Roger's Blog on MQ, Java, C, etc… | A blog about IBM MQ, Java, C and other things developers or MQAdmins need to know.

WebSphere MQ Fix Pack 7.0.1.10 Released

May 7, 2013 Roger Lacroix

IBM has just released FixPack 7.0.1.10 for WebSphere MQ.
http://www.ibm.com/support/docview.wss?uid=swg21636042

Regards,
Roger Lacroix
Capitalware Inc.

Fix Packs for MQ, IBM i (OS/400), IBM MQ, Linux, Unix, Windows Comments Off

Debian 7.0 Released

May 6, 2013 Roger Lacroix

Debian Project has just released Debian 7.0.
http://www.debian.org/News/2013/20130504

Debian is a free operating system (OS) for your computer. An operating system is the set of basic programs and utilities that make your computer run. Debian uses the Linux kernel (the core of an operating system), but most of the basic OS tools come from the GNU project; hence the name GNU/Linux.

Regards,
Roger Lacroix
Capitalware Inc.

Linux, Open Source, Operating Systems Comments Off

MQAUSX and MQCE setup on 2 Solaris servers & Client Encrypted File

May 3, 2013 Roger Lacroix

Using MQAUSX and MQCE together is only a little more complex than uses a single MQ exit. The same software is installed on the server regardless if it is acting as a “server” or “client”. So, let’s go through a setup and test of MQAUSX and MQCE on 2 Solaris servers where 1 Solaris server is the “server-side” and the other Solaris server is the “client-side” of the test which will use a client-side encrypted file.

Information:
– Server 1 is running Solaris SPARC v9 (64-bit) with a queue manager called BIZI.QM.TST on WMQ v7.0.1.0
– Server 2 is running Solaris SPARC v10 (64-bit) and will run the MQ client application with WMQ v7.1.0.0.

Step #1: Install the MQAUSX and MQCE on both servers. Please follow instructions in the manual, the following is the short form:

On Solaris 9, use mqausx_solaris64.tar and mqce_solaris64.tar files and then run setausx.sh and setmqce.sh shell scripts as root.

On Solaris 10, use mqausx_solaris10_64.tar and mqce_solaris10_64.tar files and then run setausx.sh and setmqce.sh shell scripts as root.

Step #2: On Solaris 9 server, copy the Capitalware supplied License files (mqausx_licenses.ini and mqce_licenses.ini) for both MQAUSX and MQCE to the install directory. i.e. /var/mqm/exits64/

Note: The client-side MQAUSX and MQCE components do NOT require a License file.

Step #3: On Solaris 9 server, by default, MQAUSX will authenticate against the Local OS. If you want to authenticate against a different target then update the IniFile to reflect it (please follow the instructions as per the manual). For MQCE, the AES default key size is 128 bits. You can update the IniFile to use 128 or 192 or 256 bit.

Step #4: On Solaris 9 server, define a SVRCONN channel (‘LIOR.CHL’) in queue manager ‘BIZI.QM.TST’ to use both MQAUSX and MQCE:

DEFINE CHANNEL ('LIOR.CHL') CHLTYPE(SVRCONN) +
       TRPTYPE(TCP) +
       SCYEXIT('/var/mqm/exits64/mqausx(SecExit)') +
       SCYDATA('mqausx.ini') +
       RCVEXIT('/var/mqm/exits64/mqce(CE)') +
       RCVDATA('mqce.ini') +
       SENDEXIT('/var/mqm/exits64/mqce(CE)') +
       SENDDATA('mqce.ini') +
       REPLACE

Note: Because I did not specify the path for SCYDATA, RCVDATA and SENDDATA attributes of the channel, MQAUSX and MQCE will look for the specified IniFile in the install directory.

Step #5: On Solaris 10 server, I will create a client-side encrypted file for the client application to use.

enc_clnt -u tester -p abc123 -f /export/home/tester/secure/tester.enc

Note: The client-side encrypted filename can be called anything so long as it has a file extension of “enc”.

I purposely made the path and filename of the client-side encrypted file very long. It is 37 characters long. For MQ channel exits, IBM has restricted the “Data” fields (security/send/receive) to a maximum of 32 characters.

This IBM 32 character restriction for the “Data” field is the number 1 reason why people have problems when dealing with channel exits.

