Menu
▾
▴
Re: [Ejbca-develop] Error in the OCSP Responder
|
From: M.G.R <mg....@ni...> - 2013-01-09 17:05:03
|
hi Tomas,
I want to set up an OCSP responder, which should validate the certificates
issued by an External CA ( Not issued by the EJBCA).
If u have any steps to do this. Please share that steps...
thanks in advance,
Tomas Gustavsson wrote:
>
>
> To mee it looks like you have imported a CA certificate with the "Import
> CA certificate" button on the "Edit Certificate Authorities" screen. Is
> that correct?
>
> An External CA, imported CA certificate, is _not_ a CA, it is just a CA
> certificate.
>
> I'm afraid I do not understand you use case, what you are trying to do.
>
> Are you setting up a Certificate Authority to issue certificates, or are
> you trying to set up an OCSP responder?
>
> Cheers,
> Tomas
>
> On 01/09/2013 12:44 PM, M.G.R wrote:
>>
>> Server OS : Ubuntu 12.04 (64 bit)
>> ejbca version : ejbca_4_0_10
>> Jboss server version: jboss-5.1.0.GA
>> ExternalCA imported : NICsub-CA_for_NIC_2011.cer
>> Issued certificate : spk.cer
>>
>> 2013-01-09 15:07:58,539 INFO [org.ejbca.ui.web.protocol.OCSPServletBase]
>> (http-0.0.0.0-8080-1) Received OCSP request for certificate with serNo:
>> 6001bed296181fee341d, and issuerNameHash:
>> 0c7558aee8c0ae3da9d64337ffb572a33f8b9f8a. Client ip 10.163.14.49.
>> 2013-01-09 15:07:58,574 INFO [org.ejbca.ui.web.protocol.OCSPServletBase]
>> (http-0.0.0.0-8080-1) Adding status information (good) for certificate
>> with
>> serial '6001bed296181fee341d' from issuer 'C=IN,O=National Informatics
>> Centre,OU=Sub-CA,CN=NIC sub-CA for NIC 2011'.
>> 2013-01-09 15:07:58,577 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> #############
>> Inside OCSPResponseItem ###############
>> 2013-01-09 15:07:58,580 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> 1.Admin:UNKNOWN
>> 2013-01-09 15:07:58,580 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> 2.caid:589037259
>> 2013-01-09 15:07:58,580 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> 3.OCSPCAServiceRequest:org.ejbca.core.model.ca.caadmin.extendedcaservices.OCSPCAServiceRequest@4bc63fc3
>> 2013-01-09 15:07:58,581 INFO [STDOUT] (http-0.0.0.0-8080-1) 4:Proxy to
>> jboss.j2ee:ear=ejbca.ear,jar=ejbca-ejb.jar,name=CAAdminSessionBean,service=EJB3
>> implementing [interface
>> org.ejbca.core.ejb.ca.caadmin.CAAdminSessionLocal]
>> 2013-01-09 15:07:58,607 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> 1.caSession:UNKNOWN
>> 2013-01-09 15:07:58,607 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> 2.caSession:589037259
>> 2013-01-09 15:07:58,607 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> 2.caSession:org.ejbca.core.model.ca.caadmin.extendedcaservices.OCSPCAServiceRequest@4bc63fc3
>> 2013-01-09 15:07:58,614 WARN
>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory]
>> (http-0.0.0.0-8080-1)
>> EJBTHREE-1246: Do not use InterceptorsFactory with a
>> ManagedObjectAdvisor,
>> InterceptorRegistry should be used via the bean container
>> 2013-01-09 15:07:58,615 WARN
>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory]
>> (http-0.0.0.0-8080-1)
>> EJBTHREE-1246: Do not use InterceptorsFactory with a
>> ManagedObjectAdvisor,
>> InterceptorRegistry should be used via the bean container
>> 2013-01-09 15:07:58,621 WARN
>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory]
>> (http-0.0.0.0-8080-1)
>> EJBTHREE-1246: Do not use InterceptorsFactory with a
>> ManagedObjectAdvisor,
