunPKCS#11 should be included by default in any java installation, also
>> in hava 6 so you should have it already. It's a matter of re-configuring
>> your CA tokens to use the PKCS#11 driver. I think it's described in the
>> doc/UPGRADE document.
>>
>> Regards,
>> Tomas
>>
>>
>> On 2018-05-30 19:23, Mehul Chhayani wrote:
>>> Hi Tomas,
>>>
>>> As you have said migrate to a PKCS#11 CA token means that downloading sunpkcs11.jar file , copy into jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am wrong , can you advise me how to migrate a PKCS#11 CA token while upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna library with custom JKS keystore in Ejbca_4_0_16.
>>>
>>>
>>> -------
>>> Thank you,
>>> Mehul Chhayani | Deployment Specialist
>>> chh...@ec...
>>> T:416-226-8600 EXT-246
>>>
>>>
>>> -----Original Message-----
>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>> Sent: Wednesday, May 30, 2018 12:23 PM
>>> To: Mehul Chhayani; ejb...@li...
>>> Cc: Randy Yu
>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>
>>>
>>> Hi,
>>>
>>> Sorry, I donät understand that question. Can you elaborate a little bit
>>> what you have done?
>>>
>>> In the previous answer, you should migrate to a PKCS#11 CA token, still
>>> in your EJBCA 4, before upgrading to EJBCA 6.
>>>
>>> Regards,
>>> Tomas
>>>
>>> On 2018-05-30 18:17, Mehul Chhayani wrote:
>>>> Hello Tomas,
>>>>
>>>> Its working on old ejbca-4.0.16 and we did not change any keystore keys or catoken.properties file. But when we are hitting that giving jsp error, can you please tell us what it is causing an error. Or We should compile new ejbca with upgrade jboss or jdk.
>>>>
>>>>
>>>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127
>>>> 16:16:16,367 ERROR [jsp]
>>>> java.lang.NullPointerException
>>>> at org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>>> at org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>>> at org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>>> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>>> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66)
>>>> at org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>>> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source)
>>>> at org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238)
>>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83)
>>>> at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>> at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>>> at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>>> at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>> at org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>> at org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>> at org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>> at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>>> at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>>> at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>>> at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>>> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>>> at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>>> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>>> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>>> at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>>> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>>> at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>>> at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>>> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>>> at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>>> at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>>> at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>>> at java.lang.Thread.run(Thread.java:662)
>>>>
>>>>
>>>>
>>>>
>>>> -------
>>>> Thank you,
>>>> Mehul Chhayani | Deployment Specialist
>>>> chh...@ec...
>>>> T:416-226-8600 EXT-246
>>>>
>>>> -----Original Message-----
>>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>>> Sent: Wednesday, May 30, 2018 3:15 AM
>>>> To: ejb...@li...
>>>> Cc: Randy Yu; Mehul Chhayani
>>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>>
>>>>
>>>> Hi,
>>>>
>>>> The reason is that you are using an old Crypto Token type which is not
>>>> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken
>>>> is not valid anymore. You need to migrate to using the generic PKCS#11
>>>> CA token. I think these are sections about this in the old
>>>> documentation. Sometime during EJBCA 4 we deprecated the old token types
>>>> and recommended switching over to PKCS#11 tokens.
>>>>
>>>> Regards,
>>>> Tomas
>>>> ---
>>>> Save time and money with an Enterprise support subscription. Please see
>>>> www.primekey.com for more information.
>>>> https://www.primekey.com/products/software/
>>>>
>>>> On 2018-05-29 19:50, Mehul Chhayani wrote:
>>>>> Hello EJBCA Team,
>>>>>
>>>>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of
>>>>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done successfully
>>>>> , no error while deploying through ANT-1.8.3.However when I started
>>>>> jboos with some following error that no token and ejbtimeout, at the end
>>>>> jboss started successfully with some errors, You can access ejbca UI but
>>>>> u cannot hit adminweb it complaining some jsp file with
>>>>> nullpointerexception. Can you please advise on that? If you want I will
>>>>> provide full jboss log. Thanks in advance.
>>>>>
>>>>> *15:56:44,255 ERROR [CryptoTokenFactory] No token.
>>>>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken*
>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>>> should be used via the bean container
>>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>>> should be used via the bean container
>>>>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout*
>>>>> *javax.ejb.EJBException: java.lang.NullPointerException*
>>>>> at
>>>>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
>>>>> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
>>>>> at
>>>>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at
>>>>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at
>>>>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at
>>>>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at
>>>>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at
>>>>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at
>>>>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at
>>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>>>> at
>>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>>>> at
>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>>> at
>>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>>> at com.sun.proxy.$Proxy341.mergeCryptoToken(Unknown Source)
>>>>> at
>>>>> org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821)
>>>>> at
>>>>> org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721)
>>>>> at
>>>>> org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586)
>>>>> at
>>>>> org.cesecore.certificates.ca.CaSessionBean.getCa(CaSessionBean.java:671)
>>>>> at
>>>>> org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:531)
>>>>> at
>>>>> org.cesecore.certificates.ca.CaSessionBean.getCAInfoInternal(CaSessionBean.java:334)
>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>> at
>>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>> at
>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>>> at
>>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>>> at
>>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>>> at
>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>>> at
>>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>>> at
>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_18362751.invoke(InvocationContextInterceptor_z_fillMethod_18362751.java)
>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at
>>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>>> at
>>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_18362751.invoke(InvocationContextInterceptor_z_setup_18362751.java)
>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at
>>>>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at
>>>>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>>>> at
>>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>>> at
>>>>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> *17:40:47,957 INFO [Log4jDevice] 2018-05-29
>>>>> 17:40:47+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=**x.x.x.x*
>>>>> 17:40:48,090 ERROR [jsp]
>>>>> java.lang.NullPointerException
>>>>>
>>>>>
>>>>>
>>>>> ------------------------------------------------------------------------------
>>>>> Check out the vibrant tech community on one of the world's most
>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>>>>
>>>>>
>>>>>
>>>>> _______________________________________________
>>>>> Ejbca-develop mailing list
>>>>> Ejb...@li...
>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>>>>
>>>>>
>>>>>
>>>>> ------------------------------------------------------------------------------
>>>>> Check out the vibrant tech community on one of the world's most
>>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>>>>
>>>>>
>>>>> _______________________________________________
>>>>> Ejbca-develop mailing list
>>>>> Ejb...@li...
