App Connect

I does not work. We got NoSuchMethodException error message after upgrade from evaluate() method of PGPEncryptionNode at row 163 .

Row 163: (https://github.com/dipakpal/MyOpenTech-PGP-SupportPac/blob/master/src/IIBv10.0.0.4/v1.0.0.3/PGPSupportPacImpl/src/com/ibm/broker/supportpac/pgp/impl/PGPEncrypterNode.java)

ConfigurableService[] configurableServices = b.getConfigurableServices("UserDefined");

ConfigurableService does not exist in ACE v12. We would use Policy instead of ConfigurableService. Do you have any suggestion how we can solve this issue?

I does not work. We got NoSuchMethodException error message after upgrade from evaluate() method of PGPEncryptionNode at row 163 .

Row 163: (https://github.com/dipakpal/MyOpenTech-PGP-SupportPac/blob/master/src/IIBv10.0.0.4/v1.0.0.3/PGPSupportPacImpl/src/com/ibm/broker/supportpac/pgp/impl/PGPEncrypterNode.java)

ConfigurableService[] configurableServices = b.getConfigurableServices("UserDefined");

ConfigurableService does not exist in ACE v12. We would use Policy instead of ConfigurableService. Do you have any suggestion how we can solve this issue?

It does not work. We got NoSuchMethodException error message after upgrade from evaluate() method of PGPEncryptionNode at row 163 .

Row 163: (https://github.com/dipakpal/MyOpenTech-PGP-SupportPac/blob/master/src/IIBv10.0.0.4/v1.0.0.3/PGPSupportPacImpl/src/com/ibm/broker/supportpac/pgp/impl/PGPEncrypterNode.java)

ConfigurableService[] configurableServices = b.getConfigurableServices("UserDefined");

ConfigurableService does not exist in ACE v12. We would use Policy instead of ConfigurableService. Do you have any suggestion how we can solve this issue?

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

Hi Mattias.

We are using your version and followed the readme about the Policies.
Create the policy and deploy.
But appear this message:

Unable to resolve message: Source: Message Encryption Failed!Key: PGP Policy not found

We used different ways as copy the folder Policy on C:\ProgramData\IBM\MQSI\components\IntegreationNode\servers\ServerName\overrides\POLICY_FOLDER.

Obviously the policy not found but was created and referenced on PGP node, Exist some command to relate the policy?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

Hi Mattias.

We are using your version and followed the readme about the Policies.
Create the policy and deploy.
But appear this message:

Unable to resolve message: Source: Message Encryption Failed!Key: PGP Policy not found

We used different ways as copy the folder Policy on C:\ProgramData\IBM\MQSI\components\IntegreationNode\servers\ServerName\overrides\POLICY_FOLDER.

Obviously the policy not found but was created and referenced on PGP node, Exist some command to relate the policy?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

HI all

The error from ACE12 is:
<com.ibm.broker.plugin.MbRecoverableException class:JNI method:ImbOutputTemplateNode::processMessageAssemblyToFailure source:BIPmsgs key:2230 >

The Libs I am using is from Matt's version:
bcpg-jdk15to18-170.jar
bcprov-ext-jdk15to18-170.jar
bcprov-jdk15to18-170.jar
com.ibm.broker.supportpac.PGP.jar

The path where I set the libs are:

C:\Program Files\IBM\ACE\12.0.3.0\server\jplugin

C:\Users\user\IBM\ACET12\workspace\Configuration\PGP\Server

C:\PGP\pgpkeytool11

C:\ProgramData\IBM\MQSI\shared-classes

Java Version on ACE12 Console
C:\Program Files\IBM\ACE\12.0.3.0>java -version
java version "1.8.0_301"

Java version on Windows Command Prompt
C:\Users\user>java -version
java version "17.0.2" 2022-01-18 LTS
Java(TM) SE Runtime Environment (build 17.0.2+8-LTS-86)
Java HotSpot(TM) 64-Bit Server VM (build 17.0.2+8-LTS-86, mixed mode, sharing)

I don't know how to change the Java version on the ACE12 Console.


Also these error comes if I try to use the "java pgpkeytool encrypt" script:
C:\Program Files\IBM\ACE\12.0.3.0>java pgpkeytool encrypt -sr C:/PGP/KeyRepository/Recipient/private.pgp -pr C:/PGP/KeyRepository/Recipient/public.pgp -r "sender@gmail.com" -c AES_256 -z ZIP -o true -i true C:/PGP/Data/Example-1/mqsibackout/test.txt
Exception in thread "main" java.lang.NoClassDefFoundError: org.bouncycastle.openpgp.operator.KeyFingerPrintCalculator
at com.ibm.broker.supportpac.pgp.PGPEnvironment.initialize(PGPEnvironment.java:67)
at com.ibm.broker.supportpac.pgp.PGPCommandLineEncrypter.execute(PGPCommandLineEncrypter.java:121)
at pgpkeytool.main(pgpkeytool.java:76)
Caused by: java.lang.ClassNotFoundException: org.bouncycastle.openpgp.operator.KeyFingerPrintCalculator
at java.net.URLClassLoader.findClass(URLClassLoader.java:610)
at java.lang.ClassLoader.loadClassHelper(ClassLoader.java:945)
at java.lang.ClassLoader.loadClass(ClassLoader.java:890)
at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java:349)
at java.lang.ClassLoader.loadClass(ClassLoader.java:873)
... 3 more



Not sure what I am missing...

Thank you!

Hi Mattias.

We are using your version and followed the readme about the Policies.
Create the policy and deploy.
But appear this message:

Unable to resolve message: Source: Message Encryption Failed!Key: PGP Policy not found

We used different ways as copy the folder Policy on C:\ProgramData\IBM\MQSI\components\IntegreationNode\servers\ServerName\overrides\POLICY_FOLDER.

Obviously the policy not found but was created and referenced on PGP node, Exist some command to relate the policy?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

HI all

The error from ACE12 is:
<com.ibm.broker.plugin.MbRecoverableException class:JNI method:ImbOutputTemplateNode::processMessageAssemblyToFailure source:BIPmsgs key:2230 >

The Libs I am using is from Matt's version:
bcpg-jdk15to18-170.jar
bcprov-ext-jdk15to18-170.jar
bcprov-jdk15to18-170.jar
com.ibm.broker.supportpac.PGP.jar

The path where I set the libs are:

C:\Program Files\IBM\ACE\12.0.3.0\server\jplugin

C:\Users\user\IBM\ACET12\workspace\Configuration\PGP\Server

C:\PGP\pgpkeytool11

C:\ProgramData\IBM\MQSI\shared-classes

Java Version on ACE12 Console
C:\Program Files\IBM\ACE\12.0.3.0>java -version
java version "1.8.0_301"

Java version on Windows Command Prompt
C:\Users\user>java -version
java version "17.0.2" 2022-01-18 LTS
Java(TM) SE Runtime Environment (build 17.0.2+8-LTS-86)
Java HotSpot(TM) 64-Bit Server VM (build 17.0.2+8-LTS-86, mixed mode, sharing)

I don't know how to change the Java version on the ACE12 Console.


Also these error comes if I try to use the "java pgpkeytool encrypt" script:
C:\Program Files\IBM\ACE\12.0.3.0>java pgpkeytool encrypt -sr C:/PGP/KeyRepository/Recipient/private.pgp -pr C:/PGP/KeyRepository/Recipient/public.pgp -r "sender@gmail.com" -c AES_256 -z ZIP -o true -i true C:/PGP/Data/Example-1/mqsibackout/test.txt
Exception in thread "main" java.lang.NoClassDefFoundError: org.bouncycastle.openpgp.operator.KeyFingerPrintCalculator
at com.ibm.broker.supportpac.pgp.PGPEnvironment.initialize(PGPEnvironment.java:67)
at com.ibm.broker.supportpac.pgp.PGPCommandLineEncrypter.execute(PGPCommandLineEncrypter.java:121)
at pgpkeytool.main(pgpkeytool.java:76)
Caused by: java.lang.ClassNotFoundException: org.bouncycastle.openpgp.operator.KeyFingerPrintCalculator
at java.net.URLClassLoader.findClass(URLClassLoader.java:610)
at java.lang.ClassLoader.loadClassHelper(ClassLoader.java:945)
at java.lang.ClassLoader.loadClass(ClassLoader.java:890)
at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java:349)
at java.lang.ClassLoader.loadClass(ClassLoader.java:873)
... 3 more



Not sure what I am missing...

Thank you!

Hi Mattias.

