From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail02.groups.io (mail02.groups.io [66.175.222.108]) by spool.mail.gandi.net (Postfix) with ESMTPS id A4C48D80CF6 for ; Fri, 27 Oct 2023 13:31:01 +0000 (UTC) DKIM-Signature: a=rsa-sha256; bh=H9Mk9M68DYSyrMk1NMMisrWnJ/PkV0e6STEUN0UioNo=; c=relaxed/simple; d=groups.io; h=Subject:To:From:User-Agent:MIME-Version:Date:References:In-Reply-To:Message-ID:Precedence:List-Subscribe:List-Help:Sender:List-Id:Mailing-List:Delivered-To:Reply-To:List-Unsubscribe-Post:List-Unsubscribe:Content-Type; s=20140610; t=1698413460; v=1; b=dk6iAXs1ZehxAB7GnhxZ9B25DUg0UqOVxXwEErTrlFuj71jb9tQ/LUtL5URDMSXeXDIGY4Wn Qzm9XZX2umTmeGeidv2acq7BTAXUMbF3ry5klse3CxPfa6k4jaDDN5FlYbLO0WETVSjHOs5tz78 LAqEGvV6kTUNaCIlFmQVwlcw= X-Received: by 127.0.0.2 with SMTP id Xq2UYY7687511x2inPPjklB1; Fri, 27 Oct 2023 06:31:00 -0700 Subject: Re: [edk2-devel] SSL handshake in HTTPS boot if the certificate was signed with a root certificate To: jacopo.r00ta@gmail.com,devel@edk2.groups.io From: jacopo.r00ta@gmail.com X-Originating-Location: IT (5.90.193.87) X-Originating-Platform: Linux Firefox 118 User-Agent: GROUPS.IO Web Poster MIME-Version: 1.0 Date: Fri, 27 Oct 2023 06:30:59 -0700 References: <19195.1698340789367540128@groups.io> In-Reply-To: <19195.1698340789367540128@groups.io> Message-ID: <24432.1698413459784924950@groups.io> Precedence: Bulk List-Subscribe: List-Help: Sender: devel@edk2.groups.io List-Id: Mailing-List: list devel@edk2.groups.io; contact devel+owner@edk2.groups.io Reply-To: devel@edk2.groups.io,jacopo.r00ta@gmail.com List-Unsubscribe-Post: List-Unsubscribe=One-Click List-Unsubscribe: X-Gm-Message-State: 0XZTya5qaxXWyrKIEORSjbxTx7686176AA= Content-Type: multipart/alternative; boundary="Lxs1MO6kgTLAr56QxwCp" X-GND-Status: LEGIT Authentication-Results: spool.mail.gandi.net; dkim=pass header.d=groups.io header.s=20140610 header.b=dk6iAXs1; spf=pass (spool.mail.gandi.net: domain of bounce@groups.io designates 66.175.222.108 as permitted sender) smtp.mailfrom=bounce@groups.io; dmarc=fail reason="SPF not aligned (relaxed), DKIM not aligned (relaxed)" header.from=gmail.com (policy=none) --Lxs1MO6kgTLAr56QxwCp Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable I've enabled the DEBUG mode and I've extracted the following logs (my HTTPS= server IP is=C2=A010.0.2.254 in this example) >=20 >=20 >=20 > >>Start HTTP Boot over IPv4 >=20 >=20 >=20 >=20 >=20 > InstallProtocolInterface: BA23B311-343D-11E6-9185-5820B1D65299 7DCBA180 > .MnpAddFreeTxBuf: Add TxBufWrap 7E5DC118, TxBuf 7E5DC141 > MnpAddFreeTxBuf: Add TxBufWrap 7DBB8018, TxBuf 7DBB8041 > MnpAddFreeTxBuf: Add TxBufWrap 7DBB9818, TxBuf 7DBB9841 > MnpAddFreeTxBuf: Add TxBufWrap 7E4BB018, TxBuf 7E4BB041 > MnpAddFreeTxBuf: Add TxBufWrap 7E4BB698, TxBuf 7E4BB6C1 > MnpAddFreeTxBuf: Add TxBufWrap 7E4BA018, TxBuf 7E4BA041 > MnpAddFreeTxBuf: Add TxBufWrap 7E4BA698, TxBuf 7E4BA6C1 > MnpAddFreeTxBuf: Add TxBufWrap 7DDF5018, TxBuf 7DDF5041 > MnpAddFreeTxBuf: Add TxBufWrap 