>>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Ejbca-develop mailing list
Ejb...@li...
https://lists.sourceforge.net/lists/listinfo/ejbca-develop
|
|
From: Tomas G. <to...@pr...> - 2018-06-14 11:07:58
|
You are probably trying to do "browser enrollment" using the Chrome browser. Chrome does not support browser enrollment since a couple of years now. The only browser that still support browser enrollment kind of stable, is FireFox. Regards, Tomas On 2018-06-14 12:32, John R wrote: > Hello, > Not sure if this is the place to ask - if not I apologize. > > So the problem: > I use to be able to create an end entity from the administration web > page. When I created an end entity and then found it via the search it > would have a certificate. > Now it says "Certificate specified doesn’t exist in database, it may not > have been generated." > > The token field is selected to be: User Generated > > If I go to the public web and try to enroll it throws an erorr: > > > Username: testEntity > Parameter names and values: > > showResultPage: 'true' > > hidemenu: 'false' > > certprofile: 'TEST_SERVER' > > user: 'testEntity' > > password: <hidden> > > Exception: > java.lang.Exception: No known request type received. > at org.ejbca.ui.web.pub.RequestInstance.doPost(RequestInstance.java:495) > at org.ejbca.ui.web.pub.CertReqServlet.doPost(CertReqServlet.java:116) > at javax.servlet.http.HttpServlet.service(HttpServlet.java:754) > at javax.servlet.http.HttpServlet.service(HttpServlet.java:847) > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:329) > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248) > at > org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198) > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280) > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248) > at org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36) > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280) > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248) > at > org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:275) > at > org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:161) > at > org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:397) > at > org.jboss.as.jpa.interceptor.WebNonTxEmCloserValve.invoke(WebNonTxEmCloserValve.java:50) > at > org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:153) > at > org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:155) > at > org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) > at > org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) > at > org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:368) > at > org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:877) > at > org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:671) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:930) > at java.lang.Thread.run(Thread.java:748) > > > I use to generate many certificates this way. Today I created a new > ca/ca profile and end entity profile as I needed a better hashing > algorithm. I used clone/use as template for the most part and I'm almost > sure I haven't changed any of the existing profiles. But that's ALMOST. > The new end entity I created for my new profiles had a certificate but a > wrong Issuer DN. So I tweaked it a bit - then suddenly no certificates. > Then I tried to create one using the old profiles but still couldn't. > > Is it possible I changed some configuration which is now casuing this? > Any help would be much appreciated. > > Best regards > > > ------------------------------------------------------------------------------ > Check out the vibrant tech community on one of the world's most > engaging tech sites, Slashdot.org! http://sdm.link/slashdot > > > > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
|
From: John R <joh...@gm...> - 2018-06-14 10:33:15
|
Hello, Not sure if this is the place to ask - if not I apologize. So the problem: I use to be able to create an end entity from the administration web page. When I created an end entity and then found it via the search it would have a certificate. Now it says "Certificate specified doesn’t exist in database, it may not have been generated." The token field is selected to be: User Generated If I go to the public web and try to enroll it throws an erorr: Username: testEntity Parameter names and values: showResultPage: 'true' hidemenu: 'false' certprofile: 'TEST_SERVER' user: 'testEntity' password: <hidden> Exception: java.lang.Exception: No known request type received. at org.ejbca.ui.web.pub.RequestInstance.doPost(RequestInstance.java:495) at org.ejbca.ui.web.pub.CertReqServlet.doPost(CertReqServlet.java:116) at javax.servlet.http.HttpServlet.service(HttpServlet.java:754) at javax.servlet.http.HttpServlet.service(HttpServlet.java:847) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:329) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248) at org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248) at org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:275) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:161) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:397) at org.jboss.as.jpa.interceptor.WebNonTxEmCloserValve.invoke(WebNonTxEmCloserValve.java:50) at org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:153) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:155) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:368) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:877) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:671) at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:930) at java.lang.Thread.run(Thread.java:748) I use to generate many certificates this way. Today I created a new ca/ca profile and end entity profile as I needed a better hashing algorithm. I used clone/use as template for the most part and I'm almost sure I haven't changed any of the existing profiles. But that's ALMOST. The new end entity I created for my new profiles had a certificate but a wrong Issuer DN. So I tweaked it a bit - then suddenly no certificates. Then I tried to create one using the old profiles but still couldn't. Is it possible I changed some configuration which is now casuing this? Any help would be much appreciated. Best regards |
|
From: John R <joh...@gm...> - 2018-06-14 10:28:46
|
|
From: Tomas G. <to...@pr...> - 2018-06-02 17:56:26
|
This one is due to JBoss not cleaning temp files properly every time. It's a good habit to do this every time you deploy something new: - rm -rf <jboss>/server/default/tmp - rm -rf <jboss>/server/default/work Regards, Tomas On 2018-06-01 17:22, Mehul Chhayani wrote: > Here I have attached members page of the roles in EJBCA-4, if you find that information useful, I am also getting new error while I am hitting adminweb page EJBCA-6.3.2.6 from local network. I have checked firewall rules and access-list. No ip's are blocking there. I am providing new error below , please take a look. > > 15:22:13,243 ERROR [[jsp]] Servlet.service() for servlet jsp threw exception > java.lang.NoClassDefFoundError: org/ejbca/core/model/authorization/AuthorizationDeniedException > at org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:115) > at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70) > at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) > at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369) > at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322) > at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249) > at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) > at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) > at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:638) > at org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:444) > at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:382) > at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:310) > at org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:696) > at org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:667) > at org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:808) > at org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:781) > at org.apache.jsp.index_jsp._jspService(index_jsp.java:143) > at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70) > at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) > at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369) > at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322) > at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249) > at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) > at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) > at org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) > at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) > at org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) > at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) > at org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) > at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) > at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) > at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) > at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235) > at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191) > at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190) > at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433) > at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92) > at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126) > at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70) > at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) > at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) > at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158) > at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) > at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330) > at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829) > at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447) > at java.lang.Thread.run(Thread.java:662) > > ------- > Thank you, > Mehul Chhayani | Deployment Specialist > chh...@ec... > T:416-226-8600 EXT-246 > > > -----Original Message----- > From: Tomas Gustavsson [mailto:tom...@pr...] > Sent: Friday, June 1, 2018 9:53 AM > To: Mehul Chhayani; ejb...@li... > Cc: Randy Yu > Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error > > > Hi, thanks for the info. > > What does your roles looks like in EJBCA 4? Is it possible to show > screenshots of the members page of the roles? It seems to be related to > this. > > Regards, > Tomas > > On 2018-05-31 15:55, Mehul Chhayani wrote: >> Hello Tomas, >> >> We can configure and migrate PKCS#11 after upgrading EJBCA-6236 , what issue is after successfully upgrading EJBCA-6236, we cannot get adminweb page for ejbca and complaining nullpointerexception and it's also not giving much information on that.can you please advise on that? >> >> ------- >> Thank you, >> Mehul Chhayani | Deployment Specialist >> chh...@ec... >> T:416-226-8600 EXT-246 >> >> >> -----Original Message----- >> From: Tomas Gustavsson [mailto:tom...@pr...] >> Sent: Wednesday, May 30, 2018 1:34 PM >> To: Mehul Chhayani; ejb...@li... >> Cc: Randy Yu >> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >> >> >> SunPKCS#11 should be included by default in any java installation, also >> in hava 6 so you should have it already. It's a matter of re-configuring >> your CA tokens to use the PKCS#11 driver. I think it's described in the >> doc/UPGRADE document. >> >> Regards, >> Tomas >> >> >> On 2018-05-30 19:23, Mehul Chhayani wrote: >>> Hi Tomas, >>> >>> As you have said migrate to a PKCS#11 CA token means that downloading sunpkcs11.jar file , copy into jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am wrong , can you advise me how to migrate a PKCS#11 CA token while upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna library with custom JKS keystore in Ejbca_4_0_16. >>> >>> >>> ------- >>> Thank you, >>> Mehul Chhayani | Deployment Specialist >>> chh...@ec... >>> T:416-226-8600 EXT-246 >>> >>> >>> -----Original Message----- >>> From: Tomas Gustavsson [mailto:to...@pr...] >>> Sent: Wednesday, May 30, 2018 12:23 PM >>> To: Mehul Chhayani; ejb...