packages/edk2
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
95 Commits 1 Branch 0 Tags
Commit Graph

51 Commits

Author SHA1 Message Date
hanliyang
8f8a38d6e0 Support live migration for Hygon CSV1/2/3 guests, fix nesting #VC 
The live migration of Hygon CSV1/2/3 guest depends on the KVM
hypercall KVM_HC_MAP_GPA_RANGE, add code to sync page enc/dec
status to KVM.

The MMIO routine of VC handler will get memory encrypt status to
validate MMIO address. MemEncryptSevGetEncryptionMask() will enable
interrupt while interrupt must be disabled during VC. During DXE
stage, VC routine as below:
  CcExitHandleVc
    -> MemEncryptSevGetAddressRangeState
      -> MemEncryptSevGetEncryptionMask->PcdGet64(PcdPteMemoryEncryptionAddressOrMask)

Signed-off-by: hanliyang <hanliyang@hygon.cn>
 2024-10-23 18:02:32 +08:00
ShenYage
d95c0c9f0f Fix CVE-2023-45236、CVE-2023-45237 
Signed-off-by: ShenYage <shenyage1@huawei.com>
 2024-10-15 23:04:06 +08:00
hanliyang
42da937f6e Add support for Hygon CSV3 guest 
Signed-off-by: hanliyang <hanliyang@hygon.cn>
 2024-10-20 18:06:07 +08:00
zhangxianting
e90700e1bb fix CVE-2024-38796 2024-10-09 16:00:51 +08:00
Xiaotian Wu
ec60765a8e add LoongArch support 
backport edk2-platform to build with edk2-2308

Signed-off-by: Xiaotian Wu <wuxiaotian@loongson.cn>
 2024-09-13 10:57:43 +08:00
ShenYage
442bc876f4 Fix CVE-2024-6119 
Signed-off-by: ShenYage <shenyage1@huawei.com>
 2024-09-05 15:24:44 +08:00
ShenYage
f14a124daa Fix CVE-2024-5535 
Signed-off-by: ShenYage <shenyage1@huawei.com>
 2024-07-11 19:49:46 +08:00
ShenYage
3e468ca7b5 Fix CVE-2024-1298 
Signed-off-by: ShenYage <shenyage1@huawei.com>
 2024-06-11 17:48:09 +08:00
jiangdongxu
31c4073175 edk2.spec: make EFI_LOADER_DATA executable again 
As commit(2997ae387397) make EFI_LOADER_DATA non-executable, old
operation system using old GRUB cannot boot. As we need to support
these operation systems, make EFI_LOADER_DATA executable again.

Signed-off-by: jiangdongxu <jiangdongxu1@huawei.com>
 2024-04-24 14:19:56 +08:00
ShenYage
d411de33f5 Fix CVE-2023-6237、CVE-2024-2511 
Signed-off-by: ShenYage <shenyage1@huawei.com>
(cherry picked from commit 591443e21eac71b083d7910220c4102648987009)
 2024-04-17 16:02:11 +08:00
yexiao
e237463fd2 Fix som CVE 
Fix CVE-2023-45229、CVE-2023-45230、CVE-2023-45231、CVE-2023-45232、CVE-2023-45233、CVE-2023-45234、CVE-2023-45235

Signed-off-by: yexiao <yexiao7@huawei.com>
(cherry picked from commit aa6a1dc11863945714f63746d5f1159ed3ede3e7)
 2024-03-18 10:53:43 +08:00
yexiao
33439c309c Fix some CVE 
fix CVE-2022-36763、CVE-2022-36764、CVE-2022-36765

Signed-off-by: yexiao <yexiao7@huawei.com>
(cherry picked from commit 45d7902c879c8a960a59b4d86c97ca7b7c1765c6)
 2024-03-11 09:58:09 +08:00
yexiao
73840139ff Fix some CVE 
CVE-2023-3446、CVE-2023-3817、CVE-2024-0727、CVE-2023-2975、CVE-2023-6129

