Menu
▾
▴
ejbca-develop
|
From: M.G.R <mg....@ni...> - 2013-01-09 10:09:48
|
while requesting for validating the certificate issued by external CA using openssl OCSP client shows the following error in the OCSP server side ERROR [org.ejbca.ui.web.protocol.OCSPServletBase] (http-0.0.0.0-8080-1) Error processing OCSP request. Message: java.lang.RuntimeException: java.lang.NullPointerException. & Shows the following error in the client side Error querying OCSP responsder is there any way to trace the problem. please help me. Thanks in advance. -- View this message in context: http://old.nabble.com/Error-in-the-OCSP-Responder-tp34877232p34877232.html Sent from the EjbCA - Dev mailing list archive at Nabble.com. |
|
From: Tomas G. <to...@pr...> - 2013-01-09 11:05:41
|
You have to provide more of the error. Not possible to say anything from the short snippet you provide. Also versions are of course neede din order to say anything Cheers, Tomas PrimeKey Solutions offers commercial EJBCA and SignServer support subscriptions and training courses. Please see www.primekey.se or contact in...@pr... for more information. http://www.primekey.se/Services/Support/ http://www.primekey.se/Services/Training/ ********** PrimeKey Solutions AB Anderstorpsvägen 16, 171 54 Solna, Sweden Mob: +46 (0)707421096 Internet: www.primekey.se Twitter: twitter.com/primekeyPKI ********** On 01/09/2013 11:09 AM, M.G.R wrote: > > while requesting for validating the certificate issued by external CA using > openssl OCSP client shows the following error in the OCSP server side > > ERROR [org.ejbca.ui.web.protocol.OCSPServletBase] (http-0.0.0.0-8080-1) > Error processing OCSP request. Message: java.lang.RuntimeException: > java.lang.NullPointerException. > > & > > Shows the following error in the client side > > Error querying OCSP responsder > > is there any way to trace the problem. please help me. > > > Thanks in advance. > |
|
From: M.G.R <mg....@ni...> - 2013-01-09 11:44:33
|
Server OS : Ubuntu 12.04 (64 bit)
ejbca version : ejbca_4_0_10
Jboss server version: jboss-5.1.0.GA
ExternalCA imported : NICsub-CA_for_NIC_2011.cer
Issued certificate : spk.cer
2013-01-09 15:07:58,539 INFO [org.ejbca.ui.web.protocol.OCSPServletBase]
(http-0.0.0.0-8080-1) Received OCSP request for certificate with serNo:
6001bed296181fee341d, and issuerNameHash:
0c7558aee8c0ae3da9d64337ffb572a33f8b9f8a. Client ip 10.163.14.49.
2013-01-09 15:07:58,574 INFO [org.ejbca.ui.web.protocol.OCSPServletBase]
(http-0.0.0.0-8080-1) Adding status information (good) for certificate with
serial '6001bed296181fee341d' from issuer 'C=IN,O=National Informatics
Centre,OU=Sub-CA,CN=NIC sub-CA for NIC 2011'.
2013-01-09 15:07:58,577 INFO [STDOUT] (http-0.0.0.0-8080-1) #############
Inside OCSPResponseItem ###############
2013-01-09 15:07:58,580 INFO [STDOUT] (http-0.0.0.0-8080-1) 1.Admin:UNKNOWN
2013-01-09 15:07:58,580 INFO [STDOUT] (http-0.0.0.0-8080-1)
2.caid:589037259
2013-01-09 15:07:58,580 INFO [STDOUT] (http-0.0.0.0-8080-1)
3.OCSPCAServiceRequest:org.ejbca.core.model.ca.caadmin.extendedcaservices.OCSPCAServiceRequest@4bc63fc3
2013-01-09 15:07:58,581 INFO [STDOUT] (http-0.0.0.0-8080-1) 4:Proxy to
jboss.j2ee:ear=ejbca.ear,jar=ejbca-ejb.jar,name=CAAdminSessionBean,service=EJB3
implementing [interface org.ejbca.core.ejb.ca.caadmin.CAAdminSessionLocal]
2013-01-09 15:07:58,607 INFO [STDOUT] (http-0.0.0.0-8080-1)
1.caSession:UNKNOWN
2013-01-09 15:07:58,607 INFO [STDOUT] (http-0.0.0.0-8080-1)
2.caSession:589037259
2013-01-09 15:07:58,607 INFO [STDOUT] (http-0.0.0.0-8080-1)
2.caSession:org.ejbca.core.model.ca.caadmin.extendedcaservices.OCSPCAServiceRequest@4bc63fc3
2013-01-09 15:07:58,614 WARN
[org.jboss.ejb3.interceptors.aop.InterceptorsFactory] (http-0.0.0.0-8080-1)
EJBTHREE-1246: Do not use InterceptorsFactory with a ManagedObjectAdvisor,
InterceptorRegistry should be used via the bean container
2013-01-09 15:07:58,615 WARN
[org.jboss.ejb3.interceptors.aop.InterceptorsFactory] (http-0.0.0.0-8080-1)
EJBTHREE-1246: Do not use InterceptorsFactory with a ManagedObjectAdvisor,
InterceptorRegistry should be used via the bean container
2013-01-09 15:07:58,621 WARN
[org.jboss.ejb3.interceptors.aop.InterceptorsFactory] (http-0.0.0.0-8080-1)
EJBTHREE-1246: Do not use InterceptorsFactory with a ManagedObjectAdvisor,
InterceptorRegistry should be used via the bean container
2013-01-09 15:07:58,621 WARN
[org.jboss.ejb3.interceptors.aop.InterceptorsFactory] (http-0.0.0.0-8080-1)
EJBTHREE-1246: Do not use InterceptorsFactory with a ManagedObjectAdvisor,
InterceptorRegistry should be used via the bean container
2013-01-09 15:07:58,626 WARN
[org.jboss.ejb3.interceptors.aop.InterceptorsFactory] (http-0.0.0.0-8080-1)
EJBTHREE-1246: Do not use InterceptorsFactory with a ManagedObjectAdvisor,
InterceptorRegistry should be used via the bean container
2013-01-09 15:07:58,626 WARN
[org.jboss.ejb3.interceptors.aop.InterceptorsFactory] (http-0.0.0.0-8080-1)
EJBTHREE-1246: Do not use InterceptorsFactory with a ManagedObjectAdvisor,
InterceptorRegistry should be used via the bean container
2013-01-09 15:07:58,757 INFO [STDOUT] (http-0.0.0.0-8080-1) CA
:org.ejbca.core.model.ca.caadmin.X509CA@1436fde2
2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1)
getExtendedCAService Inside ..............1
2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1) returnval
Inside ..............null
2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1) returnval
Inside ..............null
2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1) daata Inside
..............{extendedcaservices=[], numberofreqapprovals=1,
catoken={catokentype=3, sequence=00000, signaturealgorithm=SHA1WithRSA,
sequenceformat=1, classpath=org.ejbca.core.model.ca.catoken.NullCAToken,
version=7.0},
certificatechain=[MIIEmjCCA4KgAwIBAgIKFCkm0v8UQ5s4+TANBgkqhkiG9w0BAQsFADCByDELMAkG
A1UEBhMCSU4xJDAiBgNVBAoTG05hdGlvbmFsIEluZm9ybWF0aWNzIENlbnRyZTEd
MBsGA1UECxMUQ2VydGlmeWluZyBBdXRob3JpdHkxDzANBgNVBBETBjExMDAwMzEO
MAwGA1UECBMFRGVsaGkxHjAcBgNVBAkTFUxvZGhpIFJvYWQsIE5ldyBEZWxoaTEd
MBsGA1UEMwwUQS1CbG9jaywgQ0dPIENvbXBsZXgxFDASBgNVBAMTC05JQyBDQSAy
MDExMB4XDTExMDQwMTA2MDkxNVoXDTE2MDMxMDA2MDkxNVowZjELMAkGA1UEBhMC
SU4xJDAiBgNVBAoTG05hdGlvbmFsIEluZm9ybWF0aWNzIENlbnRyZTEPMA0GA1UE
CxMGU3ViLUNBMSAwHgYDVQQDExdOSUMgc3ViLUNBIGZvciBOSUMgMjAxMTCCASIw
DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALTjDqBFmifF+I8Xb9HyrmG0bk8I
LaUEr4RMCNDNER1rZTAmab9I7kFHGCNjKD5SmtXLDFnDkKV1gp96Fk6hmZ8CVQ5C
dRyO616qvd3TZLN8/Xm0Cl3cBwuTv8XU9nwf4hoyRDQXQK8Psq0zmS2fuRse0q3W
TmrRi7Ck2C9zD9eCBjoO0QebgcQ+VXYv1c0ORO0+gD1CRb5j+0GLmb0mK98Wb+R9
3zs7LOV4qIMMEhO4K92+0zomlpHni0blLvCGRd1fAyo5teb9Gw8BaV20vfzubVC5
0NLAEeRa1dSBkkfiPVGavZpXuqLFmIHJCTVODspQvmcUP2rdDPuvkAhdshcCAwEA
AaOB5jCB4zASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBT6gA8c/HOkx2mQ
E67vPBCtqq8ZhDATBgNVHSMEDDAKgAhOVU+us9+hZjAOBgNVHQ8BAf8EBAMCAQYw
EgYDVR0gBAswCTAHBgVggmRkAjBCBggrBgEFBQcBAQQ2MDQwMgYIKwYBBQUHMAKG
Jmh0dHA6Ly9uaWNjYS5uaWMuaW4vY2VydC9jZXJ0XzI3OTIuY2VyMDEGA1UdHwQq
MCgwJqAkoCKGIGh0dHA6Ly9uaWNjYS5uaWMuaW4vY3JsXzI3OTIuY3JsMA0GCSqG
SIb3DQEBCwUAA4IBAQC8K4nthWVPqbXsP5VeeIjiwZ5Plvy+1Cbo3wbzjPYhtCRo
yOoO/qPyKZ3zNLZaWSz7wPGGBq5niiQaINTJ0+fBBD0unAlG0ZpSvEFqrenjcfKI
ApKfNT6qdg6om+oFMudVrhgWyYqFCM2op2qRcIPHRH7BrX3xT2Ns2+NKc/nIt3L1
NxDQm0arvRTYmMjOXEL4fUasxBlWKJR1HvtsnUb2wrXwEEl0/XJiGeg1SHXa/kN/
J8eQ359O/ULeXUNcfqtjkSjRW9vGUcwTMP1knyNYRbXKoWCuLv2uvx2gOzh9YwAP
DH3JdZGe5lDqC+IyA/pYhh5y5jhCKfvH5MabaR7d],
useprintablestringsubjectdn=false, policies=[], defaultcrldistpoint=,
version=19.0, catype=1, useCertreqHistory=true, validity=0,
description=B64:Q0EgY3JlYXRlZCBieSBjZXJ0aWZpY2F0ZSBpbXBvcnQu, expiretime=Thu
Mar 10 11:39:15 IST 2016, deltacrlperiod=0, useCertificateStorage=true,
subjectaltname=null, useldapdnorder=true, usecrlnumber=false,
finishuser=false, doEnforceUniqueSubjectDNSerialnumber=false, crlperiod=0,
signedby=2, doEnforceUniqueDistinguishedName=true,
authoritykeyidentifiercritical=false, revokationreason=-1,
doEnforceUniquePublicKeys=true, crlnumbercritical=false,
cadefinedfreshestcrl=, defaultocspservicelocator=,
useauthoritykeyidentifier=false, crldistributionpointoncrlcritical=false,
useUserStorage=true, cmpraauthsecret=null, approvalsettings=[],
certificateprofileid=2, defaultcrlissuer=, includeinhealthcheck=false,
useutf8policytext=false, crlIssueInterval=0,
usecrldistributionpointoncrl=false, crlOverlapTime=36000000,
crlpublishers=[]}
2013-01-09 15:07:58,759 INFO [STDOUT] (http-0.0.0.0-8080-1)
EXTENDEDCASERVICE+type:extendedcaservice1
2013-01-09 15:07:58,759 INFO [STDOUT] (http-0.0.0.0-8080-1) 1111:null
2013-01-09 15:07:58,759 INFO [STDOUT] (http-0.0.0.0-8080-1) Exception
Inside ..............null
2013-01-09 15:07:58,759 ERROR [STDERR] (http-0.0.0.0-8080-1)
java.lang.NullPointerException
2013-01-09 15:07:58,760 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.ejbca.core.model.ca.caadmin.CA.getExtendedCAService(CA.java:833)
2013-01-09 15:07:58,760 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.ejbca.core.model.ca.caadmin.CA.extendedService(CA.java:753)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.ejbca.core.ejb.ca.caadmin.CAAdminSessionBean.extendedService(CAAdminSessionBean.java:2380)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
java.lang.reflect.Method.invoke(Method.java:616)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
sun.reflect.GeneratedMethodAccessor338.invoke(Unknown Source)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
java.lang.reflect.Method.invoke(Method.java:616)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_1005639669.invoke(InvocationContextInterceptor_z_fillMethod_1005639669.java)
2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_1005639669.invoke(InvocationContextInterceptor_z_setup_1005639669.java)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:79)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
$Proxy499.extendedService(Unknown Source)
2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.ejbca.ui.web.protocol.OCSPServlet.extendedService(OCSPServlet.java:60)
2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.ejbca.ui.web.protocol.OCSPServletBase.signOCSPResponse(OCSPServletBase.java:223)
2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.ejbca.ui.web.protocol.OCSPServletBase.serviceOCSP(OCSPServletBase.java:905)
2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.ejbca.ui.web.protocol.OCSPServletBase.doPost(OCSPServletBase.java:375)
2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
java.lang.Thread.run(Thread.java:679)
2013-01-09 15:07:58,785 ERROR [org.ejbca.ui.web.protocol.OCSPServletBase]
(http-0.0.0.0-8080-1) Error processing OCSP request. Message:
java.lang.RuntimeException: java.lang.NullPointerException.
javax.ejb.EJBException: java.lang.RuntimeException:
java.lang.NullPointerException
at
org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
at
org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at
org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at
org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at
org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at
org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at
org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at
org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at
org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
at
org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
at
org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
at
org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
at $Proxy499.extendedService(Unknown Source)
at
org.ejbca.ui.web.protocol.OCSPServlet.extendedService(OCSPServlet.java:60)
at
org.ejbca.ui.web.protocol.OCSPServletBase.signOCSPResponse(OCSPServletBase.java:223)
at
org.ejbca.ui.web.protocol.OCSPServletBase.serviceOCSP(OCSPServletBase.java:905)
at
org.ejbca.ui.web.protocol.OCSPServletBase.doPost(OCSPServletBase.java:375)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
at
org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
at
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
at
org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
at
org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
at
org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at
org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
at
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:679)
Caused by: java.lang.RuntimeException: java.lang.NullPointerException
at org.ejbca.core.model.ca.caadmin.CA.getExtendedCAService(CA.java:856)
at org.ejbca.core.model.ca.caadmin.CA.extendedService(CA.java:753)
at
org.ejbca.core.ejb.ca.caadmin.CAAdminSessionBean.extendedService(CAAdminSessionBean.java:2380)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:616)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
at
org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
at
org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
at
org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
at sun.reflect.GeneratedMethodAccessor338.invoke(Unknown Source)
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:616)
at
org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at
org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
at
org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_1005639669.invoke(InvocationContextInterceptor_z_fillMethod_1005639669.java)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at
org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
at
org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_1005639669.invoke(InvocationContextInterceptor_z_setup_1005639669.java)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at
org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at
org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at
org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at
org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
at
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:79)
... 48 more
Caused by: java.lang.NullPointerException
at org.ejbca.core.model.ca.caadmin.CA.getExtendedCAService(CA.java:833)
... 81 more
2013-01-09 15:07:58,789 DEBUG
[org.ejbca.core.protocol.ocsp.TransactionLogger] (http-0.0.0.0-8080-1)
1eaace887f0001014af5b94b122010d9;1;0;0"10.163.14.49";"0";"0";0;"2013-01-09:09:37:58:GMT";348;1;0;0;0;0;0;0;0;"C=IN,O=National
Informatics Centre,OU=Sub-CA,CN=NIC sub-CA for NIC
2011";0c7558aee8c0ae3da9d64337ffb572a33f8b9f8a;fa800f1cfc73a4c7699013aeef3c10adaaaf1984;1.3.14.3.2.26;6001bed296181fee341d;0
1eaace887f0001014af5b94b122010d9;1;2;0"10.163.14.49";"0";"0";0;"2013-01-09:09:37:58:GMT";348;1;0;0;0;0;0;0;0;"C=IN,O=National
Informatics Centre,OU=Sub-CA,CN=NIC sub-CA for NIC
2011";0c7558aee8c0ae3da9d64337ffb572a33f8b9f8a;fa800f1cfc73a4c7699013aeef3c10adaaaf1984;1.3.14.3.2.26;6001bed296181fee341d;0
This is the full error messaage throws in the server.log while running the
OCSP request from the client machine using the openssl OCSP client command
$ openssl ocsp -issuer NICsub-CA_for_NIC_2011.cer -cert spk.cer -url
http://<ip address>/ejbca/publicweb/status/ocsp -respout resp.der
-no_cert_verify
Error querying OCSP responsder
But while using CAs with certificates issued by ejbca is working properly
responding.
Please find the issue where I am doing wrong. because here Iam facing this
issue for the past 3 weeks.
Tomas Gustavsson wrote:
>
>
> You have to provide more of the error. Not possible to say anything from
> the short snippet you provide. Also versions are of course neede din
> order to say anything
>
> Cheers,
> Tomas
> PrimeKey Solutions offers commercial EJBCA and SignServer support
> subscriptions and training courses. Please see www.primekey.se or
> contact in...@pr... for more information.
> http://www.primekey.se/Services/Support/
> http://www.primekey.se/Services/Training/
>
> **********
> PrimeKey Solutions AB
> Anderstorpsvägen 16, 171 54 Solna, Sweden
> Mob: +46 (0)707421096
> Internet: www.primekey.se
> Twitter: twitter.com/primekeyPKI
> **********
>
> On 01/09/2013 11:09 AM, M.G.R wrote:
>>
>> while requesting for validating the certificate issued by external CA
>> using
>> openssl OCSP client shows the following error in the OCSP server side
>>
>> ERROR [org.ejbca.ui.web.protocol.OCSPServletBase] (http-0.0.0.0-8080-1)
>> Error processing OCSP request. Message: java.lang.RuntimeException:
>> java.lang.NullPointerException.
>>
>> &
>>
>> Shows the following error in the client side
>>
>> Error querying OCSP responsder
>>
>> is there any way to trace the problem. please help me.
>>
>>
>> Thanks in advance.
>>
>
> ------------------------------------------------------------------------------
> Master Java SE, Java EE, Eclipse, Spring, Hibernate, JavaScript, jQuery
> and much more. Keep your Java skills current with LearnJavaNow -
> 200+ hours of step-by-step video tutorials by Java experts.
> SALE $49.99 this month only -- learn more at:
> http://p.sf.net/sfu/learnmore_122612
> _______________________________________________
> Ejbca-develop mailing list
> Ejb...@li...
> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
>
--
View this message in context: http://old.nabble.com/Error-in-the-OCSP-Responder-tp34877232p34877566.html
Sent from the EjbCA - Dev mailing list archive at Nabble.com.
|
|
From: Tomas G. <to...@pr...> - 2013-01-09 12:38:30
|
To mee it looks like you have imported a CA certificate with the "Import
CA certificate" button on the "Edit Certificate Authorities" screen. Is
that correct?
An External CA, imported CA certificate, is _not_ a CA, it is just a CA
certificate.
I'm afraid I do not understand you use case, what you are trying to do.
Are you setting up a Certificate Authority to issue certificates, or are
you trying to set up an OCSP responder?
Cheers,
Tomas
On 01/09/2013 12:44 PM, M.G.R wrote:
>
> Server OS : Ubuntu 12.04 (64 bit)
> ejbca version : ejbca_4_0_10
> Jboss server version: jboss-5.1.0.GA
> ExternalCA imported : NICsub-CA_for_NIC_2011.cer
> Issued certificate : spk.cer
>
> 2013-01-09 15:07:58,539 INFO [org.ejbca.ui.web.protocol.OCSPServletBase]
> (http-0.0.0.0-8080-1) Received OCSP request for certificate with serNo:
> 6001bed296181fee341d, and issuerNameHash:
> 0c7558aee8c0ae3da9d64337ffb572a33f8b9f8a. Client ip 10.163.14.49.
> 2013-01-09 15:07:58,574 INFO [org.ejbca.ui.web.protocol.OCSPServletBase]
> (http-0.0.0.0-8080-1) Adding status information (good) for certificate with
> serial '6001bed296181fee341d' from issuer 'C=IN,O=National Informatics
> Centre,OU=Sub-CA,CN=NIC sub-CA for NIC 2011'.