@li... >>> Cc: Randy Yu >>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >>> >>> >>> Hi, >>> >>> Sorry, I donät understand that question. Can you elaborate a little bit >>> what you have done? >>> >>> In the previous answer, you should migrate to a PKCS#11 CA token, still >>> in your EJBCA 4, before upgrading to EJBCA 6. >>> >>> Regards, >>> Tomas >>> >>> On 2018-05-30 18:17, Mehul Chhayani wrote: >>>> Hello Tomas, >>>> >>>> Its working on old ejbca-4.0.16 and we did not change any keystore keys or catoken.properties file. But when we are hitting that giving jsp error, can you please tell us what it is causing an error. Or We should compile new ejbca with upgrade jboss or jdk. >>>> >>>> >>>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127 >>>> 16:16:16,367 ERROR [jsp] >>>> java.lang.NullPointerException >>>> at org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305) >>>> at org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259) >>>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139) >>>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192) >>>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115) >>>> at org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86) >>>> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86) >>>> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136) >>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>>> at java.lang.reflect.Method.invoke(Method.java:597) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >>>> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source) >>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>>> at java.lang.reflect.Method.invoke(Method.java:597) >>>> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) >>>> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) >>>> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66) >>>> at org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67) >>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176) >>>> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216) >>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >>>> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source) >>>> at org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238) >>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83) >>>> at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70) >>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>>> at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369) >>>> at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322) >>>> at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249) >>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) >>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>>> at org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198) >>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>>> at org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36) >>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>>> at org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109) >>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>>> at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96) >>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>>> at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235) >>>> at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191) >>>> at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190) >>>> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433) >>>> at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92) >>>> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126) >>>> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70) >>>> at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) >>>> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) >>>> at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158) >>>> at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) >>>> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330) >>>> at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829) >>>> at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598) >>>> at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447) >>>> at java.lang.Thread.run(Thread.java:662) >>>> >>>> >>>> >>>> >>>> ------- >>>> Thank you, >>>> Mehul Chhayani | Deployment Specialist >>>> chh...@ec... >>>> T:416-226-8600 EXT-246 >>>> >>>> -----Original Message----- >>>> From: Tomas Gustavsson [mailto:to...@pr...] >>>> Sent: Wednesday, May 30, 2018 3:15 AM >>>> To: ejb...@li... >>>> Cc: Randy Yu; Mehul Chhayani >>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >>>> >>>> >>>> Hi, >>>> >>>> The reason is that you are using an old Crypto Token type which is not >>>> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken >>>> is not valid anymore. You need to migrate to using the generic PKCS#11 >>>> CA token. I think these are sections about this in the old >>>> documentation. Sometime during EJBCA 4 we deprecated the old token types >>>> and recommended switching over to PKCS#11 tokens. >>>> >>>> Regards, >>>> Tomas >>>> --- >>>> Save time and money with an Enterprise support subscription. Please see >>>> www.primekey.com for more information. >>>> https://www.primekey.com/products/software/ >>>> >>>> On 2018-05-29 19:50, Mehul Chhayani wrote: >>>>> Hello EJBCA Team, >>>>> >>>>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of >>>>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done successfully >>>>> , no error while deploying through ANT-1.8.3.However when I started >>>>> jboos with some following error that no token and ejbtimeout, at the end >>>>> jboss started successfully with some errors, You can access ejbca UI but >>>>> u cannot hit adminweb it complaining some jsp file with >>>>> nullpointerexception. Can you please advise on that? If you want I will >>>>> provide full jboss log. Thanks in advance. >>>>> >>>>> *15:56:44,255 ERROR [CryptoTokenFactory] No token. >>>>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken* >>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use >>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry >>>>> should be used via the bean container >>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use >>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry >>>>> should be used via the bean container >>>>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout* >>>>> *javax.ejb.EJBException: java.lang.NullPointerException* >>>>> at >>>>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77) >>>>> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83) >>>>> at >>>>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190) >>>>> at >>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>> at >>>>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) >>>>> at >>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >>>>> at >>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>> at >>>>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) >>>>> at >>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>> at >>>>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186) >>>>> at >>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>> at >>>>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41) >>>>> at >>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>> at >>>>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67) >>>>> at >>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>> at >>>>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67) >>>>> at >>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>> at >>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176) >>>>> at >>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216) >>>>> at >>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >>>>> at >>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >>>>> at com.sun.proxy.$Proxy341.mergeCryptoToken(Unknown Source) >>>>> at >>>>> org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821) >>>>> at >>>>> org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721) >>>>> at >>>>> org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586) >>>>> at >>>>> org.cesecore.certificates.ca.CaSessionBean.getCa(CaSessionBean.java:671) >>>>> at >>>>> org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:531) >>>>> at >>>>> org.cesecore.certificates.ca.CaSessionBean.getCAInfoInternal(CaSessionBean.java:334) >>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>>>> at >>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>>>> at >>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>>>> at java.lang.reflect.Method.invoke(Method.java:597) >>>>> at >>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >>>>> at >>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >>>>> at >>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >>>>> at >>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >>>>> at >>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>>>> at >>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>>>> at >>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>>>> at java.lang.reflect.Method.invoke(Method.java:597) >>>>> at >>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >>>>> at >>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>> at >>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) >>>>> at >>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_18362751.invoke(InvocationContextInterceptor_z_fillMethod_18362751.java) >>>>> at >>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>> at >>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) >>>>> at >>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_18362751.invoke(InvocationContextInterceptor_z_setup_18362751.java) >>>>> at >>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>> at >>>>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62) >>>>> at >>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>> at >>>>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56) >>>>> at >>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>>> at >>>>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47) >>>>> >>>>> >>>>> >>>>> >>>>> *17:40:47,957 INFO [Log4jDevice] 2018-05-29 >>>>> 17:40:47+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=**x.x.x.x* >>>>> 17:40:48,090 ERROR [jsp] >>>>> java.lang.NullPointerException >>>>> >>>>> >>>>> >>>>> ------------------------------------------------------------------------------ >>>>> Check out the vibrant tech community on one of the world's most >>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot >>>>> >>>>> >>>>> >>>>> _______________________________________________ >>>>> Ejbca-develop mailing list >>>>> Ejb...@li... >>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>>>> >>>>> >>>>> >>>>> ------------------------------------------------------------------------------ >>>>> Check out the vibrant tech community on one of the world's most >>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot >>>>> >>>>> >>>>> _______________________________________________ >>>>> Ejbca-develop mailing list >>>>> Ejb...@li... >>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop |
|
From: Mehul C. <chh...@ec...> - 2018-06-01 15:23:05
|
Here I have attached members page of the roles in EJBCA-4, if you find that information useful, I am also getting new error while I am hitting adminweb page EJBCA-6.3.2.6 from local network. I have checked firewall rules and access-list. No ip's are blocking there. I am providing new error below , please take a look.
15:22:13,243 ERROR [[jsp]] Servlet.service() for servlet jsp threw exception
java.lang.NoClassDefFoundError: org/ejbca/core/model/authorization/AuthorizationDeniedException
at org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:115)
at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:638)
at org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:444)
at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:382)
at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:310)
at org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:696)
at org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:667)
at org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:808)
at org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:781)
at org.apache.jsp.index_jsp._jspService(index_jsp.java:143)
at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:662)
-------
Thank you,
Mehul Chhayani | Deployment Specialist
chh...@ec...
