IRS ACA 1095C SOAP Fault : Error in assertion processing

Question

Randomly I'm getting an error while submitting 1094/1095C to IRS ACA site. It has been a working code since a while I made no changes to the code all of a sudden I started seeing this error for few submissions.

The code is in java. We are still able to make success full submissions but certain submitions are returning a SOAP fault error.

........
 org.apache.cxf.endpoint.Client yclient = (org.apache.cxf.endpoint.Client) factory.create();
            GZIPInInterceptor ininterceptor = new GZIPInInterceptor();
            yclient.getInInterceptors().add(ininterceptor);
            Endpoint eEndpoint = yclient.getEndpoint();
            EndpointInfo einfo = eEndpoint.getEndpointInfo();
            BindingInfo b = einfo.getBinding();
            ProviderFactory pf = ServerProviderFactory.getInstance();
            eEndpoint.put(ProviderFactory.class.getName(), pf);

            yclient.getRequestContext().put("soap.env.ns.map", nsMap);
            yclient.getRequestContext().put("org.apache.cxf.client", Boolean.FALSE);
            Collection<BindingOperationInfo> c = b.getOperations();
            Iterator<BindingOperationInfo> it = c.iterator();
            while (it.hasNext()) {
                BindingOperationInfo bi = it.next();
                QName name = bi.getOperationInfo().getName();

                System.out.println(name.toString());
                GZIPOutInterceptor interceptor = new GZIPOutInterceptor();
                interceptor.setForce(true);
                yclient.getOutInterceptors().add(interceptor);

                Map<String, Object> ycontext = yclient.getRequestContext();
                ycontext.put(MessageContext.HTTP_REQUEST_HEADERS, head);
                Map<Integer, Class<?>> wssConfigActions = new HashMap<Integer, Class<?>>();
                Map<String, Object> serverOutParams = createServerOutParams(wssConfigActions, true);

                yclient.getOutInterceptors().add(new SOAPSecurityInterceptor());
                yclient.getOutInterceptors().add(new SecurityHeaderHandler(null));
                AIRXMLSignInterceptor sigInterceptor = new AIRXMLSignInterceptor(serverOutParams, true);
                sigInterceptor.privateKey = PrivateKey;
                yclient.getOutInterceptors().add(sigInterceptor);
                AddressingProperties maps = new AddressingProperties();
                AttributedURIType iri = new AttributedURIType();
                iri.setValue("RequestSubmissionStatusDetail");
                maps.setAction(iri);

                ACABulkRequestTransmitterStatusDetailRequestType statusRequest = new ACABulkRequestTransmitterStatusDetailRequestType();
                statusRequest.setId("id-00E7E0006E615C14D6000736030986000");
                statusRequest.setVersion("1.0");

                ACABulkReqTrnsmtStsReqGrpDtlType reqDetail = new ACABulkReqTrnsmtStsReqGrpDtlType();
                reqDetail.setReceiptId(submissionRecord.StatusInfo.ReceiptId);
                statusRequest.setACABulkReqTrnsmtStsReqGrpDtl(reqDetail);
                ACABulkBusinessHeaderRequestType businessHeader = new ACABulkBusinessHeaderRequestType();
                businessHeader.setId("id-00E7E0006E615C14D6000736030986000");
                businessHeader.setUniqueTransmissionId(submissionRecord.StatusInfo.UniqueTransmissionId);

                GregorianCalendar gregory = new GregorianCalendar();
                TimeZone utc = TimeZone.getTimeZone("UTC");
                gregory.setTime(UTCDate.now());
                gregory.setTimeZone(utc);
                XMLGregorianCalendar calendar = DatatypeFactory.newInstance().newXMLGregorianCalendar(gregory);
                BusinessHeaderTimeStamp bhts = new BusinessHeaderTimeStamp(calendar);
                businessHeader.setTimestamp(bhts);

                System.out.println(bhts.toXMLFormat());

                javax.xml.ws.Holder<ACABulkBusinessHeaderRequestType> businessHeaderWrapper = new javax.xml.ws.Holder<ACABulkBusinessHeaderRequestType>();
                businessHeaderWrapper.value = businessHeader;
                SecurityHeaderType securityHeader = configureSecurityHeader(now);

                System.out.println("Polling receiptId: " + submissionRecord.StatusInfo.ReceiptId);
                TransmitterACASecurityHeaderType acaSecurityHeader = new TransmitterACASecurityHeaderType();
                acaSecurityHeader.setUserId(ASID);

                Object[] res1 = yclient.invoke(bi, statusRequest, acaSecurityHeader, securityHeader,
                        businessHeaderWrapper);

                ACABulkRequestTransmitterStatusDetailResponseType response = (ACABulkRequestTransmitterStatusDetailResponseType) res1[0];
                submissionRecord.StatusInfo.Response = response;

                String xml = submissionRecord.StatusInfo.toXML();
                return xml;

......