> 2013-01-09 15:07:58,577 INFO [STDOUT] (http-0.0.0.0-8080-1) #############
> Inside OCSPResponseItem ###############
> 2013-01-09 15:07:58,580 INFO [STDOUT] (http-0.0.0.0-8080-1) 1.Admin:UNKNOWN
> 2013-01-09 15:07:58,580 INFO [STDOUT] (http-0.0.0.0-8080-1)
> 2.caid:589037259
> 2013-01-09 15:07:58,580 INFO [STDOUT] (http-0.0.0.0-8080-1)
> 3.OCSPCAServiceRequest:org.ejbca.core.model.ca.caadmin.extendedcaservices.OCSPCAServiceRequest@4bc63fc3
> 2013-01-09 15:07:58,581 INFO [STDOUT] (http-0.0.0.0-8080-1) 4:Proxy to
> jboss.j2ee:ear=ejbca.ear,jar=ejbca-ejb.jar,name=CAAdminSessionBean,service=EJB3
> implementing [interface org.ejbca.core.ejb.ca.caadmin.CAAdminSessionLocal]
> 2013-01-09 15:07:58,607 INFO [STDOUT] (http-0.0.0.0-8080-1)
> 1.caSession:UNKNOWN
> 2013-01-09 15:07:58,607 INFO [STDOUT] (http-0.0.0.0-8080-1)
> 2.caSession:589037259
> 2013-01-09 15:07:58,607 INFO [STDOUT] (http-0.0.0.0-8080-1)
> 2.caSession:org.ejbca.core.model.ca.caadmin.extendedcaservices.OCSPCAServiceRequest@4bc63fc3
> 2013-01-09 15:07:58,614 WARN
> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory] (http-0.0.0.0-8080-1)
> EJBTHREE-1246: Do not use InterceptorsFactory with a ManagedObjectAdvisor,
> InterceptorRegistry should be used via the bean container
> 2013-01-09 15:07:58,615 WARN
> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory] (http-0.0.0.0-8080-1)
> EJBTHREE-1246: Do not use InterceptorsFactory with a ManagedObjectAdvisor,
> InterceptorRegistry should be used via the bean container
> 2013-01-09 15:07:58,621 WARN
> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory] (http-0.0.0.0-8080-1)
> EJBTHREE-1246: Do not use InterceptorsFactory with a ManagedObjectAdvisor,
> InterceptorRegistry should be used via the bean container
> 2013-01-09 15:07:58,621 WARN
> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory] (http-0.0.0.0-8080-1)
> EJBTHREE-1246: Do not use InterceptorsFactory with a ManagedObjectAdvisor,
> InterceptorRegistry should be used via the bean container
> 2013-01-09 15:07:58,626 WARN
> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory] (http-0.0.0.0-8080-1)
> EJBTHREE-1246: Do not use InterceptorsFactory with a ManagedObjectAdvisor,
> InterceptorRegistry should be used via the bean container
> 2013-01-09 15:07:58,626 WARN
> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory] (http-0.0.0.0-8080-1)
> EJBTHREE-1246: Do not use InterceptorsFactory with a ManagedObjectAdvisor,
> InterceptorRegistry should be used via the bean container
> 2013-01-09 15:07:58,757 INFO [STDOUT] (http-0.0.0.0-8080-1) CA
> :org.ejbca.core.model.ca.caadmin.X509CA@1436fde2
> 2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1)
> getExtendedCAService Inside ..............1
> 2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1) returnval
> Inside ..............null
> 2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1) returnval
> Inside ..............null
> 2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1) daata Inside
> ..............{extendedcaservices=[], numberofreqapprovals=1,
> catoken={catokentype=3, sequence=00000, signaturealgorithm=SHA1WithRSA,
> sequenceformat=1, classpath=org.ejbca.core.model.ca.catoken.NullCAToken,
> version=7.0},
> certificatechain=[MIIEmjCCA4KgAwIBAgIKFCkm0v8UQ5s4+TANBgkqhkiG9w0BAQsFADCByDELMAkG
> A1UEBhMCSU4xJDAiBgNVBAoTG05hdGlvbmFsIEluZm9ybWF0aWNzIENlbnRyZTEd
> MBsGA1UECxMUQ2VydGlmeWluZyBBdXRob3JpdHkxDzANBgNVBBETBjExMDAwMzEO
> MAwGA1UECBMFRGVsaGkxHjAcBgNVBAkTFUxvZGhpIFJvYWQsIE5ldyBEZWxoaTEd
> MBsGA1UEMwwUQS1CbG9jaywgQ0dPIENvbXBsZXgxFDASBgNVBAMTC05JQyBDQSAy
> MDExMB4XDTExMDQwMTA2MDkxNVoXDTE2MDMxMDA2MDkxNVowZjELMAkGA1UEBhMC
> SU4xJDAiBgNVBAoTG05hdGlvbmFsIEluZm9ybWF0aWNzIENlbnRyZTEPMA0GA1UE
> CxMGU3ViLUNBMSAwHgYDVQQDExdOSUMgc3ViLUNBIGZvciBOSUMgMjAxMTCCASIw
> DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALTjDqBFmifF+I8Xb9HyrmG0bk8I
> LaUEr4RMCNDNER1rZTAmab9I7kFHGCNjKD5SmtXLDFnDkKV1gp96Fk6hmZ8CVQ5C
> dRyO616qvd3TZLN8/Xm0Cl3cBwuTv8XU9nwf4hoyRDQXQK8Psq0zmS2fuRse0q3W
> TmrRi7Ck2C9zD9eCBjoO0QebgcQ+VXYv1c0ORO0+gD1CRb5j+0GLmb0mK98Wb+R9
> 3zs7LOV4qIMMEhO4K92+0zomlpHni0blLvCGRd1fAyo5teb9Gw8BaV20vfzubVC5
> 0NLAEeRa1dSBkkfiPVGavZpXuqLFmIHJCTVODspQvmcUP2rdDPuvkAhdshcCAwEA
> AaOB5jCB4zASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBT6gA8c/HOkx2mQ
> E67vPBCtqq8ZhDATBgNVHSMEDDAKgAhOVU+us9+hZjAOBgNVHQ8BAf8EBAMCAQYw
> EgYDVR0gBAswCTAHBgVggmRkAjBCBggrBgEFBQcBAQQ2MDQwMgYIKwYBBQUHMAKG
> Jmh0dHA6Ly9uaWNjYS5uaWMuaW4vY2VydC9jZXJ0XzI3OTIuY2VyMDEGA1UdHwQq
> MCgwJqAkoCKGIGh0dHA6Ly9uaWNjYS5uaWMuaW4vY3JsXzI3OTIuY3JsMA0GCSqG
> SIb3DQEBCwUAA4IBAQC8K4nthWVPqbXsP5VeeIjiwZ5Plvy+1Cbo3wbzjPYhtCRo
> yOoO/qPyKZ3zNLZaWSz7wPGGBq5niiQaINTJ0+fBBD0unAlG0ZpSvEFqrenjcfKI
> ApKfNT6qdg6om+oFMudVrhgWyYqFCM2op2qRcIPHRH7BrX3xT2Ns2+NKc/nIt3L1
> NxDQm0arvRTYmMjOXEL4fUasxBlWKJR1HvtsnUb2wrXwEEl0/XJiGeg1SHXa/kN/
> J8eQ359O/ULeXUNcfqtjkSjRW9vGUcwTMP1knyNYRbXKoWCuLv2uvx2gOzh9YwAP
> DH3JdZGe5lDqC+IyA/pYhh5y5jhCKfvH5MabaR7d],
> useprintablestringsubjectdn=false, policies=[], defaultcrldistpoint=,
> version=19.0, catype=1, useCertreqHistory=true, validity=0,
> description=B64:Q0EgY3JlYXRlZCBieSBjZXJ0aWZpY2F0ZSBpbXBvcnQu, expiretime=Thu
> Mar 10 11:39:15 IST 2016, deltacrlperiod=0, useCertificateStorage=true,
> subjectaltname=null, useldapdnorder=true, usecrlnumber=false,
> finishuser=false, doEnforceUniqueSubjectDNSerialnumber=false, crlperiod=0,
> signedby=2, doEnforceUniqueDistinguishedName=true,
> authoritykeyidentifiercritical=false, revokationreason=-1,
> doEnforceUniquePublicKeys=true, crlnumbercritical=false,
> cadefinedfreshestcrl=, defaultocspservicelocator=,
> useauthoritykeyidentifier=false, crldistributionpointoncrlcritical=false,
> useUserStorage=true, cmpraauthsecret=null, approvalsettings=[],
> certificateprofileid=2, defaultcrlissuer=, includeinhealthcheck=false,
> useutf8policytext=false, crlIssueInterval=0,
> usecrldistributionpointoncrl=false, crlOverlapTime=36000000,
> crlpublishers=[]}
> 2013-01-09 15:07:58,759 INFO [STDOUT] (http-0.0.0.0-8080-1)
> EXTENDEDCASERVICE+type:extendedcaservice1
> 2013-01-09 15:07:58,759 INFO [STDOUT] (http-0.0.0.0-8080-1) 1111:null
> 2013-01-09 15:07:58,759 INFO [STDOUT] (http-0.0.0.0-8080-1) Exception
> Inside ..............null
> 2013-01-09 15:07:58,759 ERROR [STDERR] (http-0.0.0.0-8080-1)
> java.lang.NullPointerException
> 2013-01-09 15:07:58,760 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.ejbca.core.model.ca.caadmin.CA.getExtendedCAService(CA.java:833)
> 2013-01-09 15:07:58,760 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.ejbca.core.model.ca.caadmin.CA.extendedService(CA.java:753)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.ejbca.core.ejb.ca.caadmin.CAAdminSessionBean.extendedService(CAAdminSessionBean.java:2380)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> java.lang.reflect.Method.invoke(Method.java:616)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> sun.reflect.GeneratedMethodAccessor338.invoke(Unknown Source)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> java.lang.reflect.Method.invoke(Method.java:616)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_1005639669.invoke(InvocationContextInterceptor_z_fillMethod_1005639669.java)
> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_1005639669.invoke(InvocationContextInterceptor_z_setup_1005639669.java)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:79)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> $Proxy499.extendedService(Unknown Source)
> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.ejbca.ui.web.protocol.OCSPServlet.extendedService(OCSPServlet.java:60)
> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.ejbca.ui.web.protocol.OCSPServletBase.signOCSPResponse(OCSPServletBase.java:223)
> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.ejbca.ui.web.protocol.OCSPServletBase.serviceOCSP(OCSPServletBase.java:905)
> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.ejbca.ui.web.protocol.OCSPServletBase.doPost(OCSPServletBase.java:375)
> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
> java.lang.Thread.run(Thread.java:679)
> 2013-01-09 15:07:58,785 ERROR [org.ejbca.ui.web.protocol.OCSPServletBase]
> (http-0.0.0.0-8080-1) Error processing OCSP request. Message:
> java.lang.RuntimeException: java.lang.NullPointerException.
> javax.ejb.EJBException: java.lang.RuntimeException:
> java.lang.NullPointerException
> at
> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
> at
> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at
> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at
> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at
> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at
> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at
> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at
> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at
> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
> at
> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
> at
> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
> at
> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
> at $Proxy499.extendedService(Unknown Source)
> at
> org.ejbca.ui.web.protocol.OCSPServlet.extendedService(OCSPServlet.java:60)
> at
> org.ejbca.ui.web.protocol.OCSPServletBase.signOCSPResponse(OCSPServletBase.java:223)
> at
> org.ejbca.ui.web.protocol.OCSPServletBase.serviceOCSP(OCSPServletBase.java:905)
> at
> org.ejbca.ui.web.protocol.OCSPServletBase.doPost(OCSPServletBase.java:375)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> at
> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
> at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
> at
> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
> at
> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
> at
> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
> at
> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
> at
> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
> at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
> at
> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
> at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
> at
> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
> at
> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
> at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
> at java.lang.Thread.run(Thread.java:679)
> Caused by: java.lang.RuntimeException: java.lang.NullPointerException
> at org.ejbca.core.model.ca.caadmin.CA.getExtendedCAService(CA.java:856)
> at org.ejbca.core.model.ca.caadmin.CA.extendedService(CA.java:753)
> at
> org.ejbca.core.ejb.ca.caadmin.CAAdminSessionBean.extendedService(CAAdminSessionBean.java:2380)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
> at java.lang.reflect.Method.invoke(Method.java:616)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
> at
> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
> at
> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
> at
> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
> at sun.reflect.GeneratedMethodAccessor338.invoke(Unknown Source)
> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
> at java.lang.reflect.Method.invoke(Method.java:616)
> at
> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at
> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
> at
> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_1005639669.invoke(InvocationContextInterceptor_z_fillMethod_1005639669.java)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at
> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
> at
> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_1005639669.invoke(InvocationContextInterceptor_z_setup_1005639669.java)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at
> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at
> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at
> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at
> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
> at
> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:79)
> ... 48 more
> Caused by: java.lang.NullPointerException
> at org.ejbca.core.model.ca.caadmin.CA.getExtendedCAService(CA.java:833)
> ... 81 more
> 2013-01-09 15:07:58,789 DEBUG
> [org.ejbca.core.protocol.ocsp.TransactionLogger] (http-0.0.0.0-8080-1)
> 1eaace887f0001014af5b94b122010d9;1;0;0"10.163.14.49";"0";"0";0;"2013-01-09:09:37:58:GMT";348;1;0;0;0;0;0;0;0;"C=IN,O=National
> Informatics Centre,OU=Sub-CA,CN=NIC sub-CA for NIC
> 2011";0c7558aee8c0ae3da9d64337ffb572a33f8b9f8a;fa800f1cfc73a4c7699013aeef3c10adaaaf1984;1.3.14.3.2.26;6001bed296181fee341d;0
> 1eaace887f0001014af5b94b122010d9;1;2;0"10.163.14.49";"0";"0";0;"2013-01-09:09:37:58:GMT";348;1;0;0;0;0;0;0;0;"C=IN,O=National
> Informatics Centre,OU=Sub-CA,CN=NIC sub-CA for NIC
> 2011";0c7558aee8c0ae3da9d64337ffb572a33f8b9f8a;fa800f1cfc73a4c7699013aeef3c10adaaaf1984;1.3.14.3.2.26;6001bed296181fee341d;0
>
> This is the full error messaage throws in the server.log while running the
>
> OCSP request from the client machine using the openssl OCSP client command
>
> $ openssl ocsp -issuer NICsub-CA_for_NIC_2011.cer -cert spk.cer -url
> http://<ip address>/ejbca/publicweb/status/ocsp -respout resp.der
> -no_cert_verify
>
> Error querying OCSP responsder
>
> But while using CAs with certificates issued by ejbca is working properly
> responding.
