Uploaded image for project: 'EtherNet/IP Core V3'
  1. EtherNet/IP Core V3
  2. PSEIP-963

[CIPSEC] PSK handshake with PSK larger than 48 bytes is not possible

          Details

          • Type: Bug
          • Status: Closed
          • Priority: Minor
          • Resolution: Fixed
          • Affects Version/s: None
          • Fix Version/s: V3.9.0.0
          • Component/s: None
          • Labels:
            None
          • Account:
            SPC EthernetIp Core (SPCETHERNET)

            Description

            A PSK handshake with Secret key larger than 48 bytes will be rejected by the Adapter. The reason is a limitation in the mbedTLS library which sets the PSK length per default to 384 bits or 48 bytes.

            According to the EtherNet/IP specification vol8. (Edition 1.18) section 5-4.4.5 Pre-Shared Keys – Attribute 5, PSKs must be supported up to 64 bytes.

            The device must support arbitrary PSK Identities up to 128 characters in length, and arbitrary PSKs up to 64 octets in length.

            The issue is fixed in the mbedTLS library and no changes in the core is required.

              Attachments

                Issue Links

                relates to

                Change - PSEISV5-501 Update PSMBEDTLS to V1.5.0.6 and PSAUTH to V1.4.0.3

                • Minor - Minor loss of function, or other problem where easy workaround is present.
                • Closed

                  Expenses

                    Activity

                      Status Description

                        People

                        • Reporter:
                          OKompani Omid Kompani
                        • Votes:
                          0 Vote for this issue
                          Watchers:
                          0 Start watching this issue

                          Dates

                          • Created:
                            Updated:
                            Resolved: