IBM Support

IT31947: EDIINTBUILD FAILS WITH UNKNOWN SYMMETRIC CIPHER ALGORITHM 6 REQUESTED AFTER UPGRADE TO 5.2.6.4

Subscribe to this APAR

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available. You can track this item individually or track all items by product.

Notify me when this APAR changes.

Notify me when an APAR for this component changes.

 

APAR status

  • Closed as program error.

Error description

  • ediint.log
    GLOBAL_SCOPE EDIINT: Exception attempting to create
    PKCS7 enveloped message using Certicom Trustpoint provider
    java.lang.Exception: Unknown symmetric cipher algorithm 6
    requested.
    

Local fix

  • JIRA - L3REQ-643
    AA/AA
    
    Circumvention: None
    

Problem summary

  • Users Affected:
    All
    
    Problem Description:
    After upgrading from 5.2.4 to 5.2.6.4,  receiving
    GLOBAL_SCOPE EDIINT: Exception attempting to create PKCS7
    enveloped message using Certicom Trustpoint provider
    java.lang.Exception: Unknown symmetric cipher algorithm 6
    requested on EDIINTBuild. f It was found the JCE was
    missing  local_policy.jar and
    US_export_policy.jar files in <Install Dir>jdk\jre\lib\security.
    They used the jar file instead of unrestricted.zip.
    
    Still receiving GLOBAL_SCOPE EDIINT: Exception attempting to
    create PKCS7 enveloped message using Certicom Trustpoint
    provider java.lang.Exception: Unknown symmetric cipher algorithm
    6 requested on EDIINTBuild. After this, the signing algorithm
    was changed to TripleDES, EDIINBUILD was
    successful but the MDN fails with decryption failed.
    
    
    
    
    The following exception is displayed while using As2
    communication:
    
    [2020-02-04 01:42:54.665] ERROR EDIINT: Exception attempting to
    create PKCS7 enveloped message using Certicom Trustpoint
    provider
    [2020-02-04 01:42:54.665] ERROR [1580798574665] Unknown
    symmetric cipher algorithm 8 requested
    [2020-02-04 01:42:54.665] ERRORDTL
    [1580798574665]java.lang.Exception: Unknown symmetric cipher
    algorithm 8 requested
                at
    com.sterlingcommerce.woodstock.packager.EDIINT.TrustpointCMSSecu
    reMessageGenerator.CreateEnvelopedMessage(TrustpointCMSSecureMes
    sageGenerator.java:263)
                at
    com.sterlingcommerce.woodstock.packager.EDIINT.SecureMessageGene
    rator.CreateSMIMEEnvelopedMessage(SecureMessageGenerator.java:29
    7)
                at
    com.sterlingcommerce.woodstock.packager.EDIINT.BodyPartGenerator
    .GenerateSMIMEEnvelopedEntity(BodyPartGenerator.java:74)
                at
    com.sterlingcommerce.woodstock.packager.EDIINT.MIMEMessageGenera
    tor.CreateDetachedSignedAndEncryptedPayload(MIMEMessageGenerator
    .java:1395)
                at
    com.sterlingcommerce.woodstock.packager.EDIINT.MIMEMessageGenera
    tor.CreateStandardMIMEMessage(MIMEMessageGenerator.java:342)
                at
    com.sterlingcommerce.woodstock.packager.EDIINT.MIMEMessageGenera
    tor.CreateMessage(MIMEMessageGenerator.java:65)
                at
    com.sterlingcommerce.woodstock.packager.EDIINT.EDIINTPackager.Pa
    ckageData(EDIINTPackager.java:116)
                at
    com.sterlingcommerce.woodstock.services.EDIINT.EDIINTMessageServ
    ice.EDIINTMessageServiceImpl.buildMessage(EDIINTMessageServiceIm
    pl.java:905)
                at
    com.sterlingcommerce.woodstock.services.EDIINT.EDIINTMessageServ
    ice.EDIINTMessageServiceImpl.processData(EDIINTMessageServiceImp
    l.java:657)
                at
    com.sterlingcommerce.woodstock.workflow.activity.engine.Activity
    EngineHelper.invokeService(ActivityEngineHelper.java:1826)
                at
    com.sterlingcommerce.woodstock.workflow.activity.engine.Activity
    EngineHelper.nextMainLogic(ActivityEngineHelper.java:631)
                at
    com.sterlingcommerce.woodstock.workflow.activity.engine.Activity
    EngineHelper.next(ActivityEngineHelper.java:362)
                at
    com.sterlingcommerce.woodstock.workflow.queue.WorkFlowQueueListe
    ner.doWork(WorkFlowQueueListener.java:461)
                at
    com.sterlingcommerce.woodstock.workflow.queue.WorkFlowQueueListe
    ner.run(WorkFlowQueueListener.java:240)
                at
    com.sterlingcommerce.woodstock.workflow.queue.WorkFlowQueueListe
    ner.onMessage(WorkFlowQueueListener.java:197)
                at
    com.sterlingcommerce.woodstock.workflow.queue.WorkFlowQueueListe
    ner.onMessage(WorkFlowQueueListener.java:184)
                at
    com.sterlingcommerce.woodstock.workflow.queue.wfTransporter.run(
    wfTransporter.java:444)
                at
    com.sterlingcommerce.woodstock.workflow.queue.BasicExecutor$Work
    er.run(BasicExecutor.java:508)
                at java.lang.Thread.run(Thread.java:812)
    
    Platforms Affected:
    All
    

Problem conclusion

  • Resolution Summary:
    A code fix is provided.
    Recently added code was suppose to handle all values for :
    //Symmetric alg identifiers.
      //I can only get CBC mode and these algs to work with
    trustpoint's PKCS7,
      //so that's all we support for now.
       SYMMETRIC_ALG_3DES_168_CBC_PKCS5 =0;
      SYMMETRIC_ALG_DES_56_CBC_PKCS5 =1;
      SYMMETRIC_ALG_RC2_128_CBC_PKCS5 =2;
       SYMMETRIC_ALG_RC2_128_CBC_NONE =3;
     SYMMETRIC_ALG_RC2_40_CBC_PKCS5 =4;
     SYMMETRIC_ALG_RC2_40_CBC_NONE = 5;
       SYMMETRIC_ALG_AES_128_CBC_PKCS5 =6;
        SYMMETRIC_ALG_AES_192_CBC_PKCS5 =7;
         SYMMETRIC_ALG_AES_256_CBC_PKCS5 =8;
    
    There were few issues in handling all cases causing exception
    while processing.
    
    
    Delivered in:
    5020604_4
    5020605_2
    6000302
    6000202
    

Temporary fix

Comments

APAR Information

  • APAR number

    IT31947

  • Reported component name

    STR B2B INTEGRA

  • Reported component ID

    5725D0600

  • Reported release

    526

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt / Xsystem

  • Submitted date

    2020-02-21

  • Closed date

    2020-03-24

  • Last modified date

    2020-09-02

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    STR B2B INTEGRA

  • Fixed component ID

    5725D0600

Applicable component levels

[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SS3JSW","label":"IBM Sterling B2B Integrator"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"5.2.6","Line of Business":{"code":"LOB02","label":"AI Applications"}}]

Document Information

Modified date:
03 September 2020