Menu
▾
▴
Re: [Ejbca-develop] NullPointerException in CRL retrieval
|
From: Ralf H. <rh...@hc...> - 2015-12-16 16:25:59
|
Yes i see it now. Clients try to fetch a delta CRL. Thanks. Thats enough :-) -----Ursprüngliche Nachricht----- Von: Tomas Gustavsson [mailto:to...@pr...] Gesendet: Mittwoch, 16. Dezember 2015 15:42 An: ejb...@li... Betreff: Re: [Ejbca-develop] NullPointerException in CRL retrieval Ok, can it then be an invalid URL in some cases that makes them try to fetch a deltaCRL. You can experiment by clicking on the links in publicweb. If there is no CRL, or deltaCRL the corresponding link will give this message. /Tomas On 2015-12-16 03:49, Ralf Hornik wrote: > Hi, yes because there are also successfull retrievals but with serial > 0: > > 2015-12-11 14:37:56,573 DEBUG [org.ejbca.ui.web.RequestHelper] > (default > task-7) Setting encoding to default value: UTF-8 > 2015-12-11 14:37:56,576 INFO > [org.cesecore.certificates.crl.CrlStoreSessionBean] (default task-7) > Retrieved CRL from issuer 'CN=Root CA,O=MyCompany,C=DE', with CRL > number 153. > 2015-12-11 14:37:56,578 DEBUG [org.ejbca.ui.web.pub.CertDistServlet] > (default task-7) Sent latest CRL to client at 10.51.226.125 > > I wonder why and what process wants to look up a CRL with number 0. > What is CertDistServlet used for? I guess its CDP lookup from the end devices. > > -----Ursprüngliche Nachricht----- > Von: Tomas Gustavsson [mailto:to...@pr...] > Gesendet: Montag, 14. Dezember 2015 18:37 > An: ejb...@li... > Betreff: Re: [Ejbca-develop] NullPointerException in CRL retrieval > > > Hi are you sure the "CN=Root CA,O=MyCompany,C=DE" have CRL available, > and not just a Sub CA? > > Regards, > Tomas > > On 2015-12-11 07:32, Ralf Hornik wrote: >> Hi, >> >> i just noticed that there are several exceptions from various clients >> in the wildfly log: >> >> 2015-12-11 14:36:18,817 DEBUG [org.ejbca.ui.web.RequestHelper] >> (default >> task-31) Setting encoding to default value: UTF-8 >> 2015-12-11 14:36:18,820 INFO >> [org.cesecore.certificates.crl.CrlStoreSessionBean] (default task-31) >> Error retrieving CRL for issuer 'CN=Root CA,O=MyCompany,C=DE' with >> CRL > number 0. >> 2015-12-11 14:36:18,820 DEBUG [org.ejbca.ui.web.pub.CertDistServlet] >> (default task-31) Error sending latest CRL to 10.51.18.138: : >> java.lang.NullPointerException >> >> Other log entries with CRL number >0 are successfull. >> The clients are mostly windows PCs. I think they try to lookup the >> CDP and want to retrieve the CRL. >> >> Any hints why ejbca tries to send a CRL with serial 0? The current >> CRL number is 15. >> Thanks and best regards >> >> Ralf Hornik >> Hosting Consulting Services >> Abt-Gallus-Str. 23 >> 86609 Donauwörth >> Tel: +49 906 20430 12 >> Fax: +49 906 20430 15 >> Mobil: +49 151 50721262 >> email: rh...@hc... >> www: http://www.hcservices.de >> >> >> >> --------------------------------------------------------------------- >> - >> -------- >> >> >> >> _______________________________________________ >> Ejbca-develop mailing list >> Ejb...@li... >> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >> > > ---------------------------------------------------------------------- > ------ > -- > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > > > > ---------------------------------------------------------------------- > -------- > > > > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > ---------------------------------------------------------------------------- -- _______________________________________________ Ejbca-develop mailing list Ejb...@li... https://lists.sourceforge.net/lists/listinfo/ejbca-develop |
