HA / duckdns / letsencrypt / certificate error / Android 7.1 / Reconnection issues

mikeoz · November 7, 2019, 3:39pm

Hi all,

I have SSL certificate issues with duckdns/letsencrypt. Certificates are working fine with browser/AWS integration etc.

Note this issue only occurs with my Android 7.1 tablet, my Android 9.0 tablet works fine.

There seems to be a couple of threads related to this and it seems unresolved with letsencrypt/duckdns, has anyone gotten it to work consistently with this setup?

HomeHabit connects to HA and works great for about 5 minutes, then it stops connecting.
Platform shows “Unable to verify SSL certificate” after I enter the Legacy password.

Closing down the app and re-opening allows it to work for another 5 minutes or so.

I’m using a Legacy API password.

I’ve also tried the latest beta build.

Thanks for such an awesome s/w, its so much faster than using lovelace.

** Edit
Looking further into this issue, it seems to be occurring during reconnections.

I left the app running with the screen saver overnight without any issues, however if I open another app and go back into homehabit, it tries to reconnect with the same SSL error.
It will then start working again after the app is closed/reopened.

igor · October 11, 2019, 6:10am

@mikeoz thank you for detailed bug report!
What is the 7.1 tablet brand?

This issue was not reproducible in testing, so this is not something that was fixed yet. It is interesting that it only appears with duckdns/letsencrypt combination, and none of the users from other platforms (non-hass) reported issues. So it doesn’t look straightforward, but hopefully it will be possible to fix sooner rather than later.

mikeoz · October 11, 2019, 8:18am

Thanks for the reply Igor.

The tablet is an amazon HD 8, I’ve tried with both the amazon firmware and LOS 14.1 with the AOSP Webkit and it has the same issue.

I’m not sure whether it’s duckdns/letsencrypt only, as I do not have access to any other systems.

On your 7.1 setup, is it hass? when you hit the home button, open another app, and go back into HomeHabit, does it automatically connect ?

Cheers.

igor · October 12, 2019, 7:02pm

@mikeoz Yes, tested it using duckdns with hass, on Amazon fire, and it doesn’t show the same issue.
Do you see any errors logs related to SSL in HA server logs at the same time?
Something like SSL handshake failed or SSLV3_ALERT_CERTIFICATE_UNKNOWN maybe?

mikeoz · October 12, 2019, 8:08pm

Thanks igor.

No errors on the logs. I used to get lots of SSL errors under 0.8x but since upgrading to 0.99 they went away.

I might enable debugging logging on HA and see if it returns any errors.

Thanks for all your help!

Edit: Enabled debugging on HA and there are no errors, I only get the following when the client tries to connect

Woohoo It seems to be working now after I re-flashed the rom. No idea why.
Thanks again for all your help igor.
If we can get a media widget that can select favourites I will be on Homehabit full time

2019-10-12 20:30:58 DEBUG (MainThread) [homeassistant.components.http.view] Serving /auth/login_flow/166f65eb380b4029be432466fea446ad to 192.168.1.198 (auth: True)

Dario81 · October 28, 2019, 10:17am

Hi! I have a similar problem with my Asus Zenpad 10 on Android 6.0. HA with duckdns and let’s encrypt. Once open Home Habit, it’s connect to HA for ten seconds, then disconnects. It will try to reconnect continuosly and in HA I have a login attempt failed for the user. If I try to reconfigure i have an SSL error.

With my phone on android 9.0 works fine… It seems to be a bug on Home Habit.

Dario81 · November 7, 2019, 2:30pm

@igor can you help me? Thanks!

igor · November 7, 2019, 3:39pm

@Dario81 there is no solution to this issue yet, since root cause is unknown. We still weren’t able to reproduce it in testing even with duckdns and let’s encrypt, so there is definitely some other variables in setup that are causing this - it is unclear right now.
I will update as soon as there is anything new.

Dario81 · November 7, 2019, 4:02pm

@igor can I help you in some way to debug the issue? Do you have an apk with tracing debug, so I can send you some logs? I’m a developer, not a “standard” user. I love this software and I would like to use it on my tablet.

Thanks!

igor · November 8, 2019, 6:00am

@Dario81 if you enrolled in beta releases in PlayStore, can you try Beta 19 (4667) when it is available on your device?

Dario81 · November 8, 2019, 8:00am

@igor Ok!

Dario81 · November 8, 2019, 5:22pm

@igor just updated to 4668, same problem.

mikeoz · November 8, 2019, 5:44pm

@Dario81 Have you tried flashing another rom if it exists for your tablet?

I think it’s related to the version of webview.

Dario81 · November 8, 2019, 6:08pm

@mikeoz no, there is no custom rom

mikeoz · November 8, 2019, 6:15pm

Under developer settings, can you change the webview version?

Dario81 · November 12, 2019, 1:34pm

No, it’s not possible…

Dario81 · November 12, 2019, 9:05pm

Screenshot_20191112_185816_com.android.chrome.jpg1080×1920 667 KB