We are using your version and followed the readme about the Policies.
Create the policy and deploy.
But appear this message:

Unable to resolve message: Source: Message Encryption Failed!Key: PGP Policy not found

We used different ways as copy the folder Policy on C:\ProgramData\IBM\MQSI\components\IntegreationNode\servers\ServerName\overrides\POLICY_FOLDER.

Obviously the policy not found but was created and referenced on PGP node, Exist some command to relate the policy?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

Hi Mattias.

We are using your version and followed the readme about the Policies.
Create the policy and deploy.
But appear this message:

Unable to resolve message: Source: Message Encryption Failed!Key: PGP Policy not found

We used different ways as copy the folder Policy on C:\ProgramData\IBM\MQSI\components\IntegreationNode\servers\ServerName\overrides\POLICY_FOLDER.

Obviously the policy not found but was created and referenced on PGP node, Exist some command to relate the policy?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

Hi Mattias.

We are using your version and followed the readme about the Policies.
Create the policy and deploy.
But appear this message:

Unable to resolve message: Source: Message Encryption Failed!Key: PGP Policy not found

We used different ways as copy the folder Policy on C:\ProgramData\IBM\MQSI\components\IntegreationNode\servers\ServerName\overrides\POLICY_FOLDER.

Obviously the policy not found but was created and referenced on PGP node, Exist some command to relate the policy?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

Hi Mattias.

We are using your version and followed the readme about the Policies.
Create the policy and deploy.
But appear this message:

Unable to resolve message: Source: Message Encryption Failed!Key: PGP Policy not found

We used different ways as copy the folder Policy on C:\ProgramData\IBM\MQSI\components\IntegreationNode\servers\ServerName\overrides\POLICY_FOLDER.

Obviously the policy not found but was created and referenced on PGP node, Exist some command to relate the policy?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

Here is the debugger image with the error. 

Hi Mattias.

We are using your version and followed the readme about the Policies.
Create the policy and deploy.
But appear this message:

Unable to resolve message: Source: Message Encryption Failed!Key: PGP Policy not found

We used different ways as copy the folder Policy on C:\ProgramData\IBM\MQSI\components\IntegreationNode\servers\ServerName\overrides\POLICY_FOLDER.

Obviously the policy not found but was created and referenced on PGP node, Exist some command to relate the policy?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

Here is the debugger image with the error. 

Hi Mattias.

We are using your version and followed the readme about the Policies.
Create the policy and deploy.
But appear this message:

Unable to resolve message: Source: Message Encryption Failed!Key: PGP Policy not found

We used different ways as copy the folder Policy on C:\ProgramData\IBM\MQSI\components\IntegreationNode\servers\ServerName\overrides\POLICY_FOLDER.

Obviously the policy not found but was created and referenced on PGP node, Exist some command to relate the policy?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

Hi Mattias.

We are using your version and followed the readme about the Policies.
Create the policy and deploy.
But appear this message:

Unable to resolve message: Source: Message Encryption Failed!Key: PGP Policy not found

We used different ways as copy the folder Policy on C:\ProgramData\IBM\MQSI\components\IntegreationNode\servers\ServerName\overrides\POLICY_FOLDER.

Obviously the policy not found but was created and referenced on PGP node, Exist some command to relate the policy?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

Also ensure that you have saved the message flow, and any nested message flows. Redeploy the new configuration to the integration node, specifying a complete configuration. If the LIL file is correct, check that the message node type is correct.

Hi Mattias.

We are using your version and followed the readme about the Policies.
Create the policy and deploy.
But appear this message:

Unable to resolve message: Source: Message Encryption Failed!Key: PGP Policy not found

We used different ways as copy the folder Policy on C:\ProgramData\IBM\MQSI\components\IntegreationNode\servers\ServerName\overrides\POLICY_FOLDER.

Obviously the policy not found but was created and referenced on PGP node, Exist some command to relate the policy?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

Runtime: If you have a configured the node to use a dedicated lilPath, copy the files from .\lib to that directory. Else copy the contents from .\lib to %MQSI_BASE_FILEPATH%\server\jplugin for windows or to $MQSI_BASE_FILEPATH/server/jplugin for linuxToolkit: Copy the contents from ./plugins to %MQSI_BASE_FILEPATH%\tools\plugins for windows or to $MQSI_BASE_FILEPATH/tools/plugins for linux

Also ensure that you have saved the message flow, and any nested message flows. Redeploy the new configuration to the integration node, specifying a complete configuration. If the LIL file is correct, check that the message node type is correct.

