Rafael,

I’m not sure this matches exactly what you are looking for, but the OVMF 
(Virtual Machine) has some configuration options around HTTPS boot [1]. That 
might be a good place to start. 

[1] https://github.com/tianocore/edk2/blob/master/OvmfPkg/README#L232

Thanks,

Andrew Fish

> On Aug 26, 2022, at 7:15 AM, Rafael Machado 
> <rafaelrodrigues.mach...@gmail.com> wrote:
> 
> Hello everyone.
> 
> Quick question for the ones that understand better the HTTPBoot architecture 
> at the edk2 structure.
> 
> Suppose I have to restrict HTTPS boot to accept only the download of images 
> from a specific url.
> For example, instead of allowing the download of images from any valid CA 
> certificate address, I would like to restrict HTTPSBoot to allow only 
> downloads from some specific domain I have.
> 
> Probably filtering some information, CN or something like that, from the url 
> certificate.
> 
> What is the best way to do that?
> In which driver/library should this logic be added?
> 
> Thanks
> Rafael
> 



-=-=-=-=-=-=-=-=-=-=-=-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#92869): https://edk2.groups.io/g/devel/message/92869
Mute This Topic: https://groups.io/mt/93270616/21656
Group Owner: devel+ow...@edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-


Reply via email to