>
> Please find the issue where I am doing wrong. because here Iam facing this
> issue for the past 3 weeks.
>
>
>
>
> Tomas Gustavsson wrote:
>>
>>
>> You have to provide more of the error. Not possible to say anything from
>> the short snippet you provide. Also versions are of course neede din
>> order to say anything
>>
>> Cheers,
>> Tomas
>> PrimeKey Solutions offers commercial EJBCA and SignServer support
>> subscriptions and training courses. Please see www.primekey.se or
>> contact in...@pr... for more information.
>> http://www.primekey.se/Services/Support/
>> http://www.primekey.se/Services/Training/
>>
>> **********
>> PrimeKey Solutions AB
>> Anderstorpsvägen 16, 171 54 Solna, Sweden
>> Mob: +46 ...
[truncated message content] |
|
From: M.G.R <mg....@ni...> - 2013-01-09 17:05:03
|
hi Tomas,
I want to set up an OCSP responder, which should validate the certificates
issued by an External CA ( Not issued by the EJBCA).
If u have any steps to do this. Please share that steps...
thanks in advance,
Tomas Gustavsson wrote:
>
>
> To mee it looks like you have imported a CA certificate with the "Import
> CA certificate" button on the "Edit Certificate Authorities" screen. Is
> that correct?
>
> An External CA, imported CA certificate, is _not_ a CA, it is just a CA
> certificate.
>
> I'm afraid I do not understand you use case, what you are trying to do.
>
> Are you setting up a Certificate Authority to issue certificates, or are
> you trying to set up an OCSP responder?
>
> Cheers,
> Tomas
>
> On 01/09/2013 12:44 PM, M.G.R wrote:
>>
>> Server OS : Ubuntu 12.04 (64 bit)
>> ejbca version : ejbca_4_0_10
>> Jboss server version: jboss-5.1.0.GA
>> ExternalCA imported : NICsub-CA_for_NIC_2011.cer
>> Issued certificate : spk.cer
>>
>> 2013-01-09 15:07:58,539 INFO [org.ejbca.ui.web.protocol.OCSPServletBase]
>> (http-0.0.0.0-8080-1) Received OCSP request for certificate with serNo:
>> 6001bed296181fee341d, and issuerNameHash:
>> 0c7558aee8c0ae3da9d64337ffb572a33f8b9f8a. Client ip 10.163.14.49.
>> 2013-01-09 15:07:58,574 INFO [org.ejbca.ui.web.protocol.OCSPServletBase]
>> (http-0.0.0.0-8080-1) Adding status information (good) for certificate
>> with
>> serial '6001bed296181fee341d' from issuer 'C=IN,O=National Informatics
>> Centre,OU=Sub-CA,CN=NIC sub-CA for NIC 2011'.
>> 2013-01-09 15:07:58,577 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> #############
>> Inside OCSPResponseItem ###############
>> 2013-01-09 15:07:58,580 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> 1.Admin:UNKNOWN
>> 2013-01-09 15:07:58,580 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> 2.caid:589037259
>> 2013-01-09 15:07:58,580 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> 3.OCSPCAServiceRequest:org.ejbca.core.model.ca.caadmin.extendedcaservices.OCSPCAServiceRequest@4bc63fc3
>> 2013-01-09 15:07:58,581 INFO [STDOUT] (http-0.0.0.0-8080-1) 4:Proxy to
>> jboss.j2ee:ear=ejbca.ear,jar=ejbca-ejb.jar,name=CAAdminSessionBean,service=EJB3
>> implementing [interface
>> org.ejbca.core.ejb.ca.caadmin.CAAdminSessionLocal]
>> 2013-01-09 15:07:58,607 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> 1.caSession:UNKNOWN
>> 2013-01-09 15:07:58,607 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> 2.caSession:589037259
>> 2013-01-09 15:07:58,607 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> 2.caSession:org.ejbca.core.model.ca.caadmin.extendedcaservices.OCSPCAServiceRequest@4bc63fc3
>> 2013-01-09 15:07:58,614 WARN
>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory]
>> (http-0.0.0.0-8080-1)
>> EJBTHREE-1246: Do not use InterceptorsFactory with a
>> ManagedObjectAdvisor,
>> InterceptorRegistry should be used via the bean container
>> 2013-01-09 15:07:58,615 WARN
>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory]
>> (http-0.0.0.0-8080-1)
>> EJBTHREE-1246: Do not use InterceptorsFactory with a
>> ManagedObjectAdvisor,
>> InterceptorRegistry should be used via the bean container
>> 2013-01-09 15:07:58,621 WARN
>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory]
>> (http-0.0.0.0-8080-1)
>> EJBTHREE-1246: Do not use InterceptorsFactory with a
>> ManagedObjectAdvisor,
>> InterceptorRegistry should be used via the bean container
>> 2013-01-09 15:07:58,621 WARN
>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory]
>> (http-0.0.0.0-8080-1)
>> EJBTHREE-1246: Do not use InterceptorsFactory with a
>> ManagedObjectAdvisor,
>> InterceptorRegistry should be used via the bean container
>> 2013-01-09 15:07:58,626 WARN
>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory]
>> (http-0.0.0.0-8080-1)
>> EJBTHREE-1246: Do not use InterceptorsFactory with a
>> ManagedObjectAdvisor,
>> InterceptorRegistry should be used via the bean container
>> 2013-01-09 15:07:58,626 WARN
>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory]
>> (http-0.0.0.0-8080-1)
>> EJBTHREE-1246: Do not use InterceptorsFactory with a
>> ManagedObjectAdvisor,
>> InterceptorRegistry should be used via the bean container
>> 2013-01-09 15:07:58,757 INFO [STDOUT] (http-0.0.0.0-8080-1) CA
>> :org.ejbca.core.model.ca.caadmin.X509CA@1436fde2
>> 2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> getExtendedCAService Inside ..............1
>> 2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1) returnval
>> Inside ..............null
>> 2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1) returnval
>> Inside ..............null
>> 2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1) daata Inside
>> ..............{extendedcaservices=[], numberofreqapprovals=1,
>> catoken={catokentype=3, sequence=00000, signaturealgorithm=SHA1WithRSA,
>> sequenceformat=1, classpath=org.ejbca.core.model.ca.catoken.NullCAToken,
>> version=7.0},
>> certificatechain=[MIIEmjCCA4KgAwIBAgIKFCkm0v8UQ5s4+TANBgkqhkiG9w0BAQsFADCByDELMAkG
>> A1UEBhMCSU4xJDAiBgNVBAoTG05hdGlvbmFsIEluZm9ybWF0aWNzIENlbnRyZTEd
>> MBsGA1UECxMUQ2VydGlmeWluZyBBdXRob3JpdHkxDzANBgNVBBETBjExMDAwMzEO
>> MAwGA1UECBMFRGVsaGkxHjAcBgNVBAkTFUxvZGhpIFJvYWQsIE5ldyBEZWxoaTEd
>> MBsGA1UEMwwUQS1CbG9jaywgQ0dPIENvbXBsZXgxFDASBgNVBAMTC05JQyBDQSAy
>> MDExMB4XDTExMDQwMTA2MDkxNVoXDTE2MDMxMDA2MDkxNVowZjELMAkGA1UEBhMC
>> SU4xJDAiBgNVBAoTG05hdGlvbmFsIEluZm9ybWF0aWNzIENlbnRyZTEPMA0GA1UE
>> CxMGU3ViLUNBMSAwHgYDVQQDExdOSUMgc3ViLUNBIGZvciBOSUMgMjAxMTCCASIw
>> DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALTjDqBFmifF+I8Xb9HyrmG0bk8I
>> LaUEr4RMCNDNER1rZTAmab9I7kFHGCNjKD5SmtXLDFnDkKV1gp96Fk6hmZ8CVQ5C
>> dRyO616qvd3TZLN8/Xm0Cl3cBwuTv8XU9nwf4hoyRDQXQK8Psq0zmS2fuRse0q3W
>> TmrRi7Ck2C9zD9eCBjoO0QebgcQ+VXYv1c0ORO0+gD1CRb5j+0GLmb0mK98Wb+R9
>> 3zs7LOV4qIMMEhO4K92+0zomlpHni0blLvCGRd1fAyo5teb9Gw8BaV20vfzubVC5
>> 0NLAEeRa1dSBkkfiPVGavZpXuqLFmIHJCTVODspQvmcUP2rdDPuvkAhdshcCAwEA
>> AaOB5jCB4zASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBT6gA8c/HOkx2mQ
>> E67vPBCtqq8ZhDATBgNVHSMEDDAKgAhOVU+us9+hZjAOBgNVHQ8BAf8EBAMCAQYw
>> EgYDVR0gBAswCTAHBgVggmRkAjBCBggrBgEFBQcBAQQ2MDQwMgYIKwYBBQUHMAKG
>> Jmh0dHA6Ly9uaWNjYS5uaWMuaW4vY2VydC9jZXJ0XzI3OTIuY2VyMDEGA1UdHwQq
>> MCgwJqAkoCKGIGh0dHA6Ly9uaWNjYS5uaWMuaW4vY3JsXzI3OTIuY3JsMA0GCSqG
>> SIb3DQEBCwUAA4IBAQC8K4nthWVPqbXsP5VeeIjiwZ5Plvy+1Cbo3wbzjPYhtCRo
>> yOoO/qPyKZ3zNLZaWSz7wPGGBq5niiQaINTJ0+fBBD0unAlG0ZpSvEFqrenjcfKI
>> ApKfNT6qdg6om+oFMudVrhgWyYqFCM2op2qRcIPHRH7BrX3xT2Ns2+NKc/nIt3L1
>> NxDQm0arvRTYmMjOXEL4fUasxBlWKJR1HvtsnUb2wrXwEEl0/XJiGeg1SHXa/kN/
>> J8eQ359O/ULeXUNcfqtjkSjRW9vGUcwTMP1knyNYRbXKoWCuLv2uvx2gOzh9YwAP
>> DH3JdZGe5lDqC+IyA/pYhh5y5jhCKfvH5MabaR7d],
>> useprintablestringsubjectdn=false, policies=[], defaultcrldistpoint=,
>> version=19.0, catype=1, useCertreqHistory=true, validity=0,
>> description=B64:Q0EgY3JlYXRlZCBieSBjZXJ0aWZpY2F0ZSBpbXBvcnQu,
>> expiretime=Thu
>> Mar 10 11:39:15 IST 2016, deltacrlperiod=0, useCertificateStorage=true,
>> subjectaltname=null, useldapdnorder=true, usecrlnumber=false,
>> finishuser=false, doEnforceUniqueSubjectDNSerialnumber=false,
>> crlperiod=0,
>> signedby=2, doEnforceUniqueDistinguishedName=true,
>> authoritykeyidentifiercritical=false, revokationreason=-1,
>> doEnforceUniquePublicKeys=true, crlnumbercritical=false,
>> cadefinedfreshestcrl=, defaultocspservicelocator=,
>> useauthoritykeyidentifier=false, crldistributionpointoncrlcritical=false,
>> useUserStorage=true, cmpraauthsecret=null, approvalsettings=[],
>> certificateprofileid=2, defaultcrlissuer=, includeinhealthcheck=false,
>> useutf8policytext=false, crlIssueInterval=0,
>> usecrldistributionpointoncrl=false, crlOverlapTime=36000000,
>> crlpublishers=[]}
>> 2013-01-09 15:07:58,759 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> EXTENDEDCASERVICE+type:extendedcaservice1
>> 2013-01-09 15:07:58,759 INFO [STDOUT] (http-0.0.0.0-8080-1) 1111:null
>> 2013-01-09 15:07:58,759 INFO [STDOUT] (http-0.0.0.0-8080-1) Exception
>> Inside ..............null
>> 2013-01-09 15:07:58,759 ERROR [STDERR] (http-0.0.0.0-8080-1)
>> java.lang.NullPointerException
>> 2013-01-09 15:07:58,760 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.ejbca.core.model.ca.caadmin.CA.getExtendedCAService(CA.java:833)
>> 2013-01-09 15:07:58,760 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.ejbca.core.model.ca.caadmin.CA.extendedService(CA.java:753)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.ejbca.core.ejb.ca.caadmin.CAAdminSessionBean.extendedService(CAAdminSessionBean.java:2380)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> java.lang.reflect.Method.invoke(Method.java:616)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> sun.reflect.GeneratedMethodAccessor338.invoke(Unknown Source)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> java.lang.reflect.Method.invoke(Method.java:616)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_1005639669.invoke(InvocationContextInterceptor_z_fillMethod_1005639669.java)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_1005639669.invoke(InvocationContextInterceptor_z_setup_1005639669.java)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:79)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> $Proxy499.extendedService(Unknown Source)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.ejbca.ui.web.protocol.OCSPServlet.extendedService(OCSPServlet.java:60)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.ejbca.ui.web.protocol.OCSPServletBase.signOCSPResponse(OCSPServletBase.java:223)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.ejbca.ui.web.protocol.OCSPServletBase.serviceOCSP(OCSPServletBase.java:905)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.ejbca.ui.web.protocol.OCSPServletBase.doPost(OCSPServletBase.java:375)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> java.lang.Thread.run(Thread.java:679)
>> 2013-01-09 15:07:58,785 ERROR [org.ejbca.ui.web.protocol.OCSPServletBase]
>> (http-0.0.0.0-8080-1) Error processing OCSP request. Message:
>> java.lang.RuntimeException: java.lang.NullPointerException.
