Skip to content
This repository has been archived by the owner on Jan 7, 2023. It is now read-only.

error in building and running #74

Open
Sunny9536 opened this issue Aug 11, 2021 · 1 comment
Open

error in building and running #74

Sunny9536 opened this issue Aug 11, 2021 · 1 comment

Comments

@Sunny9536
Copy link

Sunny9536 commented Aug 11, 2021
edited
Loading

Hi, I am Sunny.

I have successfully built sgx-ra-sample using Ubuntu 18.04 TLS, openssl 1.1.0i according to the description, and subscribed the service from @intel. However it reported a error when server connecting to IAS via wget. The error reports in the following.

---- IAS sigrl HTTP Request ----------------------------------------------
HTTP GET https://api.trustedservices.intel.com/sgx/dev/attestation/v4/sigrl/00000b1f
---------------------------------------------------------------------------- --2021-08-11 23:25:02-- https://api.trustedservices.intel.com/sgx/dev/attestation/v4/sigrl/00000b1f Resolving api.trustedservices.intel.com (api.trustedservices.intel.com)... 40.87.90.88 Connecting to api.trustedservices.intel.com (api.trustedservices.intel.com)|40.87.90.88|:443... connected.
ERROR: cannot verify api.trustedservices.intel.com's certificate, issued by “CN=Sectigo RSA Organization Validation Secure Server CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB”:
Unable` to locally verify the issuer's authority.
To connect to api.trustedservices.intel.com,use“--no-check-certificate”。
---- IAS sigrl HTTP Response -----------------------------------------------
HTTP/0.0 0
could not retrieve the sigrl
error processing msg1
Waiting for a client to connect...

I have tried to add “--no-check-certificate" to the wget. However the verification cannot passed. The error is following.

attestation query returned 400
Invalid payload
Attestation failed
error processing msg3

I also tried to update the openssl to 1.1.1k and built sgx-ra-sample. When make file, it reported an error.

/usr/local/bin/ld: /usr/local/lib/libssl.so.1.1:undefined reference to 'EVP_idea_cbc@OPENSSL_1_1_0'
collect2: error: ld returned 1 exit status

What should I do?
Thank you.
@Sunny9536
Copy link
Author

Sunny9536 commented Aug 13, 2021
edited
Loading

I have tried to add “--no-check-certificate” in the code and run the sample successfully and it is verified. I found I filled out the configuration file by mistake before.

However, there is also a mistake when building this sample in openssl 1.1.1k.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@Sunny9536