Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

ovmf-202208-150500.4.1 RPM for aarch64

From OpenSuSE Leap 15.5 for aarch64

Name: ovmf Distribution: SUSE Linux Enterprise 15
Version: 202208 Vendor: SUSE LLC <https://www.suse.com/>
Release: 150500.4.1 Build date: Mon Apr 24 18:32:13 2023
Group: System/Emulators/PC Build host: ibs-arm-3
Size: 976924 Source RPM: ovmf-202208-150500.4.1.src.rpm
Packager: https://www.suse.com/
Url: https://github.com/tianocore/edk2
Summary: Open Virtual Machine Firmware
The Open Virtual Machine Firmware (OVMF) project aims to support
firmware for Virtual Machines using the edk2 code base.

Provides

Requires

License

BSD-2-Clause-Patent

Changelog

* Fri Apr 14 2023 jlee@suse.com
  - Add ovmf-SecurityPkg-DxeImageVerificationLib-Check-result-of-.patch
    to check result of GetEfiGlobalVariable2 (CVE-2019-14560, bsc#1174246)
* Fri Apr 14 2023 jlee@suse.com
  - Add ovmf-MdeModulePkg-PiSmmCore-SmmEntryPoint-underflow-CVE-2.patch
    for MdeModulePkg/PiSmmCore: SmmEntryPoint underflow (CVE-2021-38578)
    (bsc#1196741)
* Wed Feb 15 2023 jlee@suse.com
  - Add ovmf-Revert-OvmfPkg-OvmfXen-Set-PcdFSBClock.patch to revert
    71cdb91f313380152d7bf38cfeebe76f5b2d39ac patch (bsc#1205613)
    - 71cdb91f313380152d7bf38cfeebe76f5b2d39ac OvmfPkg/OvmfXen: Set PcdFSBClock
    - We are waiting better upsteam patch, revert the issue patch first.
      Then PcdFSBClock will back to fixed variable.
    - Reference: https://edk2.groups.io/g/devel/topic/94891128#96077
    https://bugzilla.tianocore.org/show_bug.cgi?id=4340
* Sat Nov 12 2022 jlee@suse.com
  - Change the size of ovmf-x86_64 back to 2MB, and remove EFI shell to
    reduce the fv image size.
    - Originally the reason of changing the size of ovmf-x86_64 to 4MB is for
      preventing OBS exposes the following error:
      [  266s] GenFv: ERROR 3000: Invalid
      [  266s]   the required fv image size 0x1afed8 exceeds the set fv image size 0x1ac000
      The fv image size is too big. But we found that change ovmf-x86_64 to 4MB causes
      live migration problem on qemu. (bsc#1204220)
    - So let's change the size of ovmf_x86_64 back to 2MB and remove EFI shell
      to reduce the fv image size. If user wants to use EFI shell, they should move to
      ovmf-x86_64-4m image. So we add the "-D EXCLUDE_SHELL" build option to ovmf-x86_64
      flavor in ovmf.spec. (bsc#1204220)
* Thu Oct 13 2022 jlee@suse.com
  - Update to edk2-stable202208 (jsc#PED-1410)
    - Features (https://github.com/tianocore/edk2/releases):
    Add CRC16 and CRC32C to MdePkg
    IntelFsp2Pkg/ConfigEditor: Support FSP 2.3 header
    Extend SecureBootVariableLib interfaces
    UEFI HTTPS Boot Support for HTTP Client Authentication (Basic or Digest)
    Support 64bit FspResetType for X64 build
    IntelFsp2Pkg/FspSecCore: Add FSP-I entry for SMM support
    Add PCI_DEVICE_PPI definition to EDK2
    Support to assign the subject name to sign the capsule file
    - Patches (git log --oneline --reverse edk2-stable202205..edk2-stable202208):
    7f0890776e MdeModulePkg/UniversalPayload: Align Identifier value with UPL spec
    b4be5f05dd UefiPayloadPkg: Align Identifier value with UPL spec
    dac2fc8146 UefiPayloadPkg: Align SpecRevision value with UPL spec
    3ca7326b37 OvmfPkg/VirtioGpuDxe: replace struct copy with CopyMem call
    fa2b212d61 IntelFsp2Pkg: Add FSP 2.3 header support
    11d8abcba2 IntelFsp2Pkg: FSP_TEMP_RAM_INIT call must follow X64 Calling Convention
    df1c7e91b4 IntelFsp2WrapperPkg: FSP_TEMP_RAM_INIT call for X64 Calling Convention
    62044aa99b OvmfPkg/ResetVector: Removing SEV-ES CPUID bit check
    54cd0d9b2f OvmfPkg: Fix TDVMCALL error in ApRunLoop.nasm
    64706ef761 OvmfPkg: Search EFI_RESOURCE_MEMORY_UNACCEPTED for Fw hoblist
    81ab97b7b9 OvmfPkg/AmdSev: remove unused SMM bits from .dsc and .fdf files
    0223898f3e OvmfPkg/Microvm: drop CODE and VARS files
    b57911c84c OvmfPkg/FdtPciHostBridgeLib: io range is not mandatory
    47f44097eb OvmfPkg/Platform: unfix PcdPciExpressBaseAddress
    ad3bafa7d5 OvmfPkg/Microvm/pcie: no vbeshim please
    bd10d4e201 OvmfPkg/Microvm/pcie: mPhysMemAddressWidth tweak
    632574ced1 OvmfPkg/Microvm/pcie: add pcie support
    5c9f151e0c OvmfPkg: CloudHv: Fix FW_BASE_ADDRESS
    43f3cfce19 OvmfPkg: Check for QemuFwCfg availability before accessing it
    3129ed374c OvmfPkg: CloudHv: Rely on QemuFwCfgLibNull implementation
    bf25f27e00 OvmfPkg: Don't access A20 gate register on Cloud Hypervisor
    72c5afd0b4 Security: Add HashLibTdx
    b1567b2e15 CryptoPkg: Add SecCryptLib
    dc443e4437 SecurityPkg: Add definition of EFI_CC_EVENT_HOB_GUID
    a708536dce OvmfPkg: Introduce SecMeasurementLib
    4b0a622635 OvmfPkg/IntelTdx: Measure Td HobList and Configuration FV
    ac03c339de OvmfPkg: Add PCDs for LAML/LASA field in CC EVENTLOG ACPI table
    f8264e1303 MdePkg: Define CC Measure EventLog ACPI Table
    57a6ee3461 OvmfPkg/IntelTdx: Add TdTcg2Dxe
    0a4019ec9d OvmfPkg/IntelTdx: Enable RTMR based measurement and measure boot
    0b36dea3f8 BaseTools: Fix dependency issue in PcdValueInit
    4f89e4b3e8 .pytool: UncrustifyCheck: Set IgnoreFiles path relative to package path
    2818fda9bc Security: Add SecTpmMeasurementLibTdx
    ff0ffe5999 OvmfPkg: Implement MeasureHobList/MeasureFvImage
    a81a650da1 OvmfPkg: Delete SecMeasurementLibTdx
    ff36b2550f OvmfPkg/Sec: fix stack switch
    21a9b605b8 CpuException: Avoid allocating code pages for DXE instance
    34d505123e CpuException: Init global variables in-place
    2fbc5ff0a5 CpuException: Avoid allocating page but using global variables
    2a09527ebc CpuException: Remove InitializeCpuInterruptHandlers
    e7abb94d1f CpuException: Add InitializeSeparateExceptionStacks
    54aeed7e00 MpInitLib: Allocate code buffer for PEI phase
    76323c3145 MpInitLib: remove unneeded global ASM_PFX
    b4d7b9d2b5 MpInitLib: Put SEV logic in separate file
    283ab9437a MpInitLib: Only allocate below 1MB memory for 16bit code
    ccc269756f MpInitLib: Move the Above1Mb vector allocation to MpInitLibInitialize
    f0b97e165e Revert "OvmfPkg/Sec: fix stack switch"
    b09ada6edc MdePkg: Remove "assert" from SmmCpuRendevousLibNull.c
    92288f4334 MdePkg/BaseLib: Add CRC16-ANSI and CRC32c implementations
    e2ae0bed29 ArmPkg/ArmExceptionLib: Follow new CpuExceptionHandlerLib APIs
    6676162f64 DxeMain: Fix the bug that StackGuard is not enabled
    16d97fa601 OvmfPkg: Use PcdOvmfWorkAreaBase instead of PcdSevEsWorkAreaBase
    05e57cc9ce SecurityPkg/HashLibTdx: Return EFI_UNSUPPORTED if it is not Tdx guest
    92ab049719 BaseTools: output the intermediate library instance when error occurs
    cc2db6ebfb UefiPayloadPkg: Increase the PcdMaximumUnicodeStringLength
    e8034b534a UefiPayloadPkg: Always split page table entry to 4K if it covers stack.
    cfe165140a UefiPayloadPkg: UniversalPayloadBuild.py to support --pcd feature
    b97243dea3 MdeModulePkg/XhciDxe: Check return value of XHC_PAGESIZE register
    3930d1791a ArmPlatformPkg: Remove overly verbose DEBUG lines in LcdGraphicsBlt
    aa1bce0e5e OvmfPkg: reduce the number of dsc include files for tpm libs
    6c9f218bc0 OvmfPkg/Library: Create base HardwareInfoLib for PCI Host Bridges
    2b1a5b8c61 Ovmf/HardwareInfoLib: Create Pei lib to parse directly from fw-cfg
    a1bd79c514 Ovmf/HardwareInfoLib: Add Dxe lib to dynamically parse heterogenous data
    3497fd5c26 Ovmf/PlatformPei: Use host-provided GPA end if available
    3f5b1b9132 OvmfPkg/PciHostBridgeUtilityLib: Initialize RootBridges apertures with spec
    f304308e1c ArmPlatformPkg: Add PCD for serial debug port interrupt
    4bfd668e5e UefiCpuPkg: CpuDxe: Set RW and P Attributes on Split Pages
    2aee08c0b6 UefiPayloadPkg: Backward support with python 3.6
    8f0722434b ArmVirtPkg: Include DxeHardwareInfoLib library class in dsc
    15b25045e6 Ovmf: Include HardwareInfoLib library classes for IntelTdx
    b600f253b3 BaseTools/Ecc: Fix grammar in Ecc error message
    7f4eca4cc2 MdeModulePkg/XhciDxe: Add access xHCI Extended Capabilities Pointer
    5914128871 BaseTools: Fix the GenMake bug for .cpp source file
    c13377153f MdePkg/Acpi62: Add type 7 NFIT Platform Capabilities Structure support
    21e6ef7522 UefiPayloadPkg: Align Attribute value with UPL spec
    8d0564deaf pip-requirements.txt: Update basetools version to 0.1.24
    f966093f5b OvmfPkg/PlatformCI: add IntelTdxBuild.py
    70586d4e3a MdePkg/Acpi62: Add bit definitions to NFIT Platform Capabilities Structure
    7861b24dc9 ArmPkg/Drivers: ArmGicIsInterruptEnabled returns incorrect value
    e1eef3a8b0 NetworkPkg: Add Wi-Fi Wpa3 support in WifiConnectManager
    134fbd552c SecurityPkg: UefiSecureBoot: Definitions of cert and payload structures
    d6bee54c45 SecurityPkg: PlatformPKProtectionLib: Added PK protection interface
    56c717aafa SecurityPkg: SecureBootVariableLib: Updated time based payload creator
    6de7c084db SecurityPkg: SecureBootVariableLib: Updated signature list creator
    6eb4079475 SecurityPkg: SecureBootVariableLib: Added newly supported interfaces
    fe73e9cd89 SecurityPkg: SecureBootVariableProvisionLib: Updated implementation
    d2a0f379d5 SecurityPkg: Secure Boot Drivers: Added common header files
    5678ebb42b SecurityPkg: SecureBootConfigDxe: Updated invocation pattern
    dbc4e3675f SecurityPkg: SecureBootVariableLib: Added unit tests
    152e37cc5a OvmfPkg: Pipeline: Resolve SecureBootVariableLib dependency
    f193b945ea EmulatorPkg: Pipeline: Resolve SecureBootVariableLib dependency
    9ab18fec82 StandaloneMmPkg: Fix issue about SpPcpuSharedBufSize field
    31d3eeb103 StandaloneMmPkg: Replace DEBUG_INFO with DEBUG_ERROR
    5496c763aa StandaloneMmPkg: Fix check buffer address failed issue from TF-A
    e93bc6309b UefiCpuPkg/SecCore: Add debug messages to illuminate data flow
    86a0f84470 ArmVirtPkg: Pipeline: Resolving newly introduced dependency
    c8e30482fd .gitignore: Ignore build tools build logs
    f6f3cc7ead UefiPayloadPkg: Add CryptoDxe driver to UefiPayload
    12dd064a18 MdePkg/include: Update DMAR definitions to Intel VT-d spec ver4.0
    9ab389c01b UefiCpuPkg: Update SEC_IDT_TABLE struct
    470206ba7f IntelFsp2Pkg: Update SEC_IDT_TABLE struct
    0d23c447d6 DynamicTablesPkg: Add support to specify FADT minor revision
    07c8e5e59b UefiPayloadPkg/PlatformBootManagerLib: Evenly space boot prompt
    176016387f BaseTools: add '-p' for Linux 'cp' command.
    039bdb4d3e BaseTools: Fix DSC LibraryClass precedence rule
    fc4a132c0e DynamicTables: Fix DT PCI interrupt flags parsing
    792ebb6374 DynamicTablesPkg: Fix generated _HID value for SBSA
    c966204049 IntelFsp2Pkg: Add Definition of EDKII_PEI_VARIABLE_PPI
    586b4a104b Maintainers.txt: Add IntelFsp2*Pkg Maintainer
    e18a5f813c Maintainers.txt: Update Maintainers/reviewers for UefiPayloadPkg
    e21b203911 UefiPayloadPkg: Add macro to support selective driver in UPL
    f0064ac3af Maintainers.txt: Update email address
    6cda306da1 DynamicTablesPkg: AcpiSsdtPcieLibArm: Correct translation value
    9ac155bf0b DynamicTablesPkg: AcpiSsdtPcieLibArm: Support UID > 0xF
    19a8768365 DynamicTablesPkg: AcpiSsdtPcieLibArm: Create support library
    671b0cea51 NetworkPkg/HttpBootDxe: Add Support for HTTP Boot Basic Authentication
    140446cd59 IntelFsp2Pkg: Support 64bit FspResetType for X64 build.
    24eac4caf3 IntelFsp2WrapperPkg: Support 64bit FspResetType for X64 build.
    4824924377 IntelFsp2Pkg/FspSecCore: Add FSP-I API for SMM support.
    3b8cee1781 Maintainers.txt: update Gary's email address
    7ef91af84c EmulatorPkg/PosixFileSystem: Add NULL check on memory allocation
    494f333aba MdeModulePkg/CoreDxe: Allow DXE Drivers to use untested memory
    343f37b5c0 MdeModulePkg/SetupBrowserDxe:Follow spec'd way to reconnect driver
    c8af26627a ArmPkg/CpuDxe: drop ARM_PROCESSOR_TABLE pseudo-ACPI table
    5a3641bfcd IntelFsp2Pkg: Add FSPI_ARCH_UPD.
    bf1ff540d9 MdePkg/UefiDevicePathLib: Add support for PEIMs
    6964b5c48c MdeModulePkg/Include: Long debug string is truncated to 104 char
    d32a84b5ad BaseTools: INF should use latest Pcd value instead of default value
    8ee26529d1 BaseTools/VolInfo: Correct alignment attributes display
    c0b7679aac BaseTools/VolInfo: Increase define for highest section value
    fca5de51e1 BaseTools/VolInfo: Correct EFI_SECTION_VERSION display
    8a5782d704 UefiCpuPkg: Fix nasm warning "signed byte value exceeds"
    a47241f133 UefiPayloadPkg: Add macro to support selection of CryptoDxe driver
    69f76d0f72 Maintainers.txt: Remove OvmfPkg/XenTimerDxe reference
    a8c4fe23c4 Maintainers.txt: Add missing github ids
    7f1c89f167 Maintainers.txt: Remove reviewer Harry Han
    b68d566439 BaseTools/Capsule: Support signtool input subject name to sign capsule file
    e3d468acb9 BaseTools/VolInfo: Show encapsulation sections
    2677286307 UefiPayloadPkg: Fix RelaAddress type always mismatch in if condition
    f26b70cb9f UefiPayloadPkg: Add support for logging to CBMEM console
    57783adfb5 OvmfPkg: Change default to disable MptScsi and PvScsi
    1774a44ad9 Maintainers.txt: Remove MptScsi and PvScsi reviewers
    0e7add1d75 OvmfPkg/XenHypercallLib: Fix naming of AArch64
    3eca64f157 IntelFsp2Pkg: FSPI_UPD is not mandatory.
    0d0bfcb457 IntelFsp2Pkg: Fix GenCfgOpt bug for FSPI_UPD support.
    8a210b9ac0 ShellPkg: Acpiview: Abbreviate field names to preserve alignment
    65c4f3f2be DynamicTablesPkg: Handle error when IdMappingToken is NULL
    f5cea604a6 DynamicTablesPkg: IORT set reference to Id array only if present
    238f903e8d DynamicTablesPkg: IORT set reference to interrupt array if present
    4c55f6394f MdePkg: IORT header update for IORT Rev E.d spec
    cd67efa1b2 ShellPkg: Acpiview: IORT parser update for IORT Rev E.d spec
    de200b7e2c DynamicTablesPkg: Update ArmNameSpaceObjects for IORT Rev E.d
    e9150618ec DynamicTablesPkg: IORT generator updates for Rev E.d spec
    6f4e10d6db SecurityPkg: Add retry mechanism for tpm command
    19cbfaa431 OvmfPkg/QemuVideoDxe: Zero out PixelInformation in QueryMode
    a551de0d93 ArmVirtPkg: Fix KVM Guest Firmware
    0dc9b78a46 Maintainers.txt: Add missing Github IDs for OvmfPkg TPM/TGC modules
    d219119721 UefiPayloadPkg/PlatformBootManagerLib: Correct spacing in boot prompt
    79aab22fca UefiPayloadPkg: Add a Macro to enable Boot Logo
    444260d45e UefiPayloadPkg: Load Boot Logo into ACPI table
    86757f0b47 MdeModulePkg: Add EDKII_PCI_DEVICE_PPI definition
    a8f59e2eb4 MdeModulePkg/AhciPei: Use PCI_DEVICE_PPI to manage AHCI device
    3e599bbc10 DynamicTablesPkg: Fix using RmrNodeCount unitlitialised
    a0a03b5154 BaseTools/GenSec: Fix typo
    f5f8c08db9 BaseTools/VolInfo: Show FV section boundaries
    d241a09afb BaseTools/VolInfo: Parse EFI_SECTION_FREEFORM_SUBTYPE_GUID header
    cf02322c98 BaseTools/GenSec: Support EFI_SECTION_FREEFORM_SUBTYPE_GUID sections
    1ee1622817 Basetools/GenFw: Allow AARCH64 builds to use the --prm flag
    9f197e44b1 PrmPkg: Enable external visibility on PRM symbols
    21200d9fe6 PrmPkg: Build Prm Samples with GCC for AARCH64
    57faeb782a PrmPkg: Support AArch64 builds using GCC
    1da2012d93 PrmPkg: Add details on AArch64 build to the Readme.
    0f7bccf584 UefiCpuPkg: Simplify InitializeSeparateExceptionStacks
    9a24c3546e MdeModulePkg: Move CPU_EXCEPTION_INIT_DATA to UefiCpuPkg
    f1688ec9da UefiCpuPkg: Simplify the struct definition of CPU_EXCEPTION_INIT_DATA
    75e3c2435c UefiCpuPkg: Create CpuPageTableLib for manipulating X86 paging structs
    f336e30ba1 UefiCpuPkg/CpuPageTableLib: Return error on invalid parameters
    bf334513b3 CpuPageTableLib: Fix a bug when a bit is 1 in Attribute, 0 in Mask
    13a0471bfd CpuPageTableLib: Refactor the logic
    9cb8974f06 CpuPageTableLib: Split the page entry when LA is aligned but PA is not
    c16f02f776 CpuPageTableLib: Avoid treating non-leaf entry as leaf one
    f4c845e46b CpuPageTableLib: Fix parent attributes are not inherited properly
    9f53fd4ba7 CpuPageTableLib: Fix a bug to avoid unnecessary changing to page table
    927113c83b CpuPageTableLib: Fix bug that wrongly requires extra size for mapping
    e9e2ecab2d CpuPageTableLib: define IA32_PAGE_LEVEL enum type internally
    e76496530c MdePkg/Library/UefiDevicePathLib: Add back StandaloneMm INF file
    bd06717863 MdeModulePkg: Enhance bus scan for all root bridge instances
    74f44d920a ShellPkg/SmbiosView: Display extended memory info in smbiosview -t 17
    83d5871184 UefiCpuPkg/PiSmmCpuDxeSmm: Add a new mIsShadowStack flag
    7b4754904e UefiCpuPkg/PiSmmCpuDxeSmm: Remove mInternalCr3 in PiSmmCpuDxeSmm
    62391b4ce9 MdeModulePkg/DxeIpl: Remove clearing CR0.WP when protecting pagetable
    803ed060ee UefiPayloadPkg: Remove clearing CR0.WP when protecting pagetable
    a2b61de2f6 IntelFsp2Pkg: FSPM_ARCH2_UPD mismatching bug.
