1 |
With the following pidgin debug log: |
2 |
21:46:56) account: Connecting to account XXX@×××××.com/. |
3 |
(21:46:56) connection: Connecting. gc = 0x1d44780 |
4 |
(21:46:56) dnssrv: querying SRV record for gmail.com: |
5 |
_xmpp-client._tcp.gmail.com |
6 |
(21:46:56) dnssrv: found 5 SRV entries |
7 |
(21:46:56) dnsquery: Performing DNS lookup for xmpp.l.google.com |
8 |
(21:46:56) dns: Successfully sent DNS request to child 805 |
9 |
(21:46:56) dns: Got response for 'xmpp.l.google.com' |
10 |
(21:46:56) dnsquery: IP resolved for xmpp.l.google.com |
11 |
(21:46:56) proxy: Attempting connection to 209.85.225.125 |
12 |
(21:46:56) proxy: Connecting to xmpp.l.google.com:5222 with no proxy |
13 |
(21:46:56) proxy: Connection in progress |
14 |
(21:46:56) proxy: Connecting to xmpp.l.google.com:5222. |
15 |
(21:46:56) proxy: Connected to xmpp.l.google.com:5222. |
16 |
(21:46:56) jabber: Sending (XXX@×××××.com): <?xml version='1.0' ?> |
17 |
(21:46:56) jabber: Sending (XXX@×××××.com): <stream:stream |
18 |
to='gmail.com' xmlns='jabber:client' |
19 |
xmlns:stream='http://etherx.jabber.org/streams' version='1.0'> |
20 |
(21:46:56) jabber: Recv (138): <stream:stream from="gmail.com" |
21 |
id="0A69C2453F195AB0" version="1.0" |
22 |
xmlns:stream="http://etherx.jabber.org/streams" xmlns="jabber:client"> |
23 |
(21:46:56) jabber: Recv (241): <stream:features><starttls |
24 |
xmlns="urn:ietf:params:xml:ns:xmpp-tls"><required/></starttls><mechanisms |
25 |
xmlns="urn:ietf:params:xml:ns:xmpp-sasl"><mechanism>X-GOOGLE-TOKEN</mechanism><mechanism>X-OAUTH2</mechanism></mechanisms></stream:features> |
26 |
(21:46:56) jabber: Sending (XXX@×××××.com): <starttls |
27 |
xmlns='urn:ietf:params:xml:ns:xmpp-tls'/> |
28 |
(21:46:56) jabber: Recv (50): <proceed xmlns="urn:ietf:params:xml:ns:xmpp-tls"/> |
29 |
(21:46:56) gnutls: Starting handshake with gmail.com |
30 |
(21:46:56) util: Writing file prefs.xml to directory /home/XXX/.purple |
31 |
(21:46:56) util: Writing file /home/XXX/.purple/prefs.xml |
32 |
(21:46:56) gnutls: Handshake complete |
33 |
(21:46:56) gnutls/x509: Key print: |
34 |
0c:99:2a:04:72:48:59:1a:3c:cf:ab:60:d0:2a:9e:73:73:42:f0:08 |
35 |
(21:46:56) gnutls/x509: Key print: |
36 |
dd:7a:7f:13:1d:db:a3:3d:3e:86:70:17:94:83:e6:fe:a6:98:7d:6a |
37 |
(21:46:56) gnutls: Peer provided 2 certs |
38 |
(21:46:56) gnutls: Lvl 0 SHA1 fingerprint: |
39 |
0c:99:2a:04:72:48:59:1a:3c:cf:ab:60:d0:2a:9e:73:73:42:f0:08 |
40 |
(21:46:56) gnutls: Serial: 6d:ca:e4:9f:00:03:00:00:34:be |
41 |
(21:46:56) gnutls: Cert DN: C=US,ST=California,L=Mountain |
42 |
View,O=Google Inc.,CN=gmail.com |
43 |
(21:46:56) gnutls: Cert Issuer DN: C=US,O=Google Inc,CN=Google |
44 |
Internet Authority |
45 |
(21:46:56) gnutls: Lvl 1 SHA1 fingerprint: |
46 |
dd:7a:7f:13:1d:db:a3:3d:3e:86:70:17:94:83:e6:fe:a6:98:7d:6a |
47 |
(21:46:56) gnutls: Serial: 0b:67:71 |
48 |
(21:46:56) gnutls: Cert DN: C=US,O=Google Inc,CN=Google Internet Authority |
49 |
(21:46:56) gnutls: Cert Issuer DN: C=US,O=Equifax,OU=Equifax Secure |
50 |
Certificate Authority |
51 |
(21:46:56) certificate/x509/tls_cached: Starting verify for gmail.com |
52 |
(21:46:56) certificate/x509/tls_cached: Checking for cached cert... |
53 |
(21:46:56) certificate/x509/tls_cached: ...Found cached cert |
54 |
(21:46:56) gnutls: Attempting to load X.509 certificate from |
55 |
/home/XXX/.purple/certificates/x509/tls_peers/gmail.com |
56 |
(21:46:56) certificate/x509/tls_cached: Peer cert matched cached |
57 |
(21:46:56) util: Writing file |
58 |
/home/XXX/.purple/certificates/x509/tls_peers/gmail.com |
59 |
(21:46:56) certificate: Successfully verified certificate for gmail.com |
60 |
(21:46:56) jabber: Sending (ssl) (XXX@×××××.com): <stream:stream |
61 |
to='gmail.com' xmlns='jabber:client' |
62 |
xmlns:stream='http://etherx.jabber.org/streams' version='1.0'> |
63 |
(21:46:56) jabber: Recv (ssl)(138): <stream:stream from="gmail.com" |
64 |
id="6C45C0A9313259E1" version="1.0" |
65 |
xmlns:stream="http://etherx.jabber.org/streams" xmlns="jabber:client"> |
66 |
(21:46:56) jabber: Recv (ssl)(197): <stream:features><mechanisms |
67 |
xmlns="urn:ietf:params:xml:ns:xmpp-sasl"><mechanism>PLAIN</mechanism><mechanism>X-GOOGLE-TOKEN</mechanism><mechanism>X-OAUTH2</mechanism></mechanisms></stream:features> |
68 |
(21:46:56) sasl: sasl_state is -1, failing the mech and trying again |
69 |
(21:46:56) connection: Connection error on 0x1d44780 (reason: 3 |
70 |
description: Server does not use any supported authentication method) |
71 |
(21:46:57) account: Disconnecting account XXX@×××××.com/ (0x1a3dbb0) |
72 |
(21:46:57) connection: Disconnecting connection 0x1d44780 |
73 |
(21:46:57) jabber: Sending (ssl) (XXX@×××××.com): </stream:stream> |
74 |
(21:46:57) connection: Destroying connection 0x1d44780 |
75 |
|
76 |
and USE flags: |
77 |
dev-libs/cyrus-sasl-2.1.25 berkdb gdbm java kerberos mysql pam |
78 |
postgres sqlite ssl -authdaemond -elibc_FreeBSD -ldapdb -openldap |
79 |
-sample -srp -static-libs -urandom |
80 |
net-im/pidgin-2.10.1 dbus debug doc gnutls gstreamer gtk idn ncurses |
81 |
nls perl python sasl spell tcl tk xscreensaver -eds -gadu -groupwise |
82 |
-meanwhile -networkmanager -prediction -silc -zephyr -zeroconf |
83 |
net-libs/gnutls-2.10.5 cxx doc lzo nls zlib -bindist -examples -guile -test |
84 |
|
85 |
where exactly is the SSL problem? |