From: Tomas G. <to...@pr...> - 2008-01-08 13:22:08
|
What's your configuration for the CA? I.e. what is the keyspec? You don't have to change anything in ejbca.properties to use ECDSA, only if you use "implicitlyCA", and I don't think you want that. How are you trying to generate the certificate? Which token, which client? Cheers, Tomas Nicolas Coudene skrev: > Hi, > > I have some issues with ECDSA in EJBCA. I modify ejbca.properties to add > the default conf for ECDSA, ant clean, ant deploy, restart Jboss. After > i create an AC with SHA1withECDSA algorythm, create a new end user and > when I try to generate the certificate, here the error : > > Username: ecdsa_test > > Parameter name and values: > > user:ecdsa_test > > password:plop > > keygen:MIIBOjCBpDCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA10ct1pXIaRGdxXEU > MpdjzmvuhYojpJzQ2l9UXkJ9t8l/XH8zn3X21e0l75HUh4WxxIK8HeyJ7ogzEj8S > > > UGhrnvCV2hsHGMwNkzsM65tulIVUtqA8gXC7OS5ApXc3MWfB3NQGkFEH1uVjzIVo > xagpHfCaaRnWAdU+WKSFwFzeZOMCAwEAARYAMA0GCSqGSIb3DQEBBAUAA4GBACft > Qy0McFUZPwwE1aLpRdhoOpNK+7e7EC14NcB6orq1bm4JKu8DoLPpoaxujBPtbI8K > qNv/5GOiKtg2Pov90HcQHP6Ox9rb4yggQSEtRoowCyWdDJrClhIfVuGf8ECWw0n8 > > > 7uSgdAF8zVF5YUTGCserh+1B5id0PcjYOEOoiD+K > > Exception: > javax.ejb.EJBException: java.lang.NullPointerException > at org.ejbca.core.model.ca.caadmin.X509CA.createPKCS7(X509CA.java:373) > at org.ejbca.core.ejb.ca.sign.RSASignSessionBean.createPKCS7 > > (RSASignSessionBean.java:373) > at org.ejbca.core.ejb.ca.sign.RSASignSessionBean.createPKCS7(RSASignSessionBean.java:307) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke > > (NativeMethodAccessorImpl.java:39) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) > at java.lang.reflect.Method.invoke(Method.java:597) > at org.jboss.invocation.Invocation.performCall > > (Invocation.java:359) > at org.jboss.ejb.StatelessSessionContainer$ContainerInterceptor.invoke(StatelessSessionContainer.java:237) > at org.jboss.resource.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java > > :158) > at org.jboss.ejb.plugins.StatelessSessionInstanceInterceptor.invoke(StatelessSessionInstanceInterceptor.java:169) > at org.jboss.ejb.plugins.CallValidationInterceptor.invoke(CallValidationInterceptor.java:63) > > > at org.jboss.ejb.plugins.AbstractTxInterceptor.invokeNext(AbstractTxInterceptor.java:121) > at org.jboss.ejb.plugins.TxInterceptorCMT.runWithTransactions(TxInterceptorCMT.java:350) > at org.jboss.ejb.plugins.TxInterceptorCMT.invoke > > (TxInterceptorCMT.java:181) > at org.jboss.ejb.plugins.SecurityInterceptor.invoke(SecurityInterceptor.java:168) > at org.jboss.ejb.plugins.LogInterceptor.invoke(LogInterceptor.java:205) > at org.jboss.ejb.plugins.ProxyFactoryFinderInterceptor.invoke > > (ProxyFactoryFinderInterceptor.java:138) > at org.jboss.ejb.SessionContainer.internalInvoke(SessionContainer.java:648) > at org.jboss.ejb.Container.invoke(Container.java:960) > at org.jboss.ejb.plugins.local.BaseLocalProxyFactory.invoke > > (BaseLocalProxyFactory.java:430) > at org.jboss.ejb.plugins.local.StatelessSessionProxy.invoke(StatelessSessionProxy.java:103) > at $Proxy243.createPKCS7(Unknown Source) > at org.ejbca.ui.web.RequestHelper.nsCertRequest > > (RequestHelper.java:135) > at org.ejbca.ui.web.pub.CertReqServlet.doPost(CertReqServlet.java:259) > at javax.servlet.http.HttpServlet.service(HttpServlet.java:710) > at javax.servlet.http.HttpServlet.service(HttpServlet.java > > :803) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) > at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) > at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter > > (ReplyHeaderFilter.java:96) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) > at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java > > :206) > at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:230) > at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:175) > at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke > > (SecurityAssociationValve.java:179) > at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:84) > at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) > at org.apache.catalina.valves.ErrorReportValve.invoke > > (ErrorReportValve.java:102) > at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:157) > at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) > > > at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:262) > at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:844) > at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process > > (Http11Protocol.java:583) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:446) > at java.lang.Thread.run(Thread.java:619) > Caused by: java.lang.NullPointerException > at org.bouncycastle.asn1.DERObjectIdentifier.isValidIdentifier > > (Unknown Source) > at org.bouncycastle.asn1.DERObjectIdentifier.<init>(Unknown Source) > at org.bouncycastle.cms.CMSSignedGenerator.getEncAlgorithmIdentifier(Unknown Source) > at org.bouncycastle.cms.CMSSignedDataGenerator$SignerInf.toSignerInfo > > (Unknown Source) > at org.bouncycastle.cms.CMSSignedDataGenerator.generate(Unknown Source) > at org.bouncycastle.cms.CMSSignedDataGenerator.generate(Unknown Source) > at org.bouncycastle.cms.CMSSignedDataGenerator.generate > > (Unknown Source) > at org.ejbca.core.model.ca.caadmin.X509CA.createPKCS7(X509CA.java:363) > ... 44 more > > And here the jboss error > > 11:28:13,499 ERROR [LogInterceptor] EJBException in method: public > abstract byte[] > org.ejbca.core.ejb.ca.sign.ISignSessionLocal.createPKCS7(org.ejbca.core.mo > <http://org.ejbca.core.mo> > del.log.Admin,java.security.cert.Certificate,boolean) throws > org.ejbca.core.model.ca.caadmin.CADoesntExistsException > ,org.ejbca.core.model.ca.SignRequestSigna > tureException, causedBy: > java.lang.NullPointerException > at > org.bouncycastle.asn1.DERObjectIdentifier.isValidIdentifier(Unknown Source) > at org.bouncycastle.asn1.DERObjectIdentifier .<init>(Unknown Source) > at > org.bouncycastle.cms.CMSSignedGenerator.getEncAlgorithmIdentifier(Unknown > Source) > at > org.bouncycastle.cms.CMSSignedDataGenerator$SignerInf.toSignerInfo(Unknown > Source) > at org.bouncycastle.cms.CMSSignedDataGenerator.generate(Unknown > Source) > at org.bouncycastle.cms.CMSSignedDataGenerator.generate(Unknown > Source) > at org.bouncycastle.cms.CMSSignedDataGenerator.generate (Unknown > Source) > ... > > > > An idea ? > > Thanks in advance > > Nicolas > > > ------------------------------------------------------------------------ > > ------------------------------------------------------------------------- > Check out the new SourceForge.net Marketplace. > It's the best place to buy or sell services for > just about anything Open Source. > http://ad.doubleclick.net/clk;164216239;13503038;w?http://sf.net/marketplace > > > ------------------------------------------------------------------------ > > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop |