WSS client fails to validate signature
I try to call a secure X.509 web service with a standalone client. My client is able to call the service, but it fails to validate a signature in the response. Stacktrace:
Exception in thread "main" javax.xml.ws.soap.SOAPFaultException: weblogic.xml.dom.marshal.MarshalException: weblogic.xml.crypto.wss.WSSecurityException: Signature failed to validate. Reference: #str_nqug2feZarDRqizh does not validate.
at com.sun.xml.ws.fault.SOAP11Fault.getProtocolException(SOAP11Fault.java:196)
at com.sun.xml.ws.fault.SOAPFaultBuilder.createException(SOAPFaultBuilder.java:122)
at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:119)
at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:89)
at com.sun.xml.ws.client.sei.SEIStub.invoke(SEIStub.java:118)
at $Proxy29.echoComplexType(Unknown Source)
at examples.webservices.simple_client.SecureMain2.main(Unknown Source)I deployed my war in WLS 10.3.1 and 10.3.3 with the same result.
My web service class is annotated with
@Policy(uri="policy:Wssp1.2-2007-Wss1.0-X509-Basic256.xml")I managed to get the request and response message from the sysout by setting VM directive
-Dweblogic.wsee.verbose=*I don't know where to go from here. Any help would be very much appreciated! Messages and sources are pasted below.
Request
<?xml version='1.0' encoding='UTF-8'?>
<S:Envelope xmlns:S="http://schemas.xmlsoap.org/soap/envelope/">
<S:Header>
<wsse:Security
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
S:mustUnderstand="1">
<wsse:BinarySecurityToken
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary"
ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"
wsu:Id="bst_Wf9BN8DhNsWFJp0a">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
</wsse:BinarySecurityToken>
<dsig:Signature xmlns:dsig="http://www.w3.org/2000/09/xmldsig#">
<dsig:SignedInfo>
<dsig:CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
<dsig:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
<dsig:Reference URI="#Timestamp_hTfC4UvelIQ1rn58">
<dsig:Transforms>
<dsig:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
</dsig:Transforms>
<dsig:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<dsig:DigestValue>Cz65y09RWeYk3bns0Zr3oBW80H0=</dsig:DigestValue>
</dsig:Reference>
<dsig:Reference URI="#Body_pW1NfGuv6WDEeSpi">
<dsig:Transforms>
<dsig:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
</dsig:Transforms>
<dsig:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<dsig:DigestValue>htwgWFOYC84hfti4iXCCHh+deQs=</dsig:DigestValue>
</dsig:Reference>
<dsig:Reference URI="#bst_Wf9BN8DhNsWFJp0a">
<dsig:Transforms>
<dsig:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
</dsig:Transforms>
<dsig:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<dsig:DigestValue>iOWrjzD2sZxSPXAWm8ZCFmA6tTY=</dsig:DigestValue>
</dsig:Reference>
</dsig:SignedInfo>
<dsig:SignatureValue>HxJyWczUY0vDts7+L3fHQVOCk0u1RsRJa/uiYVLJFamKlUGsP65cAzXN07S0oxrU4L/1h98QtD+K9nwog4qpqcuA9ocACCHIk5mHKVOIe3mg5Fo6cXgVzKVecoX2pB1p7XE74rv3Pqt2Jlnm6h34zDHC4nWmqnpL9KYB2oy3b6h5JyZMUAcd7MuKZ9jE0rVthgWLPeskR/4HKjhAKn8E7p62N3EWl+zjttBpwflFplc2478k6l94MfGhAAAfyQGhwXYG8+Ntn7yx3iy3k0pbdqWv6Otr7Df0X+qtg2/dg+zkjqHYDtHDOhbOBM3xSuKB+JwKz/5S6QRcEhSUS67nVQ==
</dsig:SignatureValue>
<dsig:KeyInfo>
<wsse:SecurityTokenReference
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
xmlns:wsse11="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd"
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
wsse11:TokenType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"
wsu:Id="str_Lko8bqWzpHuAHfh0">
<wsse:Reference URI="#bst_Wf9BN8DhNsWFJp0a"
ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" />
</wsse:SecurityTokenReference>
</dsig:KeyInfo>
</dsig:Signature>
<wsu:Timestamp
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
wsu:Id="Timestamp_hTfC4UvelIQ1rn58">
<wsu:Created>2010-10-01T15:10:09Z</wsu:Created>
<wsu:Expires>2010-10-01T15:11:09Z</wsu:Expires>
</wsu:Timestamp>
</wsse:Security>
</S:Header>
<S:Body
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
wsu:Id="Body_pW1NfGuv6WDEeSpi">
<ns3:echoComplexType xmlns:ns2="http://example.org/complex"
xmlns:ns3="http://example.org">
<arg0>
<intValue>999</intValue>
<stringValue>Hello Struct</stringValue>
</arg0>
</ns3:echoComplexType>
</S:Body>
</S:Envelope>
Response
<?xml version='1.0' encoding='UTF-8'?>
<S:Envelope xmlns:S="http://schemas.xmlsoap.org/soap/envelope/">
<S:Header>
<wsse:Security
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
S:mustUnderstand="1">
<dsig:Signature xmlns:dsig="http://www.w3.org/2000/09/xmldsig#">
<dsig:SignedInfo>
<dsig:CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
<dsig:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
<dsig:Reference URI="#Timestamp_QqBGh7JHiRcPisbg">
<dsig:Transforms>
<dsig:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
</dsig:Transforms>
<dsig:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<dsig:DigestValue>QlAcOoVC9AaVR8qXElY0xcpL7No=</dsig:DigestValue>
</dsig:Reference>
<dsig:Reference URI="#Body_ELn3kyPvh9p7QpoV">
<dsig:Transforms>
<dsig:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
</dsig:Transforms>
<dsig:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<dsig:DigestValue>yQN4RviZ3zpJyZxLHrBv9d7cgds=</dsig:DigestValue>
</dsig:Reference>
<dsig:Reference URI="#str_nqug2feZarDRqizh">
<dsig:Transforms>
<dsig:Transform Algorithm="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#STR-Transform">
<wsse:TransformationParameters>
<dsig:CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
</wsse:TransformationParameters>
</dsig:Transform>
</dsig:Transforms>
<dsig:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<dsig:DigestValue>DVw6Uu/0QGb9WOROwxUGHidxdAU=</dsig:DigestValue>
</dsig:Reference>
</dsig:SignedInfo>
<dsig:SignatureValue>qgCaw39pMkxKTxaF0zupYoXNlHLQXww4MODkEJyoJJ/a/58sijzZ0JrD8Ni83Gb5LTflHlDkr6ANt/NPiauTu7azHnyMhQGtHhCY0tXk2XwS2tlKK1UP7dnZ7NazxSxSnAviHIgTHw1Ltg1XeOXjNrMmRRoaV1Lcb0ZfXUvSBiXGpBuprNYMqG/ARF6uV+sAUN2XFQkf+CLxNi6CBs+6M46yyy/FryvbHhlBLBBnyWXJ+yCo8TYhkKpo/moDFAUDAuhPBi60P7tocj/apxrjYZbaJVvIe+lHR09JxMZ5gdDTPAKuc3FQdt9p5yfA3m7mrNltlBY1I8RZSSb0ptItlg==
</dsig:SignatureValue>
<dsig:KeyInfo>
<wsse:SecurityTokenReference
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
xmlns:wsse11="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd"
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
wsse11:TokenType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"
wsu:Id="str_nqug2feZarDRqizh">
<wsse:KeyIdentifier
EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary"
ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509SubjectKeyIdentifier">S07jQjWN88pUII1gXUy7Hx60qC0=</wsse:KeyIdentifier>
</wsse:SecurityTokenReference>
</dsig:KeyInfo>
</dsig:Signature>
<wsu:Timestamp
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
wsu:Id="Timestamp_QqBGh7JHiRcPisbg">
<wsu:Created>2010-10-01T15:10:09Z</wsu:Created>
<wsu:Expires>2010-10-01T15:11:09Z</wsu:Expires>
</wsu:Timestamp>
</wsse:Security>
</S:Header>
<S:Body
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
wsu:Id="Body_ELn3kyPvh9p7QpoV">
<ns2:echoComplexTypeResponse xmlns:ns2="http://example.org"
xmlns:ns3="http://example.org/complex">
<ns3:EchoStructReturnMessage>
<intValue>999</intValue>
<stringValue>Hello Struct</stringValue>
</ns3:EchoStructReturnMessage>
</ns2:echoComplexTypeResponse>
</S:Body>
</S:Envelope>
Client
package examples.webservices.simple_client;
import java.security.cert.X509Certificate;
import java.util.ArrayList;
import java.util.List;
import java.util.Map;
import javax.xml.ws.BindingProvider;
import weblogic.security.SSL.TrustManager;
import weblogic.wsee.security.bst.ClientBSTCredentialProvider;
import weblogic.wsee.security.util.CertUtils;
import weblogic.xml.crypto.wss.WSSecurityContext;
import weblogic.xml.crypto.wss.provider.CredentialProvider;
public class SecureMain2 {
public static void main(String ar[]) throws Exception {
ComplexService test = new ComplexService();
ComplexPortType port = test.getComplexPortTypePort();
BasicStruct in = new BasicStruct();
in.setIntValue(999);
in.setStringValue("Hello Struct");
// String constants to for server certificate, and client identity store
String serverCertFile = "D:\\Development\\WebLogic-keystores\\client_trust.der";
String clientKeyStore = "D:\\Development\\WebLogic-keystores\\client_store.jks";
String clientKeyStorePass = "password";
String clientKeyAlias = "alias";
String clientKeyPass = clientKeyStorePass;
// Create list of credential providers
List<CredentialProvider> credProviders = new ArrayList<CredentialProvider>();
// Create a credential provider with the client indentity and the server side certificate
final X509Certificate serverCert = (X509Certificate) CertUtils.getCertificate(serverCertFile);
serverCert.checkValidity();
CredentialProvider cp = new ClientBSTCredentialProvider(clientKeyStore, clientKeyStorePass, clientKeyAlias, clientKeyPass, "JKS",
serverCert);
credProviders.add(cp);
// Finally add the credential providers to the request context
Map<String, Object> requestContext = ((BindingProvider) port).getRequestContext();
requestContext.put(WSSecurityContext.CREDENTIAL_PROVIDER_LIST, credProviders);
// Setup the TrustManager to verify the signature on the returned message
requestContext.put(WSSecurityContext.TRUST_MANAGER, new TrustManager() {
public boolean certificateCallback(X509Certificate[] chain, int validateErr) {
// Check that the server cert matches
boolean result = chain[0].equals(serverCert);
return result;
// Invoke the service
BasicStruct result = port.echoComplexType(in);
System.out.println("\n\n\t Service returned: " + result.getStringValue());
Web service
package examples.webservices.complex;
// Import the standard JWS annotation interfaces
import javax.jws.WebMethod;
import javax.jws.WebParam;
import javax.jws.WebResult;
import javax.jws.WebService;
import javax.jws.soap.SOAPBinding;
import weblogic.jws.Policy;
// Import the BasicStruct JavaBean
import examples.webservices.complex.BasicStruct;
// Standard JWS annotation that specifies that the portType name of the Web
// Service is "ComplexPortType", its public service name is "ComplexService",
// and the targetNamespace used in the generated WSDL is "http://example.org"
@WebService(serviceName="ComplexService", name="ComplexPortType",
targetNamespace="http://example.org")
// Standard JWS annotation that specifies this is a document-literal-wrapped
// Web Service
@SOAPBinding(style=SOAPBinding.Style.DOCUMENT,
use=SOAPBinding.Use.LITERAL,
parameterStyle=SOAPBinding.ParameterStyle.WRAPPED)
@Policy(uri="policy:Wssp1.2-2007-Wss1.0-X509-Basic256.xml")
* This JWS file forms the basis of a WebLogic Web Service. The Web Services
* has two public operations:
* - echoInt(int)
* - echoComplexType(BasicStruct)
* The Web Service is defined as a "document-literal" service, which means
* that the SOAP messages have a single part referencing an XML Schema element
* that defines the entire body.
public class ComplexImpl {
// Standard JWS annotation that specifies that the method should be exposed
// as a public operation. Because the annotation does not include the
// member-value "operationName", the public name of the operation is the
// same as the method name: echoInt.
// The WebResult annotation specifies that the name of the result of the
// operation in the generated WSDL is "IntegerOutput", rather than the
// default name "return". The WebParam annotation specifies that the input
// parameter name in the WSDL file is "IntegerInput" rather than the Java
// name of the parameter, "input".
