Closed borisdagnon closed 6 months ago
It is recommended to update to the latest version of OpenAS2 3.6.0. Support for TLS 1.0 & TLS 1.1 has been deprecated by many AS2 vendors since 2020.
On Fri, Feb 23, 2024 at 6:45 AM Dagnon Boris @.***> wrote:
Hi, I'm using OpenAS2 2.0.0 And When i receive messages from my partner, i have this issue:
02/23/24 11:34:25 OpenAS2Exception: Error occurred:: no cipher suites in common Sources: {} org.openas2.processor.receiver.NetException: Address = /52.48.40.153 port = 35566 at org.openas2.processor.receiver.AS2ReceiverHandler.handle(AS2ReceiverHandler.java:87) at org.openas2.processor.receiver.NetModule$ConnectionThread.run(NetModule.java:148) Caused by: javax.net.ssl.SSLHandshakeException: no cipher suites in common at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1904) at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:279) at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:269) at sun.security.ssl.ServerHandshaker.chooseCipherSuite(ServerHandshaker.java:901) at sun.security.ssl.ServerHandshaker.clientHello(ServerHandshaker.java:629) at sun.security.ssl.ServerHandshaker.processMessage(ServerHandshaker.java:167) at sun.security.ssl.Handshaker.processLoop(Handshaker.java:913) at sun.security.ssl.Handshaker.process_record(Handshaker.java:849) at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1023) at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1332) at sun.security.ssl.SSLSocketImpl.readDataRecord(SSLSocketImpl.java:889) at sun.security.ssl.AppInputStream.read(AppInputStream.java:102) at java.io.BufferedInputStream.fill(BufferedInputStream.java:235) at java.io.BufferedInputStream.read(BufferedInputStream.java:254) at org.openas2.util.HTTPUtil.readRequest(HTTPUtil.java:305) at org.openas2.util.HTTPUtil.readData(HTTPUtil.java:233) at org.openas2.processor.receiver.AS2ReceiverHandler.handle(AS2ReceiverHandler.java:82) ... 1 more
— Reply to this email directly, view it on GitHub https://github.com/OpenAS2/OpenAs2App/issues/358, or unsubscribe https://github.com/notifications/unsubscribe-auth/AA2QND244K4GB4V4FLCX4HTYVBXMNAVCNFSM6AAAAABDWP7SKKVHI2DSMVQWIX3LMV43ASLTON2WKOZSGE2TAOBSG42DSNQ . You are receiving this because you are subscribed to this thread.Message ID: @.***>
-- Javier Munoz
CEO
Greicodex Software
+58 2127629120 <+58+2127629120> @.*** www.greicodex.com Av Francisco Solano, Centro Solano Plaza, Oficina PHA, Caracas, Venezuela
Since this occurs with inbound messages, the cipher is chosen by your partners software. Note that TLS support is actually done by Java and not OpenAS2 so you may need to upgrade your Java version if you have not been updating your Java on the server |(the latest versions of Java only support Java 8 and up and in the not too distant future will only support 11 and up. So the solution might be different depending on what cipher is being requested by the partner end.
Hi guys, Thanks for the answers.
I migrated the OpenAs2 to version 3.9.1 and when my partner send me a file, i receive thsi error:
2024-02-27 11:07:18.280 FINE AS2ReceiverHandler: Error receiving message for inbound AS2 request. There is no data. [null] org.openas2.OpenAS2Exception: Missing data in AS2 request. at org.openas2.processor.receiver.AS2ReceiverHandler.handle(AS2ReceiverHandler.java:125) at org.openas2.processor.receiver.NetModule$ConnectionHandler.run(NetModule.java:176) at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) at java.base/java.lang.Thread.run(Thread.java:829)
2024-02-27 11:07:18.327 ERROR AS2ReceiverHandler: HTTP connection error on inbound message. Error is: No available authentication scheme [null] javax.net.ssl.SSLHandshakeException: No available authentication scheme
Enable SSL debug mode (add this to your java startup command: -Djavax.net.debug=SSL) - it should provide more specific informatiuon on exactly what the cipher is. If not then try enabling TRACE level logging in OpenAS2.
Hi After migrating to a new version of OpenAS2 i'm now having this error:
2024-03-13 15:15:58.824 FINE AS2SenderModule: Message sender invoked for log ID: [<20240313151558+0100-556-ionos_as2_prod_COTEFLUXAS2_XYZ_New Text Document.txt>]
2024-03-13 15:15:58.967 ERROR AS2SenderModule: Unknown signature type requested: SHA256withEC [<20240313151558+0100-556-ionos_as2_prod_COTEFLUXAS2_XYZ_New Text Document.txt>]
java.lang.IllegalArgumentException: Unknown signature type requested: SHA256withEC
at org.bouncycastle.operator.DefaultSignatureAlgorithmIdentifierFinder.find(Unknown Source)
at org.bouncycastle.operator.jcajce.JcaContentSignerBuilder.build(Unknown Source)
at org.bouncycastle.cms.jcajce.JcaSimpleSignerInfoGeneratorBuilder$NamedHelper.createContentSigner(Unknown Source)
at org.bouncycastle.cms.jcajce.JcaSimpleSignerInfoGeneratorBuilder.build(Unknown Source)
at org.openas2.lib.helper.BCCryptoHelper.sign(BCCryptoHelper.java:305)
at org.openas2.processor.sender.AS2SenderModule.secure(AS2SenderModule.java:356)
at org.openas2.processor.sender.AS2SenderModule.handle(AS2SenderModule.java:104)
at org.openas2.processor.DefaultProcessor.handle(DefaultProcessor.java:55)
at org.openas2.processor.receiver.MessageBuilderModule.processDocument(MessageBuilderModule.java:233)
at org.openas2.processor.receiver.MessageBuilderModule.processDocument(MessageBuilderModule.java:114)
at org.openas2.processor.receiver.DirectoryPollingModule.processFile(DirectoryPollingModule.java:270)
at org.openas2.processor.receiver.DirectoryPollingModule.processSingleFile(DirectoryPollingModule.java:206)
at org.openas2.processor.receiver.DirectoryPollingModule.updateTracking(DirectoryPollingModule.java:254)
at org.openas2.processor.receiver.DirectoryPollingModule.poll(DirectoryPollingModule.java:113)
at org.openas2.processor.receiver.PollingModule$PollTask.run(PollingModule.java:61)
at java.base/java.util.TimerThread.mainLoop(Timer.java:556)
at java.base/java.util.TimerThread.run(Timer.java:506)
2024-03-13 15:15:59.088 ERROR MessageBuilderModule: Fatal error sending message: null
org.openas2.OpenAS2Exception: Error setting up message for sending.