T:416-226-8600 EXT-246
-----Original Message-----
From: Tomas Gustavsson [mailto:tom...@pr...]
Sent: Friday, June 1, 2018 9:53 AM
To: Mehul Chhayani; ejb...@li...
Cc: Randy Yu
Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
Hi, thanks for the info.
What does your roles looks like in EJBCA 4? Is it possible to show
screenshots of the members page of the roles? It seems to be related to
this.
Regards,
Tomas
On 2018-05-31 15:55, Mehul Chhayani wrote:
> Hello Tomas,
>
> We can configure and migrate PKCS#11 after upgrading EJBCA-6236 , what issue is after successfully upgrading EJBCA-6236, we cannot get adminweb page for ejbca and complaining nullpointerexception and it's also not giving much information on that.can you please advise on that?
>
> -------
> Thank you,
> Mehul Chhayani | Deployment Specialist
> chh...@ec...
> T:416-226-8600 EXT-246
>
>
> -----Original Message-----
> From: Tomas Gustavsson [mailto:tom...@pr...]
> Sent: Wednesday, May 30, 2018 1:34 PM
> To: Mehul Chhayani; ejb...@li...
> Cc: Randy Yu
> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>
>
> SunPKCS#11 should be included by default in any java installation, also
> in hava 6 so you should have it already. It's a matter of re-configuring
> your CA tokens to use the PKCS#11 driver. I think it's described in the
> doc/UPGRADE document.
>
> Regards,
> Tomas
>
>
> On 2018-05-30 19:23, Mehul Chhayani wrote:
>> Hi Tomas,
>>
>> As you have said migrate to a PKCS#11 CA token means that downloading sunpkcs11.jar file , copy into jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am wrong , can you advise me how to migrate a PKCS#11 CA token while upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna library with custom JKS keystore in Ejbca_4_0_16.
>>
>>
>> -------
>> Thank you,
>> Mehul Chhayani | Deployment Specialist
>> chh...@ec...
>> T:416-226-8600 EXT-246
>>
>>
>> -----Original Message-----
>> From: Tomas Gustavsson [mailto:to...@pr...]
>> Sent: Wednesday, May 30, 2018 12:23 PM
>> To: Mehul Chhayani; ejb...@li...
>> Cc: Randy Yu
>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>
>>
>> Hi,
>>
>> Sorry, I donät understand that question. Can you elaborate a little bit
>> what you have done?
>>
>> In the previous answer, you should migrate to a PKCS#11 CA token, still
>> in your EJBCA 4, before upgrading to EJBCA 6.
>>
>> Regards,
>> Tomas
>>
>> On 2018-05-30 18:17, Mehul Chhayani wrote:
>>> Hello Tomas,
>>>
>>> Its working on old ejbca-4.0.16 and we did not change any keystore keys or catoken.properties file. But when we are hitting that giving jsp error, can you please tell us what it is causing an error. Or We should compile new ejbca with upgrade jboss or jdk.
>>>
>>>
>>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127
>>> 16:16:16,367 ERROR [jsp]
>>> java.lang.NullPointerException
>>> at org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305)
>>> at org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259)
>>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139)
>>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192)
>>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115)
>>> at org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86)
>>> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86)
>>> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136)
>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source)
>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>> at org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>> at org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>> at org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>> at org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>> at org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66)
>>> at org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>> at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>> at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>> at org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>> at org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>> at org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>> at org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source)
>>> at org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238)
>>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83)
>>> at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>> at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369)
>>> at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322)
>>> at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249)
>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>> at org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198)
>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>> at org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36)
>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>> at org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109)
>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>> at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>>> at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>>> at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>>> at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>>> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>>> at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>>> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>>> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>>> at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>>> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>>> at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>>> at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>>> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>>> at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>>> at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>>> at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>>> at java.lang.Thread.run(Thread.java:662)
>>>
>>>
>>>
>>>
>>> -------
>>> Thank you,
>>> Mehul Chhayani | Deployment Specialist
>>> chh...@ec...
>>> T:416-226-8600 EXT-246
>>>
>>> -----Original Message-----
>>> From: Tomas Gustavsson [mailto:to...@pr...]
>>> Sent: Wednesday, May 30, 2018 3:15 AM
>>> To: ejb...@li...
>>> Cc: Randy Yu; Mehul Chhayani
>>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error
>>>
>>>
>>> Hi,
>>>
>>> The reason is that you are using an old Crypto Token type which is not
>>> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken
>>> is not valid anymore. You need to migrate to using the generic PKCS#11
>>> CA token. I think these are sections about this in the old
>>> documentation. Sometime during EJBCA 4 we deprecated the old token types
>>> and recommended switching over to PKCS#11 tokens.
>>>
>>> Regards,
>>> Tomas
>>> ---
>>> Save time and money with an Enterprise support subscription. Please see
>>> www.primekey.com for more information.
>>> https://www.primekey.com/products/software/
>>>
>>> On 2018-05-29 19:50, Mehul Chhayani wrote:
>>>> Hello EJBCA Team,
>>>>
>>>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of
>>>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done successfully
>>>> , no error while deploying through ANT-1.8.3.However when I started
>>>> jboos with some following error that no token and ejbtimeout, at the end
>>>> jboss started successfully with some errors, You can access ejbca UI but
>>>> u cannot hit adminweb it complaining some jsp file with
>>>> nullpointerexception. Can you please advise on that? If you want I will
>>>> provide full jboss log. Thanks in advance.
>>>>
>>>> *15:56:44,255 ERROR [CryptoTokenFactory] No token.
>>>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken*
>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>> should be used via the bean container
>>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use
>>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry
>>>> should be used via the bean container
>>>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout*
>>>> *javax.ejb.EJBException: java.lang.NullPointerException*
>>>> at
>>>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
>>>> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
>>>> at
>>>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at
>>>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at
>>>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at
>>>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at
>>>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at
>>>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at
>>>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at
>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>>>> at
>>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>>>> at
>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>>>> at
>>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>>>> at com.sun.proxy.$Proxy341.mergeCryptoToken(Unknown Source)
>>>> at
>>>> org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821)
>>>> at
>>>> org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721)
>>>> at
>>>> org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586)
>>>> at
>>>> org.cesecore.certificates.ca.CaSessionBean.getCa(CaSessionBean.java:671)
>>>> at
>>>> org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:531)
>>>> at
>>>> org.cesecore.certificates.ca.CaSessionBean.getCAInfoInternal(CaSessionBean.java:334)
>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>> at
>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>> at
>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>>>> at
>>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>> at
>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>>> at
>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>>> at
>>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>>>> at
>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_18362751.invoke(InvocationContextInterceptor_z_fillMethod_18362751.java)
>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at
>>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>>>> at
>>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_18362751.invoke(InvocationContextInterceptor_z_setup_18362751.java)
>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at
>>>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at
>>>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>>>> at
>>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>>>> at
>>>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>>>>
>>>>
>>>>
>>>>
>>>> *17:40:47,957 INFO [Log4jDevice] 2018-05-29
>>>> 17:40:47+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=**x.x.x.x*
>>>> 17:40:48,090 ERROR [jsp]
>>>> java.lang.NullPointerException
>>>>
>>>>
>>>>
>>>> ------------------------------------------------------------------------------
>>>> Check out the vibrant tech community on one of the world's most
>>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>>>
>>>>
>>>>
>>>> _______________________________________________
>>>> Ejbca-develop mailing list
>>>> Ejb...@li...
