Menu
▾
▴
Re: [SignServer-develop] Issue with Timestamping
|
From: Markus K. <ejb...@pr...> - 2015-06-02 08:09:24
|
Hi Marcin, There seems to be some issues with the configuration of your workers. >From the stacktrace it can be seen that you are still using the SoftCryptoToken but in fact you want to use the P12CryptoToken. Notice that when you apply a configuration with the "setproperties" command and it contains properties containing "WORKERGENID" in its name a new worker ID will be generate every time. If you run the command "bin/signserver getstatus brief all" you can see all configured workers. It could then happpen that you in fact have multiple workers. In that case use the "remove" command. One of the issues could also been if you forget to run the "reload" command after any configuration change such as setproperties, remove, setproperty etc. The next issue is in your time-stamp configuration where you point out a cryptotoken with the name "CryptoTokenP12" while from your confoguration it looks like you have given it the name "CryptoTokenSoft". Cheers, Markus PrimeKey On 06/01/2015 07:27 PM, Marcin Fabiańczyk wrote: > Hello Markus > > > > I changed the p12 certificate for key, server certificate andt > certificate of CA. This change solved problem with recognizing of > certificate but another error appeared. > > > > 19:15:39,022 ERROR [org.jboss.ejb3.invocation] (http--0.0.0.0-8080-1) > JBAS014134: EJB Invocation failed on component WorkerSessionBean for > method public abstract org.signserver.common.ProcessResponse > org.signserver.ejb.interfaces.IWorkerSession$ILocal.process(org.signserver.server.log.AdminInfo,int,org.signserver.common.ProcessRequest,org.signserver.common.RequestContext) > throws > org.signserver.common.IllegalRequestException,org.signserver.common.CryptoTokenOfflineException,org.signserver.common.SignServerException: > javax.ejb.EJBException: java.lang.NullPointerException > > at > org.jboss.as.ejb3.tx.CMTTxInterceptor.handleExceptionInOurTx(CMTTxInterceptor.java:166) > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > > org.jboss.as.ejb3.tx.CMTTxInterceptor.invokeInOurTx(CMTTxInterceptor.java:230) > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.as.ejb3.tx.CMTTxInterceptor.required(CMTTxInterceptor.java:304) [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.as.ejb3.tx.CMTTxInterceptor.processInvocation(CMTTxInterceptor.java:190) > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ejb3.component.interceptors.CurrentInvocationContextInterceptor.processInvocation(CurrentInvocationContextInterceptor.java:41) > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ejb3.component.interceptors.LoggingInterceptor.processInvocation(LoggingInterceptor.java:59) > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ee.component.NamespaceContextInterceptor.processInvocation(NamespaceContextInterceptor.java:50) > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ejb3.component.interceptors.AdditionalSetupInterceptor.processInvocation(AdditionalSetupInterceptor.java:32) > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ee.component.TCCLInterceptor.processInvocation(TCCLInterceptor.java:45) > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.invocation.ChainedInterceptor.processInvocation(ChainedInterceptor.java:61) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ee.component.ViewService$View.invoke(ViewService.java:165) > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.as.ee.component.ViewDescription$1.processInvocation(ViewDescription.java:173) > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.invocation.ChainedInterceptor.processInvocation(ChainedInterceptor.java:61) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ee.component.ProxyInvocationHandler.invoke(ProxyInvocationHandler.java:72) > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final] > > at > org.signserver.ejb.interfaces.IWorkerSession$ILocal$$$view23.process(Unknown > Source) [SignServer-ejb-interfaces.jar:] > > at > org.signserver.web.GenericProcessServlet.processRequest(GenericProcessServlet.java:473) > > at > org.signserver.web.GenericProcessServlet.doPost(GenericProcessServlet.java:360) > > at javax.servlet.http.HttpServlet.service(HttpServlet.java:754) > [jboss-servlet-api_3.0_spec-1.0.0.Final.jar:1.0.0.Final] > > at