>> javax.ejb.EJBException: java.lang.RuntimeException:
>> java.lang.NullPointerException
>> at
>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
>> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
>> at
>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>> at
>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>> at
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>> at
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>> at $Proxy499.extendedService(Unknown Source)
>> at
>> org.ejbca.ui.web.protocol.OCSPServlet.extendedService(OCSPServlet.java:60)
>> at
>> org.ejbca.ui.web.protocol.OCSPServletBase.signOCSPResponse(OCSPServletBase.java:223)
>> at
>> org.ejbca.ui.web.protocol.OCSPServletBase.serviceOCSP(OCSPServletBase.java:905)
>> at
>> org.ejbca.ui.web.protocol.OCSPServletBase.doPost(OCSPServletBase.java:375)
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> at
>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> at
>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>> at
>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>> at
>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>> at
>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>> at
>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>> at
>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>> at
>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>> at
>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>> at
>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>> at
>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>> at
>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>> at
>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>> at
>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>> at
>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>> at
>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>> at java.lang.Thread.run(Thread.java:679)
>> Caused by: java.lang.RuntimeException: java.lang.NullPointerException
>> at org.ejbca.core.model.ca.caadmin.CA.getExtendedCAService(CA.java:856)
>> at org.ejbca.core.model.ca.caadmin.CA.extendedService(CA.java:753)
>> at
>> org.ejbca.core.ejb.ca.caadmin.CAAdminSessionBean.extendedService(CAAdminSessionBean.java:2380)
>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>> at
>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
>> at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>> at java.lang.reflect.Method.invoke(Method.java:616)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>> at
>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>> at
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>> at
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>> at sun.reflect.GeneratedMethodAccessor338.invoke(Unknown Source)
>> at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>> at java.lang.reflect.Method.invoke(Method.java:616)
>> at
>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>> at
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_1005639669.invoke(InvocationContextInterceptor_z_fillMethod_1005639669.java)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>> at
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_1005639669.invoke(InvocationContextInterceptor_z_setup_1005639669.java)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:79)
>> ... 48 more
>> Caused by: java.lang.NullPointerException
>> at org.ejbca.core.model.ca.caadmin.CA.getExtendedCAService(CA.java:833)
>> ... 81 more
>> 2013-01-09 15:07:58,789 DEBUG
>> [org.ejbca.core.protocol.ocsp.TransactionLogger] (http-0.0.0.0-8080-1)
>> 1eaace887f0001014af5b94b122010d9;1;0;0"10.163.14.49";"0";"0";0;"2013-01-09:09:37:58:GMT";348;1;0;0;0;0;0;0;0;"C=IN,O=National
>> Informatics Centre,OU=Sub-CA,CN=NIC sub-CA for NIC
>> 2011";0c7558aee8c0ae3da9d64337ffb572a33f8b9f8a;fa800f1cfc73a4c7699013aeef3c10adaaaf1984;1.3.14.3.2.26;6001bed296181fee341d;0
>> 1eaace887f0001014af5b94b122010d9;1;2;0"10.163.14.49";"0";"0";0;"2013-01-09:09:37:58:GMT";348;1;0;0;0;0;0;0;0;"C=IN,O=National
>> Informatics Centre,OU=Sub-CA,CN=NIC sub-CA for NIC
>> 2011";0c7558aee8c0ae3da9d64337ffb572a33f8b9f8a;fa800f1cfc73a4c7699013aeef3c10adaaaf1984;1.3.14.3.2.26;6001bed296181fee341d;0
>>
>> This is the full error messaage throws in the server.log while running
>> the
>>
>> OCSP request from the client machine using the openssl OCSP client
>> command
>>
>> $ openssl ocsp -issuer NICsub-CA_for_NIC_2011.cer -cert spk.cer -url
>> http://<ip address>/ejbca/publicweb/status/ocsp -respout resp.der
>> -no_cert_verify
>>
>> Error querying OCSP responsder
>>...
[truncated message content] |
|
From: Tomas G. <to...@pr...> - 2013-01-09 17:11:12
|
Then I think you got a good answer by a previous poster. You are currently barking up the wrong tree so you must start anew. The installation instructions for a OCSP responder you can find here: http://www.ejbca.org/installation-ocsp.html Regards, Tomas ********** PrimeKey Solutions AB Anderstorpsvägen 16, 171 54 Solna, Sweden Mob: +46 (0)707421096 Internet: www.primekey.se Twitter: twitter.com/primekeyPKI ********** On 01/09/2013 06:04 PM, M.G.R wrote: > > hi Tomas, > > I want to set up an OCSP responder, which should validate the certificates > issued by an External CA ( Not issued by the EJBCA). > If u have any steps to do this. Please share that steps... > > thanks in advance, > > > > > > > > Tomas Gustavsson wrote: >> >> >> To mee it looks like you have imported a CA certificate with the "Import >> CA certificate" button on the "Edit Certificate Authorities" screen. Is >> that correct? >> >> An External CA, imported CA certificate, is _not_ a CA, it is just a CA >> certificate. >> >> I'm afraid I do not understand you use case, what you are trying to do. >> >> Are you setting up a Certificate Authority to issue certificates, or are >> you trying to set up an OCSP responder? >> >> Cheers, >> Tomas >> >> On 01/09/2013 12:44 PM, M.G.R wrote: >>> >>> Server OS : Ubuntu 12.04 (64 bit) >>> ejbca version : ejbca_4_0_10 >>> Jboss server version: jboss-5.1.0.GA >>> ExternalCA imported : NICsub-CA_for_NIC_2011.cer >>> Issued certificate : spk.cer >>> >>> 2013-01-09 15:07:58,539 INFO [org.ejbca.ui.web.protocol.OCSPServletBase] >>> (http-0.0.0.0-8080-1) Received OCSP request for certificate with serNo: >>> 6001bed296181fee341d, and issuerNameHash: >>> 0c7558aee8c0ae3da9d64337ffb572a33f8b9f8a. Client ip 10.163.14.49. >>> 2013-01-09 15:07:58,574 INFO [org.ejbca.ui.web.protocol.OCSPServletBase] >>> (http-0.0.0.0-8080-1) Adding status information (good) for certificate >>> with >>> serial '6001bed296181fee341d' from issuer 'C=IN,O=National Informatics >>> Centre,OU=Sub-CA,CN=NIC sub-CA for NIC 2011'. >>> 2013-01-09 15:07:58,577 INFO [STDOUT] (http-0.0.0.0-8080-1) >>> ############# >>> Inside OCSPResponseItem ############### >>> 2013-01-09 15:07:58,580 INFO [STDOUT] (http-0.0.0.0-8080-1) >>> 1.Admin:UNKNOWN >>> 2013-01-09 15:07:58,580 INFO [STDOUT] (http-0.0.0.0-8080-1) >>> 2.caid:589037259 >>> 2013-01-09 15:07:58,580 INFO [STDOUT] (http-0.0.0.0-8080-1) >>> 3.OCSPCAServiceRequest:org.ejbca.core.model.ca.caadmin.extendedcaservices.OCSPCAServiceRequest@4bc63fc3 >>> 2013-01-09 15:07:58,581 INFO [STDOUT] (http-0.0.0.0-8080-1) 4:Proxy to >>> jboss.j2ee:ear=ejbca.ear,jar=ejbca-ejb.jar,name=CAAdminSessionBean,service=EJB3 >>> implementing [interface >>> org.ejbca.core.ejb.ca.caadmin.CAAdminSessionLocal] >>> 2013-01-09 15:07:58,607 INFO [STDOUT] (http-0.0.0.0-8080-1) >>> 1.caSession:UNKNOWN >>> 2013-01-09 15:07:58,607 INFO [STDOUT] (http-0.0.0.0-8080-1) >>> 2.caSession:589037259 >>> 2013-01-09 15:07:58,607 INFO [STDOUT] (http-0.0.0.0-8080-1) >>> 2.caSession:org.ejbca.core.model.ca.caadmin.extendedcaservices.OCSPCAServiceRequest@4bc63fc3 >>> 2013-01-09 15:07:58,614 WARN >>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory] >>> (http-0.0.0.0-8080-1) >>> EJBTHREE-1246: Do not use InterceptorsFactory with a >>> ManagedObjectAdvisor, >>> InterceptorRegistry should be used via the bean container >>> 2013-01-09 15:07:58,615 WARN >>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory] >>> (http-0.0.0.0-8080-1) >>> EJBTHREE-1246: Do not use InterceptorsFactory with a >>> ManagedObjectAdvisor, >>> InterceptorRegistry should be used via the bean container >>> 2013-01-09 15:07:58,621 WARN >>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory] >>> (http-0.0.0.0-8080-1) >>> EJBTHREE-1246: Do not use InterceptorsFactory with a >>> ManagedObjectAdvisor, >>> InterceptorRegistry should be used via the bean container >>> 2013-01-09 15:07:58,621 WARN >>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory] >>> (http-0.0.0.0-8080-1) >>> EJBTHREE-1246: Do not use InterceptorsFactory with a >>> ManagedObjectAdvisor, >>> InterceptorRegistry should be used via the bean container >>> 2013-01-09 15:07:58,626 WARN >>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory] >>> (http-0.0.0.0-8080-1) >>> EJBTHREE-1246: Do not use InterceptorsFactory with a >>> ManagedObjectAdvisor, >>> InterceptorRegistry should be used via the bean container >>> 2013-01-09 15:07:58,626 WARN >>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory] >>> (http-0.0.0.0-8080-1) >>> EJBTHREE-1246: Do not use InterceptorsFactory with a >>> ManagedObjectAdvisor, >>> InterceptorRegistry should be used via the bean container >>> 2013-01-09 15:07:58,757 INFO [STDOUT] (http-0.0.0.0-8080-1) CA >>> :org.ejbca.core.model.ca.caadmin.X509CA@1436fde2 >>> 2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1) >>> getExtendedCAService Inside ..............1 >>> 2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1) returnval >>> Inside ..............null >>> 2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1) returnval >>> Inside ..............null >>> 2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1) daata Inside >>> ..............