Explanation
Application Transparent Transport Layer Security
(AT-TLS) detected an error during the specified AT-TLS event. The
message creation time and owning TCP/IP job name of the process creating
the message are included in the syslog trace prior to the message
ID. This message has a syslog priority of ERROR and is written to
the syslog when AT-TLS trace option ERROR (2) is specified.
In
the message text:
- gid
- The hexadecimal value that uniquely identifies the AT-TLS group
supporting the connection or SSL environment.
- eid
- The hexadecimal value which uniquely identifies the AT-TLS environment
supporting the connection. Multiple AT-TLS environments may be represented
by a single master System SSL secure environment. If the eid
is 00000000, the event does not apply to a specific environment.
- cid
- The hexadecimal value which uniquely identifies this TCP connection
for the life of the connection. A previously issued message EZD1281I
provides additional information about the connection. If the cid
is 00000000, the event does not apply to a specific connection.
- loc_ip
- The local IPv4 or IPv6 address.
- loc_port
- The local port number.
- rem_ip
- The remote IPv4 or IPv6 address.
- rem_port
- The remote port number.
- jobname
- The job name of the application associated with this connection.
- userid
- The user ID of the application associated with this connection.
- rule
- The name of the TTLSRule statement that mapped this connection.
- rcode
- The System SSL or AT-TLS return code that indicates why the event
failed. rcode values under 5000 are generated
by System SSL and are defined in z/OS Cryptographic Services System SSL Programming. rcode values
over 5000 are generated by AT-TLS and are defined in AT-TLS return codes in z/OS Communications Server: IP Diagnosis Guide.
- event
- The AT-TLS event that was in process when the error occurred.
Possible values are:
- Connection Abend Close
- An abend occurred while executing AT-TLS work for the specified
connection.
- Connection Close
- The specified secure connection was being closed.
- Connection Init
- A secure connection was being initiated for the specified connection.
- Connection Stop
- The specified secure connection was being stopped.
- Data Decryption
- Application data was being decrypted by System SSL.
- Data Encryption
- Application data was being encrypted by System SSL.
- Environment Close
- The specified AT-TLS environment was being deleted and the corresponding
System SSL environment was being closed.
- Environment Init
- A System SSL environment was being initialized for the specified
AT-TLS environment.
- Environment Link
- The specified newly created AT-TLS environment could use an existing
System SSL environment. The new AT-TLS environment was being linked
to a master AT-TLS environment that represents a single System SSL
environment.
- Environment Link Delete
- The specified linked AT-TLS environment was no longer needed.
It was linked to a master AT-TLS environment. The AT-TLS environment
and its link were being deleted. If this is the last AT-TLS environment
linked to the master AT-TLS environment, the master was also being
deleted and the corresponding System SSL environment will be closed.
- Environment Master Close
- The specified master AT-TLS environment no longer had any linked
AT-TLS environments. The corresponding System SSL environment was
being closed.
- Environment Master Create
- The specified newly created AT-TLS environment could be linked
to a master AT-TLS environment. The master AT-TLS environment did
not exist yet and was being created. A master AT-TLS environment
corresponds to a single System SSL environment.
- Environment Master Delete
- The specified master AT-TLS environment was no longer needed
and was being deleted from the AT-TLS group. The corresponding System
SSL environment will be closed.
- Environment Master Init
- A System SSL environment was being initialized for the specified
master AT-TLS environment.
- HandshakeTimeout Expired
- A secure connection was being initialized, but did not complete
in the HandshakeTimeout interval.
- Initial Handshake
- The initial SSL handshake was in process for the connection.
- Policy Mapping
- Policy was being mapped for the specified connection.
- Reset Cipher Request
- A request to renegotiate the cipher was being processed.
- Reset Session Request
- A request to reset the session was being processed.
- SSL Control Data Read
- Control data, such as handshake or alert data, was being read.
System action
Operator response
System programmer response
Module
Example
EZD1286I TTLS Error GRPID: 00000001 ENVID: 00000001 CONNID: 0000001F LOCAL: 9.42.104.171..1025
REMOTE: 9.42.104.171..6003 JOBNAME: USER603 USERID: USER60 RULE: tnsaso_clnt6 RC: 5006
Initial Handshake 00000000 00000000