javax.servlet.http.HttpServlet.service(HttpServlet.java:847) > [jboss-servlet-api_3.0_spec-1.0.0.Final.jar:1.0.0.Final] > > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:329) > > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248) > > at > org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:275) > > at > org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:161) > > at > org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:397) > > at > org.jboss.as.jpa.interceptor.WebNonTxEmCloserValve.invoke(WebNonTxEmCloserValve.java:50) > [jboss-as-jpa-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:153) > > at > org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:155) > > at > org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) > > at > org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) > > at > org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:368) > > at > org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:877) > > at > org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:671) > > at > org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:930) > > at java.lang.Thread.run(Thread.java:701) [rt.jar:1.6.0_35] > > Caused by: java.lang.NullPointerException > > at > org.signserver.server.cryptotokens.SoftCryptoToken.getPrivateKey(SoftCryptoToken.java:176) > [SignServer-Server.jar:] > > at > org.signserver.module.tsa.TimeStampSigner.getTimeStampTokenGenerator(TimeStampSigner.java:741) > [SignServer-Module-TSA.jar:] > > at > org.signserver.module.tsa.TimeStampSigner.processData(TimeStampSigner.java:474) > [SignServer-Module-TSA.jar:] > > at > org.signserver.ejb.WorkerProcessImpl.process(WorkerProcessImpl.java:280) > [SignServer-ejb.jar:] > > at > org.signserver.ejb.WorkerSessionBean.process(WorkerSessionBean.java:138) > [SignServer-ejb.jar:] > > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > [rt.jar:1.6.0_35] > > at > sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) > [rt.jar:1.6.0_35] > > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > [rt.jar:1.6.0_35] > > at java.lang.reflect.Method.invoke(Method.java:622) > [rt.jar:1.6.0_35] > > at > org.jboss.as.ee.component.ManagedReferenceMethodInterceptorFactory$ManagedReferenceMethodInterceptor.processInvocation(ManagedReferenceMethodInterceptorFactory.java:72) > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.invocation.WeavedInterceptor.processInvocation(WeavedInterceptor.java:53) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ee.component.interceptors.UserInterceptorFactory$1.processInvocation(UserInterceptorFactory.java:36) > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.jpa.interceptor.SBInvocationInterceptor.processInvocation(SBInvocationInterceptor.java:47) > [jboss-as-jpa-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.invocation.InitialInterceptor.processInvocation(InitialInterceptor.java:21) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.invocation.ChainedInterceptor.processInvocation(ChainedInterceptor.java:61) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ee.component.interceptors.ComponentDispatcherInterceptor.processInvocation(ComponentDispatcherInterceptor.java:53) > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ejb3.component.pool.PooledInstanceInterceptor.processInvocation(PooledInstanceInterceptor.java:51) > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ejb3.tx.CMTTxInterceptor.invokeInOurTx(CMTTxInterceptor.java:228) > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > ... 39 more > > > > 19:15:39,040 ERROR > [org.apache.catalina.core.ContainerBase.[jboss.web].[default-host].[/signserver].