Skip to content

srp authentication broken on bundle 0.9alpha10 (ubuntu 14.04 LTS)

On ubuntu 14.04, I'm able to register an user, but when it tries to autologin I get the following error:

"Could not understand your login attempt. Please first send your login and a SRP ephemeral value A and then send the client_auth in the same session (using cookies)."

2015-06-17 18:25:18 futeisha leap.bitmask.provider.providerbootstrapper[5213] DEBUG Downloading provider info for u'cdev.bitmask.net'
2015-06-17 18:25:18 futeisha leap.bitmask.config.providerconfig[5213] DEBUG Going to verify SSL against /home/kali/Bitmask-linux64-0.9.0alpha10/config/leap/providers/cdev.bitmask.net/keys/ca/cacert.pem
2015-06-17 18:25:18 futeisha leap.bitmask.provider.providerbootstrapper[5213] DEBUG Requesting for provider.json... uri: https://api.cdev.bitmask.net:4430/provider.json, verify: /home/kali/Bitmask-linux64-0.9.0alpha10/config/leap/providers/cdev.bitmask.net/keys/ca/cacert.pem, headers: {'if-modified-since': 'Thu Oct  9 19:06:24 2014 GMT'}
/home/kali/Bitmask-linux64-0.9.0alpha10/./lib/requests/packages/urllib3/util/ssl_.py:90: InsecurePlatformWarning: A true SSLContext object is not available. This prevents urllib3 from configuring SSL appropriately and may cause certain SSL connections to fail. For more information, see https://urllib3.readthedocs.org/en/latest/security.html#insecureplatformwarning.
  InsecurePlatformWarning
2015-06-17 18:25:19 futeisha leap.bitmask.provider.providerbootstrapper[5213] DEBUG Request status code: 200
2015-06-17 18:25:19 futeisha leap.bitmask.provider.providerbootstrapper[5213] DEBUG Provider definition has been modified
2015-06-17 18:25:19 futeisha leap.bitmask.provider.providerbootstrapper[5213] DEBUG Downloading ca cert for u'cdev.bitmask.net' at u'https://cdev.bitmask.net/ca.crt'
2015-06-17 18:25:19 futeisha leap.bitmask.config.providerconfig[5213] DEBUG Going to verify SSL against /home/kali/Bitmask-linux64-0.9.0alpha10/config/leap/providers/cdev.bitmask.net/keys/ca/cacert.pem
2015-06-17 18:25:19 futeisha leap.bitmask.provider.providerbootstrapper[5213] DEBUG Checking ca fingerprint for u'cdev.bitmask.net' and cert '/home/kali/Bitmask-linux64-0.9.0alpha10/config/leap/providers/cdev.bitmask.net/keys/ca/cacert.pem'
2015-06-17 18:25:19 futeisha leap.bitmask.config.providerconfig[5213] DEBUG Going to verify SSL against /home/kali/Bitmask-linux64-0.9.0alpha10/config/leap/providers/cdev.bitmask.net/keys/ca/cacert.pem
2015-06-17 18:25:19 futeisha leap.bitmask.provider.providerbootstrapper[5213] DEBUG Checking api certificate for https://api.cdev.bitmask.net:4430 and cert /home/kali/Bitmask-linux64-0.9.0alpha10/config/leap/providers/cdev.bitmask.net/keys/ca/cacert.pem
2015-06-17 18:25:19 futeisha leap.bitmask.crypto.srpauth[5213] DEBUG Authentication preprocessing...
2015-06-17 18:25:19 futeisha leap.bitmask.crypto.srpauth[5213] DEBUG Starting authentication process...
2015-06-17 18:25:19 futeisha leap.bitmask.config.providerconfig[5213] DEBUG Going to verify SSL against /home/kali/Bitmask-linux64-0.9.0alpha10/config/leap/providers/cdev.bitmask.net/keys/ca/cacert.pem
/home/kali/Bitmask-linux64-0.9.0alpha10/./lib/requests/packages/urllib3/util/ssl_.py:90: InsecurePlatformWarning: A true SSLContext object is not available. This prevents urllib3 from configuring SSL appropriately and may cause certain SSL connections to fail. For more information, see https://urllib3.readthedocs.org/en/latest/security.html#insecureplatformwarning.
  InsecurePlatformWarning
2015-06-17 18:25:20 futeisha leap.bitmask.crypto.srpauth[5213] DEBUG Processing challenge...
2015-06-17 18:25:20 futeisha leap.bitmask.config.providerconfig[5213] DEBUG Going to verify SSL against /home/kali/Bitmask-linux64-0.9.0alpha10/config/leap/providers/cdev.bitmask.net/keys/ca/cacert.pem
2015-06-17 18:25:21 futeisha leap.bitmask.crypto.srpauth[5213] ERROR [422] Wrong password (HAMK): [{u'login': u'Could not understand your login attempt. Please first send your login and a SRP ephemeral value A and then send the client_auth in the same session (using cookies).'}]
2015-06-17 18:25:21 futeisha leap.bitmask.crypto.srpauth[5213] ERROR Error logging in, >
2015-06-17 18:25:21 futeisha leap.bitmask.util.keyring_helpers[5213] DEBUG No usable keyring found
DEBUG:leap.bitmask.util.keyring_helpers:No usable keyring found
2015-06-17 18:25:21 futeisha leap.bitmask.util.keyring_helpers[5213] DEBUG No usable keyring found
DEBUG:leap.bitmask.util.keyring_helpers:No usable keyring found

(from redmine: created on 2015-06-17, closed on 2015-06-18, relates #7161 (closed))