+- iPXE discussion forum (https://forum.ipxe.org)
+-- Forum: iPXE user forums (/forumdisplay.php?fid=1)
+--- Forum: General (/forumdisplay.php?fid=2)
+--- Thread: tls error with star certificate (/showthread.php?tid=7048)
tls error with star certificate - rpoyner - 2013-10-07 18:42
I'm trying to get https downloads working against an https server where the certificate has a * for the hostname:
*.dept.school.edu
The acutual ipxe host is:
ipxe.dept.school.edu
When I attempt to connect to the https server with an ipxe kernel compiled with DEBUG=tls I get:
TLS 0x24104 server name incorrect (expected ipxe.dept.school.edu, got *.dept.school.edu)
Anyone know of a work around for this case? The star certs are handy, and they work for most https clients, but maybe not for ipxe?
Thanks in Advance
RE: tls error with star certificate - robinsmidsrod - 2013-10-12 11:24
iPXE does not yet support wildcard HTTPS certificates. There are some patches floating around on the mailing-list that tries to add this feature. You could try one of those if you're in a hurry, or wait for mainline to pick up one of them.