[Pidgin] #14619: Facebook plugin error because security changes

Pidgin trac at pidgin.im
Fri Jul 20 07:45:34 EDT 2012 

#14619: Facebook plugin error because security changes
-----------------------------+----------------------------------------------
 Reporter:  elrafaargentino  |        Owner:  deryni
     Type:  defect           |       Status:  new   
Milestone:                   |    Component:  XMPP  
  Version:  2.10.0           |   Resolution:        
 Keywords:                   |  
-----------------------------+----------------------------------------------

Comment(by deltafalcon):

 I'm also unable to login getting this error.

 I've tried changing my password multiple times, even greatly simplifying
 it to see if any special characters were interfering with it. Also tried
 using my email address that I use for Facebook (even though it's not a
 valid XMPP ID) to no avail. Also every possible combination of encryption
 /plain-text authentication available in the settings with no luck.

 Trying login.facebook.com attempts to connect but is ultimately unable to.

 Here's the debug log from Pidgin (have removed my username from it and
 from the encoded digests sent to the server):


 {{{
 (21:27:47) account: Connecting to account
 *************@chat.facebook.com/Pidgin.
 (21:27:47) connection: Connecting. gc = 0680E298
 (21:27:47) dnssrv: querying SRV record for chat.facebook.com: _xmpp-
 client._tcp.chat.facebook.com
 (21:27:47) dnssrv: found 1 SRV entries
 (21:27:47) dnsquery: Performing DNS lookup for CHAt.FAceboOk.COm
 (21:27:47) dnsquery: IP resolved for CHAt.FAceboOk.COm
 (21:27:47) proxy: Attempting connection to 66.220.151.99
 (21:27:47) proxy: Connecting to CHAt.FAceboOk.COm:5222 with no proxy
 (21:27:47) proxy: Connection in progress
 (21:27:48) util: Writing file accounts.xml to directory
 C:\Users\******\AppData\Roaming\.purple
 (21:27:48) util: Writing file
 C:\Users\******\AppData\Roaming\.purple\accounts.xml
 (21:27:48) proxy: Connecting to CHAt.FAceboOk.COm:5222.
 (21:27:48) proxy: Connected to CHAt.FAceboOk.COm:5222.
 (21:27:48) jabber: Sending (*************@chat.facebook.com/Pidgin): <?xml
 version='1.0' ?>
 (21:27:48) jabber: Sending (*************@chat.facebook.com/Pidgin):
 <stream:stream to='chat.facebook.com' xmlns='jabber:client'
 xmlns:stream='http://etherx.jabber.org/streams' version='1.0'>
 (21:27:48) jabber: Recv (173): <?xml version="1.0"?><stream:stream
 id="D2CE9702" from="chat.facebook.com" version="1.0" xmlns="jabber:client"
 xmlns:stream="http://etherx.jabber.org/streams" xml:lang="en">
 (21:27:48) jabber: Recv (227): <stream:features><starttls
 xmlns="urn:ietf:params:xml:ns:xmpp-tls"/><mechanisms
 xmlns="urn:ietf:params:xml:ns:xmpp-sasl"><mechanism>X-FACEBOOK-
 PLATFORM</mechanism><mechanism>DIGEST-
 MD5</mechanism></mechanisms></stream:features>
 (21:27:48) jabber: Sending (*************@chat.facebook.com/Pidgin):
 <starttls xmlns='urn:ietf:params:xml:ns:xmpp-tls'/>
 (21:27:48) jabber: Recv (50): <proceed xmlns="urn:ietf:params:xml:ns:xmpp-
 tls"/>
 (21:27:49) nss: subject=CN=chat.facebook.com,O="Facebook, Inc.",L=Palo
 Alto,ST=California,C=US issuer=CN=DigiCert High Assurance
 CA-3,OU=www.digicert.com,O=DigiCert Inc,C=US
 (21:27:49) nss: subject=CN=DigiCert High Assurance
 CA-3,OU=www.digicert.com,O=DigiCert Inc,C=US issuer=CN=DigiCert High
 Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US
 (21:27:49) nss: subject=CN=DigiCert High Assurance EV Root
 CA,OU=www.digicert.com,O=DigiCert Inc,C=US issuer=CN=DigiCert High
 Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US
