diff options
Diffstat (limited to 'system/edk2-ovmf')
-rw-r--r-- | system/edk2-ovmf/README | 14 | ||||
-rw-r--r-- | system/edk2-ovmf/edk2-ovmf.SlackBuild | 82 | ||||
-rw-r--r-- | system/edk2-ovmf/edk2-ovmf.info | 12 | ||||
-rw-r--r-- | system/edk2-ovmf/slack-desc | 19 |
4 files changed, 127 insertions, 0 deletions
diff --git a/system/edk2-ovmf/README b/system/edk2-ovmf/README new file mode 100644 index 0000000000..bab6e62d06 --- /dev/null +++ b/system/edk2-ovmf/README @@ -0,0 +1,14 @@ +edk2-ovmf (Secure Boot enabled UEFI firmware for Qemu) + +edk2-ovmf provides Secure Boot enabled 64- and 32-bit UEFI firmware +that can be used with Qemu, as well as EFI varstores with pre-enrolled +Secure Boot keys. This allows for running virtual machines with +operating systems that require Secure Boot on Qemu, such as Windows 11. + +Please note that, according to the TianoCore team, although the firmware +is sufficient to run virtual machines, it does not provide the full +protective capabilities of Secure Boot. See the whitepaper in the doc +directory for details. + +Qemu needs to connect to TPM v2 in order to run Windows 11; see swtpm +on SBo. diff --git a/system/edk2-ovmf/edk2-ovmf.SlackBuild b/system/edk2-ovmf/edk2-ovmf.SlackBuild new file mode 100644 index 0000000000..538a7aeb95 --- /dev/null +++ b/system/edk2-ovmf/edk2-ovmf.SlackBuild @@ -0,0 +1,82 @@ +#!/bin/bash +# +# Slackware build script for edk2-ovmf +# +# Copyright 2023-2024 K. Eugene Carlson Tsukuba, Japan +# All rights reserved. +# +# Redistribution and use of this script, with or without modification, is +# permitted provided that the following conditions are met: +# +# 1. Redistributions of this script must retain the above copyright +# notice, this list of conditions and the following disclaimer. +# +# THIS SOFTWARE IS PROVIDED BY THE AUTHOR "AS IS" AND ANY EXPRESS OR IMPLIED +# WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF +# MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO +# EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, +# SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, +# PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; +# OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, +# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR +# OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF +# ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. + +cd $(dirname $0) ; CWD=$(pwd) + +PRGNAM=edk2-ovmf +VERSION=${VERSION:-202405} +FEDVER=${FEDVER:-24-1.fc41} +BUILD=${BUILD:-1} +TAG=${TAG:-_SBo} +PKGTYPE=${PKGTYPE:-tgz} + +ARCH=noarch + +# If the variable PRINT_PACKAGE_NAME is set, then this script will report what +# the name of the created package would be, and then exit. This information +# could be useful to other scripts. +if [ ! -z "${PRINT_PACKAGE_NAME}" ]; then + echo "$PRGNAM-$VERSION-$ARCH-$BUILD$TAG.