>> InterceptorRegistry should be used via the bean container
>> 2013-01-09 15:07:58,621 WARN
>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory]
>> (http-0.0.0.0-8080-1)
>> EJBTHREE-1246: Do not use InterceptorsFactory with a
>> ManagedObjectAdvisor,
>> InterceptorRegistry should be used via the bean container
>> 2013-01-09 15:07:58,626 WARN
>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory]
>> (http-0.0.0.0-8080-1)
>> EJBTHREE-1246: Do not use InterceptorsFactory with a
>> ManagedObjectAdvisor,
>> InterceptorRegistry should be used via the bean container
>> 2013-01-09 15:07:58,626 WARN
>> [org.jboss.ejb3.interceptors.aop.InterceptorsFactory]
>> (http-0.0.0.0-8080-1)
>> EJBTHREE-1246: Do not use InterceptorsFactory with a
>> ManagedObjectAdvisor,
>> InterceptorRegistry should be used via the bean container
>> 2013-01-09 15:07:58,757 INFO [STDOUT] (http-0.0.0.0-8080-1) CA
>> :org.ejbca.core.model.ca.caadmin.X509CA@1436fde2
>> 2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> getExtendedCAService Inside ..............1
>> 2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1) returnval
>> Inside ..............null
>> 2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1) returnval
>> Inside ..............null
>> 2013-01-09 15:07:58,758 INFO [STDOUT] (http-0.0.0.0-8080-1) daata Inside
>> ..............{extendedcaservices=[], numberofreqapprovals=1,
>> catoken={catokentype=3, sequence=00000, signaturealgorithm=SHA1WithRSA,
>> sequenceformat=1, classpath=org.ejbca.core.model.ca.catoken.NullCAToken,
>> version=7.0},
>> certificatechain=[MIIEmjCCA4KgAwIBAgIKFCkm0v8UQ5s4+TANBgkqhkiG9w0BAQsFADCByDELMAkG
>> A1UEBhMCSU4xJDAiBgNVBAoTG05hdGlvbmFsIEluZm9ybWF0aWNzIENlbnRyZTEd
>> MBsGA1UECxMUQ2VydGlmeWluZyBBdXRob3JpdHkxDzANBgNVBBETBjExMDAwMzEO
>> MAwGA1UECBMFRGVsaGkxHjAcBgNVBAkTFUxvZGhpIFJvYWQsIE5ldyBEZWxoaTEd
>> MBsGA1UEMwwUQS1CbG9jaywgQ0dPIENvbXBsZXgxFDASBgNVBAMTC05JQyBDQSAy
>> MDExMB4XDTExMDQwMTA2MDkxNVoXDTE2MDMxMDA2MDkxNVowZjELMAkGA1UEBhMC
>> SU4xJDAiBgNVBAoTG05hdGlvbmFsIEluZm9ybWF0aWNzIENlbnRyZTEPMA0GA1UE
>> CxMGU3ViLUNBMSAwHgYDVQQDExdOSUMgc3ViLUNBIGZvciBOSUMgMjAxMTCCASIw
>> DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALTjDqBFmifF+I8Xb9HyrmG0bk8I
>> LaUEr4RMCNDNER1rZTAmab9I7kFHGCNjKD5SmtXLDFnDkKV1gp96Fk6hmZ8CVQ5C
>> dRyO616qvd3TZLN8/Xm0Cl3cBwuTv8XU9nwf4hoyRDQXQK8Psq0zmS2fuRse0q3W
>> TmrRi7Ck2C9zD9eCBjoO0QebgcQ+VXYv1c0ORO0+gD1CRb5j+0GLmb0mK98Wb+R9
>> 3zs7LOV4qIMMEhO4K92+0zomlpHni0blLvCGRd1fAyo5teb9Gw8BaV20vfzubVC5
>> 0NLAEeRa1dSBkkfiPVGavZpXuqLFmIHJCTVODspQvmcUP2rdDPuvkAhdshcCAwEA
>> AaOB5jCB4zASBgNVHRMBAf8ECDAGAQH/AgEAMB0GA1UdDgQWBBT6gA8c/HOkx2mQ
>> E67vPBCtqq8ZhDATBgNVHSMEDDAKgAhOVU+us9+hZjAOBgNVHQ8BAf8EBAMCAQYw
>> EgYDVR0gBAswCTAHBgVggmRkAjBCBggrBgEFBQcBAQQ2MDQwMgYIKwYBBQUHMAKG
>> Jmh0dHA6Ly9uaWNjYS5uaWMuaW4vY2VydC9jZXJ0XzI3OTIuY2VyMDEGA1UdHwQq
>> MCgwJqAkoCKGIGh0dHA6Ly9uaWNjYS5uaWMuaW4vY3JsXzI3OTIuY3JsMA0GCSqG
>> SIb3DQEBCwUAA4IBAQC8K4nthWVPqbXsP5VeeIjiwZ5Plvy+1Cbo3wbzjPYhtCRo
>> yOoO/qPyKZ3zNLZaWSz7wPGGBq5niiQaINTJ0+fBBD0unAlG0ZpSvEFqrenjcfKI
>> ApKfNT6qdg6om+oFMudVrhgWyYqFCM2op2qRcIPHRH7BrX3xT2Ns2+NKc/nIt3L1
>> NxDQm0arvRTYmMjOXEL4fUasxBlWKJR1HvtsnUb2wrXwEEl0/XJiGeg1SHXa/kN/
>> J8eQ359O/ULeXUNcfqtjkSjRW9vGUcwTMP1knyNYRbXKoWCuLv2uvx2gOzh9YwAP
>> DH3JdZGe5lDqC+IyA/pYhh5y5jhCKfvH5MabaR7d],
>> useprintablestringsubjectdn=false, policies=[], defaultcrldistpoint=,
>> version=19.0, catype=1, useCertreqHistory=true, validity=0,
>> description=B64:Q0EgY3JlYXRlZCBieSBjZXJ0aWZpY2F0ZSBpbXBvcnQu,
