Skip to Content
0

PGP decryption issues.

Feb 06 at 11:10 AM

77

avatar image

Hi

Im currently relocating a number of interfaces from BizTalk to PI, one of the interfaces (concur) has pgp decrypt on it. I've imported the keys to NWA, references them in the pgpmodule settings in pi and get this most onerous of messages, I've checked for typo's, recreated it, and cleared the cache, I'm able to find the file in question using a regex but when it comes to decrypting the file, I get the below error and I've not found anything similar on scn, hence this post. Any ideas?

'

MP: exception caught with cause javax.ejb.TransactionRolledbackLocalException: Error occurred: ; nested exception is: javax.ejb.EJBTransactionRolledbackException: Transaction ended with error, reason: ; nested exception is: javax.ejb.EJBException: ASJ.ejb.005043 (Failed in component: sap.com/com.sap.aii.adapter.pgp.app, BC-XI-CON-B2B) Exception raised from invocation of public com.sap.aii.af.lib.mp.module.ModuleData com.sap.aii.adapter.pgp.ejb.api.PGPDecryptionBean.process(com.sap.aii.af.lib.mp.module.ModuleContext,com.sap.aii.af.lib.mp.module.ModuleData) throws com.sap.aii.af.lib.mp.module.ModuleException method on bean instance com.sap.aii.adapter.pgp.ejb.api.PGPDecryptionBean@14680ed9 for bean sap.com/com.sap.aii.adapter.pgp.app*xml|com.sap.aii.adapter.pgp.ejb.jar*xml|PGPDecryption in application sap.com/com.sap.aii.adapter.pgp.app.; nested exception is: java.lang.NullPointerException: while trying to invoke the method com.sap.aii.adapter.pgp.ejb.api.util.PGPDecModuleUtil.addAuditLogEntry(com.sap.engine.interfaces.messaging.api.auditlog.AuditLogStatus, java.lang.String, java.lang.Object[]) of a null object loaded from a local variable at slot 4

'


The file exists on the sftp site, the file is not empty and ive set adaptor to process emptys anyway. cusersgeorge-applegatedesktopconcurerror.png

I can only think that the pgp keys used for BizTalk are somehow not compatible with PI and that I should generate new PI public keys and share them with concur.

10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

1 Answer

Best Answer
Mate Moricz
Feb 06 at 12:16 PM
0

Hi George,


You should change the module order. The CallSAPAdapter should be the last.


Best regards,

Mate

Show 5 Share
10 |10000 characters needed characters left characters exceeded

Thanks Mate, did this and things started to look better, but now get :

Error: java.io.FileNotFoundException: \\sap-d4-xi-s01\sapmnt\PD4\JO2\sec\MITIE_BIZTALK_PGP_Secret_Key.asc (The system cannot find the path specified)

even though the file is definitely there, as per screen shot?! Does PI not like the _ character in filename?

cusersgeorge-applegatedesktopconcurpgp.png

0
George Applegate

Hi George,

If you already have a mounted folders under sapmnt, can you try \PD4\JO2\sec\MITIE_BIZTALK_PGP_Secret_Key.asc or \usr\sap\PD4\JO2\sec\MITIE_BIZTALK_PGP_Secret_Key.asc?

The underscore is no problem.

Best regards,
Mate

1

I gave the location to a folder on the pi box itself, places the .asc files there, it worked. But now I get this :

Error: org.bouncycastle.openpgp.PGPException: checksum mismatch at 0 of 20

It never rains it pours :). I think I will generate a new set of pgp keys.

1
So to sum up :

1) Incorrect order for the module - decrypt goes first

2) Specify keyRootPath \\servername\sap_interfaces\security

3) Imported ownPrivateKey & partnerPublicKey into the b2bic eg \\server:50000\b2bic

4) specified 'useSecureStore'

Which then lead to this error "

PGPException: checksum mismatch at 0 of 20

"

5) so checked with business, and the password they'd provided was incorrect. Hmm .

All works fine now, thankyou :)

1

checksum is usually due to wrong password used in module.

0