at org.openas2.processor.sender.AS2SenderModule.handle(AS2SenderModule.java:116)
at org.openas2.processor.DefaultProcessor.handle(DefaultProcessor.java:55)
at org.openas2.processor.receiver.MessageBuilderModule.processDocument(MessageBuilderModule.java:233)
at org.openas2.processor.receiver.MessageBuilderModule.processDocument(MessageBuilderModule.java:114)
at org.openas2.processor.receiver.DirectoryPollingModule.processFile(DirectoryPollingModule.java:270)
at org.openas2.processor.receiver.DirectoryPollingModule.processSingleFile(DirectoryPollingModule.java:206)
at org.openas2.processor.receiver.DirectoryPollingModule.updateTracking(DirectoryPollingModule.java:254)
at org.openas2.processor.receiver.DirectoryPollingModule.poll(DirectoryPollingModule.java:113)
at org.openas2.processor.receiver.PollingModule$PollTask.run(PollingModule.java:61)
at java.base/java.util.TimerThread.mainLoop(Timer.java:556)
at java.base/java.util.TimerThread.run(Timer.java:506)
Caused by: java.lang.IllegalArgumentException: Unknown signature type requested: SHA256withEC
at org.bouncycastle.operator.DefaultSignatureAlgorithmIdentifierFinder.find(Unknown Source)
at org.bouncycastle.operator.jcajce.JcaContentSignerBuilder.build(Unknown Source)
at org.bouncycastle.cms.jcajce.JcaSimpleSignerInfoGeneratorBuilder$NamedHelper.createContentSigner(Unknown Source)
at org.bouncycastle.cms.jcajce.JcaSimpleSignerInfoGeneratorBuilder.build(Unknown Source)
at org.openas2.lib.helper.BCCryptoHelper.sign(BCCryptoHelper.java:305)
at org.openas2.processor.sender.AS2SenderModule.secure(AS2SenderModule.java:356)
at org.openas2.processor.sender.AS2SenderModule.handle(AS2SenderModule.java:104)
... 10 more
[<20240313151558+0100-556-ionos_as2_prod_COTEFLUXAS2_XYZ_New Text Document.txt>]
org.openas2.processor.ProcessorException: null
org.openas2.OpenAS2Exception: Error setting up message for sending.
at org.openas2.processor.sender.AS2SenderModule.handle(AS2SenderModule.java:116)
at org.openas2.processor.DefaultProcessor.handle(DefaultProcessor.java:55)
at org.openas2.processor.receiver.MessageBuilderModule.processDocument(MessageBuilderModule.java:233)
at org.openas2.processor.receiver.MessageBuilderModule.processDocument(MessageBuilderModule.java:114)
at org.openas2.processor.receiver.DirectoryPollingModule.processFile(DirectoryPollingModule.java:270)
at org.openas2.processor.receiver.DirectoryPollingModule.processSingleFile(DirectoryPollingModule.java:206)
at org.openas2.processor.receiver.DirectoryPollingModule.updateTracking(DirectoryPollingModule.java:254)
at org.openas2.processor.receiver.DirectoryPollingModule.poll(DirectoryPollingModule.java:113)
at org.openas2.processor.receiver.PollingModule$PollTask.run(PollingModule.java:61)
at java.base/java.util.TimerThread.mainLoop(Timer.java:556)
at java.base/java.util.TimerThread.run(Timer.java:506)
Caused by: java.lang.IllegalArgumentException: Unknown signature type requested: SHA256withEC
at org.bouncycastle.operator.DefaultSignatureAlgorithmIdentifierFinder.find(Unknown Source)
at org.bouncycastle.operator.jcajce.JcaContentSignerBuilder.build(Unknown Source)
at org.bouncycastle.cms.jcajce.JcaSimpleSignerInfoGeneratorBuilder$NamedHelper.createContentSigner(Unknown Source)
at org.bouncycastle.cms.jcajce.JcaSimpleSignerInfoGeneratorBuilder.build(Unknown Source)
at org.openas2.lib.helper.BCCryptoHelper.sign(BCCryptoHelper.java:305)
at org.openas2.processor.sender.AS2SenderModule.secure(AS2SenderModule.java:356)
at org.openas2.processor.sender.AS2SenderModule.handle(AS2SenderModule.java:104)
... 10 more
at org.openas2.processor.DefaultProcessor.handle(DefaultProcessor.java:58)
at org.openas2.processor.receiver.MessageBuilderModule.processDocument(MessageBuilderModule.java:233)
at org.openas2.processor.receiver.MessageBuilderModule.processDocument(MessageBuilderModule.java:114)
at org.openas2.processor.receiver.DirectoryPollingModule.processFile(DirectoryPollingModule.java:270)
at org.openas2.processor.receiver.DirectoryPollingModule.processSingleFile(DirectoryPollingModule.java:206)
at org.openas2.processor.receiver.DirectoryPollingModule.updateTracking(DirectoryPollingModule.java:254)
at org.openas2.processor.receiver.DirectoryPollingModule.poll(DirectoryPollingModule.java:113)
at org.openas2.processor.receiver.PollingModule$PollTask.run(PollingModule.java:61)
at java.base/java.util.TimerThread.mainLoop(Timer.java:556)
at java.base/java.util.TimerThread.run(Timer.java:506)
Your certificarte was created using the Eliptic Curve algorithm. Currently that is not supported in OpenAS2. You should use the RSA algorithm.