@WebMethod()
@WebResult(name="IntegerOutput",
targetNamespace="http://example.org/complex")
public int echoInt(
@WebParam(name="IntegerInput",
targetNamespace="http://example.org/complex")
int input)
System.out.println("echoInt '" + input + "' to you too!");
return input;
// Standard JWS annotation to expose method "echoStruct" as a public operation
// called "echoComplexType"
// The WebResult annotation specifies that the name of the result of the
// operation in the generated WSDL is "EchoStructReturnMessage",
// rather than the default name "return".
@WebMethod(operationName="echoComplexType")
@WebResult(name="EchoStructReturnMessage",
targetNamespace="http://example.org/complex")
public BasicStruct echoStruct(BasicStruct struct)
System.out.println("echoComplexType called");
return struct;
}
Hi ,
I have used the same Web Service Code provided by you and tried to execute the Standalone client ( as pasted by you here ) against the service and after some modification I was able to get the signature validation to true .
Here is the client I have used :
package examples.webservices.simple_client;
import java.security.cert.X509Certificate;
import java.util.ArrayList;
import java.util.List;
import java.util.Map;
import javax.xml.ws.BindingProvider;
import weblogic.security.SSL.TrustManager;
import weblogic.wsee.security.bst.ClientBSTCredentialProvider;
import weblogic.wsee.security.util.CertUtils;
import weblogic.xml.crypto.wss.WSSecurityContext;
import weblogic.xml.crypto.wss.provider.CredentialProvider;
import examples.webservices.complex.BasicStruct;
import javax.xml.rpc.Stub;
public class SecureMain2 {
public static void main(String ar[]) throws Exception {
ComplexService test = new ComplexService_Impl();
ComplexPortType port = test.getComplexPortTypeSoapPort();
BasicStruct in = new BasicStruct();
in.setIntValue(999);
in.setStringValue("Hello Struct");
// String constants to for server certificate, and client identity store
String serverCertFile = "E:\\wls_docs\\web_service\\demo.cer";
String clientKeyStore = "E:\\wls_docs\\web_service\\DemoIdentity.jks";
String clientKeyStorePass = "DemoIdentityKeyStorePassPhrase";
String clientKeyAlias = "DemoIdentity";
String clientKeyPass = "DemoIdentityPassPhrase";
// Create list of credential providers
List<CredentialProvider> credProviders = new ArrayList<CredentialProvider>();
// Create a credential provider with the client indentity and the server side certificate
final X509Certificate serverCert = (X509Certificate) CertUtils.getCertificate(serverCertFile);
serverCert.checkValidity();
CredentialProvider cp = new ClientBSTCredentialProvider(clientKeyStore, clientKeyStorePass, clientKeyAlias, clientKeyPass, "JKS",
serverCert);
credProviders.add(cp);
Stub stub = (Stub)port;
stub._setProperty(WSSecurityContext.CREDENTIAL_PROVIDER_LIST, credProviders);
stub._setProperty(WSSecurityContext.TRUST_MANAGER,
new TrustManager(){
public boolean certificateCallback(X509Certificate[] chain, int validateErr){
boolean result = chain[0].equals(serverCert);
System.out.println(" Validating Signature" );
System.out.println(" Result is " +result ) ;
return result;
// Finally add the credential providers to the request context
//Map<String, Object> requestContext = ((BindingProvider) port).getRequestContext();
//requestContext.put(WSSecurityContext.CREDENTIAL_PROVIDER_LIST, credProviders);
// Setup the TrustManager to verify the signature on the returned message
//requestContext.put(WSSecurityContext.TRUST_MANAGER, new TrustManager() {
//public boolean certificateCallback(X509Certificate[] chain, int validateErr) {
// Check that the server cert matches
//boolean result = chain[0].equals(serverCert);
//return result;
// Invoke the service
BasicStruct result = port.echoComplexType(in);
System.out.println("\n\n\t Service returned: " + result.getStringValue());
Thanks,
Sandeep
Similar Messages
-
SOAP client fails to validate SOAP Response
Hi,
I have developed and deployed a document style web service (with use="literal")
on Web Logic 7.0 server using servicegen ant task. I am using a non Web Logic
client to invoke this service.
The WSDL generated by the service, uses "elementFormDefault="qualified" but in
the SOAP response, all elements are not qualified by namespace. The client is
failing to validate this SOAP response against the types defined in WSDL file
because of this.
I would like to know how to generate a SOAP response with all elements qualified
with namaspace.
Thanks
Prasghhttp://newsgroups.bea.com/cgi-bin/dnewsweb?cmd=article&group=weblogic.developer.interest.webservices&item=2831&utag=
prasgh wrote:
>
Hi Bruce,
Thanks for your reply. It works fine with 8.1 but it doesn't with WLS 7.0. What
we have is 7.0. How can I resolve this on 7.0
Appreciate your help.
Thanks
Prasgh
Bruce Stephens <[email protected]> wrote:
Hello,
Are you using the latest WLS 7.0SP2?
We recently updated the interop instance: http://webservice.bea.com:7001
with WLS 8.1 so I don't have v7 stack (online) to show you, however I
did try it locally using the Compound1 test (doc/lit with
"elementFormDefault="qualified") and it works as shown below.
HTHs,
Bruce
<!--REQUEST.................-->
<env:Envelope xmlns:xsd="http://www.w3.org/2001/XMLSchema"
xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"
xmlns:env="http://schemas.xmlsoap.org/soap/envelope/"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<env:Header>
</env:Header>
<env:Body>
<ns100:x_Person xmlns:ns100="http://soapinterop.org/xsd"
Male="true"
Name="sample string">
<ns101:Age
xmlns:ns101="http://soapinterop.org/xsd">20.2</ns101:Age>
<ns102:ID
xmlns:ns102="http://soapinterop.org/xsd">10.1</ns102:ID>
</ns100:x_Person>
</env:Body>
</env:Envelope>
Response from the server
<!--RESPONSE.................-->
<env:Envelope xmlns:xsd="http://www.w3.org/2001/XMLSchema"
xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"
xmlns:env="http://schemas.xmlsoap.org/soap/envelope/"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<env:Body>
<ns100:result_Person xmlns:ns100="http://soapinterop.org/xsd"
Name="sample string"
Male="true">
<ns101:Age
xmlns:ns101="http://soapinterop.org/xsd">20.2</ns101:Age>
<ns102:ID
xmlns:ns102="http://soapinterop.org/xsd">10.1</ns102:ID>
</ns100:result_Person>
</env:Body>
</env:Envelope>
[email protected] wrote:
Hi,
I have developed and deployed a document style web service (with use="literal")
on Web Logic 7.0 server using servicegen ant task. I am using a nonWeb Logic
client to invoke this service.
The WSDL generated by the service, uses "elementFormDefault="qualified"but in
the SOAP response, all elements are not qualified by namespace. Theclient is
failing to validate this SOAP response against the types defined inWSDL file
because of this.
I would like to know how to generate a SOAP response with all elementsqualified
with namaspace.
Thanks
Prasgh -
11G ws proxy client gives me Failed to process signature.null
Hi
I got this error maybe someone can help me
thanks Edwin
java.rmi.RemoteException: SOAPFaultException - FaultCode [{http://schemas.xmlsoap.org/soap/envelope/}Server] FaultString [Failed to process signature.null] FaultActor [null]No Detail; nested exception is:
weblogic.wsee.jaxrpc.soapfault.WLSOAPFaultException: Failed to process signature.null
at nl.ordina.ws.client.CreditCheck_Stub.checkOrder(CreditCheck_Stub.java:39)
at nl.ordina.ws.TestWS.main(TestWS.java:65)
Caused by: weblogic.wsee.jaxrpc.soapfault.WLSOAPFaultException: Failed to process signature.null
at weblogic.wsee.codec.soap11.SoapCodec.decodeFault(SoapCodec.java:355)
at weblogic.wsee.ws.dispatch.client.CodecHandler.decodeFault(CodecHandler.java:115)
at weblogic.wsee.ws.dispatch.client.CodecHandler.decode(CodecHandler.java:100)
at weblogic.wsee.ws.dispatch.client.CodecHandler.handleFault(CodecHandler.java:88)
at weblogic.wsee.handler.HandlerIterator.handleFault(HandlerIterator.java:309)
at weblogic.wsee.handler.HandlerIterator.handleResponse(HandlerIterator.java:269)
at weblogic.wsee.ws.dispatch.client.ClientDispatcher.handleResponse(ClientDispatcher.java:213)
at weblogic.wsee.ws.dispatch.client.ClientDispatcher.dispatch(ClientDispatcher.java:150)
at weblogic.wsee.ws.WsStub.invoke(WsStub.java:87)
at weblogic.wsee.jaxrpc.StubImpl._invoke(StubImpl.java:337)
at nl.ordina.ws.client.CreditCheck_Stub.checkOrder(CreditCheck_Stub.java:34)
... 1 more
Caused by: weblogic.xml.crypto.wss.WSSecurityException: Failed to process signature.null
at weblogic.xml.crypto.wss.SecurityImpl.processAndMarshalSignature(SecurityImpl.java:359)
at weblogic.xml.crypto.wss.SecurityImpl.add(SecurityImpl.java:142)
at weblogic.xml.crypto.wss.SecurityBuilderImpl.addSignature(SecurityBuilderImpl.java:909)
at weblogic.xml.crypto.wss.SecurityBuilderImpl.addSignatureWithToken(SecurityBuilderImpl.java:348)
at weblogic.xml.crypto.wss.SecurityBuilderImpl.addSignatureInternal(SecurityBuilderImpl.java:329)
at weblogic.xml.crypto.wss11.internal.SecurityBuilderImpl.addSignature(SecurityBuilderImpl.java:351)
at weblogic.wsee.security.wss.plan.SecurityMessageArchitect.processIntegrity(SecurityMessageArchitect.java:904)
at weblogic.wsee.security.wss.plan.SecurityMessageArchitect.constructMessage(SecurityMessageArchitect.java:310)
at weblogic.wsee.security.wss.plan.SecurityMessageArchitect.buildWssMessage(SecurityMessageArchitect.java:136)
at weblogic.wsee.security.wss.plan.SecurityMessageArchitect.buildWssMessage(SecurityMessageArchitect.java:119)
at weblogic.wsee.security.wss.SecurityPolicyArchitect.processOutbound(SecurityPolicyArchitect.java:217)
at weblogic.wsee.security.wss.SecurityPolicyArchitect.processMessagePolicy(SecurityPolicyArchitect.java:117)
at weblogic.wsee.security.wss.SecurityPolicyConductor.processRequestOutbound(SecurityPolicyConductor.java:120)
at weblogic.wsee.security.wss.SecurityPolicyConductor.processRequestOutbound(SecurityPolicyConductor.java:92)
at weblogic.wsee.security.wssp.handlers.WssClientHandler.processOutbound(WssClientHandler.java:113)
at weblogic.wsee.security.wssp.handlers.WssClientHandler.processRequest(WssClientHandler.java:68)
at weblogic.wsee.security.wssp.handlers.WssHandler.handleRequest(WssHandler.java:92)
at weblogic.wsee.handler.HandlerIterator.handleRequest(HandlerIterator.java:141)
at weblogic.wsee.handler.HandlerIterator.handleRequest(HandlerIterator.java:107)
at weblogic.wsee.ws.dispatch.client.ClientDispatcher.dispatch(ClientDispatcher.java:132)
... 4 more
Caused by: weblogic.xml.crypto.dsig.api.XMLSignatureException
at weblogic.xml.crypto.dsig.SignedInfoImpl.createSignature(SignedInfoImpl.java:101)
at weblogic.xml.crypto.dsig.XMLSignatureImpl.sign(XMLSignatureImpl.java:204)
at weblogic.xml.crypto.wss.SecurityImpl.processAndMarshalSignature(SecurityImpl.java:355)
... 23 more
Caused by: weblogic.xml.crypto.api.KeySelectorException: Failed to resolve key using SecurityTokenReference weblogic.xml.crypto.wss11.internal.bst.BSTR@160e069 URI: str_Gd32NOIPFZLwvql9
at weblogic.xml.crypto.common.keyinfo.KeyResolver.getKeyFromSTR(KeyResolver.java:309)
at weblogic.xml.crypto.common.keyinfo.KeyResolver.select(KeyResolver.java:127)
at weblogic.xml.crypto.dsig.SignedInfoImpl.getSignKey(SignedInfoImpl.java:216)
at weblogic.xml.crypto.dsig.SignedInfoImpl.createSignature(SignedInfoImpl.java:99)
... 25 more
Process exited with exit code 0.
