Login Failed because Response Path is undefined (OpenSSL v1.1.1 and 1024-bit DH key)

[superfeldy]

[ADT-Pulse] Login failed more than once. Portal sync terminated.

Whenever plugin is activated.

[mrjackyliang]

What website do you use to login to the ADT Pulse Web Portal? The plugin uses https://portal.adtpulse.com. If you can, send me screenshots of the login page you use, and one screenshot after you login (omitting any PII).

[superfeldy]

https://portal.adtpulse.com/

Sent from my iPhone

On Oct 14, 2019, at 6:00 PM, Jacky Liang notifications@github.com wrote:

 What website do you use to login to the ADT Pulse Web Portal?

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub, or unsubscribe.

[mrjackyliang]

Set the logLevel setting to 40, disable all other plugins and then send the logs here.

Please also review the logs, so you don't send any personal information.

Also, does your password contain any special characters?

[superfeldy]

Ok. Will do when I get back to the system.

Sent from my iPhone

On Oct 14, 2019, at 6:14 PM, Jacky Liang notifications@github.com wrote:

 Set the logLevel setting to 40, disable all other plugins and then send the logs here.

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub, or unsubscribe.

[mrjackyliang]

Thanks! I suspect it might be the special characters in the password.

[superfeldy]

Here you go:

[Homebridge] [10/16/2019, 11:53:10 PM] Loaded config.json with 0 accessories and 1 platforms. [Homebridge] [10/16/2019, 11:53:10 PM] --- [Homebridge] [10/16/2019, 11:53:11 PM] Loaded plugin: homebridge-adt-pulse [Homebridge] [10/16/2019, 11:53:11 PM] Registering platform 'homebridge-adt-pulse.ADTPulse' [Homebridge] [10/16/2019, 11:53:11 PM] --- [Homebridge] [10/16/2019, 11:53:11 PM] Loading 1 platforms... [Homebridge] [10/16/2019, 11:53:11 PM] [ADT-Pulse] Initializing ADTPulse platform... [Homebridge] [10/16/2019, 11:53:11 PM] Loading 0 accessories... [Homebridge] X-HM://0023ISYWY4P3G [Homebridge] [10/16/2019, 11:53:11 PM] [ADT-Pulse] Cached accessories loaded... [Homebridge] [10/16/2019, 11:53:11 PM] Service is running on port 51826. [Homebridge] ADT Pulse: Logging in... [Homebridge] ADT Pulse: Response path -> undefined [Homebridge] ADT Pulse: Response path matches -> false [Homebridge] ADT Pulse: Login failed. [Homebridge] [10/16/2019, 11:53:11 PM] [ADT-Pulse] Login failed. Trying again. [Homebridge] ADT Pulse: Logging in... [Homebridge] ADT Pulse: Response path -> undefined [Homebridge] ADT Pulse: Response path matches -> false [Homebridge] ADT Pulse: Login failed. [Homebridge] [10/16/2019, 11:53:15 PM] [ADT-Pulse] Login failed more than once. Portal sync terminated. [Homebridge] ADT Pulse: Logging in... [Homebridge] ADT Pulse: Response path -> undefined [Homebridge] ADT Pulse: Response path matches -> false [Homebridge] ADT Pulse: Login failed. [Homebridge] [10/16/2019, 11:53:19 PM] [ADT-Pulse] Login failed more than once. Portal sync terminated.

On Oct 14, 2019, at 6:29 PM, Jacky Liang notifications@github.com wrote:

Thanks! I suspect it might be the special characters in the password.

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/mrjackyliang/homebridge-adt-pulse/issues/2?email_source=notifications&email_token=ABMH6MSREHHXSRULZPQTXFLQOUMH3A5CNFSM4JAVLMCKYY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEBHDGWQ#issuecomment-541995866, or unsubscribe https://github.com/notifications/unsubscribe-auth/ABMH6MSULJCV2XFSSBOC5ZDQOUMH3ANCNFSM4JAVLMCA.

[mrjackyliang]

Wow, that's extremely weird. Can I ask what version of node and what version of homebridge are you running?

[superfeldy]

I’m using node v10.16.3 And as far as Homebridge I’m using Hoobs.

On Oct 17, 2019, at 4:25 AM, Jacky Liang notifications@github.com wrote:

Wow, that's extremely weird. Can I ask what version of node and what version of homebridge are you running?

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/mrjackyliang/homebridge-adt-pulse/issues/2?email_source=notifications&email_token=ABMH6MRQOSJIP3JTQFEWXCLQPBDRZA5CNFSM4JAVLMCKYY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEBPYAUI#issuecomment-543129681, or unsubscribe https://github.com/notifications/unsubscribe-auth/ABMH6MRBQUE5RVNRR5TW3X3QPBDRZANCNFSM4JAVLMCA.

[adamsinger]

I am having a similar issue. As an experiment I changed my password to only contain numbers and letters, and it still fails. I can log into https://portal.adtpulse.com just fine.

