http://redmine.audacious-media-player.org/http://redmine.audacious-media-player.org/welcome/favicon.ico?15159353402013-09-05T23:35:20ZRedmineAudacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=11892013-09-05T23:35:20ZLuís PicciochiPitxyoki@Gmail.com
<ul></ul><p>Disregard the previous URLs.</p>
<p>They should be:<br /><pre>
$ wget https://ws.audioscrobbler.com/2.0/
--2013-09-05 22:32:56-- https://ws.audioscrobbler.com/2.0/
Resolving ws.audioscrobbler.com (ws.audioscrobbler.com)... 195.24.232.205
Connecting to ws.audioscrobbler.com (ws.audioscrobbler.com)|195.24.232.205|:443... connected.
ERROR: The certificate of `ws.audioscrobbler.com' is not trusted.
ERROR: The certificate of `ws.audioscrobbler.com' hasn't got a known issuer.
$ openssl s_client -showcerts -connect ws.audioscrobbler.com:443
CONNECTED(00000003)
depth=2 C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA
verify error:num=19:self signed certificate in certificate chain
verify return:0
---
Certificate chain
0 s:/OU=Domain Control Validated/CN=*.audioscrobbler.com
i:/C=BE/O=GlobalSign nv-sa/CN=GlobalSign Domain Validation CA - G2
(...)
1 s:/C=BE/O=GlobalSign nv-sa/OU=Root CA/CN=GlobalSign Root CA
i:/C=BE/O=GlobalSign nv-sa/OU=Root CA/CN=GlobalSign Root CA
(...)
2 s:/C=BE/O=GlobalSign nv-sa/CN=GlobalSign Domain Validation CA - G2
i:/C=BE/O=GlobalSign nv-sa/OU=Root CA/CN=GlobalSign Root CA
(...)
Server certificate
subject=/OU=Domain Control Validated/CN=*.audioscrobbler.com
issuer=/C=BE/O=GlobalSign nv-sa/CN=GlobalSign Domain Validation CA - G2
(...)
Verify return code: 19 (self signed certificate in certificate chain)
</pre></p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=11962013-09-08T08:09:18ZRuei-Yuan LuRueiYuan.Lu@gmail.com
<ul></ul><p>Currently I built the scrobbler plugin with libcurl4-openssl-dev, instead of libcurl4-gnutls-dev, to avoid this problem.</p>
<p>It works on my Debian Wheezy machine. :)</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=12072013-09-12T23:47:45ZLuís PicciochiPitxyoki@Gmail.com
<ul></ul><p>Thanks, Ruey-Yuan.</p>
<p>After investigating this, it seems that the issue may be related with the order the certificates are sent by last.fm.<br />OpenSSL seems to be more resilient to server (mis?)configurations. After checking if it really solves this issue, a strong dependency on OpenSSL to avoid compiling against GnuTLS may solve this.</p>
<p>Relating to the above openssl command, if CApath is given on the command line, OpenSSL will validate the certificate by looking at the installed CA certs:<br /><pre>$ openssl s_client -connect ws.audioscrobbler.com:443 -CApath /etc/ssl/certs/
(...)
Verify return code: 0 (ok)
</pre></p>
<p>Doing the same with GnuTLS will not:<br /><pre>$ gnutls-cli -p 443 ws.audioscrobbler.com --x509cafile /etc/ssl/certs/ca-certificates.crt
Processed 159 CA certificate(s).
Resolving 'ws.audioscrobbler.com'...
Connecting to '195.24.232.205:443'...