 (21:27:49) certificate/x509/tls_cached: Starting verify for
 chat.facebook.com
 (21:27:49) certificate/x509/tls_cached: Checking for cached cert...
 (21:27:49) certificate/x509/tls_cached: ...Found cached cert
 (21:27:49) nss/x509: Loading certificate from
 C:\Users\******\AppData\Roaming\.purple\certificates\x509\tls_peers\chat.facebook.com
 (21:27:49) certificate/x509/tls_cached: Peer cert matched cached
 (21:27:49) nss/x509: Exporting certificate to
 C:\Users\******\AppData\Roaming\.purple\certificates\x509\tls_peers\chat.facebook.com
 (21:27:49) util: Writing file
 C:\Users\******\AppData\Roaming\.purple\certificates\x509\tls_peers\chat.facebook.com
 (21:27:49) certificate: Successfully verified certificate for
 chat.facebook.com
 (21:27:49) jabber: Sending (ssl) (*************@chat.facebook.com/Pidgin):
 <stream:stream to='chat.facebook.com' xmlns='jabber:client'
 xmlns:stream='http://etherx.jabber.org/streams' version='1.0'>
 (21:27:49) jabber: Recv (ssl)(173): <?xml version="1.0"?><stream:stream
 id="AFF09A45" from="chat.facebook.com" version="1.0" xmlns="jabber:client"
 xmlns:stream="http://etherx.jabber.org/streams" xml:lang="en">
 (21:27:49) jabber: Recv (ssl)(176): <stream:features><mechanisms
 xmlns="urn:ietf:params:xml:ns:xmpp-sasl"><mechanism>X-FACEBOOK-
 PLATFORM</mechanism><mechanism>DIGEST-
 MD5</mechanism></mechanisms></stream:features>
 (21:27:49) sasl: Mechs found: X-FACEBOOK-PLATFORM DIGEST-MD5
 (21:27:49) jabber: Sending (ssl) (*************@chat.facebook.com/Pidgin):
 <auth xmlns='urn:ietf:params:xml:ns:xmpp-sasl' mechanism='DIGEST-MD5'
 xmlns:ga='http://www.google.com/talk/protocol/auth' ga:client-uses-full-
 bind-result='true'/>
 (21:27:49) jabber: Recv (ssl)(212): <challenge
 xmlns="urn:ietf:params:xml:ns:xmpp-
 sasl">cmVhbG09ImNoYXQuZmFjZWJvb2suY29tIixub25jZT0iOTUzMThBQkRGMkFEQjk4OTc3MTg4RjhCQkIxQjU4NkQiLHFvcD0iYXV0aCIsY2hhcnNldD11dGYtOCxhbGdvcml0aG09bWQ1LXNlc3M=</challenge>
 (21:27:49) sasl: DIGEST-MD5 client step 2
 (21:27:49) jabber: Sending (ssl) (*************@chat.facebook.com/Pidgin):
 <response xmlns='urn:ietf:params:xml:ns:xmpp-
 sasl'>dXNlcm5hbWU9IioqKioqKioqKioqKioiLHJlYWxtPSJjaGF0LmZhY2Vib29rLmNvbSIsbm9uY2U9Ijk1MzE4QUJERjJBREI5ODk3NzE4OEY4QkJCMUI1ODZEIixjbm9uY2U9IlBnaFpRQko1RW5OWUpqWUplMWNUY0dsS0dCWm9QQk5BWFRNalNGZGdYRHc9IixuYz0wMDAwMDAwMSxxb3A9YXV0aCxkaWdlc3QtdXJpPSJ4bXBwL0NIQXQuRkFjZWJvT2suQ09tIixyZXNwb25zZT1lYWY4MDkzZTU3NDUwMjI4MGRiZTY3OGRjMDBkZTAzYyxjaGFyc2V0PXV0Zi04</response>
 (21:27:49) jabber: Recv (ssl)(77): <failure xmlns="urn:ietf:params:xml:ns
 :xmpp-sasl"><not-authorized/></failure>
 (21:27:49) sasl: Mechs found: X-FACEBOOK-PLATFORM
 (21:27:49) sasl: No worthy mechs found
 (21:27:49) connection: Connection error on 0680E298 (reason: 2
 description: Not Authorized)
 (21:27:49) account: Disconnecting account
 *************@chat.facebook.com/Pidgin (0268CDB0)
 (21:27:49) connection: Disconnecting connection 0680E298
 (21:27:49) jabber: Sending (ssl) (*************@chat.facebook.com/Pidgin):
 </stream:stream>
 (21:27:49) connection: Destroying connection 0680E298
 (21:27:54) util: Writing file accounts.xml to directory
 C:\Users\******\AppData\Roaming\.purple
 (21:27:54) util: Writing file
 C:\Users\******\AppData\Roaming\.purple\accounts.xml
 }}}


 I've been hunting around for a fix to the issue and this seems to be a
 solution: http://stackoverflow.com/questions/7265505/x-facebook-platform-
 not-authorized
 http://www.ianquigley.com/A91_Facebook_Chat_Authentication_in_C.html

-- 
Ticket URL: <http://developer.pidgin.im/ticket/14619#comment:17>
Pidgin <http://pidgin.im>
Pidgin

More information about the Tracker mailing list