Running Homebridge v0.4.50 Running Node v10.16.1

Oct 21 18:41:57 raspberrypi homebridge[1424]: [10/21/2019, 6:41:57 PM] [ADT-Pulse] Login failed. Trying again.
Oct 21 18:41:59 raspberrypi homebridge[1424]: ADT Pulse: Logging in...
Oct 21 18:42:00 raspberrypi homebridge[1424]: ADT Pulse: Response path -> undefined
Oct 21 18:42:00 raspberrypi homebridge[1424]: ADT Pulse: Response path matches -> false
Oct 21 18:42:00 raspberrypi homebridge[1424]: ADT Pulse: Login failed.
Oct 21 18:42:00 raspberrypi homebridge[1424]: [10/21/2019, 6:42:00 PM] [ADT-Pulse] Login failed more than once. Portal sync terminated.

[mrjackyliang]

@superfeldy Thanks for the information. I assume Hoobs is also a device that runs similar to Raspberry Pi just like how @adamsinger mentioned.

I just got back from vacation, so sorry for the late reply. As far as the response path being undefined, I think the problem is isolated to devices of a particular Linux distro. I'm currently running this:

Linux XServer 3.10.102 #15284 SMP Mon Jul 9 23:04:14 CST 2018 x86_64 GNU/Linux

If you can do me a favor and run the following command (uname -a) in Homebridge then paste the response in this thread, that would be awesome.

This allows me to figure out which operating system you are running under since I suspect the undefined issue is caused by incompatibility.

[superfeldy]

Yes it it. The response is: Linux hoobs 4.19.58-v7l+ #1245 SMP Fri Jul 12 17:31:45 BST 2019 armv7l GNU/Linux

On Oct 21, 2019, at 7:44 PM, Jacky Liang notifications@github.com wrote:

@superfeldy https://github.com/superfeldy Thanks for the information. I assume Hoobs is also a device that runs similar to Raspberry Pi just like how @adamsinger https://github.com/adamsinger mentioned.

I just got back from vacation, so sorry for the late reply. As far as the response path being undefined, I think the problem is isolated to devices of a particular Linux distro. I'm currently running GNU/Linux.

If you can do me a favor and run the following command in Homebridge then paste the response in this thread, that would be awesome. This allows me to figure out which operating system you are running under since I suspect the undefined issue is caused by incompatibility.

uname -a — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/mrjackyliang/homebridge-adt-pulse/issues/2?email_source=notifications&email_token=ABMH6MVBGZF7WCUMQDJTIJ3QPZSIXA5CNFSM4JAVLMCKYY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEB4MEWA#issuecomment-544784984, or unsubscribe https://github.com/notifications/unsubscribe-auth/ABMH6MUK3QFSM2WNDL4SYUDQPZSIXANCNFSM4JAVLMCA.

[adamsinger]

Mine was:

Linux raspberrypi 4.19.75+ #1270 Tue Sep 24 18:38:54 BST 2019 armv6l GNU/Linux

[mrjackyliang]

Ah, got it. Working on that issue now. Thanks!

[jlclarkrx]

I have this same issue as well: Homebridge: Version 0.4.50 node: v10.16.0 Linux hoobs 4.19.50-v7+ #896 SMP Thu Jun 20 16:11:44 BST 2019 armv7l GNU/Linux

[mrjackyliang]

Hey all! I believe I may have fixed the issue with the latest update (v1.2.3), but I'm not completely sure since I don't have a Raspberry Pi handy.

Let me know if it works for you. If not, I might need some assistance. Thanks!

[jlclarkrx]

I am still getting the same error after upgrading to v1.2.3. Thank you so much for trying though and your work on this plugin. This is the number 1 reason I looked into homebridge.

[mrjackyliang]

So I managed to get Raspbian installed on my Mac, and came down to this issue. Apparently, the entire response array is undefined, but still trying to find out why.

[mrjackyliang]

Just giving you a quick update that I've found the problem, and will implementing the fix within the hour. I will briefly document the issue here for future reference:

The reason why the response.request.path failed initially, was because ADT Pulse preferred a weaker DH key (1024 bits) possibly due to compatibility reasons, where OpenSSL v1.1.1 openly declined DH keys lower than 2048 bits.

So I did a scan of the ADT portal's website, and found a list of TLS keys the server was willing to accept and came down with two cipher suites that OpenSSL also accepted:

Original Cipher Suite	OpenSSL Variant
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384	ECDHE-RSA-AES256-GCM-SHA384
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256	ECDHE-RSA-AES128-GCM-SHA256

The other two cipher suites (namely TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, and TLS_DHE_RSA_WITH_AES_128_GCM_SHA256) were omitted because they had a weak DH key (1024 bit) that OpenSSL was complaining about.

I'll be testing the next version, and will let you know when the release is out! Thanks for your patience!

[mrjackyliang]

The update v1.2.4 is out now! Closing this issue.

[frnhgt]

Thanks! Confirmed all good in my setup.

[superfeldy]

Working for me too! Thanks

On Oct 28, 2019, at 8:49 AM, frnhgt notifications@github.com wrote:

Thanks! Confirmed all good in my setup.

— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/mrjackyliang/homebridge-adt-pulse/issues/2?email_source=notifications&email_token=ABMH6MTMMLR7TD5NRAZFSDLQQ4C2JA5CNFSM4JAVLMCKYY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOECNLWTY#issuecomment-547011407, or unsubscribe https://github.com/notifications/unsubscribe-auth/ABMH6MSHSY6RRAL5EPUCTKLQQ4C2JANCNFSM4JAVLMCA.

[github-actions[bot]]

This issue is now locked and considered resolved. If you have questions or inquiries, you may start a new issue.