diff options
| author | Laszlo Ersek <lersek@redhat.com> | 2018-03-22 10:59:59 +0100 |
|---|---|---|
| committer | Laszlo Ersek <lersek@redhat.com> | 2018-03-28 13:07:32 +0200 |
| commit | 78a6782158db2711c3192e46d0cf06f48d28d406 (patch) | |
| tree | b8f84a94f95c472bda1cc2b09252ed9bb0af34c1 /NetworkPkg/HttpDxe | |
| parent | 6f3487a79b41e72782c5baea996c294b4ce38960 (diff) | |
| download | edk2-78a6782158db2711c3192e46d0cf06f48d28d406.tar.gz edk2-78a6782158db2711c3192e46d0cf06f48d28d406.tar.bz2 edk2-78a6782158db2711c3192e46d0cf06f48d28d406.zip | |
NetworkPkg/HttpDxe: drop misleading comment / status code in cert config
For TlsConfigureSession(), it makes sense to exempt EFI_NOT_FOUND from
TlsConfigCipherList() / gRT->GetVariable(), because there is a default
cipher list (SSL_DEFAULT_CIPHER_LIST) we can fall back to.
The same is not true of TlsConfigCertificate(), because there is no
default CA cert list. The platform (or the user of the Setup utility) is
required to configure a CA cert list first.
Remove the misleading comment and status code mapping in
TlsConfigCertificate().
Cc: Jiaxin Wu <jiaxin.wu@intel.com>
Cc: Siyuan Fu <siyuan.fu@intel.com>
Contributed-under: TianoCore Contribution Agreement 1.1
Signed-off-by: Laszlo Ersek <lersek@redhat.com>
Reviewed-by: Fu Siyuan <siyuan.fu@intel.com>
Reviewed-by: Jiaxin Wu <jiaxin.wu@intel.com>
Diffstat (limited to 'NetworkPkg/HttpDxe')
| -rw-r--r-- | NetworkPkg/HttpDxe/HttpsSupport.c | 2 |
1 files changed, 0 insertions, 2 deletions
diff --git a/NetworkPkg/HttpDxe/HttpsSupport.c b/NetworkPkg/HttpDxe/HttpsSupport.c index 9103987a0e..baab77225f 100644 --- a/NetworkPkg/HttpDxe/HttpsSupport.c +++ b/NetworkPkg/HttpDxe/HttpsSupport.c @@ -423,9 +423,7 @@ TlsConfigCertificate ( if (EFI_ERROR (Status)) {
//
// GetVariable still error or the variable is corrupted.
- // Fall back to the default value.
//
- Status = EFI_NOT_FOUND;
goto FreeCACert;
}
|