    809b5a3d2a MdeModulePkg: Update the SMBIOS version by UPL
    2812668bfc UefiCpuPkg/CpuPageTableLib/UnitTest: Add host based unit test
    30d62f5e31 OvmfPkg/PlatformDxe: Check ExtractConfig and RouteConfig arguments
    b94836b224 OvmfPkg/VirtioGpuDxe: Check QueryMode arguments
    3f282f4510 OvmfPkg/VirtioFsDxe: Check GetDriverName arguments
    64a20bea97 MdeModulePkg/DumpDynPcd: Remove unsupported format specifiers
    9102518d29 MdePkg: Improved Smbios Type9 table and Smbios spec v3.5.0 Changes
    35d167ef3c ShellPkg: Improved Smbios Type 9 table changes in PrintInfo.c
    68bf712d4f MdePkg: Added support for SMBIOS spec v3.6.0 to Smbios.h
    e2ac68a23b BaseTools/Source/C/GenSec: Fix EFI_SECTION_FREEFORM_SUBTYPE_GUID header
    d5fd86f256 ShellPkg: Adds Local APIC parser to AcpiView
    2bb0020675 UefiPayloadPkg: Return PciRootBridges instead of NULL
    c15c9fa420 UefiPayloadPkg: Add macro to control NvmExpressDxe
    938430741f RedfishPkg/RedfishDiscoverDxe: USB Redfish host interface is not supported
    eebef1b3b7 RedfishPkg: Redfish modules may need to use the functions which are private
    f2bf043aaa RedfishPkg: Redfish functions for REST requests are not fully spec complied
    dfdba857a6 UefiPayloadPkg: Fix Coverity report defect
    4d83ee04f4 ShellPkg: Add revision check for DSDT Header on Arm
    0ede7cad73 Maintainers.txt: Update maintainers list
    722e03bc2e Revert "UefiCpuPkg/CpuPageTableLib/UnitTest: Add host based unit test"
    166c49c212 Revert "ShellPkg: Adds Local APIC parser to AcpiView"
    39ff9769ca Revert "BaseTools: Fix DSC LibraryClass precedence rule"
    ba0e0e4c6a BaseTools: Fix DevicePath GNUmakefile for macOS
    - Respin the following patches:
      ovmf-Revert-UefiCpuPkg-Replace-Opcode-with-the-correspond.patch
* Mon Sep 19 2022 jlee@suse.com
  - Add patches to disable option ROM on sev (bsc#1199156)
      ovmf-bsc1199156-OvmfPkg-IncompatiblePciDeviceSupportDxe-Ignore-Optio.patch
* Mon Sep 12 2022 jlee@suse.com
  - Modified ovmf.changes log, using PED-1410 instead of PED-1359 for
    pushing to SLE15-SP5.
* Tue Sep 06 2022 jlee@suse.com
  - Because 5 revert patches in edk2-stable202205 for nasm-2.14 is against
    15-SP4/Leap 15.4 and earlier version. So add suse_version and sle_version
    checking logic in ovmf.spec when applying revert patches. (jsc#PED-1410)
* Tue Aug 23 2022 jlee@suse.com
  - Removed patches in ovmf-bsc1196879-sev-fix.patch which are merged to
    edk2-stable202205:
    - OvmfPkg/AmdSev: reserve snp pages
    - de463163d9	edk2-stable202205-rc1~292
    - OvmfPkg/ResetVector: cache the SEV status MSR value
    - 63c50d3ff2	edk2-stable202205-rc1~291
    - OvmfPkg/BaseMemEncryptLib: use the SEV_STATUS MSR
    - f1d1c337e7	edk2-stable202205-rc1~290
* Tue Aug 16 2022 jlee@suse.com
  - Update to edk2-stable202205
    - Features (https://github.com/tianocore/edk2/releases):
    Support PEI 64bit in IntelFsp2Pkg and IntelFsp2WrapperPkg
    IntelFsp2Pkg: BaseFspCommonLib Support for X64 Build
    Add PrmPkg
    BaseTools Enhance GenFw to support PRM GCC build
    Enable Intel TDX in OvmfPkg
    Generate CloudHv target as PVH ELF binary
    Add parallel hash feature into BaseCryptLib
    Configure/Enable elliptic curve ciphers in OpenSSL
    Add FMMT tool into edk2 BaseTools
    Dynamic variable flash information cannot be passed in Standalone MM
    - Patches (git log --oneline --reverse edk2-stable202202~..edk2-stable202205):
    b24306f15d NetworkPkg: Fix incorrect unicode string of the AKM/Cipher Suite
    2dbed52506 ArmVirtPkg/ArmVirtMemoryInitPeiLib: avoid redundant cache invalidation
    54cddc3ad4 ArmVirtPkg/ArmVirtKvmTool: wire up configurable timeout
    de463163d9 OvmfPkg/AmdSev: reserve snp pages
    63c50d3ff2 OvmfPkg/ResetVector: cache the SEV status MSR value in workarea
    f1d1c337e7 OvmfPkg/BaseMemEncryptLib: use the SEV_STATUS MSR value from workarea
    b1b89f9009 MdeModulePkg: Correct high-memory use in NvmExpressDxe
    84338c0d49 MdeModulePkg: Replace Opcode with the corresponding instructions.
    d3febfd9ad MdePkg: Replace Opcode with the corresponding instructions.
    7bc8b1d9f4 SourceLevelDebugPkg: Replace Opcode with the corresponding instructions.
    2aa107c0aa UefiCpuPkg: Replace Opcode with the corresponding instructions.
    bbaa00dd01 MdePkg: Remove the macro definitions regarding Opcode.
    6a890db161 BaseTools: Upgrade the version of NASM tool
    497ac7b6d7 UefiPayloadPkg/PayloadLoaderPeim: Use INT64 as input parameter
    dc39554d58 edk2/MdeModulePkg/Debuglib: Add Standalone MM support
    906242343f MdeModulePkg/GraphicsConsoleDxe: Check status to make sure no error
    b422b0fcf9 EmulatorPkg/EmuGopDxe: Set ModeInfo after Open successfully
    589d51df26 MdeModulePkg/Usb/Keyboard.c: Don't request protocol before setting
    b909b4ad09 OvmfPkg: Make the Xen ELF header generator more flexible
    0a707eb258 OvmfPkg: Xen: Use a new fdf include for the PVH ELF header
    0015a4e0a8 OvmfPkg: Xen: Generate fdf include file from ELF header generator
    9ac8c85d50 OvmfPkg: CloudHv: Remove VARS and CODE sections
    e1c7f9b4e5 OvmfPkg: Generate CloudHv as a PVH ELF binary
    d50d9e5549 OvmfPkg: CloudHv: Retrieve RSDP address from PVH
    82bfd2e86d OvmfPkg: CloudHv: Rely on PVH memmap instead of CMOS
    b83d0a6438 OvmfPkg: CloudHv: Add README
    4a68176cb5 UefiCpuPkg: Extend SMM CPU Service with rendezvous support.
    949b8a3d97 Maintainers.txt: Add new reviewer for UefiPayloadPkg
    091b6a1197 UefiPayloadPkg: Add build option for Above 4G Memory
    4adc364c75 UefiPayloadPkg: Fix case of protocol
    79f2734e5a MdeModulePkg: Add a check for metadata size in NvmExpress Driver
    af74efe494 UefiPayloadPkg: Make Boot Manager Key configurable
    62fa37fe7b BlSupportSmm: fix definition of SetSmrr()
    56530dec11 .pytool/Plugin/UncrustifyCheck: Output file diffs by default
    2aac8bb7ef .pytool: Update to newest pytools
    c63ef58698 .azurepipelines: Updated python version
    f06941cc46 MdeModulePkg: Add bRefClkFreq card attribute programming support
    2b175eeb6a RedfishPkg: fix memory leak issue
    10b4c8f3b7 Maintainers: Update Maintainers.txt for edk2 Redfish modules
    0fdd466c75 UefiCpuPkg/MpInitLib:remove optional in declaration
    52e09dcd7a UefiCpuPkg: Support FFS3 GUID in SearchForBfvBase.asm
    a13dfc769b MdeModulePkg/DxeIpl: Create 5-level page table for long mode
    c8ea48bdf9 DynamicTablesPkg: Fix serial port namespace path in DBG2
    414cd2a4d5 BaseTools/GenFw: Enhance GenFw to support PRM GCC build
    33438f7354 EmulatorPkg/RedfishPlatformCredentialLib: Check EFI_SECURE_BOOT_MODE_NAME
    5b56c52b5c EmulatorPkg/RedfishPlatformCredentialLib: Don't stop Redfish service
    0531f61376 IntelFsp2Pkg: BaseFspDebugLibSerialPort Support for X64
    411b3ff6dd IntelFsp2Pkg: BaseFspSwitchStackLib Support for X64
    b429959bb6 MdeModulePkg/SdMmcPciHcDxe: Make timeout for SD card configurable
    79a705fbaf UefiPayloadPkg: Hookup SD/MMC timeout
    28eeb08d86 MdePkg/Include: Smbios Specification 3.5.0 changes
    c1e662101a CryptoPkg: Add new hash algorithm ParallelHash256HashAll in BaseCryptLib.
    267a92fef3 MdePkg/AcpiXX.h: Update Error Severity type for Generic Error Status Block
    ec0b54849b IntelFsp2Pkg: BaseFspCommonLib Support for X64
    5d8d8b5148 MdeModulePkg/NvmExpressDxe: fix check for Cap.Css
    69218d5d28 MdeModulePkg/NvmExpressPei: fix check for NVM command set
    bf9230a9f3 BaseTools: Add the FeatureFlagExpression usage to the Source Section
    3115377bf0 BaseTools: Remove the redundant __FLEXIBLE_SIZE from PcdValueInit.c
    4a2e1000a1 CryptoPkg: update openssl submodule to 1.1.1n
    355515a06a CryptoPkg? Redefinition bug in CrtLibSupport.h.
    7b005f344e BaseTools: fix gcc12 warning
    85021f8cf2 BaseTools: fix gcc12 warning
    22130dcd98 Basetools: turn off gcc12 warning
    ec30a4a0c3 BaseTools:Support decimal version number in ECC check
    3ef2071927 UefiCpuPkg: Update BFV searching algorithm in VTF0
    691b178667 ShellPkg/AcpiView: Adds ACPI_PARSER bitfield parser
    40004ff9d5 ShellPkg/AcpiView: PrintFormatter for FADT Flags field
    7456990e8e MdeModulePkg/Ufs: bRefClkFreq attribute be programmed after fDeviceInit
    237c966396 UefiPayloadPkg/UefiPayloadPkg.ci.yaml: Remove duplicated entry
    76191052fd UefiPayloadPkg: Fix build error
    449eb01a8d UefiPayloadPkg: Fix architecture in the build instruction
    c248802e40 UefiPayloadPkg: Fix PciHostBridgeLib
    2b4b8013fe UefiPayloadPkg/Library/PlatformBootManagerLib: Remove broken VGA detection
    55637a2894 UefiPayloadPkg: Make Boot Timeout configurable
    2268920afc .azurepipelines: Use Python 3.8
    c3ca70669e .azurepipelines: Use windows-2019 VM image
    3b0de44759 EmulatorPkg: Use windows-2019 VM image
    75628d27c0 OvmfPkg: Use windows-2019 VM image
    b328bb54c6 BaseTools/Bin: Update GCC ARM compiler version
    3f0c788a5f MdePkg: Add Tdx.h
    77228269e7 MdePkg: Update Cpuid.h for Tdx
    818bc9596d MdePkg: Introduce basic Tdx functions in BaseLib
    c3001cb744 MdePkg: Add TdxLib to wrap Tdx operations
    eddcba40b5 UefiCpuPkg: Extend VmgExitLibNull to handle #VE exception
    daf8f642f3 OvmfPkg: Extend VmgExitLib to handle #VE exception
    de327f7d8a UefiCpuPkg/CpuExceptionHandler: Add base support for the #VE exception
    ab9d790901 MdePkg: Add helper functions for Tdx guest in BaseIoLibIntrinsic
    b6b2de8848 MdePkg: Support mmio for Tdx guest in BaseIoLibIntrinsic
    d74e932681 MdePkg: Support IoFifo for Tdx guest in BaseIoLibIntrinsic
    3571fc906f MdePkg: Support IoRead/IoWrite for Tdx guest in BaseIoLibIntrinsic
    7bed7ae6c5 UefiCpuPkg: Support TDX in BaseXApicX2ApicLib
    d983b102b3 MdePkg: Add macro to check SEV / TDX guest
    88da06ca76 UefiCpuPkg: Enable Tdx support in MpInitLib
    352eabdcd5 OvmfPkg: Add IntelTdx.h in OvmfPkg/Include/IndustryStandard
    6a608255bb OvmfPkg: Add TdxMailboxLib
    57bcfc3b06 OvmfPkg: Create initial version of PlatformInitLib
    102cafedad OvmfPkg/PlatformInitLib: Add hob functions
    9a9b33b3d6 OvmfPkg/PlatformPei: Move global variables to PlatformInfoHob
    5a2574a82e OvmfPkg/PlatformPei: Refactor MiscInitialization
    6d2ce5fd5c OvmfPkg/PlatformPei: Refactor MiscInitialization for CloudHV
    3dd47f9544 OvmfPkg/PlatformPei: Refactor AddressWidthInitialization
    432e4acd87 OvmfPkg/PlatformPei: Refactor MaxCpuCountInitialization
    f3801cf26c OvmfPkg/PlatformPei: Refactor QemuUc32BaseInitialization
    e510326245 OvmfPkg/PlatformPei: Refactor InitializeRamRegions
    12e860a1e8 OvmfPkg/PlatformPei: Refactor MemMapInitialization
    cec82a64cf OvmfPkg/PlatformPei: Refactor NoexecDxeInitialization
    f53f449f15 OvmfPkg/PlatformPei: Refactor MiscInitialization
    10460942ff OvmfPkg/PlatformInitLib: Create MemDetect.c
    96047b6663 OvmfPkg/PlatformInitLib: Move functions to Platform.c
    b22ac35b75 OvmfPkg: Update PlatformInitLib to process Tdx hoblist
    ccca1c2d5d OvmfPkg/Sec: Declare local variable as volatile in SecCoreStartupWithStack
    2b80269d98 OvmfPkg: Update Sec to support Tdx
    6b27c11690 OvmfPkg: Check Tdx in QemuFwCfgPei to avoid DMA operation
    bec9104201 MdeModulePkg: Skip setting IA32_ERER.NXE if it has already been set
    fd306d1dbc MdeModulePkg: Add PcdTdxSharedBitMask
    cc3620f304 UefiCpuPkg: Update AddressEncMask in CpuPageTable
    e23f8f52fd OvmfPkg: Update PlatformInitLib for Tdx guest
    cf17156d7d OvmfPkg: Update PlatformPei to support Tdx guest
    9fdc70af6b OvmfPkg: Update AcpiPlatformDxe to alter MADT table
    5aa8018639 OvmfPkg/BaseMemEncryptTdxLib: Add TDX helper library
    fae5c1464d OvmfPkg: Add TdxDxe driver
    07c721fea7 OvmfPkg/QemuFwCfgLib: Support Tdx in QemuFwCfgDxe
    2520182122 OvmfPkg: Update IoMmuDxe to support TDX
    c2e7be4055 OvmfPkg: Rename XenTimerDxe to LocalApicTimerDxe
    299c44cd4f UefiCpuPkg: Setting initial-count register as the last step
    c37cbc030d OvmfPkg: Switch timer in build time for OvmfPkg
    580a6b616b OvmfPkg: Add TdxWorkArea definition
    75942a52ae OvmfPkg: Add PrePiHobListPointerLibTdx
    4fe2678411 OvmfPkg: Add PeilessStartupLib
    1f29de4d20 OvmfPkg/IntelTdx: Add Sec to bring up both Legacy and Tdx guest
    55fda68a80 OvmfPkg: Update TdxDxe to set TDX PCDs
    f674fa9cde OvmfPkg: Update DxeAcpiTimerLib to read HostBridgeDevId in PlatformInfoHob
    149ed8e421 OvmfPkg/IncompatiblePciDeviceSupportDxe: Refine the configuration
    c477b2783f OvmfPkg/IncompatiblePciDeviceSupportDxe: Ignore OptionRom in Td guest
    cb8349f01a MdeModulePkg: Update PciEnumeratorSupport to ignore OptionRom if needed
    44a53a3bdd OvmfPkg: Introduce IntelTdxX64 for TDVF Config-B
    7fda517c3d OvmfPkg: Add dependency of VariableSmm driver to make it work normally.
    b953265a27 UefiPayloadPkg: Add a new DebugPrintErrorLevelLib instance
    0023e35cf4 UefiPayloadPkg: Change some configuration of the payload
    3e130e40fc UefiPayloadPkg: Consume the new added DebugPrintErrorLevelLib instance
    f16b05a13b .pytool/Plugin/UncrustifyCheck: Update func to return absolute paths
    dbfbaedb21 .pytool/Plugin/UncrustifyCheck: Add ignore file support
    d932199d39 OvmfPkg: Revert Uncrustify formatting in VbeShim.h files
    ad6816c319 OvmfPkg: Do not check VbeShim.h formatting with Uncrustify
    d2998af211 PrmPkg: Add package and include headers
    5f76c3e471 PrmPkg: Add PrmConfig protocol interface
    e189e01af2 PrmPkg/PrmContextBufferLib: Add initial library instance
    3f7af17c6b PrmPkg/PrmConfigDxe: Add initial driver
    9276e0d2b9 PrmPkg: Add initial PrmSamplePrintModule
    c63905aba7 PrmPkg: Add initial PrmSampleMemoryAllocationModule
    27b1a840e4 PrmPkg: Add initial PrmSampleHardwareAccessModule
    7c41ec47ca PrmPkg: Add initial PrmSampleContextBufferModule
    97ab54c1b1 PrmPkg: Add initial package DSC file
    d2cb6e67a4 Readme.md: Add initial content
    e846797662 PrmPkg: Add ALLOCATE_CONTEXT_BUFFER_IN_FW build option
    a6f8946bc9 PrmPkg: Enable variable growth for the PRM_MODULE_EXPORT macro
    ef05955996 PrmPkg: Publish PRM operation region to support PRM ACPI _DSM invocation
    f96517f4d0 PrmPkg: Export major/minor version in PRM module PE COFF header
    50e1432a40 PrmPkg: Add initial PrmSsdtInstallDxe module
    a409f4b67d PrmPkg: Remove PRM Module Update Lock
    0797989c5d PrmPkg: Remove ALLOCATE_CONTEXT_BUFFER_IN_FW build flag
    0b469caff6 PrmPkg/PrmContextBuffer.h: Add ACPI parameter support structures
    be2c927d7c PrmPkg/PrmLoaderDxe: Add ACPI parameter buffer support
    c1a7a50f67 PrmPkg/PrmSampleContextBufferModule: Remove OS debug print requirement
    4c8486fd72 PrmPkg/PrmSampleHardwareAccessModule: Add non-print PRM handlers
    7217263514 PrmPkg/SampleAcpiParameterBufferModule: Add initial module
    fec018624c PrmPkg/HardwareAccessModuleConfigLib: Add initial library
    d10b8dc5d8 PrmPkg/Samples/Readme.md: Add initial file
    6b7dde7cdd PrmPkg: Refactor some PrmLoaderDxe functionality into libraries
    4348c72ad0 PrmPkg/Application/PrmInfo: Add initial application
    e10c776487 PrmPkg: Enforce stricter types
    2e55b0cd9e PrmPkg/Test/PrmPkgHostTest.dsc: Add initial file
    3599f5479d PrmPkg/Test/UnitTest/Library: Add initial UEFI Boot Services test lib
    82d15dc6c1 PrmPkg/Library/DxePrmContextBufferLib: Add host-based unit tests
    68ee42c991 PrmPkg/DxePrmModuleDiscoveryLib: Add initial host-based unit tests
    c040831cf9 PrmPkg: Add PlatformGuid
    a9302b89a9 PrmPkg: Update PRM OpRegion
    f8e68587e2 Readme.md: Add iASL note and QEMU sample link
    4a4aeaa446 PrmPkg: Replace PcdPrmPlatformGuid with EDKII_DSC_PLATFORM_GUID
    17b2d64ced PrmPkg/Samples: Remove PrmSampleMemoryAllocationModule
    050b2ba27d PrmPkg/Samples: Remove PrmSamplePrintModule
    88f3d734f5 PrmPkg: Remove the concept of OS services
    deea4e58b0 Readme.md: Add a link to PRM Specification
    f3c11224b5 PrmPkg: Changes for edk2 repo transition
    a298a84478 PrmPkg: Apply uncrustify changes
    94f905b3bf MdeModulePkg/HiiDatabase: Fix Setup numeric default value incorrect issue
    b8c5ba2337 BaseTools: efi_debugging.py: Add debugger agnostic dbg Python Classes
    0d7fec9f79 BaseTools: Scripts/efi_gdb.py: Add gdb EFI commands and pretty Print
    4f4afcd288 BaseTools: Scripts/efi_lldb.py: Add lldb EFI commands and pretty Print
    bfefdc2c49 UefiPayloadPkg: Fix PciHostBridgeLib
    676084303d UefiPayloadPkg: Support IA32 Build
    63e155f24d UefiPayloadPkg: Add dependency of VariableSmm driver.