this is the ws code
import javax.jws.WebMethod;
import javax.jws.WebService;
import weblogic.jws.Policy;
@WebService
@Policy(uri = "policy:Wssp1.2-2007-Wss1.0-UsernameToken-Plain-X509-Basic256.xml")
public class CreditCheck {
@WebMethod
public CreditObject CheckOrder(Integer customerId,Integer orderId, double orderTotal ) {
CreditObject credit = new CreditObject();
if (orderTotal > 1000) {
credit.setApproved(false);
credit.reason = "order total too high";
} else credit.setApproved(true);
return credit;
client code
package nl.ordina.ws;
import java.security.cert.X509Certificate;
import java.util.ArrayList;
import java.util.List;
import javax.xml.rpc.Stub;
import nl.ordina.ws.client.CreditCheck;
import nl.ordina.ws.client.CreditCheckService;
import nl.ordina.ws.client.CreditCheckService_Impl;
import weblogic.security.SSL.TrustManager;
import weblogic.wsee.security.bst.ClientBSTCredentialProvider;
import weblogic.wsee.security.bst.StubPropertyBSTCredProv;
import weblogic.wsee.security.unt.ClientUNTCredentialProvider;
import weblogic.wsee.security.util.CertUtils;
import weblogic.xml.crypto.wss.WSSecurityContext;
import weblogic.xml.crypto.wss.provider.CredentialProvider;
public class TestWS {
public static void main(String[] args) {
try {
String username = "weblogic";
String password = "weblogic";
String clientKeyStore = "d:/wsclient.jks";
String clientKeyStorePass = "welcome";
String clientKeyAlias = "wsclient";
String clientKeyPass = "welcome";
String serverCertFile = "d:/weblogic.crt";
String wsdl = "http://localhost:7101/ws-ws_security-context-root/CreditCheckPort?wsdl";
CreditCheckService service = new CreditCheckService_Impl(wsdl);
CreditCheck port = service.getCreditCheckPort();
List credProviders = new ArrayList();
X509Certificate serverCert = (X509Certificate) CertUtils.getCertificate(serverCertFile);
CredentialProvider cp = new ClientUNTCredentialProvider(username, password);
credProviders.add(cp);
cp = new ClientBSTCredentialProvider(clientKeyStore,
clientKeyStorePass,
clientKeyAlias,
clientKeyPass,
"JKS",
serverCert);
credProviders.add(cp);
Stub stub = (Stub) port;
stub._setProperty(WSSecurityContext.CREDENTIAL_PROVIDER_LIST, credProviders);
stub._setProperty(StubPropertyBSTCredProv.SERVER_ENCRYPT_CERT,CertUtils.getCertificate(serverCertFile));
stub._setProperty(WSSecurityContext.TRUST_MANAGER,
new TrustManager(){
public boolean certificateCallback(X509Certificate[] chain, int validateErr){
return true;
CreditObject credit = port.checkOrder(10,10,1100);
System.out.println(credit.getReason());
// Add your own code here
} catch (Exception ex) {
ex.printStackTrace();
Here the certificates I generated and also added to wls
key
D:\oracle\Middleware\jdk160_05\bin\keytool -genkey -dname "CN=WSCLIENT, OU=ICT, O=Ordina, L=Nieuwegein, S=Utrecht, C=NL" -alias wsclient -keystore d:\wsclient.jks -storepass welcome -keypass welcome -keysize 1024
request
D:\oracle\Middleware\jdk160_05\bin\keytool -certreq -alias wsclient -dname "CN=WSCLIENT, OU=ICT, O=Ordina, L=Nieuwegein, S=Utrecht, C=NL" -file d:\wsclient.csr -keystore d:\wsclient.jks -storepass welcome -keypass welcome -keysize 1024
sign request
d:\tools\openssl\bin\openssl x509 -CA d:/projecten/certs/cacert.pem -CAkey d:/projecten/certs/cakey.pem -CAserial d:/projecten/certs/serial.txt -req -in d:\wsclient.csr -out d:\wsclient.crt -days 365
import CA
D:\oracle\Middleware\jdk160_05\bin\keytool -import -file d:/projecten/certs/cacert.pem -alias ca -keystore d:\wsclient.jks -storepass welcome -keypass welcome
import WSCLIENT
D:\oracle\Middleware\jdk160_05\bin\keytool -import -file d:\wsclient.crt -alias wsclient -keystore d:\wsclient.jks -storepass welcome -keypass welcome
import ca in wls
D:\oracle\Middleware\jdk160_05\bin\keytool -import -file d:/projecten/certs/cacert.pem -alias ca -keystore D:\oracle\Middleware\wlserver_10.3\server\lib\DemoTrust.jks -storepass DemoTrustKeyStorePassPhrase
D:\oracle\Middleware\jdk160_05\bin\keytool -import -file d:\wsclient.crt -alias wsclient -keystore D:\oracle\Middleware\wlserver_10.3\server\lib\DemoTrust.jks -storepass DemoTrustKeyStorePassPhrase
D:\oracle\Middleware\jdk160_05\bin\keytool -import -file d:\demoidentity.cer -alias demoidentity -keystore d:\wsclient.jks -storepass welcomeHi,
You need to use two NICs for Reverse Proxy, one for Internet interface and one for internal interface. If you use only one NIC for Reverse Proxy, you may meet unknown issues.
Please check if you change the time-out time. Setting the time-out value to a value greater than 180 prevents the Lync Web App from experiencing disconnecting and reconnecting unexpectedly
Please double check the settings of Reverse Proxy with the help of the link below:
http://blogs.technet.com/b/nexthop/archive/2013/02/19/using-iis-arr-as-a-reverse-proxy-for-lync-server-2013.aspx
Also, the media workflow for mobile client need the support of Edge Server, so you also need to deploy the Edge Server in DMZ zone for Media function such as A/V call.
Best Regards,
Eason Huang
Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact [email protected]
Eason Huang
TechNet Community Support -
X86 via patchsvr, "Failed to validate the digital signature(s)"
Been running very well for a while, now I'm getting these errors after an smpatch update/
bash-3.00# smpatch update
com.sun.patchpro.util.Percentage@96b5c2
119146-05 has been validated.
com.sun.patchpro.util.Percentage@5db5ae
119253-05 has been validated.
com.sun.patchpro.util.Percentage@42f352
119316-03 has been validated.
com.sun.patchpro.util.Percentage@1df2964
119251-03 has been validated.
com.sun.patchpro.util.Percentage@1ab600f
119255-06 has been validated.
com.sun.patchpro.util.Percentage@2fb002
120475-02 has been validated.
com.sun.patchpro.util.Percentage@cc7439
118924-02 has been validated.
com.sun.patchpro.util.Percentage@e2892b
118727-03 has been validated.
com.sun.patchpro.util.Percentage@9b688e
120236-01 has been validated.
com.sun.patchpro.util.Percentage@ed5d9d
120544-01 has been validated.
com.sun.patchpro.util.Percentage@1682a53
com.sun.patchpro.util.Percentage@7a9224
118891-01 has been validated.
com.sun.patchpro.util.Percentage@110b640
119686-03 has been validated.
com.sun.patchpro.util.Percentage@2d59a3
119076-06 has been validated.
com.sun.patchpro.util.Percentage@158015a
120010-01 has been validated.
com.sun.patchpro.util.Percentage@c0c8b5
119716-03 has been validated.
com.sun.patchpro.util.Percentage@b914b3
119108-06 has been validated.
com.sun.patchpro.util.Percentage@13fba1
120777-03 has been validated.
com.sun.patchpro.util.Percentage@1ed27e4
118345-04 has been validated.
com.sun.patchpro.util.Percentage@d61aef
118372-04 has been validated.
com.sun.patchpro.util.Percentage@82674b
119997-01 has been validated.
com.sun.patchpro.util.Percentage@14b84c7
119995-01 has been validated.
com.sun.patchpro.util.Percentage@fa5ff3
120037-01 has been validated.
com.sun.patchpro.util.Percentage@1b17d49
120035-01 has been validated.
com.sun.patchpro.util.Percentage@19855ed
119991-01 has been validated.
com.sun.patchpro.util.Percentage@31688f
120252-02 has been validated.
com.sun.patchpro.util.Percentage@1c794cc
120738-01 has been validated.
com.sun.patchpro.util.Percentage@1f9e31e
119987-01 has been validated.
com.sun.patchpro.util.Percentage@adf5be
119375-05 has been validated.
com.sun.patchpro.util.Percentage@e0c7c3
120665-01 has been validated.
com.sun.patchpro.util.Percentage@15b123b
118873-02 has been validated.
com.sun.patchpro.util.Percentage@9fdee
120051-01 has been validated.
com.sun.patchpro.util.Percentage@1fe4169
118851-02 has been validated.
com.sun.patchpro.util.Percentage@178920a
118863-01 has been validated.
com.sun.patchpro.util.Percentage@bbfa5c
120049-01 has been validated.
com.sun.patchpro.util.Percentage@131de9b
120347-01 has been validated.
com.sun.patchpro.util.Percentage@10d95cd
120720-01 has been validated.
com.sun.patchpro.util.Percentage@e5f46e
com.sun.patchpro.util.Percentage@1128f5a
118885-01 has been validated.
com.sun.patchpro.util.Percentage@1818f80
120470-02 has been validated.
com.sun.patchpro.util.Percentage@f42160
120468-02 has been validated.
com.sun.patchpro.util.Percentage@1bb326c
120047-01 has been validated.
com.sun.patchpro.util.Percentage@eb7331
120628-01 has been validated.
com.sun.patchpro.util.Percentage@1d7b222
119585-01 has been validated.
com.sun.patchpro.util.Percentage@1efe475
com.sun.patchpro.util.Percentage@7ff5b6
118847-01 has been validated.
com.sun.patchpro.util.Percentage@dc9065
com.sun.patchpro.util.Percentage@8beff2
com.sun.patchpro.util.Percentage@1362a63
119118-05 cannot be validated.
com.sun.patchpro.util.Percentage@c67a88
119417-01 cannot be validated.
com.sun.patchpro.util.Percentage@96ad7c
120455-01 cannot be validated.
com.sun.patchpro.util.Percentage@57ae58
120283-01 has been validated.
com.sun.patchpro.util.Percentage@775121
119373-02 has been validated.
com.sun.patchpro.util.Percentage@1f8acdc
120459-01 has been validated.
com.sun.patchpro.util.Percentage@11cc367
119543-05 has been validated.
com.sun.patchpro.util.Percentage@160c4b0
119411-02 has been validated.
com.sun.patchpro.util.Percentage@114025
119413-06 has been validated.
com.sun.patchpro.util.Percentage@8a52b6
120457-01 has been validated.
com.sun.patchpro.util.Percentage@13c550f
119549-02 has been validated.
com.sun.patchpro.util.Percentage@1f488f1
120297-01 has been validated.
com.sun.patchpro.util.Percentage@14a9387
120136-01 has been validated.
com.sun.patchpro.util.Percentage@11b86c7
com.sun.patchpro.util.Percentage@2da5a6
Unexpected Failure: java.lang.Throwable: ERROR: Failed to validate the digital signature(s).
bash-3.00#
And there it dies. here's the client's version information
bash-3.00# pkginfo -l SUNWppror
PKGINST: SUNWppror
NAME: PatchPro core functionality (Root)
CATEGORY: system
ARCH: i386
VERSION: 5.0,REV=2005.01.09.21.19
BASEDIR: /
VENDOR: Sun Microsystems, Inc.
DESC: PatchPro core functionality (Root)
PSTAMP: pm8-20020050222115150
INSTDATE: Jun 20 2005 12:41
HOTLINE: Please contact your local service provider
STATUS: completely installed
FILES: 15 installed pathnames
8 shared pathnames
3 linked files
9 directories
1 executables
5 blocks used (approx)
bash-3.00# pkginfo -l SUNWpprou
PKGINST: SUNWpprou
NAME: PatchPro core functionality (Usr)
CATEGORY: system
ARCH: i386
VERSION: 5.0,REV=2005.01.09.21.19
BASEDIR: /
VENDOR: Sun Microsystems, Inc.
DESC: PatchPro core functionality (Usr)
PSTAMP: pm8-20020050222115151
INSTDATE: Jun 20 2005 12:41
HOTLINE: Please contact your local service provider
STATUS: completely installed
FILES: 25 installed pathnames
7 shared pathnames
10 directories
5 executables
bash-3.00# uname -a
SunOS dns01 5.10 Generic_118844-01 i86pc i386 i86pc
bash-3.00#
Help?
Thanks,
Doug
1630 blocks used (approx)Unfortunatly the update server is having some very strange hicups every now and then. I've been able to reproduce this once on a sparc box. What I did was basicly running 'smpatch analyze' for a second time, followed by the regular 'update' command after which things worked out for me.
