XMPP does not work with jabber.ccc.de

Please describe the problem.

Entering a jabber address which's server got a selfsigned certificate, the process just fails, without asking for acceptance for that certificate. This is quite a showstopper. (for example: jabber.ccc.de)

What steps will reproduce the problem?

Try with an account from e.g. jabber.ccc.de

What version of git-annex are you using? On what operating system?

Arch Linux, aur/git-annex-standalone 4.20130709-1

Please provide any additional information below.

There is no logoutput to add... I'm sorry.

# If you can, paste a complete transcript of the problem occurring here.
# If the problem is with the git-annex assistant, paste in .git/annex/daemon.log


# End of transcript or log.

RSS Atom

comment 1

Hmm, actually the XMPP library it's using does not fail on an invalid or self-signed cert. This is something that SSL using libraries sadly often get wrong, and yeah, I see I contacted the library author a while ago, and a "sessionIsSecure" has been added to it, which can be used to check if the cert was valid.

This leaves open the question of what's happening with you on the CCC server. Did you get an error message?

Comment by joeyh.name — Tue Jul 16 17:33:23 2013

Remove comment

comment 2

Actually, sessionIsSecure only tells me if it's using SSL at all; still waiting on the XMPP library to add cert checking..

Comment by joeyh.name — Tue Jul 16 17:42:42 2013

Remove comment

comment 3

Just to confirm that I'm also affected. Maybe you should add the possibility in the error message next to "is the password correct?".

Comment by psycojoker — Mon Nov 25 09:54:33 2013

Remove comment

comment 4

When will this issue be fixed? Currently my Jabber account is on jabber.ccc.de.

This is the error message:

Unable to connect to the Jabber server. Maybe you entered the wrong password? (Error message: host jabberd.jabber.ccc.de.:5222 failed: AuthenticationFailure (Element {elementName = Name {nameLocalName = "failure", nameNamespace = Just "urn:ietf:params:xml:ns:xmpp-sasl", namePrefix = Nothing}, elementAttributes = [], elementNodes = [NodeElement (Element {elementName = Name {nameLocalName = "bad-protocol", nameNamespace = Just "urn:ietf:params:xml:ns:xmpp-sasl", namePrefix = Nothing}, elementAttributes = [], elementNodes = []})]}); host jabberd.jabber.ccc.de.:80 failed: AuthenticationFailure (Element {elementName = Name {nameLocalName = "failure", nameNamespace = Just "urn:ietf:params:xml:ns:xmpp-sasl", namePrefix = Nothing}, elementAttributes = [], elementNodes = [NodeElement (Element {elementName = Name {nameLocalName = "bad-protocol", nameNamespace = Just "urn:ietf:params:xml:ns:xmpp-sasl", namePrefix = Nothing}, elementAttributes = [], elementNodes = []})]}))

Can you advise me another trustworthy non-profit and free (free as in free beer" as well as "free as in free speech") jabber server?

Comment by http://xlogon.net/yminus — Thu May 8 21:12:49 2014

Remove comment

comment 5

AFAIKS, this is not a failure from a self-signed certificate. git-annex contacted the jabber server, accepted its certificate, and tried to log in. The jabber server rejected the login.

This kind of problem has in the past turned out to involve incompatabilities in SASL authentication using some newish authentication schemes. Often it's been a bug in the XMPP server that's tickled by the haksell TLS library. See for example http://bugs.debian.org/717463

So, what XMPP server is used by CCC?

Comment by joeyh.name — Sat May 24 20:03:46 2014

Remove comment

Add a comment