Calling all Zeus experts. I can't seem to connect Zeus to my Start9 CLN node after the latest update. I tried all the usual solutions, including restarting the node and server. I typically make this connection through CLNRest Quick Connect. Any advice is appreciated.
Here is the error:
I am still reviewing this part - as it narrowed. I assume you're using tor + self-signed TLS certs?
Correct
There's definitely something changed there. I have been really nervous to update because of the switch to
react-native-nitro-torbecause I have a million process findings on that repo.Are you on v13.1.1? or .0?
.0
Okay. v13.1.1 is tagged but not marked as release yet for me. That supposedly will fix this issue.
From the commit in there:
And from the PR @evankaloudis did to the tor dependency I mention above:
Perhaps Evan can advice on release timing / downgrading back to v13.0.2
Damn, you are good! Thank you
Maybe one thing you could try in the meantime (this is how I deal with it on my own PKI) is to import your cert into Android and trust it there. Then it should not throw. However, I do this with an actual private CA, not a self-signed thing, and mTLS, so it may be that for simple self-signed, there are issues. Maybe a stacker that uses self-signed certs on Android knows more.
I don't know. If it matters, I run graphene.It's no big deal. The desktop CLN GUI wallet is fine for now
Haha thanks. I review Zeus like I review Signal because I really want to use it again (current live LN wallets are Blixt) so it is my duty to my own security to know everything, because it would touch my money, directly.
Right now it's still too unstable, but I have hope. Evan is doing an awesome job.
deleted by author
I just updated to .1, and it is resolved.
Awesome!
You know what's strange? I didn't run into any issues with Zeus on my LND node.
Hmm also connected as backend via tor+self-signed cert? Because that has exactly the same patch.
Oh, I misspoke. I connect my LND node to Zeus through LNC via Lightning Terminal.
Through a let's encrypt cert as recommended? Because that is a much better way to do this than with a self-signed cert (and doesn't have "invalid cert" issues because that CA is in the global trust chain.)
Yes.
Edit: wait, I'm not sure. I used Let's Encrypt for something but maybe not this.
Then that's why.
Release v13.1.1 · ZeusLN/zeus
#1515394