    dab96cf02e UefiPayloadPkg: Add --quiet argument to Universal Payload build script
    35a4b63247 NetworkPkg: Add PCDs for HTTP DNS RetryCount and RetryInterval
    38a9afd0fb NetworkPkg/HttpDxe: Decofigure Tcp4 before reconfiguring
    3974aa539e NetworkPkg/HttpDxe: Decofigure Tcp6 before reconfiguring
    c43ff5188d NetworkPkg/HttpDxe: Add ConnectionClose flag fo HTTP_PROTOCOL
    753fd319e2 NetworkPkg/HttpDxe: Detect 'Connection: close' header
    12a50c9ce1 NetworkPkg/HttpDxe: Detect HTTP/1.0 servers
    5576b17363 BaseTools: Fix DevicePath tool build failure issue
    4352d115c4 CryptoPkg/CrtLibSupport: add fcntl.h
    3b4b49cf00 CryptoPkg/CrtLibSupport: add strstr()
    58771f4b2d CryptoPkg/CrtLibSupport: add INT_MIN
    2759e42fbc CryptoPkg/CrtLibSupport: add UINT_MAX
    fd5f347c84 CryptoPkg/CrtLibSupport: add MODULESDIR
    03951e5645 CryptoPkg/CrtLibSupport: add off_t
    fab6285a73 CryptoPkg/CrtLibSupport: fix strcpy
    f5508a91e3 CryptoPkg/UnitTest: fix DH testcase
    c411566fad pip-requirements.txt: Update basetools version to 0.1.17
    8a5727c7a8 Maintainers.txt: Add Michael Kubacki as UnitTestFrameworkPkg maintainer
    1a49e2aa3c CryptoPkg: Add instrinsics to support building ECC on IA32 windows
    efc39e65e5 CryptoPkg: Reconfigure OpensslLib to add EC algorithms
    0c901fcc20 CryptoPkg: Make EC source file config-able
    f3da13461c CryptoPkg/TlsLibNull: Remove MU_CHANGE comment markers
    4cfb28f12a UefiPayloadPkg: Fix the build failure
    9bf7291d63 ShellPkg: Update smbiosview type 41 with SMBIOS 3.5 fields
    630df8c86e IntelFsp2Pkg: X64 compatible changes to support PEI in 64bit
    6f219bef55 IntelFsp2Pkg: Add FSPx_ARCH2_UPD support for X64
    d40965b987 IntelFsp2Pkg: Update FSP_GLOBAL_DATA and FSP_PLAT_DATA for X64
    00aa71ce20 IntelFsp2Pkg: FspSecCore support for X64
    6bec5a66ea IntelFsp2Pkg: SecFspSecPlatformLibNull support for X64
    4a6ed7e46a IntelFsp2WrapperPkg: Adopt FSPM_UPD_COMMON_FSP24 for X64
    86a2f3c439 IntelFsp2WrapperPkg: BaseFspWrapperApiLib support for X64
    91a03f78ba IntelFsp2WrapperPkg: SecFspWrapperPlatformSecLibSample support for X64
    3d97733f44 MdePkg: Add CC_GUEST_TYPE in ConfidentialComputingGuestAttr.h
    d020ac55b6 OvmfPkg: Replace GUEST_TYPE with CC_GUEST_TYPE
    74a3eb975d MdePkg: Add CcProbeLibNull
    2f44d77c68 OvmfPkg: Add CcProbeLib
    2a7e1e890d OvmfPkg: Add CcProbeLib in *.dsc
    7012cb73c4 MdePkg: Probe Cc guest in BaseIoLibIntrinsicSev
    76fda1def3 OvmfPkg: Call CcProbe in SecMain.c instead of TsIsEnabled
    532bd4ec38 CryptoPkg/Crt: fix strcpy build on older VS compilers
    6d2baf9dfb PrmPkg/DxePrmContextBufferLib: Fix unit test GCC compilation errors
    892787fed5 OvmfPkg/OvmfPkgX64: Adjust load sequence of TdxDxe and AmdSevDxe driver
    b06a007b64 CryptoPkg: Declare PcdEcEnabled in Library consuming OpensslLib
    fdfbf1fdab MdePkg: Update smbiosview type 9 with SMBIOS 3.5 fields
    a85ae8d964 ShellPkg: Update smbiosview type 9 with SMBIOS 3.5 fields
    2306555bf9 UefiPayloadPkg: Fix IA32 entry build failure
    f4dfec6ca1 BaseTools: Move gPlatformFinalPcd to Datapipe and optimize size
    ee582858c4 .azurepipelines: Add NOOPT to all package builds
    2d9d605714 .pytool/Plugin/UncrustifyCheck: Add Azure DevOps UI debug instructions
    b807174fec MdeModulePkg/GraphicsConsoleDxe: add modes
    5a17629902 OvmfPkg: clear PcdConOut{Row,Column}
    96e1d337e0 ArmVirtPkg: clear PcdConOut{Row,Column}
    483d3bb716 ShellPkg: Update smbiosview type 0 with SMBIOS 3.5 fields
    ecc79b092e OvmfPkg/VirtioGpuDxe: add VirtioGpuSendCommandWithReply
    182122914c OvmfPkg/VirtioGpuDxe: add GetDisplayInfo to virtio-gpu spec header.
    82c07f2cc7 OvmfPkg/VirtioGpuDxe: add VirtioGpuGetDisplayInfo
    5f6ecaa398 OvmfPkg/VirtioGpuDxe: use GopQueryMode in GopSetMode
    86de090b99 OvmfPkg/VirtioGpuDxe: move code to GopInitialize
    916f90baa5 OvmfPkg/VirtioGpuDxe: query native display resolution from host
    d372ab585a BaseTools/Conf: Fix Dynamic-Library-File template
    cabd96ad03 OvmfPkg: restore CompatImageLoaderDxe chunk
    4092f1d397 OvmfPkg/Bhyve: add support for QemuFwCfg
    daa6cd8763 ArmPlatformPkg: Fix error message in Scripts/Ds5/edk2_debugger.py
    5299568ce6 ArmPlatformPkg: Fix target initialisation in cmd_load_symbols.py
    101f4c7892 ArmPlatformPkg: Fix EDK2_DSC check in Scripts/Makefile
    a64b944942 BaseTools: Add FMMT Python Tool
    826527c9db UefiPayloadPkg: Add definition for PayloadCommandLine HOB
    d4eef3fe7c MdePkg: Add CpuLib to module INFs that depend on UefiCpuLib.
    a63b086e69 IntelFsp2Pkg: Add CpuLib to module INFs that depend on UefiCpuLib
    3afa0a2096 IntelFsp2WrapperPkg: Add CpuLib to module INFs that depend on UefiCpuLib.
    1783b099d3 OvmfPkg: Add CpuLib to module INFs that depend on UefiCpuLib.
    86d41c077e UefiCpuPkg: Add CpuLib to module INFs that depend on UefiCpuLib.
    2434f6f206 UefiPayloadPkg: Add CpuLib to module INFs that depend on UefiCpuLib.
    247a0fc65e OvmfPkg: Add README for TDVF
    8079d4dc4f MdePkg: add SmmCpuRendezvousLib.h and SmmCpuRendezvousLibNull implement.
    1a6c837638 UefiPayloadPkg: Fix the UPL build failure
    29ae55a0b8 PcAtChipsetPkg: Change the flow of PcRtcInit()
    a658ed30e5 MdeModulePkg/PCD: Pcd initialize DXE have assert
    0e31124877 .pytool: Fix python command error in self introduction doc
    43613b2fe8 CryptoPkg: Rename PCD about openssl EC configuration
    f753c36209 CryptoPkg: Separate auto-generated openssl config and edk2 openssl config
    499b0d5fa5 CryptoPkg: Update process_files.pl to automatically add PCD config option
    a332ffb6ef CryptoPkg/openssl: update generated files
    9dd964f5e5 CryptoPkg/openssl: disable codestyle checks for generated files
    b5cd30a79b UefiCpuPkg: Revert "UefiCpuPkg: Enable Tdx support in MpInitLib"
    ad629b5c5a OvmfPkg: Add MpInitLibDepLib related PPI/Protocol definitions
    2f06e5af47 OvmfPkg: Add MpInitLibDepLib
    b63a49e056 OvmfPkg/Sec: Install MpInitLibDepLib PPIs in SecMain.c
    73d6d41de0 OvmfPkg/TdxDxe: Install MpInitLibDepLib protocols
    deee7a100b OvmfPkg: Enable 2 different CpuMpPei and CpuDxe drivers
    17702186b5 MdeModulePkg: PiSmmCore: Inspect memory guarded with pool headers
    d0efa681b6 UefiPayloadPkg: Simplify code logic
    57ebb2994d UefiPayloadPkg: Add Serial IO device path according to related protocol
    ef01d63ef3 UefiPayloadPkg: Connect all root bridge in PlatformBootManagerBeforeConsole
    35d9b7ea2d ArmPkg: Remove RVCT support
    b55b6d33e4 ArmPlatformPkg: Remove RVCT support
    e9eeb0ad2b CryptoPkg: Remove RVCT support
    48b919cb14 MdePkg: Remove RVCT support
    5621d81edf FatPkg: Remove RVCT support
    cc070e9e0c NetworkPkg: Remove RVCT support
    a744199470 ArmVirtPkg: Remove RVCT support
    b7a446f224 EmbeddedPkg: Remove RVCT support
    57c84113a1 OvmfPkg: Remove RVCT support
    708620d29d BaseTools: Remove RVCT support
    2d1138a1a8 .azurepipelines: Fix cspell version to v5.20.0
    7b126978e1 .pytool/plugin/SpellCheck: Allow compound words
    2189c71026 .pytool/plugin/SpellCheck: Add more common words
    0903042b66 MdeModulePkg: Add Variable Flash Info HOB
    60b519456c MdeModulePkg/VariableFlashInfoLib: Add initial library
    4dbebc2d10 MdeModulePkg/Variable: Consume Variable Flash Info
    8db39c60cd MdeModulePkg/FaultTolerantWrite: Consume Variable Flash Info
    524a15c1fa ArmVirtPkg/ArmVirt.dsc.inc: Add VariableFlashInfoLib
    a69eac7578 EmulatorPkg: Add VariableFlashInfoLib
    a7d3d4e7c4 OvmfPkg: Add VariableFlashInfoLib
    1f026ababf UefiPayloadPkg: Add VariableFlashInfoLib
    a72d552f19 OvmfPkg/OvmfPkgX64: Use different CcProbeLib when SMM is on or off
    a21a3438f7 OvmfPkg: Make an Ia32/X64 hybrid build work with SEV
    9c733f0b90 OvmfPkg: TdxDxe: Fix AsmRelocateApMailBoxLoop
    07c0c2eb0a OvmfPkg: fix PcdFSBClock
    16779ede2d Removed prefix to match AsmRelocateApMailBoxLoopStart
    - Removed patches in ovmf-bsc1196879-sev-fix.patch which are merged to mainline:
    - OvmfPkg/AmdSev: reserve snp pages
    - de463163d9	edk2-stable202205-rc1~292
    - OvmfPkg/ResetVector: cache the SEV status MSR value
    - 63c50d3ff2	edk2-stable202205-rc1~291
    - OvmfPkg/BaseMemEncryptLib: use the SEV_STATUS MSR
    - f1d1c337e7	edk2-stable202205-rc1~290
  - Add the following patches for building edk2-stable202205 with nasm-2.14 on
    SLE15-SP3/SP4 and Leap 15.3/15.4. Those patches add marco back because
    nasm-2.14 doesn't support corresponding instructions. (jsc#PED-1410)
    - ovmf-Revert-MdePkg-Remove-the-macro-definitions-regarding.patch
      ovmf-Revert-UefiCpuPkg-Replace-Opcode-with-the-correspond.patch
      ovmf-Revert-SourceLevelDebugPkg-Replace-Opcode-with-the-c.patch
      ovmf-Revert-MdePkg-Replace-Opcode-with-the-corresponding-.patch
      ovmf-Revert-MdeModulePkg-Replace-Opcode-with-the-correspo.patch
    - Then reverted 5 patches in 84338c0d49~..bbaa00dd01
      MdeModulePkg: Replace Opcode with the corresponding
      MdePkg: Replace Opcode with the corresponding
      SourceLevelDebugPkg: Replace Opcode with the
      UefiCpuPkg: Replace Opcode with the corresponding
      MdePkg: Remove the macro definitions regarding Opcode.
  - Change the size of ovmf-x86_64 to 4MB, otherwise OBS exposes the following error:
      [  266s] GenFv: ERROR 3000: Invalid
      [  266s]   the required fv image size 0x1afed8 exceeds the set fv image size 0x1ac000
    - [ovmf-x86_64]="-p OvmfPkg/OvmfPkgX64.dsc -D FD_SIZE_4MB"
* Tue Jun 21 2022 jslaby@suse.cz
  - add ovmf-tools_def-add-fno-omit-frame-pointer-to-GCC48_-IA32-.patch.
    It fixes crashes when linked using gcc 12 (bsc#1199597).
* Mon May 02 2022 jlee@suse.com
  - Respin amd-sev and amd-sev-es features
    After more testing, we found that not all descriptors can support
    both amd-sev with amd-sev-es. So we removed all amd-sev and amd-sev-es
    feature tags but only keep them in ovmf-x86_64-2m.json and
    60-ovmf-x86_64.json. (bsc#1198246#c75)
* Sat Mar 26 2022 mliska@suse.cz
  - Add GCC 12 workaround (ovmf-ignore-spurious-GCC-12-warning.patch)
    that handles: https://bugzilla.tianocore.org/show_bug.cgi?id=3816
    The same patch is already included in qemu package.
* Tue Mar 15 2022 fvogt@suse.com
  - TPM_ENABLE got renamed to TPM2_ENABLE and TPM_CONFIG_ENABLE removed
    (except on ARM for some reason) (boo#1197104)
* Thu Mar 10 2022 jlee@suse.com
  - Update to edk2-stable202202
    - Features (https://github.com/tianocore/edk2/releases):
    OvmfPkg Add new target for Cloud Hypervisor
    Add TDVF to OvmfPkg
    Add new APIs to UefiCpuPkg/UefiCpuLib
    Add AMD Secure Nested Paging Support
    Add SSDT PCI generator in DynamicTablesPkg
    Support ACPI 6.4 PPTT changes
    Add FdtHwInfoParser library
    Add DynamicPlatRepo library
    Make package and platform builds reproducible across source format changes
    Add Uncrustify CI Plugin
    Apply uncrustify changes to all package C and H files
    - Patches (git log --oneline --reverse edk2-stable202111~..edk2-stable202202):
    bb1bba3d77 NetworkPkg: Fix invalid pointer for DNS response token on error
    ef9a059cdb EmulatorPkg/Win/Host: Update CC_FLAGS
    69877614fd .pytool/Plugin/EccCheck: Remove RevertCode()
    854462bd34 .pytool/Plugin/EccCheck: Remove temp directory on exception
    3019f1bbab .pytool/Plugin/EccCheck: Add performance optimizations
    99f84ff473 .pytools/Plugin/LicenseCheck: Use temp directory for git diff output
    76a1ce4d5f .azurepipelines/templates: Update max pipeline job time to 2 hours
    365dced2c3 ArmPkg: Update YAML to ignore specific ECC files/errors
    1939fc9569 ArmPlatformPkg: Update YAML to ignore specific ECC files/errors
    c97fee87f0 ArmVirtPkg: Update YAML to ignore specific ECC files/errors
    d5744ecba8 CryptoPkg: Update YAML to ignore specific ECC files/errors
    d7d30e8f21 EmulatorPkg: Update YAML to ignore specific ECC files/errors
    9deb937076 MdeModulePkg: Update YAML to ignore specific ECC files/errors
    df790cd6b3 MdePkg: Update YAML to ignore specific ECC files/errors
    60fa40be45 SecurityPkg: Update YAML to ignore specific ECC files/errors
    9944508e85 ShellPkg: Update YAML to ignore specific ECC files/errors
    c30c40d6c6 StandaloneMmPkg: Update YAML to ignore specific ECC files/errors
    c057347977 UefiPayloadPkg: Update YAML to ignore specific ECC files/errors
    f0f3f5aae7 UnitTestFrameworkPkg: Update YAML to ignore specific ECC files/errors
    dfafa8e453 MdeModulePkg/DxeCorePerformanceLib:Variable Initial
    a4a582e180 ArmPkg: Change use of EFI_D_* to DEBUG_*
    1d2482e1e3 ArmPlatformPkg: Change use of EFI_D_* to DEBUG_*
    c5b3a56e4f ArmVirtPkg: Change use of EFI_D_* to DEBUG_*
    a1878955b2 EmbeddedPkg: Change use of EFI_D_* to DEBUG_*
    9c7da8d804 EmulatorPkg: Change use of EFI_D_* to DEBUG_*
    917e98f3e5 FatPkg: Change use of EFI_D_* to DEBUG_*
    87000d7708 MdeModulePkg: Change use of EFI_D_* to DEBUG_*
    5f289f3ae3 MdePkg: Change use of EFI_D_* to DEBUG_*
    c49ca4a29e NetworkPkg: Change use of EFI_D_* to DEBUG_*
    47719926e8 OvmfPkg: Change use of EFI_D_* to DEBUG_*
    ca56749b0e PcAtChipsetPkg: Change use of EFI_D_* to DEBUG_*
    e905fbb05a SecurityPkg: Change use of EFI_D_* to DEBUG_*
    4a1aee13d8 ShellPkg: Change use of EFI_D_* to DEBUG_*
    586fda4800 SourceLevelDebugPkg: Change use of EFI_D_* to DEBUG_*
    96e1cba5c1 UefiCpuPkg: Change use of EFI_D_* to DEBUG_*
    1871d28eaf ArmPkg: Change OPTIONAL keyword usage style
    2863ba97ca ArmPlatformPkg: Change OPTIONAL keyword usage style
    9607597a74 ArmVirtPkg: Change OPTIONAL keyword usage style
    c8f46130f8 CryptoPkg: Change OPTIONAL keyword usage style
    fe2d81892f DynamicTablesPkg: Change OPTIONAL keyword usage style
    792433088c EmbeddedPkg: Change OPTIONAL keyword usage style
    c69fc80c80 EmulatorPkg: Change OPTIONAL keyword usage style
    9c721071d3 FmpDevicePkg: Change OPTIONAL keyword usage style
    e3917e22e7 MdeModulePkg: Change OPTIONAL keyword usage style
    d0e2f8232a MdePkg: Change OPTIONAL keyword usage style
    8874fa199d NetworkPkg: Change OPTIONAL keyword usage style
    79d49e162e OvmfPkg: Change OPTIONAL keyword usage style
    237295f46d PcAtChipsetPkg: Change OPTIONAL keyword usage style
    dc8fe5ec95 RedfishPkg: Change OPTIONAL keyword usage style
    12710fe93b SecurityPkg: Change OPTIONAL keyword usage style
    9b8507cabe ShellPkg: Change OPTIONAL keyword usage style
    18908e6131 SignedCapsulePkg: Change OPTIONAL keyword usage style
    f9c9215b55 SourceLevelDebugPkg: Change OPTIONAL keyword usage style
    902e76de19 StandaloneMmPkg: Change OPTIONAL keyword usage style
    4ec586b9f6 UefiCpuPkg: Change OPTIONAL keyword usage style
    e35dd32821 UefiPayloadPkg: Change OPTIONAL keyword usage style
    78bc3bdd2a UnitTestFrameworkPkg: Change OPTIONAL keyword usage style
    ea85f0fe13 ArmVirtPkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
    e3b855f283 CryptoPkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
    4a9d411662 DynamicTablesPkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
    db52c7f755 MdeModulePkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
    098307e082 MdePkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
    ed7f7c9168 NetworkPkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
    8e875037bf OvmfPkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
    deba54761a PcAtChipsetPkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
    f9f4fb2329 SecurityPkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
    7c2a6033c1 UefiCpuPkg: Change complex DEBUG_CODE() to DEBUG_CODE_BEGIN/END()
    429309e0c6 ArmPkg: Apply uncrustify changes
    40b0b23ed3 ArmPlatformPkg: Apply uncrustify changes
    2b16a4fb91 ArmVirtPkg: Apply uncrustify changes
    7c34237831 CryptoPkg: Apply uncrustify changes
    731c67e1d7 DynamicTablesPkg: Apply uncrustify changes
    e7108d0e96 EmbeddedPkg: Apply uncrustify changes
    a550d468a6 EmulatorPkg: Apply uncrustify changes
    bcdcc4160d FatPkg: Apply uncrustify changes
    45ce0a67bb FmpDevicePkg: Apply uncrustify changes
    111f2228dd IntelFsp2Pkg: Apply uncrustify changes
    7c7184e201 IntelFsp2WrapperPkg: Apply uncrustify changes
    1436aea4d5 MdeModulePkg: Apply uncrustify changes
    2f88bd3a12 MdePkg: Apply uncrustify changes
    d1050b9dff NetworkPkg: Apply uncrustify changes
    ac0a286f4d OvmfPkg: Apply uncrustify changes
    5220bd211d PcAtChipsetPkg: Apply uncrustify changes
    39de741e2d RedfishPkg: Apply uncrustify changes
    c411b485b6 SecurityPkg: Apply uncrustify changes
    47d20b54f9 ShellPkg: Apply uncrustify changes
    b878648967 SignedCapsulePkg: Apply uncrustify changes
    c1e126b119 SourceLevelDebugPkg: Apply uncrustify changes
    91415a36ae StandaloneMmPkg: Apply uncrustify changes
    053e878bfb UefiCpuPkg: Apply uncrustify changes
    e5efcf8be8 UefiPayloadPkg: Apply uncrustify changes
    7c0ad2c338 UnitTestFrameworkPkg: Apply uncrustify changes
    dc453b5164 .pytool/Plugin/UncrustifyCheck: Add Uncrustify CI plugin
    1832eb15aa UefiPayloadPkg/UefiPayloadPkg.fdf: Update DXE Apriori list
    ca78281c25 UefiPayloadPkg/PayloadEntry: Inherit 4/5-level paging from bootloader
    b2f7ee2ded UefiPayloadPkg: Increase SystemMemoryUefiRegionSize from 32M to 64M
    94e0a7bddb UefiPayloadPkg: Add missing Guid gUefiAcpiBoardInfoGuid
    2527723de9 UefiPayloadPkg: Add performance measurement feature
    ffdde9d719 UefiPayloadPkg: Skip ModuleInfo HOB in Payload
    965292135b UefiPayloadPkg/UefiPayloadPkg.dsc:Add BootManagerLib for BootManagerMenuApp
    85a678bf76 UefiPayloadPkg: Add integration instruction for coreboot common error
    7b28310008 BaseTools: Increase the DevicePath length for support more PCD value.
