Today on the UEFI development list, Laszlo Ersek of Redhat announced an OVMF BOF at the upcoming KVM Forum, including Paolo Bonzini speaking on adding SMM to OVMF for KVM and Tianocore. This is a massive checkin, and having SMM in OVMF makes it a lot easier to trace and fuzz. Event aside, the list of the last year’s worth of changes to OVMF/AVMF makes for an interesting read. Heavily-edited announcement follows:
Let’s do an OVMF BoF at this year’s KVM Forum too. Paolo will present “Securing secure boot: system management mode in KVM and Tiano Core” on Thursday, August 20, in the 5:00pm – 5:30pm time slot. Right after that, the BoF section starts at 5:30pm. We should convene and discuss stuff. I don’t have an agenda, so people should bring their ideas and questions (famous last words).
As food for thought, I tried to collect the feature-looking patches from the git history that have been committed since last year’s KVM Forum, and to match them against patch sets on the mailing list:
git log –reverse –oneline –since=2014-10-14 — OvmfPkg/ ArmVirtPkg/ ArmPlatformPkg/ArmVirtualizationPkg/
I attempted to sort them into categories. You can see the list below. The ordering is totally random, it’s just what I ended up with. Corrections / additions welcome. One (missing) feature I’d like to see discussed is: “SataControllerDxe in OVMF”. SMM will require Q35, and the only “IDE” that Q35 speaks is SATA / AHCI. (And you can’t disable that controller on Q35.)
Features completed (… unless marked [pending])
– Xen guest:
– PV block driver:
[PATCH v4 00/19] Introducing Xen PV block driver to OVMF
– Xen for ARM:
[PATCH v5 00/29] Xen/ARM guest support
– PCI / hw related:
– PCI on ARM; detect VGA and USB keyboard:
[PATCH v3 00/28] ArmVirtualizationPkg/ArmVirtualizationQemu: enable PCI
[PATCH 0/4] ArmVirtualizationPkg: PlatformIntelBdsLib: dynamic console setup
– support for Q35:
[PATCH v6 0/9] OVMF: Add support for Qemu Q35 machine type
[PATCH 1/1] OvmfPkg: QemuBootOrderLib: parse OFW device path nodes of PCI bridges
– USB3 (ARM and x86):
[PATCH v2 2/4] ArmVirtualizationPkg/ArmVirtualizationQemu: include XHCI driver
[PATCH v2 4/4] OvmfPkg: include XHCI driver
– support TCO watchdog emulation features:
[PATCH v5 2/2] OvmfPkg/PlatformPei: Initialise RCBA (B0:D31:F0 0xf0) register
– virtio-vga:
[PATCH] Add virtio-vga support
– support extra PCI root buses for NUMA-locality with assigned devices:
[PATCH v3 00/23] OvmfPkg: support extra PCI root buses
– QEMU config integration:
– fw_cfg, boot order, and -kernel booting on ARM:
[PATCH v4 00/13] ArmVirtualizationQemu: support fw_cfg, bootorder, ‘-kernel’
[PATCH 0/3] ArmVirtPkg: drop support for the ARM BDS
– support for “-boot menu=on[,splash-time=N]”:
[PATCH v2 0/3] OVMF, ArmVirt: consume QEMU’s “-boot menu=on[,splash-time=N]”
– ACPI tables for ARM:
[PATCH v2 0/3] ACPI over fw_cfg for ARM/AARCH64 qemu guests
– SMBIOS features: Type 0 default, and SMBIOS 3.0 support on ARM and x86:
[PATCH] OvmfPkg/SMBIOS: Provide default Type 0 (BIOS Information) structure
[PATCH v2 0/6] ArmVirtPkg/ArmVirtQemu: support SMBIOS
[PATCH 0/9] OvmfPkg, ArmVirtPkg: SMBIOS 3.0, round 2
– ARM specific:
– “fun” with the caches:
[PATCH v4 0/5] ArmVirtualizationPkg: explicit cache maintenance
– secure boot:
[PATCH v3 0/3] ArmVirtualizationQemu: enable support for UEFI Secure Boot
– performance optimization:
[PATCH v2 0/6] ArmPkg/ArmVirtPkg: GIC revision detection
– better handling for the typical Linux terminal (generic driver code, hooked up to ArmVirt):
[PATCH V4 0/5] Add TtyTerm terminal type
– SMM for OVMF (in progress):
[PATCH 00/11] Bits and pieces
[PATCH 00/58] OvmfPkg: support SMM for better security (single VCPU, IA32) [pending]
– Build system:
– moving to NASM:
[PATCH 0/7] Convert OVMF assembly to NASM
[PATCH v2 0/6] OvmfPkg/XenBusDxe: Convert *.asm to NASM.
– accept UTF-8 in .uni files:
[PATCH v4 00/10] Support UTF-8 in .uni string files
– LLVM/clang support for AARCH64 (in progress):
[PATCH v4 00/13] BaseTools: unify all GCC linker scripts
[PATCH v4 0/7] small model and clang support for AARCH64 [pending]
– UEFI compliance:
– support for OsIndications:
[PATCH v2 0/9] OvmfPkg: PlatformBdsLib cleanups and improvements
– signal ReadyToBoot:
[PATCH 1/8] OvmfPkg/PlatformBdsLib: Signal ReadyToBoot before booting QEMU kernel
– signal EndOfDxe:
[PATCH v2] ArmVirtPkg: signal EndOxDxe event in PlatformBsdInit
[PATCH v2 0/6] OvmfPkg: save S3 state at EndOfDxe
– fix Serial IO Protocol issues flagged by SCT
[PATCH V4 0/5] Some improvements on serial terminal
– other
– big OVMF guests:
[PATCH v2 0/4] OvmfPkg: enable >= 64 GB guests
– IPv6 (conditionally enabled):
[PATCH v2] OvmfPkg: enable the IPv6 support
– many fixes for toolchain warnings and C language misuse
More Information:
https://lists.01.org/mailman/listinfo/edk2-devel
http://events.linuxfoundation.org/events/kvm-forum/program/schedule
Firmware Security 