Step #6: On a Windows PC, create the CCDT (Client Channel Definition Table) file using the CCDTE program. I like to call the CCDT file by the name of the queue manager. For this example, the queue manager is called BIZI.QM.TST, so the CCDT file will be called ‘BIZI.QM.TST.TAB’.

Now input the channel name, connection name and queue manager name then select the Unix version of the security and Send/Receive exits from the dropdown.

Please review the “Security Exit Data” field in the above screen-shot. The full path and filename is “/export/home/tester/secure/tester.enc” but it is longer than 32 characters. Therefore, I will just inputted the filename of “tester.enc” and will use the MQAUSXCLNT_HOME environment variable to specify the path to the client-side encrypted file.

Step #7: Now copy the CCDT file (‘BIZI.QM.TST.TAB’) from the Windows PC to the Solaris 10 server. Make sure you copy the file as ‘binary’. In this example, I will copy the CCDT to /export/home/tester/ directory on the Solaris 10 server.

Step #8: On Solaris 10 server, we need set some MQ environment variables:

unset MQSERVER
export MQCHLLIB=/export/home/tester
export MQCHLTAB=BIZI.QM.TST.TAB

Note: MQCHLLIB environment has 2 “L”s so be care when typing it.

Unset MQAUSX environment variables from the previous test and then set the MQAUSXCLNT_HOME environment variable:

 unset MQAUSX_UID
unset MQAUSX_PWD
export  MQAUSXCLNT_HOME=/export/home/tester/secure/

Step #9: On Solaris 10 server, now that the environment variables are set, time to do a test. I will use the amqsputc and amqsgetc MQ sample programs:

Let’s put 1 message on the queue:

/opt/mqm/samp/bin/amqsputc TST1  BIZI.QM.TST
Sample AMQSPUT0 start
target queue is TST1
this is a test message #2

Sample AMQSPUT0 end

Now, let’s retrieve that message:

 /opt/mqm/samp/bin/amqsgetc TST1  BIZI.QM.TST
Sample AMQSGET0 start
message 
no more messages
Sample AMQSGET0 end

That’s it – pretty straightforward. It is very easy to have both channel authentication and message encryption over the channel.

I strongly recommend that people use client-side encrypted file and place the file in a directory that only the appropriate user has permission to access the client-side encrypted file.

Regards,
Roger Lacroix
Capitalware Inc.

Capitalware, IBM MQ, MQ Authenticate User Security Exit, MQ Channel Encryption, Security, Unix Comments Off

MQAUSX and MQCE setup on 2 Solaris servers

May 2, 2013 Roger Lacroix

Step #1: Install the MQAUSX and MQCE on both servers. Please follow instructions in the manual, the following is the short form:

On Solaris 9, use mqausx_solaris64.tar and mqce_solaris64.tar files and then run setausx.sh and setmqce.sh shell scripts as root.

On Solaris 10, use mqausx_solaris10_64.tar and mqce_solaris10_64.tar files and then run setausx.sh and setmqce.sh shell scripts as root.

Step #2: On Solaris 9 server, copy the Capitalware supplied License files (mqausx_licenses.ini and mqce_licenses.ini) for both MQAUSX and MQCE to the install directory. i.e. /var/mqm/exits64/

Note: The client-side MQAUSX and MQCE components do NOT require a License file.

Step #4: On Solaris 9 server, define a SVRCONN channel (‘LIOR.CHL’) in queue manager ‘BIZI.QM.TST’ to use both MQAUSX and MQCE:

DEFINE CHANNEL ('LIOR.CHL') CHLTYPE(SVRCONN) +
       TRPTYPE(TCP) +
       SCYEXIT('/var/mqm/exits64/mqausx(SecExit)') +
       SCYDATA('mqausx.ini') +
       RCVEXIT('/var/mqm/exits64/mqce(CE)') +
       RCVDATA('mqce.ini') +
       SENDEXIT('/var/mqm/exits64/mqce(CE)') +
       SENDDATA('mqce.ini') +
       REPLACE

Note: Because I did not specify the path for SCYDATA, RCVDATA and SENDDATA attributes of the channel, MQAUSX and MQCE will look for the specified IniFile in the install directory.

