Hello all:

 

Right now the HTTPS Certificates are getting validated during TlsConfigCertificate()by HTTPDxe Driver.

 

But during enrollment of certificate via TLSDXE driver, it does not have any validation and it keep appending the TLSCaCert variable with the certificate provided.

 

Assume an invalid certificate keep loaded via TLS Auth configuration page, the NVRAM would be filled with garbage.

 

Is there any plan to have certificate validation during Enrollment?

 

-Siva