*** Verifying server certificate failed...
*** Fatal error: Error in the certificate.
*** Handshake has failed
GnuTLS error: Error in the certificate.</pre><br />...which may be related to this:<br /><cite>gnutls is tolerant and if the correct chain is provided<br />in the front of the list then it will verify the chain and not complain.<br />The problem is if there is no proper chain e.g if certificates are<br />thrown in a random order.</cite><br />From <a class="external" href="https://lists.gnu.org/archive/html/help-gnutls/2012-03/msg00038.html">https://lists.gnu.org/archive/html/help-gnutls/2012-03/msg00038.html</a></p>
<p>But I'll need further confirmation on this, to get rid of any biases.</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=12112013-09-14T00:40:29ZJohn Lindgrenjohn@jlindgren.net
<ul><li><strong>Subject</strong> changed from <i>Scrobbler doesn't scrobble when the last.fm certificate is not recognised</i> to <i>Scrobbler refuses last.fm certificate if built with GnuTLS</i></li></ul> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=12142013-09-15T00:02:06ZJohn Lindgrenjohn@jlindgren.net
<ul></ul><p>Trying to load <a class="external" href="https://last.fm">https://last.fm</a> in Firefox on Windows 7 also complains about a bad certificate. I've notified last.fm of the problem.<br /><a class="external" href="http://www.last.fm/forum/21713/_/2215292">http://www.last.fm/forum/21713/_/2215292</a></p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=12192013-09-16T23:25:10ZLuís PicciochiPitxyoki@Gmail.com
<ul></ul><p>I couldn't reproduce that with an up to date Firefox (23.0.1) and Windows 7 (64-bit) with all updates installed.<br />Did you try with all updates?</p>
<p>Anyway, the address in question is ws.audioscrobbler.com, not last.fm. Can you reproduce that on Windows with ws.audioscrobbler.com?</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=12222013-09-19T04:52:15ZJohn Lindgrenjohn@jlindgren.net
<ul></ul><p>I just now updated Firefox to 24.0 (it was 23.0.1) and that fixed the warning on <a class="external" href="https://last.fm">https://last.fm</a>. Neither 23.0.1 nor 24.0 had a problem with <a class="external" href="https://ws.audioscrobbler.com">https://ws.audioscrobbler.com</a>.</p>
<p>I hate these problems where none of the symptoms make any sense ...</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=12232013-09-19T23:08:10ZLuís PicciochiPitxyoki@Gmail.com
<ul></ul><p>I'll try to look at this with some more time during the next weekend. No promises as usual, though.</p>
<p>John: on <a class="issue tracker-1 status-5 priority-4 priority-default closed" title="Bug: New Scrobbler can not connect with Last.fm - error appears in the Windows Audcious Verision (Closed)" href="http://redmine.audacious-media-player.org/issues/321">#321</a> you said that you also see this problem on Windows, with OpenSSL. Does that still happen? Windows updates frequently update certificates. Some needed certificate could been missing (?) but now isn't, coincidentally with you updating Firefox.</p>
This is what we know now:<br />Linux:
<ul>
<li>scrobbler built with libcurl-gnutls, doesn't recognise the certificate.</li>
<li>scrobbler built with libcurl-openssl, trusting Ruei-Yua's comment (<a class="issue tracker-1 status-5 priority-5 priority-high3 closed" title="Bug: Scrobbler refuses last.fm certificate if built with GnuTLS (Closed)" href="http://redmine.audacious-media-player.org/issues/343#note-2">#343-2</a>), recognises the certificate</li>
</ul>
Windows:
<ul>
<li>scrobbler built with libcurl-openssl, doesn't recognise the certificate.</li>
</ul>
<p>This is starting to look more and more a last.fm-side problem.</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=12302013-09-25T22:42:48ZLuís PicciochiPitxyoki@Gmail.com
<ul></ul><p>Here are the results from compiling and using the scrobbler on a Debian testing machine, with all updates as of when I performed the tests (Sep 21st, 2013):</p>
<p>libcurl4-gnutls-dev 7.32.0-1:</p>
<pre><code>scrobbler_communication.c:151 [send_message_to_lastfm]: Could not communicate with last.fm: Peer certificate cannot be authenticated with given CA certificates.</code></pre>
<p>libcurl4-nss-dev 7.32.0-1:</p>
<pre><code>scrobbler_communication.c:151 [send_message_to_lastfm]: Could not communicate with last.fm: Problem with the SSL CA cert (path? access rights?).</code></pre>
<p>libcurl4-openssl-dev 7.32.0-1:<br />Everything works.</p>
<p>I also tested changing the URL to <a class="external" href="https://google.com">https://google.com</a> and the connection was well established with both GnuTLS and OpenSSL. Obviously, Google didn't like the subsequent requests, but it's cert was recognised, that's all.<br />Using the NSS backend gave the same message as before.</p>
