MQSeries.net :: View topic - Channel is in retry state after adding security exit program

jennifer99 · Posted: Thu Nov 14, 2013 1:06 pm Post subject:

Hi Experts,

I am new to MQ world and i was told to write a channel security exit program. In order to understand the entire flow, i installed MQ in my local windows machine and created two Queue ManagerS and assigned them as "MY COMPANY"and the "CLIENT COMPANY".

I also configured sender channel, receiver channel, local queue, remote queue and transmission channels at both the queue managers. My aim is to configure the complete flow in my local windows machine before i try it in linux. I tried to put test messages in one QM and verified that the messages are appearing at the other end. Everything was working fine until i added the channel security exit program. Here are the steps that i foloowed for configuring the exit program.

1. I got the basic channel exit program from this site and named it as ChannelExit.c

#include <stdlib.h>
#include <stdio.h>
#include <malloc.h>
#include <string.h>
#include <windows.h>
#include <lm.h>
#include <cmqc.h>
#include <cmqxc.h>
#include <time.h>

void MQStart() {;} /* dummy entry point - for consistency only */
void MQENTRY ChannelExit ( PMQCXP pChannelExitParms,
PMQCD pChannelDefinition,
PMQLONG pDataLength,
PMQLONG pAgentBufferLength,
PMQVOID pAgentBuffer,
PMQLONG pExitBufferLength,
PMQPTR pExitBufferAddr)
{
char outBuff[512];
char tempChl[MQ_EXIT_DATA_LENGTH + 1];
FILE* fh;
struct tm *newtime;
time_t tclock;
char *timeBuff;

PMQCXP pParms = pChannelExitParms;
PMQCD pChDef = pChannelDefinition;

//Attention newbie user: Make sure you select a valid directory and filename!!!

//fh = fopen("C:\\Program Files\\IBM\\Websphere MQ\\Exits\\SecExit.log", "a+");
fh = fopen("C:\\Temp\\SecExit.log", "a+");

time( &tclock );
newtime = localtime( &tclock );
timeBuff = asctime(newtime);
timeBuff[strlen(timeBuff) - 1] = '\0';

sprintf(outBuff, "%s : Now entering the security exit.\n", timeBuff);
fprintf(fh, outBuff);

memcpy(tempChl, pChannelDefinition->ChannelName, MQ_CHANNEL_NAME_LENGTH);
tempChl[MQ_CHANNEL_NAME_LENGTH] = '\0';
sprintf(outBuff, "%s : Channel name is %s\n", timeBuff, tempChl);
fprintf(fh, outBuff);

if (pParms->ExitId == MQXT_CHANNEL_SEC_EXIT)
{
switch (pParms->ExitReason)
{
case MQXR_INIT:
pParms->ExitResponse = MQXCC_OK;
sprintf(outBuff, "%s : MQXR_INIT - Channel Initialization\n", timeBuff);
fprintf(fh, outBuff);
break;
case MQXR_INIT_SEC:
pParms->ExitResponse = MQXCC_OK;
sprintf(outBuff, "%s : MQXR_INIT_SEC - Initialize Secuity\n", timeBuff);
fprintf(fh, outBuff);
break;
case MQXR_SEC_MSG:
pParms->ExitResponse = MQXCC_OK;
sprintf(outBuff, "%s : MQXR_SEC_MSG - Security Message\n", timeBuff);
fprintf(fh, outBuff);
break;
case MQXR_TERM:
pParms->ExitResponse = MQXCC_OK;
sprintf(outBuff, "%s : MQXR_TERM - Channel Terminating\n", timeBuff);
fprintf(fh, outBuff);
break;
default:
pParms->ExitResponse = MQXCC_SUPPRESS_FUNCTION;
sprintf(outBuff, "%s : ERROR - Unknown Exit Reason\n", timeBuff);
fprintf(fh, outBuff);
break;
}
}
else
{
pParms->ExitResponse = MQXCC_SUPPRESS_FUNCTION;
sprintf(outBuff, "%s : ERROR - Not invoked by a security exit.\n", timeBuff);
fprintf(fh, outBuff);
return;
}

sprintf(outBuff, "%s : Now exiting the security exit.\n\n", timeBuff);
fprintf(fh, outBuff);
fclose(fh);
return;
}

2. I created a new .def file (named ChannelExit.def) with the below contents.

EXPORTS
ChannelExit

3. Placed both the above files under "C:\Program Files\IBM\WebSphere MQ\exits"

4. Installed Visual C++ and compiled the files using the below commands

cl.exe /Ic:\mqm\tools\c\include /nologo /c ChannelExit.c

link.exe /nologo /dll ChannelExit.obj /def:ChannelExit.def /out:ChannelExit.dll

5. Here is the structure of my exits directory
C:\Program Files\IBM\WebSphere MQ\exits>dir

11/14/2013 12:25 PM <DIR> .
11/14/2013 12:25 PM <DIR> ..
11/14/2013 01:10 PM 3,123 ChannelExit.c
11/14/2013 12:10 PM 20 ChannelExit.def
11/14/2013 12:25 PM 64,512 ChannelExit.dll
11/14/2013 12:25 PM 716 ChannelExit.exp
11/14/2013 12:25 PM 1,762 ChannelExit.lib
11/14/2013 12:25 PM 2,970 ChannelExit.obj
11/12/2013 09:47 AM <DIR> Installation1

6. I defined the security exit name as the below( without quotes ) through MQ Explorer. I left the security data field as empty

"C:\Program Files\IBM\Websphere MQ\exits\ChannelExit(ChannelExit)"

7. After doing all the above, I tried to start my sender channel and the channel went to "retry" mode. I pinged the channel and i got the below exception.

"The request received an unexpected reason code from an underlying API or command request. The reason code was 2195. (AMQ4048)
The request received an unexpected reason code from an underlying API or command request. The reason code was 2195. (AMQ4048)
Severity: 20 (Error)
Explanation: While executing the requested operation, an unexpected return code was received. This has resulted in the operation not completing as expected.
Response: Use the reason code to determine the underlying reason for the failure. "

8. I can see that the MQ is calling my channel exit program. Here is the contents of log file (C:\temp\SecExit.log)

Thu Nov 14 14:04:39 2013 : Now entering the security exit.
Thu Nov 14 14:04:39 2013 : Channel name is COMPANY1.COMPANY2
Thu Nov 14 14:04:39 2013 : MQXR_INIT - Channel Initialization
Thu Nov 14 14:04:39 2013 : Now exiting the security exit.

Thu Nov 14 14:04:39 2013 : Now entering the security exit.
Thu Nov 14 14:04:39 2013 : Channel name is COMPANY1.COMPANY2
Thu Nov 14 14:04:39 2013 : MQXR_TERM - Channel Terminating
Thu Nov 14 14:04:39 2013 : Now exiting the security exit.

My Question to all experts:
1. Am i doing anything wrong here?
2. Do i need to configure anything at the receiver channel?