Hi Mattias.

We are using your version and followed the readme about the Policies.
Create the policy and deploy.
But appear this message:

Unable to resolve message: Source: Message Encryption Failed!Key: PGP Policy not found

We used different ways as copy the folder Policy on C:\ProgramData\IBM\MQSI\components\IntegreationNode\servers\ServerName\overrides\POLICY_FOLDER.

Obviously the policy not found but was created and referenced on PGP node, Exist some command to relate the policy?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

Runtime: If you have a configured the node to use a dedicated lilPath, copy the files from .\lib to that directory. Else copy the contents from .\lib to %MQSI_BASE_FILEPATH%\server\jplugin for windows or to $MQSI_BASE_FILEPATH/server/jplugin for linuxToolkit: Copy the contents from ./plugins to %MQSI_BASE_FILEPATH%\tools\plugins for windows or to $MQSI_BASE_FILEPATH/tools/plugins for linux

Also ensure that you have saved the message flow, and any nested message flows. Redeploy the new configuration to the integration node, specifying a complete configuration. If the LIL file is correct, check that the message node type is correct.

Hi Mattias.

We are using your version and followed the readme about the Policies.
Create the policy and deploy.
But appear this message:

Unable to resolve message: Source: Message Encryption Failed!Key: PGP Policy not found

We used different ways as copy the folder Policy on C:\ProgramData\IBM\MQSI\components\IntegreationNode\servers\ServerName\overrides\POLICY_FOLDER.

Obviously the policy not found but was created and referenced on PGP node, Exist some command to relate the policy?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

<com.ibm.broker.plugin.MbUserException class:com.ibm.broker.supportpac.pgp2.impl.PGPEncrypterNode method:evaluate source:Message Encryption Failed! key:\ (The system cannot find the path specified.) >

My configuration:
. I have these four jar files in this folder C:\Program Files\IBM\ACE\11.0.0.17\server\jplugin

I am looking at the java code to try to understand why is not working for me but when looking at the error above I see the package com.ibm.broker.supportpac.pgp2.impl.PGPEncrypterNode but the code that I cloned does not contain pgp2 but only pgp.

Please, any help would be really appreciated!

Regards
Antonio

Runtime: If you have a configured the node to use a dedicated lilPath, copy the files from .\lib to that directory. Else copy the contents from .\lib to %MQSI_BASE_FILEPATH%\server\jplugin for windows or to $MQSI_BASE_FILEPATH/server/jplugin for linuxToolkit: Copy the contents from ./plugins to %MQSI_BASE_FILEPATH%\tools\plugins for windows or to $MQSI_BASE_FILEPATH/tools/plugins for linux

Also ensure that you have saved the message flow, and any nested message flows. Redeploy the new configuration to the integration node, specifying a complete configuration. If the LIL file is correct, check that the message node type is correct.

Hi Mattias.

We are using your version and followed the readme about the Policies.
Create the policy and deploy.
But appear this message:

Unable to resolve message: Source: Message Encryption Failed!Key: PGP Policy not found

We used different ways as copy the folder Policy on C:\ProgramData\IBM\MQSI\components\IntegreationNode\servers\ServerName\overrides\POLICY_FOLDER.

Obviously the policy not found but was created and referenced on PGP node, Exist some command to relate the policy?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

<com.ibm.broker.plugin.MbUserException class:com.ibm.broker.supportpac.pgp2.impl.PGPEncrypterNode method:evaluate source:Message Encryption Failed! key:\ (The system cannot find the path specified.) >

My configuration:
. I have these four jar files in this folder C:\Program Files\IBM\ACE\11.0.0.17\server\jplugin

I am looking at the java code to try to understand why is not working for me but when looking at the error above I see the package com.ibm.broker.supportpac.pgp2.impl.PGPEncrypterNode but the code that I cloned does not contain pgp2 but only pgp.

Please, any help would be really appreciated!