Step #5: On a Windows PC, create the CCDT (Client Channel Definition Table) file using the CCDTE program. I like to call the CCDT file by the name of the queue manager. For this example, the queue manager is called BIZI.QM.TST, so the CCDT file will be called ‘BIZI.QM.TST.TAB’.

Now input the channel name, connection name and queue manager name then select the Unix version of the security and Send/Receive exits from the dropdown.

As you can see, I did not set any values for Security Exit Data, Send Exit Data or Receive Exit Data. This means that the default values (client-side) for MQAUSX and MQCE will be used.

Note: For MQAUSX client-side on Windows, the user will be presented with a popup window to input their user credentials, if the Security Exit Data field is empty. On Unix/Linux, there is no popup window hence if the Security Exit Data field is empty then the user must set the MQAUSX_UID and MQAUSX_PWD environment variables.

It would be far better to use the enc_clnt program to create the encrypted user credentials in a client-side encrypted IniFile and then set the location of the client-side encrypted IniFile in the Security Exit Data field.

Step #6: Now copy the CCDT file (‘BIZI.QM.TST.TAB’) from the Windows PC to the Solaris 10 server. Make sure you copy the file as ‘binary’. In this example, I will copy the CCDT to /export/home/tester/ directory on the Solaris 10 server.

Step #7: On Solaris 10 server, we need set some MQ environment variables:

unset MQSERVER
export MQCHLLIB=/export/home/tester
export MQCHLTAB=BIZI.QM.TST.TAB

Note: MQCHLLIB environment has 2 “L”s so be care when typing it.

And now set MQAUSX environment variables for the User Credentials:

export MQAUSX_UID=tester
export MQAUSX_PWD=abc123

Step #8: On Solaris 10 server, now that the environment variables are set, time to do a test. I will use the amqsputc and amqsgetc MQ sample programs:

Let’s put 1 message on the queue:

/opt/mqm/samp/bin/amqsputc TST1  BIZI.QM.TST
Sample AMQSPUT0 start
target queue is TST1
this is a test message

Sample AMQSPUT0 end

Now, let’s retrieve that message:

 /opt/mqm/samp/bin/amqsgetc TST1  BIZI.QM.TST
Sample AMQSGET0 start
message 
no more messages
Sample AMQSGET0 end

That’s it – pretty straightforward. It is very easy to have both channel authentication and message encryption over the channel.

I strongly recommend that people not use MQAUSX_UID and MQAUSX_PWD environment variables but rather use the client-side encrypted file created by the enc_clnt program (see the next blog posting for an example).

Regards,
Roger Lacroix
Capitalware Inc.

Capitalware, IBM MQ, MQ Authenticate User Security Exit, MQ Channel Encryption, Security, Unix Comments Off

OpenBSD v5.3 Released

May 1, 2013 Roger Lacroix

Theo de Raadt has just released OpenBSD v5.3.
http://www.openbsd.org/53.html

The OpenBSD project produces a FREE, multi-platform 4.4BSD-based UNIX-like operating system. Our efforts emphasize portability, standardization, correctness, proactive security and integrated cryptography.

Regards,
Roger Lacroix
Capitalware Inc.

Open Source, Operating Systems Comments Off

VEQ File Layout

April 30, 2013 Roger Lacroix

The VEQ file format is used by 3 Capitalware products: MQ Visual Edit, MQ Visual Browse and MQ Batch Toolkit to backup and restore messages including MQMD to/from a file.

I was recently asked if I would publish the VEQ layout (something I’ve never done). I know some people have reverse engineered the file layout, so I gave it some thought and figured why not. So, here is the VEQ file layout:

VEQ Header Layout:

Name	Type	Size	Example
Header	String	4	"MQVE"
Version	Integer	4	1
Count (messages in the VEQ file)	Integer	4	1

Note: The VEQ header only appears once at the beginning of the file.

Individual Message Layout:

Name	Type	Size	Example
MD.StrucId	String	4	"MD "
MD.Version	Integer	4	1
MD.Format	String	8	"MQSTR "
MD.BackoutCount	Integer	4	0
MD.CCSID	Integer	4	437
MD.Encoding	Integer	4	273
MD.Expiry	Integer	4	-1
MD.Feedback	Integer	4	0
MD.MsgSeqNumber	Integer	4	1
MD.MsgType	Integer	4	8
MD.Offset	Integer	4	0
MD.OriginalLength	Integer	4	-1
MD.Persistence	Integer	4	1
MD.Priority	Integer	4	0
MD.PutApplType	Integer	4	11
MD.Report	Integer	4	0
MD.MsgFlags	Integer	4	0
MD.DataLength	Integer	4	100
MD.AccountingToken	Byte	32
MD.CorrelID	Byte	24
MD.GroupID	Byte	24
MD.MsgID	Byte	24
MD.ApplIdentityData	String	32
MD.ApplOriginData	String	4
MD.PutApplName	String	28	ware\MQ Visual Edit\mqve.exe
MD.ReplyToQMgr	String	48	MQWT1
MD.ReplyToQ	String	48	TEST.Q1
MD.UserID	String	12	roger
Message Data	Byte	Variable Length (see DataLength field)

Individual messages are repeated as per the layout above.

Regards,
Roger Lacroix
Capitalware Inc.

Capitalware, IBM MQ, Java, Linux, MQ Batch Toolkit, MQ Visual Browse, MQ Visual Edit, Open Source, Programming, Unix, Windows Comments Off

Lyn Elkins and Barry Lamkin will be Speaking at MQTC

April 29, 2013 Roger Lacroix

More great news. Lyn Elkins of IBM and Barry Lamkin of IBM will be speaking at Capitalware’s MQ Technical Conference v2.0.1.3 (MQTC).

Lyn Elkins will be presenting the following sessions at MQTC:

WebSphere MQ: Are z/OS and distributed platforms like oil and water?
WebSphere MQ for z/OS: Basic introduction to statistical SMF data.
WebSphere MQ for z/OS: Basic introduction to Accounting SMF data.

Barry Lamkin’s session information will be posted next week.

Note: We will do our best to make sure that each session is presented twice.

The schedule now contains 5 rooms holding sessions for the 3 days. Hence, as of now, a total of 70 sessions will be given at MQTC. 🙂

For more information about MQTC, please go to:
http://www.mqtechconference.com

Regards,
Roger Lacroix
Capitalware Inc.

Capitalware, Education, IBM MQ, MQ Technical Conference Comments Off

Updated MQTC v2.0.1.3 Schedule

April 25, 2013 Roger Lacroix

I have updated Capitalware’s MQ Technical Conference v2.0.1.3 (MQTC) schedule to included the following new sessions:

Chris Frank will be presenting the following sessions:

MQ Clustering
MQ Pub/Sub Part 1
MQ Pub/Sub Part 2

Cressida Technology will be hosting:

MQSeries.net Challenge: A Technical Safari

Bob Ahrens will be presenting the following sessions:

Using MQ & Rexx on z/OS

2 speakers from IBM Hursley. I listed 3 sessions for each speaker. I will fill in the details once I get more information from Leif Davidsen of IBM.

The schedule now has 4 concurrent sessions for each of the 3 days. Therefore, as of right now, over 55 sessions will be given at MQTC.

I am still waiting for 5 more speakers to get official permission to speak at MQTC. Hence, there is a strong possibility of having 5 concurrent sessions during the 3 days – meaning 70 sessions!!

For more information about MQTC, please go to:
http://www.mqtechconference.com

Regards,
Roger Lacroix
Capitalware Inc.

Capitalware, Education, IBM MQ, MQ Technical Conference Comments Off

Ubuntu 13.04 Released

April 25, 2013 Roger Lacroix

Ubuntu has just released Ubuntu v13.04.
http://fridge.ubuntu.com/2013/04/25/ubuntu-13-04-raring-ringtail-released/

Super-fast, easy to use and free, the Ubuntu operating system powers millions of desktops, netbooks and servers around the world. Ubuntu does everything you need it to. It’ll work with your existing PC files, printers, cameras and MP3 players. And it comes with thousands of free apps.

Regards,
Roger Lacroix
Capitalware Inc.

Linux, Open Source, Operating Systems Comments Off

Chris Frank will be Speaking at MQTC

April 24, 2013 Roger Lacroix

More great news. Chris Frank of IBM will be speaking at Capitalware’s MQ Technical Conference v2.0.1.3 (MQTC). Chris Frank will be presenting the following sessions at MQTC:

MQ Clustering
MQ Pub/Sub Part 1
MQ Pub/Sub Part 2

Note: We will do our best to make sure that each session is presented twice.