>> expiretime=Thu
>> Mar 10 11:39:15 IST 2016, deltacrlperiod=0, useCertificateStorage=true,
>> subjectaltname=null, useldapdnorder=true, usecrlnumber=false,
>> finishuser=false, doEnforceUniqueSubjectDNSerialnumber=false,
>> crlperiod=0,
>> signedby=2, doEnforceUniqueDistinguishedName=true,
>> authoritykeyidentifiercritical=false, revokationreason=-1,
>> doEnforceUniquePublicKeys=true, crlnumbercritical=false,
>> cadefinedfreshestcrl=, defaultocspservicelocator=,
>> useauthoritykeyidentifier=false, crldistributionpointoncrlcritical=false,
>> useUserStorage=true, cmpraauthsecret=null, approvalsettings=[],
>> certificateprofileid=2, defaultcrlissuer=, includeinhealthcheck=false,
>> useutf8policytext=false, crlIssueInterval=0,
>> usecrldistributionpointoncrl=false, crlOverlapTime=36000000,
>> crlpublishers=[]}
>> 2013-01-09 15:07:58,759 INFO [STDOUT] (http-0.0.0.0-8080-1)
>> EXTENDEDCASERVICE+type:extendedcaservice1
>> 2013-01-09 15:07:58,759 INFO [STDOUT] (http-0.0.0.0-8080-1) 1111:null
>> 2013-01-09 15:07:58,759 INFO [STDOUT] (http-0.0.0.0-8080-1) Exception
>> Inside ..............null
>> 2013-01-09 15:07:58,759 ERROR [STDERR] (http-0.0.0.0-8080-1)
>> java.lang.NullPointerException
>> 2013-01-09 15:07:58,760 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.ejbca.core.model.ca.caadmin.CA.getExtendedCAService(CA.java:833)
>> 2013-01-09 15:07:58,760 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.ejbca.core.model.ca.caadmin.CA.extendedService(CA.java:753)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.ejbca.core.ejb.ca.caadmin.CAAdminSessionBean.extendedService(CAAdminSessionBean.java:2380)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> java.lang.reflect.Method.invoke(Method.java:616)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> sun.reflect.GeneratedMethodAccessor338.invoke(Unknown Source)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> java.lang.reflect.Method.invoke(Method.java:616)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_1005639669.invoke(InvocationContextInterceptor_z_fillMethod_1005639669.java)
>> 2013-01-09 15:07:58,761 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_1005639669.invoke(InvocationContextInterceptor_z_setup_1005639669.java)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:79)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,762 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>> 2013-01-09 15:07:58,763 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> $Proxy499.extendedService(Unknown Source)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.ejbca.ui.web.protocol.OCSPServlet.extendedService(OCSPServlet.java:60)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.ejbca.ui.web.protocol.OCSPServletBase.signOCSPResponse(OCSPServletBase.java:223)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.ejbca.ui.web.protocol.OCSPServletBase.serviceOCSP(OCSPServletBase.java:905)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.ejbca.ui.web.protocol.OCSPServletBase.doPost(OCSPServletBase.java:375)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>> 2013-01-09 15:07:58,764 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>> 2013-01-09 15:07:58,765 ERROR [STDERR] (http-0.0.0.0-8080-1) at
>> java.lang.Thread.run(Thread.java:679)
>> 2013-01-09 15:07:58,785 ERROR [org.ejbca.ui.web.protocol.OCSPServletBase]
>> (http-0.0.0.0-8080-1) Error processing OCSP request. Message:
>> java.lang.RuntimeException: java.lang.NullPointerException.
