Transparent TLS (TTLS) is a MarbleRun feature that wraps plain TCP connections between Marbles in TLS.
In the manifest, a user defines the connections that should be considered.
Impact
If a Marble is configured for TTLS, but doesn't have an environment variable defined in its parameters, TTLS is not applied.
The traffic will not be encrypted.
MarbleRun deployments that don't use TTLS (which is only available with EGo Marbles) are not affected.
Patches
The issue has been patched in v1.4.1.
Workarounds
Make sure that all Marbles that use TTLS have an environment variable defined in their parameters.
References
For a description of TTLS, see https://docs.edgeless.systems/marblerun/features/transparent-TLS
See the updated section on TTLS configuration in the manifest: https://docs.edgeless.systems/marblerun/workflows/define-manifest#tls
Transparent TLS (TTLS) is a MarbleRun feature that wraps plain TCP connections between Marbles in TLS.
In the manifest, a user defines the connections that should be considered.
Impact
If a Marble is configured for TTLS, but doesn't have an environment variable defined in its parameters, TTLS is not applied.
The traffic will not be encrypted.
MarbleRun deployments that don't use TTLS (which is only available with EGo Marbles) are not affected.
Patches
The issue has been patched in
v1.4.1.Workarounds
Make sure that all Marbles that use TTLS have an environment variable defined in their parameters.
References
For a description of TTLS, see https://docs.edgeless.systems/marblerun/features/transparent-TLS
See the updated section on TTLS configuration in the manifest: https://docs.edgeless.systems/marblerun/workflows/define-manifest#tls