Hi everybody, * Florian Viehweger wrote: > Am Fri, 27 Aug 2021 08:32:26 +0100 > schrieb Stuart Henderson <s...@spacehopper.org>: > > > On 2021/08/26 23:26, Florian Viehweger wrote: > > > Hi, > > > > > > this updates profanity to 0.11.0. > > > > > > Changes are listed here [1] as they are too long to list in this > > > mail. > > > > > > This version fixes several issues regarding OMEMO. Additional the > > > XMPP library is changed to libstrophe, as libmesode is deprecated > > > upstream.
Maybe it's me and my stupidity but since this update I can no longer connect to a XMPP server with a LE certificate. Both client and server are running -current (server with prosody). The client reports "Login failed" and the debug log shows: 19/09/2021 11:16:17: prof: INF: Connecting using account: x...@jabber.xosc.org 19/09/2021 11:16:17: prof: INF: Connecting as x...@jabber.xosc.org/profanity.kTdJ 19/09/2021 11:16:17: prof: DBG: Connecting with flags (0x2): 19/09/2021 11:16:17: prof: DBG: XMPP_CONN_FLAG_MANDATORY_TLS 19/09/2021 11:16:17: xmpp: DBG: SRV lookup failed, connecting via domain. 19/09/2021 11:16:17: xmpp: DBG: sock_connect() to jabber.xosc.org:5222 returned 7 19/09/2021 11:16:17: xmpp: DBG: Attempting to connect to jabber.xosc.org 19/09/2021 11:16:17: xmpp: DBG: connection successful 19/09/2021 11:16:17: conn: DBG: SENT: <?xml version="1.0"?><stream:stream to="jabber.xosc.org" xml:lang="en" version="1.0" xmlns="jabber:client" xmlns:stream="http://etherx.jabber.org/streams";> 19/09/2021 11:16:17: xmpp: DBG: RECV: <stream:stream version="1.0" id="8c063ebf-77e7-4493-9ac3-79b6b0defa4d" lang="en" from="jabber.xosc.org"> 19/09/2021 11:16:17: xmpp: DBG: RECV: <features xmlns="http://etherx.jabber.org/streams";><starttls xmlns="urn:ietf:params:xml:ns:xmpp-tls"><required/></starttls></features> 19/09/2021 11:16:17: conn: DBG: SENT: <starttls xmlns="urn:ietf:params:xml:ns:xmpp-tls"/> 19/09/2021 11:16:17: xmpp: DBG: RECV: <proceed xmlns="urn:ietf:params:xml:ns:xmpp-tls"/> 19/09/2021 11:16:17: xmpp: DBG: handle proceedtls called for proceed 19/09/2021 11:16:17: xmpp: DBG: proceeding with TLS 19/09/2021 11:16:17: tls: DBG: Certificate verification FAILED, result=X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY(20) 19/09/2021 11:16:17: tls: DBG: Certificate was not presented by peer 19/09/2021 11:16:17: tls: DBG: error=SSL_ERROR_SSL(1) errno=0 19/09/2021 11:16:17: tls: DBG: error:14FFF086:SSL routines:(UNKNOWN)SSL_internal:certificate verify failed 19/09/2021 11:16:17: conn: DBG: Couldn't start TLS! error -3 tls_error 1 19/09/2021 11:16:17: conn: DBG: SENT: </stream:stream> 19/09/2021 11:16:17: xmpp: DBG: Send error occurred, disconnecting. 19/09/2021 11:16:17: xmpp: DBG: Closing socket. 19/09/2021 11:16:17: prof: DBG: Connection handler: XMPP_CONN_DISCONNECT 19/09/2021 11:16:17: prof: DBG: Connection handler: Login failed 19/09/2021 11:16:17: prof: DBG: Connection handler: No reconnect timer 19/09/2021 11:16:17: prof: INF: Login failed The server simply logs: Sep 19 09:23:14 omega prosody[38808]: c2s87a60669340: Client connected Sep 19 09:23:16 omega prosody[38808]: c2s87a60669340: Client disconnected: ssl handshake error: tlsv1 alert unknown ca When I play around with the /tls settings, I mostly get the message 11:20:36 - Certificate path setting only supported when built with libmesode. 11:20:47 - Certificate path setting only supported when built with libmesode. I know that connections to the server with the password are working since my mobile client connects successfully. I removed all settings and started completely fresh, however, I still cannot connect. Any hints on how to debug this further? Cheers Matthias