$PKGTYPE" + exit 0 +fi + +TMP=${TMP:-/tmp/SBo} +PKG=$TMP/package-$PRGNAM +OUTPUT=${OUTPUT:-/tmp} + +set -e + +rm -rf $PKG +mkdir -p $TMP $PKG $OUTPUT +cd $TMP +rm -rf $PRGNAM-$VERSION +mkdir $PRGNAM-$VERSION +cd $PRGNAM-$VERSION +rpm2cpio $CWD/$PRGNAM-$VERSION$FEDVER.noarch.rpm | cpio -idmv +rpm2cpio $CWD/$PRGNAM-ia32-$VERSION$FEDVER.noarch.rpm | cpio -idmv +chown -R root:root . +find -L . \ + \( -perm 777 -o -perm 775 -o -perm 750 -o -perm 711 -o -perm 555 \ + -o -perm 511 \) -exec chmod 755 {} \; -o \ + \( -perm 666 -o -perm 664 -o -perm 640 -o -perm 600 -o -perm 444 \ + -o -perm 440 -o -perm 400 \) -exec chmod 644 {} \; + +mkdir -p $PKG/usr/share +cp -r usr/share/edk2/ovmf $PKG/usr/share/edk2-ovmf-x64 +cp -r usr/share/edk2/ovmf-ia32 $PKG/usr/share/edk2-ovmf-ia32 +# Firmware-loading specifications; the files do not conflict with Qemu. +cp -r usr/share/qemu $PKG/usr/share/qemu +sed -i 's|edk2/ovmf|edk2-ovmf-x64|g' $PKG/usr/share/qemu/firmware/*x64* +sed -i 's|edk2/ovmf|edk2-ovmf|g' $PKG/usr/share/qemu/firmware/*ia32* + +mkdir -p $PKG/usr/doc/$PRGNAM-$VERSION +cat $CWD/$PRGNAM.SlackBuild > $PKG/usr/doc/$PRGNAM-$VERSION/$PRGNAM.SlackBuild +cp usr/share/licenses/edk2-ovmf/* $PKG/usr/doc/$PRGNAM-$VERSION +cp usr/share/doc/edk2-ovmf/* $PKG/usr/doc/$PRGNAM-$VERSION + +mkdir -p $PKG/install +cat $CWD/slack-desc > $PKG/install/slack-desc + +cd $PKG +/sbin/makepkg -l y -c n $OUTPUT/$PRGNAM-$VERSION-$ARCH-$BUILD$TAG.$PKGTYPE diff --git a/system/edk2-ovmf/edk2-ovmf.info b/system/edk2-ovmf/edk2-ovmf.info new file mode 100644 index 0000000000..cd91c61fc0 --- /dev/null +++ b/system/edk2-ovmf/edk2-ovmf.info @@ -0,0 +1,12 @@ +PRGNAM="edk2-ovmf" +VERSION="202405" +HOMEPAGE="https://github.com/tianocore/tianocore.github.io/wiki/OVMF" +DOWNLOAD="https://kojipkgs.fedoraproject.org/packages/edk2/20240524/1.fc41/noarch/edk2-ovmf-20240524-1.fc41.noarch.rpm \ + https://kojipkgs.fedoraproject.org/packages/edk2/20240524/1.fc41/noarch/edk2-ovmf-ia32-20240524-1.fc41.noarch.rpm" +MD5SUM="cbee3e30cedfdf7ed4bcd4fe744c54a0 \ + b78b8dfd3b6344f256e3a603c006c0f3" +DOWNLOAD_x86_64="" +MD5SUM_x86_64="" +REQUIRES="" +MAINTAINER="K. Eugene Carlson" +EMAIL="kvngncrlsn@gmail.com" diff --git a/system/edk2-ovmf/slack-desc b/system/edk2-ovmf/slack-desc new file mode 100644 index 0000000000..51fff72ba3 --- /dev/null +++ b/system/edk2-ovmf/slack-desc @@ -0,0 +1,19 @@ +# HOW TO EDIT THIS FILE: +# The "handy ruler" below makes it easier to edit a package description. +# Line up the first '|' above the ':' following the base package name, and +# the '|' on the right side marks the last column you can put a character in. +# You must make exactly 11 lines for the formatting to be correct. It's also +# customary to leave one space after the ':' except on otherwise blank lines. + + |-----handy-ruler------------------------------------------------------| +edk2-ovmf: edk2-ovmf (Secure Boot enabled UEFI firmware for Qemu) +edk2-ovmf: +edk2-ovmf: edk2-ovmf provides Secure Boot enabled UEFI firmware that can be used +edk2-ovmf: with Qemu. +edk2-ovmf: +edk2-ovmf: +edk2-ovmf: +edk2-ovmf: +edk2-ovmf: +edk2-ovmf: +edk2-ovmf: Homepage: http://www.tianocore.org/ovmf/ |