Hello OpenXPKI developers,
recently we have had a heavy-load situation within OpenXPKI.
It happened that the parent gave control to the child, got
into "Issuance" workflow state and logged into OpenXPKI log
a "CertIssuance" line with a certificate which wasn't signed
at this time -- due to the load situation, the child process
had died then (parent at this point was in status "WAITING_FOR_CHILD").
The certificate wasn't signed, but the above log output has happened.
>From an audit perspective is not nice, if a certificate issuance
is reported although it hasn't been signed in reality.
This means that the log should ideally only be written if the
certificate was really issued, not in this case.
Greetings
-Achim
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
OpenXPKI-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openxpki-devel
