[Openca-Users] Bug in RA when

Fri, 04 Mar 2005 10:00:35 -0800 


Hello list,

I'm new this list :-) I have some questions but will try to not throw
them all at once :-) So here is the first one.

I have set up an off-line CA and on-line RA on different servers using
openca-0.9.2.1 on a Debian Sarge.

The CA seems to be well configured. I have done the data exchange from
the CA to the RA, so the RA has the cacert.pem, with success it seems.

Now I'm trying to generate a user certificate. The user using a pub
interface has successfully created her certificate request, but here
comes the problem when the RA admnistrator wants to access the user
certificate signing request to possibly edit it before signing it.


Error
-----

Error 700

General Error The compilation of the command cmdViewCSR failed. Can't use an undefined value as a HASH reference at /usr/local/pki-ra/OpenCA/lib/functions/crypto-utils.lib line 1149.


Steps to reproduce
------------------

Active CSRs -> New

https://ra.pki.demo/cgi-bin/ra/RAServer?cmd=raList;dataType=NEW_REQUEST

https://ra.pki.demo/cgi-bin/ra/RAServer?cmd=viewCSR;dataType=NEW_REQUEST;key=800


Common Information
------------------------------------------------
OpenCA Version  : 0.9.2.1
Perl Version    :

$ dpkg -l perl*|grep ii
ii perl 5.8.4-6 Larry Wall's Practical Extraction and Report
ii perl-base 5.8.4-6 The Pathologically Eclectic Rubbish Lister
ii perl-modules 5.8.4-6 Core Perl modules
ii perl-suid 5.8.4-6 Runs setuid Perl scripts

OpenSSL Version : 0.9.7e-2
Operating System: Debian Sarge + 2.6.8-1-386

Configure options:
./configure \
  --prefix=/usr/local/pki-ra \
  --with-module-prefix=/usr/local/pki-ra/lib \
  --with-hierarchy-level=ra \
  --with-openca-user=pki \
  --with-openca-group=pki \
  --with-web-host=localhost \
  --with-httpd-user=www-data \
  --with-httpd-group=www-data \
  --with-httpd-fs-prefix=/var/www \
  --enable-db \
  --enable-dbi \
  --enable-ocspd \
  --enable-rbac \

------------------------------------------------

How can I help anyone try to find out what goes wrong?

Is there a chance that the problem comes from the way I installed
and configured OpenCA, the way I did the data exchange? Any hint will be
very appreciated.


I have googled before asking this question and found this one related
post but with nothing useful:
http://www.mail-archive.com/[email protected]/msg06688.html


Cheers,

--
Marc-Aur�le DARCHE
NUXEO (Paris, France)                     http://nuxeo.com/
Nuxeo Collaborative Portal Server (CPS)   http://www.cps-project.org/
Gestion de contenu web / portail collaboratif / logiciel libre



-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_ide95&alloc_id396&op=click
_______________________________________________
Openca-Users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openca-users

Reply via email to