pull down to refresh

There's definitely something changed there. I have been really nervous to update because of the switch to react-native-nitro-tor because I have a million process findings on that repo.

Are you on v13.1.1? or .0?

reply
1169 sats \ 5 replies \ @optimism 26 Jun

Okay. v13.1.1 is tagged but not marked as release yet for me. That supposedly will fix this issue.

From the commit in there:

scope TLS bypass to .onion HTTPS endpoints

And from the PR @evankaloudis did to the tor dependency I mention above:

Adds a trust_invalid_certs: boolean field to HttpGetParamsHttpPostParamsHttpPutParams, and HttpDeleteParams. When true, the underlying reqwest::Client is built with .danger_accept_invalid_certs(true) so connections to endpoints with self-signed certificates succeed. Defaults to false, so existing callers are unaffected.

Perhaps Evan can advice on release timing / downgrading back to v13.0.2

reply

Damn, you are good! Thank you

reply

Maybe one thing you could try in the meantime (this is how I deal with it on my own PKI) is to import your cert into Android and trust it there. Then it should not throw. However, I do this with an actual private CA, not a self-signed thing, and mTLS, so it may be that for simple self-signed, there are issues. Maybe a stacker that uses self-signed certs on Android knows more.

reply

I don't know. If it matters, I run graphene.It's no big deal. The desktop CLN GUI wallet is fine for now

reply

I use Graphene on all my phones now. So yes, this absolutely works. It actually works better on AOSP than on Google stock Spydroid.

reply

Haha thanks. I review Zeus like I review Signal because I really want to use it again (current live LN wallets are Blixt) so it is my duty to my own security to know everything, because it would touch my money, directly.

Right now it's still too unstable, but I have hope. Evan is doing an awesome job.

reply

deleted by author