2024-03-13 15:15:58.967 ERROR AS2SenderModule: Unknown signature type requested: SHA256withEC
... or use version 3.10.0 which I just released specifically to support Elliptioc Curve (ECDSA)
Hi thank you for the version supporting ECDSA I'm facing an issue.
2024-03-20 21:23:35.491 FINE DirectoryPollingModule: Processing file: /home/boris/OpenAS2Server-3.10.0/bin/../config/../data/outbox/SAMATDEV/samatde
v_envoi/test
2024-03-20 21:23:36.154 FINE MessageBuilderModule: File assigned to message: 20240320212335+0000-505-coteflux_xyz_samat_as2_dev_test [<2024032021233
5+0000-505-coteflux_xyz_samat_as2_dev_test>]
2024-03-20 21:23:36.155 FINE AS2SenderModule: Message sender invoked for log ID: [<20240320212335+0000-505-coteflux_xyz_samat_as2_dev_test>]
2024-03-20 21:23:36.470 FINE AS2SenderModule: Save Original mic & message id information into file: /home/boris/OpenAS2Server-3.10.0/bin/../config/.
./data/pendinginfoMDN3/20240320212335+0000-505-coteflux_xyz_samat_as2_dev_test [<20240320212335+0000-505-coteflux_xyz_samat_as2_dev_test>]
2024-03-20 21:23:36.659 FINE AS2SenderModule: Connecting to: http://cotefluxas2.xyz:10080 [<20240320212335+0000-505-coteflux_xyz_samat_as2_dev_test>
]
2024-03-20 21:23:37.260 FINE AS2ReceiverHandler: received 1782 bytes in 0.6 seconds at 290.40 KBps 178.128.205.103 45436 [<20240320212335+0000-505-c
oteflux_xyz_samat_as2_dev_test>]
2024-03-20 21:23:37.284 ERROR AS2ReceiverHandler: Error extracting received message: null [<20240320212335+0000-505-coteflux_xyz_samat_as2_dev_test>
]
org.openas2.OpenAS2Exception: The private key was not found for alias. Check that the private key has been added to the keystore for the alias: sama
t_2024
at org.openas2.cert.PKCS12CertificateFactory.getPrivateKey(PKCS12CertificateFactory.java:111)
at org.openas2.processor.receiver.AS2ReceiverHandler.decryptAndVerify(AS2ReceiverHandler.java:336)
at org.openas2.processor.receiver.AS2ReceiverHandler.handle(AS2ReceiverHandler.java:210)
at org.openas2.processor.receiver.NetModule$ConnectionHandler.run(NetModule.java:176)
at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1136)
at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:635)
at java.base/java.lang.Thread.run(Thread.java:840)
2024-03-20 21:23:37.301 FINE AS2SenderModule: Message sent and response received in 127 milliseconds [<20240320212335+0000-505-coteflux_xyz_samat_as
2_dev_test>]
2024-03-20 21:23:37.302 ERROR OpenAS2Exception: Error occurred:: The private key was not found for alias. Check that the private key has been added
to the keystore for the alias: samat_2024
Sources: {message=Message From:{as2_id=coteflux_xyz, name=coteflux_xyz, email=support@blueway.fr, x509_alias=coteflux_2024}To:{as2_id=samatas2
dev, name=samat_as2_dev, email=tota, x509_alias=samat_2024}
Headers:{Content-Type=application/pkcs7-mime; name="smime.p7m"; smime-type=enveloped-data, Content-Length=1782, Date=Wed, 20 Mar 2024 21:23:36 +0000
, From=support@blueway.fr, Message-ID=<20240320212335+0000-505-coteflux_xyz_samat_as2_dev_test>, Subject=File test sent from coteflux_xyz to samat_a