Final Request :

<soapenv:Envelope xmlns:irs="urn:us:gov:treasury:irs:common" xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:urn="urn:us:gov:treasury:irs:ext:aca:air:ty18" xmlns:urn2="urn:us:gov:treasury:irs:msg:acabusinessheader" xmlns:urn3="urn:us:gov:treasury:irs:srv:irsacabulkrequesttransmitter"
 xmlns:urn4="urn:us:gov:treasury:irs:msg:acasecurityheader" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
    <soapenv:Header xmlns:wsa="http://www.w3.org/2005/08/addressing">
        <wsse:Security xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
            <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#" Id="SIG-0000E45A7D26C7FA400002296060180000">
                <ds:SignedInfo>
                    <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#WithComments"/>
                    <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
                    <ds:Reference URI="#TS-0000E45A7D26C7FA471572296060100000">
                        <ds:Transforms>
                            <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
                                <InclusiveNamespaces xmlns="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="wsse wsa irs soapenv urn urn2 urn3 urn4 wsse"/>
                            </ds:Transform>
                        </ds:Transforms>
                        <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
                        <ds:DigestValue>2+tTV2cozq0boqXSgb+K6FY2EqjM5fCvBMiwbBR97sE=</ds:DigestValue>
                    </ds:Reference>
                    <ds:Reference URI="#id-081a1c66-00d0-45cd-9d00-bf8c4eddf19e">
                        <ds:Transforms>
                            <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
                                <InclusiveNamespaces xmlns="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="wsa irs soapenv urn2 urn3 urn4 wsse"/>
                            </ds:Transform>
                        </ds:Transforms>
                        <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
                        <ds:DigestValue>ENBnod7vKlXCLiWqft1H4duETdaR4MxotsJ8JVUhZDc=</ds:DigestValue>
                    </ds:Reference>
                    <ds:Reference URI="#id-E68EBBF1696C5DD4AA143353323390578">
                        <ds:Transforms>
                            <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
                                <InclusiveNamespaces xmlns="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="wsa irs soapenv urn urn3 urn4 wsse"/>
                            </ds:Transform>
                        </ds:Transforms>
                        <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
                        <ds:DigestValue>0gJBTeYumHhBgwSM08x0lAQeiFb9xGlsacSe7E5GzeQ=</ds:DigestValue>
                    </ds:Reference>
                </ds:SignedInfo>
                <ds:SignatureValue>eXaUaEVZMzg1Bxsy+EVoIG4d4to3lrUW+7==</ds:SignatureValue>
                <ds:KeyInfo Id="KI-1057E45A7D26C7FA471572296060184463">
                    <wsse:SecurityTokenReference wsu:Id="STR-1057E45A7D26C7FA471572296060184464">
                        <wsse:KeyIdentifier EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3">MIIGNTCCBR2gAwIBAgIQQAF...VIrQSgw</wsse:KeyIdentifier>
                    </wsse:SecurityTokenReference>
                </ds:KeyInfo>
            </ds:Signature>
            <wsu:Timestamp wsu:Id="TS-1057E45A7D26C7FA471572296060184461">
                <wsu:Created>2019-10-28T20:54:20.184Z</wsu:Created>
                <wsu:Expires>2019-10-28T21:04:20.184Z</wsu:Expires>
            </wsu:Timestamp>
        </wsse:Security>

