UEFI firmware for 64-bit virtual machines
Go to file
2023-12-22 11:32:14 +01:00
.gitignore update bundled openssl 2023-12-06 13:30:25 +01:00
30-edk2-ovmf-4m-qcow2-x64-sb-enrolled.json drop /ovmf-4m/, move 4M builds to /ovmf/ instead 2023-05-17 12:01:54 +02:00
30-edk2-ovmf-ia32-sb-enrolled.json json descriptors: explicitly set mode = split 2023-05-16 14:48:40 +02:00
31-edk2-ovmf-2m-raw-x64-sb-enrolled.json json descriptors: explicitly set mode = split 2023-05-16 14:48:40 +02:00
40-edk2-ovmf-4m-qcow2-x64-sb.json drop /ovmf-4m/, move 4M builds to /ovmf/ instead 2023-05-17 12:01:54 +02:00
40-edk2-ovmf-ia32-sb.json json descriptors: explicitly set mode = split 2023-05-16 14:48:40 +02:00
41-edk2-ovmf-2m-raw-x64-sb.json json descriptors: explicitly set mode = split 2023-05-16 14:48:40 +02:00
50-edk2-aarch64-qcow2.json json descriptors: explicitly set mode = split 2023-05-16 14:48:40 +02:00
50-edk2-arm-verbose.json json descriptors: explicitly set mode = split 2023-05-16 14:48:40 +02:00
50-edk2-ovmf-4m-qcow2-x64-nosb.json drop /ovmf-4m/, move 4M builds to /ovmf/ instead 2023-05-17 12:01:54 +02:00
50-edk2-ovmf-ia32-nosb.json json descriptors: explicitly set mode = split 2023-05-16 14:48:40 +02:00
50-edk2-ovmf-x64-microvm.json json: the big renumbering 2022-11-25 11:23:53 +01:00
50-edk2-riscv-qcow2.json add unversioned virt machine type for riscv64 2023-11-17 14:01:11 +01:00
51-edk2-aarch64-raw.json json descriptors: explicitly set mode = split 2023-05-16 14:48:40 +02:00
51-edk2-ovmf-2m-raw-x64-nosb.json json descriptors: explicitly set mode = split 2023-05-16 14:48:40 +02:00
52-edk2-aarch64-verbose-qcow2.json json descriptors: explicitly set mode = split 2023-05-16 14:48:40 +02:00
53-edk2-aarch64-verbose-raw.json json descriptors: explicitly set mode = split 2023-05-16 14:48:40 +02:00
60-edk2-ovmf-x64-amdsev.json json: the big renumbering 2022-11-25 11:23:53 +01:00
60-edk2-ovmf-x64-inteltdx.json fix intel tdx firmware descriptor 2023-12-06 11:34:05 +01:00
0001-BaseTools-do-not-build-BrotliCompress-RH-only.patch rebase to edk2-stable202308, update patches and openssl tarball 2023-09-19 08:58:15 +02:00
0002-MdeModulePkg-remove-package-private-Brotli-include-p.patch rebase to edk2-stable202308, update patches and openssl tarball 2023-09-19 08:58:15 +02:00
0003-MdeModulePkg-TerminalDxe-set-xterm-resolution-on-mod.patch rebase to edk2-stable202308, update patches and openssl tarball 2023-09-19 08:58:15 +02:00
0004-OvmfPkg-take-PcdResizeXterm-from-the-QEMU-command-li.patch rebase to edk2-stable202308, update patches and openssl tarball 2023-09-19 08:58:15 +02:00
0005-ArmVirtPkg-take-PcdResizeXterm-from-the-QEMU-command.patch rebase to edk2-stable202308, update patches and openssl tarball 2023-09-19 08:58:15 +02:00
0006-OvmfPkg-enable-DEBUG_VERBOSE-RHEL-only.patch rebase to edk2-stable202308, update patches and openssl tarball 2023-09-19 08:58:15 +02:00
0007-OvmfPkg-silence-DEBUG_VERBOSE-0x00400000-in-QemuVide.patch rebase to edk2-stable202308, update patches and openssl tarball 2023-09-19 08:58:15 +02:00
0008-ArmVirtPkg-silence-DEBUG_VERBOSE-0x00400000-in-QemuR.patch rebase to edk2-stable202308, update patches and openssl tarball 2023-09-19 08:58:15 +02:00
0009-OvmfPkg-QemuRamfbDxe-Do-not-report-DXE-failure-on-Aa.patch rebase to edk2-stable202308, update patches and openssl tarball 2023-09-19 08:58:15 +02:00
0010-OvmfPkg-silence-EFI_D_VERBOSE-0x00400000-in-NvmExpre.patch rebase to edk2-stable202308, update patches and openssl tarball 2023-09-19 08:58:15 +02:00