This is leading me to conclude that:
<ul>
<li>The last.fm certificate is not OK;</li>
<li>NSS support is not well configured on my machine. Apparently some additional configuration is needed to build a certificate DB, which could be built by the distro<sup><a href="#fn1">1</a></sup>[2] but for some reason it isn't. It makes no sense to force users/installers to do this kind of magic just to scrobble from Audacious.</li>
</ul>
<p>1 - <a class="external" href="http://curl.haxx.se/docs/sslcerts.html">http://curl.haxx.se/docs/sslcerts.html</a> (see Peer SSL Verification with NSS)<br />2 - <a class="external" href="http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=537866">http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=537866</a></p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=12322013-09-27T01:44:24ZJohn Lindgrenjohn@jlindgren.net
<ul></ul><p>I still get this on Windows:<br /><pre>scrobbler_communication.c:151 [send_message_to_lastfm]: Could not communicate with last.fm: Peer certificate cannot be authenticated with given CA certificates.</pre></p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=12392013-09-27T22:49:47ZLuís PicciochiPitxyoki@Gmail.com
<ul></ul><p>I have finally received a confirmation from last.fm that the issue is on their side and that they are working to solve it.</p>
<p>Nevertheless, please leave this issue open until the problem is definitely solved.</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=12412013-09-28T00:29:02ZJohn Lindgrenjohn@jlindgren.net
<ul></ul><p>Luís Picciochi wrote:</p>
<blockquote>
<p>Nevertheless, please leave this issue open until the problem is definitely solved.</p>
</blockquote>
<p>Sure.</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=12792013-10-06T16:59:13ZВиктор Пономарёв
<ul></ul><p>Luís, what is known about the correct certificate?</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=12802013-10-08T21:14:50ZLuís PicciochiPitxyoki@Gmail.com
<ul></ul><p>I still have no answer from last.fm.</p>
<p>However, yesterday I updated my wget installation, and that came with a dependency on libgnutls28. The previous version was libgnutls26.<br />The libgnutls26 is version 2.12.23-7, libgnutls28 is 3.2.4-4.</p>
<p>wget is now able to connect to <a class="external" href="https://ws.audioscrobbler.com">https://ws.audioscrobbler.com</a> , although it gets a 400 error subsequently (but that's not an issue):</p>
<pre>$ wget https://ws.audioscrobbler.com/2.0/
--2013-10-08 20:02:34-- https://ws.audioscrobbler.com/2.0/
Resolving ws.audioscrobbler.com (ws.audioscrobbler.com)... 195.24.233.55
Connecting to ws.audioscrobbler.com (ws.audioscrobbler.com)|195.24.233.55|:443... connected.
HTTP request sent, awaiting response... 400 Bad Request
2013-10-08 20:02:36 ERROR 400: Bad Request.
$</pre>
<p>gnutls-bin now also depends on libgnutls28:<br /><pre>$ gnutls-cli -p 443 ws.audioscrobbler.com --x509cafile /etc/ssl/certs/ca-certificates.crt
Processed 164 CA certificate(s).
Resolving 'ws.audioscrobbler.com'...
Connecting to '195.24.233.55:443'...
- Certificate type: X.509
- Got a certificate list of 3 certificates.
- Certificate[0] info:
(...)
- Status: The certificate is trusted.
(...)
- Handshake was completed</pre></p>
<p>This is leading me to think that quite likely, libgnutls28 (v3.2) is capable of dealing with last.fm's apparently crapped-up certificates. I'm planning to test this further by compiling libcurl against this more recent libgnutls, and see how the scrobbler goes. I'll probably do this over the weekend.</p>
<p>If there's anyone on the audience with more free time than me to do this, feel free to reply with your experience.</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=13012013-10-15T00:42:01ZLuís PicciochiPitxyoki@Gmail.com
<ul></ul><p>I just tested the scrobbler with libcurl 7.33.0, which was compiled against GnuTLS 3.2.4.<br />The scrobbler was able to contact last.fm, and submitted the most recent tracks. Due to a restriction on last.fm's side, older plays were lost. I could only submit tracks played on the last week. The others were at least 3 weeks old, and last.fm happily discarded them.</p>
<p>The solution is then to enforce to build against libcurl, which has to have been built either against libopenssl, or against libgnutls >=3.2.4 (this might be trickier than it seems).</p>
<p>jlindgren: when you tested on Windows, what was libcurl built against? libcurl? libopenssl? Which version?</p>
<p>I'll leave this here so it gets noticed:<br /><strong>Users will lose their oldest scrobbles due to this issue. If users want to re-scrobble their tracks, they should make a backup of ~/.config/audacious/scrobbler.log before upgrading libgnutls and prepare to re-scrobble them after this is solved. The backed-up scrobbler.log can be opened with any text editor.</strong></p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=13022013-10-15T00:44:51ZLuís PicciochiPitxyoki@Gmail.com
