Update initrd (of live pxe)
-
Hi,
Is it possible to update initrd (of live PXE) for the next upgrade of FOG ?
We have Geant certificates that have not recognize by curl. I think it’s need the last ca-certificates ? -
@Florent Which version of FOG do you currently use?
I am not sure I understand correctly what you mean. Reading between the lines I think you have a custom HTTPS certificate installed on your FOG server (issued by Geant) and curl used in various places in the inits fails on sending a request?!
Can you please be more specific on where exactly it fails?
Anyhow, you can download the latest init (64 bit and 32 bit) and put those in
/var/www/html/fog/service/ipxe/. -
@sebastian-roth Hi,
Sorry i poorly explained.
We are on FOG 1.5.9
When computer boot on PXE after cloning, there is “postdownload” bash script.
In this script we try to get an external URL (not FOG) who have “Geant” certificate but https verification failed.
If i test on classic computer it’s work.
I go to try to update the init.xz -
@Florent As a quick workaround you might use
curl --insecure ...(see man page of curl).As of now we don’t seem to include the package “ca-certificates” into out FOS init build (ref). Interesting no one else ever asked about this before. Not sure how much this would add to the inits and if more people would use those.
-
@sebastian-roth Yes curl -k works, but if i can avoid this.
Intersting nobody never asked this. -
@Florent As you are using postdownload scripts anyway you could also just put the Geant CA certificate to that folder and use
curl --cacert /path/to/ca.crt ... -
@sebastian-roth Ok thanks