7DDF5698, TxBuf 7DDF56C1 > MnpAddFreeTxBuf: Add TxBufWrap 7DDF4018, TxBuf 7DDF4041 > MnpAddFreeTxBuf: Add TxBufWrap 7DDF4698, TxBuf 7DDF46C1 > MnpAddFreeTxBuf: Add TxBufWrap 7DDF3018, TxBuf 7DDF3041 > MnpAddFreeTxBuf: Add TxBufWrap 7DDF3698, TxBuf 7DDF36C1 > MnpAddFreeTxBuf: Add TxBufWrap 7DDF2018, TxBuf 7DDF2041 > MnpAddFreeTxBuf: Add TxBufWrap 7DDF2698, TxBuf 7DDF26C1 > MnpAddFreeTxBuf: Add TxBufWrap 7DDF1018, TxBuf 7DDF1041 > MnpAddFreeTxBuf: Add TxBufWrap 7DDF1698, TxBuf 7DDF16C1 > MnpAddFreeTxBuf: Add TxBufWrap 7DDF0018, TxBuf 7DDF0041 > MnpAddFreeTxBuf: Add TxBufWrap 7DDF0698, TxBuf 7DDF06C1 > MnpAddFreeTxBuf: Add TxBufWrap 7DDEF018, TxBuf 7DDEF041 > MnpAddFreeTxBuf: Add TxBufWrap 7DDEF698, TxBuf 7DDEF6C1 > MnpAddFreeTxBuf: Add TxBufWrap 7DDEE018, TxBuf 7DDEE041 > MnpAddFreeTxBuf: Add TxBufWrap 7DDEE698, TxBuf 7DDEE6C1 > MnpAddFreeTxBuf: Add TxBufWrap 7DDED018, TxBuf 7DDED041 > MnpAddFreeTxBuf: Add TxBufWrap 7DDED698, TxBuf 7DDED6C1 > MnpAddFreeTxBuf: Add TxBufWrap 7DDEC018, TxBuf 7DDEC041 > MnpAddFreeTxBuf: Add TxBufWrap 7DDEC698, TxBuf 7DDEC6C1 > MnpAddFreeTxBuf: Add TxBufWrap 7DDEB018, TxBuf 7DDEB041 > MnpAddFreeTxBuf: Add TxBufWrap 7DDEB698, TxBuf 7DDEB6C1 > MnpAddFreeTxBuf: Add TxBufWrap 7DB7F018, TxBuf 7DB7F041 > MnpAddFreeTxBuf: Add TxBufWrap 7DB7F698, TxBuf 7DB7F6C1 > MnpAddFreeTxBuf: Add TxBufWrap 7DB5F018, TxBuf 7DB5F041 > ...InstallProtocolInterface: 41D94CD2-35B6-455A-8258-D4E51334AADD 7E92F42= 0 >=20 > InstallProtocolInterface: 3AD9DF29-4501-478D-B1F8-7F7FE70E50F3 7E3D2038 > InstallProtocolInterface: F4B427BB-BA21-4F16-BC4E-43E416AB619C 7E3D67B0 >=20 > Station IP address is 10.0.2.199 > InstallProtocolInterface: 7A59B29B-910B-4171-8242-A85A0DF25B5B 7DB5E6A0 > InstallProtocolInterface: 65530BC7-A359-410F-B010-5AADC7EC2B62 7DDECE38 > InstallProtocolInterface: 41D94CD2-35B6-455A-8258-D4E51334AADD 7DDEDD20 > InstallProtocolInterface: 00CA959F-6CFA-4DB1-95BC-E46C47514390 7DDEEE48 > InstallProtocolInterface: 1682FE44-BD7A-4407-B7C7-DCA37CA3922D 7DDEEE68 > InstallProtocolInterface: 09576E91-6D3F-11D2-8E39-00A0C969723B 7DB4DC98 > HttpNotify: Event - 1, EventStatus - Success > TlsDoHandshake SSL_HANDSHAKE_ERROR State=3D0x4 SSL_ERROR_SSL > TlsDoHandshake ERROR 0xA000086=3DL14:R86 > HttpNotify: Event - 2, EventStatus - Aborted > HttpNotify: Event - 3, EventStatus - Aborted > TcpOnAppAbort: connection reset issued by application for TCB 7DDEBD18 >=20 > URI: https://10.0.2.254:5248/images/bootx64.efi=C2=A0 Error: Could not re= trieve > NBP file size from HTTP server.=C2=A0 Error: Unexpected network error. -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#110206): https://edk2.groups.io/g/devel/message/110206 Mute This Topic: https://groups.io/mt/102201552/7686176 Group Owner: devel+owner@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [rebecca@openfw.io] -=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D-=3D- --Lxs1MO6kgTLAr56QxwCp Content-Type: text/html; charset="utf-8" Content-Transfer-Encoding: quoted-printable