        <Action xmlns="http://www.w3.org/2005/08/addressing">BulkRequestTransmitter</Action>
        <MessageID xmlns="http://www.w3.org/2005/08/addressing">urn:uuid:d0711332-e90f-4587-848b-3ee0da27c2e9</MessageID>
        <To xmlns="http://www.w3.org/2005/08/addressing">https://la.www4.irs.gov/airp/aca/a2a/1095BC_Transmission</To>
        <ReplyTo xmlns="http://www.w3.org/2005/08/addressing">
            <Address>http://www.w3.org/2005/08/addressing/anonymous</Address>
        </ReplyTo>
        <urn4:ACASecurityHeader xmlns:ns6="http://www.w3.org/2000/09/xmldsig#" xmlns:ns7="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:ns8="urn:us:gov:treasury:irs:msg:irsacabulkrequesttransmitter">
            <irs:UserId>0aB0000</irs:UserId>
        </urn4:ACASecurityHeader>
        <urn2:ACABusinessHeader xmlns:ns6="http://www.w3.org/2000/09/xmldsig#" xmlns:ns7="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:ns8="urn:us:gov:treasury:irs:msg:irsacabulkrequesttransmitter" ns7:Id="id-E00EBBF0000C5DD4AA143353323390000">
            <urn:UniqueTransmissionId>65fc42c9-8ecd-46f2-0000-00000d58b9be:SYS12:BB01F::T</urn:UniqueTransmissionId>
            <irs:Timestamp>2019-10-28T20:54:20Z</irs:Timestamp>
        </urn2:ACABusinessHeader>
        <urn:ACATransmitterManifestReqDtl xmlns:ns6="http://www.w3.org/2000/09/xmldsig#" xmlns:ns7="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:ns8="urn:us:gov:treasury:irs:msg:irsacabulkrequesttransmitter" ns7:Id="id-00000c66-00d0-45cd-9d00-bf8c4eddf19e">
            <urn:PaymentYr>2016</urn:PaymentYr>
            <urn:PriorYearDataInd>1</urn:PriorYearDataInd>
            <irs:EIN>000000000</irs:EIN>
            <urn:TransmissionTypeCd>O</urn:TransmissionTypeCd>
            <urn:TestFileCd>P</urn:TestFileCd>
            <urn:TransmitterNameGrp>
                <urn:BusinessNameLine1Txt>First Capitol Consulting</urn:BusinessNameLine1Txt>
            </urn:TransmitterNameGrp>
            <urn:CompanyInformationGrp>
                <urn:CompanyNm>F  Co</urn:CompanyNm>
                <urn:MailingAddressGrp>
                    <urn:USAddressGrp>
                        <urn:AddressLine1Txt>Abc Blvd</urn:AddressLine1Txt>
                        <urn:AddressLine2Txt>Suite 000</urn:AddressLine2Txt>
                        <irs:CityNm>L city</irs:CityNm>
                        <urn:USStateCd>aA</urn:USStateCd>
                        <irs:USZIPCd>00000</irs:USZIPCd>
                    </urn:USAddressGrp>
                </urn:MailingAddressGrp>
                <urn:ContactNameGrp>
                    <urn:PersonFirstNm>a</urn:PersonFirstNm>
                    <urn:PersonLastNm>b</urn:PersonLastNm>
                </urn:ContactNameGrp>
                <urn:ContactPhoneNum>0000000000</urn:ContactPhoneNum>
            </urn:CompanyInformationGrp>
            <urn:VendorInformationGrp>
                <urn:VendorCd>I</urn:VendorCd>
                <urn:ContactNameGrp>
                    <urn:PersonFirstNm>f</urn:PersonFirstNm>
                    <urn:PersonLastNm>a</urn:PersonLastNm>
                </urn:ContactNameGrp>
                <urn:ContactPhoneNum>0000000000</urn:ContactPhoneNum>
            </urn:VendorInformationGrp>
            <urn:TotalPayeeRecordCnt>180</urn:TotalPayeeRecordCnt>
            <urn:TotalPayerRecordCnt>1</urn:TotalPayerRecordCnt>
            <urn:SoftwareId>00A0000000</urn:SoftwareId>
            <urn:FormTypeCd>1094/1095C</urn:FormTypeCd>
            <irs:BinaryFormatCd>application/xml</irs:BinaryFormatCd>
            <irs:ChecksumAugmentationNum>dc4206d79d71cc9c8d5e9183677580e0b68b2a708543409aaec7a407c66d6a0e</irs:ChecksumAugmentationNum>
            <irs:AttachmentByteSizeNum>336472</irs:AttachmentByteSizeNum>
            <urn:DocumentSystemFileNm>1094C_Request_BB01F_20191028T205416001Z.xml</urn:DocumentSystemFileNm>
        </urn:ACATransmitterManifestReqDtl>
    </soapenv:Header>