    d25b803e51 MdeModulePkg/Bus/Pci/UhciDxe: Fix the UsbHc memory allocate and free issue
    c82ab4d8c1 BaseTools/VfrCompile: Correct Bit Field Flags for numeric/one of
    2ddacfb6b8 OvmfPkg/SecMain: move SEV specific routines in AmdSev.c
    e2289d19d8 UefiCpuPkg/MpInitLib: move SEV specific routines in AmdSev.c
    2fe8edfe55 OvmfPkg/ResetVector: move clearing GHCB in SecMain
    3053183d41 OvmfPkg/ResetVector: introduce SEV metadata descriptor for VMM use
    707c71a01b OvmfPkg: reserve SNP secrets page
    cca9cd3dd6 OvmfPkg: reserve CPUID page
    f2dc28f0b6 OvmfPkg/ResetVector: pre-validate the data pages used in SEC phase
    34819f2cac OvmfPkg/ResetVector: use SEV-SNP-validated CPUID values
    d9822304ce OvmfPkg/MemEncryptSevLib: add MemEncryptSevSnpEnabled()
    7c3b2892ea OvmfPkg/SecMain: register GHCB gpa for the SEV-SNP guest
    d2b998fbdc OvmfPkg/VmgExitLib: use SEV-SNP-validated CPUID values
    a19b648952 OvmfPkg/PlatformPei: register GHCB gpa for the SEV-SNP guest
    19914edc5a OvmfPkg/AmdSevDxe: do not use extended PCI config space
    ade62c18f4 OvmfPkg/MemEncryptSevLib: add support to validate system RAM
    d706f8fec2 OvmfPkg/MemEncryptSevLib: add function to check the VMPL0
    11b15336f0 OvmfPkg/BaseMemEncryptSevLib: skip the pre-validated system RAM
    d39f8d88ec OvmfPkg/MemEncryptSevLib: add support to validate > 4GB memory in PEI phase
    202fb22be6 OvmfPkg/SecMain: validate the memory used for decompressing Fv
    8eb79b5f4f OvmfPkg/PlatformPei: validate the system RAM when SNP is active
    26210f9436 MdePkg: Define ConfidentialComputingGuestAttr
    504ae26b80 OvmfPkg/PlatformPei: set PcdConfidentialComputingAttr when SEV is active
    b95908e043 UefiCpuPkg/MpInitLib: use PcdConfidentialComputingAttr to check SEV status
    f4e3ce5f53 UefiCpuPkg: add PcdGhcbHypervisorFeatures
    f5a6e1bab5 OvmfPkg/PlatformPei: set the Hypervisor Features PCD
    2c354252be MdePkg/GHCB: increase the GHCB protocol max version
    9c703bc0f1 UefiCpuPkg/MpLib: add support to register GHCB GPA when SEV-SNP is enabled
    d4d7c9ad5f UefiCpuPkg/MpInitLib: use BSP to do extended topology check
    b928eb44d5 OvmfPkg/MemEncryptSevLib: change the page state in the RMP table
    b7b8872031 OvmfPkg/MemEncryptSevLib: skip page state change for Mmio address
    ea3a12d970 OvmfPkg/PlatformPei: mark cpuid and secrets memory reserved in EFI map
    67484aed69 OvmfPkg/AmdSev: expose the SNP reserved pages through configuration table
    06544455d0 UefiCpuPkg/MpInitLib: Use SEV-SNP AP Creation NAE event to launch APs
    0f1d7477c0 OvmfPkg: Remove unused print service driver (PrintDxe)
    30631f0a26 MdePkg: Add missing Cache ID (in)valid define
    0077c22f6d MdePkg: Remove PPTT ID type structure
    a50b65ce22 ShellPkg: Update Acpiview PPTT parser to ACPI 6.4
    8cf2bdfcfb ShellPkg: Add Cache ID to PPTT parser
    b2bbe3df54 DynamicTablesPkg: Remove PPTT ID structure from ACPI 6.4 generator
    e139829dd6 DynamicTablesPkg: Update PPTT generator to ACPI 6.4
    e81a81e584 DynamicTablesPkg: Add CacheId to PPTT generator
    9afcd48a94 OvmfPkg: Handle Cloud Hypervisor host bridge
    2ccefa32a6 OvmfPkg: Create global entry point for SMBIOS parsing
    d8ef774346 OvmfPkg: Retrieve SMBIOS from Cloud Hypervisor
    66bce05f6d OvmfPkg: Generalize AcpiPlatformDxe
    7594c5bfe2 OvmfPkg: Install ACPI tables for Cloud Hypervisor
    f6df289a1c OvmfPkg/OvmfXen: Fix Xen build
    2b20a34fd5 OvmfPkg-EmuVariableFvbRuntimeDxe: Support Access To Memory Above 4G
    d5efc875ef MdePkg: Introduce CcMeasurementProtocol for CC Guest firmware
    a124cd4ef9 SecurityPkg: Support CcMeasurementProtocol in DxeTpm2MeasureBootLib
    8c06c53b58 SecurityPkg: Support CcMeasurementProtocol in DxeTpmMeasurementLib
    adf070ff56 OvmfPkg/Microvm: add PcdConfidentialComputingGuestAttr
    2686468c43 OvmfPkg/Bhyve: add MemEncryptSevLib
    61be49e0f7 OvmfPkg/PlatformCI: factor out PlatformBuildLib.py
    21ee379407 OvmfPkg/PlatformCI: add QEMU_SKIP
    64bccda534 OvmfPkg/PlatformCI: add BhyveBuild.py
    04eacd3943 OvmfPkg/PlatformCI: add MicrovmBuild.py
    8b8ae609a7 OvmfPkg/PlatformCI: add AmdSevBuild.py
    2722856a87 OvmfPkg/PlatformCI: dummy grub.efi for AmdSev
    1203eba58e OvmfPkg/PlatformCI: add XenBuild.py
    64ef0dd1d3 OvmfPkg/Microvm/fdt: add device tree support
    79dcaf7054 OvmfPkg/Microvm/fdt: load fdt from fw_cfg
    c802f8935c OvmfPkg/Microvm/fdt: add empty fdt
    2a68abf6ee OvmfPkg/Microvm/virtio: add virtio-mmio support
    e07d27e24d OvmfPkg/Microvm: add README
    7f1861be2b DynamicTablesPkg: AML Code generation for memory ranges
    0e7147fe75 DynamicTablesPkg: AML Code generation to create a named Package()
    fd5fc4bbb7 DynamicTablesPkg: AML Code generation to create a named ResourceTemplate()
    b2b8def4e3 DynamicTablesPkg: AML Code generation to add _PRT entries
    69ddfee1c3 DynamicTablesPkg: Add AmlAttachNode()
    ce306e48eb DynamicTablesPkg: Add Pci related objects
    e35a746cf5 DynamicTablesPkg: SSDT Pci express generator
    ec37fd9c1f DynamicTablesPkg: Fix multiple objects parsing
    557dede8a6 OvmfPkg/PlatformPei: ScanOrAdd64BitE820Ram improvements
    759e3c6d21 OvmfPkg/PlatformPei: prefer etc/e820 for memory detection
    41d8bb3038 OvmfPkg/PlatformPei: stop using cmos for memory detection
    7a6e6ae933 EmulatorPkg: Update lldbefi.py to work with current lldb which uses python3
    4d30352445 ArmPkg: Add SMC helper functions
    c039fa7ff0 ArmPkg: Update SMC calls to use the new ArmCallSmc0/1/2/3 functions
    90ad4b3b34 DynamicTablesPkg: Definition for HwInfoParser interface
    d59c5a20f8 DynamicTablesPkg: FdtHwInfoParser: CM Object descriptor helper
    5d8b5d171c DynamicTablesPkg: FdtHwInfoParser: Add FDT utility functions
    8d2691c3d5 DynamicTablesPkg: FdtHwInfoParser: Add Boot Arch parser
    3ebe1ff5c9 DynamicTablesPkg: FdtHwInfoParser: Generic Timer Parser
    51941f7558 DynamicTablesPkg: FdtHwInfoParser: Add Serial port parser
    e366a41ef0 DynamicTablesPkg: FdtHwInfoParser: Add GICC parser
    0fa1217726 DynamicTablesPkg: FdtHwInfoParser: Add GICD parser
    b04cf355a0 DynamicTablesPkg: FdtHwInfoParser: Add MSI Frame parser
    d250d408cf DynamicTablesPkg: FdtHwInfoParser: Add ITS parser
    7b6c8b30a5 DynamicTablesPkg: FdtHwInfoParser: Add GICR parser
    26bf034a59 DynamicTablesPkg: FdtHwInfoParser: Add GIC dispatcher
    c67bf628c8 DynamicTablesPkg: FdtHwInfoParser: Add PCI config parser
    deb01dfd7f DynamicTablesPkg: Add FdtHwInfoParser library
    9006967c8d DynamicTablesPkg: Handle 16550_WITH_GAS id
    b2d0ed20fd DynamicTablesPkg: Definition for DynamicPlatRepoLib interface
    2e2db65e39 DynamicTablesPkg: DynamicPlatRepo: Add TokenGenerator
    740e3bb634 DynamicTablesPkg: DynamicPlatRepo: Add TokenFixer
    5fe5b6f94f DynamicTablesPkg: DynamicPlatRepo: Add TokenMapper
    38f6d78c3b DynamicTablesPkg: Add DynamicPlatRepo library
    f14fff5135 StandaloneMmPkg/FvLib: Support large file with EFI_FFS_FILE_HEADER2.
    3a72ec71cd OvmfPkg: remove unused TPM options from MicrovmX64.dsc
    b47575801e OvmfPkg: move tcg configuration to dsc and fdf include files
    5711ff4d0b OvmfPkg: drop TPM_CONFIG_ENABLE
    b819388772 OvmfPkg: create Tcg12ConfigPei.inf
    4de8d61bce OvmfPkg: rework TPM configuration
    e6ea1464a8 OvmfPkg/PlatformPei: Revert "stop using cmos for memory detection"
    a6c0418651 ArmPkg/SmbiosMiscDxe: Remove duplicate HII string definition
    45e3842970 ArmPkg/SmbiosMiscDxe: Get full SMBIOS strings from OemMiscLib
    b451c69088 ArmPkg/ProcessorSubClassDxe: Get serial and part number from OemMiscLib
    8ed8568922 SecurityPkg: Debug code to audit BIOS TPM extend operations
    195f011973 SecurityPkg: Reallocate TPM Active PCRs based on platform support
    ab5ab2f603 SecurityPkg: TPM must go to Idle state on CRB command completion
    c63a10ecb7 EmbeddedPkg/AcpiLib: Add more helper functions
    f129b1f06f OvmfPkg/Bhyve: fix tls-enabled build
    ee1f8262b8 OvmfPkg: Call PlatformInitializeConsole for GPU passthrough case
    de9e5b7dc7 IntelFsp2WrapperPkg : FSPM/S UPD data address based on Build Type
    9ec2cc1f31 IntelFsp2WrapperPkg : Remove EFIAPI from local functions.
    ae8272ef78 MdeModulePkg/UsbBusDxe: fix NOOPT build error
    15c596aeeb OvmfPkg: Bhyve: Delete unused AcpiTables/Ssdt.asl file
    6612ff8561 UefiCpuPkg: Extend measurement of microcode patches to TPM
    e910f076ad BaseTools: Fix the bug of --cmd-len build option
    7935be0fbd IntelFsp2Pkg/FspSecCore: ExtendedImageRevision was not printed.
    c095122d4b MdeModulePkg/PciBusDxe: Enumerator to check for RCiEP before looking for RP
    d463c56ddd MdeModulePkg: Replace with UFS_UNIT_DESC to fix timeout problem
    45920941d9 MdeModulePkg: Refactoring UFS DME request and fix timing problem
    13d9e8ec98 MdeModulePkg: Put off UFS HCS.DP checking to fix timing problem
    079a58276b OvmfPkg/AmdSev/SecretPei: Mark SEV launch secret area as reserved
    9dd14fc91c MdePkg: Add registers of boot partition feature
    14a731096d UnitTestFrameworkPkg: CI YAML: Grant cmockery spell check exception
    6062002bd5 MdeModulePkg/PartitionDxe: Add break to handle invalid LBA0 in MBR
    7438a85bf1 BaseTools: Fix wrong variable header size
    c712ce2bb1 OvmfPkg/CloudHv: Add new target for Cloud Hypervisor
    a2da72b2ca OvmfPkg/CloudHv: Replace legacy 8254 PIT with local APIC timer
    6ecdda71fe OvmfPkg/CloudHv: Connect serial console
    1552050ce7 OvmfPkg/CloudHv: Remove legacy 8259 PIC support
    fdcea7ff6f OvmfPkg/CloudHv: Remove Q35 specifics
    71082d3d1b OvmfPkg/CloudHv: Reduce dependency on QemuFwCfg
    196be601f9 OvmfPkg/CloudHv: Remove video support
    7b6cbe0a81 OvmfPkg/CloudHv: Remove USB support
    e73d1bf96a OvmfPkg/CloudHv: Remove CSM support
    b66056ef21 OvmfPkg/CloudHv: add Maintainers.txt entry
    5302bd81d9 OvmfPkg: Add CloudHvX64 to the CI
    59c48c9314 UefiPayloadPkg: Change the user interface name of the Uiapp
    5801910013 UefiPayloadPkg: Not use BaseCpuTimerLib by default.
    772c5bb8dc FmpDevicePkg/FmpDxe: Update FmpDeviceCheckImageWithStatus() handling
    7709988dd8 RedfishPkg/RedfishRestExDxe:Simplify status check
    21320ef669 MdeModulePkg/Variable: Make only EFI_VARIABLE_NON_VOLATILE invalid
    7e5c603cba MdeModulePkg/SdMmcPciHcDxe: Robust improvements for SD card 1.8V switch
    ee67067f17 MdeModulePkg: VariableSmmRuntimeDxe: Fix Variable Policy Message Length
    5b39832e18 MdePkg: MmCommunication2: Update MM communicate2 function description
    ce37f45955 ArmPkg: MmCommunicationDxe: MM communicate function argument attributes
    541a077bd1 ArmPkg: MmCommunicationDxe: Update MM communicate `CommBuffer**` checks
    1aa1ec4574 ArmPkg: MmCommunicationDxe: Update MM communicate `CommSize` check
    8cc5590eab ArmPkg: MmCommunicationDxe: Update MM communicate `MessageLength` check
    6777e67383 EmbeddedPkg: Fix a build error in FwVol.c in X64 arch
    a867f3a704 UefiPayloadPkg: Use BaseCpuTimerLib for Universal Payload by default
    f4b7b473b4 MdeModulePkg/UefiBootManagerLib: Convert BmLoadOption to Variable Policy
    76b3d45b75 ShellPkg: Add the missing VariablePolicyHelperLib in ShellPkg.dsc
    8542fc5f95 NetworkPkg: Add the missing VariablePolicyHelperLib in NetworkPkg.dsc
    ae35314e7b Maintainers.txt: Add Sami Mujawar as reviewer for ArmPkg
    862ea6e836 OvmfPkg: change qemu default resolution to 1280x800
    e95b44c90e ArmVirtPkg: change qemu default resolution to 1280x800
    929804b172 OvmfPkg: add PcdVideoResolutionSource
    7f25ddbc03 OvmfPkg/QemuVideoDxe: simplify InitializeBochsGraphicsMode
    336da55ca8 OvmfPkg/QemuVideoDxe: drop QEMU_VIDEO_BOCHS_MODES->ColorDepth
    55c05427b9 OvmfPkg/QemuVideoDxe: factor out QemuVideoBochsAddMode
    49a2d8cbf5 OvmfPkg/QemuVideoDxe: parse edid blob, detect display resolution
    ba79becd55 OvmfPkg/BaseCachingPciExpressLib: Migrate BaseCachingPciExpressLib
    103fa647d1 ArmPkg: Replace CoreId and ClusterId with Mpidr in ARM_CORE_INFO struct
    742dafd2cc DynamicTablesPkg: Print specifier macro for CM_OBJECT_ID
    13136cc311 DynamicTablesPkg: FdtHwInfoParserLib: Parse Pmu info
    5751d60821 DynamicTablesPkg: AmlLib: AmlAddPrtEntry() to handle GSI
    5816bd3eab DynamicTablesPkg: AcpiSsdtPcieLibArm: Remove link device generation
    dc1118fa0d ArmVirtPkg: Add cspell exceptions
    0dbd356983 ArmVirtPkg/Kvmtool: Add DSDT ACPI table
    312ef7a0a4 ArmVirtPkg/Kvmtool: Add Configuration Manager
    17a02163bd ArmVirtPkg/Kvmtool: Enable ACPI support
    5b3c682d91 ArmVirtPkg/Kvmtool: Enable Acpiview
    017564d637 ArmPkg/ArmMmuLib AARCH64: avoid EL0 accessible mappings
    45b1612659 DynamicTablesPkg: Add Memory32Fixed function
    007a95055b DynamicTablesPkg: Remove redundant cast in AmlCodeGenReturn
    33189f0527 DynamicTablesPkg: Add AmlCodeGenMethodRetInteger function
    a4b7aa362d MdeModulePkg/Bus/Pci/PciBusDxe: Support platform PCI ROM override
    6fb09da89f ShellPkg: Fix incorrect PPTT FlagName dereference
    c09dbc92e9 BaseTools/Conf: Add new macro for customizing dll file reduction.
    d4ac53aa91 BaseTools: Fix error leg in DscBuildData.py
    f78b937c95 MdeModulePkg/RuntimeDxe: clear mVirtualMapMaxIndex
    96b8b5fd10 MdeModulePkg/UiApp: Fix spelling of 'FRONTPAGE'
    bd676f080a Maintainers.txt: add missing github IDs to OvmfPkf/Fdt reviewers
    1f54eaa725 Maintainers.txt: update email for Leif Lindholm
    b360b0b589 Maintainers.txt: Update email address
    c9b7c6e0cc BaseTools: Update CLANG{35,38}_WARNING_OVERRIDES to ignore unused vars
    42af706dfb BaseTools: Update brotli submodule
    1193aa2dfb MdeModulePkg: update brotli submodule
    85589ddbf6 OvmfPkg/VmgExitLib: Fix uninitialized variable warning with XCODE5
    c28e376edc OvmfPkg/FvbServicesSmm: use the VmgExitLibNull
    8a57673316 ShellPkg: Fix Ping GetTimerPeriod API failure
    b24306f15d NetworkPkg: Fix incorrect unicode string of the AKM/Cipher Suite
  - Add amd-sev-es to the following descriptors because James Fehlig
    tested them (bsc#1196879):
      60-ovmf-x86_64.json
      60-ovmf-x86_64-2m.json
      60-ovmf-x86_64-ms.json
      60-ovmf-x86_64-2m-ms.json
  - Backported patches in ovmf-bsc1196879-sev-fix.patch for fixing SEV:
      de463163d9 OvmfPkg/AmdSev: reserve snp pages
    63c50d3ff2 OvmfPkg/ResetVector: cache the SEV status MSR value in workarea
    f1d1c337e7 OvmfPkg/BaseMemEncryptLib: use the SEV_STATUS MSR value from workarea
* Thu Feb 17 2022 bwiedemann@suse.com
  - Sort file lists for reproducible build results
* Mon Jan 03 2022 jlee@suse.com
  - Modified gdb_uefi.py.in for python3 (bsc#1192126)
    - change 'long' to 'int'
    - using
      print ('
      instead of
      print "
* Thu Dec 23 2021 jlee@suse.com
  - Removed useless patch files because they are merged to edk2-stable202111
    - ovmf-OvmfPkg-OvmfXen-Fix-build-with-QemuKernelLoaderFsDxe.patch
    - ovmf-OvmfPkg-OvmfXen-add-QemuKernelLoaderFsDxe.patch
    - ovmf-OvmfPkg-OvmfXen-set-PcdAcpiS3Enable-at-initializatio.patch
  - Updated URL to the edk2 repo on github
  - Use downloaded edk2-edk2-stable%{version}.tar.gz instead of the URL
    for Source0 because the edk2-edk2-stable202111 tarball is broken
    in tianocore repo which can not pass the "osc service runall download_files"
    testing.