Signed-off-by: yexiao <yexiao7@huawei.com>
 2024-03-01 11:18:10 +08:00
duyiwei
a0c638905f Added firmware scanning directory mapping for libvirt XML 
Signed-off-by: duyiwei <duyiwei@kylinos.cn>
 2024-01-25 17:44:47 +08:00
openeuler-ci-bot
34e91a4d10
!164 upgrade to 202308 for support riscv64 and add a patch to fix build error on the riscv64 obs build environment. 
From: @ouuleilei 
Reviewed-by: @caojinhuajy, @yezengruan 
Signed-off-by: @yezengruan
 2023-09-13 03:24:54 +00:00
ouuleilei
d3d233a55d upgrade to 202308 for support riscv64 and add a patch to fix build error on the riscv64 obs build environment. 2023-09-12 10:08:28 +08:00
yexiao
95521053a1 Fix miss of changelog 
Signed-off-by: yexiao <yexiao7@huawei.com>
 2023-07-27 03:49:50 +08:00
Jiabo Feng
b436e3c8aa solving the compilation failure problem of gcc 12.3.0 
reference:
https://github.com/google/brotli/pull/893
https://github.com/tianocore/edk2/pull/2347
https://github.com/tianocore/edk2/pull/2694

Signed-off-by: Jiabo Feng <fengjiabo1@huawei.com>
 2023-07-14 10:26:46 +08:00
yexiao
f51f632f91 Fix CVE-2022-4304 
Signed-off-by: yexiao <yexiao7@huawei.com>
 2023-07-03 16:47:22 +08:00
chenhuiying
4515de537b fix CVE-2023-0286 
Signed-off-by: chenhuiying <chenhuiying4@huawei.com>
 2023-02-26 14:48:09 +08:00
chenhuiying
e25a53b4bb fix CEV-2023-0215 
Signed-off-by: chenhuiying <chenhuiying4@huawei.com>
 2023-02-26 13:12:03 +08:00
s00803682
1506bbc136 fix CVE-2023-0401 2023-02-26 11:11:38 +08:00
s00803682
f6a7530990 fix CVE-2022-4450 2023-02-25 18:07:13 +08:00
chenhuiying
d212ca2421 CVE-2021-38578 2022-11-29 10:43:21 +08:00
chenhuiying
6e56773a39 fix CVE-2019-11098 
Signed-off-by: chenhuiying <chenhuiying4@huawei.com>
 2022-09-29 09:54:27 +08:00
miaoyubo
df8d559553 Enable tpm for edk 
Enable TPM for pcr 0-7
 2022-06-14 10:30:34 +08:00
mylee
ba5cc503db fix spec changelog date 2022-05-16 14:55:28 +08:00
yezengruan
701fa89c5d edk: update changelog 
Signed-off-by: yezengruan <yezengruan@huawei.com>
 2022-04-27 19:24:48 +08:00
Jinhua Cao
377f2ac93a OvmfPkg:VirtioNetDxe:Extend the RxBufferSize to avoid data truncation 
Signed-off-by: Jinhua Cao <caojinhua1@huawei.com>
(cherry picked from commit 27bd8394db13f2beff206c975f0d7febb69d639b)
 2022-03-30 15:39:31 +08:00
c00576969
924da87b5c update edk2 to stable 202011 
Signed-off-by: Jinhua Cao <caojinhua1@huawei.com>
Signed-off-by: yezengruan <yezengruan@huawei.com>
 2022-03-30 15:38:19 +08:00
Jinhua Cao
3da4384e42 fix CVE-2021-38576 
Signed-off-by: Jinhua Cao <caojinhua1@huawei.com>
 2022-01-27 11:39:11 +08:00
Jinhua Cao
e61d8414ff fix CVE-2021-28216 
Signed-off-by: Jinhua Cao <caojinhua1@huawei.com>
 2022-01-18 19:17:30 +08:00
Jinhua Cao
2f0b056664 BaseTools: Adapter for python3.9 
fix ucs-2 lookup on python3.9
    Work around array.array.tostring() removal in python3.9
    (cherry-pick: 5d8648345c 43bec9ea3d)