s2_dev, Mime-Version=1.0, Connection=close, TE, User-Agent=OpenAS2 Server v3.10.0 (AS2SenderModule), AS2-Version=1.1, Recipient-Address=http://cotef
luxas2.xyz:10080, AS2-To=samat_as2_dev, AS2-From=coteflux_xyz, Disposition-Notification-To=http://109.7.55.214:8352, Disposition-Notification-Option
s=signed-receipt-protocol=optional, pkcs7-signature; signed-receipt-micalg=optional, SHA1, Content-Disposition=null, Transfer-Encoding=chunked, Host
=cotefluxas2.xyz:10080, Accept-Encoding=gzip,deflate}
Attributes:{HTTP_REQUEST_TYPE=POST, destination_ip=/178.128.205.103, destination_port=10080, HTTP_REQUEST_URL=/, source_port=45436, source_ip=/178.1
28.205.103}
MDN:MDN From:{as2_id=samat_as2_dev, name=samat_as2_dev, email=tota, x509_alias=samat_2024}To:{as2_id=coteflux_xyz, name=coteflux_xyz, email=support@
blueway.fr, x509_alias=coteflux_2024}
Headers:{Date=Wed, 20 Mar 2024 21:23:37 +0000, From=tota, Subject=File null sent from coteflux_xyz to samat_as2_dev, MIME-Version=1.0, AS2-To=cotefl
ux_xyz, AS2-From=samat_as2_dev, AS2-Version=1.1, Connection=close, TE, User-Agent=OpenAS2 Server v3.10.0, Server=OpenAS2 Server v3.10.0}
Attributes:{FINAL_RECIPIENT=rfc822; samat_as2_dev, MIC=null, REPORTING_UA=OpenAS2 Server v3.10.0@/178.128.205.103:10080, ORIGINAL_MESSAGE_ID=<202403
20212335+0000-505-coteflux_xyz_samat_as2_dev_test>, ORIGINAL_RECIPIENT=rfc822; samat_as2_dev, DISPOSITION=automatic-action/MDN-sent-automatically; p
rocessed/Error:decryption-failed}
Text:
The message sent to Recipient samat_as2_dev on Wed, 20 Mar 2024 21:23:36 +0000 with Subject File test sent from coteflux_xyz to samat_as2_dev has be
en received, but an error occured decrypting the content.
}
org.openas2.WrappedException: Error creating MDN
at org.openas2.processor.receiver.AS2ReceiverHandler.sendResponse(AS2ReceiverHandler.java:514)
at org.openas2.processor.receiver.AS2ReceiverHandler.handle(AS2ReceiverHandler.java:280)
at org.openas2.processor.receiver.NetModule$ConnectionHandler.run(NetModule.java:176)
at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1136)
at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:635)
at java.base/java.lang.Thread.run(Thread.java:840)
Caused by: org.openas2.OpenAS2Exception: The private key was not found for alias. Check that the private key has been added to the keystore for the
alias: samat_2024
at org.openas2.cert.PKCS12CertificateFactory.getPrivateKey(PKCS12CertificateFactory.java:111)
at org.openas2.processor.receiver.AS2ReceiverHandler.createMDNData(AS2ReceiverHandler.java:639)
at org.openas2.processor.receiver.AS2ReceiverHandler.createMDN(AS2ReceiverHandler.java:588)
at org.openas2.processor.receiver.AS2ReceiverHandler.sendResponse(AS2ReceiverHandler.java:503)
... 5 more
Have you checked the advice provided in the error log?
2024-03-20 21:23:37.302 ERROR OpenAS2Exception: Error occurred:: The private key was not found for alias. Check that the private key has been added to the keystore for the alias: samat_2024
But I'm not supposed to put the private key of my partner in my p12 keystore. Ain't It ?