    <soapenv:Body>
        <ns8:ACABulkRequestTransmitter xmlns:ns6="http://www.w3.org/2000/09/xmldsig#" xmlns:ns7="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:ns8="urn:us:gov:treasury:irs:msg:irsacabulkrequesttransmitter" version="1.0">
            <irs:BulkExchangeFile>
                <xop:Include xmlns:xop="http://www.w3.org/2004/08/xop/include" href="cid:734ca002-8275-4680-a24c-923694dc777e-93@urn%3Aus%3Agov%3Atreasury%3Airs%3Acommon"/>
            </irs:BulkExchangeFile>
        </ns8:ACABulkRequestTransmitter>
    </soapenv:Body>
</soapenv:Envelope>
--uuid:c82296c0-0eaf-4133-971d-7838bafae222

I am getting the following error (500)

ID: 98 Response-Code: 500
Encoding: UTF-8
Content-Type: text/xml;charset=utf-8
Headers: {connection=[close], Content-Length=[613], content-type=[text/xml;charset=utf-8], Date=[Mon, 28 Oct 2019 20:54:36 GMT], Set-Cookie=[dc=dcd;Path=/;Version=1;Secure;Httponly;Max-Age=900], Strict-Transport-Security=[max-age=31536000], X-Cnection=[close]}

Payload:

<soapenv:Fault>

  <faultcode>soapenv:Server</faultcode>

  <faultstring>Error in assertion processing</faultstring>

  <faultactor>ssg</faultactor>

  <detail>

    <l7:policyResult xmlns:l7="http://www.layer7tech.com/ws/policy/fault" status="Multipart stream ended before a terminating boundary was encountered"/>

  </detail>

</soapenv:Fault>

can somebody please explain what is that I am missing or doing wrong.

Answer 1

I do experiencing the same problem. I don't see any problems in your code or SOAP envelop, so my only suggestion is to write to the IRS AIR mailbox and they will investigate. This is what they currently do now with my case.

Answer 2

I have been working on this for awhile and eliminated the first 2 things the mailbox suggested(TLS 1.2, FIPS and network issues on my end). My suspicion is they changed/updated a middle tier to broadcom (formerly Layer7 and CA). I am going to test by turning off http chunked encoding as I have it on by default. If you are not sure how to turn it off you can just use http 1.0 because it is only supported in http 1.1. I updated to turn off chunked encoding on the http protocol (policy in WebSphere) and I was able to go from sending 35 to 3000 and higher.

Answer 3

Thanks Tim Schumacher I am able to make it work with this solution, made changes to my custom ssl socket factory

    HTTPConduit http = (HTTPConduit) client.getConduit();
    TLSClientParameters tlsParms = new TLSClientParameters();
    tlsParms.setSSLSocketFactory(sslContext.getSocketFactory());
    tlsParms.setSecureSocketProtocol("TLSv1.2");
    http.setTlsClientParameters(tlsParms);
    HTTPClientPolicy policy = new HTTPClientPolicy();
    policy.setAllowChunking(false);
    http.setClient(policy);

Answer 4

I have been experiencing the same issues, but we did find a way to manually get these to go through. I wanted to share in case it helps you figure out whats going on, although I think a change needs to happen at the IRS.

There were 3 issues to deal with.

1. In the header there are timestamps for Create and Expired and we had to add milliseconds onto those.

2. Mentioned some above we had to remove the Transfer-Encoding: chunked from the transmission (which we did manually in Fiddler).

3. I had to gzip the entire message on its own. The program does a gzip of the message, but when I look at the compressed message in code and the final message being sent there were 8 Characters added to the beginning and part of the very end was changed. If I take the body and gzip it on its own and past that back into fiddler (with the chunked removed) then I get a successful response.

Answer 5

We were able to get this working with Apache CXF v3.1.4 by modifying our configuration; we added AllowChunking="false" and secureSocketProtocol="TLSv1.2". Prior to this change, we were also getting the response back "Error in assertion processing" since beginning of October 2019 for any transmissions greater than around 60 KB. Here's the change in the Apache CXF XML configuration that we made:

  <http-conf:conduit name="*.http-conduit">
                      AllowChunking="false"
    />
    <http-conf:tlsClientParameters
            secureSocketProtocol="TLSv1.2"
    />
</http-conf:conduit>