>>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>>>
|
|
From: Tomas G. <to...@pr...> - 2018-06-01 13:54:19
|
Hi, thanks for the info. What does your roles looks like in EJBCA 4? Is it possible to show screenshots of the members page of the roles? It seems to be related to this. Regards, Tomas On 2018-05-31 15:55, Mehul Chhayani wrote: > Hello Tomas, > > We can configure and migrate PKCS#11 after upgrading EJBCA-6236 , what issue is after successfully upgrading EJBCA-6236, we cannot get adminweb page for ejbca and complaining nullpointerexception and it's also not giving much information on that.can you please advise on that? > > ------- > Thank you, > Mehul Chhayani | Deployment Specialist > chh...@ec... > T:416-226-8600 EXT-246 > > > -----Original Message----- > From: Tomas Gustavsson [mailto:tom...@pr...] > Sent: Wednesday, May 30, 2018 1:34 PM > To: Mehul Chhayani; ejb...@li... > Cc: Randy Yu > Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error > > > SunPKCS#11 should be included by default in any java installation, also > in hava 6 so you should have it already. It's a matter of re-configuring > your CA tokens to use the PKCS#11 driver. I think it's described in the > doc/UPGRADE document. > > Regards, > Tomas > > > On 2018-05-30 19:23, Mehul Chhayani wrote: >> Hi Tomas, >> >> As you have said migrate to a PKCS#11 CA token means that downloading sunpkcs11.jar file , copy into jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am wrong , can you advise me how to migrate a PKCS#11 CA token while upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna library with custom JKS keystore in Ejbca_4_0_16. >> >> >> ------- >> Thank you, >> Mehul Chhayani | Deployment Specialist >> chh...@ec... >> T:416-226-8600 EXT-246 >> >> >> -----Original Message----- >> From: Tomas Gustavsson [mailto:to...@pr...] >> Sent: Wednesday, May 30, 2018 12:23 PM >> To: Mehul Chhayani; ejb...@li... >> Cc: Randy Yu >> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >> >> >> Hi, >> >> Sorry, I donät understand that question. Can you elaborate a little bit >> what you have done? >> >> In the previous answer, you should migrate to a PKCS#11 CA token, still >> in your EJBCA 4, before upgrading to EJBCA 6. >> >> Regards, >> Tomas >> >> On 2018-05-30 18:17, Mehul Chhayani wrote: >>> Hello Tomas, >>> >>> Its working on old ejbca-4.0.16 and we did not change any keystore keys or catoken.properties file. But when we are hitting that giving jsp error, can you please tell us what it is causing an error. Or We should compile new ejbca with upgrade jboss or jdk. >>> >>> >>> 16:16:16,239 INFO [Log4jDevice] 2018-05-30 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127 >>> 16:16:16,367 ERROR [jsp] >>> java.lang.NullPointerException >>> at org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305) >>> at org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259) >>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139) >>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192) >>> at org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115) >>> at org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86) >>> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86) >>> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136) >>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>> at java.lang.reflect.Method.invoke(Method.java:597) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >>> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >>> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >>> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source) >>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>> at java.lang.reflect.Method.invoke(Method.java:597) >>> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) >>> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) >>> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66) >>> at org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67) >>> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176) >>> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216) >>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >>> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >>> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source) >>> at org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238) >>> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83) >>> at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70) >>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>> at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369) >>> at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322) >>> at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249) >>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) >>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> at org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198) >>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> at org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36) >>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> at org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109) >>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96) >>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235) >>> at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191) >>> at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190) >>> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433) >>> at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92) >>> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126) >>> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70) >>> at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) >>> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) >>> at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158) >>> at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) >>> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330) >>> at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829) >>> at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598) >>> at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447) >>> at java.lang.Thread.run(Thread.java:662) >>> >>> >>> >>> >>> ------- >>> Thank you, >>> Mehul Chhayani | Deployment Specialist >>> chh...@ec... >>> T:416-226-8600 EXT-246 >>> >>> -----Original Message----- >>> From: Tomas Gustavsson [mailto:to...@pr...] >>> Sent: Wednesday, May 30, 2018 3:15 AM >>> To: ejb...@li... >>> Cc: Randy Yu; Mehul Chhayani >>> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >>> >>> >>> Hi, >>> >>> The reason is that you are using an old Crypto Token type which is not >>> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken >>> is not valid anymore. You need to migrate to using the generic PKCS#11 >>> CA token. I think these are sections about this in the old >>> documentation. Sometime during EJBCA 4 we deprecated the old token types >>> and recommended switching over to PKCS#11 tokens. >>> >>> Regards, >>> Tomas >>> --- >>> Save time and money with an Enterprise support subscription. Please see >>> www.primekey.com for more information. >>> https://www.primekey.com/products/software/ >>> >>> On 2018-05-29 19:50, Mehul Chhayani wrote: >>>> Hello EJBCA Team, >>>> >>>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of >>>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done successfully >>>> , no error while deploying through ANT-1.8.3.However when I started >>>> jboos with some following error that no token and ejbtimeout, at the end >>>> jboss started successfully with some errors, You can access ejbca UI but >>>> u cannot hit adminweb it complaining some jsp file with >>>> nullpointerexception. Can you please advise on that? If you want I will >>>> provide full jboss log. Thanks in advance. >>>> >>>> *15:56:44,255 ERROR [CryptoTokenFactory] No token. >>>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken* >>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use >>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry >>>> should be used via the bean container >>>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use >>>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry >>>> should be used via the bean container >>>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout* >>>> *javax.ejb.EJBException: java.lang.NullPointerException* >>>> at >>>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77) >>>> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83) >>>> at >>>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190) >>>> at >>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at >>>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) >>>> at >>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >>>> at >>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at >>>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) >>>> at >>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at >>>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186) >>>> at >>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at >>>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41) >>>> at >>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at >>>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67) >>>> at >>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at >>>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67) >>>> at >>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at >>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176) >>>> at >>>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216) >>>> at >>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >>>> at >>>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >>>> at com.sun.proxy.$Proxy341.mergeCryptoToken(Unknown Source) >>>> at >>>> org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821) >>>> at >>>> org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721) >>>> at >>>> org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586) >>>> at >>>> org.cesecore.certificates.ca.CaSessionBean.getCa(CaSessionBean.java:671) >>>> at >>>> org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:531) >>>> at >>>> org.cesecore.certificates.ca.CaSessionBean.getCAInfoInternal(CaSessionBean.java:334) >>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>>> at >>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>>> at >>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>>> at java.lang.reflect.Method.invoke(Method.java:597) >>>> at >>>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >>>> at >>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >>>> at >>>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >>>> at >>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >>>> at >>>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>>> at >>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>>> at >>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>>> at java.lang.reflect.Method.invoke(Method.java:597) >>>> at >>>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >>>> at >>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at >>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) >>>> at >>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_18362751.invoke(InvocationContextInterceptor_z_fillMethod_18362751.java) >>>> at >>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at >>>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) >>>> at >>>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_18362751.invoke(InvocationContextInterceptor_z_setup_18362751.java) >>>> at >>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at >>>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62) >>>> at >>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at >>>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56) >>>> at >>>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>>> at >>>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47) >>>> >>>> >>>> >>>> >>>> *17:40:47,957 INFO [Log4jDevice] 2018-05-29 >>>> 17:40:47+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=**x.x.x.x* >>>> 17:40:48,090 ERROR [jsp] >>>> java.lang.NullPointerException >>>> >>>> >>>> >>>> ------------------------------------------------------------------------------ >>>> Check out the vibrant tech community on one of the world's most >>>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot >>>> >>>> >>>> >>>> _______________________________________________ >>>> Ejbca-develop mailing list >>>> Ejb...@li... >>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>>> |