    - We ill change it back to the following setting when upstream fixed tarball:
    Source0:        https://github.com/tianocore/edk2/releases/download/edk2-stable%{version}/edk2-edk2-stable%{version}.tar.gz
* Tue Dec 21 2021 jlee@suse.com
  - Update to edk2-stable202111
    - Features (https://github.com/tianocore/edk2/releases):
    Add SSDT CPU topology generator
    Support ACPI 6.4 in GTDT parser and generator
    Support ACPI 6.4 in DynamicTables FADT parser
    Support ACPI 6.4 in Acpiview PCCT parser
    Support ACPI 6.4 in Acpiview HMAT parser
    Add support for the microvm machine type (qemu)
    OVMF/ArmVirt: add support for virtio-mmio 1.0
    IntelFsp2Pkg: adopt FSP 2.3 specification
    UefiCpuPkg VTF0 X64: Build page tables using Linear-Address Translation to a 1-GByte Page
    Enable wildcard host name matching in HTTPS/TLS implementation
    Add QuickSort function into BaseLib
    Add SMM NV variable support in universal UEFI payload
    Add TDVF to OvmfPkg
    Make package and platform builds reproducible across source format changes
    - Patches (git log --oneline --reverse edk2-stable202108~..edk2-stable202111):
    7b4a99be8a CryptoPkg: BaseCryptLib fix incorrect param order
    82f7e315d6 MdeModulePkg/PeiCore: Remove MigrateSecModulesInFv()
    8b15024dc7 Maintainers: Add kraxel as Reviewer to ArmVirtPkg and OvmfPkg
    80e67af9af OvmfPkg: introduce a common work area
    ab77b6031b OvmfPkg/ResetVector: update SEV support to use new work area format
    b9af5037b2 OvmfPkg/ResetVector: move the GHCB page setup in AmdSev.asm
    a82bad9730 ArmPkg/GicV3Dxe: Don't signal EOI on arbitrary interrupts
    94e465e5cb OvmfPkg/Virtio10: Add virtio-mmio 1.0 defines
    08293e43da OvmfPkg/VirtioMmioDeviceLib: Add virtio 1.0 detection.
    212a2b9bb8 OvmfPkg/VirtioMmioDeviceLib: virtio 1.0: Fix SetPageSize.
    537a724421 OvmfPkg/VirtioMmioDeviceLib: virtio 1.0: Fix SetQueueAddress
    6a3e9576b8 OvmfPkg/VirtioMmioDeviceLib: virtio 1.0: Add default QueueNum
    ae12188cf8 OvmfPkg/VirtioMmioDeviceLib: virtio 1.0: Adapt feature bit handling
    77d5fa8024 OvmfPkg/VirtioMmioDeviceLib: enable virtio 1.0
    b04453d36b MdeModulePkg/EbcDxe: Mitigate memcpy intrinsics
    dc995ce906 MdeModulePkg: Add BootDiscoveryPolicyOld variable.
    443300be46 MdePkg:Update IndustryStandard/Nvme.h with Nvme amdin controller data
    0f11537548 MdeModulePkg:Increase Nvme capacity display
    cae735f613 ArmPkg: Enable boot discovery policy for ARM package.
    cb0d24637d OvmfPkg/OvmfXen: set PcdAcpiS3Enable at initialization
    28152333bc OvmfPkg/LockBoxLib: use PcdAcpiS3Enable to detect S3 support
    52e2dabc0f OvmfPkg/PlatformBootManagerLib: use PcdAcpiS3Enable to detect S3 support
    5b5f10d746 OvmfPkg/SmmControl2Dxe: use PcdAcpiS3Enable to detect S3 support
    9f3eda177a OvmfPkg/OvmfXen: add QemuKernelLoaderFsDxe
    f0fe55bca4 UefiPayloadPkg: Fix the build error when enable Core ci for UefiPayloadPkg
    5d34cc49d5 UefiCpuPkg/PiSmmCpuDxeSmm: Update mPatchCetSupported set condition
    cdda3f74a1 UefiPayloadPkg/UefiPayloadEntry: Fix memory corruption
    3b3f882288 MdeModulePkg/PiSmmCore: Drop deprecated image profiling commands
    b170806518 UefiCpuPkg: Clean up save state boundary checks and comments.
    12e33dca4c IntelFsp2Pkg: Support Config File and Binary delta comparison
    63fddc98e0 UefiPayloadPkg: Create .yaml file in UefiPayloadPkg
    e3ee8c8dbd .azurepipelines: Add UefiPayloadPkg in gate-build-job.yml and CISetting.py
    b6bc203375 MdeModulePkg/HiiDatabaseDxe:remove dead code block
    c5e805ffe1 MdeModulePkg: Fix typo of "memory" in RamDiskDxe debug message
    81d71fb86e Maintainers.txt: Update maintainer/reviewer roles in MdeModulePkg
    edf8bc6d24 SecurityPkg/MemoryOverwriteControl: Add missing argument to DEBUG print
    4473834e7d OvmfPkg/OvmfXen: Fix build with QemuKernelLoaderFsDxe
    a7cf2c5664 RedfishPkg: Fix various typos
    851785ea67 UefiPayloadPkg: Include more modules in UefiPayloadPkg.
    d248516b3a UefiPayloadPkg: Include Network modules in UefiPayloadPkg.
    6c7d6d4a5e UefiCpuPkg: ResetVector Tool Support for Python 3
    cf7c650592 UefiCpuPkg: ResetVector Tool additional debug prints
    d96df7e993 UefiPayloadPkg: Fix the bug in dump guid HOB info functions
    dcd3d63f4f UefiPayloadPkg: Dump hob info from gEdkiiBootManagerMenuFileGuid
    610d8073f2 SecurityPkg/TPM: Import PeiDxeTpmPlatformHierarchyLib.c from edk2-platforms
    4d5f39cd22 SecurityPkg/TPM: Fix bugs in imported PeiDxeTpmPlatformHierarchyLib
    ebbc8ab2cd SecrutiyPkg/Tcg: Import Tcg2PlatformDxe from edk2-platforms
    2906e572c6 SecurityPkg/Tcg: Make Tcg2PlatformDxe buildable and fix style issues
    f108178c56 SecurityPkg: Introduce new PCD PcdRandomizePlatformHierarchy
    a4867dea2a SecurityPkg/Tcg: Import Tcg2PlatformPei from edk2-platforms
    2fa89c8e11 SecurityPkg/Tcg: Make Tcg2PlatformPei buildable and fix style issues
    3b69fcf5f8 SecurityPkg: Add references to header and inf files to SecurityPkg
    6c80564b89 MdeModulePkg/Core/Pei: Fix typo in function descriptions
    6f501a7c9b MdeModulePkg/Core/Pei: Make migrated PEIM message verbose
    c19d18136e MdeModulePkg/Core/Pei: Fix pointer size mismatch in EvacuateTempRam()
    f4e72cf9d6 UefiPayloadPkg: Add script to build UniversalPayload in UefiPayloadPkg
    bda3546c55 UefiPayloadPkg: Fix the warning when building UefiPayloadPkg with IA32+X64
    010753b7e7 UefiCpuPkg: Refactor initialization of CPU features during S3 resume
    89f7ed8b29 UefiCpuPkg: Prevent from re-initializing CPU features during S3 resume
    60d8bb9f28 UefiCpuPkg: VTF0 Linear-Address Translation to a 1-GByte Page till 512GB
    ac6388add4 ArmPkg/ProcessorSubClassDxe: Fix the format of ProcessorId
    e3e47d7963 UefiCpuPkg: SecCoreNative without ResetVector
    542cba73d2 SecurityPkg: Add debug log for indicating IBB verified OBB successfully
    f334c5a41d IntelFsp2WrapperPkg: Make PcdFspModeSelection dynamic
    79019c7a42 OvmfPkg: set a default value for the WorkAreaHeader PCD
    fdeff3fdae EmbeddedPkg: Remove duplicate libfdt.h include
    f2a7e24e38 EmbeddedPkg: AndroidBootImgBoot error handling updates
    c0cd26f43c EmbeddedPkg: Install FDT if UpdateDtb is not present
    7ea7f9c077 EmbeddedPkg: Add LoadFile2 for linux initrd
    d60915b751 UefiPayloadPkg: Add Macro to enable or disable some drivers.
    46b4606ba2 MdeModulePkg/PciBusDxe: Improve the flow of testing support attributes
    f57040b038 MdeModulePkg/BootManagerMenuApp: Limit string drawing within one line
    b0f1b1c5fd MdePkg: Fix DEVICE_SECURITY_EVENT_DATA_HEADER version definition
    cc5a67269e UefiPayloadPkg: Build a HOB from bootloader ACPI table
    dc430ccf3f UefiPayloadPkg: Use dummy constructor for PlatformHookLib
    4a1899dd79 UefiPayloadPkg: Add ".upld_info" in universal payload
    2ea0a0a414 BaseTools: Switch to downloading the ARM compiler from Arm's site
    1ce6ceb75b BaseTools: Switch to downloading the AARCH64 compiler from Arm's site
    c214128a38 BaseTools/GenMake: Use ToolDefinition as fallback option
    259c184c8f BaseTools/build: Set MakefileName
    445c39f757 BaseTools: Remove Makefile/MakefileName fields
    c7d5b046d9 BaseTools: Remove hard-coded strings for target and tools_def
    442e46d3b6 UefiPayloadPkg: Update maximum logic processor to 256
    499c4608b1 OvmfPkg/TPM PPI: Connect default consoles for user interaction
    b8675deaa8 OvmfPkg: Handle TPM 2 physical presence opcodes much earlier
    8ab8fbc016 OvmfPkg: Reference new Tcg2PlatformDxe in the build system for compilation
    bd298d7593 OvmfPkg: Reference new Tcg2PlatformPei in the build system
    f86de75862 MdePkg: MmCommunication: Added definition of MM Communication PPI
    8b4bb94f64 MdePkg: CI YAML: Added new GUID to ignore duplicate list
    9e950cda6a MdeModulePkg: CI YAML: Added new GUID to ignore duplicate list
    2273799677 SecurityPkg: Fix SecureBootDefaultKeysDxe failed to start
    422e5d2f7f UefiPayloadPkg: Remove asm code and sharing libraries
    0875443f7e DynamicTablesPkg: Extract AcpiHelperLib from TableHelperLib
    20775950c6 DynamicTablesPkg: Update TableHelperLib.inf
    1ad5182500 DynamicTablesPkg: Rename single char input parameter
    653113412f DynamicTablesPkg: Add HexFromAscii() to AcpiHelperLib
    72ab552554 DynamicTablesPkg: Add AmlGetEisaIdFromString() to AcpiHelperLib
    96e006b37e DynamicTablesPkg: Add Configuration Manager Object parser
    235ff9fcd1 DynamicTablesPkg: Use %a formatter in AmlDbgPrint
    7a8c037e9e DynamicTablesPkg: Update DynamicTablesPkg.ci.yaml
    691c5f7762 DynamicTablesPkg: Deprecate Crs specific methods in AmlLib
    22873f58c4 DynamicTablesPkg: Rework AmlResourceDataCodegen.c/h
    4cc1458dbe IntelFsp2Pkg: Adopt FSP 2.3 specification.
    c49cb8f30e ArmPkg: SmbiosMiscDxe: Don't populate ExtendedBiosSize when size < 16MB
    282122ec5f ArmVirtPkg/TPM: Add a NULL implementation of TpmPlatformHierarchyLib
    b3685956d2 ArmVirtPkg: Reference new TPM classes in the build system for compilation
    c806b76865 ArmVirtPkg: Disable the TPM2 platform hierarchy
    606340fba3 OvmfPkg/Microvm: copy OvmfPkgX64 files as-is
    4932f05a00 OvmfPkg/Microvm: rename output files, fix includes
    2a49c19b9e OvmfPkg/Microvm: no smm
    60d55c4156 OvmfPkg/Microvm: no secure boot
    0569c52b15 OvmfPkg/Microvm: no tpm
    06fa1f1931 OvmfPkg/Microvm: no sev
    6073bf6cd8 OvmfPkg/Microvm: no csm
    b9dd64b80e OvmfPkg/Microvm: no emulated scsi
    27de86ae41 OvmfPkg/Microvm: use MdePkg/Library/SecPeiDxeTimerLibCpu
    76602f45dc OvmfPkg/Microvm: use XenTimerDxe (lapic timer)
    6a8e9ad24b OvmfPkg/Microvm: PlatformPei/MemDetect tweaks
    8583b57c5c OvmfPkg/Microvm: PlatformPei/Platform memory map tweaks
    bf02d73e74 OvmfPkg/Microvm: PlatformPei/Platform: add id.
    1d3e89f349 OvmfPkg/ResetSystemLib: add driver for microvm
    2c467c9be2 OvmfPkg/Microvm: BdsPlatform: PciAcpiInitialization tweak.
    8456785986 OvmfPkg/Microvm: use PciHostBridgeLibNull
    55f47d2299 OvmfPkg/Microvm: wire up serial console, drop super-io
    862e814de4 OvmfPkg/Microvm: add Maintainers.txt entry
    06a326caf1 DynamicTablesPkg: Update FADT generator to ACPI 6.4
    f09dbf20b9 DynamicTablesPkg: Rename SBSA generic watchdog
    942c9bd357 ShellPkg: Update Acpiview GTDT parser to ACPI 6.4
    80e67bcb23 ShellPkg: Update Acpiview PCCT parser to ACPI 6.4
    b4da6c29f1 ShellPkg: Add Type 5 PCC Subspace Structure parser
    5ece2ad36c MdeModulePkg/Core/Dxe: Add lock protection in CoreLocateHandleBuffer()
    30400318a2 ShellPkg: Update Acpiview HMAT parser to ACPI spec version 6.4
    71c3c9c0c4 DynamicTablesPkg: Remove unnecessary includes
    25cf58a163 DynamicTablesPkg: Add missing parameter check
    bfaf7c8b9e DynamicTablesPkg: Add AddSsdtAcpiHeader()
    28b2df475f DynamicTablesPkg: Add AmlRdSetEndTagChecksum()
    74addfeab6 DynamicTablesPkg: Add AmlSetRdListCheckSum()
    7b2022d39e DynamicTablesPkg: Set EndTag's Checksum if RdList is modified
    2dd7dd3952 DynamicTablesPkg: Clear pointer in node creation fcts
    37bd08176c DynamicTablesPkg: Update error handling for node creation
    6d2777d85f DynamicTablesPkg: Make AmlNodeGetIntegerValue public
    f995f8672b DynamicTablesPkg: AML Code generation for Register()
    9454d1ebcb DynamicTablesPkg: AML Code generation for Resource data EndTag
    1e33479b39 DynamicTablesPkg: AML code generation for a Package
    12e65fd258 DynamicTablesPkg: Helper function to compute package length
    ce15936f2f DynamicTablesPkg: AML code generation for a ResourceTemplate
    de62ccbf4f DynamicTablesPkg: AML code generation for a Method
    e2d7b4950b DynamicTablesPkg: AML code generation to Return a NameString
    3e958e93ce DynamicTablesPkg: AML code generation for a Method returning a NS
    018a962d92 DynamicTablesPkg: AML code generation for a _LPI object
    a5e36ad9bc DynamicTablesPkg: AML code generation to add an _LPI state
    f17ef10e63 DynamicTablesPkg: Add CM_ARM_LPI_INFO object
    769e63999f DynamicTablesPkg: SSDT CPU topology and LPI state generator
    19ee56c4b3 UefiPayloadPkg: Add a macro to select the SecurityStubDxe driver.
    782d018703 MdePkg: Add ProcessorUpgradeSocketLGA4677 from SMBIOS 3.5.0
    ba4ae92234 ShellPkg: Support ProcessorUpgradeSocketLGA4677 from SMBIOS 3.5.0
    f22feb0e3b CryptoPkg/BaseCryptLib: Eliminate extra buffer copy in Pkcs7Verify()
    4225a464c6 MdePkg/BaseLib: Add QuickSort function on BaseLib
    6ed6abd6c1 BaseTools: Change RealPath to AbsPath
    978d428ec3 UefiPayloadPkg: Add PCI root bridge info hob support for SBL
    43b3840873 MdeModulePkg/Sd: Corrections for Extra.uni files
    a7fcab7aa3 MdeModulePkg/Core/Dxe: Acquire a lock when iterating gHandleList
    e40fefafa9 ArmVirtPkg/FdtClintDxe: Move FdtClientDxe to EmbeddedPkg
    fb759b8b73 MdePkg: Add PcdPciIoTranslation PCD
    7d78a86ecf ArmPkg: Use PcdPciIoTranslation PCD from MdePkg
    77e9b3a7c6 ArmVirtPkg/FdtPciPcdProducerLib: Relocate PciPcdProducerLib to OvmfPkg
    d881c6ddf5 ArmVirtPkg/HighMemDxe: Relocate HighMemDxe to OvmfPkg
    47bd85e9f9 OvmfPkg/HighMemDxe: Add RISC-V in the supported arch.
    f8d0501ded ArmVirtPkg/QemuFwCfgLib: Relocate QemuFwCfgLib to OvmfPkg
    26aa241d2f OvmfPkg/QemuFwCfgLibMmio: Add RISC-V arch support
    c6770f4b88 MdePkg: Add PcdPciMmio32(64)Translation PCDs
    9a7509e465 ArmVirtPkg/FdtPciHostBridgeLib: Relocate FdtPciHostBridgeLib to OvmfPkg/Fdt
    b21c6794de OvmfPkg/FdtPciHostBridgeLib: Add RISC-V in the supported arch.
    e0c23cba5e ArmVirtPkg/VirtioFdtDxe: Relocate VirtioFdtDxe to OvmfPkg/Fdt
    f2400e06db BaseTools: add edk2-test repo to SetupGit.py
    785cfd3305 UefiPayloadPkg: Use SECURITY_STUB_ENABLE to control the SecurityStubDxe
    7e43d3e086 ArmPkg/Smbios: Fix max cache size 2 wrong issue
    f10a112f08 UefiPayloadPkg: Fix the build issue for coreboot
    2108698346 StandaloneMmPkg: Support CLANGPDB builds
    11a4af85a4 Ovmfpkg: update Ia32 build to use new work area
    36b561623a OvmfPkg/AmdSev: update the fdf to use new workarea PCD
    91a978ce7e UefiPayloadPkg: Replace MEMROY_ENTRY by MEMORY_ENTRY
    6ef5797447 UefiPayloadPkg: Fix ECC reported issues
    90246a6d9f UefiPayloadPkg: Fix the build failure for non-universal payload
    37a33f02aa UefiCpuPkg: Cpu feature data stored in memory may be migrated
    4fdf843c75 DynamicTablesPkg: Fix unitialized variable use
    6893865b30 DynamicTablesPkg: Fix void pointer arithmetic
    99325a8b65 MdeModulePkg/SortLib: Add QuickSort function on BaseLib
    305fd6bee0 UefiCpuPkg/CpuCacheInfoLib: Add QuickSort function on BaseLib
    2f286930a8 ShellPkg: Parse I/O APIC and x2APIC structure
    bd5ec03d87 NetworkPkg/HttpBootDxe: make file extension check case-insensitive
    6254037223 ArmPkg: Implement PlatformBootManagerLib for LinuxBoot
    f079e9b450 OvmfPkg: Copy Main.asm from UefiCpuPkg to OvmfPkg's ResetVector
    5a2411784b OvmfPkg: Clear WORK_AREA_GUEST_TYPE in Main.asm
    c9ec74a198 OvmfPkg: Add IntelTdxMetadata.asm
    8b76f23534 OvmfPkg: Enable TDX in ResetVector
    87a34ca0cf UefiPayloadPkg: Add a common SmmAccessDxe module
    e7e8ea27d4 UefiPayloadPkg: Add a common SMM control Runtime DXE module
    bed990aae6 UefiPayloadPkg: Add bootloader SMM support module
    1d66480aa4 UefiPayloadPkg: Add SpiFlashLib
    04714cef46 UefiPayloadPkg: Add FlashDeviceLib
    ae8acce8ae UefiPayloadPkg: Add a common FVB SMM module
    242dcfe30f UefiPayloadPkg: Add a SMM dispatch module
    b80c17b62d UefiPayloadPkg: Add SMM support and SMM variable support
    2f6f3329ad FmpDevicePkg/FmpDxe: Use new Variable Lock interface
    9a95d11023 IntelFsp2Pkg/SplitFspBin.py: adopt FSP 2.3 specification.
    bb146ce32d MdePkg Cpuid.h: Define CPUID.(EAX=7,ECX=0):EDX[30]
    1bc232aae3 RedfishPkg: Update link to staging/RedfishClientPkg in Readme.md
    e7663fdd82 UefiPayloadPkg: Remove SystemTableInfo GUID.