Signed-off-by: Jinhua Cao <caojinhua1@huawei.com>
 2022-01-18 19:04:29 +08:00
imxcc
5a3c9bbbde fix cve-2021-38575 
Signed-off-by: imxcc <xingchaochao@huawei.com>
 2021-09-22 17:40:47 +08:00
miaoyubo
b8316529d8 Fix CVE-2021-28211 2021-08-31 09:53:19 +08:00
eillon
85be15144b ArmPkg/CompilerIntrinsicsLib: provide atomics intrinsics 
Gary reports the GCC 10 will emit calls to atomics intrinsics routines
unless -mno-outline-atomics is specified. This means GCC-10 introduces
new intrinsics, and even though it would be possible to work around this
by specifying the command line option, this would require a new GCC10
toolchain profile to be created, which we prefer to avoid.

So instead, add the new intrinsics to our library so they are provided
when necessary.
 2021-07-30 10:00:25 +08:00
Jiajie Li
30b95c6463 Fix CVE-2021-28210 
Signed-off-by: Jiajie Li <lijiajie11@huawei.com>
 2021-06-28 16:42:40 +08:00
AlexChen
de34a2e0be spec: remove useless BuildRequire python2 
The build of the edk2 don't need python2 anymore, so remote it.

Signed-off-by: AlexChen <alex.chen@huawei.com>
 2020-11-02 10:51:23 +08:00
Ying Fang
086d6ccc13 spec: convert Source0 to http url 
update Source0 to http url, OBS will build pkg using Source0

Signed-off-by: Ying Fang <fangying1@huawei.com>
 2020-09-29 09:00:20 +08:00
jiangfangjie
d285d5a0fb ArmvirtPkg/ArmVirtQemu: enable TPM2 based measured boot and enable the TPM2 configuration module 
Signed-off-by: jiangfangjie <jiangfangjie@huawei.com>
 2020-08-05 18:42:45 +08:00
zhanghailiang
07555356d1 Update edk2.spec. Add build option to enable secure boot 2020-07-29 10:54:12 +08:00
Xiang Zheng
7d22e06acf Upgrade edk2 to stable202002 and OpenSSL to 1.1.1f 
Signed-off-by: Xiang Zheng <zhengxiang9@huawei.com>
 2020-05-12 11:09:52 +08:00
zhanghailiang
3d4a8af3b4 openssl: sync two patches from openeuler openssl 
Signed-off-by: zhanghailiang <zhang.zhanghailiang@huawei.com>
 2020-03-19 11:31:01 +08:00
zhanghailiang
cb50babe87 spec: enable ipv6 for x86_64 
Signed-off-by: zhanghailiang <zhang.zhanghailiang@huawei.com>
 2020-03-17 10:37:04 +08:00
zhanghailiang
62f3b1f4fe spec: pass some options to make command 
edk2 packages can take EXTRA_OPTFLAGS and EXTRA_LDFLAGS from caller,
we pass the default optflags and __global_ldflags to make.

Signed-off-by: zhanghailiang <zhang.zhanghailiang@huawei.com>
 2020-03-17 10:37:01 +08:00
zhanghailiang
7195ac465d spec: enable multiple threads compiling 
Signed-off-by: zhanghailiang <zhang.zhanghailiang@huawei.com>
 2020-03-17 10:36:28 +08:00
zhanghailiang
3baa49e488 spec: fix missing OVMF.fd in package 
We didn't put OVMF.fd in package, let's put it into package.

Signed-off-by: zhanghailiang <zhang.zhanghailiang@huawei.com>
 2020-03-15 11:45:07 +08:00
openeuler-basic
5df068cf08 add build requires of python2 2020-02-22 22:03:25 +08:00
zhanghailiang
cc86ef775e edk2: Upgrade openssl to 1.1.1d to fix several bugs 
Signed-off-by: zhanghailiang <zhang.zhanghailiang@huawei.com>
 2019-12-31 10:02:37 +08:00
dogsheng
12632280a0 Package init 2019-12-13 15:13:41 +08:00