Regards
Antonio

Runtime: If you have a configured the node to use a dedicated lilPath, copy the files from .\lib to that directory. Else copy the contents from .\lib to %MQSI_BASE_FILEPATH%\server\jplugin for windows or to $MQSI_BASE_FILEPATH/server/jplugin for linuxToolkit: Copy the contents from ./plugins to %MQSI_BASE_FILEPATH%\tools\plugins for windows or to $MQSI_BASE_FILEPATH/tools/plugins for linux

Also ensure that you have saved the message flow, and any nested message flows. Redeploy the new configuration to the integration node, specifying a complete configuration. If the LIL file is correct, check that the message node type is correct.

Hi Mattias.

We are using your version and followed the readme about the Policies.
Create the policy and deploy.
But appear this message:

Unable to resolve message: Source: Message Encryption Failed!Key: PGP Policy not found

We used different ways as copy the folder Policy on C:\ProgramData\IBM\MQSI\components\IntegreationNode\servers\ServerName\overrides\POLICY_FOLDER.

Obviously the policy not found but was created and referenced on PGP node, Exist some command to relate the policy?

We are trying to use Matthias Blomme's new version, I had to rebuild it in Java8 and sign it as ACE12 needs jars signed. We are stuck with this because we get this kind of error message after signing with a CAPKI certificate:

BIP4394E: Java exception: 'com.ibm.broker.plugin.MbUserException'; thrown from class name: 'com.ibm.broker.supportpac.pgp.impl.PGPEncrypterNode', method name: 'evaluate', file: 'PGPEncrypterNode.java', line: '532'; trace text: 'JCE cannot authenticate the provider BC';  resource bundle: 'Message Encryption Failed!'; key: 'JCE cannot authenticate the provider BC'; inserts(optional): '{8}', '{9}', '{10}', '{11}', '{12}', '{13}', '{14}', '{15}', '{16}', '{17}'

I did try to convert from Configurable services to Policies. but still not working...

does anybody implement successfully?

Hi all

Something strange, since the upgrade to 12.0.8.0 the pgp node is not working anymore, it complains about method not found for
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)

The full error:
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)Ljava/math/BigInteger; (loaded from file:/D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar by com.ibm.broker.classloading.BrokerClassLoader@d88750c6) called from class org.bouncycastle.bcpg.RSASecretBCPGKey (loaded from file:/D:/IBM/mqsi/Nodes/config/PSAAEDIIIBTEST/Apipro-GFS/shared-classes/bcpg-jdk15to18-170.jar by com.ibm.broker.classloading.SharedClassLoader@5f9c5ec7).

The issue here is that it takes the BigIntegers.modOddInverse from an old MQ library: D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar that indeed does not contain modOddInverse. 

My bouncycastle libraries are located on the system shared-classes directory so they should be read before the mq libraries.
After switching back to 12.0.7.0 the issue is solved, so there is something going wrong with the classloader in 12.0.8.0

If anyone has any idea, feel free to share but I will take this up with IBM support and keep you posted.

Thank you Matthias for letting me know about it so I will not upgrade to 12.0.8.0 version until we have a solution. 
Please keep us posted once you hear back from IBM. 

Hi all

Something strange, since the upgrade to 12.0.8.0 the pgp node is not working anymore, it complains about method not found for
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)

The full error:
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)Ljava/math/BigInteger; (loaded from file:/D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar by com.ibm.broker.classloading.BrokerClassLoader@d88750c6) called from class org.bouncycastle.bcpg.RSASecretBCPGKey (loaded from file:/D:/IBM/mqsi/Nodes/config/PSAAEDIIIBTEST/Apipro-GFS/shared-classes/bcpg-jdk15to18-170.jar by com.ibm.broker.classloading.SharedClassLoader@5f9c5ec7).

The issue here is that it takes the BigIntegers.modOddInverse from an old MQ library: D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar that indeed does not contain modOddInverse. 

My bouncycastle libraries are located on the system shared-classes directory so they should be read before the mq libraries.
After switching back to 12.0.7.0 the issue is solved, so there is something going wrong with the classloader in 12.0.8.0

If anyone has any idea, feel free to share but I will take this up with IBM support and keep you posted.

Hi all

So, with 12.0.8.0 I got it to work by adding the correct jar file inside the ace application. But that is not a good fix since it requires rebuilds.

Preliminary testing with 12.0.9.0 are positive, so it seems that whatever was wrong in 12.0.8.0 has been fixed in 12.0.9.0.

I have asked IBM on confirmation and what has changed between mod release 7, 8 and 9. Will keep you posted!