0011-OvmfPkg-QemuKernelLoaderFsDxe-suppress-error-on-no-k.patch rebase to edk2-stable202308, update patches and openssl tarball 2023-09-19 08:58:15 +02:00
0012-SecurityPkg-Tcg2Dxe-suppress-error-on-no-swtpm-in-si.patch rebase to edk2-stable202308, update patches and openssl tarball 2023-09-19 08:58:15 +02:00
0013-UefiCpuPkg-MpInitLib-fix-apic-mode-for-cpu-hotplug.patch rebase to edk2-stable202308, update patches and openssl tarball 2023-09-19 08:58:15 +02:00
0015-CryptoPkg-CrtLib-add-stat.h.patch rebase to edk2-stable202308, update patches and openssl tarball 2023-09-19 08:58:15 +02:00
0016-CryptoPkg-CrtLib-add-access-open-read-write-close-sy.patch rebase to edk2-stable202308, update patches and openssl tarball 2023-09-19 08:58:15 +02:00
0017-OvmfPkg-set-PcdVariableStoreSize-PcdMaxVolatileVaria.patch rebase to edk2-stable202311 2023-11-27 10:50:04 +01:00
0018-silence-.-has-a-LOAD-segment-with-RWX-permissions-wa.patch silence '... has a LOAD segment with RWX permissions' warning 2023-11-27 19:00:10 +01:00
0019-ArmVirt-Allow-memory-attributes-protocol-to-be-disab.patch swap MemoryAttributeProtocol patch, again 2023-12-12 12:19:37 +01:00
changelog Convert to %autorelease and %autochangelog 2023-05-05 09:49:23 +02:00
DBXUpdate-20220812.ia32.bin dbx update to 20220812, fix ia32 2023-03-06 08:18:29 +01:00
DBXUpdate-20220812.x64.bin dbx update to 20220812, fix ia32 2023-03-06 08:18:29 +01:00
DBXUpdate-20230314.ia32.bin add 2023-03 dbx update files 2023-03-28 11:02:49 +02:00
DBXUpdate-20230314.x64.bin add 2023-03 dbx update files 2023-03-28 11:02:49 +02:00
DBXUpdate-20230509.ia32.bin add 20230509 dbx update files 2023-05-12 14:24:13 +02:00
DBXUpdate-20230509.x64.bin add 20230509 dbx update files 2023-05-12 14:24:13 +02:00
edk2-build.fedora set PcdImageProtectionPolicy = 0x03 for strict nx builds 2023-12-22 11:32:14 +01:00
edk2-build.fedora.platforms add standalone mm 2023-04-13 11:19:49 +02:00
edk2-build.py update build script 2023-12-05 16:16:38 +01:00
edk2-build.rhel-9 add PcdUninstallMemAttrProtocol configuration 2023-12-12 13:23:09 +01:00
edk2.spec switch the strictnx build to qcow2 (like all other 4M builds) 2023-12-13 13:42:35 +01:00
make-tarball.sh make hashlength configurable in make-tarball.sh 2023-12-12 12:10:30 +01:00
ovmf-whitepaper-c770f8c.txt add missing files 2017-11-14 18:16:25 +01:00
README.experimental add README.experimental 2023-09-19 08:58:15 +02:00
sources update bundled openssl 2023-12-06 13:30:25 +01:00

experimental edk2 builds
------------------------

OVMF.stateless.fd
OVMF.stateless.secboot.fd
OVMF.stateless.secboot.pcr

  Stateless (== no persistent uefi variables) ovmf build.  Has secure
  boot support, the 'secboot' variant has secure boot enabled.  Does
  not require SMM support.

OVMF_CODE.4m.secboot.strictnx.fd

  OVMF build with strict NX configuration (using r-x for code, rw- for
  data).  Known to not work with some grub and linux kernel versions
  because they use the wrong memory type for allocations and run into
  NX faults.  Useful for bootloader development and CI.

QEMU_EFI.strictnx.fd
QEMU_EFI-strictnx-pflash.raw

  ArmVirt build with strict NX configuration (see above for details).

QEMU_EFI.secboot.testonly.fd
QEMU_EFI-secboot-testonly-pflash.raw
vars-template-secboot-testonly-pflash.raw

  ArmVirt build with secure boot support.

  Exposes the secure boot APIs, so they can be used for development /
  testing / CI.

  The EFI variable store is NOT protected, therefore the build is NOT
  suitable for production use.