>> javax.ejb.EJBException: java.lang.RuntimeException:
>> java.lang.NullPointerException
>> at
>> org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:77)
>> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
>> at
>> org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:190)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:76)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.security.RoleBasedAuthorizationInterceptorv2.invoke(RoleBasedAuthorizationInterceptorv2.java:201)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.security.Ejb3AuthenticationInterceptorv2.invoke(Ejb3AuthenticationInterceptorv2.java:186)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:41)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.BlockContainerShutdownInterceptor.invoke(BlockContainerShutdownInterceptor.java:67)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.aspects.currentinvocation.CurrentInvocationInterceptor.invoke(CurrentInvocationInterceptor.java:67)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:176)
>> at
>> org.jboss.ejb3.session.SessionSpecContainer.invoke(SessionSpecContainer.java:216)
>> at
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:207)
>> at
>> org.jboss.ejb3.proxy.impl.handler.session.SessionProxyInvocationHandlerBase.invoke(SessionProxyInvocationHandlerBase.java:164)
>> at $Proxy499.extendedService(Unknown Source)
>> at
>> org.ejbca.ui.web.protocol.OCSPServlet.extendedService(OCSPServlet.java:60)
>> at
>> org.ejbca.ui.web.protocol.OCSPServletBase.signOCSPResponse(OCSPServletBase.java:223)
>> at
>> org.ejbca.ui.web.protocol.OCSPServletBase.serviceOCSP(OCSPServletBase.java:905)
>> at
>> org.ejbca.ui.web.protocol.OCSPServletBase.doPost(OCSPServletBase.java:375)
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> at
>> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
>> at
>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
>> at
>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
>> at
>> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
>> at
>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
>> at
>> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
>> at
>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
>> at
>> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
>> at
>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
>> at
>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>> at
>> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
>> at
>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
>> at
>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
>> at
>> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
>> at
>> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
>> at
>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
>> at java.lang.Thread.run(Thread.java:679)
>> Caused by: java.lang.RuntimeException: java.lang.NullPointerException
>> at org.ejbca.core.model.ca.caadmin.CA.getExtendedCAService(CA.java:856)
>> at org.ejbca.core.model.ca.caadmin.CA.extendedService(CA.java:753)
>> at
>> org.ejbca.core.ejb.ca.caadmin.CAAdminSessionBean.extendedService(CAAdminSessionBean.java:2380)
>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>> at
>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
>> at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>> at java.lang.reflect.Method.invoke(Method.java:616)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeTarget(MethodInvocation.java:122)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:111)
>> at
>> org.jboss.ejb3.EJBContainerInvocationWrapper.invokeNext(EJBContainerInvocationWrapper.java:69)
>> at
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.invoke(InterceptorSequencer.java:73)
>> at
>> org.jboss.ejb3.interceptors.aop.InterceptorSequencer.aroundInvoke(InterceptorSequencer.java:59)
>> at sun.reflect.GeneratedMethodAccessor338.invoke(Unknown Source)
>> at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>> at java.lang.reflect.Method.invoke(Method.java:616)
>> at
>> org.jboss.aop.advice.PerJoinpointAdvice.invoke(PerJoinpointAdvice.java:174)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.fillMethod(InvocationContextInterceptor.java:72)
>> at
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_fillMethod_1005639669.invoke(InvocationContextInterceptor_z_fillMethod_1005639669.java)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor.setup(InvocationContextInterceptor.java:88)
>> at
