[edk2-devel] SSL handshake in HTTPS boot if the certificate was signed with a root certificate
jacopo.r00ta at gmail.com
jacopo.r00ta at gmail.com
Thu Oct 26 17:19:49 UTC 2023
In order to install the certificate I did something very naive:
1) I deployed an OS to the machine
2) Stored rootCA.der under /boot/efi/EFI/BOOT/
3) Restarted the machine
4) press F2 and install the certificate as it was available in the storage
5) select HTTPS boot in the boot list.
My nginx server is pretty simple, and it's configured as
server {
listen [::]:5248;
listen 5248;
server_name 192.168.120.1 ;
ssl_certificate path_to_myip.crt;
ssl_certificate_key path_to_myip.key;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;
ssl_ciphers HIGH:!aNULL:!MD5;
-=-=-=-=-=-=-=-=-=-=-=-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#110132): https://edk2.groups.io/g/devel/message/110132
Mute This Topic: https://groups.io/mt/102201552/1813853
Group Owner: devel+owner at edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [edk2-devel-archive at redhat.com]
-=-=-=-=-=-=-=-=-=-=-=-
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/edk2-devel-archive/attachments/20231026/5537ede6/attachment-0001.htm>
More information about the edk2-devel-archive
mailing list