<ul></ul><p>Of course, that should read: <cite>what was libcurl built against? <strong>libgnutls</strong>? libopenssl</cite>?</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=13132013-10-16T05:24:13ZJohn Lindgrenjohn@jlindgren.net
<ul></ul><p>I am using OpenSSL 1.0.1e on Windows. The first problem was that OpenSSL didn't know where to look for CA certificates. After copying some certificates from my Linux partition, I can connect to google.com:443 successfully, but last.fm:443 is giving me the same output as in the original bug description:<br /><pre>
depth=0 OU = Domain Control Validated, CN = *.last.fm
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 OU = Domain Control Validated, CN = *.last.fm
verify error:num=27:certificate not trusted
verify return:1
depth=0 OU = Domain Control Validated, CN = *.last.fm
verify error:num=21:unable to verify the first certificate
verify return:1
</pre></p>
<p>Edit: I get the same output when I run openssl from the command line in Arch Linux, but in spite of that, the scrobbler can connect. So maybe libcurl+OpenSSL is more tolerant than OpenSSL on its own. I will try some more tests on Windows when I can find the time.</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=13142013-10-16T10:17:38ZLuís PicciochiPitxyoki@Gmail.com
<ul></ul><p>Please don't test against last.fm:443 but ws.audioscrobbler.com:443 .</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=13172013-10-20T03:21:14ZBob Bib
<ul></ul><p>Luís Picciochi wrote:</p>
<blockquote>
<p>I still have no answer from last.fm.</p>
</blockquote>
<p>Have you (or anyone else) tried to contact them one more time?</p>
<blockquote>
<p>Due to a restriction on last.fm's side, older plays were lost. I could only submit tracks played on the last week. The others were at least 3 weeks old, and last.fm happily discarded them.<br />...<br /><strong>If users want to re-scrobble their tracks, they should make a backup of <config> before upgrading libgnutls and prepare to re-scrobble them after this is solved</strong></p>
</blockquote>
<p>And this looks like separate issue. Do you have any more info on it?</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=13192013-10-23T00:48:57ZLuís PicciochiPitxyoki@Gmail.com
<ul></ul><p>I still have no idea on how to portably ensure libcurl was built against gnutls >= 3.2.4. We could check <a href="http://curl.haxx.se/libcurl/c/curl_version.html" class="external">libcurl's version string</a>, but that seems too fragile for the long term. Suggestions are welcome.</p>
<p>Bob Bib wrote:</p>
<blockquote>
<p>Luís Picciochi wrote:</p>
<blockquote>
<p>I still have no answer from last.fm.</p>
</blockquote>
<p>Have you (or anyone else) tried to contact them one more time?</p>
</blockquote>
<p>I was able to communicate with a last.fm person again today. There's still no progress on their side. The issue is still "in the backlog".</p>
<blockquote><blockquote>
<p>Due to a restriction on last.fm's side, older plays were lost. I could only submit tracks played on the last week. The others were at least 3 weeks old, and last.fm happily discarded them.<br />...<br /><strong>If users want to re-scrobble their tracks, they should make a backup of <config> before upgrading libgnutls and prepare to re-scrobble them after this is solved</strong></p>
</blockquote>
<p>And this looks like separate issue. Do you have any more info on it?</p>
</blockquote>
<p>Yes and no.<br />I got confirmation from them that <ins>scrobbles older than 2 weeks are bluntly discarded by last.fm</ins>.</p>
<p>The Audacious scrobbler implements their API quite strictly, so where it says:</p>
<p><a class="external" href="http://www.last.fm/api/scrobbling">http://www.last.fm/api/scrobbling</a> wrote:</p>
<blockquote>
<p>Lfm error codes that indicate a scrobble request should be retried are:</p>
<ul>
<li><strong>11.</strong> Service Offline - This service is temporarily offline, try again later.</li>
<li><strong>16.</strong> The service is temporarily unavailable, please try again.</li>
</ul>
<p>Additionally this lfm error code indicates that the client should reauthenticate to get a new session key before retrying the request:</p>
<ul>
<li><strong>9.</strong> Invalid session key - Please re-authenticate</li>
</ul>
<p>All other error codes indicate the scrobble request was incorrectly formed in some way <ins>and should not be retried</ins>.</p>
</blockquote>