    91b772ab62 RedfishPkg: Add more information to Readme.md
    c8594a5311 SecurityPkg/FvReportPei: Remove the ASSERT to allow neither M nor V
    939c2355da IntelFsp2Pkg SplitFspBin.py: Correct file name in file header
    6f9e83f757 NetworkPkg/HttpDxe: Enable wildcard host name matching for HTTP+TLS.
    b258f12889 BaseTools/VrfCompile: Fix uninitialized field from unnamed field
    0f4cdad25b DynamicTablesPkg: Add missing BaseStackCheckLib instance
    e13e53cb2f NetworkPkg/NetworkPkg.dsc: Add RngLib mapping for ARM and RISCV64
    c1f2287635 SecurityPkg/SecurityPkg.dsc: Add missing RngLib for ARM and RISCV64
    b0a03ca4a9 SignedCapsulePkg/SignedCapsulePkg.dsc: Add RngLib mapping
    15e635d1b5 UefiCpuPkg/MtrrLib/UnitTest: Fix 32-bit GCC build issues
    4050c873b5 MdeModulePkg/Variable/RuntimeDxeUnitTest: Fix 32-bit GCC builds
    d79df34beb BaseTools: Fix StructurePcd offset error.
    b5d4a35d90 MdeModulePkg/XhciSched: Fix missing DEBUG arguments
    48452993ad MdePkg/Include: Enhance DebugLib to support reproduce builds
    5948ec3647 MdePkg: Reproduce builds across source format changes
    f331310a10 ArmPkg: Reproduce builds across source format changes
    77dcd03ecf MdeModulePkg: Reproduce builds across source format changes
    45137bca2f NetworkPkg: Reproduce builds across source format changes
    d939a25d41 SecurityPkg: Reproduce builds across source format changes
    fd42dcb1fc OvmfPkg: Reproduce builds across source format changes
    8c1b1fe634 ShellPkg: Add comment that ItemPtr is set after validation
    d6e6337cd6 MdePkg: Fix ACPI memory aggregator/device type mismatch
    c974257821 MdeModulePkg AtaAtapiPassThru: Always do S.M.A.R.T. check if device support
    aab6bb3d32 MdeModulePkg/DxeCapsuleLibFmp: Capsule on Disk file name capsule
    a7b35aae13 MdeModulePkg\UfsBlockIoPei: UFS MMIO address size support both 32/64 bits
    f826b20811 UefiCpuPkg/UefiCpuLib: Add GetCpuFamilyModel and GetCpuSteppingId
    8c8867c5da MdeModulePkg/DxeCapsuleLibFmp: Use new Variable Lock interface
    22c3b5a865 BaseTools: Add authenticated variable store support
    a92559671a OvmfPkg/Xen: Fix VS2019 build issues
    4c495e5e3d OvmfPkg/Bhyve/PlatformPei: Fix VS2019 X64 NOOPT build issue
    466ebdd2e0 MdeModulePkg/FPDT: Lock boot performance table address variable at EndOfDxe
    455b0347a7 UefiCpuPkg/PiSmmCpuDxeSmm: Use SMM Interrupt Shadow Stack
    e1e7306b54 OvmfPkg/Library/ResetSystemLib: Fix Microvm VS2019 NOOPT build issue
    4c7ce0d285 MdeModulePkg AtaAtapiPassThru: Skip the potential NULL pointer access
    bb1bba3d77 NetworkPkg: Fix invalid pointer for DNS response token on error
    - Removed patches which are merged to mainline:
    - ovmf-OvmfPkg-OvmfXen-set-PcdAcpiS3Enable-at-initializatio.patch to fix the
      S3 detection in ovmf-xen
    - cb0d24637d    edk2-stable202111-rc1~220
    - ovmf-OvmfPkg-OvmfXen-add-QemuKernelLoaderFsDxe.patch to add QemuKernelLoaderFsDxe
      to ovmf-xen to load kernel from qemu fw_cfg
    - 9f3eda177a    edk2-stable202111-rc1~216
    - ovmf-OvmfPkg-OvmfXen-Fix-build-with-QemuKernelLoaderFsDxe.patch
    - 4473834e7d    edk2-stable202111-rc1~203
    - The edk2-stable202111 includes the following patches for bsc#1192126
      to fix unlimited reset. (bsc#1192126)
      80e67af9af OvmfPkg: introduce a common work area
      ab77b6031b OvmfPkg/ResetVector: update SEV support to use new work area format
      b9af5037b2 OvmfPkg/ResetVector: move the GHCB page setup in AmdSev.asm
* Wed Dec 08 2021 jlee@suse.com
  - For preparing push to SLE15-SP4, add more notes:
    - Drop upstreamed ovmf-jscSLE-16075-SEV-ES-fixes.patch from 15-SP4
    - All patches in the above big patch are in edk2-stable202011
    - Some changes in ovmf.spec file of 15-SP4:
    - brotli-v1.0.7-17-g666c328-c.tar.xz and "add brotli" section
    be removed because ovmf-disable-brotli.patch.
    - Using %{_prefix} instead of /usr hard code.
    - Redundant %defattr(-,root,root) are removed.
    - BuildRoot be removed because factory doesn't have it.
    - Sync some differences in the change log between 15-SP3 with openSUSE
      TW since "Wed Jan 24 06:31:21 UTC 2018":
    - Add TLS and IPv6 supports for ArmVirtQemu.
    - ovmf-bsc1119454-additional-scsi-drivers.patch to support more
    SCSI drivers (PvScsi, MptScsi, and LsiScsi) (bsc#1119454)
    - already in edk2-stable202008
    - Drop the build requirement of python2
* Mon Dec 06 2021 guillaume.gardet@opensuse.org
  - cross-i386-binutils and cross-i386-gcc have been dropped from
    Factory, so use only cross-x86_64-* - boo#1193424
* Fri Dec 03 2021 jlee@suse.com
  - Merge the difference from SLE for pushing back to SLE15-SP4
    - Add/Update 50-xen-hvm-x86_64.json in descriptors.tar.xz
    - Add the json descriptor for xen-hvm (bsc#1180050)
    - Add "nvram-template" and change the firmware file to
    ovmf-x86_64-ms-4m.bin (bsc#1180050, bsc#1181264)
    - The following patches in SLE are already in edk2-edk2-stable202108
      in factory, so they will be removed from 15-SP4
    - ovmf-bsc1177789-cryptopkg-fix-null-dereference.patch to fix
      the potential NULL dereference in AuthenticodeVerify()
      (bsc#1177789, CVE-2019-14584)
    - 26442d11e620a9	edk2-stable202011~124
    - ovmf-bsc1180079-amd-sev-es-mitigation.patch to mitigate the
    potential AMD SEV-ES security issues
    (bsc#1180079)
    - a91b700e385e74	edk2-stable202102~181
    - ovmf-jscSLE-16075-SEV-ES-use-physical-address.patch as the
    follow-up patch for SEV-ES to fix the flash writing
    (jsc#SLE-16075)
    - 3a3501862f7309	edk2-stable202102~105
    - ovmf-bsc1183578-lzma-catch-4GB.patch to fix the possible
    heap corruption
    (bsc#1183578, CVE-2021-28211)
    - e7bd0dd26db7e5	edk2-stable202011~7
    - ovmf-bsc1183579-fix-fv-recursion.patch to fix unlimited FV
    recursion
    (bsc#1183579, CVE-2021-28210)
    - b9bdfc72853fe9	edk2-stable202011~9
    - Add ovmf-bsc1186151-fix-iscsi-overflows.patch to fix the possible
    overflows in IScsiDxe
    (bsc#1186151)
    - 83761337ec91fb	edk2-stable202108-rc0~171
* Mon Nov 08 2021 guillaume.gardet@opensuse.org
  - Update rpmlintrc (fixes aarch64 build)
* Tue Oct 26 2021 jlee@suse.com
  - Removed patches which are merged to mainline:
      ovmf-bsc1186151-fix-iscsi-overflows.patch
      ovmf-xen-relocate-shared_info_page-map.patch
  - Removed patches because replaced:
      ovmf-fix-xen-s3-detection.patch -> ovmf-OvmfPkg-OvmfXen-set-PcdAcpiS3Enable-at-initializatio.patch
      ovmf-xen-add-qemu-kernel-loader-fs.patch -> ovmf-OvmfPkg-OvmfXen-add-QemuKernelLoaderFsDxe.patch
* Fri Oct 22 2021 jlee@suse.com
  - Removed edk2-stable202105.tar.gz because we updated to edk2-stable202108
* Thu Oct 14 2021 jlee@suse.com
  - Update to edk2-stable202108
    - Features (https://github.com/tianocore/edk2/releases):
    OvmfPkg: remove Xen support from OvmfPkg*.dsc, in favor of OvmfXen.dsc
    Add CLANGDWARF toolchain for generating ELF+DWARF
    NetworkPkg/IScsiDxe: remotely exploitable buffer overflows
    NetworkPkg/IScsiDxe: add sha256 support to CHAP
    Create header files and multiple Hobs for Universal Payload
    Add search feature in config editor
    Add additional build option to treat Dynamic Pcd as DynamicEx Pcd
    Add a new MicrocodeLib for microcode loading
    Implement key enrolment from default key variables
    StandaloneMm support for 32bit Arm machines
    Add firmware support for Cloud Hypervisor on arm64
    Support architecture-specific openssl acceleration
    Support measured AMD SEV boot with kernel/initrd/cmdline
    Add ACPI 6.4 header
    Add new BootDiscoveryPolicyUiLib
    - Patches (git log --oneline --reverse edk2-stable202105~..edk2-stable202108):
    e1999b264f ArmPkg/ArmGic: Fix maximum number of interrupts in GICv3
    b8ed8c0fb2 Maintainers.txt: add Sami Mujawar as top-level ArmVirtPkg reviewer
    dbc22a1785 UefiCpuPkg/MpInitLib: Allocate a separate SEV-ES AP reset stack area
    0095070e70 MdePkg/Register/Amd: expand the SEV MSR to include the SNP definition
    f828fc9876 MdePkg/Register/Amd: realign macros with more space for future expansion
    34e16ff883 MdePkg/Register/Amd: define GHCB macros for hypervisor feature detection
    f0983b2074 MdePkg/Register/Amd: define GHCB macro for Register GPA structure
    4665fa6503 MdePkg/Register/Amd: define GHCB macro for the Page State Change
    dfd41aef78 MdePkg/Register/Amd: define GHCB macros for SNP AP creation
    5a7cbd54a1 MdePkg/BaseLib: add support for PVALIDATE instruction
    2b5b2ff04d MdePkg/BaseLib: add support for RMPADJUST instruction
    901a9bfc3a OvmfPkg/BaseMemEncryptSevLib: introduce MemEncryptSevClearMmioPageEncMask()
    c394fa4c9e OvmfPkg/AmdSevDxe: use MemEncryptSevClearMmioPageEncMask() to clear EncMask
    8ee4e52ba8 OvmfPkg/QemuFlashFvbServicesRuntimeDxe: use Mmio helper to clear enc mask
    b4a8de5d27 OvmfPkg/TpmMmioSevDecryptPei: use MemEncryptSevClearMmioPageEncMask()
    adfa3327d4 OvmfPkg/BaseMemEncryptSevLib: remove Flush parameter
    fe5da0927a IntelFsp2WrapperPkg: Remove microcode related PCDs
    d3ff5dbe1d MdePkg: MmControl: Fix function and structure definition mismatches
    197e27c90a MdePkg: Add new 16550-compatible Serial Port Subtypes to DBG2
    fdf3666f01 MdePkg: Update DBG2 and SPCR header with NVIDIA 16550 Subtype
    b233eb1849 EmbeddedPkg/RealTimeClockRuntimeDxe: Improve GetWakeupTime
    b5379899b3 MdeModulePkg/Xhci: Fix TRT when data length is 0
    039e07f626 MdePkg/MdeModulePkg: Move AML_NAME_SEG_SIZE definition
    1f515342d8 DynamicTablesPkg: Use AML_NAME_SEG_SIZE define
    75e9154f81 OvmfPkg/VirtioMmioDeviceLib: Add EFIAPI to VirtioMmioSetQueueAddress
    c410ad4da4 MdePkg/BaseLib: Fix AsmReadSs() with GCC toolchain
    c1aa3bab12 BaseTools: Add ClangBase.lds for CLANG8 tool chain with max-page-size
    c6b872c6ab BaseTools GenFw: Support CLANG8ELF with conversion ELF to PE/COFF image
    cf9959adff BaseTools: Update build_rule to skip CLANG resource section generation
    4b56ad2049 BaseTools: Add new CLANG8ELF tool chain for new LLVM/CLANG8
    e1636fe18f BaseTools: Update ClangBase.lds to keep dynamic section
    924c2b847f BaseTools: Change CLANG8ELF to CLANGDWARF
    e25566cd2b OvmfPkg: remove the Xen drivers from the IA32, IA32X64, and X64 platforms
    aa7f19f480 OvmfPkg: remove the Xen drivers from the AmdSev platform
    7bc04a75a7 OvmfPkg: switch IA32, IA32X64, X64 to the fw_cfg-only ACPI platform driver
    d697037446 OvmfPkg: switch the AmdSev platform to the fw_cfg-only ACPI platform driver
    ae4aa4a346 OvmfPkg/README: bump minimum QEMU version to 1.7.1, machine types to 1.7
    2a85d9b07e OvmfPkg/AcpiPlatformDxe: fix header file warts
    180f1908b3 OvmfPkg/AcpiPlatformDxe: sort #includes and [LibraryClasses]
    6d1e56e715 OvmfPkg/AcpiPlatformDxe/QemuLoader.h: remove QemuFwCfgLib class dependency
    747b1ef725 OvmfPkg/AcpiPlatformDxe: move "QemuLoader.h" to IndustryStandard
    cc302b799e OvmfPkg/AcpiPlatformDxe: consolidate #includes and [LibraryClasses]
    c9bba52fc7 OvmfPkg/XenAcpiPlatformDxe: create from AcpiPlatformDxe
    a31fcb5096 OvmfPkg/AcpiPlatformDxe: remove the "AcpiPlatformDxe.inf" driver
    4115840c28 OvmfPkg/XenAcpiPlatformDxe: remove the QEMU ACPI linker/loader client
    d6ba8aa6ef OvmfPkg/XenAcpiPlatformDxe: remove QEMU fw_cfg dependency
    3f975ee570 OvmfPkg/XenAcpiPlatformDxe: remove the InstallAcpiTable() helper function
    8f8d3d90c5 OvmfPkg/XenAcpiPlatformDxe: remove OVMF's built-in ACPI tables
    4174c5c787 OvmfPkg/Bhyve/AcpiPlatformDxe: fix file path typo in comment
    d491c88a0c OvmfPkg/AcpiTables: remove unused module
    e7641171b6 OvmfPkg/OvmfXen: make "PcdPciDisableBusEnumeration" Fixed-at-Build
    3357ac7380 OvmfPkg/XenAcpiPlatformDxe: remove delayed ACPI table installation
    d06eb2d1d9 OvmfPkg/PlatformPei: remove Xen support
    8899e3fe6a OvmfPkg: drop PcdPciDisableBusEnumeration from the IA32, IA32X64, X64 DSCs
    2833589ad0 OvmfPkg: drop PcdPciDisableBusEnumeration from the AmdSev platform
    e43cca74ad OvmfPkg/Bhyve: make "PcdPciDisableBusEnumeration" Fixed-at-Build
    b005f9f1f5 OvmfPkg/OvmfXen: remove IncompatiblePciDeviceSupport DXE driver
    8c8f886f27 OvmfPkg/Bhyve: remove IncompatiblePciDeviceSupport DXE driver
    984c93ece3 OvmfPkg/IncompatiblePciDeviceSupportDxe: remove PcdPciDisableBusEnumeration
    32fef03563 OvmfPkg/PciHostBridgeLib: consolidate #includes and INF file sections
    e120c962f5 OvmfPkg/PciHostBridgeLibScan: create from PciHostBridgeLib
    c2f24ba321 OvmfPkg/Bhyve: consume PciHostBridgeLibScan
    307763c3da OvmfPkg/OvmfXen: consume PciHostBridgeLibScan
    242678da2a OvmfPkg/PciHostBridgeLib: remove Bhyve and Xen support
    33d4f3e39e OvmfPkg/PciHostBridgeLibScan: remove QEMU (fw_cfg) support
    4c81178cf0 OvmfPkg/PciHostBridgeLibScan: remove PcdOvmfHostBridgePciDevId
    8af38170b5 OvmfPkg/PciHostBridgeLibScan: clean up file names and file-top comments
    7e25086a00 OvmfPkg/SmbiosPlatformDxe: clean up #includes and INF
    5072593738 OvmfPkg/SmbiosPlatformDxe: return EFI_NOT_FOUND if there is no SMBIOS data
    4db374562f OvmfPkg/SmbiosPlatformDxe: locate SMBIOS protocol in InstallAllStructures()
    a8ab14424e OvmfPkg/SmbiosPlatformDxe: split GetXenSmbiosTables() decl. to new header
    9d84e74ca0 OvmfPkg/SmbiosPlatformDxe: declare InstallAllStructures() in header file
    d4a8aaee73 OvmfPkg/SmbiosPlatformDxe: create Xen-specific module INF file
    ce270905bf OvmfPkg/SmbiosPlatformDxe: split Xen entry point from QEMU entry point
    51adb689e1 OvmfPkg: restrict XenPlatformLib to BdsDxe in the IA32, IA32X64, X64 DSCs
    ddb3fdbef3 BaseTools GenFw: Fix regression issue to convert the image to ACPI data
    558d83ab1a OvmfPkg/README: Fix typo in README
    beb443fde0 ShellPkg: Fix typo
    702ba436ed OvmfPkg/PlatformCI: bump QEMU choco package version to 2021.5.5
    83761337ec NetworkPkg/IScsiDxe: wrap IScsiCHAP source files to 80 characters
    29cab43bb7 NetworkPkg/IScsiDxe: simplify "ISCSI_CHAP_AUTH_DATA.InChallenge" size
    95616b8661 NetworkPkg/IScsiDxe: clean up "ISCSI_CHAP_AUTH_DATA.OutChallengeLength"
    e8f28b09e6 NetworkPkg/IScsiDxe: clean up library class dependencies
    cf01b2dc8f NetworkPkg/IScsiDxe: fix potential integer overflow in IScsiBinToHex()
    d90fff40cb NetworkPkg/IScsiDxe: assert that IScsiBinToHex() always succeeds
    dc469f1371 NetworkPkg/IScsiDxe: reformat IScsiHexToBin() leading comment block
    47b76780b4 NetworkPkg/IScsiDxe: fix IScsiHexToBin() hex parsing
    54e90edaed NetworkPkg/IScsiDxe: fix IScsiHexToBin() buffer overflow
    b8649cf2a3 NetworkPkg/IScsiDxe: check IScsiHexToBin() return values
    288bd74a22 Pytool: SpellCheck: Fix incorrect file mask across package matrices
    1ad794b627 MdeModulePkg: Fix device path when boot manager menu is from different FV
    11b1c1d4b9 SecurityPkg: TcgStorageOpalLib: Initialize SupportedAttributes parameter.
    d58016b768 UefiPayloadPkg: Get platform specific logic via protocol for BDS
    d8c18ba3f4 MdeModulePkg: Add Universal Payload general definition header file
    b597b6e24c MdeModulePkg: Add new structure for the PCI Root Bridge Info Hob
    99de2e7e03 UefiPayloadPkg: UefiPayload retrieve PCI root bridge from Guid Hob
    9d53e01efe MdeModulePkg: Add new structure for the Universal Payload SMBios Table Hob
    70e8c9c3bc MdeModulePkg/Universal/SmbiosDxe: Scan for existing tables
    302a8f353c UefiPayloadPkg: Create gUniversalPayloadSmbiosTableGuid Hob
    75293330ea MdeModulePkg: Add new structure for the Universal Payload ACPI Table Hob
    761329ee27 MdeModulePkg/ACPI: Install ACPI table from HOB.
    8c0d678063 UefiPayloadPkg: Create gUniversalPayloadAcpiTableGuid Hob
    fa24b6ed26 UefiPayloadPkg: Use DynamicEx instead of Dynamic to pass PCD across binary
    c511426abe MdeModulePkg/UniversalPayload: Add definition for extra info in payload
    fe471d4a57 UefiPayloadPkg: Add PayloadLoaderPeim which can load ELF payload
    ab2b389e7a PeiCore: Remove assertion when failing to load PE image
    1b380aa603 BaseTools GenFw: Keep read only alloc section as text when convert ELF
    9cf9de668f StandaloneMmPkg: Core: Spelling error in comment
    610385fa3b ArmPlatformPkg: SpellCheck: Switch spellcheck CI to AuditOnly
    04ddd1271e ArmPkg: SpellCheck: Update valid acronyms in ExtendedWords
    cdf7544703 MdeModulePkg PciBusDxe: Increase the width of data read during oprom shadow
    2847c72fda Maintainers.txt: Add Reviewers for Universal Payload definitions
    1162ae8297 Maintainers.txt: Add reviewers for ACPI and SMBIOS modules
    a63914d3f6 ArmPkg: Move cache defs used in Universal/Smbios into ArmCache.h
    6cfeeb71c4 UefiCpuPkg/CpuCommonFeaturesLib: Correct the CPU location check
    d9a7612f8d MdeModulePkg/BdsDxe: Update BdsEntry to use Variable Policy
    5959879e92 ArmVirtPkg: Add PCIe host bridge utility lib for ArmVirtPkg
    4dda0f7ab4 ArmVirtPkg: Enable PCIe support for Kvmtool
    1e5e58d39b UefiPayloadPkg/UefiPayloadEntry: Improve bootloader memrange parsing
    7471751a4d UefiPayloadPkg/UefiPayloadEntry: Remove 4GB memory WA
    20ca528828 CryptoPkg: BaseCryptLib: Update Salt length requirement for RSA-PSS scheme.
