summaryrefslogtreecommitdiff
path: root/SecurityPkg
diff options
context:
space:
mode:
authorSebastian Witt <sebastian.witt@siemens.com>2024-06-04 14:34:39 +0200
committermergify[bot] <37929162+mergify[bot]@users.noreply.github.com>2024-06-25 21:46:50 +0000
commit84d8eb08e15e455826ef66a4b1f1f61758cb9aba (patch)
tree613ace6e716befc1ba44242c7eca72ff1ab6b14d /SecurityPkg
parent10b4bb8d6d0c515ed9663691aea3684be8f7b0fc (diff)
downloadedk2-84d8eb08e15e455826ef66a4b1f1f61758cb9aba.zip
edk2-84d8eb08e15e455826ef66a4b1f1f61758cb9aba.tar.gz
edk2-84d8eb08e15e455826ef66a4b1f1f61758cb9aba.tar.bz2
CryptoPkg: Add SNI extension to TLS ClientHello
Webservers hosting multiple websites require the TLS SNI (Server Name Indication) in the ClientHello to know which certificate to return. The current TLS code does not include the server name in the ClientHello handshake, which leads to failed HTTPS boots when the server does not return the correct certificate. This sets the host name for SNI in TlsSetVerifyHost which receives the host name also for verification against the certificates. Signed-off-by: Sebastian Witt <sebastian.witt@siemens.com>
Diffstat (limited to 'SecurityPkg')
0 files changed, 0 insertions, 0 deletions