Transfer CFT messages: CFTY

This topic lists the CFTYxx (CFT xnnx) messages and provides the type, a description, consequence, and corrective actions when applicable.

Message format

Earlier versions of Transfer CFT used a different message format than the current version 3.1.3. The error messages displayed in this document use the former, or earlier version, format. If your system uses the CFTLOG parameter Format = V24, the log display is as shown below:

CFTXXX: fixed text message <variables>

Example

CFTLOG FORMAT=[V23,V24]

For V23: CFTT57I PART=&part IDF=&idf IDT=&idt &str transfer started

For V24: CFTT57I &str transfer started <IDTU=&idtu PART=&part IDF=&idf IDT=&idt>

Error

CFTY03E PID=&pid System error [&string] CR=&cr CS=&cs

Explanation

A new SSL task cannot initialize its working environment. According to the error origin, various messages are given below.

Result

The SSL session in progress is aborted.

Error

CFTY03E PID=&pid System error [MMALLOC] CR=&cr CS=&cs

Explanation

Dynamic memory allocation failure.

Error

CFTY03E PID=&pid System error [SYDEF] CR=&cr CS=&cs

Explanation

Task semaphore creation failure:

  • CR=-1 Maximum semaphore count reached
  • CR=-2 Internal error
  • CR=-9 System error

Error

CFTY03E PID=&pid System error [SYPOST] CR=&cr CS=&cs

Explanation

Semaphore write failure:

  • CR=-1 Undefined or already closed semaphore
  • CR=-2 Too many messages waiting in semaphore
  • CR=-3 Message length too long  
  • CR=-9 System error

Error

CFTY03E PID=&pid System error [SYWAIT] CR=&cr CS=&cs

Explanation

Semaphore read failure:

  • CR=-1 Undefined semaphore
  • CR=-3 Already closed semaphore
  • CR=-9 System error

Error

CFTY03E PID=&pid System error [CTXDEF] CR=&cr CS=&cs

Explanation

SSL session context manager creation failure:

  • CR=-2,-3 Dynamic memory allocation failure
  • CR=-9 Maximum context manager count reached

Error

CFTY03E PID=&pid System error [STARTPKI] CR=&cr CS=&cs

Explanation

PKI internal error. The CS code is in the form « PKII nnn » for a Transfer CFT internal PKI error or « PKIE nnn » for an external PKI error. nnn is a SSL alert code. See SSL alert errors.

 

Error

CFTY04E PID=&pid PKIFNAME=&string Internal PKI error [&string] CR=&cr CS=&cs

Explanation

A new SSL task cannot read the index file of the local certificate data base.

This file name is set by the parameter PKIFNAME of the CFTPARM command. According to the error origin, various messages are given below.

Result

The SSL session in progress is aborted.

Error

CFTY04E PID=&pid PKIFNAME=&string Internal PKI error [FMALLOC] CR=&cr CS=&cs

Explanation

File allocation failure:

  • CR=-1: File not found
  • CR=-3: File already allocated (exclusive mode) by another application
  • CR=-9: System error

Error

CFTY04E PID=&pid PKIFNAME=&string Internal PKI error [DMOPEN] CR=&cr CS=&cs

Explanation

File open failure:

  • CR=-1: File not allocated
  • CR=-2: Invalid open mode
  • CR=-3: Access conflict
  • CR=-9: System error

Error

CFTY04E PID=&pid PKIFNAME=&string Internal PKI error [DMGN] CR=&cr CS=&cs

Explanation

File read failure:

  • CR=-9: System error

Error

CFTY04E PID=&pid PKIFNAME=&string Internal PKI error [HPUT] CR=&cr CS=&cs

Explanation

File loading error:

  • CR=-3: Dynamic memory allocation error when loading file

 

Error

CFTY05E PID=&pid PKIFNAME=&file Syntax error _ &string

Explanation

The index file of the local certificate data base is not valid. This file name is set by the parameter PKIFNAME of the CFTPARM command. According to the error origin, various reasons are given below:

  • MISSING SECTION=TrustedCas: the file doesn’t contain a [TrustedCas] section. This section is used to declare certificate authorities (CA)
  • SECTION=TrustedCas IS EMPTY: [TrustedCas] section is empty
  • BAD VALUE LINE=linenumber: Invalid syntax for a certificate or private key statement. The line number in the file is displayed
  • INVALID SECTION LINE=linenumber: Invalid syntax for a section statement. The line number in the file is displayed

Result

The SSL session in progress is aborted.

Action 

Rectify the index file.

 

Error

CFTY06E CTX=&ctx Certificate Request Message error _ &string

Explanation

SSL handshake error: a request certificate message, sent by the server, is invalid. According to the error origin, various reasons are given below:

  • UNSUPPORTED TYPE FIELD: The server requires an authentication type which is not supported by Transfer CFT.
  • INVALID DN LENGTH: The DN (Distinguished Name) length is invalid

Result

The SSL session in progress is aborted. An alert is sent to the server.

Error

CFTY07E CTX=&ctx System error [&string] CR=&cr CS=&cs

Explanation

SSL handshake error. According to the error origin, various messages are given below.

Result

The SSL session in progress is aborted. An alert is sent to the remote entity.

Error

CFTY07E CTX=&ctx System error [MMALLOC] CR=&cr CS=&cs

Explanation

Dynamic memory allocation failure.

Result

If the SSL handshake is in progress, the session is aborted and an alert is sent to the remote entity.

If the SSL session is established (handshake successful) the network session is cleared.

Error

CFTY07E CTX=&ctx System error [SYPOST] CR=&cr CS=&cs

Explanation

Semaphore write failure:

  • CR=-1 :The semaphore is undefined or already closed
  • CR=-2: Too many messages are waiting on the semaphore
  • CR=-3: The message length is too big
  • CR=-9: System error

Error

CFTY07E CTX=&ctx System error [CTXALLOC] CR=&cr CS=&cs

Explanation

Memory allocation error for a new SSL session context:

  • CR=-2,-3: Dynamic memory allocation failure
  • CR=-9: Maximum context count reached

Error

CFTY07E CTX=&ctx System error [CTXCHK] CR=&cr CS=&cs

Explanation

Invalid message received from another Transfer CFT task (context is invalid or already free).

Error

CFTY07E PROT=&prot SSLPID=&pid HOST=&host synchronization error CR=&cr CS=&scs

Explanation

Problem with sending an internal Transfer CFT message to the protocol task during the SSL initialization phase

Consequence

The transfer is aborted

Action

Analyze the &scs code and contact the product support team if necessary

 

Information

CFTY08I PID=&pid Task started successfully

Explanation

Successful creation of a new SSL task.

 

Information

CFTY09I PID=&pid Task ended

Explanation

SSL task ended.

 

Error

CFTY10E PID=&pid CTX=&ctx Invalid reference on &string

Explanation

Invalid network message received (context is invalid or already free).

Result

Message is not treated.

 

Information

CFTY11I CTX=&ctx PART=&id SSL=&id Closing client SSL session

Explanation

A client SSL session is closed. The session reference and the transfer partner are displayed.

 

Information

CFTY12I CTX=&ctx PROT=&id SSL=&id Closing server SSL session

Explanation

A server SSL session is closed. The session reference and the protocol are displayed.

 

Error

CFTY13E CTX=&ctx SSL Handshake local error [&string] CR=&cr

Explanation

SSL session handshake failure.

Result

The SSL session in progress is aborted. An alert is sent to the remote entity.

Action

Call the Transfer CFT hot line.

Analyze the &cr error code (refer to the SSL protocol error codes). Contact the product support team if necessary.

 

Information

CFTY14I CTX=&ctx PART=&id SSL=&id client session established VERSION=&ver CIPHER=&num AUTH=&mode

Explanation

Successful handshake. A new client SSL session is established. The negotiated version, cypher suite, and the authentication mode (SERVER or BOTH) are displayed.

 

Information

CFTY15I CTX=&ctx PROT=&id SSL=&id server session established VERSION=&verCIPHER=&num AUTH=&mode

Explanation

Successful handshake. A new server SSL session is established. The negotiated version, cypher suite, and the authentication mode (SERVER or BOTH) are displayed.

 

Information

CFTY16I CTX=&ctx &message

Explanation

Message sent by the external PKI exit.

 

Information

CFTY17I CTX=&ctx &msg

Explanation

Specific exit security (PKI System) message.