    18b2272e4d Azurepipeline: SpellCheck: Enforce Node dependency to use version 14.x
    eba32695ee CryptoPkg/BaseCryptLib: Enabled CryptSha512 for Smm/Runtime drivers
    12e34cd2f7 OvmfPkg/Bhyve: clean up TPM_ENABLE remnants
    82f727c4af UefiPayloadPkg: Add HobLib for UniversalPayload
    ea0bd5f6a7 MdeModulePkg: Add new structure for the Universal Payload Serial Port Info
    a75c029f60 UefiPayloadPkg: Add a separate PlatformHookLib for Universal Payload
    d63595c3c9 UefiPayloadPkg: Update the function definition of HobConstructor
    0ff6de9358 UefiPayloadPkg: Create separate Payload Entry for UniversalPayload
    b208d37c73 UefiPayloadPkg: Get and enter DxeCore for Universal Payload
    27cb64fffc UefiPayloadPkg: Fix up UPL Pcd database
    6b69f73b59 UefiPayloadPkg: Include UniversalPayLoad modules in UefiPayloadPkg.dsc
    86e6948cfb UefiPayloadPkg: Remove assert when reserve MMIO/IO resource for devices
    2db0ed93ff UefiPayloadPkg: Add macro to enable and disable some drivers
    3eb72b308a UefiPayloadPkg: Add PcdInstallAcpiSdtProtocol feature in UefiPayloadPkg
    caa139fe17 UefiPayloadPkg: Add PcdResetOnMemoryTypeInformationChange in UefiPayloadPkg
    8efd912baf UefiPayloadPkg: Add new structure for BootManagerMenuFile HOB
    19a541d70e UefiPayloadPkg: consume the BootManagerMenuFile HOB
    333a866106 BaseTools: Remove check for Split.exe in toolset.bat
    f0a3f6d9c3 BaseTools: Fix spelling of "overwrite" and "overwriting" in toolset.bat
    17143c4837 BaseTools: Reset ERRORLEVEL in toolsetup.bat after edk2basetools check
    abfff7c45d BaseTools GenFw: Add support for RISCV GOT/PLT relocations
    27b8a52957 MdePkg: MmConfiguration: Move definition of EFI_MM_RESERVED_MMRAM_REGION
    d1fc3d7ef3 MdePkg: MmConfiguration: Added definition of MM Configuration PPI
    5a2e030f73 OvmfPkg/GenericQemuLoadImageLib: plug cmdline blob leak on success
    932449710c OvmfPkg/X86QemuLoadImageLib: plug cmdline blob leak on success
    24b0e9d128 Revert "OvmfPkg/QemuKernelLoaderFsDxe: don't expose kernel command line"
    cf20302474 OvmfPkg/GenericQemuLoadImageLib: Read cmdline from QemuKernelLoaderFs
    9421f5ab8d OvmfPkg/X86QemuLoadImageLib: State fw_cfg dependency in file header
    b37cfdd280 OvmfPkg/XenPlatformPei: Relocate shared_info page mapping
    55dee4947b MdePkg : Add IPMI Macro and Structure Defintions to resolve build errors
    580b11201e IntelFsp2Pkg: Add Config Editor tool support
    939ed3a592 UefiPayloadPkg/PayloadLoader: Fix bug in locating relocation section
    3cde0d553d UefiPayloadPkg/PayloadLoader: Remove assertion
    49eeda113a NetworkPkg/IScsiDxe: re-set session-level authentication state before login
    7eba9f698e NetworkPkg/IScsiDxe: add horizontal whitespace to IScsiCHAP files
    7b6c2b2a26 NetworkPkg/IScsiDxe: distinguish "maximum" and "selected" CHAP digest sizes
    903ce1d8f8 NetworkPkg/IScsiDxe: support multiple hash algorithms for CHAP
    47fea2abcb NetworkPkg/IScsiDxe: support SHA256 in CHAP
    bb33c27fbe NetworkPkg: introduce the NETWORK_ISCSI_MD5_ENABLE feature test macro
    8697dc60cc Maintainers.txt: Update Maintainers and reviewers for UefiPayloadPkg
    fea7901dba UefiPayloadPkg: Fix the build failure
    1e0c441c92 OvmfPkg/Bhyve: add USB support
    44ced03798 OvmfPkg/Bhyve: use static PCI32Base address
    b3db0cb1f8 MdeModulePkg/PartitionDxe: Ignore PMBR BootIndicator per UEFI spec
    0a6b303dce UefiCpuPkg/ExceptionLib: Conditionally clear shadow stack token busy bit
    d10e058016 MdeModulePkg/RegularExpressionDxe: Fix memory assert in FreePool()
    4c051c2c65 MdeModulePkg: Update YAML file to fix CI error
    31fcee6d99 ArmVirtPkg: Add PlatformHasAcpiDtDxe for Cloud Hypervisor
    c28fc8ab3b ArmVirtPkg: Install Acpi tables for Cloud Hypervisor
    0e3b6bd0ee ArmVirtPkg: support Cloud Hypervisor in edk2
    b560e9d9b6 IntelFsp2Pkg: PatchFv parseInfFile function modification
    f47c4676dd Pytool: SpellCheck: Defer path expansion in cspell parameters
    cc89d245f9 Maintainers.txt: remove Laszlo Ersek's entries
    84af6ea320 BaseTools/Scripts: Ignore Mergify merge commits in PatchCheck.py
    b491eace37 .mergify: Simplify Mergify rules using GitHub status checks
    5ef08a49e3 .azurepipelines: Remove FINISHED and FAILED states
    ad1009ec62 MdePkg/Include: Add STATIC_ASSERT for L'' and L"" strings
    3de3c24755 BaseTools: Remove non-ascii character of StructurePcd comment
    40a9066439 BaseTools: Enable the flag to treat dynamic pcd as dynamicEx
    22fe311bd2 .pytool/EccCheck: Locate BaseTools dir with EDK_TOOLS_PATH
    a050c599df .pytool/EccCheck: Rename edk2_path as workspace_path
    50672d2692 .pytool/EccCheck: Check ecc_csv exists
    fb5b6220a9 .pytool/EccCheck: Set PACKAGES_PATH env var in Ecc
    fda5226aa3 UefiPayloadPkg: Dump hob information from boot loader
    7d748705b1 MdeModulePkg: Change the PldHeader to Header in ExtraData.h
    9bf4aee734 UefiPayloadPkg: Assign the length of UniversalPayload ExtraData
    d0b6596b8e MdeModulePkg/RamDiskDxe: Init list head before registering RamDisk protocol
    91f5d3b410 IntelFsp2Pkg: BaseCacheLib EfiProgramMtrr MtrrNumber Should be UINT32
    be282b1493 UefiPayloadPkg: Add PCD_DYNAMIC_AS_DYNAMICEX and set to True
    cac83b6f3b IntelFsp2Pkg: Add search function for Config Editor
    4bac086e8e UefiPayloadPkg: Add FV Guid for DXEFV and PLDFV
    fddb8d24ec ArmPlatformPkg/Scripts: Infer dll load address from console output
    885efcd3f9 MdePkg/Include: Smbios Specification 3.4.0 changes
    83b43c4cb1 MdeModulePkg PCD: Print which PCD was unable to be found
    c32c5911c4 BaseTools GenFw: Add support for R_RISCV_PCREL_LO12_S relocation
    097aeeb119 MdePkg/BaseLib: Add MemoryFence implementation for RiscV64
    391cffcb61 MdeModulePkg PiSmmCore: Change MemoryAttributes message to DEBUG_VERBOSE
    8781b143de BaseTools/Scripts: Fix GetMaintainer.py line endings
    28ef05ce10 BaseTools/Scripts: Allow GitHub ID at end Maintainers.txt lines
    2f5ad3f451 Maintainers.txt: Add GitHub IDs
    332632abf3 Maintainers.txt: Add Jiewen Yao as OvmfPkg Maintainer
    4d28a1c2fd BaseTools: Remove COMMON section from the GCC discard list
    878a92a887 CryptoPkg/OpensslLib: Add native instruction support for X64
    147f34b56c CryptoPkg/OpensslLib: Commit the auto-generated assembly files for X64
    ac70e71b1f NetworkPkg: Making the HTTP IO timeout value programmable with PCD
    ab796d3e2a NetworkPkg: Add HTTP Additional Event Notifications
    b461d67639 OvmfPkg/ResetVector: move SEV specific code in a separate file
    7f05102f65 OvmfPkg/ResetVector: add the macro to invoke MSR protocol based VMGEXIT
    dc485c556d OvmfPkg/ResetVector: add the macro to request guest termination
    f05eb2dfe5 OvmfPkg/AmdSev/SecretDxe: fix header comment to generic naming
    35e267cb34 OvmfPkg/AmdSev: use GenericQemuLoadImageLib in AmdSev builds
    a26a08dc1f OvmfPkg: PlatformBootManagerLibGrub: Allow executing kernel via fw_cfg
    0cb48007f7 OvmfPkg: add library class BlobVerifierLib with null implementation
    c73e31f54d OvmfPkg: add BlobVerifierLibNull to DSC
    6bf5580a3d ArmVirtPkg: add BlobVerifierLibNull to DSC
    d10ad8444f OvmfPkg/QemuKernelLoaderFsDxe: call VerifyBlob after fetch from fw_cfg
    5ace477f34 OvmfPkg/AmdSev/SecretPei: build hob for full page
    0deeab36d1 OvmfPkg/AmdSev: reserve MEMFD space for for firmware config hashes
    385b9d80a0 OvmfPkg/AmdSev: add BlobVerifierLibSevHashes
    514b3aa08e OvmfPkg/AmdSev: Enforce hash verification of kernel blobs
    8e6bb64fe4 EmbeddedPkg/VirtualRealTimeClockLib: Fix SetTime issues
    610bcc69ed ArmVirtPkg: Remove meaningless comment
    3445058aea MdeModulePkg/CapsuleApp: Fix typo in error message
    2e1fb41339 build: Fix python3.10 threading DeprecationWarnings
    0b1b0a9674 python: Replace distutils.utils.split_quotes with shlex.split
    fc50df0d8e BaseTools: Drop check for distutils.utils
    03e77558d4 BaseTools: use shutil.copyfile instead shutil.copy2
    2b47aaecef MdeModulePkg: Add BootDiscoveryPolicyUiLib.
    bb806a6e88 SecurityPkg: Create SecureBootVariableLib.
    9732659698 SecurityPkg: Create library for enrolling Secure Boot variables.
    12a4d0cb9d ArmVirtPkg: add SecureBootVariableLib class resolution
    3d427c5f83 OvmfPkg: add SecureBootVariableLib class resolution
    b926956418 EmulatorPkg: add SecureBootVariableLib class resolution
    db959018b6 SecurityPkg: Remove duplicated functions from SecureBootConfigDxe.
    a97e9e327e ArmPlatformPkg: Create include file for default key content.
    94e065582b SecurityPkg: Add SecureBootDefaultKeysDxe driver
    19107590b6 SecurityPkg: Add EnrollFromDefaultKeys application.
    45f3dd2ce9 SecurityPkg: Add new modules to Security package.
    55266a9b8a SecurityPkg: Add option to reset secure boot keys.
    6355287206 Maintainers.txt: Add new maintainer and reviewer to EmbeddedPkg/
    9abc60f9f7 EmbeddedPkg/libfdt: Add strcmp and strncpy to libfdt_env.h
    0856cdc89e MdePkg: add definition of LINUX_EFI_INITRD_MEDIA_GUID
    97fdcbda4e OvmfPkg: Remove Initrd LINUX_EFI_INITRD_MEDIA_GUID
    4de77ae989 UefiCpuPkg/CpuCacheInfoLib: Sort CpuCacheInfo array
    3c6107758b SecurityPkg: Fix GetSupportedAndActivePcrs counter calculation
    b40bdd6ecd UefiPayloadPkg: Add Fixed PCDs and use Macro to define the default value.
    d497eace3b UefiPayloadPkg: define some PCD as DynamicEX PCD
    ac6e5d6b41 UefiPayloadPkg: change the default value of some PCDs.
    672bd1c711 UefiPayloadPkg: Add a macro to enable or diable the serial driver.
    d02dbb53cd UefiPayloadPkg: Fix the non-ascii character in UniversalPayloadEntry.c
    a7ddc7847c RedfishPkg/JsonLib: Add more JsonLib functions
    5963ce5d28 MdePkg: Add ACPI 6.4 header file
    4d7137f261 MdePkg: Increment FADT version
    d910e83299 MdePkg: Rename SBSA Generic Watchdog to Arm Generic Watchdog
    ad3dea9861 MdePkg: Update PMTT to ACPI 6.4
    ced4cb7609 MdePkg: Add SPA Location Cookie field to SPA Range structure
    c82d6dd4a3 MdePkg: Remove DPPT table
    357383bc4f MdePkg: Add flags and MinTransferSize to Generic Initiator
    7b17bcd9a0 MdePkg: Add 'Type 5' PCC structure
    0938f9235c MdePkg: Add Multiprocessor Wakeup structure
    75c4a8e10d MdePkg: Add the Platform Health Assessment Table (PHAT)
    1803757a9b MdePkg: Add Secure Access Components in the SDEV table
    605c4a1ff2 MdePkg: Add Cache ID to PPTT
    3d359ff905 MdePkg: Fix broken coding style in Acpi64.h
    7311e96417 RedfishPkg/RefishCrtLib: Public RefishCrtLib
    03e19e6bc8 ArmPkg/IndustryStandard: 32b/64b agnostic FF-A, Mm SVC and Std SMC IDs
    aee0098faf ArmPkg: prepare 32bit ARM build of StandaloneMmPkg
    ca1773878d GenFv: Arm: support images entered in Thumb mode
    b7f0226a46 StandaloneMmPkg: fix pointer/int casts against 32bit architectures
    a776bbabd9 StandaloneMmPkg: build for 32bit arm machines
    ac826886c9 MdeModulePkg/UefiSortLib:Add UefiSortLib unit test
    6fdd1c13a7 MdeModulePkg PCD: Reinstall PCD service PPIS when memory available
    ef56f55d19 EmbeddedPkg/NonCoherentDmaLib: Avoid dereferencing unset Map field
    8dd4fc5be6 UefiCpuPkg/CpuCacheInfoLib: Correct logical for identifying cache type
    7b4a99be8a CryptoPkg: BaseCryptLib fix incorrect param order
    - Removed patches which are merged to mainline:
    ovmf-bsc1186151-fix-iscsi-overflows.patch
    ovmf-xen-relocate-shared_info_page-map.patch
    - Updated patches
    ovmf-fix-xen-s3-detection.patch -> ovmf-OvmfPkg-OvmfXen-set-PcdAcpiS3Enable-at-initializatio.patch
    ovmf-xen-add-qemu-kernel-loader-fs.patch -> ovmf-OvmfPkg-OvmfXen-add-QemuKernelLoaderFsDxe.patch
    - Added patches
    ovmf-OvmfPkg-OvmfXen-Fix-build-with-QemuKernelLoaderFsDxe.patch
* Fri Jul 09 2021 glin@suse.com
  - Add ovmf-fix-xen-s3-detection.patch to fix the S3 detection in
    ovmf-xen
  - Add ovmf-xen-add-qemu-kernel-loader-fs.patch to add
    QemuKernelLoaderFsDxe to ovmf-xen to load kernel from qemu fw_cfg
* Fri Jul 02 2021 glin@suse.com
  - Add ovmf-xen-relocate-shared_info_page-map.patch to fix the
    save/restore/migrate in ovmf-xen
* Wed Jun 09 2021 glin@suse.com
  - Add ovmf-bsc1186151-fix-iscsi-overflows.patch to fix the possible
    overflows in IScsiDxe (bsc#1186151)
* Thu Jun 03 2021 glin@suse.com
  - Correct the path to copy the Xen flavor
* Mon May 31 2021 glin@suse.com
  - Update to edk2-stable202105
    * MdeModulePkg/UfsPassThruDxe: Improve Device initialization
      polling Loop
    * MdePkg: MmUnblockMemoryLib: Added definition and null instance
    * OvmfPkg: resolve MmUnblockMemoryLib (mainly for
      VariableSmmRuntimeDxe)
    * MdeModulePkg: VariableSmmRuntimeDxe: Added request unblock
      memory interface
    * SecurityPkg: Tcg2Smm: Switching from gSmst to gMmst
    * SecurityPkg: Tcg2Smm: Separate Tcg2Smm into 2 modules
    * SecurityPkg: Tcg2Smm: Added support for Standalone Mm
    * SecurityPkg: Tcg2Acpi: Added unblock memory interface for NVS
      region
    * UefiCpuPkg/MpInitLib: Use NASM struc to avoid hardcode offset
    * UefiCpuPkg/MpInitLib: Remove unused Lock from
      MP_CPU_EXCHANGE_INFO
    * UefiCpuPkg/SmmCpuFeaturesLib: Move multi-instance function decl
      to header
    * UefiCpuPkg/SmmCpuFeaturesLib: Rename SmmCpuFeaturesLib.c
    * UefiCpuPkg/SmmCpuFeaturesLib: Cleanup library constructors
    * UefiCpuPkg/SmmCpuFeaturesLib: Abstract PcdCpuMaxLogicalProcessorNumber
    * UefiCpuPkg/SmmCpuFeaturesLib: Add Standalone MM support
    * UefiCpuPkg/PiSmmCpu: Don't allocate Token for SmmStartupThisAp
    * RedfishPkg/Library: RedfishLib
    * OvmfPkg/CpuHotplugSmm: refactor hotplug logic
    * OvmfPkg/CpuHotplugSmm: collect hot-unplug events
    * OvmfPkg/CpuHotplugSmm: add Qemu Cpu Status helper
    * OvmfPkg/CpuHotplugSmm: introduce UnplugCpus()
    * OvmfPkg: define CPU_HOT_EJECT_DATA
    * OvmfPkg/SmmCpuFeaturesLib: init CPU ejection state
    * OvmfPkg/SmmCpuFeaturesLib: call CPU hot-eject handler
    * OvmfPkg/CpuHotplugSmm: add EjectCpu()
    * OvmfPkg/CpuHotplugSmm: do actual CPU hot-eject
    * OvmfPkg/SmmControl2Dxe: negotiate CPU hot-unplug
    * EmbeddedPkg/PrePiHobLib: replace duplicate GUID
    * MdePkg/UefiLib: Correct the arguments passed to
      IsLanguageSupported()
    * UefiCpuPkg/CpuCacheInfoLib: Collect cache associative type
    * UefiCpuPkg/MpInitLib: avoid printing debug messages in AP
    * UefiCpuPkg/CpuDxe: Rename variables to follow EDKII coding
      standard
    * UefiCpuPkg/CpuDxe: Guarantee GDT is below 4GB
    * BaseTools/Ecc: Make Ecc only check first include guard
    * ShellPkg/SmbiosView: add more items for smbiosview -t 3
    * MdePkg: Support standalone MM Driver Unload capability
    * OvmfPkg/X86QemuLoadImageLib: Handle allocation failure for
      CommandLine
    * ShellPkg/Pci: Add valid check for PCI extended config space
      parser
    * CryptoPkg/OpensslLib: Upgrade OpenSSL to 1.1.1j
    * OvmfPkg: strip build paths in release builds
    * MdeModulePkg: Initialize local variable value before they are
      used
    * UefiCpuPkg/SmmCommunication: Remove out-dated comments
    * MdePkg: use CpuPause() in CpuDeadLoop()
    * MdePkg/Include: EFI Redfish Discover protocol
    * ShellPkg/UefiHandleParsingLib: Support EFI Redfish protocols
    * MdePkg/Include/Protocol: EFI_HII POPUP_PROTOCOL duplicate
      declaration
    * MdePkg/Include/Protocol: EFI_RESET_NOTIFICATION_PROTOCOL
      duplicate
    * CryptoPkg/Private/Protocol/Crypto.h: Remove duplicate function
      type
    * MdePkg/BaseLib: Add support for the XSETBV instruction
    * MdeModulePkg/PiDxeS3BootScriptLib: Rename mAcpiS3Enable to
      avoid dup symbol
    * MdePkg/IoLib: Filter/trace port IO/MMIO access
    * MdePkg/Baseib: Filter/trace MSR access for IA32/X64
    * UefiCpuPkg: Remove PEI/DXE instances of CpuTimerLib.
    * UefiCpuPkg: Add MicrocodeLib for loading microcode
    * OvmfPkg: Add MicrocodeLib in DSC files.
    * UefiPayloadPkg/UefiPayloadPkg.dsc: Consume MicrocodeLib
    * UefiCpuPkg/MpInitLib: Consume MicrocodeLib to remove duplicated
      code
    * UefiCpuPkg/PiSmmCpuDxeSmm: Support detect SMM shadow stack
      overflow
    * ShellPkg: Fix smbiosview system enclosure type table
    * UefiCpuPkg/CpuTimerLib: Update LIBRARY_CLASS of Base instance.
