iPXE discussion forum

iPXE discussion forum > iPXE user forums > General > tls error with star certificate
Full Version: tls error with star certificate
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

rpoyner

2013-10-07, 18:42
I'm trying to get https downloads working against an https server where the certificate has a * for the hostname:

*.dept.school.edu

The acutual ipxe host is:

ipxe.dept.school.edu

When I attempt to connect to the https server with an ipxe kernel compiled with DEBUG=tls I get:

TLS 0x24104 server name incorrect (expected ipxe.dept.school.edu, got *.dept.school.edu)

Anyone know of a work around for this case? The star certs are handy, and they work for most https clients, but maybe not for ipxe?

Thanks in Advance

robinsmidsrod

2013-10-12, 11:24
iPXE does not yet support wildcard HTTPS certificates. There are some patches floating around on the mailing-list that tries to add this feature. You could try one of those if you're in a hurry, or wait for mainline to pick up one of them.
iPXE discussion forum > iPXE user forums > General > tls error with star certificate
Reference URL's