* [PATCH 0/2] Disable TLS host verify for Redfish connection
@ 2023-02-01 3:46 Nickle Wang
0 siblings, 0 replies; only message in thread
From: Nickle Wang @ 2023-02-01 3:46 UTC (permalink / raw)
To: devel; +Cc: Maciej Rabeda, Siyuan Fu, Abner Chang, Igor Kulchytskyy,
Nick Ramirez
When BMC server uses self-signed certificate and BIOS can not get
root CA, we need a way of disabling TLS host verify in HTTPs
connection. Some tool like "curl" has this ability to NOT verify
host certificate. Adding this option to HttpDxe driver helps BIOS
Redfish driver to communicate with BMC over HTTPs connection.
Signed-off-by: Nickle Wang <nicklew@nvidia.com>
Cc: Maciej Rabeda <maciej.rabeda@linux.intel.com>
Cc: Siyuan Fu <siyuan.fu@intel.com>
Cc: Abner Chang <abner.chang@amd.com>
Cc: Igor Kulchytskyy <igork@ami.com>
Cc: Nick Ramirez <nramirez@nvidia.com>
Nickle Wang (2):
NetworkPkg/HttpDxe: provide function to disable TLS host verify
RedfishPkg/RedfishDiscoverDxe: provide PCD to disable TLS host verify
RedfishPkg/RedfishPkg.dec | 5 ++
.../RedfishDiscoverDxe/RedfishDiscoverDxe.inf | 3 +-
MdePkg/Include/Protocol/Http.h | 5 ++
NetworkPkg/HttpDxe/HttpProto.h | 2 +
NetworkPkg/HttpDxe/HttpImpl.c | 2 +
NetworkPkg/HttpDxe/HttpsSupport.c | 53 ++++++++++---------
.../RedfishDiscoverDxe/RedfishDiscoverDxe.c | 8 +--
7 files changed, 50 insertions(+), 28 deletions(-)
--
2.39.1.windows.1
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2023-02-01 3:46 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2023-02-01 3:46 [PATCH 0/2] Disable TLS host verify for Redfish connection Nickle Wang
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox