Date: Thu, 23 Jan 1997 15:44:49 -0800
Message-Id: <199701232344.PAA16083@puffin.eng.sun.com>
From: Marianne Mueller <mrm@eng.sun.com>
To: sjp@weblogic.com
Subject: Re: javakey
Hi Sam,
Glad to hear the first problem was fixed by starting with a new
database.
For your current problem, you need to either
a) generate keys for anno@weblogic first, then generate a cert
b) ask anno@weblogic to generate a cert privately, save it to
a file, and then you can import it
To do a),
% javakey -gk anno@weblogic.com DSA 512
% javakey -gc anno.dir
To do b), ask anno@weblogic to tell you where to find the file that
has his cert in it. (The anno.cer file, in your example.) Suppose
you put a copy in /tmp/anno.cer. Then you can import it into your
database like so
% javakey -c anno@weblogic.com true
% javakey -ic anno@weblogic.com /tmp/anno.cer
To import a cert, you need to first create a *nonsigning* identity,
but nevertheless, declare it as either trusted or nontrusted. If
you create anno@weblogic.com as a signing identity, then you have
to create the keys in that same identitydb.obj database.
(These glitches with the UI are filed bugs.)
I need to update the online documentation ...
Marianne
> Date: Thu, 23 Jan 1997 15:31:03 -0800
> From: Sam Pullara <sjp@weblogic.com>
> Reply-To: sjp@weblogic.com
> Organization: WebLogic, Inc.
> X-Sender: Sam Pullara <sjp@weblogic.com> (Unverified)
> X-Priority: Normal
>
> Marianne,
>
> I am on WinNT 4.0. It turns out though that the problems I was having
> below were fixed with a removal of beta2/3 and a fresh install. It must
> have been something left over from before. The current problems I am
> having concern the creation of a certificate given a certificate.
>
> Here is the javakey ld:
>
>
> Scope: sun.security.IdentityDatabase, source file: c:\\identitydb.obj
>
> [Signer]anno@weblogic.com[identitydb.obj][not trusted]
> no keys
> no certificates
> No further information available.
>
> [Signer]sjp@weblogic.com[identitydb.obj][trusted]
> public and private keys initialized
> certificates:
> certificate 1 for : CN=Sam Pullara, OU=Engineering,
> O="WebLogic, Inc.
> ", C=USA
> from : CN=Sam Pullara, OU=Engineering,
> O="WebLogic, Inc.
> ", C=USA
> certificate 2 for : CN=Sam Pullara, OU=Engineering,
> O="WebLogic, Inc.
> ", C=USA
> from : CN=Sam Pullara, OU=Engineering,
> O="WebLogic, Inc.
> ", C=USA
>
> No further information available.
>
> Here is the directive file I am using to generate a certificate:
>
> #
> # Information about the subject
> #
> subject.name=anno@weblogic.com
> subject.real.name=Anno Langen
> subject.org.unit=Engineering
> subject.org=WebLogic, Inc.
> subject.country=USA
>
> #
> # Information about the issuer.
> #
> issuer.name=sjp@weblogic.com
> issuer.cert=1
>
> #
> # Information about the certificate
> #
> start.date=1 Dec 1996
> end.date=1 Dec 2080
> serial.number=2
>
> #
> # Name of the file to which to save a copy of the certificate
> #
> out.file=anno.cer
>
> Here is the output from the javakey gc anno.dir command:
>
> java.lang.NullPointerException
> at sun.security.provider.Main.generateCertificate(Main.java:849)
> at sun.security.provider.Main.generateCmd(Main.java:698)
> at sun.security.provider.Main.run(Main.java:1313)
> at sun.security.provider.Main.main(Main.java:1341)
>
> I tried to Mocha that class file but it barfed on it. Do you have any
> idea what is going on?
>
> Thanks
>
> Sam Pullara
> --
> ----------------------------------------------------------------------
> Engineer WebLogic, Inc. San Francisco, CA
> Java Page: http://www.suba.com/~spullara/ ============================
> =================================== WebLogic: http://www.weblogic.com/
> Marianne Mueller wrote:
> >
> > Sam - can you verify which platform you're using? Are you on Win95
> > or WinNT, or Solaris?
> >
> > Marianne
> >
> > > Date: Mon, 20 Jan 1997 12:42:25 -0800
> > > From: Sam Pullara <sjp@weblogic.com>
> > > Reply-To: sjp@weblogic.com
> > > Organization: WebLogic, Inc.
> > > X-Sender: Sam Pullara <sjp@weblogic.com> (Unverified)
> > > X-Priority: Normal
> > >
> > > The new javakey gives me this error when attempting to create a new
> > > signer:
> > >
> > > javakey -cs sjp@weblogic.com true
> > > java.lang.UnsatisfiedLinkError: getRefHashCode
> > > at
> > > java.io.ObjectOutputStream.findWireOffset(ObjectOutputStream.java:674
> > > )
> > > at
> > > java.io.ObjectOutputStream.serializeNullAndRepeat(ObjectOutputStream.
> > > java:658)
> > > at
> > > java.io.ObjectOutputStream.writeObject(ObjectOutputStream.java:175)
> > > at
> > > sun.security.provider.IdentityDatabase.save(IdentityDatabase.java:248
> > > )
> > > at
> > > sun.security.provider.IdentityDatabase.save(IdentityDatabase.java:265
> > > )
> > > at
> > > sun.security.provider.IdentityDatabase.save(IdentityDatabase.java:278
> > > )
> > > at sun.security.provider.Main.save(Main.java:637)
> > > at sun.security.provider.Main.createIdentity(Main.java:198)
> > > at sun.security.provider.Main.createCmd(Main.java:167)
> > > at sun.security.provider.Main.run(Main.java:1304)
> > > at sun.security.provider.Main.main(Main.java:1341)
> > >
> > > The beta2 version worked with this command.
> > >
> > > Sam Pullara
> > > --
> > > ----------------------------------------------------------------------
> > > Engineer WebLogic, Inc. San Francisco, CA
> > > Java Page: http://www.suba.com/~spullara/ ============================
> > > =================================== WebLogic: http://www.weblogic.com/
> > >
>