For more information about MQTC, please go to:
http://www.mqtechconference.com

Regards,
Roger Lacroix
Capitalware Inc.

Capitalware, Education, IBM MQ, MQ Technical Conference Comments Off

Search for:
Recent Posts
Blog Calendar
May 2026

M T W T F S S

1 2 3

4 5 6 7 8 9 10

11 12 13 14 15 16 17

18 19 20 21 22 23 24

25 26 27 28 29 30 31

« Apr
Archives
Archives
Capitalware
Categories
IBM MQ
WebSphere MQ
IBM Developer Messaging Blog
T.Rob’s Store and Forward
- MQ Safety Tips for the Pandemic April 5, 2020
- Command Server Gotcha May 14, 2018
- Client-based runmqsc gotcha May 3, 2018
- When deprecated != deprecated January 19, 2018
- Parsing MQ error logs in Splunk December 19, 2017
Mark Taylor’s Blog
- OTel Context Propagation: part 6 – MQ Kafka Connectors May 11, 2026
- OTel Context Propagation: part 5 – Notes on the MQ Tracing Exit March 4, 2026
- OTel Context Propagation for MQ Applications: part 4 – Python February 6, 2026
- End of a platform January 8, 2026
- MQ Monitoring: using queue manager STATISTICS events December 22, 2025
Lyns Random Thoughts
Leif Davidsen’s Blog
Colin Paice on MQ
- Using an external function May 17, 2026
- Sharing status information between functions. May 16, 2026
- Binding in Unix on z/OS. A whole new world May 15, 2026
- Assembler programming without using using – it is all relative May 3, 2026
- Using IPCS to look at z/OS dumps May 3, 2026
- Not for humans but for search engine – BPX May 2, 2026
- Where’s my dump? May 2, 2026
- Processing LOGREC May 2, 2026
- Getting the z/OS standard image to work. April 27, 2026
- I have to renew my TLS certificate every 47 days. What?! April 25, 2026
StackOverflow MQ Questions
- Does every MQQueueManager create a new TCP/IP connection? Best practices for connection reuse/pooling in IBM MQ Java client May 4, 2026
- IBM MQ: CONNS and CURSHCNV show same value despite multiple JMS sessions [closed] April 30, 2026
- MQCONNX ended with reason code 2393 when connecting mTLS enabled queue April 9, 2026
- how to rectify javax.jms.JMSException: Failed to create connection? January 16, 2026
- IBM MQ 2059 (MQRC_Q_MGR_NOT_AVAILABLE) error in .NET 9.0 console app using IBMMQClient with certificate-based SSL setup January 14, 2026
- Azure linux function app to IBM MQ using IBMMQDotnetClient 9.4.2 December 6, 2025
- App need to perform enable/disable queue programmatically December 4, 2025
- Date & time not being shown in japanese October 28, 2025
- How do I / example of adding source info in IBM MQ Header (possible MQRFH2/usr) from DB2 stored procedure October 14, 2025
- Is Q Replication what's called Fast Queue in database async replication October 6, 2025
StackOverflow MQTT Questions
- MQTT connection silently drops on NTP clock jump in embedded Linux (no error, no reconnect) April 9, 2026
- How to create "restricted wildcard subscriptions" March 26, 2026
- (Ab)using ASP.NET Core for non-http message processing? February 12, 2026
- Am I misusing Azure Event Grid’s MQTT multi‑session support by connecting 100 MQTT clients to a single defined MQTT client in Event Grid? February 4, 2026
- android compose mqtt implementation January 26, 2026
- Don't get publish() to work in paho.mqtt.client.on_connect thread January 18, 2026
- Best way to host multiple EMQX instances per server January 15, 2026
- How can I connect to AWS IoT Core MQTT over WebSocket from browser January 9, 2026
- paho Android MQTT client does not send PINGREQ to broker when phone screen is off December 2, 2025
- Prevent multiple subscriptions of same topic in HiveMQ MQTT client November 17, 2025

VEQ Header Layout:

Individual Message Layout:

Recent Posts

Blog Calendar

Archives

Capitalware

Categories