Empathy thinks a server certificate from www.EXAMPLE.com isn't from EXAMPLE.com
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
empathy (Ubuntu) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: empathy
PROBLEM
When I go to log into LiveJournal's XMPP server on Empathy, I get a dialogue that says:
"The identity provided by the chat server cannot be verified.
The hostname verified by the certificate doesn't match the server name.
Expected hostname: livejournal.com
Certificate hostname: www.livejournal
This dialogue comes up every time I open Empathy or reconnect to the server, unless I tell it to ignore certificate errors in the advanced preferences under "Accounts."
HOW TO REPRODUCE
1. Sign up for a LiveJournal account.
2. Log into their XMPP server using Empathy. Instructions are available at http://
In light of the fact that Empathy's Accounts menu includes an option to ignore certificate errors, it seems likely that this error can be reproduced on other XMPP servers.
EXPECTED BEHAVIOR
Empathy will not throw up error messages that suggest that it lacks basic reading comprehension skills.
ProblemType: Bug
DistroRelease: Ubuntu 11.04
Package: empathy 2.33.4-0ubuntu1
ProcVersionSign
Uname: Linux 2.6.38-7-generic i686
Architecture: i386
Date: Sun Mar 27 05:04:14 2011
EcryptfsInUse: Yes
InstallationMedia: Ubuntu 10.04 LTS "Lucid Lynx" - Release i386 (20100429)
ProcEnviron:
LANGUAGE=en_US:en
PATH=(custom, user)
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: empathy
UpgradeStatus: Upgraded to natty on 2011-03-18 (9 days ago)
Empathy is completely right here. A certificate for www.example.com is not valid for example.com., the problem here probably lies in livejournal.com hands.
A better support for SSL certificate verification has been added in 2.9x/3.0 branch (allowing to add exceptions) but still empathy is right here to warn you about hostname/ certificate CN mismatch.
I'm tempted to close this bug as invalid.