Some strange things also occur when you sometimes run the 'analyze' command, and then run it again. Sometimes you'll be presented with 2 different lists of available updates. -
Hi,
I am working with OSB 10.3 and WSE 3.0
I have problem with message level security when I sign message with WSE 3.0 and send it to the OSB
I have proxy service that gets object Message {Header and Body}
the problem occurs when Body element have member class "XmlElement Any" with [XmlAnyElementAttribute] as member class
i,e my soap.body looks like
<soap:body>
<header>
<bla>...</bla>
</header>
<body>
<here comes any element that i want to insert , every time different tag name \>
</body>
</soap:body>
if body looks like this i get WSSecurityException : Signature failed to validate
and reference soap:body element (addressing and timestamp are validated)
if I remove XmlAnyElement and insert some string or whatever everything is fine.
I am stuck on it for 2 days now. Google don't help me :(
Thank you in advanceRaise a case with support and follow up there. Seeing your message structure, it seems there MAY be an issue at client side while generating signature.
Regards,
Anuj -
PatchPro download failure | Failed to validate the digital signature
Hi,
Patchpro failing to validate some patches on 2 of our servers. One is throwing an error (1, below), the other is echoing an error to screen(2).
We are patching around a dozen servers (all SPARC, versions 8, 9 and 10) and these are the only 2 with problems.
Thanks for any help you can provide.
1)
Sol 9, SunFire 440
Error: PatchPro failed: ERROR: Failed to validate the digital signature(s).
/var/tmp/patches/124215-01.jar.tmp cannot be validated.
2)
Sol 8, SunFire 890
117557-04 cannot be validated.
com.sun.patchpro.model.PatchProRuntimeException: Unexpected throwable
at com.sun.patchpro.cli.PatchServices.waitForThread(PatchServices.java:1284)
at com.sun.patchpro.cli.PatchServices.downloadAllPatches(PatchServices.java:835)
at com.sun.patchpro.cli.PatchServices.main(PatchServices.java:502)
Caused by:
java.lang.Throwable: ERROR: Failed to validate the digital signature(s).
at com.sun.patchpro.model.PatchProModel$InnerDownloadPatchThread.downloadPatchFailed(PatchProModel.java:2855)
at com.sun.patchpro.server.GroupPatchDownloader.dispatchFailedEvent(GroupPatchDownloader.java:384)
at com.sun.patchpro.server.GroupPatchDownloader.downloadPatchFailed(GroupPatchDownloader.java:335)
at com.sun.patchpro.server.ServerPatchServiceProvider.dispatchFailedEvent(ServerPatchServiceProvider.java:2577)
at com.sun.patchpro.server.ServerPatchServiceProvider.validatePatchBundle(ServerPatchServiceProvider.java:2196)
at com.sun.patchpro.server.ServerPatchServiceProvider.requestDownload(ServerPatchServiceProvider.java:1780)
at com.sun.patchpro.server.ServerPatchServiceProvider.performDownloadPatches(ServerPatchServiceProvider.java:1082)
at com.sun.patchpro.server.ServerPatchServiceProvider.downloadPatches(ServerPatchServiceProvider.java:860)
at com.sun.patchpro.server.PatchServerProxy.downloadPatches(PatchServerProxy.java:142)
at com.sun.patchpro.server.GroupPatchDownloader.downloadPatches(GroupPatchDownloader.java:124)
at com.sun.patchpro.model.PatchProModel.performPatchDownload(PatchProModel.java:1932)
at com.sun.patchpro.model.PatchProStateMachine$10.run(PatchProStateMachine.java:526)
at com.sun.patchpro.util.State.run(State.java:266)
at java.lang.Thread.run(Thread.java:536)
#Not Working - Solaris9
===========
uname -a
=========
SunOS 05alpha 5.9 Generic_118558-28 sun4u sparc SUNW,Sun-Fire-V440
smpatch get
===========
# smpatch get
Unknown subcommand was specified.
Usage:
smpatch add -i <patchid> [-i <patchid> ...] |
-x idlist=<patchlist_file> [-d <patchdir>] [-h] where:
add Subcommand used to install the patches.
-d <patchdir>
Used to specify the directory where patches are
expected to be installed from.
-h Used to display help information for the add
subcommand.
-i <patchid>
Used to specify the id of the patch to install.
One or more patches can be specified using this
option.
-x idlist=<patchlist_file>
Used to specify the path of the file that contains
a list of patches to install.
Usage:
smpatch analyze [-h] where:
analyze Subcommand used to analyze a host and list needed
patches.
-h Used to display help information for the analyze
subcommand.
Usage:
smpatch download [-i <patchid> [-i <patchid> ...] |
-x idlist=<patchlist_file>] [-d <patchdir>] [-h] where:
download Subcommand used to download patches from SunSolve.
-d <patchdir>
Used to specify the directory where the patches
from SunSolve are to be downloaded.
-h Used to display help information for the download
subcommand.
-i <patchid>
Used to specify the id of the patch to download.
One or more patches can be specified using this
option.
-x idlist=<patchlist_file>
Used to specify the path of the file that contains
a list of patches to download.
Usage:
smpatch remove -i <patchid> [-h] where:
remove Subcommand used to remove a patch.
-h Used to display help information for the remove
subcommand.
-i <patchid>
Used to specify the id of the patch to remove.
Usage:
smpatch update [-d <patchdir>] [-h] where:
update Subcommand used to download and install required
patches for the local host.
-d <patchdir>
Used to specify the directory where the patches
from SunSolve which are required by the local host
are to be downloaded and installed from.
-h Used to display help information for the update
subcommand.
smpatch analyze
==============
smpatch analyze
Assessing required patches for machine "05alpha/150.3.84.207" . Please wait...
113434-33 SunOS 5.9: /usr/snadm/lib Library and Differential Flash Patch
111711-16 32-bit Shared library patch for C++
111712-16 64-Bit Shared library patch for C++
111722-05 SunOS 5.9: Math Library (libm) patch
117560-04 SunOS 5.9: Microtasking libraries (libmtsk) patch
115835-03 SunOS 5.9: Ghostscript patch
114344-21 SunOS 5.9: kernel/drv/arp Patch
117453-01 SunOS 5.9: libwrap Patch
114131-03 SunOS 5.9: multi-terabyte disk support - libadm.so.1 patch
120441-03 SunOS 5.9: libsec patch
113319-24 SunOS 5.9: libnsl nispasswdd patch
112960-40 SunOS 5.9: patch libsldap ldap_cachemgr libldap
118465-03 SunOS 5.9: rcm_daemon Patch
123762-01 SunOS 5.9: Chicago audio driver Patch
113318-26 SunOS 5.9: patch /kernel/fs/nfs and /kernel/fs/sparcv9/nfs
114718-05 SunOS 5.9: usr/kernel/fs/pcfs Patch
115544-02 SunOS 5.9: nss_compat patch
118463-01 SunOS 5.9: du Patch
116016-03 SunOS 5.9: /usr/sbin/logadm patch
123182-01 SunOS 5.9: iwscn patch
115542-02 SunOS 5.9: nss_user patch
116014-06 SunOS 5.9: /usr/sbin/usermod patch
117433-02 SunOS 5.9: FSS FX RT Patch
117431-01 SunOS 5.9: nss_nis Patch
123770-01 SunOS 5.9: Netra-CP3010 platform libraries patch
118558-35 SunOS 5.9: Kernel Patch
116561-15 SunOS 5.9: Volume System H/W Series platmod patch
123769-01 SunOS 5.9: Netra-CP3010 platform binaries patch
115336-04 SunOS 5.9: /usr/bin/tar, /usr/sbin/static/tar Patch
123767-01 SunOS 5.9: locator patch
117426-03 SunOS 5.9: ctsmc and sc_nct driver patch
123766-02 SunOS 5.9: pcf8584/pmugpio/ebus patch
121319-01 SunOS 5.9: devfsadmd_mod.so Patch
123765-01 SunOS 5.9: Chicago platform Patch
123764-01 SunOS 5.9: Boston platform Patch
123763-02 SunOS 5.9: Sun Fire V215/V245 platform Patch
121316-02 SunOS 5.9: kernel/sys/doorfs Patch
121314-01 SunOS 5.9: tl driver patch
120445-01 SunOS 5.9: Toshiba platform token links (TSBW,Ultra-3i)
112964-16 SunOS 5.9: /usr/bin/ksh Patch
113032-04 SunOS 5.9: /usr/sbin/init Patch
114259-02 SunOS 5.9: usr/sbin/psrinfo Patch
116543-04 SunOS 5.9: vmstat Patch
112958-04 SunOS 5.9: patch pci.so
112954-15 SunOS 5.9: uata Driver Patch
122716-01 SunOS 5.9: kernel/fs/lofs patch
122713-01 SunOS 5.9: expr patch
117168-02 SunOS 5.9: mpstat Patch
116498-02 SunOS 5.9: bufmod Patch
116495-03 SunOS 5.9: specfs Patch
117160-01 SunOS 5.9: /kernel/misc/krtld patch
118586-02 SunOS 5.9: cp/ln/mv & XPG4 cp/ln/mv Patch
120025-01 SunOS 5.9: ipsecconf Patch
117155-10 SunOS 5.9: pcipsy Patch
116486-03 SunOS 5.9: tsalarm Driver Patch
121998-01 SunOS 5.9: two-key mode fix for 3DES Patch
116482-02 SunOS 5.9: modload Utils Patch
117746-04 SunOS 5.9: patch platform/sun4u/kernel/drv/sparcv9/pic16f819
121992-01 SunOS 5.9: fgrep Patch
120768-01 SunOS 5.9: grpck patch
119438-01 SunOS 5.9: usr/bin/login Patch
116510-02 SunOS 5.9: wscons Patch
114224-06 SunOS 5.9: csh Patch
116670-04 SunOS 5.9: gld Patch
114383-04 SunOS 5.9: Enchilada/Stiletto - pca9556 driver
114370-05 SunOS 5.9: libumem.so.1 patch
124498-01 SunOS 5.9: tail patch
117483-01 SunOS 5.9: ntwdt Patch
112908-27 SunOS 5.9: gl_kmech_krb5 Patch
117480-01 SunOS 5.9: pkgadd Patch
117123-07 SunOS 5.9: wanboot Patch
115030-03 SunOS 5.9: Multiterabyte UFS - patch mount
113335-04 SunOS 5.9: devinfo Patch
113493-03 SunOS 5.9: libproc.so.1 Patch
113330-03 SunOS 5.9: rpcbind Patch
115028-02 SunOS 5.9: patch /usr/lib/fs/ufs/df
117471-03 SunOS 5.9: fifofs Patch
118897-01 SunOS 5.9: stc Patch
115022-03 SunOS 5.9: quota utilities
113720-02 SunOS 5.9: rootnex Patch
113329-18 SunOS 5.9: lp Patch
123056-01 SunOS 5.9: ldterm patch
114349-04 SunOS 5.9: sbin/dhcpagent Patch
113278-15 SunOS 5.9: NFS Daemon Patch
113471-09 SunOS 5.9: truss Patch
113277-48 SunOS 5.9: sd and ssd Patch
117457-01 SunOS 5.9: elfexec Patch
113077-18 SunOS 5.9: /platform/sun4u/kernal/drv/su Patch
113072-08 SunOS 5.9: patch /usr/sbin/format
112839-08 SunOS 5.9: patch libthread.so.1
114331-02 SunOS 5.9: power Patch
112998-04 SunOS 5.9: patch /usr/sbin/syslogd
114133-03 SunOS 5.9: mail Patch
119937-02 SunOS 5.9: inetboot patch
115553-23 SunOS 5.9: USB drivers patch
117443-01 SunOS 5.9: libkvm Patch
114329-02 SunOS 5.9: /usr/bin/pax Patch
114128-03 SunOS 5.9: sd_lun patch
119929-01 SunOS 5.9: /usr/bin/xargs patch
113459-05 SunOS 5.9: udp patch
116009-05 SunOS 5.9: sgcn & sgsbbc patch
123761-04 SunOS 5.9: PCIE/Fire drivers Patch
123760-01 SunOS 5.9: platform driver Patch
116557-04 SunOS 5.9: sbd Patch
120241-04 SunOS 5.9: bge patch
116530-02 SunOS 5.9: bge.conf Patch
116488-03 SunOS 5.9: Lights Out Management (lom) patch
117131-01 SunOS 5.9: adm1031 Patch
117124-12 SunOS 5.9: platmod, drmach, dr, ngdr, & gptwocfg Patch
118539-02 SunOS 5.9: schpc Patch
118472-01 SunOS 5.9: pargs Patch
122002-01 SunOS 5.9: kstat patch
122709-01 SunOS 5.9: /usr/bin/dc patch
117067-04 SunOS 5.9: awk nawk oawk Patch
115259-03 SunOS 5.9: patch usr/lib/acct/acctcms
112959-03 SunOS 5.9: patch libfru
112913-02 SunOS 5.9: fruadm Patch
113027-06 SunOS 5.9: libfrureg.so.1 Patch
114564-09 SunOS 5.9: /usr/sbin/in.ftpd Patch
117441-01 SunOS 5.9: FSSdispadmin Patch
118191-01 gtar patch
114818-06 GNOME 2.0.0: libpng Patch
117177-02 SunOS 5.9: lib/gss module Patch
116340-05 SunOS 5.9: gzip and Freeware info files patch
113579-09 SunOS 5.9: ypserv/ypxfrd Patch
122673-01 SunOS 5.9: sockio.h header patch
116474-03 SunOS 5.9: libsmedia Patch
116669-20 SunOS 5.9: md Patch
112965-06 SunOS 5.9: patch /kernel/drv/sparcv9/eri
112838-12 SunOS 5.9: pcicfg Patch
117127-02 SunOS 5.9: header Patch
123768-02 SunOS 5.9: byteorder.h and ddi_impldefs.h patch
121321-03 SunOS 5.9: ldap Patch
116231-03 SunOS 5.9: llc2 Patch
122976-01 SunOS 5.9: /usr/lib/mdb/kvm/ipc.so Patch
117179-01 SunOS 5.9: nfs_dlboot Patch
121194-01 SunOS 5.9: usr/lib/nfs/statd Patch
116502-03 SunOS 5.9: mountd Patch
113320-06 SunOS 5.9: patch se driver
114731-09 SunOS 5.9: kernel/drv/glm Patch
114716-02 SunOS 5.9: usr/bin/rcp Patch
112915-04 SunOS 5.9: snoop Patch
116778-01 SunOS 5.9: in.ripngd patch
119447-01 SunOS 5.9: ses Patch
114356-08 SunOS 5.9: /usr/bin/ssh Patch
113273-11 SunOS 5.9: /usr/lib/ssh/sshd Patch
113575-08 SunOS 5.9: sendmail Patch
116780-02 SunOS 5.9: scmi2c Patch
112972-17 SunOS 5.9: patch /usr/lib/libssagent.so.1 /usr/lib/libssasnmp.so.1 mibiisa
122485-01 SunOS 5.9: 1394 mass storage driver patch
113716-02 SunOS 5.9: sar & sadc Patch
117473-01 SunOS 5.9: fwtmp Patch
116472-02 SunOS 5.9: rmformat Patch
120443-01 SunOS 5.9: sed core dumps on long lines
121588-01 SunOS 5.9: /usr/xpg4/bin/awk Patch
123058-01 SunOS 5.9: /usr/xpg4/bin/more Patch
123184-02 SunOS 5.9: Bug fixes for Arabic fonts
113584-17 SunOS 5.9: yesstr, nostr nl_langinfo() strings incorrect in S9
117100-04 SunOS 5.9: New Euro UTF-8 locales needed
114600-06 SunOS 5.9: vlan driver patch
112817-29 SunOS 5.9: Sun GigaSwift Ethernet 1.0 driver patch
113042-16 SunOS 5.9: qlc driver patch
113041-13 SunOS 5.9: fcip driver patch
113039-17 SunOS 5.9: Sun StorEdge Traffic Manager patch
113040-21 SunOS 5.9: fctl/fp/fcp driver patch
117595-05 SunOS 5.9: Manual Page updates for Solaris 9
112622-19 SunOS 5.9: M64 Graphics Patch
116126-05 Fixes to general release PatchPro 2.2
119480-10 SUNWppro SUNWsy1cf SUNWsdb Bug fixes and updated keystore file with new patch signing certificate.
