Project

General

Profile

Actions

Bug #361

closed

PSK connection will not be re established after closing

Added by Hauke Mehrtens about 10 years ago. Updated about 10 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Target version:
Start date:
11/07/2014
Due date:
% Done:

0%

Estimated time:
Reviewer:
Build Version:

Description

Open eCardApp 1.1.0 + Governikus Autent Server 3.9 (I think older versions are also affected)

1. Start online authentication at https://dev-demo.governikus-eid.de:8443/Autent-DemoApplication/ (Link "Anmeldung mit installierter AusweisApp")
2. Click "next" till I see the Berechtigungszertifikat
3. Wait more than 60 seconds
4. The server closes the PSK TLS connection and the TCP connection
5. Click on "next" in the Open eCardApp
6. The Open eCardApp will try to send some data to the closed TCP connection

Result: The nPA authentication fails.
This works when I do not wait for 60 seconds, so the connection will not be closed.

The attached file contains a wireshark dump of the connection, use this to decrypt the ssl data:
CLIENT_RANDOM EE25A67357042D6EF9FC3C7B5E27C52245D419AA750FE83F57099B7FC140F84C CACD938B1D97A8C9C1C57BCC936FF3BB743F8E95D44CD922DE9D5EB6096EEEE7F29AEB400A69E195F10F381E5DAB9AD0


Files

ssl-psk-openecard-app.pcapng (27.7 KB) ssl-psk-openecard-app.pcapng Hauke Mehrtens, 11/07/2014 11:38 AM
Actions

Also available in: Atom PDF