I've enabled the DEBUG mode and I've extracted the following logs (my HT= TPS server IP is 10.0.2.254 in this example)

>>Start HTTP Boot over IPv4

InstallProtocolInterface: BA23B311-343D-11E6-9185-5820B1D65299 7DCBA180<= br />.MnpAddFreeTxBuf: Add TxBufWrap 7E5DC118, TxBuf 7E5DC141
MnpAddFr= eeTxBuf: Add TxBufWrap 7DBB8018, TxBuf 7DBB8041
MnpAddFreeTxBuf: Add T= xBufWrap 7DBB9818, TxBuf 7DBB9841
MnpAddFreeTxBuf: Add TxBufWrap 7E4BB= 018, TxBuf 7E4BB041
MnpAddFreeTxBuf: Add TxBufWrap 7E4BB698, TxBuf 7E4= BB6C1
MnpAddFreeTxBuf: Add TxBufWrap 7E4BA018, TxBuf 7E4BA041
Mnp= AddFreeTxBuf: Add TxBufWrap 7E4BA698, TxBuf 7E4BA6C1
MnpAddFreeTxBuf: = Add TxBufWrap 7DDF5018, TxBuf 7DDF5041
MnpAddFreeTxBuf: Add TxBufWrap = 7DDF5698, TxBuf 7DDF56C1
MnpAddFreeTxBuf: Add TxBufWrap 7DDF4018, TxBu= f 7DDF4041
MnpAddFreeTxBuf: Add TxBufWrap 7DDF4698, TxBuf 7DDF46C1
MnpAddFreeTxBuf: Add TxBufWrap 7DDF3018, TxBuf 7DDF3041
MnpAddFreeTx= Buf: Add TxBufWrap 7DDF3698, TxBuf 7DDF36C1
MnpAddFreeTxBuf: Add TxBuf= Wrap 7DDF2018, TxBuf 7DDF2041
MnpAddFreeTxBuf: Add TxBufWrap 7DDF2698,= TxBuf 7DDF26C1
MnpAddFreeTxBuf: Add TxBufWrap 7DDF1018, TxBuf 7DDF104= 1
MnpAddFreeTxBuf: Add TxBufWrap 7DDF1698, TxBuf 7DDF16C1
MnpAddF= reeTxBuf: Add TxBufWrap 7DDF0018, TxBuf 7DDF0041
MnpAddFreeTxBuf: Add = TxBufWrap 7DDF0698, TxBuf 7DDF06C1
MnpAddFreeTxBuf: Add TxBufWrap 7DDE= F018, TxBuf 7DDEF041
MnpAddFreeTxBuf: Add TxBufWrap 7DDEF698, TxBuf 7D= DEF6C1
MnpAddFreeTxBuf: Add TxBufWrap 7DDEE018, TxBuf 7DDEE041
Mn= pAddFreeTxBuf: Add TxBufWrap 7DDEE698, TxBuf 7DDEE6C1
MnpAddFreeTxBuf:= Add TxBufWrap 7DDED018, TxBuf 7DDED041
MnpAddFreeTxBuf: Add TxBufWrap= 7DDED698, TxBuf 7DDED6C1
MnpAddFreeTxBuf: Add TxBufWrap 7DDEC018, TxB= uf 7DDEC041
MnpAddFreeTxBuf: Add TxBufWrap 7DDEC698, TxBuf 7DDEC6C1MnpAddFreeTxBuf: Add TxBufWrap 7DDEB018, TxBuf 7DDEB041
MnpAddFreeT= xBuf: Add TxBufWrap 7DDEB698, TxBuf 7DDEB6C1
MnpAddFreeTxBuf: Add TxBu= fWrap 7DB7F018, TxBuf 7DB7F041
MnpAddFreeTxBuf: Add TxBufWrap 7DB7F698= , TxBuf 7DB7F6C1
MnpAddFreeTxBuf: Add TxBufWrap 7DB5F018, TxBuf 7DB5F0= 41
...InstallProtocolInterface: 41D94CD2-35B6-455A-8258-D4E51334AADD 7= E92F420
InstallProtocolInterface: 3AD9DF29-4501-478D-B1F8-7F7FE70E50F3= 7E3D2038
InstallProtocolInterface: F4B427BB-BA21-4F16-BC4E-43E416AB61= 9C 7E3D67B0

  Station IP address is 10.0.2.199
Install= ProtocolInterface: 7A59B29B-910B-4171-8242-A85A0DF25B5B 7DB5E6A0
Insta= llProtocolInterface: 65530BC7-A359-410F-B010-5AADC7EC2B62 7DDECE38
Ins= tallProtocolInterface: 41D94CD2-35B6-455A-8258-D4E51334AADD 7DDEDD20
I= nstallProtocolInterface: 00CA959F-6CFA-4DB1-95BC-E46C47514390 7DDEEE48
InstallProtocolInterface: 1682FE44-BD7A-4407-B7C7-DCA37CA3922D 7DDEEE68InstallProtocolInterface: 09576E91-6D3F-11D2-8E39-00A0C969723B 7DB4DC98<= br />HttpNotify: Event - 1, EventStatus - Success
TlsDoHandshake SSL_H= ANDSHAKE_ERROR State=3D0x4 SSL_ERROR_SSL
TlsDoHandshake ERROR 0xA00008= 6=3DL14:R86
HttpNotify: Event - 2, EventStatus - Aborted
HttpNoti= fy: Event - 3, EventStatus - Aborted
TcpOnAppAbort: connection reset i= ssued by application for TCB 7DDEBD18

  URI: https://10.0.2.254:5248/images/bootx64.efi  Error: Could n= ot retrieve NBP file size from HTTP server.  Error: Unexpected network= error.
_._,_._,_
Groups.io Links:

=20 You receive all messages sent to this group. =20 =20

View/Reply Online (#110206) | =20 | Mute= This Topic | New Topic
Your Subscriptio= n | Contact Group Owner | Unsubscribe [rebecca@openfw.io]

_._,_._,_
--Lxs1MO6kgTLAr56QxwCp--