<p>I have interpreted this as to only retry attempts that got those errors. last.fm returns an "OK" status for discarded tracks, so the scrobbler happily goes on with that and doesn't look back.<br />A workaround can be implemented to keep retrying refused, old tracks. I don't like this solution as it goes against last.fm's spec, but I agree that this is better than losing scrobbles. Once again, I'll try to implement that over the weekend.</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=13202013-10-23T02:22:43ZBob Bib
<ul></ul><p>Luís Picciochi wrote:</p>
<blockquote>
<p>I got confirmation from them that <ins>scrobbles older than 2 weeks are bluntly discarded by last.fm</ins>.</p>
<p>The Audacious scrobbler implements their API quite strictly, so where it says:<br />...</p>
</blockquote>
<p>I just wonder if it is an old bad behavior of Last.fm or a new "bug feature";<br />if it's new, it obviously can be not reflected in documentation...</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=13222013-10-24T00:02:02ZLuís PicciochiPitxyoki@Gmail.com
<ul></ul><p>Bob Bib wrote:</p>
<blockquote>
<p>I just wonder if it is an old bad behavior of Last.fm or a new "bug feature";<br />if it's new, it obviously can be not reflected in documentation...</p>
</blockquote>
<p>Last.fm has always had a threshold for dropping old scrobbles, and they always documented it. If that threshold was reduced to 2 weeks or 2 days, it's indifferent for the correctness of the specification & implementations.</p>
<p>I'm not seeing a clean way out of this until either last.fm fix their certificates and/or libcurl packagers increase their dependency on libgnutls to libgnutls28.</p>
<p>Until then, I'll probably end up implementing a dirty, version string-based hack to prevent audacious to compile against libcurl with libgnutls < 28.</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=13242013-10-24T00:17:49ZJohn Lindgrenjohn@jlindgren.net
<ul></ul><p>Luís Picciochi wrote:</p>
<blockquote>
<p>Until then, I'll probably end up implementing a dirty, version string-based hack to prevent audacious to compile against libcurl with libgnutls < 28.</p>
</blockquote>
<p>I don't think it's necessary to add a compile-time check, especially since GnuTLS isn't even a direct dependency. The issue should be documented, though. If you email me a few sentences summarizing the issue, I'll add them to <a class="external" href="http://audacious-media-player.org/problems">http://audacious-media-player.org/problems</a>.</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=13322013-10-28T02:28:50ZLuís PicciochiPitxyoki@Gmail.com
<ul></ul><p>I started working on a quick fix so no scrobbles are lost. See <a class="external" href="http://redmine.audacious-media-player.org/issues/260#note-1">http://redmine.audacious-media-player.org/issues/260#note-1</a></p>
<p>Once this is commited, users will have to update their Audacious <strong>before</strong> last.fm fixes their servers. If not, they will still have to back-up their scrobbler.log file (which I recommend doing ASAP anyway).</p>
<p>jlindgren: I'll hand you a description of these problems + workarounds once I have the code ready for integrating with the main branch (hopefully tomorrow or on Wednesday).</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=13352013-10-29T09:04:02ZВиктор Пономарёв
<ul></ul><p>Luís, whether correctly I understand that I will have to update a Audacious with your decision before there will be a communication with last.fm?</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=13372013-10-30T01:43:30ZJohn Lindgrenjohn@jlindgren.net
<ul></ul><p>Linking back to <a class="external" href="http://audacious-media-player.org/news/24-scrobbler-issue">http://audacious-media-player.org/news/24-scrobbler-issue</a> for reference.</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=13732013-11-16T13:40:22ZВиктор Пономарёв
<ul></ul><p>What progress now?</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=14112013-12-10T16:40:16ZJon Hallier
<ul></ul><p>Hi from Last.hq,</p>
<p>Sorry this has taken so long, but we've finally addressed the ordering of the certificates and this problem should now be resolved. If it isn't, please let me know (best to send a pm to my last.fm account) and I'll ask the team to take another look.</p>
<p>Cheers,<br />-Jon</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=14132013-12-13T23:35:03ZLuís PicciochiPitxyoki@Gmail.com
<ul></ul><p>Well, <em>better late than never</em>. Thanks for the update, Jon.</p>
<p>I confirm that at least some communication is possible with audacious 3.4.1 (with libcurl built against an old libgnutls). I didn't test all of the interactions yet (including scrobbling), though.</p>
<p>Can someone confirm if the Windows version is also working?</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=14142013-12-14T20:24:26ZJohn Lindgrenjohn@jlindgren.net
