Добрый день.
Давайте посмотрю сам, есть возможность организовать доступ к контроллеру?
Да, могу попробовать прокинуть 22й порт
Нужен открытый ключ для ssh
Отправляю в ЛС.
поставил GitHub - wirenboard/atecc-util: Linux command-line tool for ATECC608A and ATECC508A
Получаю:
atecc -b4 -c "info"
Found ATECC608A
То есть аппаратно чип жив и отвечает.
libateccssl1.1 стоит актуальная 0.2.5
Тем не менее
curl --cert /var/lib/wb-cloud-agent/device_bundle.crt.pem --key ATECCx08:00:02:C0:00 --engine ateccx08 --key-type ENG https://agent.wirenboard.cloud/api-agent/v1/events/ -vvv
* Trying 5.35.4.252:443...
* Connected to agent.wirenboard.cloud (5.35.4.252) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* failed to load private key from crypto engine
* Closing connection 0
curl: (58) failed to load private key from crypto engine
И еще:
wb-cloud-agent
Exception in thread Thread-1:
Traceback (most recent call last):
File "/usr/lib/python3.9/threading.py", line 954, in _bootstrap_inner
self.run()
File "/usr/lib/python3.9/threading.py", line 892, in run
self._target(*self._args, **self._kwargs)
File "/usr/lib/python3/dist-packages/paho/mqtt/client.py", line 3452, in _thread_main
self.loop_forever(retry_first_connection=True)
File "/usr/lib/python3/dist-packages/paho/mqtt/client.py", line 1779, in loop_forever
rc = self.loop(timeout, max_packets)
File "/usr/lib/python3/dist-packages/paho/mqtt/client.py", line 1181, in loop
rc = self.loop_read(max_packets)
File "/usr/lib/python3/dist-packages/paho/mqtt/client.py", line 1572, in loop_read
rc = self._packet_read()
File "/usr/lib/python3/dist-packages/paho/mqtt/client.py", line 2310, in _packet_read
rc = self._packet_handle()
File "/usr/lib/python3/dist-packages/paho/mqtt/client.py", line 2936, in _packet_handle
return self._handle_publish()
File "/usr/lib/python3/dist-packages/paho/mqtt/client.py", line 3220, in _handle_publish
self._handle_on_message(message)
File "/usr/lib/python3/dist-packages/paho/mqtt/client.py", line 3444, in _handle_on_message
self.on_message(self, self._userdata, message)
File "/usr/lib/python3.9/dist-packages/wb/cloud_agent/main.py", line 325, in on_message
raise ValueError("Not a 200 status while making start up request: " + str(http_status))
ValueError: Not a 200 status while making start up request: 400
Traceback (most recent call last):
File "/usr/bin/wb-cloud-agent", line 9, in <module>
sys.exit(main.main())
File "/usr/lib/python3.9/dist-packages/wb/cloud_agent/main.py", line 411, in main
make_start_up_request(settings, mqtt)
File "/usr/lib/python3.9/dist-packages/wb/cloud_agent/main.py", line 280, in make_start_up_request
raise ValueError("Not a 200 status while making start up request: " + str(http_status))
ValueError: Not a 200 status while making start up request: 400
Призову коллег посмотреть.
Коллеги удалили регистрацию контроллера в облаке.
Пробую:
apt purge wb-cloud-agent -y
apt autoremove -y
Ну и устанавливаю снова
После установки вызовы
/usr/lib/wb-cloud-agent/check-certs.sh
и
/usr/lib/wb-cloud-agent/activate-providers.sh
Как и проверка (мне указали за ошибку в номере шины, исправил) с помощью
curl --cert /var/lib/wb-cloud-agent/device_bundle.crt.pem --key ATECCx08:00:04:C0:00 --engine ateccx08 --key-type ENG https://agent.wirenboard.cloud/api-agent/v1/events/ -vvv
* Trying 5.35.4.252:443...
* Connected to agent.wirenboard.cloud (5.35.4.252) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
* CAfile: /etc/ssl/certs/ca-certificates.crt
* CApath: /etc/ssl/certs
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
* TLSv1.3 (IN), TLS handshake, Certificate (11):
* TLSv1.3 (IN), TLS handshake, CERT verify (15):
* TLSv1.3 (IN), TLS handshake, Finished (20):
* TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.3 (OUT), TLS handshake, Finished (20):
* SSL connection using TLSv1.3 / TLS_AES_128_GCM_SHA256
* ALPN, server accepted to use h2
* Server certificate:
* subject: CN=agent.wirenboard.cloud
* start date: Sep 10 21:26:08 2024 GMT
* expire date: Dec 9 21:26:07 2024 GMT
* subjectAltName: host "agent.wirenboard.cloud" matched cert's "agent.wirenboard.cloud"
* issuer: C=US; O=Let's Encrypt; CN=E6
* SSL certificate verify ok.
* Using HTTP2, server supports multi-use
* Connection state changed (HTTP/2 confirmed)
* Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
* Using Stream ID: 1 (easy handle 0xaa9d70)
> GET /api-agent/v1/events/ HTTP/2
> Host: agent.wirenboard.cloud
> user-agent: curl/7.74.0
Как и до переустановки, ошибок не возвращают.
Но
/usr/bin/wb-cloud-agent
Traceback (most recent call last):
File "/usr/bin/wb-cloud-agent", line 9, in <module>
sys.exit(main.main())
File "/usr/lib/python3.9/dist-packages/wb/cloud_agent/main.py", line 411, in main
make_start_up_request(settings, mqtt)
File "/usr/lib/python3.9/dist-packages/wb/cloud_agent/main.py", line 280, in make_start_up_request
raise ValueError("Not a 200 status while making start up request: " + str(http_status))
ValueError: Not a 200 status while making start up request: 400
А можно на стороне сервера посмотреть ошибки?
400-я ошибка кажется не похожа на проблему с SSL/сертифом, она скорее прикладная
Добрый день.
Доступ сейчас закрыт к контроллеру?