117985-03 SunOS 5.9: XIL 1.4.2 Loadable Pipeline Libraries
114538-38 SunOS 5.9: Sun XVR-100 Graphics Accelerator Patch
112661-11 SunOS 5.9: IIIM and X Input & Output Method patch
114677-12 SunOS 5.9: International Components for Unicode Patch
116039-02 SunOS 5.9: sun4u platform links patch
112804-02 CDE 1.5: sdtname patch
113244-09 CDE 1.5: dtwm patch
114312-02 CDE1.5: GNOME/CDE Menu for Solaris 9
119976-01 CDE 1.5: dtterm patch
112771-33 Motif 1.2.7 and 2.1.1: Runtime library patch for Solaris 9
117728-01 CDE1.5: dthello patch
124215-01 CDE 1.5: dtterm patch
112785-56 X11 6.6.1: Xsun patch
112807-18 CDE 1.5: dtlogin patch
118759-01 X11 6.6.1: Font Administration Tools patch
117577-03 X11 6.6.1: TrueType fonts patch
117663-02 X11 6.6.1: xwd patch
113764-05 X11 6.6.1: keyboard patch
/etc/release
==========
# cat /etc/release
Solaris 9 9/04 s9s_u7wos_09 SPARC
Copyright 2004 Sun Microsystems, Inc. All Rights Reserved.
Use is subject to license terms.
Assembled 29 June 2004
CLUSTER
=========
# cat /var/sadm/system/admin/CLUSTER
CLUSTER=SUNWCuser
pkginfo
=======
# pkginfo -l SUNWpmgr SUNWppror SUNWpprou
PKGINST: SUNWpmgr
NAME: Solaris Patch Manager Base 1.0.1 1.0.1
CATEGORY: system
ARCH: all
VERSION: 1.0.1
BASEDIR: /
VENDOR: Sun Microsystems, Inc.
DESC: Patch Manager CLI for Solaris 2.6, 2.7 and 2.8
PSTAMP: ute15320031103164007
INSTDATE: May 16 2006 14:51
HOTLINE: Please contact your local service provider
STATUS: completely installed
FILES: 4 installed pathnames
3 shared pathnames
3 directories
1 executables
9 blocks used (approx)
ERROR: information for "SUNWppror" was not found
ERROR: information for "SUNWpprou" was not found -
Smpatch PatchPro failed: ERROR: Failed to validate the digital signature
Hello,
I 'm trying to update solaris 9 (5.9 Generic_118558-03 sun4u sparc) using smpatch.
I get the following error from all - to be installed - patches!!
Downloading the required patches for machine "xxx". Please wait...
Error: PatchPro failed: ERROR: Failed to validate the digital signature(s).
/var/sadm/spool/112941-10.jar.tmp cannot be validated.
I have read that you need to install patchid 112945-44 so i have installed it with no solution.
I have cleared the /var/tmp/patches/ directory:
# rm /var/tmp/patches/*.jar.tmp
# rm /var/sadm/spool/*.jar
I would be grateful if you reply me with any help.
Thanks,I thought this solution:
To download signed patch 112945-45 and:
# mv 112945-45.jar /var/sadm/spool/
# smpatch add -i 112945-45
On machine ""xxx"...
Installing patch 112945-45 ...
Error: PatchPro failed: Received a Manipulable event.
Error: PatchPro failed: Received a Manipulable event.
Error: PatchPro failed: ALERT: Failed to install a patch. 112945-45
/var/sadm/spool/patchpro_dnld_2007.06.14@12:22:38:EEST.txt has been moved to /var/sadm/spool/patchproSequester/patchpro_dnld_2007.06.14@12:22:38:EEST.txt
Problem Summary:
Inside /var/log/messages :
Jun 14 12:44:05 polymnia root: [ID 702911 user.error] Thu Jun 14 12:44:05 EEST 2007(ERROR) => Thread[Thread-18,5,main] <=Problem installing patches: Received a Manipulable event.
Jun 14 12:44:05 polymnia root: [ID 702911 user.alert] Thu Jun 14 12:44:05 EEST 2007(ALERT) => com.sun.patchpro.manipulators.SunOSSunPatchInstaller@73a5d3 <=112945-45 validation failed.
Jun 14 12:44:05 polymnia root: [ID 702911 user.crit] Thu Jun 14 12:44:05 EEST 2007(CRITICAL) => com.sun.patchpro.manipulators.SunOSSunPatchInstaller@73a5d3 <=com.sun.patchpro.security.SignatureValidationException: ERROR: Failed to validate the digital signature(s) for:
Jun 14 12:44:05 polymnia at com.sun.patchpro.manipulators.Installer.extractPatch(Installer.java:314)
Jun 14 12:44:05 polymnia at com.sun.patchpro.manipulators.SunOSSunPatchInstaller.install(SunOSSunPatchInstaller.java:46)
Jun 14 12:44:05 polymnia at com.sun.patchpro.manipulators.Installer.run(Installer.java:134)
Jun 14 12:44:05 polymnia at java.lang.Thread.run(Thread.java:536)
Jun 14 12:44:06 polymnia root: [ID 702911 user.error] Thu Jun 14 12:44:05 EEST 2007(ERROR) => Thread[Thread-18,5,main] <=Problem installing patches: Received a Manipulable event.
Jun 14 12:44:06 polymnia root: [ID 702911 user.alert] Thu Jun 14 12:44:06 EEST 2007(ALERT) => com.sun.patchpro.util.PatchBundleInstaller@9360e7 <=Failed to install a patch. 112945-45
Jun 14 12:44:06 polymnia patchadd utility failed. Reason code :0
Jun 14 12:44:06 polymnia root: [ID 702911 user.error] Thu Jun 14 12:44:06 EEST 2007(ERROR) => Thread[Thread-18,5,main] <=Problem installing patches: ALERT: Failed to install a patch. 112945-45
Also i have just seen that messages complains for the digital cert when i am tryring to download the patch using smpach
Jun 14 12:49:20 polymnia root: [ID 702911 user.error] Thu Jun 14 12:49:20 EEST 2007(ERROR) => com.sun.patchpro.server.ServerPatchServiceProvider@92425a <=com.sun.patchpro.security.NotSignedByKnownCertificateException: 112945-45/prepatch CN=Enterprise Services Patch Management, O=Sun Microsystems Inc
Jun 14 12:49:20 polymnia at com.sun.patchpro.security.SignatureValidationUtil.validateJarFile(SignatureValidationUtil.java:232)
Jun 14 12:49:20 polymnia at com.sun.patchpro.server.ServerPatchServiceProvider.validatePatchBundle(ServerPatchServiceProvider.java:1837)
Jun 14 12:49:20 polymnia at com.sun.patchpro.server.ServerPatchServiceProvider.requestDownload(ServerPatchServiceProvider.java:1437)
Jun 14 12:49:20 polymnia at com.sun.patchpro.server.ServerPatchServiceProvider.performDownloadPatches(ServerPatchServiceProvider.java:739)
Jun 14 12:49:20 polymnia at com.sun.patchpro.server.ServerPatchServiceProvider.downloadPatches(ServerPatchServiceProvider.java:585)
Jun 14 12:49:20 polymnia at com.sun.patchpro.server.PatchServerProxy.downloadPatches(PatchServerProxy.java:130)
Jun 14 12:49:20 polymnia at com.sun.patchpro.server.GroupPatchDownloader.downloadPatches(GroupPatchDownload
Jun 14 12:49:20 polymnia root: [ID 702911 user.error] Thu Jun 14 12:49:20 EEST 2007(ERROR) => com.sun.patchpro.server.ServerPatchServiceProvider@92425a <=Failed to validate the digital signature(s). for: /var/sadm/spool/112945-45.jar.tmp: 112945-45/prepatch CN=Enterprise Services Patch Management, O=Sun Microsystems Inc
Jun 14 12:49:20 polymnia root: [ID 702911 user.error] Thu Jun 14 12:49:20 EEST 2007(ERROR) => Thread[Thread-18,5,main] <=Error: downloading patches.ERROR: Failed to validate the digital signature(s).
The following patches were not downloaded. Contact your Sun Microsystems support provider for more information.
112945-45
Message was edited by:
sapila -
119116-20 - ERROR: Failed to validate the digital signature(s).
Hi I am getting such errors when I use smpatch:
bash-3.00# smpatch download -i 119116-20
com.sun.patchpro.util.Percentage@1c4ff2c
119116-20 cannot be validated.
Unexpected Failure: java.lang.Throwable: ERROR: Failed to validate the digital signature(s).
Can you please help me fix this?
Thanks,
MayureshI'm getting the same problem ; smpatch fails to validate signed patches.
I followed the instructions at:
http://forum.sun.com/jive/thread.jspa?threadID=108470&messageID=369154
However, 112945-43 is obsoleted by 112945-44, which I installed instead. I also installed this certificate, as the instructions indicate:
http://www.sun.com/pki/certs/ca/Object_Signing_CA-cert.der
Using pkgadm addcert -t -f der ./Object_Signing_CA-cert.der. I can see that it is installed:
# pkgadm listcert
Keystore Alias: Object Signing CA
Common Name: Object Signing CA
Certificate Type: Trusted Certificate
Issuer Common Name: Sun Microsystems Inc Root CA
Validity Dates: <Jun 2 00:00:00 2005 GMT> - <Jun 1 23:59:59 2015 GMT>
MD5 Fingerprint: A9:C8:BE:5E:79:67:42:A2:31:77:17:B9:0A:80:F8:F1
SHA1 Fingerprint: C7:CA:40:96:E7:DC:D8:59:01:07:76:B1:7A:FF:C0:B4:C3:27:A5:40However, 'smpatch update' still produces:
Error: PatchPro failed: ERROR: Failed to validate the digital signature(s).
