Erst wenn das OCSP-Server Zertifikat im Lancom gelöscht wird, kann per SSH der OCSP-Server wieder aktiviert werden.
Zudem kann LANconfig scheinbar den Signatur-Algorithmus nicht korrekt auf SHA-512 setzen. Erst im Webinterface gelingt dies. Beim anschliessendem auslesen mit LANconfig bleibt das Dropdown-Feld jedoch leer.
Code: Alles auswählen
04/01/2022 09:33:14 LCOS-Watchdog
Task name = Cont Type=PPC: DSI (protection error on load access @0x480d6705)
Code=0x00000002 Thread=05e9c060 Task=05e9c050 Nest=0x00000000
registers follow, m_p_area = 05201040
R00=0x02933d7c SP =0x05e9dfe0 R02=0x05adfcba R03=0x063b3ed0
R04=0x00000000 R05=0x00000024 R06=0x00000000 R07=0x0e54ead0
R08=0x00000000 R09=0x480d6705 R10=0x00000000 R11=0x00000000
R12=0x00000000 R13=0x05ade890 R14=0x00000000 R15=0x00000000
R16=0x05e9c060 R17=0x023eb5f1 R18=0x063b3ed0 R19=0x05e9e050
R20=0x00000008 R21=0x0e4bfa50 R22=0x00000001 R23=0x05e9e124
R24=0x05e9e0e0 R25=0xffffffff R26=0x0e15c0d0 R27=0x00000014
R28=0x04947488 R29=0x0cc89bd8 R30=0x029b8870 R31=0x00000001
CR =0x40044224 XER =0x20000000 LR =0x02933d7c CTR =0x00000000
ESR =0x00000000 DEAR=0x480d6705 HID0=0x80000000 HID1=0x00000000
MCSR=0x00000000 PID0=0x00000002 PID1=0x00000000 PID2=0x00000000
MAS0=0x00000001 MAS1=0x80020100 MAS2=0x480d6000 MAS3=0x00000000
MAS4=0x00000100 MAS6=0x00020000 MAS7=0x00000000 MAS8=0x00000000
MCTR=0x00000000 SPR0=0x05201180 SPR1=0x131d811c SPR2=0x063b3ed0
SPR3=0x00000000 SPR4=0x00000000 SPR5=0x063b3ed0 SPR6=0x00000000
SPR7=0x00000000 SPR8=0x00000000 SPR9=0x00000000
MCAR =0x00000000:00000000
SRR0(PC) =0x02933efc
SRR1(MSR)=0x00029202
exception, additional backtrace: [BT] 02933d7c 02934038 02933850 02d25060 02d25d00 025bdadc 025bc548 025bce7c 025bd0d0 025bd1b4 025b9a80 01910a00 02878778 03af81cc 0287ce10
Stack dump (1024 bytes):
Adr:= 05e9dfe0
Len:= 00000400
05E9DFE0: 05 E9 E0 D8 02 93 3D 7C 04 94 74 88 04 95 C0 18 | ......=| ..t.....
05E9DFF0: 05 E9 E0 58 02 8C 41 00 00 00 00 00 00 00 00 00 | ...X..A. ........
05E9E000: 05 E9 E1 00 02 3E B5 F1 05 E9 C1 B4 06 39 A1 46 | .....>.. .....9.F
05E9E010: 20 00 C1 DC 00 00 40 00 00 00 00 00 05 E9 E1 74 | .....@. .......t
05E9E020: 20 00 24 42 00 00 00 20 0C C8 9B D4 06 39 A1 17 | .$B... .....9..
05E9E030: 00 00 00 00 05 E9 E1 1C 05 E9 E1 00 00 00 00 02 | ........ ........
05E9E040: 00 00 00 01 05 E9 E1 00 05 E9 E1 1C 0C C8 9B D4 | ........ ........
05E9E050: 83 0C 69 8D 96 7F 3B F6 EC 88 0C A7 65 71 E5 06 | ..i...;. ....eq..
05E9E060: 29 58 B3 98 03 AE 2B EC 05 E9 E0 80 02 93 4D D0 | )X....+. ......M.
05E9E070: 00 00 00 00 06 39 A1 46 05 E9 E0 90 02 93 4D D0 | .....9.F ......M.
05E9E080: 00 00 00 2F 00 00 00 00 04 95 C4 74 0C C8 9B D8 | .../.... ...t....
05E9E090: 04 94 81 04 0E D1 CA 50 0C C8 9B D4 06 39 A1 17 | .......P .....9..