{extendedcaservices=[], numberofreqapprovals=1, >>> catoken={catokentype=3, sequence=00000, signaturealgorithm=SHA1WithRSA, >>> sequenceformat=1, classpath=org.ejbca.core.model.ca.catoken.NullCAToken, >>> version=7.0}, >>> certificatechain=[MIIEmjCCA4KgAwIBAgIKFCkm0v8UQ5s4+TANBgkqhkiG9w0BAQsFADCByDELMAkG >>> A1UEBhMCSU4xJDAiBgNVBAoTG05hdGlvbmFsIEluZm9ybWF0aWNzIENlbnRyZTEd >>> MBsGA1UECxMUQ2VydGlmeWluZyBBdXRob3JpdHkxDzANBgNVBBETBjExMDAwMzEO >>> MAwGA1UECBMFRGVsaGkxHjAcBgNVBAkTFUxvZGhpIFJvYWQsIE5ldyBEZWxoaTEd >>> MBsGA1UEMwwUQS1CbG9jaywgQ0dPIENvbXBsZXgxFDASBgNVBAMTC05JQyBDQSAy >>> MDExMB4XDTExMDQwMTA2MDkxNVoXDTE2MDMxMDA2MDkxNVowZjELMAkGA1UEBhMC >>> SU4xJDAiBgNVBAoTG05hdGlvbmFsIEluZm9ybWF0aWNzIENlbnRyZTEPMA0GA1UE >>> CxMGU3ViLUNBMSAwHgYDVQQDExdOSUMgc3ViLUNBIGZvciBOSUMgMjAxMTCCASIw >>> DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALTjDqBFmifF+I8Xb9HyrmG0bk8I >>> LaUEr4RMCNDNER1rZTAmab9I7kFHGCNjKD5SmtXLDFnDkKV1gp96Fk6hmZ8CVQ5C >>> dRyO616qvd3TZLN8/Xm0Cl3cBwuTv8XU9nwf4hoyRDQXQK8Psq0zmS2fuRse0q3W >>> TmrRi7Ck2C9zD9eCBjoO0QebgcQ+VXYv1c0ORO0+gD1CRb5j+0GLmb0mK98Wb+R9 >>> 3zs7LOV4qIMMEhO4K92+0zomlpHni0blLvCGRd1fAyo5teb9Gw8BaV20vfzubVC5 >>> 0NLAEeRa1dSBkkfiPVGavZpXuqLFmIHJCTVODspQvmcUP2rdDPuvkAhdshcCAwEA >>> AaOB5jCB4zASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBT6gA8c/HOkx2mQ >>> E67vPBCtqq8ZhDATBgNVHSMEDDAKgAhOVU+us9+hZjAOBgNVHQ8BAf8EBAMCAQYw >>> EgYDVR0gBAswCTAHBgVggmRkAjBCBggrBgEFBQcBAQQ2MDQwMgYIKwYBBQUHMAKG >>> Jmh0dHA6Ly9uaWNjYS5uaWMuaW4vY2VydC9jZXJ0XzI3OTIuY2VyMDEGA1UdHwQq >>> MCgwJqAkoCKGIGh0dHA6Ly9uaWNjYS5uaWMuaW4vY3JsXzI3OTIuY3JsMA0GCSqG >>> SIb3DQEBCwUAA4IBAQC8K4nthWVPqbXsP5VeeIjiwZ5Plvy+1Cbo3wbzjPYhtCRo >>> yOoO/qPyKZ3zNLZaWSz7wPGGBq5niiQaINTJ0+fBBD0unAlG0ZpSvEFqrenjcfKI >>> ApKfNT6qdg6om+oFMudVrhgWyYqFCM2op2qRcIPHRH7BrX3xT2Ns2+NKc/nIt3L1 >>> NxDQm0arvRTYmMjOXEL4fUasxBlWKJR1HvtsnUb2wrXwEEl0/XJiGeg1SHXa/kN/ >>> J8eQ359O/ULeXUNcfqtjkSjRW9vGUcwTMP1knyNYRbXKoWCuLv2uvx2gOzh9YwAP >>> DH3JdZGe5lDqC+IyA/pYhh5y5jhCKfvH5MabaR7d], >>> useprintablestringsubjectdn=false, policies=[], defaultcrldistpoint=, >>> version=19.0, catype=1, useCertreqHistory=true, validity=0, >>> description=B64:Q0EgY3JlYXRlZCBieSBjZXJ0aWZpY2F0ZSBpbXBvcnQu, >>> expiretime=Thu >>> Mar 10 11:39:15 IST 2016, deltacrlperiod=0, useCertificateStorage=true, >>> subjectaltname=null, useldapdnorder=true, usecrlnumber=false, >>> finishuser=false, doEnforceUniqueSubjectDNSerialnumber=false, >>> crlperiod=0, >>> signedby=2, doEnforceUniqueDistinguishedName=true, >>> authoritykeyidentifiercritical=false, revokationreason=-1, >>> doEnforceUniquePublicKeys=true, crlnumbercritical=false, >>> cadefinedfreshestcrl=, defaultocspservicelocator=, >>> useauthoritykeyidentifier=false, crldistributionpointoncrlcritical=false, >>> useUserStorage=true, cmpraauthsecret=null, approvalsettings=[], >>> certificateprofileid=2, defaultcrlissuer=, includeinhealthcheck=false, >>> useutf8policytext=false, crlIssueInterval=0, >>> usecrldistributionpointoncrl=false, crlOverlapTime=36000000, >>> crlpublishers=[]} >>> 2013-01-09 15:07:58,759 INFO [STDOUT] (http-0.0.0.0-8080-1) >>> EXTENDEDCASERVICE+type:extendedcaservice1 >>> 2013-01-09 15:07:58,759 INFO [STDOUT] (http-0.0.0.0-8080-1) 1111:null >>> 2013-01-09 15:07:58,759 INFO [STDOUT] (http-0.0.0.0-8080-1) Exception >>> Inside ..............null >>> 2013-01-09 15:07:58,759 ERROR [STDERR] (http-0.0.0.0-8080-1) >>> java.lang.NullPointerException >>> 2013-01-09 15:07:58,760 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.ejbca.core.model.ca.caadmin.CA.getExtendedCAService(CA.java:833) >>> 2013-01-09 15:07:58,760 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.ejbca.core.model.ca.caadmin.CA.extendedService(CA.java:753) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.ejbca.core.ejb.ca.caadmin.CAAdminSessionBean.extendedService(CAAdminSessionBean.java:2380) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> java.lang.reflect.Method.invoke(Method.java:616) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> sun.reflect.GeneratedMethodAccessor338.invoke(Unknown Source) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> java.lang.reflect.Method.invoke(Method.java:616) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_1005639669.invoke(InvocationContextInterceptor_z_fillMethod_1005639669.java) >>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_1005639669.invoke(InvocationContextInterceptor_z_setup_1005639669.java) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:79) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) >>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186) >>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41) >>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67) >>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67) >>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176) >>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216) >>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> $Proxy499.extendedService(Unknown Source) >>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.ejbca.ui.web.protocol.OCSPServlet.extendedService(OCSPServlet.java:60) >>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.ejbca.ui.web.protocol.OCSPServletBase.signOCSPResponse(OCSPServletBase.java:223) >>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.ejbca.ui.web.protocol.OCSPServletBase.serviceOCSP(OCSPServletBase.java:905) >>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.ejbca.ui.web.protocol.OCSPServletBase.doPost(OCSPServletBase.java:375) >>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> javax.servlet.http.HttpServlet.service(HttpServlet.java:637) >>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) >>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96) >>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235) >>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191) >>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190) >>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433) >>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92) >>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126) >>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70) >>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) >>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) >>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158) >>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) >>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330) >>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829) >>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598) >>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447) >>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at >>> java.lang.Thread.run(Thread.java:679) >>> 2013-01-09 15:07:58,785 ERROR [org.ejbca.ui.web.protocol.OCSPServletBase] >>> (http-0.0.0.0-8080-1) Error processing OCSP request. Message: >>> java.lang.RuntimeException: java.lang.NullPointerException. >>> javax.ejb.EJBException: java.lang.RuntimeException: >>> java.lang.NullPointerException >>> at >>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77) >>> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83) >>> at >>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176) >>> at >>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216) >>> at >>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207) >>> at >>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164) >>> at $Proxy499.extendedService(Unknown Source) >>> at >>> org.ejbca.ui.web.protocol.OCSPServlet.extendedService(OCSPServlet.java:60) >>> at >>> org.ejbca.ui.web.protocol.OCSPServletBase.signOCSPResponse(OCSPServletBase.java:223) >>> at >>> org.ejbca.ui.web.protocol.OCSPServletBase.serviceOCSP(OCSPServletBase.java:905) >>> at >>> org.ejbca.ui.web.protocol.OCSPServletBase.doPost(OCSPServletBase.java:375) >>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:637) >>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> at >>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96) >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) >>> at >>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235) >>> at >>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191) >>> at >>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190) >>> at >>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433) >>> at >>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92) >>> at >>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126) >>> at >>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70) >>> at >>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) >>> at >>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) >>> at >>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158) >>> at >>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) >>> at >>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330) >>> at >>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829) >>> at >>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598) >>> at >>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447) >>> at java.lang.Thread.run(Thread.java:679) >>> Caused by: java.lang.RuntimeException: java.lang.NullPointerException >>> at org.ejbca.core.model.ca.caadmin.CA.getExtendedCAService(CA.java:856) >>> at org.ejbca.core.model.ca.caadmin.CA.extendedService(CA.java:753) >>> at >>> org.ejbca.core.ejb.ca.caadmin.CAAdminSessionBean.extendedService(CAAdminSessionBean.java:2380) >>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>> at >>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) >>> at >>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) >>> at java.lang.reflect.Method.invoke(Method.java:616) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111) >>> at >>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69) >>> at >>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73) >>> at >>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59) >>> at sun.reflect.GeneratedMethodAccessor338.invoke(Unknown Source) >>> at >>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) >>> at java.lang.reflect.Method.invoke(Method.java:616) >>> at >>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72) >>> at >>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_1005639669.invoke(InvocationContextInterceptor_z_fillMethod_1005639669.java) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88) >>> at >>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_1005639669.invoke(InvocationContextInterceptor_z_setup_1005639669.java) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at >>> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68) >>> at >>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102) >>> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:79) >>> ... 48 more >>> Caused by: java.lang.NullPointerException >>> at org.ejbca.core.model.ca.caadmin.CA.getExtendedCAService(CA.java:833) >>> ... 81 more >>> 2013-01-09 15:07:58,789 DEBUG >>> [org.ejbca.core.protocol.ocsp.TransactionLogger] (http-0.0.0.0-8080-1) >>> 1eaace887f0001014af5b94b122010... [truncated message content] |
|
From: Juan C. <ju...@re...> - 2013-01-09 11:49:34
|