>> org.jboss.aop.advice.org.jboss.ejb3.interceptors.aop.InvocationContextInterceptor_z_setup_1005639669.invoke(InvocationContextInterceptor_z_setup_1005639669.java)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionInterceptor.java:62)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:56)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at org.jboss.ejb3.tx.NullInterceptor.invoke(NullInterceptor.java:42)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at
>> org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:68)
>> at
>> org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:102)
>> at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:79)
>> ... 48 more
>> Caused by: java.lang.NullPointerException
>> at org.ejbca.core.model.ca.caadmin.CA.getExtendedCAService(CA.java:833)
>> ... 81 more
>> 2013-01-09 15:07:58,789 DEBUG
>> [org.ejbca.core.protocol.ocsp.TransactionLogger] (http-0.0.0.0-8080-1)
>> 1eaace887f0001014af5b94b122010d9;1;0;0"10.163.14.49";"0";"0";0;"2013-01-09:09:37:58:GMT";348;1;0;0;0;0;0;0;0;"C=IN,O=National
>> Informatics Centre,OU=Sub-CA,CN=NIC sub-CA for NIC
>> 2011";0c7558aee8c0ae3da9d64337ffb572a33f8b9f8a;fa800f1cfc73a4c7699013aeef3c10adaaaf1984;1.3.14.3.2.26;6001bed296181fee341d;0
>> 1eaace887f0001014af5b94b122010d9;1;2;0"10.163.14.49";"0";"0";0;"2013-01-09:09:37:58:GMT";348;1;0;0;0;0;0;0;0;"C=IN,O=National
>> Informatics Centre,OU=Sub-CA,CN=NIC sub-CA for NIC
>> 2011";0c7558aee8c0ae3da9d64337ffb572a33f8b9f8a;fa800f1cfc73a4c7699013aeef3c10adaaaf1984;1.3.14.3.2.26;6001bed296181fee341d;0
>>
>> This is the full error messaage throws in the server.log while running
>> the
>>
>> OCSP request from the client machine using the openssl OCSP client
>> command
>>
>> $ openssl ocsp -issuer NICsub-CA_for_NIC_2011.cer -cert spk.cer -url
>> http://<ip address>/ejbca/publicweb/status/ocsp -respout resp.der
>> -no_cert_verify
>>
>> Error querying OCSP responsder
>>
>> But while using CAs with certificates issued by ejbca is working properly
>> responding.
>>
>> Please find the issue where I am doing wrong. because here Iam facing
>> this
>> issue for the past 3 weeks.
>>
>>
>>
>>
>> Tomas Gustavsson wrote:
>>>
>>>
>>> You have to provide more of the error. Not possible to say anything from
>>> the short snippet you provide. Also versions are of course neede din
>>> order to say anything
>>>
>>> Cheers,
>>> Tomas
>>> PrimeKey Solutions offers commercial EJBCA and SignServer support
>>> subscriptions and training courses. Please see www.primekey.se or
>>> contact in...@pr... for more information.
>>> http://www.primekey.se/Services/Support/
>>> http://www.primekey.se/Services/Training/
>>>
>>> **********
>>> PrimeKey Solutions AB
>>> Anderstorpsvägen 16, 171 54 Solna, Sweden
>>> Mob: +46 (0)707421096
>>> Internet: www.primekey.se
>>> Twitter: twitter.com/primekeyPKI
>>> **********
>>>
>>> On 01/09/2013 11:09 AM, M.G.R wrote:
>>>>
>>>> while requesting for validating the certificate issued by external CA
>>>> using
>>>> openssl OCSP client shows the following error in the OCSP server side
>>>>
>>>> ERROR [org.ejbca.ui.web.protocol.OCSPServletBase] (http-0.0.0.0-8080-1)
>>>> Error processing OCSP request. Message: java.lang.RuntimeException:
>>>> java.lang.NullPointerException.
>>>>
>>>> &
>>>>
>>>> Shows the following error in the client side
>>>>
>>>> Error querying OCSP responsder
>>>>
>>>> is there any way to trace the problem. please help me.
>>>>
>>>>
>>>> Thanks in advance.
>>>>
>>>
>>> ------------------------------------------------------------------------------
>>> Master Java SE, Java EE, Eclipse, Spring, Hibernate, JavaScript, jQuery
>>> and much more. Keep your Java skills current with LearnJavaNow -
>>> 200+ hours of step-by-step video tutorials by Java experts.
>>> SALE $49.99 this month only -- learn more at:
>>> http://p.sf.net/sfu/learnmore_122612
>>> _______________________________________________
>>> Ejbca-develop mailing list
>>> Ejb...@li...
>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>>>
>>>
>>
>
> ------------------------------------------------------------------------------
> Master Java SE, Java EE, Eclipse, Spring, Hibernate, JavaScript, jQuery
> and much more. Keep your Java skills current with LearnJavaNow -
> 200+ hours of step-by-step video tutorials by Java experts.
> SALE $49.99 this month only -- learn more at:
> http://p.sf.net/sfu/learnmore_122612
> _______________________________________________
> Ejbca-develop mailing list
> Ejb...@li...
> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
>
>
--
View this message in context: http://old.nabble.com/Error-in-the-OCSP-Responder-tp34877232p34879077.html
Sent from the EjbCA - Dev mailing list archive at Nabble.com.
|