05E9E0A0: 05 E9 C1 B4 00 00 00 20 0E 3E B6 D0 00 00 00 01 | ....... .>......
05E9E0B0: 0E 05 64 D0 0E 15 C0 D0 00 00 00 02 05 AD A2 50 | ..d..... .......P
05E9E0C0: 00 00 00 00 0E 15 C0 D0 0E 4E DB D0 0E 4E DB D0 | ........ .N...N..
05E9E0D0: 0C C8 9B D0 0C C8 9B D0 05 E9 E1 38 02 93 40 38 | ........ ...8..@8
05E9E0E0: 05 E9 E1 00 0E BC 85 00 05 E9 E1 08 00 00 00 00 | ........ ........
05E9E0F0: 0E 66 A8 50 00 00 00 00 00 00 00 00 0E BC 85 00 | .f.P.... ........
05E9E100: 05 E9 E1 20 03 AE 36 58 05 E9 E1 28 0E 15 C0 D0 | ... ..6X ...(....
05E9E110: 0E 66 A8 50 00 00 00 00 0E 66 A8 50 00 00 00 00 | .f.P.... .f.P....
05E9E120: 00 00 00 00 0E D5 56 00 05 E9 E1 48 03 AE 36 58 | ......V. ...H..6X
05E9E130: 0C C8 9B D0 0C C8 9B D0 05 E9 E1 90 02 93 38 50 | ........ ......8P
05E9E140: 0E D5 56 50 0E BF 41 50 05 E9 E1 90 02 E0 88 BC | ..VP..AP ........
05E9E150: 20 00 02 22 00 00 00 00 00 00 00 00 00 00 00 00 | ..".... ........
05E9E160: 05 E9 C1 DC 00 00 00 00 05 94 77 7C 03 AC BE 10 | ........ ..w|....
05E9E170: 10 C5 3C 5C 05 AD A2 50 0E 66 A8 50 0E 38 F1 D0 | ..<\...P .f.P.8..
05E9E180: 12 A7 C9 50 0E 4E DB D0 0E D5 56 50 0C F5 34 68 | ...P.N.. ..VP..4h
05E9E190: 05 E9 E1 B8 02 D2 50 60 00 00 00 02 40 00 02 24 | ......P` ....@..$
05E9E1A0: 00 00 00 00 0E 1C 4F 50 0C F5 34 54 00 00 00 00 | ......OP ..4T....
05E9E1B0: 0C F5 34 68 12 A7 C9 50 05 E9 E1 D8 02 D2 5D 00 | ..4h...P ......].
05E9E1C0: 80 00 00 30 00 00 00 28 0E 15 C0 D0 03 AE 2B EC | ...0...( ......+.
05E9E1D0: 0C F5 34 68 0C F5 34 64 05 E9 E1 F0 02 5B DA DC | ..4h..4d .....[..
05E9E1E0: 0E 49 0A 50 00 00 00 00 05 E9 E2 40 0C F5 34 50 | .I.P.... ...@..4P
05E9E1F0: 05 E9 E2 38 02 5B C5 48 05 E9 E2 18 0E 1C 4F 50 | ...8.[.H ......OP
05E9E200: 05 E9 E2 18 00 00 00 00 0C F5 34 54 00 00 00 00 | ........ ..4T....
05E9E210: 00 00 00 00 0E 49 0A 00 05 E9 E2 38 03 AE 36 58 | .....I.. ...8..6X
05E9E220: 05 E9 E2 38 0E 1C 4F 50 0C F5 34 54 00 00 00 00 | ...8..OP ..4T....
05E9E230: 05 E9 E2 40 0C F5 34 50 05 E9 E2 B0 02 5B CE 7C | ...@..4P .....[.|
05E9E240: 04 8F F5 5C 02 5B C5 10 00 00 00 00 0C F5 34 50 | ...\.[.. ......4P
05E9E250: 05 E9 E2 40 02 88 66 2C 02 5B DA 60 00 00 00 00 | ...@..f, .[.`....
05E9E260: 0C F5 34 64 00 00 00 0D 00 00 00 00 0C F5 34 50 | ..4d.... ......4P
05E9E270: 80 00 00 10 00 00 00 0F 0E 49 0A 50 00 00 00 07 | ........ .I.P....
05E9E280: 00 00 00 00 01 31 2D 00 0C F5 34 50 0C F5 34 00 | .....1-. ..4P..4.
