[ipxe-devel] Problems with pxe-virtio.rom and https
Sebastian Roth
sebaroth at gmx.de
Wed Aug 28 11:26:44 UTC 2019
Hi Zombie,
> following this script
> https://gist.github.com/papamoose/e0b18d002f8686aaf767 and defining
> DOWNLOAD_PROTO_HTTPS in the general.h
Have you read through this as well? https://ipxe.org/crypto
"In the default configuration, iPXE trusts only a single root
certificate: the "iPXE root CA" certificate. [...] iPXE will therefore
automatically trust the same set of certificates as the Firefox web
browser. If you want more control over the chain of trust ..."
> initrd https://pxeboot.myhost.net/preseed.cfg
I reckon you use a self signed certificate on that server? Then you'd
need to include that on compilation time:
make TRUST=/path/to/CAcert.pem CERT=/path/to/CAcert.pem ...
Sebastian
More information about the ipxe-devel
mailing list