Attempting to log into my Alby Hub on my umbrel after a power failure at my house. I’m pretty sure I am using the correct password, using a random string throws a different error.
Getting error:
rpc error: code = Unavailable desc = connection error: desc = “transport: authentication handshake failed: tls: failed to verify certificate: x509: certificate signed by unknown authority (possibly because of "x509: ECDSA verification failure" while trying to verify candidate authority certificate "umbrel.local")”
Breaking down what I think is happening here:
Background:
rpc is Remote Procedure Call. The computer client (safari browser on my laptop) is trying to connect with the Alby Hub server on my rPi Umbrel node. Both are on the same local network.
TLS is Transport Layer Security, which is a cryptographic protocol to provide communication over the internet.
X.509 is the ITU standard defining the format of public key certificates, which bind an identity to a public key using a digital signature. In the X.509 system, there are two types of certificates. The first is a CA certificate. The second is an end-entity certificate.
TLS Handshake Basics:
The client requests that the server set up a TLS connection. Then the client and the server use a “handshake” with an asymmetric cypher to establish the cipher settings and the session-specific shared key that will set up a symmetric cypher.
TLS Handshake Steps:
- Client (my web browser) connects to the server (Alby Hub on my rPi) and presents a list of supported cipher suites.
- Server picks a cipher and a hash from the list.
- The server provides identification in the form of a digital certificate which contains the server name, the trusted certificate authority, and the server’s public encryption key.
- The client confirms the validity of the certificate before proceeding
– It looks like this is where the error occurs –
Not really a solution, but: Uninstalled Alby Hub from my node, reconnected wallets. Will try to restart my node and see if the password survives.