05E9E290: 00 E9 E2 B0 03 AE 2B EC 00 00 00 00 00 00 3B 36 | ......+. ......;6
05E9E2A0: 0F 20 DA 50 05 AE 00 00 0C F5 34 50 05 B1 63 30 | . .P.... ..4P..c0
05E9E2B0: 05 E9 E2 C8 02 5B D0 D0 05 E9 E2 C8 05 AE 00 00 | .....[.. ........
05E9E2C0: 00 00 00 00 05 B1 63 30 05 E9 E2 E0 02 5B D1 B4 | ......c0 .....[..
05E9E2D0: 05 E9 E2 E0 05 B1 00 00 13 4C 69 50 05 AE 00 00 | ........ .LiP....
05E9E2E0: 05 E9 E3 00 02 5B 9A 80 00 00 00 20 05 E9 C1 DC | .....[.. ... ....
05E9E2F0: 00 00 00 01 00 00 20 7C 12 A7 CE 50 12 A7 CD D0 | ...... | ...P....
05E9E300: 05 E9 E3 18 01 91 0A 00 00 02 92 02 05 E9 C0 50 | ........ .......P
05E9E310: 05 E9 C0 60 06 4B 84 50 05 E9 E3 28 02 87 87 78 | ...`.K.P ...(...x
05E9E320: 05 E9 C0 60 06 4B 84 90 05 E9 E3 80 03 AF 81 CC | ...`.K.. ........
05E9E330: 00 02 92 02 05 E9 C0 50 05 E9 E3 90 29 20 52 65 | .......P ....) Re
05E9E340: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ........ ........
05E9E350: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ........ ........
05E9E360: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ........ ........
05E9E370: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ........ ........
05E9E380: 00 00 00 00 02 87 CE 10 DE AD BE EF DE AD BE EF | ........ ........
05E9E390: DE AD BE EF 97 5F 3B D1 DE AD BE EF DE AD BE EF | ....._;. ........
05E9E3A0: DE AD BE EF DE AD BE EF DE AD BE EF DE AD BE EF | ........ ........
05E9E3B0: DE AD BE EF DE AD BE EF DE AD BE EF DE AD BE EF | ........ ........
05E9E3C0: DE AD BE EF DE AD BE EF DE AD BE EF DE AD BE EF | ........ ........
05E9E3D0: DE AD BE EF DE AD BE EF DE AD BE EF DE AD BE EF | ........ ........
largest available memory block: 134217728 bytes
DEVICE: LANCOM 1906VA-4G (over ISDN)
HW-RELEASE: C
VERSION: 10.50.0619RU5 / 07.02.2022
****
04/01/2022 09:33:32 System boot after LCOS-Watchdog
DEVICE: LANCOM 1906VA-4G (over ISDN)
HW-RELEASE: C
VERSION: 10.50.0619RU5 / 07.02.2022
****
04/01/2022 09:35:52 System boot after external watchdog reset
LR = 0x00000000 SP = 0x00000000
DEVICE: LANCOM 1906VA-4G (over ISDN)
HW-RELEASE: C
VERSION: 10.50.0619RU5 / 07.02.2022
****
04/01/2022 09:43:29 System boot after external watchdog reset
LR = 0x00000000 SP = 0x00000000
DEVICE: LANCOM 1906VA-4G (over ISDN)
HW-RELEASE: C
VERSION: 10.50.0619RU5 / 07.02.2022
****
04/01/2022 09:46:54 System boot after external watchdog reset
LR = 0x00000000 SP = 0x00000000
DEVICE: LANCOM 1906VA-4G (over ISDN)
HW-RELEASE: C
VERSION: 10.50.0619RU5 / 07.02.2022
****
04/01/2022 09:49:02 System boot after external watchdog reset
LR = 0x00000000 SP = 0x00000000
DEVICE: LANCOM 1906VA-4G (over ISDN)
HW-RELEASE: C
VERSION: 10.50.0619RU5 / 07.02.2022
****
04/01/2022 09:53:06 System boot after external watchdog reset
LR = 0x00000000 SP = 0x00000000
DEVICE: LANCOM 1906VA-4G (over ISDN)
HW-RELEASE: C
VERSION: 10.50.0619RU5 / 07.02.2022
Und noch ein Fehler im Zusammenhang mit OCSP:
Wenn ich per WebUI oder LANconfig unter "Zertifikate | Zertifikatsbehandlung | Profile" bei einem Profil den OCSP-AIA Wert eintrage, so taucht dieser bei der Zertifikatserstellung nicht auf und wird somit auch nicht ins Zertifikat übernommen.
Benutzt OCSP überhaupt jemand?