You are a lucky guy!. Yesterday I spent 2 hour reading the installation Instructions and in 1 hour I got the OCSP working in the first attempt (weird on systems world!) I wrote down all the steeps to replicate the installation in other environment. Here are the steps done (assuming you have done the Jboss and EJBCA installation property) : ON OCSP NODE 1 and 2 =================== 1- DB Creation mysql> create database ejbca; mysql> create user ejbca; mysql> grant all on ejbca.* to 'ejbca'@'%' identified by 'ejbca'; mysql> grant all on ejbca.* to 'ejbca'@'localhost' identified by 'ejbca'; mysql> flush privileges; 2- Edit Properties files $ cd $ mkdir -p ejbca-custom/conf $ cp ejbca/conf/ejbca.properties.sample ejbca-custom/conf/ejbca.properties $ vi ejbca-custom/conf/ejbca.properties appserver.home=/home/jboss/jboss ejbca.productionmode=ocsp $ cp ejbca/conf/database.properties.sample ejbca-custom/conf/database.properties $ vi ejbca-custom/conf/database.properties datasource.jndi-name=EjbcaDS database.name=mysql database.url=jdbc:mysql://localhost:3306/ejbca database.driver=com.mysql.jdbc.Driver database.username=ejbca database.password=ejbca $ cp ejbca/conf/ocsp.properties.sample ejbca-custom/conf/ocsp.properties $ vi ejbca-custom/conf/ocsp.properties ocsp.defaultresponder=CN=ocsp.example.com,L=Buenos Aires,C=AR ocsp.restrictsignatures=true ocsp.restrictsignaturesbymethod=issuer ocsp.signtrustdir=/home/jboss/ejbca/cas ocsp.signtrustvalidtime=1800 ocsp.keys.dir=/home/jboss/ejbca/keys ocsp.keys.storePassword=ejbca ocsp.keys.keyPassword=ejbca $ mkdir /home/jboss/ejbca/keys $ mkdir /home/jboss/ejbca/cas $ cp ejbca/conf/web.properties.sample ejbca-custom/conf/web.properties $ vi ejbca-custom/conf/web.properties httpsserver.hostname=ocsp.buenosaires.gob.ar httpsserver.dn=CN=${httpsserver.hostname},L=Buenos Aires,C=AR 3- Create cert for OCSP a) Create a User Profile (OCSP) - From Admin CA Web Console - Go Edit End Entity Profiles - Write OCSP in Add Profile edit box and press Add - Select the OCSP from the list and press Edit End Entity Profile - Select OCSPSIGNER on Default Certificate Profile - In Available Certificate Profiles choose OCSPSIGNER - In Available CAs select what you want - In Default Token seleccionar P12 file (I will use soft tokens) - In Available Tokens seleccionar p12, jks y pem - Save b) Create a user with this new profile - From Admin CA Web Console - Go Add End Entity - Select OCSP as End Entity - username: ocsp - password: ejbca - CN: ocsp.example.com - Certificate Profile: OCSPSIGNER - Token P12 file - Add c) Generate the cert - From Public CA's web - Create Browser Certificate - login ocsp/ejbca - Select 2048bits for key lenght - P12 as token - Gen cert 4- Install the cert in OCSP - Copy the generated cert in /home/jboss/ejbca/keys - Copy CA cert (PEM format) in /home/jboss/ejbca/cas 5- Build $ cd $ cd ejbca $ ant bootstarp # service jboss start $ ant install # service jboss stop $ ant va-deploy # service jboss start IN THE CA ========= 1- Config VA-PUBLISHER $ cp ejbca/conf/va-publisher.properties.sample ejbca-custom/conf/va-publisher.properties $ vi ejbca-custom/conf/va-publisher.properties ocsp-datasource.jndi-name=OcspDS ocsp-database.url=jdbc:mysql://ocsp1.example.com:3306/ejbca ocsp-database.driver=com.mysql.jdbc.Driver ocsp-database.username=ejbca ocsp-database.password=ejbca 2- Deploy changes $ ant deploy (If you have more than 1 OCSP) $ cp $JBOSS_HOME/server/default/deploy/ocsp-ds.xml $JBOSS_HOME/server/default/deploy/ocsp2-ds.xml $ vi $JBOSS_HOME/server/default/deploy/ocsp2-ds.xml <jndi-name>Ocsp2DS</jndi-name> <connection-url>jdbc:mysql://ocsp2.example.com:3306/ejbca </connection-url> Agragado del DS para el OCSP-2 3- Create Publisher In the CA you should add as many publisher as OCSP responders you have - From Admin CA Web Console - Go to Edit Publishers - Enter name OCSPX (where X is the OCSP number) and press Add - Select the publisher and press Edit Publisher - Select Publisher Type as Validation Authority Publisher - Select "No direct publishing, only use queue", "Use queue for CRLs", "Use queue for certificates" - Save 4- Attach the publisher with the profiles - From Admin CA Web Console - Edit Certificate Profile - Select your profile - Press Edit - In Publishers Seleccionar Select OCSPX (all X) - Save 5- Create/Modify Publishing Service - From Admin CA Web Console - Go Edit Services - Enter name Re-Publisher - Press Add - Select Republisher and press Edit - Select Publish Queue Process Service - Select all queues - Period: 2 minutes - Check Active - Save DB Migration baseline ================ On CA DB node # mysqldump -p --compress ejbca CertificateData > CertificateData.dat # mysqldump -p --compress ejbca CRLData > CRLData.dat # cat CertificateData.dat | mysql -h ocsp1 -u ejbca -b ejbca -p # cat CRLData.dat | mysql -h ocsp1 -u ejbca -b ejbca -p TEST ==== I tested with this command $ openssl ocsp -url http://ocsp1.example.com:8080/ejbca/publicweb/status/ocsp -issuer CA.cacert.pem -cert user.pem 2013/1/9 M.G.R <mg....@ni...> > > while requesting for validating the certificate issued by external CA using > openssl OCSP client shows the following error in the OCSP server side > > ERROR [org.ejbca.ui.web.protocol.OCSPServletBase] (http-0.0.0.0-8080-1) > Error processing OCSP request. Message: java.lang.RuntimeException: > java.lang.NullPointerException. > > & > > Shows the following error in the client side > > Error querying OCSP responsder > > is there any way to trace the problem. please help me. > > > Thanks in advance. > > -- > View this message in context: > http://old.nabble.com/Error-in-the-OCSP-Responder-tp34877232p34877232.html > Sent from the EjbCA - Dev mailing list archive at Nabble.com. > > > > ------------------------------------------------------------------------------ > Master Java SE, Java EE, Eclipse, Spring, Hibernate, JavaScript, jQuery > and much more. Keep your Java skills current with LearnJavaNow - > 200+ hours of step-by-step video tutorials by Java experts. > SALE $49.99 this month only -- learn more at: > http://p.sf.net/sfu/learnmore_122612 > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > -- Juan Caracoche | Business Developer jua...@re... Mobile: +54.911.4198.8941 www.redb.ee |
|
From: M.G.R <mg....@ni...> - 2013-01-10 06:26:02
|
Hi Juan, What ur saying is 1. creating CA using EJBCA GUI and publish the CA 2. Create the user certificate under that CA(i.e user certificate issued by the published CA) and doing the testing. This was working for me also. But I am asking that I have a CA which is not issued and published by ejbca that CA issued n no of certificates. whether it is possible to handle this by the OCSP Responder of ejbca (i.e Validate the issued user certtifcate which is published by external CA). If possible means how? Juan Caracoche-2 wrote: > > You are a lucky guy!. Yesterday I spent 2 hour reading the installation > Instructions and in 1 hour I got the OCSP working in the first attempt > (weird on systems world!) > > I wrote down all the steeps to replicate the installation in other > environment. Here are the steps done (assuming you have done the Jboss and > EJBCA installation property) : > > ON OCSP NODE 1 and 2 > =================== > > 1- DB Creation > > mysql> create database ejbca; > mysql> create user ejbca; > mysql> grant all on ejbca.* to 'ejbca'@'%' identified by 'ejbca'; > mysql> grant all on ejbca.* to 'ejbca'@'localhost' identified by 'ejbca'; > mysql> flush privileges; > > 2- Edit Properties files > > $ cd > $ mkdir -p ejbca-custom/conf > $ cp ejbca/conf/ejbca.properties.sample ejbca-custom/conf/ejbca.properties > $ vi ejbca-custom/conf/ejbca.properties > > appserver.home=/home/jboss/jboss > ejbca.productionmode=ocsp > > $ cp ejbca/conf/database.properties.sample > ejbca-custom/conf/database.properties > $ vi ejbca-custom/conf/database.properties > > datasource.jndi-name=EjbcaDS > database.name=mysql > database.url=jdbc:mysql://localhost:3306/ejbca > database.driver=com.mysql.jdbc.Driver > database.username=ejbca > database.password=ejbca > > $ cp ejbca/conf/ocsp.properties.sample ejbca-custom/conf/ocsp.properties > $ vi ejbca-custom/conf/ocsp.properties > > ocsp.defaultresponder=CN=ocsp.example.com,L=Buenos Aires,C=AR > ocsp.restrictsignatures=true > ocsp.restrictsignaturesbymethod=issuer > ocsp.signtrustdir=/home/jboss/ejbca/cas > ocsp.signtrustvalidtime=1800 > ocsp.keys.dir=/home/jboss/ejbca/keys > ocsp.keys.storePassword=ejbca > ocsp.keys.keyPassword=ejbca > > $ mkdir /home/jboss/ejbca/keys > $ mkdir /home/jboss/ejbca/cas > > > $ cp ejbca/conf/web.properties.sample ejbca-custom/conf/web.properties > $ vi ejbca-custom/conf/web.properties > > httpsserver.hostname=ocsp.buenosaires.gob.ar > httpsserver.dn=CN=${httpsserver.hostname},L=Buenos Aires,C=AR > > > 3- Create cert for OCSP > a) Create a User Profile (OCSP) > - From Admin CA Web Console > - Go Edit End Entity Profiles > - Write OCSP in Add Profile edit box and press Add > - Select the OCSP from the list and press Edit End Entity Profile > - Select OCSPSIGNER on Default Certificate Profile > - In Available Certificate Profiles choose OCSPSIGNER > - In Available CAs select what you want > - In Default Token seleccionar P12 file (I will use soft tokens) > - In Available Tokens seleccionar p12, jks y pem > - Save > b) Create a user with this new profile > - From Admin CA Web Console > - Go Add End Entity > - Select OCSP as End Entity > - username: ocsp > - password: ejbca > - CN: ocsp.example.com > - Certificate Profile: OCSPSIGNER > - Token P12 file > - Add > c) Generate the cert > - From Public CA's web > - Create Browser Certificate > - login ocsp/ejbca > - Select 2048bits for key lenght > - P12 as token > - Gen cert > > 4- Install the cert in OCSP > - Copy the generated cert in /home/jboss/ejbca/keys > - Copy CA cert (PEM format) in /home/jboss/ejbca/cas > > 5- Build > $ cd > $ cd ejbca > $ ant bootstarp > # service jboss start > $ ant install > # service jboss stop > $ ant va-deploy > # service jboss start > > IN THE CA > ========= > > 1- Config VA-PUBLISHER > > $ cp ejbca/conf/va-publisher.properties.sample > ejbca-custom/conf/va-publisher.properties > $ vi ejbca-custom/conf/va-publisher.properties > > ocsp-datasource.jndi-name=OcspDS > ocsp-database.url=jdbc:mysql://ocsp1.example.com:3306/ejbca > ocsp-database.driver=com.mysql.jdbc.Driver > ocsp-database.username=ejbca > ocsp-database.password=ejbca > > > 2- Deploy changes > > $ ant deploy > > (If you have more than 1 OCSP) > > $ cp $JBOSS_HOME/server/default/deploy/ocsp-ds.xml > $JBOSS_HOME/server/default/deploy/ocsp2-ds.xml > $ vi $JBOSS_HOME/server/default/deploy/ocsp2-ds.xml > > <jndi-name>Ocsp2DS</jndi-name> > <connection-url>jdbc:mysql://ocsp2.example.com:3306/ejbca > </connection-url> > Agragado del DS para el OCSP-2 > > > 3- Create Publisher > In the CA you should add as many publisher as OCSP responders you have > > - From Admin CA Web Console > - Go to Edit Publishers > - Enter name OCSPX (where X is the OCSP number) and press Add > - Select the publisher and press Edit Publisher > - Select Publisher Type as Validation Authority Publisher > - Select "No direct publishing, only use queue", "Use queue for CRLs", > "Use > queue for certificates" > - Save > > 4- Attach the publisher with the profiles > - From Admin CA Web Console > - Edit Certificate Profile > - Select your profile > - Press Edit > - In Publishers Seleccionar Select OCSPX (all X) > - Save > > 5- Create/Modify Publishing Service > - From Admin CA Web Console > - Go Edit Services > - Enter name Re-Publisher > - Press Add > - Select Republisher and press Edit > - Select Publish Queue Process Service > - Select all queues > - Period: 2 minutes > - Check Active > - Save > > DB Migration baseline > ================ > On CA DB node > # mysqldump -p --compress ejbca CertificateData > CertificateData.dat > # mysqldump -p --compress ejbca CRLData > CRLData.dat > > # cat CertificateData.dat | mysql -h ocsp1 -u ejbca -b ejbca -p > # cat CRLData.dat | mysql -h ocsp1 -u ejbca -b ejbca -p > > > > TEST > ==== > I tested with this command > > $ openssl ocsp -url > http://ocsp1.example.com:8080/ejbca/publicweb/status/ocsp -issuer > CA.cacert.pem -cert user.pem > > > > > 2013/1/9 M.G.R <mg....