[Ejbca-develop] Fwd: Cmp Client's Certificate Request with no public key.

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hi,

I am trying a test a scenario, where cmp client sends a certificate request
with no public key specified. (RFC 4210)

In response to that certificate request, Is it possible that CA generates
the certificate with public key and send it to client. Also private key by
some means.

But when i tested this scenario, I am getting logs like below,
Caused by: java.lang.NullPointerException
    at org.bouncycastle.asn1.DERBitString.<init>(Unknown Source)
[bcprov-jdk15on-149.jar:1.49.0]
    at
org.ejbca.core.protocol.cmp.CrmfRequestMessage.getPublicKey(CrmfRequestMessage.java:219)
[ejbca-common-web.jar:]
    at
org.ejbca.core.protocol.cmp.CrmfRequestMessage.getRequestPublicKey(CrmfRequestMessage.java:212)
[ejbca-common-web.jar:]
    at
org.ejbca.core.protocol.cmp.CrmfRequestMessage.verify(CrmfRequestMessage.java:485)
[ejbca-common-web.jar:]
    at
org.ejbca.core.ejb.ca.sign.SignSessionBean.decryptAndVerify(SignSessionBean.java:443)
[ejbca-ejb.jar:]
    at
org.ejbca.core.ejb.ca.sign.SignSessionBean.createCertificate(SignSessionBean.java:250)
[ejbca-ejb.jar:]
    at sun.reflect.GeneratedMethodAccessor291.invoke(Unknown Source)
[:1.6.0_27]
    at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
[rt.jar:1.6.0_27]
    at java.lang.reflect.Method.invoke(Method.java:622) [rt.jar:1.6.0_27]

Can this be resolved by proper configuration ? If so, please suggest.

Any help in this regard is appreciated.

Regards,

Sriram