Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

AMT is not using the self-signed certificate generated by RPC-GO local tls command for establishing the TLS connection #572

Closed
mechris1 opened this issue Jun 25, 2024 · 1 comment
Closed

AMT is not using the self-signed certificate generated by RPC-GO local tls command for establishing the TLS connection #572

mechris1 opened this issue Jun 25, 2024 · 1 comment
Assignees
@madhavilosetty-intel
Labels
P1 Priority 1 - High

Comments

@mechris1
Copy link

AMT is not using the self-signed certificate configured using RPC-GO local tls command for TLS connection.

Note:
On version AMT 16 and above, you can reproduce it by running the command once. Run the command twice to reproduce it on AMT 15 and below machines.

Steps to reproduce:

  1. Make sure AMT is activated in ACM or CCM either using rpc-go local command
  2. Configure TLS using RPC-GO local command, use the self-signed certificate option
    sudo ./rpc configure tls -mode Server
  3. Using MeshCommander, connect to AMT device using TLS option
  4. Notice on MeshCommander that AMT is not using the self-signed certificated created by rpc-go.

Potential Fix:
If TLS is already configured, need to use a PUT TLSCredentialContext call instead of CREATE TLSCredentialContext https://github.com/open-amt-cloud-toolkit/rpc-go/blob/main/internal/local/tls.go#L182
@mechris1 mechris1 converted this from a draft issue Jun 25, 2024
@mechris1 mechris1 moved this from Backlog to Todo in Sprint Planning Jun 25, 2024
@matt-primrose matt-primrose added the P1 Priority 1 - High label Jul 16, 2024
@madhavilosetty-intel madhavilosetty-intel moved this from Todo to In Progress in Sprint Planning Jul 25, 2024
@madhavilosetty-intel madhavilosetty-intel self-assigned this Jul 25, 2024
@madhavilosetty-intel madhavilosetty-intel moved this from In Progress to In Review in Sprint Planning Aug 7, 2024
@madhavilosetty-intel madhavilosetty-intel moved this from In Review to Done in Sprint Planning Aug 7, 2024
@graikhel-intel
Copy link
Contributor

Resolved in #604

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@madhavilosetty-intel madhavilosetty-intel

Labels
P1 Priority 1 - High
Projects
Sprint Planning
Status: Done
Milestone
No milestone
Development

No branches or pull requests
4 participants
@madhavilosetty-intel @matt-primrose @graikhel-intel @mechris1