[GenericProcessServlet]] > (http--0.0.0.0-8080-1) Servlet.service() for servlet > GenericProcessServlet threw exception: javax.ejb.EJBException: > java.lang.NullPointerException > > at > org.jboss.as.ejb3.tx.CMTTxInterceptor.handleExceptionInOurTx(CMTTxInterceptor.java:166) > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.as.ejb3.tx.CMTTxInterceptor.invokeInOurTx(CMTTxInterceptor.java:230) > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.as.ejb3.tx.CMTTxInterceptor.required(CMTTxInterceptor.java:304) [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.as.ejb3.tx.CMTTxInterceptor.processInvocation(CMTTxInterceptor.java:190) > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ejb3.component.interceptors.CurrentInvocationContextInterceptor.processInvocation(CurrentInvocationContextInterceptor.java:41) > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ejb3.component.interceptors.LoggingInterceptor.processInvocation(LoggingInterceptor.java:59) > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ee.component.NamespaceContextInterceptor.processInvocation(NamespaceContextInterceptor.java:50) > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ejb3.component.interceptors.AdditionalSetupInterceptor.processInvocation(AdditionalSetupInterceptor.java:32) > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ee.component.TCCLInterceptor.processInvocation(TCCLInterceptor.java:45) > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.invocation.ChainedInterceptor.processInvocation(ChainedInterceptor.java:61) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ee.component.ViewService$View.invoke(ViewService.java:165) > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.as.ee.component.ViewDescription$1.processInvocation(ViewDescription.java:173) > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.invocation.ChainedInterceptor.processInvocation(ChainedInterceptor.java:61) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ee.component.ProxyInvocationHandler.invoke(ProxyInvocationHandler.java:72) > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final] > > at > org.signserver.ejb.interfaces.IWorkerSession$ILocal$$$view23.process(Unknown > Source) > > at > org.signserver.web.GenericProcessServlet.processRequest(GenericProcessServlet.java:473) > [classes:] > > at > org.signserver.web.GenericProcessServlet.doPost(GenericProcessServlet.java:360) > [classes:] > > at javax.servlet.http.HttpServlet.service(HttpServlet.java:754) > [jboss-servlet-api_3.0_spec-1.0.0.Final.jar:1.0.0.Final] > > at javax.servlet.http.HttpServlet.service(HttpServlet.java:847) > [jboss-servlet-api_3.0_spec-1.0.0.Final.jar:1.0.0.Final] > > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:329) > [jbossweb-7.0.13.Final.jar:] > > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248) > [jbossweb-7.0.13.Final.jar:] > > at > org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:275) > [jbossweb-7.0.13.Final.jar:] > > at > org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:161) > [jbossweb-7.0.13.Final.jar:] > > at > org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:397) > [jbossweb-7.0.13.Final.jar:] > > at > org.jboss.as.jpa.interceptor.WebNonTxEmCloserValve.invoke(WebNonTxEmCloserValve.java:50) > [jboss-as-jpa-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:153) > [jboss-as-web-7.1.1.Final.jar:7.1.1.Final] > > at > org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:155) > [jbossweb-7.0.13.Final.jar:] > > at > org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) > [jbossweb-7.0.13.Final.jar:] > > at > org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) > [jbossweb-7.0.13.Final.jar:] > > at > org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:368) > [jbossweb-7.0.13.Final.jar:] > > at > org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:877) > [jbossweb-7.0.13.Final.jar:] > > at > org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:671) > [jbossweb-7.0.13.Final.jar:] > > at > org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:930) > [jbossweb-7.0.13.Final.jar:] > > at java.lang.Thread.run(Thread.java:701) [rt.jar:1.6.0_35] > > Caused by: java.lang.NullPointerException > > at > org.signserver.server.cryptotokens.SoftCryptoToken.getPrivateKey(SoftCryptoToken.java:176) > [SignServer-Server.jar:] > > at > org.signserver.module.tsa.TimeStampSigner.getTimeStampTokenGenerator(TimeStampSigner.java:741) > [SignServer-Module-TSA.jar:] > > at > org.signserver.module.tsa.TimeStampSigner.processData(TimeStampSigner.java:474) > [SignServer-Module-TSA.jar:] > > at > org.signserver.ejb.WorkerProcessImpl.process(WorkerProcessImpl.java:280) > [SignServer-ejb.jar:] > > at > org.signserver.ejb.WorkerSessionBean.process(WorkerSessionBean.java:138) > [SignServer-ejb.jar:] > > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > [rt.jar:1.6.0_35] > > at > sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) > [rt.jar:1.6.0_35] > > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > [rt.jar:1.6.0_35] > > at java.lang.reflect.Method.invoke(Method.java:622) > [rt.jar:1.6.0_35] > > at > org.jboss.as.ee.component.ManagedReferenceMethodInterceptorFactory$ManagedReferenceMethodInterceptor.processInvocation(ManagedReferenceMethodInterceptorFactory.java:72) > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.invocation.WeavedInterceptor.processInvocation(WeavedInterceptor.java:53) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ee.component.interceptors.UserInterceptorFactory$1.processInvocation(UserInterceptorFactory.java:36) > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.jpa.interceptor.SBInvocationInterceptor.processInvocation(SBInvocationInterceptor.java:47) > [jboss-as-jpa-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.invocation.InitialInterceptor.processInvocation(InitialInterceptor.java:21) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.invocation.ChainedInterceptor.processInvocation(ChainedInterceptor.java:61) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ee.component.interceptors.ComponentDispatcherInterceptor.processInvocation(ComponentDispatcherInterceptor.java:53) > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ejb3.component.pool.PooledInstanceInterceptor.processInvocation(PooledInstanceInterceptor.java:51) > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > at > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final] > > at > org.jboss.as.ejb3.tx.CMTTxInterceptor.invokeInOurTx(CMTTxInterceptor.java:228) > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final] > > ... 39 more > > > > Any suggestions what could go wrong? > > > > Regards, > > Martin > > > > > > ____________________________________________________________________________________________________________________________ > > I used p12 to configure signer certyfikate. > > > > soft-crypto-configuration.properties > > > > # This worker will not perform any operations on its own and indicates > this by > > # using the worker type CryptoWorker > > GLOB.WORKERGENID1.CLASSPATH=org.signserver.server.signers.CryptoWorker > > > > # Uses a soft keystore: > > #GLOB.WORKERGENID1.SIGNERTOKEN.CLASSPATH=org.signserver.server.cryptotokens.SoftCryptoToken > > GLOB.WORKERGENID1.SIGNERTOKEN.CLASSPATH=org.signserver.server.cryptotokens.P12CryptoToken > > > > # Name for other workers to reference this worker: > > WORKERGENID1.NAME=CryptoTokenSoft > > WORKERGENID1.CRYPTOTOKEN=CryptoTokenP12 > > > > # Required. The full path to the key-store file to load. > > WORKERGENID1.KEYSTOREPATH=/opt/signserver/p12/TimeStampCA.p12 > > # The password that protects the key-store. Used for automatic activation. > > WORKERGENID1.KEYSTOREPASSWORD=1234567890 > > > > > > > > qs_timestamp_configuration.properties > > > ## Global properties > > > > GLOB.WORKERGENID1.CLASSPATH= org.signserver.module.tsa.TimeStampSigner > > > > ## General properties > > > > # Name of the worker if referenced by name instead of Id. > > WORKERGENID1.NAME=TimeStampSigner > > > > # Authentication. One of NOAUTH, CLIENTCERT, > org.signserver.server.UsernamePasswordAuthorizer, > org.signserver.server.UsernameAuthorizer > > WORKERGENID1.AUTHTYPE=NOAUTH > > > > #WORKERGENID1.CRYPTOTOKEN=CryptoTokenSoft > > WORKERGENID1.CRYPTOTOKEN=CryptoTokenP12 > > #WORKERGENID1.CRYPTOTOKEN=CryptoTokenP11 > > > > # Required. The full path to the key-store file to load. > > WORKERGENID1.KEYSTOREPATH=/opt/signserver/p12/TimeStampCA.p12 > > # The password that protects the key-store. Used for automatic activation. > > WORKERGENID1.KEYSTOREPASSWORD=1234567890 > > > > > > > > From bin/signserver getconfig I get: > > > > [root@tsa-01 signserver]# bin/signserver getconfig 1 > > OBSERVE that this command displays the current configuration which > > doesn't have to be the same as the active configuration. > > Configurations are activated with the reload command. > > > > The current configuration of worker with id : 1 is : > > NAME=CryptoTokenSoft > > > > KEYSTOREPASSWORD=1234567890 > > > > CRYPTOTOKEN=CryptoTokenP12 > > > > KEYSTOREPATH=/opt/signserver/p12/TimeStampCA.p12 > > > > Either this isn't a Signer or no