@ni...> > >> >> while requesting for validating the certificate issued by external CA >> using >> openssl OCSP client shows the following error in the OCSP server side >> >> ERROR [org.ejbca.ui.web.protocol.OCSPServletBase] (http-0.0.0.0-8080-1) >> Error processing OCSP request. Message: java.lang.RuntimeException: >> java.lang.NullPointerException. >> >> & >> >> Shows the following error in the client side >> >> Error querying OCSP responsder >> >> is there any way to trace the problem. please help me. >> >> >> Thanks in advance. >> >> -- >> View this message in context: >> http://old.nabble.com/Error-in-the-OCSP-Responder-tp34877232p34877232.html >> Sent from the EjbCA - Dev mailing list archive at Nabble.com. >> >> >> >> ------------------------------------------------------------------------------ >> Master Java SE, Java EE, Eclipse, Spring, Hibernate, JavaScript, jQuery >> and much more. Keep your Java skills current with LearnJavaNow - >> 200+ hours of step-by-step video tutorials by Java experts. >> SALE $49.99 this month only -- learn more at: >> http://p.sf.net/sfu/learnmore_122612 >> _______________________________________________ >> Ejbca-develop mailing list >> Ejb...@li... >> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >> > > > > -- > > > > Juan Caracoche | Business Developer > jua...@re... > Mobile: +54.911.4198.8941 > www.redb.ee > > ------------------------------------------------------------------------------ > Master Java SE, Java EE, Eclipse, Spring, Hibernate, JavaScript, jQuery > and much more. Keep your Java skills current with LearnJavaNow - > 200+ hours of step-by-step video tutorials by Java experts. > SALE $49.99 this month only -- learn more at: > http://p.sf.net/sfu/learnmore_122612 > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > > -- View this message in context: http://old.nabble.com/Error-in-the-OCSP-Responder-tp34877232p34881530.html Sent from the EjbCA - Dev mailing list archive at Nabble.com. |
|
From: Tomas G. <to...@pr...> - 2013-01-10 13:33:47
|
You need to set up an OCSP responder and simply change the part where the OCSP signer certificate is issued. In the install docs it is issued by a CA in EJBCA, you need to get the OCSP signer certificate issued by your CA. On 01/10/2013 07:25 AM, M.G.R wrote: > > Hi Juan, > > What ur saying is > 1. creating CA using EJBCA GUI and publish the CA > 2. Create the user certificate under that CA(i.e user certificate issued by > the published CA) > > and doing the testing. This was working for me also. > > But I am asking that I have a CA which is not issued and published by ejbca > that CA issued n no of certificates. whether it is possible to handle this > by the OCSP Responder of ejbca (i.e Validate the issued user certtifcate > which is published by external CA). If possible means how? > > > > Juan Caracoche-2 wrote: >> >> You are a lucky guy!. Yesterday I spent 2 hour reading the installation >> Instructions and in 1 hour I got the OCSP working in the first attempt >> (weird on systems world!) >> >> I wrote down all the steeps to replicate the installation in other >> environment. Here are the steps done (assuming you have done the Jboss and >> EJBCA installation property) : >> >> ON OCSP NODE 1 and 2 >> =================== >> >> 1- DB Creation >> >> mysql> create database ejbca; >> mysql> create user ejbca; >> mysql> grant all on ejbca.* to 'ejbca'@'%' identified by 'ejbca'; >> mysql> grant all on ejbca.* to 'ejbca'@'localhost' identified by 'ejbca'; >> mysql> flush privileges; >> >> 2- Edit Properties files >> >> $ cd >> $ mkdir -p ejbca-custom/conf >> $ cp ejbca/conf/ejbca.properties.sample ejbca-custom/conf/ejbca.properties >> $ vi ejbca-custom/conf/ejbca.properties >> >> appserver.home=/home/jboss/jboss >> ejbca.productionmode=ocsp >> >> $ cp ejbca/conf/database.properties.sample >> ejbca-custom/conf/database.properties >> $ vi ejbca-custom/conf/database.properties >> >> datasource.jndi-name=EjbcaDS >> database.name=mysql >> database.url=jdbc:mysql://localhost:3306/ejbca >> database.driver=com.mysql.jdbc.Driver >> database.username=ejbca >> database.password=ejbca >> >> $ cp ejbca/conf/ocsp.properties.sample ejbca-custom/conf/ocsp.properties >> $ vi ejbca-custom/conf/ocsp.properties >> >> ocsp.defaultresponder=CN=ocsp.example.com,L=Buenos Aires,C=AR >> ocsp.restrictsignatures=true >> ocsp.restrictsignaturesbymethod=issuer >> ocsp.signtrustdir=/home/jboss/ejbca/cas >> ocsp.signtrustvalidtime=1800 >> ocsp.keys.dir=/home/jboss/ejbca/keys >> ocsp.keys.storePassword=ejbca >> ocsp.keys.keyPassword=ejbca >> >> $ mkdir /home/jboss/ejbca/keys >> $ mkdir /home/jboss/ejbca/cas >> >> >> $ cp ejbca/conf/web.properties.sample ejbca-custom/conf/web.properties >> $ vi ejbca-custom/conf/web.properties >> >> httpsserver.hostname=ocsp.buenosaires.gob.ar >> httpsserver.dn=CN=${httpsserver.hostname},L=Buenos Aires,C=AR >> >> >> 3- Create cert for OCSP >> a) Create a User Profile (OCSP) >> - From Admin CA Web Console >> - Go Edit End Entity Profiles >> - Write OCSP in Add Profile edit box and press Add >> - Select the OCSP from the list and press Edit End Entity Profile >> - Select OCSPSIGNER on Default Certificate Profile >> - In Available Certificate Profiles choose OCSPSIGNER >> - In Available CAs select what you want >> - In Default Token seleccionar P12 file (I will use soft tokens) >> - In Available Tokens seleccionar p12, jks y pem >> - Save >> b) Create a user with this new profile >> - From Admin CA Web Console >> - Go Add End Entity >> - Select OCSP as End Entity >> - username: ocsp >> - password: ejbca >> - CN: ocsp.example.com >> - Certificate Profile: OCSPSIGNER >> - Token P12 file >> - Add >> c) Generate the cert >> - From Public CA's web >> - Create Browser Certificate >> - login ocsp/ejbca >> - Select 2048bits for key lenght >> - P12 as token >> - Gen cert >> >> 4- Install the cert in OCSP >> - Copy the generated cert in /home/jboss/ejbca/keys >> - Copy CA cert (PEM format) in /home/jboss/ejbca/cas >> >> 5- Build >> $ cd >> $ cd ejbca >> $ ant bootstarp >> # service jboss start >> $ ant install >> # service jboss stop >> $ ant va-deploy >> # service jboss start >> >> IN THE CA >> ========= >> >> 1- Config VA-PUBLISHER >> >> $ cp ejbca/conf/va-publisher.properties.sample >> ejbca-custom/conf/va-publisher.properties >> $ vi ejbca-custom/conf/va-publisher.properties >> >> ocsp-datasource.jndi-name=OcspDS >> ocsp-database.url=jdbc:mysql://ocsp1.example.com:3306/ejbca >> ocsp-database.driver=com.mysql.jdbc.Driver >> ocsp-database.username=ejbca >> ocsp-database.password=ejbca >> >> >> 2- Deploy changes >> >> $ ant deploy >> >> (If you have more than 1 OCSP) >> >> $ cp $JBOSS_HOME/server/default/deploy/ocsp-ds.xml >> $JBOSS_HOME/server/default/deploy/ocsp2-ds.xml >> $ vi $JBOSS_HOME/server/default/deploy/ocsp2-ds.xml >> >> <jndi-name>Ocsp2DS</jndi-name> >> <connection-url>jdbc:mysql://ocsp2.example.com:3306/ejbca >> </connection-url> >> Agragado del DS para el OCSP-2 >> >> >> 3- Create Publisher >> In the CA you should add as many publisher as OCSP responders you have >> >> - From Admin CA Web Console >> - Go to Edit Publishers >> - Enter name OCSPX (where X is the OCSP number) and press Add >> - Select the publisher and press Edit Publisher >> - Select Publisher Type as Validation Authority Publisher >> - Select "No direct publishing, only use queue", "Use queue for CRLs", >> "Use >> queue for certificates" >> - Save >> >> 4- Attach the publisher with the profiles >> - From Admin CA Web Console >> - Edit Certificate Profile >> - Select your profile >> - Press Edit >> - In Publishers Seleccionar Select OCSPX (all X) >> - Save >> >> 5- Create/Modify Publishing Service >> - From Admin CA Web Console >> - Go Edit Services >> - Enter name Re-Publisher >> - Press Add >> - Select Republisher and press Edit >> - Select Publish Queue Process Service >> - Select all queues >> - Period: 2 minutes >> - Check Active >> - Save >> >> DB Migration baseline >> ================ >> On CA DB node >> # mysqldump -p --compress ejbca CertificateData > CertificateData.dat >> # mysqldump -p --compress ejbca CRLData > CRLData.dat >> >> # cat CertificateData.dat | mysql -h ocsp1 -u ejbca -b ejbca -p >> # cat CRLData.dat | mysql -h ocsp1 -u ejbca -b ejbca -p >> >> >> >> TEST >> ==== >> I tested with this command >> >> $ openssl ocsp -url >> http://ocsp1.example.com:8080/ejbca/publicweb/status/ocsp -issuer >> CA.cacert.pem -cert user.pem >> >> >> >> >> 2013/1/9 M.G.R <mg....@ni...> >> >>> >>> while requesting for validating the certificate issued by external CA >>> using >>> openssl OCSP client shows the following error in the OCSP server side >>> >>> ERROR [org.ejbca.ui.web.protocol.OCSPServletBase] (http-0.0.0.0-8080-1) >>> Error processing OCSP request. Message: java.lang.RuntimeException: >>> java.lang.NullPointerException. >>> >>> & >>> >>> Shows the following error in the client side >>> >>> Error querying OCSP responsder >>> >>> is there any way to trace the problem. please help me. >>> >>> >>> Thanks in advance. >>> >>> -- >>> View this message in context: >>> http://old.nabble.com/Error-in-the-OCSP-Responder-tp34877232p34877232.html >>> Sent from the EjbCA - Dev mailing list archive at Nabble.com. >>> >>> >>> >>> ------------------------------------------------------------------------------ >>> Master Java SE, Java EE, Eclipse, Spring, Hibernate, JavaScript, jQuery >>> and much more. Keep your Java skills current with LearnJavaNow - >>> 200+ hours of step-by-step video tutorials by Java experts. >>> SALE $49.99 this month only -- learn more at: >>> http://p.sf.net/sfu/learnmore_122612 >>> _______________________________________________ >>> Ejbca-develop mailing list >>> Ejb...@li... >>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>> >> >> >> >> -- >> >> >> >> Juan Caracoche | Business Developer >> jua...@re... >> Mobile: +54.911.4198.8941 >> www.redb.ee >> >> ------------------------------------------------------------------------------ >> Master Java SE, Java EE, Eclipse, Spring, Hibernate, JavaScript, jQuery >> and much more. Keep your Java skills current with LearnJavaNow - >> 200+ hours of step-by-step video tutorials by Java experts. >> SALE $49.99 this month only -- learn more at: >> http://p.sf.net/sfu/learnmore_122612 >> _______________________________________________ >> Ejbca-develop mailing list >> Ejb...@li... >> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >> >> > |