|
From: Mehul C. <chh...@ec...> - 2018-05-31 13:56:05
|
Hello Tomas, We can configure and migrate PKCS#11 after upgrading EJBCA-6236 , what issue is after successfully upgrading EJBCA-6236, we cannot get adminweb page for ejbca and complaining nullpointerexception and it's also not giving much information on that.can you please advise on that? ------- Thank you, Mehul Chhayani | Deployment Specialist chh...@ec... T:416-226-8600 EXT-246 -----Original Message----- From: Tomas Gustavsson [mailto:tom...@pr...] Sent: Wednesday, May 30, 2018 1:34 PM To: Mehul Chhayani; ejb...@li... Cc: Randy Yu Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error SunPKCS#11 should be included by default in any java installation, also in hava 6 so you should have it already. It's a matter of re-configuring your CA tokens to use the PKCS#11 driver. I think it's described in the doc/UPGRADE document. Regards, Tomas On 2018-05-30 19:23, Mehul Chhayani wrote: > Hi Tomas, > > As you have said migrate to a PKCS#11 CA token means that downloading sunpkcs11.jar file , copy into jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am wrong , can you advise me how to migrate a PKCS#11 CA token while upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna library with custom JKS keystore in Ejbca_4_0_16. > > > ------- > Thank you, > Mehul Chhayani | Deployment Specialist > chh...@ec... > T:416-226-8600 EXT-246 > > > -----Original Message----- > From: Tomas Gustavsson [mailto:to...@pr...] > Sent: Wednesday, May 30, 2018 12:23 PM > To: Mehul Chhayani; ejb...@li... > Cc: Randy Yu > Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error > > > Hi, > > Sorry, I donät understand that question. Can you elaborate a little bit > what you have done? > > In the previous answer, you should migrate to a PKCS#11 CA token, still > in your EJBCA 4, before upgrading to EJBCA 6. > > Regards, > Tomas > > On 2018-05-30 18:17, Mehul Chhayani wrote: >> Hello Tomas, >> >> Its working on old ejbca-4.0.16 and we did not change any keystore keys or catoken.properties file. But when we are hitting that giving jsp error, can you please tell us what it is causing an error. Or We should compile new ejbca with upgrade jboss or jdk. >> >> >> 16:16:16,239 INFO [Log4jDevice] 2018-05-30 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127 >> 16:16:16,367 ERROR [jsp] >> java.lang.NullPointerException >> at org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305) >> at org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259) >> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139) >> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192) >> at org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115) >> at org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86) >> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86) >> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136) >> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >> at java.lang.reflect.Method.invoke(Method.java:597) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source) >> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >> at java.lang.reflect.Method.invoke(Method.java:597) >> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) >> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) >> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66) >> at org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176) >> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216) >> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source) >> at org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238) >> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83) >> at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70) >> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >> at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369) >> at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322) >> at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249) >> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >> at org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >> at org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >> at org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >> at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >> at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235) >> at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191) >> at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190) >> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433) >> at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92) >> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126) >> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70) >> at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) >> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) >> at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158) >> at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) >> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330) >> at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829) >> at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598) >> at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447) >> at java.lang.Thread.run(Thread.java:662) >> >> >> >> >> ------- >> Thank you, >> Mehul Chhayani | Deployment Specialist >> chh...@ec... >> T:416-226-8600 EXT-246 >> >> -----Original Message----- >> From: Tomas Gustavsson [mailto:to...@pr...] >> Sent: Wednesday, May 30, 2018 3:15 AM >> To: ejb...@li... >> Cc: Randy Yu; Mehul Chhayani >> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >> >> >> Hi, >> >> The reason is that you are using an old Crypto Token type which is not >> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken >> is not valid anymore. You need to migrate to using the generic PKCS#11 >> CA token. I think these are sections about this in the old >> documentation. Sometime during EJBCA 4 we deprecated the old token types >> and recommended switching over to PKCS#11 tokens. >> >> Regards, >> Tomas >> --- >> Save time and money with an Enterprise support subscription. Please see >> www.primekey.com for more information. >> https://www.primekey.com/products/software/ >> >> On 2018-05-29 19:50, Mehul Chhayani wrote: >>> Hello EJBCA Team, >>> >>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of >>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done successfully >>> , no error while deploying through ANT-1.8.3.However when I started >>> jboos with some following error that no token and ejbtimeout, at the end >>> jboss started successfully with some errors, You can access ejbca UI but >>> u cannot hit adminweb it complaining some jsp file with >>> nullpointerexception. Can you please advise on that? If you want I will >>> provide full jboss log. Thanks in advance. >>> >>> *15:56:44,255 ERROR [CryptoTokenFactory] No token. >>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken* >>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use >>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry >>> should be used via the bean container >>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use >>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry >>> should be used via the bean container >>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout* >>> *javax.ejb.EJBException: java.lang.NullPointerException* >>> at >>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77) >>> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83) >>> at >>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176) >>> at >>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216) >>> at >>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >>> at >>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >>> at com.sun.proxy.$Proxy341.mergeCryptoToken(Unknown Source) >>> at >>> org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821) >>> at >>> org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721) >>> at >>> org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586) >>> at >>> org.cesecore.certificates.ca.CaSessionBean.getCa(CaSessionBean.java:671) >>> at >>> org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:531) >>> at >>> org.cesecore.certificates.ca.CaSessionBean.getCAInfoInternal(CaSessionBean.java:334) >>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>> at >>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>> at >>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>> at java.lang.reflect.Method.invoke(Method.java:597) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >>> at >>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >>> at >>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >>> at >>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>> at >>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>> at >>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>> at java.lang.reflect.Method.invoke(Method.java:597) >>> at >>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) >>> at >>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_18362751.invoke(InvocationContextInterceptor_z_fillMethod_18362751.java) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) >>> at >>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_18362751.invoke(InvocationContextInterceptor_z_setup_18362751.java) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47) >>> >>> >>> >>> >>> *17:40:47,957 INFO [Log4jDevice] 2018-05-29 >>> 17:40:47+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=**x.x.x.x* >>> 17:40:48,090 ERROR [jsp] >>> java.lang.NullPointerException >>> >>> >>> >>> ------------------------------------------------------------------------------ >>> Check out the vibrant tech community on one of the world's most >>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot >>> >>> >>> >>> _______________________________________________ >>> Ejbca-develop mailing list >>> Ejb...@li... >>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>> |