/var/sadm/spool/113434-33.jar cannot be validated.I'm guessing that the Object Signing CA on http://www.sun.com/pki/certs/ca/ is not the correct certificate that I need to verify the signed patches. Can anyone point me in the right direction?
Thanks. -
Smpatch download: Failed to validate the digital signature
Hello,
what's the trick to download the patches?
# smpatch download
127732-01 cannot be validated.
123328-01 cannot be validated.
128495-01 has been validated.
125917-02 has been validated.
122537-02 cannot be validated.
121944-03 has been validated.
118667-14 cannot be validated.
Failure: ERROR: Failed to validate the digital signature(s).
# uname -a
SunOS mantis 5.10 Generic_118833-36 sun4v sparc SUNW,Sun-Fire-T1000
# smpatch get
patchpro.backout.directory "" ""
patchpro.baseline.directory - /var/sadm/spool
patchpro.download.directory /var/sadm/spool /var/sadm/spool
patchpro.install.types - rebootafter:reconfigafter:standard
patchpro.patch.source - https://getupdates1.sun.com/
patchpro.patchset current current
patchpro.proxy.host 172.x.x.xxx ""
patchpro.proxy.passwd **** ****
patchpro.proxy.port 8080 8080
patchpro.proxy.user "" ""-- NickI can echo this behavior here....
Also, I can isolate it (right now) to two patches. Looks like other people had more affected. Tomorrow, maybe it affects more for me too, I don't know. Manually downloading the two patches signed jar files, it seems like something is corrupt in the jar file:
# jar tvf 123328-01.jar
76 Mon Jun 05 14:11:28 CDT 2006 123328-01/.diPatch
236 Mon Jun 05 14:11:30 CDT 2006 123328-01/patchinfo
424 Mon Jun 05 16:04:24 CDT 2006 123328-01/SUNWcsu/pkgmap
538 Mon Jun 05 16:04:24 CDT 2006 123328-01/SUNWcsu/pkginfo
4985 Mon Jun 05 14:11:28 CDT 2006 123328-01/SUNWcsu/install/checkinstall
93 Mon Jun 05 14:11:28 CDT 2006 123328-01/SUNWcsu/install/copyright
5768 Mon Jun 05 14:11:28 CDT 2006 123328-01/SUNWcsu/install/i.none
1555 Mon Jun 05 14:11:28 CDT 2006 123328-01/SUNWcsu/install/patch_checkinstall
824 Mon Jun 05 14:11:28 CDT 2006 123328-01/SUNWcsu/install/patch_postinstall
6916 Mon Jun 05 14:11:28 CDT 2006 123328-01/SUNWcsu/install/postinstall
7437 Mon Jun 05 14:11:28 CDT 2006 123328-01/SUNWcsu/install/preinstall
18996 Mon Jun 05 15:59:36 CDT 2006 123328-01/SUNWcsu/reloc/usr/bin/expr
464 Mon Jun 05 16:04:24 CDT 2006 123328-01/SUNWxcu4/pkgmap
533 Mon Jun 05 16:04:24 CDT 2006 123328-01/SUNWxcu4/pkginfo
4985 Mon Jun 05 14:11:28 CDT 2006 123328-01/SUNWxcu4/install/checkinstall
93 Mon Jun 05 14:11:28 CDT 2006 123328-01/SUNWxcu4/install/copyright
5768 Mon Jun 05 14:11:28 CDT 2006 123328-01/SUNWxcu4/install/i.none
1555 Mon Jun 05 14:11:28 CDT 2006 123328-01/SUNWxcu4/install/patch_checkinstall
824 Mon Jun 05 14:11:28 CDT 2006 123328-01/SUNWxcu4/install/patch_postinstall
6703 Mon Jun 05 14:11:28 CDT 2006 123328-01/SUNWxcu4/install/postinstall
7437 Mon Jun 05 14:11:28 CDT 2006 123328-01/SUNWxcu4/install/preinstall
19060 Mon Jun 05 15:59:36 CDT 2006 123328-01/SUNWxcu4/reloc/usr/xpg4/bin/expr
464 Mon Jun 05 16:04:26 CDT 2006 123328-01/SUNWxcu6/pkgmap
533 Mon Jun 05 16:04:26 CDT 2006 123328-01/SUNWxcu6/pkginfo
4985 Mon Jun 05 14:11:30 CDT 2006 123328-01/SUNWxcu6/install/checkinstall
93 Mon Jun 05 14:11:30 CDT 2006 123328-01/SUNWxcu6/install/copyright
5768 Mon Jun 05 14:11:30 CDT 2006 123328-01/SUNWxcu6/install/i.none
1555 Mon Jun 05 14:11:30 CDT 2006 123328-01/SUNWxcu6/install/patch_checkinstall
824 Mon Jun 05 14:11:30 CDT 2006 123328-01/SUNWxcu6/install/patch_postinstall
6703 Mon Jun 05 14:11:30 CDT 2006 123328-01/SUNWxcu6/install/postinstall
7437 Mon Jun 05 14:11:30 CDT 2006 123328-01/SUNWxcu6/install/preinstall
18996 Mon Jun 05 15:59:36 CDT 2006 123328-01/SUNWxcu6/reloc/usr/xpg6/bin/expr
2380 Tue Jun 20 06:52:26 CDT 2006 123328-01/README.123328-01
13272 Mon Sep 26 22:46:30 CDT 2005 123328-01/LEGAL_LICENSE.TXT
5197 Tue Jun 20 07:00:18 CDT 2006 META-INF/manifest.mf
java.util.zip.ZipException: invalid entry size (expected 5305 but got 8321 bytes)
at java.util.zip.ZipInputStream.readEnd(ZipInputStream.java:371)
at java.util.zip.ZipInputStream.read(ZipInputStream.java:148)
at java.util.zip.ZipInputStream.closeEntry(ZipInputStream.java:92)
at sun.tools.jar.Main.list(Main.java:863)
at sun.tools.jar.Main.run(Main.java:212)
at sun.tools.jar.Main.main(Main.java:1022)The two patches I currently have affected are 123328-01.jar and 122537-02.jar -
Failing to Validate SAML Token : while setting WSRP security using SAML
Hi All,
I am trying to configure SAML on WLP 10.2 consumer domain along with WLS 10.2 producer domain ( extended domain to use as WSRP producer ) on single machine. I followed the steps as per the bea edocs - http://edocs.bea.com/wlp/docs92/federation/Chap-Security-SAML.html , which talks about how easy its to configure SAML with WSRP. But i am stuck at this point where the TransportException says the SAML token is not valid , stacktrace below:
Error invoking portlet "Cportlet"
The source of this error is:
*com.bea.wsrp.faults.TransportException: Security token failed to validate. weblogic.xml.crypto.wss.SecurityTokenValidateResult@1e5d6b9[status: false][msg The SAML token is not valid.] at com.bea.wsrp.faults.FaultInstanceFactory.getException(FaultInstanceFactory.java:94) at com.bea.wsrp.proxy.ProxyBase.raiseFault(ProxyBase.java:768) at com.bea.wsrp.proxy.ProxyBase.invoke(ProxyBase.java:478) at $Proxy110.getMarkup(Unknown Source) at com.bea.wsrp.consumer.markup.GetMarkupService.invoke(GetMarkupService.java:44) at com.bea.wsrp.consumer.markup.GetMarkupService.invoke(GetMarkupService.java:27) at com.bea.wsrp.consumer.markup.AbstractMarkupService.invoke(AbstractMarkupService.java:85) at com.bea.wsrp.consumer.markup.AbstractMarkupService.invoke(AbstractMarkupService.java:68) at com.bea.wsrp.consumer.markup.AbstractMarkupService.invoke(AbstractMarkupService.java:61) at com.bea.wsrp.consumer.markup.MarkupServicesFacade.invoke(MarkupServicesFacade.java:44) at com.bea.wsrp.consumer.controls.ProxyPortletContent.invokeGetMarkup(ProxyPortletContent.java:664) at com.bea.wsrp.consumer.controls.ProxyPortletContent.beginRender(ProxyPortletContent.java:316) at com.bea.netuix.servlets.controls.application.laf.ContentControlRenderer.beginRender(ContentControlRenderer.java:48) at com.bea.netuix.nf.ControlLifecycle$7.visit(ControlLifecycle.java:481) at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:518) at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529) at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529) at com.bea.netuix.nf.ControlTreeWalker.walk(ControlTreeWalker.java:220) at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:395) at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:361) at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:352) at com.bea.netuix.nf.Lifecycle.run(Lifecycle.java:326) at com.bea.netuix.nf.UIControl.render(UIControl.java:582) at com.bea.netuix.servlets.controls.PresentationContext.render(PresentationContext.java:486) at com.bea.netuix.servlets.util.RenderToolkit.renderChild(RenderToolkit.java:146) at com.bea.netuix.servlets.jsp.taglib.skeleton.Child.doTag(Child.java:63) at jsp_servlet._framework._skeletons._bighorn.__flowlayout._jspService(__flowlayout.java:192) at weblogic.servlet.jsp.JspBase.service(JspBase.java:34) at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:226) at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:124) at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:283) at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:175) at weblogic.servlet.internal.RequestDispatcherImpl.invokeServlet(RequestDispatcherImpl.java:528) at weblogic.servlet.internal.RequestDispatcherImpl.include(RequestDispatcherImpl.java:454) at com.bea.netuix.servlets.controls.application.laf.JspTools.renderJsp(JspTools.java:130) at com.bea.netuix.servlets.controls.application.laf.JspControlRenderer.beginRender(JspControlRenderer.java:72) at com.bea.netuix.servlets.controls.application.laf.PresentationControlRenderer.beginRender(PresentationControlRenderer.java:65) at com.bea.netuix.nf.ControlLifecycle$7.visit(ControlLifecycle.java:481) at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:518) at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529) at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529) at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529) at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529) at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529) at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529) at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529) at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529) at com.bea.netuix.nf.ControlTreeWalker.walk(ControlTreeWalker.java:220) at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:395) at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:361) at com.bea.netuix.nf.Lifecycle.runOutbound(Lifecycle.java:208) at com.bea.netuix.nf.Lifecycle.run(Lifecycle.java:162) at com.bea.netuix.servlets.manager.UIServlet.runLifecycle(UIServlet.java:388) at com.bea.netuix.servlets.manager.UIServlet.doPost(UIServlet.java:258) at com.bea.netuix.servlets.manager.UIServlet.service(UIServlet.java:199) at com.bea.netuix.servlets.manager.SingleFileServlet.service(SingleFileServlet.java:251) at com.bea.netuix.servlets.manager.PortalServlet.service(PortalServlet.java:686) at javax.servlet.http.HttpServlet.service(HttpServlet.java:820) at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:226) at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:124) at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:283) at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26) at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:42) at com.bea.portal.tools.servlet.http.HttpContextFilter.doFilter(HttpContextFilter.java:60) at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:42) at com.bea.p13n.servlets.PortalServletFilter.doFilter(PortalServletFilter.java:336) at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:42) at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3393) at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321) at weblogic.security.service.SecurityManager.runAs(Unknown Source) at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2140) at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2046) at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1366) at weblogic.work.ExecuteThread.execute(ExecuteThread.java:200) at weblogic.work.ExecuteThread.run(ExecuteThread.java:172)*
Have tried a lot of different things but no luck proceeding further. Configured all the producer domain as per the link mentioned above., reconfigured the consumer again. Also tested by crearting a new keystore, but all this does not help me proceed further.
Any help is greatly appreciated.
Thanks in Advance.
MauryaI am also facing the same kind of issue. see the error message below. Please help me to kill this error.