 

Error

CFTY18E CTX=&ctx &str

Explanation

Internal error on calling up the internal PKI. The "&str" field can have the following values:

  • PKI_NOT_TREATED : PKI function not treated
  • PKI_ERR_CERT_BAD : Incorrect certificate (format error)
  • PKI_ERR_CERT_UNSUPPORTED : Certificate not supported
  • PKI_ERR_CERT_REVOKED : Certificate revoked
  • PKI_ERR_CERT_EXPIRED : Certificate expired
  • PKI_ERR_CERT_UNKNOWN : Certificate unknown
  • PKI_ERR_CERT_NOT_VALID : Certificate not valid
  • PKI_ERR_CERT_BAD_SIGN : Integrity error (incorrect signature)
  • PKI_ERR_CERT_BAD_HASH : Integrity error (hash code  incorrect)
  • PKI_ERR_CERT_BAD_CA :Certification organism certificate invalid
  • PKI_ERR_CERT_ALGO_UNSUPPORTED : Unsupported ciphering algorithm
  • PKI_ERR_CERT_NOT_FOUND : User certificate not found
  • PKI_ERR_CA_NOT_FOUND : Certification organism certificate not found
  • PKI_ERR_BAD_KEY : Invalid ciphering key
  • PKI_ERR_BUF_TOO_SHORT  : Memory buffer size too small
  • PKI_ERR_SYS  : Internal error linked to the system (memory allotment, system function, and so on)
  • PKI_ERR_PARM : Ciphering parameter invalid
  • PKI_ERR_OTHERS : Other error (authentication, ciphering, integrity, and so on)

Consequence

The transfer is aborted.

Action

Contact the product support team if necessary.

 

Information

CFTY19I PART=&id SSL=&id opening client session CTX=&ctx on task PID=&pid

Explanation

Handshake is started for a new client SSL session. Transfer CFT gives a unique reference to it. Using this reference, the session could be tracked.

 

Information

CFTY20I PROT=&id SSL=&id opening server session CTX=&ctx on task PID=&pid

Explanation

Handshake is started for a new server SSL session. Transfer CFT gives a unique reference to it. Using this reference, the session could be tracked.

 

Information

CFTY21I CTX=&ctx Remote server certificate accepted ROOTID=&id

Explanation

A server certificate is accepted during a session handshake. The authority identifier which has signed the certificate is displayed.

 

Information

CFTY22I CTX=&ctx Remote client certificate accepted ROOTID=&id

Explanation

A client certificate is accepted during a session handshake. The authority identifier which has signed the certificate is displayed.

 

Information

CFTY23I CTX=&ctx Client certificate ID=&id ROOTID=&id

Explanation

Client certificate used locally for authentication.

 

Information

CFTY24I CTX=&ctx Server certificate ID=&id ROOTID=&id

Explanation

Server certificate used locally for authentication.

 

Information

CFTY25I CTX=&ctx remote address HOST=&string

Explanation

This message is displayed after the message CFTY20I. It gives the address (HOST name or IP address using TCP/IP network) of the remote connected entity.

 

Information

CFTY26I: CTX=&ctx Anonymous &str session

Explanation

Opening of a secure session without authentication in either client or server mode. Refer to the Transfer CFT Online documentation.

  • &ctx= context SSL
  • str = client or server

 

Warning

CFTY28W CTX=&ctx &str2 = &filename

Explanation

The file contains the remote certificate has not been recorded.

Consequence

The transfer can be performed but the remote certificate is not recorded.

Action

Write down the &str2 value and contact the product support team if necessary.

 

Error

CFTY30E CTX=&ctx SSL Handshake remote error [&string] CR=&cr

Explanation

SSL session handshake failure. An alert has been received from the remote peer.

Consequence

The SSL session in progress is aborted.

Action

Analyze the &cr error code (refer to the SSL protocol error codes). Also check the remote partner log for more details. Contact Axway support if necessary.

 

Error

CFTY41E: CFTCTX=<session_reference>, xpp call <PassportPS_API_function>: error [<PassportPS_API_function_returncode>]

Explanation

An error occurred during an exchange or connection with the PassPort PS server.

<PassportPS_API_function> and <PassportPS_API_function_returncode> identify the function in error and provide the return code for the function.

 

Error

CFTY44E: CFTCTX=<session_reference>, long err msg : [<PassportPS_API_error_code>]

Explanation

An error occurred during an exchange or connection with the PassPort PS server. The <PassportPS_API_error_code> describes the error.

 

Error

CFTY45E: CFTCTX=<session_reference>, <PassportPS_API_error_message>

Explanation

An error occurred during an exchange or connection with the PassPort PS server. The <PassportPS_API_error_message> describes the error.

Related Links