|
From: Tomas G. <to...@pr...> - 2018-05-30 17:45:40
|
SunPKCS#11 should be included by default in any java installation, also in hava 6 so you should have it already. It's a matter of re-configuring your CA tokens to use the PKCS#11 driver. I think it's described in the doc/UPGRADE document. Regards, Tomas On 2018-05-30 19:23, Mehul Chhayani wrote: > Hi Tomas, > > As you have said migrate to a PKCS#11 CA token means that downloading sunpkcs11.jar file , copy into jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am wrong , can you advise me how to migrate a PKCS#11 CA token while upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna library with custom JKS keystore in Ejbca_4_0_16. > > > ------- > Thank you, > Mehul Chhayani | Deployment Specialist > chh...@ec... > T:416-226-8600 EXT-246 > > > -----Original Message----- > From: Tomas Gustavsson [mailto:to...@pr...] > Sent: Wednesday, May 30, 2018 12:23 PM > To: Mehul Chhayani; ejb...@li... > Cc: Randy Yu > Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error > > > Hi, > > Sorry, I donät understand that question. Can you elaborate a little bit > what you have done? > > In the previous answer, you should migrate to a PKCS#11 CA token, still > in your EJBCA 4, before upgrading to EJBCA 6. > > Regards, > Tomas > > On 2018-05-30 18:17, Mehul Chhayani wrote: >> Hello Tomas, >> >> Its working on old ejbca-4.0.16 and we did not change any keystore keys or catoken.properties file. But when we are hitting that giving jsp error, can you please tell us what it is causing an error. Or We should compile new ejbca with upgrade jboss or jdk. >> >> >> 16:16:16,239 INFO [Log4jDevice] 2018-05-30 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127 >> 16:16:16,367 ERROR [jsp] >> java.lang.NullPointerException >> at org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305) >> at org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259) >> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139) >> at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192) >> at org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115) >> at org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86) >> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86) >> at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136) >> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >> at java.lang.reflect.Method.invoke(Method.java:597) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >> at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >> at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >> at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source) >> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >> at java.lang.reflect.Method.invoke(Method.java:597) >> at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) >> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) >> at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66) >> at org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67) >> at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176) >> at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216) >> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >> at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >> at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source) >> at org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238) >> at org.apache.jsp.index_jsp._jspService(index_jsp.java:83) >> at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70) >> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >> at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369) >> at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322) >> at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249) >> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >> at org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >> at org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >> at org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >> at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >> at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235) >> at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191) >> at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190) >> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433) >> at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92) >> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126) >> at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70) >> at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) >> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) >> at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158) >> at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) >> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330) >> at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829) >> at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598) >> at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447) >> at java.lang.Thread.run(Thread.java:662) >> >> >> >> >> ------- >> Thank you, >> Mehul Chhayani | Deployment Specialist >> chh...@ec... >> T:416-226-8600 EXT-246 >> >> -----Original Message----- >> From: Tomas Gustavsson [mailto:to...@pr...] >> Sent: Wednesday, May 30, 2018 3:15 AM >> To: ejb...@li... >> Cc: Randy Yu; Mehul Chhayani >> Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error >> >> >> Hi, >> >> The reason is that you are using an old Crypto Token type which is not >> supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken >> is not valid anymore. You need to migrate to using the generic PKCS#11 >> CA token. I think these are sections about this in the old >> documentation. Sometime during EJBCA 4 we deprecated the old token types >> and recommended switching over to PKCS#11 tokens. >> >> Regards, >> Tomas >> --- >> Save time and money with an Enterprise support subscription. Please see >> www.primekey.com for more information. >> https://www.primekey.com/products/software/ >> >> On 2018-05-29 19:50, Mehul Chhayani wrote: >>> Hello EJBCA Team, >>> >>> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of >>> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done successfully >>> , no error while deploying through ANT-1.8.3.However when I started >>> jboos with some following error that no token and ejbtimeout, at the end >>> jboss started successfully with some errors, You can access ejbca UI but >>> u cannot hit adminweb it complaining some jsp file with >>> nullpointerexception. Can you please advise on that? If you want I will >>> provide full jboss log. Thanks in advance. >>> >>> *15:56:44,255 ERROR [CryptoTokenFactory] No token. >>> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken* >>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use >>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry >>> should be used via the bean container >>> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use >>> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry >>> should be used via the bean container >>> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout* >>> *javax.ejb.EJBException: java.lang.NullPointerException* >>> at >>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77) >>> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83) >>> at >>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176) >>> at >>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216) >>> at >>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >>> at >>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >>> at com.sun.proxy.$Proxy341.mergeCryptoToken(Unknown Source) >>> at >>> org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821) >>> at >>> org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721) >>> at >>> org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586) >>> at >>> org.cesecore.certificates.ca.CaSessionBean.getCa(CaSessionBean.java:671) >>> at >>> org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:531) >>> at >>> org.cesecore.certificates.ca.CaSessionBean.getCAInfoInternal(CaSessionBean.java:334) >>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>> at >>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>> at >>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>> at java.lang.reflect.Method.invoke(Method.java:597) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >>> at >>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >>> at >>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >>> at >>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>> at >>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>> at >>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>> at java.lang.reflect.Method.invoke(Method.java:597) >>> at >>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) >>> at >>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_18362751.invoke(InvocationContextInterceptor_z_fillMethod_18362751.java) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) >>> at >>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_18362751.invoke(InvocationContextInterceptor_z_setup_18362751.java) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47) >>> >>> >>> >>> >>> *17:40:47,957 INFO [Log4jDevice] 2018-05-29 >>> 17:40:47+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=**x.x.x.x* >>> 17:40:48,090 ERROR [jsp] >>> java.lang.NullPointerException >>> >>> >>> >>> ------------------------------------------------------------------------------ >>> Check out the vibrant tech community on one of the world's most >>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot >>> >>> >>> >>> _______________________________________________ >>> Ejbca-develop mailing list >>> Ejb...@li... >>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>> |
|
From: Mehul C. <chh...@ec...> - 2018-05-30 17:24:03
|