\com.bea.wsrp.faults.TransportException: Security token failed to validate. weblogic.xml.crypto.wss.SecurityTokenValidateResult@1423066[status: false][msg The SAML token is not valid.]
at com.bea.wsrp.proxy.ProxyBase.raiseFault(ProxyBase.java:578)
at com.bea.wsrp.proxy.ProxyBase.invoke(ProxyBase.java:464)
at $Proxy118.getServiceDescription(Unknown Source)
at com.bea.wsrp.client.ProducerAgentImpl.getServiceDescription(ProducerAgentImpl.java:93)
at com.bea.wsrp.client.ProducerAgentImpl.getServiceDescription(ProducerAgentImpl.java:55)
at com.bea.jsptools.portal.helpers.wsrp.ProducerRegistryControlImpl.getServiceDescription(ProducerRegistryControlImpl.java:205)
at com.bea.jsptools.portal.helpers.wsrp.ProducerRegistryControlBean.getServiceDescription(ProducerRegistryControlBean.java:133)
at com.bea.jsptools.portal.helpers.wsrp.AddProducerHelper.getProducerForWsdl(AddProducerHelper.java:704)
at com.bea.jsptools.portal.helpers.wsrp.AddProducerHelper.access$100(AddProducerHelper.java:61)
at com.bea.jsptools.portal.helpers.wsrp.AddProducerHelper$FindProducers.producerWsdl(AddProducerHelper.java:249)
at com.bea.jsptools.portal.helpers.wsrp.AddProducerHelper$FindProducers.run(AddProducerHelper.java:235)
at portalTools.definitions.portletProducers.wizard.AddProducerWizardController.runAction(AddProducerWizardController.java:566)
at portalTools.definitions.portletProducers.wizard.AddProducerWizardController.doIfValid(AddProducerWizardController.java:542)
at portalTools.definitions.portletProducers.wizard.AddProducerWizardController.selectProducerAction(AddProducerWizardController.java:172)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:585)
at org.apache.beehive.netui.pageflow.FlowController.invokeActionMethod(FlowController.java:878)
at org.apache.beehive.netui.pageflow.FlowController.getActionMethodForward(FlowController.java:808)
at org.apache.beehive.netui.pageflow.FlowController.internalExecute(FlowController.java:477)
at org.apache.beehive.netui.pageflow.PageFlowController.internalExecute(PageFlowController.java:305)
at org.apache.beehive.netui.pageflow.FlowController.execute(FlowController.java:335)
at org.apache.beehive.netui.pageflow.internal.FlowControllerAction.execute(FlowControllerAction.java:51)
at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:419)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.access$201(PageFlowRequestProcessor.java:95)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor$ActionRunner.execute(PageFlowRequestProcessor.java:2042)
at org.apache.beehive.netui.pageflow.interceptor.action.internal.ActionInterceptors.wrapAction(ActionInterceptors.java:90)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.processActionPerform(PageFlowRequestProcessor.java:2114)
at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:224)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.processInternal(PageFlowRequestProcessor.java:554)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.process(PageFlowRequestProcessor.java:851)
at org.apache.beehive.netui.pageflow.AutoRegisterActionServlet.process(AutoRegisterActionServlet.java:630)
at org.apache.beehive.netui.pageflow.PageFlowActionServlet.process(PageFlowActionServlet.java:157)
at org.apache.struts.action.ActionServlet.doGet(ActionServlet.java:414)
at org.apache.beehive.netui.pageflow.PageFlowUtils.strutsLookup(PageFlowUtils.java:1169)
at com.bea.portlet.adapter.scopedcontent.ScopedContentCommonSupport.executeAction(ScopedContentCommonSupport.java:688)
at com.bea.portlet.adapter.scopedcontent.ScopedContentCommonSupport.processActionInternal(ScopedContentCommonSupport.java:144)
at com.bea.portlet.adapter.scopedcontent.PageFlowStubImpl.processAction(PageFlowStubImpl.java:107)
at com.bea.portlet.adapter.NetuiActionHandler.raiseScopedAction(NetuiActionHandler.java:99)
at com.bea.netuix.servlets.controls.content.NetuiContent.raiseScopedAction(NetuiContent.java:180)
at com.bea.netuix.servlets.controls.content.NetuiContent.raiseScopedAction(NetuiContent.java:168)
at com.bea.netuix.servlets.controls.content.NetuiContent.handlePostbackData(NetuiContent.java:222)
at com.bea.netuix.nf.ControlLifecycle$2.visit(ControlLifecycle.java:178)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:351)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:361)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:361)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:361)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:361)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:361)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:361)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:361)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:361)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:361)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:361)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:361)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:361)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:361)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:361)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:361)
at com.bea.netuix.nf.ControlTreeWalker.walk(ControlTreeWalker.java:128)
at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:361)
at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:339)
at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:330)
at com.bea.netuix.nf.Lifecycle.runInbound(Lifecycle.java:162)
at com.bea.netuix.nf.Lifecycle.run(Lifecycle.java:137)
at com.bea.netuix.servlets.manager.UIServlet.runLifecycle(UIServlet.java:370)
at com.bea.netuix.servlets.manager.UIServlet.doPost(UIServlet.java:229)
at com.bea.netuix.servlets.manager.UIServlet.service(UIServlet.java:183)
at com.bea.netuix.servlets.manager.SingleFileServlet.service(SingleFileServlet.java:221)
at com.bea.netuix.servlets.manager.PortalServlet.service(PortalServlet.java:600)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:856)
at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:223)
at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:283)
at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:42)
at com.bea.jsptools.servlet.PagedResultServiceFilter.doFilter(PagedResultServiceFilter.java:82)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:42)
at com.bea.p13n.servlets.PortalServletFilter.doFilter(PortalServletFilter.java:251)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:42)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3243)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2003)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:1909)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1359)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:181) -
Attempting to install the deployer on a machine and getting the below error. Not sure what that means, out of turn error or what actually occurs at this step, validating release management server, during the configuration piece. The user,
that we set for the service was validated fine. The user is an service account in the TFS RM Server, is an admin on the local box as well.
I am able to get into the TFS RM Server through the client just fine. I can hit the TFS RM UI just fine as well.
Curious what would not allow the deployer to complete as mentioned below.
Any help is appreciated.
I, 2013/12/16, 14:46:26.521, Validated account to use as identity for Release Management Services.
I, 2013/12/16, 14:46:26.521, Validating Release Management Server for Team Foundation Server 2013...
E, 2013/12/16, 14:46:30.905, Received Exception : Microsoft.TeamFoundation.Release.CommonConfiguration.ConfigurationException: Failed to validate Release Management Server for Team Foundation Server 2013.
at Microsoft.TeamFoundation.Release.CommonConfiguration.DeployerConfigurationManager.ValidateServerUrl()
at Microsoft.TeamFoundation.Release.CommonConfiguration.DeployerConfigurationManager.ValidateAndConfigure(DeployerConfigUpdatePack updatePack, DelegateStatusUpdate statusListener)
at System.ComponentModel.BackgroundWorker.WorkerThreadStart(Object argument)
I, 2013/12/16, 14:46:30.905, Work completed for GetConfiguration() call : got out of turn error
E, 2013/12/16, 14:46:30.905, Failed to validate Release Management Server for Team Foundation Server 2013.Hi Kpdn,
Thanks for your post.
All your participation and support are very important to build such harmonious/ pleasant / learning environment for MSDN community.
We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
Click
HERE to participate the survey. -
Hi Folks,
I was trying to do the tutorial "Securing Services Using the AquaLogic Service Bus", but when I called the Web Service Method I got the error message listed bellow.
What happened ?
Tutorial link:
"http://dev2dev.bea.com/pub/a/2006/04/securing-service-bus.html?page=1"
Exception:
"Unable to invoke service: SOAPFaultException - FaultCode [{http://schemas.xmlsoa
p.org/soap/envelope/}Server] FaultString [Failed to process signature.null] Faul
tActor [null]No Detail; nested exception is:
javax.xml.rpc.soap.SOAPFaultException: Failed to process signature.null
java.rmi.RemoteException: SOAPFaultException - FaultCode [{http://schemas.xmlsoa
p.org/soap/envelope/}Server] FaultString [Failed to process signature.null] Faul
tActor [null]No Detail; nested exception is:
javax.xml.rpc.soap.SOAPFaultException: Failed to process signature.null
at webservice.Echo_Stub.doEcho(Echo_Stub.java:37)
at webservice.EchoServiceClient.main(EchoServiceClient.java:48)
Caused by: javax.xml.rpc.soap.SOAPFaultException: Failed to process signature.nu
ll
at weblogic.wsee.codec.soap11.SoapCodec.decodeFault(SoapCodec.java:265)
at weblogic.wsee.ws.dispatch.client.CodecHandler.decodeFault(CodecHandle
r.java:106)
at weblogic.wsee.ws.dispatch.client.CodecHandler.decode(CodecHandler.jav
a:91)
at weblogic.wsee.ws.dispatch.client.CodecHandler.handleFault(CodecHandle
r.java:79)
at weblogic.wsee.handler.HandlerIterator.handleFault(HandlerIterator.jav
a:254)
at weblogic.wsee.handler.HandlerIterator.handleResponse(HandlerIterator.
java:224)
at weblogic.wsee.ws.dispatch.client.ClientDispatcher.handleResponse(Clie
ntDispatcher.java:161)
at weblogic.wsee.ws.dispatch.client.ClientDispatcher.dispatch(ClientDisp
atcher.java:116)
at weblogic.wsee.ws.WsStub.invoke(WsStub.java:89)
at weblogic.wsee.jaxrpc.StubImpl._invoke(StubImpl.java:335)
at webservice.Echo_Stub.doEcho(Echo_Stub.java:32)"Hi Folks,
I was trying to do the tutorial "Securing Services Using the AquaLogic Service Bus", but when I called the Web Service Method I got the error message listed bellow.
What happened ?
Tutorial link:
"http://dev2dev.bea.com/pub/a/2006/04/securing-service-bus.html?page=1"
Exception:
"Unable to invoke service: SOAPFaultException - FaultCode [{http://schemas.xmlsoa
p.org/soap/envelope/}Server] FaultString [Failed to process signature.null] Faul
tActor [null]No Detail; nested exception is:
javax.xml.rpc.soap.SOAPFaultException: Failed to process signature.null
java.rmi.RemoteException: SOAPFaultException - FaultCode [{http://schemas.xmlsoa
p.org/soap/envelope/}Server] FaultString [Failed to process signature.null] Faul
tActor [null]No Detail; nested exception is:
javax.xml.rpc.soap.SOAPFaultException: Failed to process signature.null
at webservice.Echo_Stub.doEcho(Echo_Stub.java:37)
at webservice.EchoServiceClient.main(EchoServiceClient.java:48)
Caused by: javax.xml.rpc.soap.SOAPFaultException: Failed to process signature.nu
ll
at weblogic.wsee.codec.soap11.SoapCodec.decodeFault(SoapCodec.java:265)
at weblogic.wsee.ws.dispatch.client.CodecHandler.decodeFault(CodecHandle
r.java:106)
at weblogic.wsee.ws.dispatch.client.CodecHandler.decode(CodecHandler.jav
a:91)
at weblogic.wsee.ws.dispatch.client.CodecHandler.handleFault(CodecHandle
r.java:79)
at weblogic.wsee.handler.HandlerIterator.handleFault(HandlerIterator.jav
a:254)
at weblogic.wsee.handler.HandlerIterator.handleResponse(HandlerIterator.
java:224)
at weblogic.wsee.ws.dispatch.client.ClientDispatcher.handleResponse(Clie
ntDispatcher.java:161)
at weblogic.wsee.ws.dispatch.client.ClientDispatcher.dispatch(ClientDisp
atcher.java:116)
at weblogic.wsee.ws.WsStub.invoke(WsStub.java:89)
at weblogic.wsee.jaxrpc.StubImpl._invoke(StubImpl.java:335)
at webservice.Echo_Stub.doEcho(Echo_Stub.java:32)" -
Validate signature with pre-calculated digest
Hello to all!
I'm trying to build a system that signs and validates signatures on large files.
To get a signature i used a pre-calculated digest and was easy, but for validating the same signature i can't discover how to give the pre-calculated digest.
I can't use the normal validate because the java api uses the "JavaUtils.getBytesFromStream" method and try to get all the file to memory.
can someone indicate the solution to this (or explain why don't had a solution, if it is the case)?Hello!
smullan wrote:
I assume you have tried returning an OctetStreamData wrapped around an InputStream? Yes. I let here the code of the URIDereferencer i'm using.
public class ConstrulinkURIDereferencer implements URIDereferencer {
private String filesPath;
private URIDereferencer defaultDereferencer = null;
public ConstrulinkURIDereferencer(String filesPath) {
this.filesPath = filesPath;
public void setURIDereferencer(URIDereferencer defaultDereferencer) {
this.defaultDereferencer = defaultDereferencer;
@Override
public Data dereference(URIReference uriReference, XMLCryptoContext context)
throws URIReferenceException {
try {
String filename = uriReference.getURI();
File f = new File(filesPath+filename);
if (!f.exists() && defaultDereferencer!=null) {
return defaultDereferencer.dereference(uriReference, context);
} else {
return new OctetStreamData(new FileInputStream(filesPath+filename));
} catch (FileNotFoundException e) {
throw new URIReferenceException(e);
}I try to get a file, if that fails i send the request for dereference to the deafult URIDereferencer (the one that was there before).
What i got from seeing the code at Koders the problem was that when we call the method JavaUtils.getBytesFromStream (you can see the stacktrace above) it will read all the bytes of the stream. I didn't see if these bytes are used for something else than the digest.