Ok i found the issue, i was sending to the bad partner sorry
I'm facing this new issue
2024-03-21 19:17:16.312 WARNING HTTPUtil: The request either contained no data or has issues with the Transfer-Encoding or Content-Length: : POST / Headers: ;;Content-Length==0;;Date==Thu, 21 Mar 2024 18:17:15 +0000;;From==support@blueway.fr;;Message-ID==<20240321181714+0000-572-coteflux_xyz_ionos_as2_prod_RECADV_202402091630.edi>;;Subject==File RECADV_202402091630.edi sent from coteflux_xyz to ionos_as2_prod;;Mime-Version==1.0;;Content-Type==application/pkcs7-mime; name="smime.p7m"; smime-type=enveloped-data;;Connection==close, TE;;User-Agent==OpenAS2 Server v3.10.0 (AS2SenderModule);;AS2-Version==1.1;;Recipient-Address==http://ca60012.online-server.cloud:10080;;AS2-To==ionos_as2_prod;;AS2-From==coteflux_xyz;;Disposition-Notification-To==http://cotefluxas2.xyz:10080;;Disposition-Notification-Options==signed-receipt-protocol=optional, pkcs7-signature; signed-receipt-micalg=optional, SHA-1;;Content-Disposition==attachment;;Transfer-Encoding==chunked;;Host==ca60012.online-server.cloud:10080;;Accept-Encoding==gzip,deflate 2024-03-21 19:17:16.327 FINE AS2ReceiverHandler: Error receiving message for inbound AS2 request. There is no data. [<20240321181714+0000-572-coteflux_xyz_ionos_as2_prod_RECADV_202402091630.edi>] org.openas2.OpenAS2Exception: Missing data in AS2 request. at org.openas2.processor.receiver.AS2ReceiverHandler.handle(AS2ReceiverHandler.java:125) at org.openas2.processor.receiver.NetModule$ConnectionHandler.run(NetModule.java:176) at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) at java.base/java.lang.Thread.run(Thread.java:834)
That is expected if the endpoint is accesed with a GET request. Put the endpoint URL for your AS2 in a browser and you will see that error.
Closing due to no further activity by the reporter.
Hi, I'm using OpenAS2 2.0.0 And When i receive messages from my partner, i have this issue:
02/23/24 11:34:25 OpenAS2Exception: Error occurred:: no cipher suites in common Sources: {} org.openas2.processor.receiver.NetException: Address = /52.48.40.153 port = 35566 at org.openas2.processor.receiver.AS2ReceiverHandler.handle(AS2ReceiverHandler.java:87) at org.openas2.processor.receiver.NetModule$ConnectionThread.run(NetModule.java:148) Caused by: javax.net.ssl.SSLHandshakeException: no cipher suites in common at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1904) at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:279) at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:269) at sun.security.ssl.ServerHandshaker.chooseCipherSuite(ServerHandshaker.java:901) at sun.security.ssl.ServerHandshaker.clientHello(ServerHandshaker.java:629) at sun.security.ssl.ServerHandshaker.processMessage(ServerHandshaker.java:167) at sun.security.ssl.Handshaker.processLoop(Handshaker.java:913) at sun.security.ssl.Handshaker.process_record(Handshaker.java:849) at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1023) at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1332) at sun.security.ssl.SSLSocketImpl.readDataRecord(SSLSocketImpl.java:889) at sun.security.ssl.AppInputStream.read(AppInputStream.java:102) at java.io.BufferedInputStream.fill(BufferedInputStream.java:235) at java.io.BufferedInputStream.read(BufferedInputStream.java:254) at org.openas2.util.HTTPUtil.readRequest(HTTPUtil.java:305) at org.openas2.util.HTTPUtil.readData(HTTPUtil.java:233) at org.openas2.processor.receiver.AS2ReceiverHandler.handle(AS2ReceiverHandler.java:82) ... 1 more