Hi Tomas, As you have said migrate to a PKCS#11 CA token means that downloading sunpkcs11.jar file , copy into jdk(/opt/jdk1.6.0_45/jre/lib/ext/) and jboss server library ? if I am wrong , can you advise me how to migrate a PKCS#11 CA token while upgrading EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of jboss-5.1.0 GA with oracle-jdk-1.6. after upgrading. Previous we have used custom Luna library with custom JKS keystore in Ejbca_4_0_16. ------- Thank you, Mehul Chhayani | Deployment Specialist chh...@ec... T:416-226-8600 EXT-246 -----Original Message----- From: Tomas Gustavsson [mailto:to...@pr...] Sent: Wednesday, May 30, 2018 12:23 PM To: Mehul Chhayani; ejb...@li... Cc: Randy Yu Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error Hi, Sorry, I donät understand that question. Can you elaborate a little bit what you have done? In the previous answer, you should migrate to a PKCS#11 CA token, still in your EJBCA 4, before upgrading to EJBCA 6. Regards, Tomas On 2018-05-30 18:17, Mehul Chhayani wrote: > Hello Tomas, > > Its working on old ejbca-4.0.16 and we did not change any keystore keys or catoken.properties file. But when we are hitting that giving jsp error, can you please tell us what it is causing an error. Or We should compile new ejbca with upgrade jboss or jdk. > > > 16:16:16,239 INFO [Log4jDevice] 2018-05-30 16:16:16+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=172.40.40.127 > 16:16:16,367 ERROR [jsp] > java.lang.NullPointerException > at org.cesecore.authentication.tokens.X509CertificateAuthenticationToken.matchTokenType(X509CertificateAuthenticationToken.java:305) > at org.cesecore.authorization.access.AccessTreeNode.findPreferredRule(AccessTreeNode.java:259) > at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:139) > at org.cesecore.authorization.access.AccessTreeNode.isAuthorizedRecursive(AccessTreeNode.java:192) > at org.cesecore.authorization.access.AccessTreeNode.isAuthorized(AccessTreeNode.java:115) > at org.cesecore.authorization.access.AccessTree.isAuthorized(AccessTree.java:86) > at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:86) > at org.cesecore.authorization.control.AccessControlSessionBean.isAuthorized(AccessControlSessionBean.java:136) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) > at java.lang.reflect.Method.invoke(Method.java:597) > at org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) > at org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) > at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) > at org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) > at sun.reflect.GeneratedMethodAccessor323.invoke(Unknown Source) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) > at java.lang.reflect.Method.invoke(Method.java:597) > at org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) > at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_9560387.invoke(InvocationContextInterceptor_z_fillMethod_9560387.java) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) > at org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_9560387.invoke(InvocationContextInterceptor_z_setup_9560387.java) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.aspects.tx.TxPolicy.invokeInNoTx(TxPolicy.java:66) > at org.jboss.aspects.tx.TxInterceptor$Supports.invoke(TxInterceptor.java:143) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67) > at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) > at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176) > at org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216) > at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) > at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) > at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) > at org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) > at com.sun.proxy.$Proxy370.isAuthorized(Unknown Source) > at org.ejbca.ui.web.admin.configuration.EjbcaWebBean.initialize(EjbcaWebBean.java:238) > at org.apache.jsp.index_jsp._jspService(index_jsp.java:83) > at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70) > at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) > at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:369) > at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:322) > at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:249) > at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) > at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) > at org.owasp.filters.ContentSecurityPolicyFilter.doFilter(ContentSecurityPolicyFilter.java:198) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) > at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) > at org.owasp.filters.ClickjackFilter.doFilter(ClickjackFilter.java:36) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) > at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) > at org.ejbca.ui.web.admin.ProxiedAuthenticationFilter.doFilter(ProxiedAuthenticationFilter.java:109) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) > at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) > at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) > at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) > at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235) > at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191) > at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190) > at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433) > at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92) > at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126) > at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70) > at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) > at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) > at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158) > at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) > at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330) > at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829) > at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447) > at java.lang.Thread.run(Thread.java:662) > > > > > ------- > Thank you, > Mehul Chhayani | Deployment Specialist > chh...@ec... > T:416-226-8600 EXT-246 > > -----Original Message----- > From: Tomas Gustavsson [mailto:to...@pr...] > Sent: Wednesday, May 30, 2018 3:15 AM > To: ejb...@li... > Cc: Randy Yu; Mehul Chhayani > Subject: Re: [Ejbca-develop] EJBCA-ce-6.3.2.6 upgrade - No token error > > > Hi, > > The reason is that you are using an old Crypto Token type which is not > supported anymore. The old org.ejbca.core.model.ca.catoken.LunaCAToken > is not valid anymore. You need to migrate to using the generic PKCS#11 > CA token. I think these are sections about this in the old > documentation. Sometime during EJBCA 4 we deprecated the old token types > and recommended switching over to PKCS#11 tokens. > > Regards, > Tomas > --- > Save time and money with an Enterprise support subscription. Please see > www.primekey.com for more information. > https://www.primekey.com/products/software/ > > On 2018-05-29 19:50, Mehul Chhayani wrote: >> Hello EJBCA Team, >> >> I was trying to upgrade EJBCA_CE_6.3.2.6 from Ejbca_4_0_16 on top of >> jboss-5.1.0 GA with oracle-jdk-1.6, deploy-upgrade was done successfully >> , no error while deploying through ANT-1.8.3.However when I started >> jboos with some following error that no token and ejbtimeout, at the end >> jboss started successfully with some errors, You can access ejbca UI but >> u cannot hit adminweb it complaining some jsp file with >> nullpointerexception. Can you please advise on that? If you want I will >> provide full jboss log. Thanks in advance. >> >> *15:56:44,255 ERROR [CryptoTokenFactory] No token. >> Classpath=org.ejbca.core.model.ca.catoken.LunaCAToken* >> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use >> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry >> should be used via the bean container >> 15:56:44,264 WARN [InterceptorsFactory] EJBTHREE-1246: Do not use >> InterceptorsFactory with a ManagedObjectAdvisor, InterceptorRegistry >> should be used via the bean container >> *15:56:44,301 ERROR [TimerImpl] Error invoking ejbTimeout* >> *javax.ejb.EJBException: java.lang.NullPointerException* >> at >> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77) >> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83) >> at >> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190) >> at >> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at >> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) >> at >> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >> at >> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at >> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) >> at >> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at >> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186) >> at >> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at >> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41) >> at >> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at >> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67) >> at >> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at >> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67) >> at >> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at >> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176) >> at >> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216) >> at >> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >> at >> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >> at com.sun.proxy.$Proxy341.mergeCryptoToken(Unknown Source) >> at >> org.cesecore.certificates.ca.CaSessionBean.adhocUpgradeFrom50(CaSessionBean.java:821) >> at >> org.cesecore.certificates.ca.CaSessionBean.upgradeAndMergeToDatabase(CaSessionBean.java:721) >> at >> org.cesecore.certificates.ca.CaSessionBean.getCAData(CaSessionBean.java:586) >> at >> org.cesecore.certificates.ca.CaSessionBean.getCa(CaSessionBean.java:671) >> at >> org.cesecore.certificates.ca.CaSessionBean.getCAInternal(CaSessionBean.java:531) >> at >> org.cesecore.certificates.ca.CaSessionBean.getCAInfoInternal(CaSessionBean.java:334) >> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >> at >> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >> at >> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >> at java.lang.reflect.Method.invoke(Method.java:597) >> at >> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >> at >> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >> at >> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >> at >> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >> at >> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >> at >> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >> at >> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >> at java.lang.reflect.Method.invoke(Method.java:597) >> at >> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >> at >> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at >> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) >> at >> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_18362751.invoke(InvocationContextInterceptor_z_fillMethod_18362751.java) >> at >> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at >> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) >> at >> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_18362751.invoke(InvocationContextInterceptor_z_setup_18362751.java) >> at >> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at >> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62) >> at >> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at >> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56) >> at >> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >> at >> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47) >> >> >> >> >> *17:40:47,957 INFO [Log4jDevice] 2018-05-29 >> 17:40:47+00:00;ADMINWEB_ADMINISTRATORLOGGEDIN;SUCCESS;ADMINWEB;EJBCA;CN=SuperAdmin;-1146543808;4773512E610C2691;;remoteip=**x.x.x.x* >> 17:40:48,090 ERROR [jsp] >> java.lang.NullPointerException >> >> >> >> ------------------------------------------------------------------------------ >> Check out the vibrant tech community on one of the world's most >> engaging tech sites, Slashdot.org! http://sdm.link/slashdot >> >> >> >> _______________________________________________ >> Ejbca-develop mailing list >> Ejb...@li... >> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >> |
106 messages has been excluded from this view by a project administrator.