------------------------------
Regards
Matthias Blomme

Original Message:
Sent: Thu May 25, 2023 12:01 PM
From: Lokesh Bonthula
Subject: How to use PGP encryption on IBM ACE v12

Thank you Matthias for letting me know about it so I will not upgrade to 12.0.8.0 version until we have a solution. 
Please keep us posted once you hear back from IBM. 

------------------------------
Lokesh Bonthula

Original Message:
Sent: Mon May 22, 2023 04:50 AM
From: Matthias Blomme
Subject: How to use PGP encryption on IBM ACE v12

Hi all

Something strange, since the upgrade to 12.0.8.0 the pgp node is not working anymore, it complains about method not found for
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)

The full error:
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)Ljava/math/BigInteger; (loaded from file:/D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar by com.ibm.broker.classloading.BrokerClassLoader@d88750c6) called from class org.bouncycastle.bcpg.RSASecretBCPGKey (loaded from file:/D:/IBM/mqsi/Nodes/config/PSAAEDIIIBTEST/Apipro-GFS/shared-classes/bcpg-jdk15to18-170.jar by com.ibm.broker.classloading.SharedClassLoader@5f9c5ec7).

The issue here is that it takes the BigIntegers.modOddInverse from an old MQ library: D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar that indeed does not contain modOddInverse. 

My bouncycastle libraries are located on the system shared-classes directory so they should be read before the mq libraries.
After switching back to 12.0.7.0 the issue is solved, so there is something going wrong with the classloader in 12.0.8.0

If anyone has any idea, feel free to share but I will take this up with IBM support and keep you posted.

------------------------------
Regards
Matthias Blomme

Original Message:
Sent: Wed November 24, 2021 06:25 PM
From: Lokesh Bonthula
Subject: How to use PGP encryption on IBM ACE v12

I used PGP support pack for IBM Integration Bus V9 and also V10. I am doing a POC to migrate IIBV10 to IBM ACE v12. 
PGP link for IIB V9 and V10 : GitHub - dipakpal/MyOpenTech-PGP-SupportPac: PGP SupportPac for IBM Integration Bus
I did the backup of Node and extract components on IBM ACE v12. All the integrations server and flows were up and running fine. 
When looked at the PGP support pack for IBM ACE V12 I couldn't find any. Has anyone faced this issue and how to overcome . 

Any information or suggestions would be a great help 
Thanks

------------------------------
Lokesh Bonthula
------------------------------

Hi all

So, with 12.0.8.0 I got it to work by adding the correct jar file inside the ace application. But that is not a good fix since it requires rebuilds.

Preliminary testing with 12.0.9.0 are positive, so it seems that whatever was wrong in 12.0.8.0 has been fixed in 12.0.9.0.

I have asked IBM on confirmation and what has changed between mod release 7, 8 and 9. Will keep you posted!

Thank you Matthias for letting me know about it so I will not upgrade to 12.0.8.0 version until we have a solution. 
Please keep us posted once you hear back from IBM. 

Hi all

Something strange, since the upgrade to 12.0.8.0 the pgp node is not working anymore, it complains about method not found for
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)

The full error:
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)Ljava/math/BigInteger; (loaded from file:/D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar by com.ibm.broker.classloading.BrokerClassLoader@d88750c6) called from class org.bouncycastle.bcpg.RSASecretBCPGKey (loaded from file:/D:/IBM/mqsi/Nodes/config/PSAAEDIIIBTEST/Apipro-GFS/shared-classes/bcpg-jdk15to18-170.jar by com.ibm.broker.classloading.SharedClassLoader@5f9c5ec7).

The issue here is that it takes the BigIntegers.modOddInverse from an old MQ library: D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar that indeed does not contain modOddInverse. 

My bouncycastle libraries are located on the system shared-classes directory so they should be read before the mq libraries.
After switching back to 12.0.7.0 the issue is solved, so there is something going wrong with the classloader in 12.0.8.0

If anyone has any idea, feel free to share but I will take this up with IBM support and keep you posted.

Hi all

So, with 12.0.8.0 I got it to work by adding the correct jar file inside the ace application. But that is not a good fix since it requires rebuilds.

Preliminary testing with 12.0.9.0 are positive, so it seems that whatever was wrong in 12.0.8.0 has been fixed in 12.0.9.0.

I have asked IBM on confirmation and what has changed between mod release 7, 8 and 9. Will keep you posted!

