Bug 468347
Summary: | Exception encountered when status of a revoked certificate is queried from OCSPClient tool on Fedora 8 | ||||||
---|---|---|---|---|---|---|---|
Product: | [Retired] Dogtag Certificate System | Reporter: | Kashyap Chamarthy <kchamart> | ||||
Component: | OCSP Responder | Assignee: | Andrew Wnuk <awnuk> | ||||
Status: | CLOSED WORKSFORME | QA Contact: | Chandrasekar Kannan <ckannan> | ||||
Severity: | high | Docs Contact: | |||||
Priority: | high | ||||||
Version: | 1.0 | CC: | amesonero, benl, cfu, dpal, mharmsen | ||||
Target Milestone: | --- | ||||||
Target Release: | --- | ||||||
Hardware: | All | ||||||
OS: | Linux | ||||||
Whiteboard: | |||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2009-05-12 01:06:26 UTC | Type: | --- | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Bug Depends On: | |||||||
Bug Blocks: | 443788 | ||||||
Attachments: |
|
Description
Kashyap Chamarthy
2008-10-24 09:03:21 UTC
Created attachment 321391 [details]
OCSPClient query exception screenshot
Tests on OCSP: 1. Test for revoked certificate: -------------------------------- OCSPClient a-f8.sjc.redhat.com 11180 ./db caCert 10 res_ocsp.txt 1 '/ocsp/ee/ocsp' URI: /ocsp/ee/ocsp Data Length: 68 Data: MEIwQDA+MDwwOjAJBgUrDgMCGgUABBTwwzEvJvb+882u8fzk3fbdjTmsmQQUmzo4 RDKfHivNymc/Bwv/gCZ/NS0CAQo= CertID.serialNumber=10 CertStatus=Revoked Success: Output res_ocsp.txt 2. Test for valid certificate: ------------------------------ OCSPClient a-f8.sjc.redhat.com 11180 ./db caCert 9 res_ocsp.txt 1 '/ocsp/ee/ocsp' URI: /ocsp/ee/ocsp Data Length: 68 Data: MEIwQDA+MDwwOjAJBgUrDgMCGgUABBTwwzEvJvb+882u8fzk3fbdjTmsmQQUmzo4 RDKfHivNymc/Bwv/gCZ/NS0CAQk= CertID.serialNumber=9 CertStatus=Good Success: Output res_ocsp.txt Tests on CA-OCSP: 1. Test for revoked certificate: -------------------------------- OCSPClient a-f8.sjc.redhat.com 9180 ./db caCert 10 res_10.txt 1 '/ca/ocsp' URI: /ca/ocsp Data Length: 68 Data: MEIwQDA+MDwwOjAJBgUrDgMCGgUABBTwwzEvJvb+882u8fzk3fbdjTmsmQQUmzo4 RDKfHivNymc/Bwv/gCZ/NS0CAQo= CertID.serialNumber=10 CertStatus=Revoked Success: Output res_10.txt 2. Test for valid certificate: ------------------------------ OCSPClient a-f8.sjc.redhat.com 9180 ./db caCert 9 res_10.txt 1 '/ca/ocsp' URI: /ca/ocsp Data Length: 68 Data: MEIwQDA+MDwwOjAJBgUrDgMCGgUABBTwwzEvJvb+882u8fzk3fbdjTmsmQQUmzo4 RDKfHivNymc/Bwv/gCZ/NS0CAQk= CertID.serialNumber=9 CertStatus=Good Success: Output res_10.txt thanks Andrew. I was using the agent port(11443), instead of ee port(11180). It works for me too.. --kashyap |