<ul></ul><p>I was looking into the Windows version a while back, and it seems that OpenSSL doesn't know how to access the client-side certificates that Windows provides. There are various bits of code posted online that will fetch the certificates and feed them into OpenSSL, but I haven't implemented such a workaround in Audacious (nor will I have time in the near future).</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=14162013-12-15T17:14:16ZВиктор Пономарёв
<ul></ul><p>Audacious 3.4.2 communicate with Last.fm (I checked by logging into another profile).</p>
<p>Will I lose my listening when I'm connected to Last.fm into base profile?</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=14172013-12-15T17:23:05ZВиктор Пономарёв
<ul></ul><p>Виктор Пономарёв wrote:</p>
<blockquote>
<p>Audacious 3.4.2 communicate with Last.fm (I checked by logging into another profile).</p>
<p>Will I lose my listening when I'm connected to Last.fm into base profile?</p>
</blockquote>
<p>I meant Linux version.</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=14182013-12-15T17:37:28ZLuís PicciochiPitxyoki@Gmail.com
<ul></ul><p><ins>Copy the ~/.config/audacious/scrobbler.log file to a backup location.</ins></p>
<p>Then start Audacious configured with your profile. Look at your last.fm profile to see all your old plays start appearing.</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=14192013-12-16T04:49:03ZВиктор Пономарёв
<ul><li><strong>File</strong> <a href="/attachments/318/scrobbler.log">scrobbler.log</a> <a class="icon-only icon-download" title="Download" href="/attachments/download/318/scrobbler.log">scrobbler.log</a> added</li></ul><p>Something went wrong.</p>
<p>I had 12 590 plays on Last.fm.</p>
<p>scrobbler.log contains 3540 songs.</p>
<p>1. When I listen the song, list of plays loaded on the server. The first batch of sent contained line 3517 - 3540. This can be seen on page <a class="external" href="http://www.lastfm.ru/user/v_pv/tracks?view=compact&page=58">http://www.lastfm.ru/user/v_pv/tracks?view=compact&page=58</a> . First song is "Kick Bong – Voice Of Resurrection", second song is "The Gentle Revolution – Stealth and Cunning", third song is "Hol Baumann – Breathe" etc. The final song is "Cell – Under Your Mind".<br />2. The second batch of sent contained unknown positions. I don't know, from what place of the file tracks are loaded. There was a set of repetitions of one track (for example, <a class="external" href="http://www.lastfm.ru/user/v_pv">http://www.lastfm.ru/user/v_pv</a>).<br />3. There was a loading of 3402 tracks from 3540. After that Last.fm displayed listenings, but didn't fix it.</p>
<p>Such affairs.</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=14202013-12-16T22:57:57ZLuís PicciochiPitxyoki@Gmail.com
<ul></ul><p>You didn't happen to start audacious with -V and save the output to a file, did you?</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=14212013-12-17T06:25:31ZВиктор Пономарёв
<ul></ul><p>Luís Picciochi wrote:</p>
<blockquote>
<p>You didn't happen to start audacious with -V and save the output to a file, did you?</p>
</blockquote>
<p>Yes, of course.</p>
<p>I plan to clear the list of listenings and reload sсrobbler.log. Please remind me the command with -V attribute and output parameter.</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=14222013-12-20T19:36:13ZВиктор Пономарёв
<ul><li><strong>File</strong> <i>log1.txt.zip</i> added</li></ul><p>I cleared the list of listenings. I wanted to load the list anew. 699 compositions were loaded.</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=14232013-12-20T20:39:05ZLuís PicciochiPitxyoki@Gmail.com
<ul><li><strong>File</strong> deleted (<del><i>log1.txt.zip</i></del>)</li></ul> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=14242013-12-20T20:43:51ZLuís PicciochiPitxyoki@Gmail.com
<ul></ul><p>I deleted the log from this issue because it contained your full submissions, including signature - this can allow others to re-scrobble those plays. I should remove that output from the scrobbler's debug mode.</p>
<p>Anyway, thanks for all the input. I'll try to look into this on Sunday. These are busy days around here. :-)</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=14512014-01-11T20:26:31ZJohn Lindgrenjohn@jlindgren.net
<ul></ul><p>Can we close this since the certificate ordering problem is resolved? Further support questions can be asked and answered on the forums.</p> Audacious - Bug #343: Scrobbler refuses last.fm certificate if built with GnuTLShttp://redmine.audacious-media-player.org/issues/343?journal_id=14562014-01-19T02:16:29ZJohn Lindgrenjohn@jlindgren.net
<ul><li><strong>Status</strong> changed from <i>New</i> to <i>Closed</i></li><li><strong>% Done</strong> changed from <i>0</i> to <i>100</i></li></ul><p>Closing.</p>