Thank you Matthias for letting me know about it so I will not upgrade to 12.0.8.0 version until we have a solution. 
Please keep us posted once you hear back from IBM. 

Hi all

Something strange, since the upgrade to 12.0.8.0 the pgp node is not working anymore, it complains about method not found for
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)

The full error:
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)Ljava/math/BigInteger; (loaded from file:/D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar by com.ibm.broker.classloading.BrokerClassLoader@d88750c6) called from class org.bouncycastle.bcpg.RSASecretBCPGKey (loaded from file:/D:/IBM/mqsi/Nodes/config/PSAAEDIIIBTEST/Apipro-GFS/shared-classes/bcpg-jdk15to18-170.jar by com.ibm.broker.classloading.SharedClassLoader@5f9c5ec7).

The issue here is that it takes the BigIntegers.modOddInverse from an old MQ library: D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar that indeed does not contain modOddInverse. 

My bouncycastle libraries are located on the system shared-classes directory so they should be read before the mq libraries.
After switching back to 12.0.7.0 the issue is solved, so there is something going wrong with the classloader in 12.0.8.0

If anyone has any idea, feel free to share but I will take this up with IBM support and keep you posted.

Hi all

So, with 12.0.8.0 I got it to work by adding the correct jar file inside the ace application. But that is not a good fix since it requires rebuilds.

Preliminary testing with 12.0.9.0 are positive, so it seems that whatever was wrong in 12.0.8.0 has been fixed in 12.0.9.0.

I have asked IBM on confirmation and what has changed between mod release 7, 8 and 9. Will keep you posted!

Thank you Matthias for letting me know about it so I will not upgrade to 12.0.8.0 version until we have a solution. 
Please keep us posted once you hear back from IBM. 

Hi all

Something strange, since the upgrade to 12.0.8.0 the pgp node is not working anymore, it complains about method not found for
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)

The full error:
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)Ljava/math/BigInteger; (loaded from file:/D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar by com.ibm.broker.classloading.BrokerClassLoader@d88750c6) called from class org.bouncycastle.bcpg.RSASecretBCPGKey (loaded from file:/D:/IBM/mqsi/Nodes/config/PSAAEDIIIBTEST/Apipro-GFS/shared-classes/bcpg-jdk15to18-170.jar by com.ibm.broker.classloading.SharedClassLoader@5f9c5ec7).

The issue here is that it takes the BigIntegers.modOddInverse from an old MQ library: D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar that indeed does not contain modOddInverse. 

My bouncycastle libraries are located on the system shared-classes directory so they should be read before the mq libraries.
After switching back to 12.0.7.0 the issue is solved, so there is something going wrong with the classloader in 12.0.8.0

If anyone has any idea, feel free to share but I will take this up with IBM support and keep you posted.

Hi Matthias,

Can you let me know how to create Public keys and private Keys for the PGP encryption on CP4i Environment.

Thanks

Ragesh 

Hi all

So, with 12.0.8.0 I got it to work by adding the correct jar file inside the ace application. But that is not a good fix since it requires rebuilds.

Preliminary testing with 12.0.9.0 are positive, so it seems that whatever was wrong in 12.0.8.0 has been fixed in 12.0.9.0.

I have asked IBM on confirmation and what has changed between mod release 7, 8 and 9. Will keep you posted!

Thank you Matthias for letting me know about it so I will not upgrade to 12.0.8.0 version until we have a solution. 
Please keep us posted once you hear back from IBM. 

Hi all

Something strange, since the upgrade to 12.0.8.0 the pgp node is not working anymore, it complains about method not found for
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)

The full error:
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)Ljava/math/BigInteger; (loaded from file:/D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar by com.ibm.broker.classloading.BrokerClassLoader@d88750c6) called from class org.bouncycastle.bcpg.RSASecretBCPGKey (loaded from file:/D:/IBM/mqsi/Nodes/config/PSAAEDIIIBTEST/Apipro-GFS/shared-classes/bcpg-jdk15to18-170.jar by com.ibm.broker.classloading.SharedClassLoader@5f9c5ec7).

The issue here is that it takes the BigIntegers.modOddInverse from an old MQ library: D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar that indeed does not contain modOddInverse. 