>
It sounds like it could be a bug. I will try coming up with a sample and debug it further. If you are able to, please also post your code here or send it to [email protected].
I'll try monday to send you a executable code.
Thanks -
Logon of user in client failed when starting a step
Hi All,
I have a question. (Might be simple to many).
<b>Logon of user in client failed when starting a step.</b>
Some of my scheduled jobs are getting cancelled due to the above error. It has been noted that the user corresponding to that job has been locked.
Can anybody suggest how to change the user of a Background Job (without deleting and re-creating the same).
Thanks and Regards
DevanandHi
You cannot change the owner of the job once it is in released status.
Better, create the job with same varient by an existing user and delete the cancelled job.
regards,
Vinodh. -
ConfigMgr 2012 R2 Client Failes to Install on HP EliteBook laptops with Synaptics Touchpad drivers
I've come across a fairly frustrating issue that has been taking up way too much of my time that past week or so. The issue started a little after some of our larger sites were migrated from SCCM 2007 to SCCM 2012. I started getting complaints that one of
our technical workstations (HP 8770w) was not deploying properly. I started investigating the issue and the problem involved the removal of the old ConfigMgr 2007 client and install of the new SCCM 2012 R2 client.
The Windows 7 x64 OS WIM that I am using is one that was migrated from the 07 to 2012 environment and it has been working fine. During the Setup Windows and ConfigMgr step the old client is removed and the new one for the 2012 environment installs. There
has not been any issues with this, but I feel something has changed now that we are deploying the 2012 R2 client.
Back to the issue, what happens is that the ConfigMgr client fails to uninstall the old client. Looking in the client.msi_uninstall file you will see that it is unable to locate a couple of SCCM 2007 configmgr client patches that were installed so it can
uninstall it. I get the "Couldn't find local patch ''. Looking for it at its source." line in the uninstall file. When I look for that under HKEY_CLASSES_ROOT\Installer\Patches the ENTIRE directory structure is empty. There is not a single item
listed under patches.
Since the only thing that happens in between the pushing down of the WIM and installing the configmgr client is the drivers that is where I started to look. I started over with the basics (disk and network driver) and it was able to complete the OSD process
(like the other 30+ models we currently support). I added drivers one by one having the system re-image each time. When I got to the Synaptics TouchPad drivers the issue would return. I've tried around 5 different drivers offered from the vendor and they
all result in the same behavior.
I'm still actively troubleshooting how to FIX this issue, but I have no idea why this is going on. I thought I would share with the community on this issue and see if anyone else has observed this VERY odd behavior.
Here is a snippet from the client.msi_uninstall log:
=== Verbose logging started: 1/15/2014 22:59:34 Build type: SHIP UNICODE 5.00.7601.00 Calling process: D:\_SMSTaskSequence\OSD\GAS000EF\ccmsetup.exe ===
MSI (c) (6C:BC) [22:59:34:264]: Resetting cached policy values
MSI (c) (6C:BC) [22:59:34:264]: Machine policy value 'Debug' is 0
MSI (c) (6C:BC) [22:59:34:264]: ******* RunEngine:
******* Product: {2609EDF1-34C4-4B03-B634-55F3B3BC4931}
******* Action:
******* CommandLine: **********
MSI (c) (6C:BC) [22:59:34:264]: Client-side and UI is none or basic: Running entire install on the server.
MSI (c) (6C:BC) [22:59:34:264]: Grabbed execution mutex.
MSI (c) (6C:BC) [22:59:34:264]: Cloaking enabled.
MSI (c) (6C:BC) [22:59:34:264]: Attempting to enable all disabled privileges before calling Install on Server
MSI (c) (6C:BC) [22:59:34:264]: Incrementing counter to disable shutdown. Counter after increment: 0
MSI (s) (00:80) [22:59:34:264]: Running installation inside multi-package transaction {2609EDF1-34C4-4B03-B634-55F3B3BC4931}
MSI (s) (00:80) [22:59:34:264]: Grabbed execution mutex.
MSI (s) (00:D4) [22:59:34:264]: Resetting cached policy values
MSI (s) (00:D4) [22:59:34:264]: Machine policy value 'Debug' is 0
MSI (s) (00:D4) [22:59:34:264]: ******* RunEngine:
******* Product: {2609EDF1-34C4-4B03-B634-55F3B3BC4931}
******* Action:
******* CommandLine: **********
MSI (s) (00:D4) [22:59:34:264]: Machine policy value 'DisableUserInstalls' is 0
MSI (s) (00:D4) [22:59:34:405]: SRSetRestorePoint skipped for this transaction.
MSI (s) (00:D4) [22:59:34:405]: End dialog not enabled
MSI (s) (00:D4) [22:59:34:405]: Original package ==> C:\Windows\Installer\b8ba.msi
MSI (s) (00:D4) [22:59:34:405]: Package we're running from ==> C:\Windows\Installer\b8ba.msi
MSI (s) (00:D4) [22:59:34:405]: APPCOMPAT: Uninstall Flags override found.
MSI (s) (00:D4) [22:59:34:405]: APPCOMPAT: Uninstall VersionNT override found.
MSI (s) (00:D4) [22:59:34:405]: APPCOMPAT: Uninstall ServicePackLevel override found.
MSI (s) (00:D4) [22:59:34:405]: APPCOMPAT: looking for appcompat database entry with ProductCode '{2609EDF1-34C4-4B03-B634-55F3B3BC4931}'.
MSI (s) (00:D4) [22:59:34:405]: APPCOMPAT: no matching ProductCode found in database.
MSI (s) (00:D4) [22:59:34:420]: MSCOREE not loaded loading copy from system32
MSI (s) (00:D4) [22:59:34:420]: Note: 1: 2262 2: MsiFileHash 3: -2147287038
MSI (s) (00:D4) [22:59:34:420]: Couldn't find local patch ''. Looking for it at its source.
MSI (s) (00:D4) [22:59:34:420]: Resolving Patch source.
MSI (s) (00:D4) [22:59:34:420]: User policy value 'SearchOrder' is 'nmu'
MSI (s) (00:D4) [22:59:34:420]: User policy value 'DisableMedia' is 0
MSI (s) (00:D4) [22:59:34:420]: Machine policy value 'AllowLockdownMedia' is 0
MSI (s) (00:D4) [22:59:34:420]: SOURCEMGMT: Media enabled only if package is safe.
MSI (s) (00:D4) [22:59:34:420]: SOURCEMGMT: Looking for sourcelist for product {D478B8EE-EE0A-4004-980B-4D55533EE3C2}
MSI (s) (00:D4) [22:59:34:420]: Note: 1: 1706 2: {D478B8EE-EE0A-4004-980B-4D55533EE3C2} 3:
MSI (s) (00:D4) [22:59:34:420]: SOURCEMGMT: Failed to resolve source
MSI (s) (00:D4) [22:59:34:420]: Searching provided command line patches for patch code {D478B8EE-EE0A-4004-980B-4D55533EE3C2}
MSI (s) (00:D4) [22:59:34:420]: Could not find source for missing patch {D478B8EE-EE0A-4004-980B-4D55533EE3C2} -- orphaning this patch
MSI (s) (00:D4) [22:59:34:420]: Couldn't find local patch ''. Looking for it at its source.
MSI (s) (00:D4) [22:59:34:420]: Resolving Patch source.
MSI (s) (00:D4) [22:59:34:420]: User policy value 'SearchOrder' is 'nmu'
MSI (s) (00:D4) [22:59:34:420]: SOURCEMGMT: Media enabled only if package is safe.
MSI (s) (00:D4) [22:59:34:420]: SOURCEMGMT: Looking for sourcelist for product {599B62C0-F1BE-4FE8-80D9-36937D5DDBFE}
MSI (s) (00:D4) [22:59:34:420]: Note: 1: 1706 2: {599B62C0-F1BE-4FE8-80D9-36937D5DDBFE} 3:
MSI (s) (00:D4) [22:59:34:420]: SOURCEMGMT: Failed to resolve source
MSI (s) (00:D4) [22:59:34:420]: Searching provided command line patches for patch code {599B62C0-F1BE-4FE8-80D9-36937D5DDBFE}
MSI (s) (00:D4) [22:59:34:420]: Could not find source for missing patch {599B62C0-F1BE-4FE8-80D9-36937D5DDBFE} -- orphaning this patch
MSI (s) (00:D4) [22:59:34:420]: SequencePatches starts. Product code: {2609EDF1-34C4-4B03-B634-55F3B3BC4931}, Product version: 4.00.6487.2000, Upgrade code: {252DA259-82CA-4177-B8D0-49C78937BA3E}, Product language 1033
MSI (s) (00:D4) [22:59:34:420]: SequencePatches returns success.
MSI (s) (00:D4) [22:59:34:420]: Final Patch Application Order:
MSI (s) (00:D4) [22:59:34:420]: Other Patches:
MSI (s) (00:D4) [22:59:34:420]: Internal Exception during install operation: 0xc0000005 at 0x000007FEFDBF35E1.
MSI (s) (00:D4) [22:59:34:420]: WER report disabled for silent install.
MSI (s) (00:D4) [22:59:34:420]: Internal MSI error. Installer terminated prematurely.
MSI (s) (00:D4) [22:59:34:420]: MainEngineThread is returning 1603
MSI (s) (00:80) [22:59:34:420]: No System Restore sequence number for this installation.
Unexpected Termination
MSI (s) (00:80) [22:59:34:420]: User policy value 'DisableRollback' is 0
MSI (s) (00:80) [22:59:34:420]: Machine policy value 'DisableRollback' is 0
MSI (s) (00:80) [22:59:34:420]: Incrementing counter to disable shutdown. Counter after increment: 0
MSI (s) (00:80) [22:59:34:420]: Note: 1: 1402 2: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\Rollback\Scripts 3: 2
MSI (s) (00:80) [22:59:34:420]: Note: 1: 1402 2: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\Rollback\Scripts 3: 2
MSI (s) (00:80) [22:59:34:420]: Note: 1: 1402 2: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\InProgress 3: 2
MSI (s) (00:80) [22:59:34:420]: Note: 1: 1402 2: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\InProgress 3: 2
MSI (s) (00:80) [22:59:34:420]: Decrementing counter to disable shutdown. If counter >= 0, shutdown will be denied. Counter after decrement: -1
MSI (s) (00:80) [22:59:34:420]: Restoring environment variables
MSI (c) (6C:BC) [22:59:34:420]: Decrementing counter to disable shutdown. If counter >= 0, shutdown will be denied. Counter after decrement: -1
MSI (c) (6C:BC) [22:59:34:420]: MainEngineThread is returning 1603
=== Verbose logging stopped: 1/15/2014 22:59:34 ===@Narcoticoo
I've not used the tool. This issue has also expanded since the original title as I'm getting the same behavior with the driver package that does not include the Touchpad driver anymore. I'm currently going back to just the network and storage driver to see
if it works or not.
However, this is the bigger issue I have:
I have an older build called Build 5.7 internally. Using that WIM and the same driver package (original one that has the Touchpad driver included) it works without issue. Never had a problem.
The new build is called Build 6.0 internally. This WIM and the same driver package has not been working at all.
We support about 35 models with our current Windows 7 x64 image and I am having the same failure issue on four different HP models. They are the 8770w, ZBook 17, Z600 and Z820. The majority of the other systems are Dell devices. Just for transparency sakes,
nothing Dell specific is in the core WIM that is captured.
So, Build 5.7 can deploy just fine on all pieces of hardware with their old driver packages. The new Build 6.0 intalls on almost every platform fine with their old driver packages. These four HP systems are nothing but trouble though. I've opened a case
with HP to see if they have noticed anything internally. I'm not too hopeful, but at least it is something. Maybe there is some odd conflict with a newer Windows patch or some odd dependency on older HP drivers. The new image has .NET 4.5.1, IE 10 and so forth.
Maybe you are looking for
-
When using the mail in IOS5 (or previous versions) why isn't there a way to mark and email as spam?
-
How can i transfer money from my account to my brothers account?
I realized i wouldnt use my itunes money after i redeemed the gift card i recieved it on, so i want to give it or rather transfer it to my brothers account because i know he will use it...anyone know how i can do that?
-
HT1296 How can I transfer all my photos from my Ipad Mini to my new MacBook Pro
How can I transfer all my photos from my Ipad Mini to my new MacBook Pro I am facing problem while I connect to my iPad mini with MacBook Pro , it only sync photo from its taken by and from it camera roll only. It doesn't sync all the images... Like
-
Cant install oracle 8.1.7 on aix 4.3.3
because of internal issues, i have used my pc to copy the 2 install cd's onto a unix box to try and install from there. the 2 disks are on the unix box and i can read all the files. i run runinstaller from the disk1 directory and it asks if i have ru
-
please advice, we can't update iOS by messsage "Can't Install update, error in installing iOS 7.0."