Signer Certificate have been uploaded > to it. > > > > [root@tsa-01 signserver]# bin/signserver getconfig 2 > > OBSERVE that this command displays the current configuration which > > doesn't have to be the same as the active configuration. > > Configurations are activated with the reload command. > > > > The current configuration of worker with id : 2 is : > > KEYSTOREPASSWORD=1234567890 > > > > CRYPTOTOKEN=CryptoTokenP12 > > > > KEYSTOREPATH=/opt/signserver/p12/TimeStampCA.p12 > > > > AUTHTYPE=NOAUTH > > > > NAME=TimeStampSigner > > > > DEFAULTTSAPOLICYOID=1.2.3 > > > > Either this isn't a Signer or no Signer Certificate have been uploaded > to it. > > > > > > > > Wiadomość napisana przez Markus Kilås <ma...@pr... > <mailto:ma...@pr...>> w dniu 1 cze 2015, o godz. 12:01: > > > > On 06/01/2015 11:19 AM, Marcin Fabianczyk wrote: > > Hello, > > > Hello Marcin, > > > > When I try to sign a document timestamp gets > errors. SIGNSERVER_NODEID in the system variable is set. > > 10:59:57,754 ERROR [org.signserver.common.WorkerConfig] > (http--0.0.0.0-8080-1) Error, required environment variable > SIGNSERVER_NODEID isn't set. > 10:59:57,755 ERROR [org.signserver.common.WorkerConfig] > (http--0.0.0.0-8080-1) Error, required environment variable > SIGNSERVER_NODEID isn't set. > 10:59:57,755 ERROR [org.signserver.common.WorkerConfig] > (http--0.0.0.0-8080-1) Error, required environment variable > SIGNSERVER_NODEID isn't set. > 10:59:57,755 ERROR [org.signserver.common.WorkerConfig] > (http--0.0.0.0-8080-1) Error, required environment variable > SIGNSERVER_NODEID isn't set. > 10:59:57,756 ERROR [org.signserver.common.WorkerConfig] > (http--0.0.0.0-8080-1) Error, required environment variable > SIGNSERVER_NODEID isn't set. > 10:59:57,756 ERROR [org.signserver.common.WorkerConfig] > (http--0.0.0.0-8080-1) Error, required environment variable > SIGNSERVER_NODEID isn't set. > > > > The error about SIGNSERVER_NODEID is more of a warning. > > If you want to get rid of it you need to define it as an environment > variable in place that is read by the application server. For instance > ~/.bashrc might not work but /etc/environment or similar might depending > on the system and how the application server is started. > > > 10:59:57,757 INFO [org.signserver.server.log.IWorkerLogger] > (http--0.0.0.0-8080-1) AUDIT; DefaultTimeStampLogger; LOG_ID: > 396652c8-edc8-4559-a969-07cc17b08283; CLIENT_IP: 10.0.0.27; > REQUEST_FULLURL: > http://tsa-01.company.local/signserver/process?workerName=TimeStampSigner; > RequestTime: 1433149197753; ResponseTime: 1; TimeStamp: > 1433149197756; > TimeSource: LocalComputerTimeSource; PKIStatus: ${TSA_PKISTATUS}; > PKIFailureInfo: ${TSA_PKIFAILUREINFO}; SerialNumber: > b889d6e3b9c7ea6; > TSA_POLICYID: 1.2.3; SIGNER_CERT_SERIALNUMBER: > ${SIGNER_CERT_SERIALNUMBER}; SIGNER_CERT_ISSUERDN: > ${SIGNER_CERT_ISSUERDN}; TIMESTAMPREQUEST_ENCODED: > MDECAQEwITAJBgUrDgMCGgUABBS9rHsjYWM6fCYkVPdKcSRUfwXi7wIGAU2uXXQnAQH/; > TSA_TIMESTAMPRESPONSE_ENCODED: ${TSA_TIMESTAMPRESPONSE_ENCODED}; > ARCHIVE_IDS: ${ARCHIVE_IDS}; PURCHASED: ${PURCHASED}; TSA_EXCEPTION: > ${TSA_EXCEPTION}; EXCEPTION: > org.signserver.common.CryptoTokenOfflineException: No > certificate for > this signer > > > The last sentence is the real issue you are facing: > "No certificate for the signer". > > So you need to make sure the signer has a certificate configured. > > > Best regards, > Markus > PrimeKey > > > PrimeKey Solutions offers a commercial EJBCA & SignServer support > subscription and training. Please see www.primekey.se > <http://www.primekey.se/> or contact > in...@pr... <mailto:in...@pr...> for more information. > https://www.primekey.se/Services/Support/ > https://www.primekey.se/Services/Training/ > > ------------------------------------------------------------------------------ > _______________________________________________ > SignServer-develop mailing list > Sig...@li... > <mailto:Sig...@li...> > https://lists.sourceforge.net/lists/listinfo/signserver-develop > > > > > > ------------------------------------------------------------------------------ > > > > _______________________________________________ > SignServer-develop mailing list > Sig...@li... > https://lists.sourceforge.net/lists/listinfo/signserver-develop > |