My bouncycastle libraries are located on the system shared-classes directory so they should be read before the mq libraries.
After switching back to 12.0.7.0 the issue is solved, so there is something going wrong with the classloader in 12.0.8.0

If anyone has any idea, feel free to share but I will take this up with IBM support and keep you posted.

Haven't done that. But this seems like a good place to start (I think you need to upload them, not create them)

ibm.com/docs/en/app-connect/containers_cd?topic=types-truststore-certificate-type

Hi Matthias,

Can you let me know how to create Public keys and private Keys for the PGP encryption on CP4i Environment.

Thanks

Ragesh 

Hi all

So, with 12.0.8.0 I got it to work by adding the correct jar file inside the ace application. But that is not a good fix since it requires rebuilds.

Preliminary testing with 12.0.9.0 are positive, so it seems that whatever was wrong in 12.0.8.0 has been fixed in 12.0.9.0.

I have asked IBM on confirmation and what has changed between mod release 7, 8 and 9. Will keep you posted!

Thank you Matthias for letting me know about it so I will not upgrade to 12.0.8.0 version until we have a solution. 
Please keep us posted once you hear back from IBM. 

Hi all

Something strange, since the upgrade to 12.0.8.0 the pgp node is not working anymore, it complains about method not found for
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)

The full error:
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)Ljava/math/BigInteger; (loaded from file:/D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar by com.ibm.broker.classloading.BrokerClassLoader@d88750c6) called from class org.bouncycastle.bcpg.RSASecretBCPGKey (loaded from file:/D:/IBM/mqsi/Nodes/config/PSAAEDIIIBTEST/Apipro-GFS/shared-classes/bcpg-jdk15to18-170.jar by com.ibm.broker.classloading.SharedClassLoader@5f9c5ec7).

The issue here is that it takes the BigIntegers.modOddInverse from an old MQ library: D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar that indeed does not contain modOddInverse. 

My bouncycastle libraries are located on the system shared-classes directory so they should be read before the mq libraries.
After switching back to 12.0.7.0 the issue is solved, so there is something going wrong with the classloader in 12.0.8.0

If anyone has any idea, feel free to share but I will take this up with IBM support and keep you posted.

Hi, This may be very silly question to ask. but we are getting a error while trying the pgpkeytool utility.

can you please guide me on what i am missing . or point me to the correct pgpkeytool utility on the Github.

Haven't done that. But this seems like a good place to start (I think you need to upload them, not create them)

ibm.com/docs/en/app-connect/containers_cd?topic=types-truststore-certificate-type

Hi Matthias,

Can you let me know how to create Public keys and private Keys for the PGP encryption on CP4i Environment.

Thanks

Ragesh 

Hi all

So, with 12.0.8.0 I got it to work by adding the correct jar file inside the ace application. But that is not a good fix since it requires rebuilds.

Preliminary testing with 12.0.9.0 are positive, so it seems that whatever was wrong in 12.0.8.0 has been fixed in 12.0.9.0.

I have asked IBM on confirmation and what has changed between mod release 7, 8 and 9. Will keep you posted!

Thank you Matthias for letting me know about it so I will not upgrade to 12.0.8.0 version until we have a solution. 
Please keep us posted once you hear back from IBM. 

Hi all

Something strange, since the upgrade to 12.0.8.0 the pgp node is not working anymore, it complains about method not found for
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)

The full error:
org/bouncycastle/util/BigIntegers.modOddInverse(Ljava/math/BigInteger;Ljava/math/BigInteger;)Ljava/math/BigInteger; (loaded from file:/D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar by com.ibm.broker.classloading.BrokerClassLoader@d88750c6) called from class org.bouncycastle.bcpg.RSASecretBCPGKey (loaded from file:/D:/IBM/mqsi/Nodes/config/PSAAEDIIIBTEST/Apipro-GFS/shared-classes/bcpg-jdk15to18-170.jar by com.ibm.broker.classloading.SharedClassLoader@5f9c5ec7).

The issue here is that it takes the BigIntegers.modOddInverse from an old MQ library: D:/IBM/WMQ/java/lib/bcprov-jdk15on.jar that indeed does not contain modOddInverse. 

My bouncycastle libraries are located on the system shared-classes directory so they should be read before the mq libraries.
After switching back to 12.0.7.0 the issue is solved, so there is something going wrong with the classloader in 12.0.8.0

If anyone has any idea, feel free to share but I will take this up with IBM support and keep you posted.