    * RedfishPkg/RedfishDiscoverDxe: EFI Redfish Discover Protocol
    * RedfishPkg/RedfishConfigHandler: EDKII RedfishConfigHandler
      Protocol
    * UefiCpuPkg: PiSmmCpuDxeSmm: Check buffer size before accessing
    * BaseTools/Conf: Fix MAKE_FLAGS typos in tools_def.template
    * MdeModulePkg: Initialize temp variable in VarCheckPolicyLib
    * SecurityPkg/Tcg2Smm: Initialize local Status variable
    * DynamicTablesPkg: add validation for PcdNonBsaCompliant16550SerialHid
    * OvmfPkg/XenResetVector: Silent a warning from nasm
    * MdePkg: Allow PcdFSBClock to by Dynamic
    * OvmfPkg/IndustryStandard/Xen: Apply EDK2 coding style to
      XEN_VCPU_TIME_INFO
    * OvmfPkg/IndustryStandard: Introduce PageTable.h
    * OvmfPkg/XenPlatformPei: Map extra physical address
    * OvmfPkg/XenPlatformPei: Calibrate APIC timer frequency
    * OvmfPkg/OvmfXen: Set PcdFSBClock
    * DynamicTablesPkg: Re-order GicItsIdentifierArray struct
    * DynamicTablesPkg: Remove EArmObjExtendedInterruptInfo
    * MdePkg: Fix AsmReadMsr64() and AsmWriteMsr64() with GCC
      toolchain
    * BaseTools/PlatformAutoGen: MAKE_FLAGS and MAKE_PATH fixes
    * RedfishPkg/RestJsonStructureDxe: Fix typo in function header
    * MdePkg/Include: Allow CPU specific defines to be predefined
    * CryptoPkg/Library/Include: Allow CPU specific defines to be
      predefined
    * ArmPlatformPkg: Fix Ecc error 8001
    * ArmPlatformPkg: Fix Ecc error 9001
    * ArmPlatformPkg: Remove package dependency in
      NorFlashStandaloneMm
    * ArmPkg: Fix Ecc error 8001 in Chipset
    * ArmPkg: Fix Ecc error 8001 in SemihostLib
    * ArmPkg: Fix Ecc error 8001 in ArmArchTimerLib
    * ArmPkg: Fix Ecc error 9005 in CpuDxe
    * ArmPkg: Fix Ecc error 10006 in ArmPkg.dsc
    * ArmPkg: Fix Ecc error 10016 in StandaloneMmMmuLib
    * ArmPkg: Fix Ecc error 10014 in ArmScmiDxe
    * ArmPkg: Fix Ecc error 10014 in GenericWatchdogDxe
    * ArmPkg: Fix Ecc error 10014 in MmCommunicationDxe
    * ArmPkg: Fix Ecc error 10014 in SemihostLib
    * ArmPkg: Remove ArmGic/ArmGicSecLib.c
    * ArmPkg: Fix Ecc error 5003 in ArmExceptionLib
    * ArmPkg: Fix Ecc error 6001 in MmCommunicationDxe
    * ArmPkg: Fix Ecc error 6001 in ArmSoftFloatLib
    * ArmPkg: Rename include guard in ArmGicLib.h
    * ArmPkg: Fix Ecc error 7008 for SCMI_CLOCK_RATE
    * ArmPkg: Fix Ecc error 7008 for OPTEE_MESSAGE_PARAM
    * ArmPkg: Fix Ecc error 8005/8007 in ArmDisassemblerLib
    * ArmPkg: Fix Ecc error 8005 for SCMI_PROTOCOL_ID
    * ArmPkg: Fix Ecc error 8005 for SCMI_MESSAGE_TYPE
    * ArmPkg: Fix Ecc error 8005 for SCMI_STATUS
    * ArmPkg: Fix Ecc error 8005 for SCMI_MESSAGE_ID
    * ArmPkg: Fix Ecc error 8005 for SCMI_MESSAGE_ID_BASE
    * ArmPkg: Fix Ecc error 8005 for SCMI_MESSAGE_ID_CLOCK
    * ArmPkg: Fix Ecc error 8005 for SCMI_CLOCK_RATE_FORMAT
    * ArmPkg: Fix Ecc error 8005 for SCMI_MESSAGE_ID_PERFORMANCE
    * RedfishPkg: Add EDK2 Redfish Foundation diagrams
    * SecurityPkg/FvReportPei: remove redundant sizeof
    * ShellPkg: Rename Address Size to Access size
    * DynamicTablesPkg: Add access size to CM_ARM_SERIAL_PORT_INFO
    * DynamicTablesPkg: Set the Access size for the SPCR table
    * DynamicTablesPkg: Set the Access size for the DBG2 table
    * UefiCpuPkg: PiSmmCpuDxeSmm: Not to Change Bitwidth During
      Static Paging
    * MdePkg/Cpuid.h: Define new element in CPUID Leaf(07h) data
      structure.
    * SecurityPkg: Add constraints on PK strength
    * ArmPkg: Allow platforms to supply more data for SMBIOS Type3
      record
    * ArmPkg: Allow platforms to report their boot status via
      OemMiscLib call
    * ArmPkg: Fix calculation of offset of chassis SKU Number in
      SmbiosMiscDxe
    * ArmPkg: Fix typo of Manufacturer in comment in SmbiosMiscDxe
    * ArmPkg: Fix Ecc error 8003
    * ArmPkg: Fix Ecc error 3002 in StandaloneMmMmuLib
    * ArmPkg: Add missing library headers to ArmPkg.dec
    * ArmPlatformPkg: Document libraries in ArmPlatformPkg.dec
    * ArmPkg: Add OemMiscLibNull library to ArmPkg.dsc
    * ArmPkg: Correct small typos
    * ArmPlatformPkg: Add ArmPlatformPkg.ci.yaml
    * OvfmPkg/VmgExitLib: Properly decode MMIO MOVZX and MOVSX
      opcodes
    * OvmfPkg/VmgExitLib: Add support for new MMIO MOV opcodes
    * OvmfPkg: Define a new PPI GUID to signal TPM MMIO accessability
    * OvmfPkg/TpmMmioSevDecryptPei: Mark TPM MMIO range as
      unencrypted for SEV-ES
    * OvmfPkg/Tcg2ConfigPei: Update Depex for IA32 and X64
    * ArmPkg: Update SCMI Base Protocol version to 0x20000
    * MdePkg/BaseRngLib: Add support for ARMv8.5 RNG instructions
    * SecurityPkg: Add support for RngDxe on AARCH64
    * UefiCpuPkg/MpInitLib: Properly cast from PCD to SEV-ES jump
      table pointer
    * BaseTools: Add support for version 3 of FMP Image Header
      structure
    * CryptoPkg: BaseCryptLib: Add RSA PSS verify support
    * ShellPkg/UefiShellCommandLib: suppress incorrect gcc warning
    * OvmfPkg/VirtioFsDxe: suppress incorrect gcc warnings
    * UefiCpuPkg/CpuExceptionHandler: Add missing comma to exception
      name array
    * UefiCpuPkg/PiSmmCpu: Remove hardcode 48 address size limitation
    * MdeModulePkg: Retrieve boot manager menu from any fv
    * ShellPkg/HttpDynamicCommand: Fix possible uninitialized use
    * MdeModulePkg/PciBusDxe: Fix possible uninitialized use
    * CryptoPkg/BaseCryptLib: Fix possible uninitialized use
    * MdeModulePkg/PlatformDriOverrideDxe: Fix overflow condition
      check
    * MdeModulePkg/VariableLock: downgrade compatibility warnings to
      DEBUG_WARN
    * ArmPkg/ArmGic: Fix maximum number of interrupts in GICv3
  - Update openssl to 1.1.1j
  - Drop upstreamed patch: ovmf-bsc1184801-fix-sev-with-tpm.patch
  - Add the new Xen flavor for x86_64
    + Update 50-xen-hvm-x86_64.json to use ovmf-x86_64-xen-4m.bin as
      the default firmware for Xen
* Tue May 04 2021 glin@suse.com
  - Update the descriptors to add "acpi-s4" tag to allow libvirt
    enable hibernation (bsc#1182886#c31)
* Mon May 03 2021 glin@suse.com
  - Add ovmf-bsc1184801-fix-sev-with-tpm.patch to fix SEV-ES guest
    crash with TPM (bsc#1184801)
* Mon Apr 19 2021 glin@suse.com
  - Build ovmf-x86_64-smm against Ia32X64 to enable S3 support
    (bsc#1184938)
  - Update ovmf-add-exclude-shell-flag.patch to include Ia32X64
* Tue Apr 06 2021 glin@suse.com
  - Add ovmf-disable-brotli.patch to remove brotli since there is no
    real user and it requires extra effort to maintain the brotli
    submodule tarball
    + Drop ovmf-bsc1183713-fix-gcc10-brotli-errors.patch and
      brotli-v1.0.7-17-g666c328-c.tar.xz
* Fri Mar 26 2021 glin@suse.com
  - Add ovmf-bsc1183713-fix-gcc10-brotli-errors.patch to fix the
    gcc10 error from brotli (bsc#1183713)
* Thu Mar 11 2021 glin@suse.com
  - Update to edk2-stable202102
    * ArmVirtPkg: support extra pci root bridges (pxb)
    * SEV Encrypted Boot for Ovmf (remote attestation)
    * virtio-fs driver for OvmfPkg and ArmVirtPkg
    * Apply SEV-ES mitigations for encryption bit position and MMIO
    * Add Core CI support for StandaloneMmPkg
    * Update LZMA module to LZMA SDK latest version 19.00
    * Port open source JSON library (jansson)
    * add file buffering to the UEFI shell's COMP command
    * Shell: pathname / filename sorting
    * Extend support of peripheral x64 MM_STANDALONE drivers
    * BaseTools: Convert the Split tool from C language to Python
    * ArmPkg: Add Universal/Smbios
    * Move to Pip based Basetools python
    * Add support for use of FF-A callsw
  - Drop upstreamed patches:
    + ovmf-jscSLE-16075-SEV-ES-use-physical-address.patch
    + ovmf-bsc1180079-amd-sev-es-mitigation.patch
* Thu Jan 28 2021 glin@suse.com
  - Add ovmf-jscSLE-16075-SEV-ES-use-physical-address.patch as the
    follow-up patch for SEV-ES to fix the flash writing
    (jsc#SLE-16075)
  - Update 50-xen-hvm-x86_64.json to add "nvram-template" and change
    the firmware file to ovmf-x86_64-ms-4m.bin
    (bsc#1180050, bsc#1181264)
  - Refresh ovmf-bsc1180079-amd-sev-es-mitigation.patch
    + Use "git format-patch --no-renames" to generate the patch to
      avoid confusing quilt with the renamed files
* Mon Jan 11 2021 glin@suse.com
  - Add ovmf-bsc1180079-amd-sev-es-mitigation.patch to mitigate the
    potential AMD SEV-ES security issues (bsc#1180079)
  - Add the json descriptor for xen-hvm (bsc#1180050)
* Fri Nov 27 2020 glin@suse.com
  - Update to edk2-stable202011
    * MdeModulePkg/VariablePolicyLib: Fix runtime panic in
      ValidateSetVariable()
    * CryptoPkg: BaseCryptLib: Fix buffer double free in
      CryptPkcs7VerifyEku
    * Revert "SecurityPkg: Add RPMC Index to the RpmcLib"
    * MdeModulePkg/LzmaCustomDecompressLib: catch 4GB+ uncompressed
      buffer sizes (bsc#1183578, CVE-2021-28211)
    * MdeModulePkg/Core/Dxe: limit FwVol encapsulation section
      recursion (bsc#1183579, CVE-2021-28210)
    * MdeModulePkg/Core/Dxe: assert SectionInstance invariant in
      FindChildNode() (bsc#1183579, CVE-2021-28210)
    * SecurityPkg: Add RPMC Index to the RpmcLib
    * BaseTools: Resolve index out of range errors.
    * UefiCpuPkg/PiSmmCpuDxeSmm: Reflect page table depth with page
      table address
    * UefiCpuPkg/PiSmmCpuDxeSmm: Correct the Cr3 typo
    * CryptoPkg: Make the MD5 disable as default for security
    * NetworkPkg/Defines: Make iSCSI disable as default
    * OvmfPkg/OvmfXen.dsc: Enable MD5 while enable iSCSI
    * OvmfPkg/OvmfPkgX64.dsc: Enable MD5 while enable iSCSI
    * OvmfPkg/OvmfPkgIa32X64.dsc: Enable MD5 while enable iSCSI
    * OvmfPkg/OvmfPkgIa32.dsc: Enable MD5 while enable iSCSI
    * ArmVirtPkg/ArmVirtQemuKernel.dsc: Enable MD5 while enable iSCSI
    * ArmVirtPkg/ArmVirtQemu.dsc: Enable MD5 while enable iSCSI
    * NetworkPkg: Enable MD5 while enable iSCSI
    * CryptoPkg/dsc: Enable MD5 when CRYPTO_SERVICES enable MD5
    * SecurityPkg/Hash2DxeCrypto: Remove SHA1 support
    * SecurityPkg/Hash2DxeCrypto: Remove MD5 support
    * MdeModulePkg: Drop VarLock from RuntimeDxe variable driver
    * MdeModulePkg: Change TCG MOR variables to use VariablePolicy
    * SecurityPkg: Allow VariablePolicy state to delete authenticated
      variables
    * MdeModulePkg: Allow VariablePolicy state to delete protected
      variables
    * MdeModulePkg: Connect VariablePolicy business logic to
      VariableServices
    * ArmVirtPkg: Add VariablePolicy engine to ArmVirtPkg platform
    * OvmfPkg: Add VariablePolicy engine to OvmfPkg platform
    * BaseTools: Fix BrotliCompress tool issue
    * MdePkg/BaseRngLibDxe: Add DXE_RUNTIME_DRIVER class to RngLib
    * MdeModulePkg DisplayEngineDxe: Correct the local variable name.
    * MdeModulePkg/AtaAtapiPassThru: Trace ATA packets
    * MdeModulePkg/AtaAtapiPassThru: Restart failed packets
    * MdeModulePkg/AtaAtapiPassThru: Add SATA error recovery flow
    * MdeModulePkg/AtaAtapiPassThru: Check IS to check for command
      completion
    * MdeModulePkg/DriverSampleDxe: Add HII sample options
    * MdeModulePkg/Library: Revise HiiLib to check REST_STYLE
    * BaseTools/VfrCompile: VFR compiler supports REST_STYLE in HII
      option
    * MdePkg: Add GUID for REST Style Formset
    * UefiCpuPkg/MpInitLib: For SEV-ES guest, set stack based on
      processor number
    * UefiCpuPkg, OvmfPkg: Disable interrupts when using the GHCB
    * OvmfPkg/QemuFlashFvbServicesRuntimeDxe: Fix erase blocks for
      SEV-ES
    * OvmfPkg/QemuFlashFvbServicesRuntimeDxe: Set the SwScratch valid
      bit
    * UefiCpuPkg/MpInitLib: Set the SW exit fields when performing
      VMGEXIT
    * OvmfPkg/VmgExitLib: Set the SwScratch valid bit for MMIO events
    * OvmfPkg/VmgExitLib: Set the SwScratch valid bit for IOIO events
    * OvmfPkg/VmgExitLib: Set the SW exit fields when performing
      VMGEXIT
    * OvmfPkg/VmgExitLib: Implement new VmgExitLib interfaces
    * UefiCpuPkg/VmgExitLib: Add interfaces to set/read GHCB
      ValidBitmap bits
    * MdePkg: Clean up GHCB field offsets and save area
    * BaseTools: Limit command line length.
    * BaseTools: Update report map file format
    * BaseTools: Add image type into generate map file
    * BaseTools: Incremental build issue for included ASI file's
      deletion.
    * MdeModulePkg/Core/Dxe: log memory base and length, after lib
      ctors again
    * BaseTools: Fix BaseTools nmake cleanall hang issue
    * ShellPkg:Fix bug in FileBuffer.c
    * BaseTools: Enable Module Scope Structure Pcd
    * MdeModulePkg/Gcd: Check memory allocation when initializing
      memory
    * BaseTools: Remove the dependency on the build intermediate file
    * DynamicTablesPkg: Add SSDT CMN-600 Table generator
    * MdePkg: Definitions for Extended Interrupt Flags
    * BaseTools: Update the FV Space Information to display decimal
      and Hex
    * MdePkg/Include: Definitions of EFI REST JSON Structure Protocol
    * MdeModulePkg/XhciDxe: Retry device slot init on failure
    * MdeModulePkg/AcpiTableDxe: use pool allocation for RSDP if
      possible
    * MdeModulePkg/AcpiTableDxe: use pool allocation for RSDT/XSDT
      if possible
    * MdeModulePkg/AcpiTableDxe: use pool allocations when possible
    * MdePkg: Fix SmBios.h PROCESSOR_CHARACTERISTIC_FLAGS to be
      UINT16
    * MdePkg: Update SmBios.h to add SMBIOS 3.4.0 ARM64 SoC ID field
    * ShellPkg: Add ARM64 SoC ID to Processor Characteristics in
      smbiosview
    * ShellPkg: Fix smbiosview string definition name for "boot from CD"
    * ShellPkg: Fix a couple of typos in smbiosview
    * MdeModulePkg/Core: Support standalone MM in FV2 protocol
      GetNextFile().
    * MdePkg/SystemResourceTable.h: Add vendor range values
    * MdePkg/Include: Fix wrong spelling in http11.h
    * BaseTools/Ecc: Fix ECC check MetaFile Copyright information
      issue
    * MdeModulePkg/XhciDxe: Error handle for USB slot initialization
      failure
    * ArmPkg/ArmMmuLib: Explicitly cast function pointer argument
    * ArmPkg/ArmMmuLib: Explicitly cast UINT32 data conversions
    * DynamicTablesPkg: SsdtSerialPortFixupLib fix ECC errors
    * DynamicTablesPkg: AmlEncoding change debug macro
    * DynamicTablesPkg: AmlLib\AmlDbgPrint fix ECC error
    * DynamicTablesPkg: AmlLib fix ECC errors
    * DynamicTablesPkg: AcpiSratLibArm fix ECC error
    * DynamicTablesPkg: SsdtSerialPortLibArm fix ECC error
    * DynamicTablesPkg: Fix order of assert checks
    * CryptoPkg/BaseCryptLib: fix NULL dereference (CVE-2019-14584)
      (bsc#1177789)
    * Revert "MdeModulePkg/PartitionDxe: Fix the incorrect LBA size
      in child ..."
    * UefiCpuPkg/MpInitLib: Reduce reset vector memory pressure
    * SecurityPkg/Tcg2PhysicalPresenceLib: Fix incorrect TCG VER
      comparision
    * CryptoPkg: BaseCryptLib: Add unit tests (Host and Shell based)
    * ArmVirtPkg: Add kvmtool to package dictionary
    * ArmVirtPkg: Package dependency for MC146818 RTC
    * ArmVirtPkg: Support for kvmtool virtual platform
    * ArmVirtPkg: Add Kvmtool Platform Pei Lib
    * ArmVirtPkg: 16550 UART Platform hook library
    * ArmVirtPkg: GUID Hob for 16550 UART base address
    * MdeModulePkg: Fix constructor invocation ordering
    * ArmVirtPkg: Add Kvmtool NOR flash lib
    * ArmVirtPkg: kvmtool platform memory map
    * ArmVirtPkg: Add kvmtool platform driver
    * ArmPlatformPkg: Dynamic flash variable base
    * ArmVirtPkg: Add Kvmtool RTC Fdt Client Library
    * PcAtChipsetPkg: Add MMIO Support to RTC driver
    * MdePkg/Include: Add HTTP definitions
    * BaseMemoryLibSse2: Take advantage of write combining buffers
    * RedfishPkg/Include: PCD definitions of Host Interface EFI
      device path
    * MdePkg/Include: Definitions of EFI REST EX Protocol
    * ShellPkg/SmbiosView: Add DDR5 support
    * MdePkg/BaseLib: Fix invalid memory access in AArch64
      SetJump/LongJump
    * BaseTools: Add EDKII_DSC_PLATFORM_GUID MACRO
    * MdeModulePkg: Remove code wrapped by
      DISABLE_NEW_DEPRECATED_INTERFACES
    * MdePkg: Remove code wrapped by
      DISABLE_NEW_DEPRECATED_INTERFACES
    * BaseTools Build_Rule: Add the missing ASM16_FLAGS for ASM16
      source file
    * BaseTools: Move C tool flags before the common flags
    * BaseTools: Copy PACKED definition from MdePkg Base.h
    * MdeModulePkg/Core/Dxe: expose SP and CRYPTO capabilities in
      UEFI memmap
    * MdePkg/UefiSpec: separate page access bitmask from SP and
      CRYPTO caps
    * MdePkg: SMBIOS 3.4.0 Update "adding DDR5 definitions".
    * NetworkPkg: Fix possible infinite loop in HTTP msg body
      parser
    * NetworkPkg/HttpDxe: TlsChildHandle is not cleared when reset
    * NetworkPkg: Add RngLib entry to .dsc file.
    * MdeModulePkg/HiiDatabase: Do not modify CONST string
    * OvmfPkg: enable HttpDynamicCommand
    * ArmVirtPkg: enable HttpDynamiCommand
    * ShellPkg/DynamicCommand: add HttpDynamicCommand
    * CryptoPkg/BaseCryptLib: add crypto algorithms needed by
      variable protection
    * BaseTools: Add RISCV64 binding
    * MdeModulePkg/XhciDxe: Fix Broken Timeouts
    * BaseTools: Set section alignment as zero if its type is Auto
    * BaseTools: Remove CanSkip calling for incremental build
    * BaseTools: Normalize case of pathname when evaluating Macros.
    * BaseTools: Clean the ffs folder before generating files in it
    * BaseTools: Add included files to deps_target file.
    * OvmfPkg/README: HTTPS Boot: describe host-side TLS cipher
      suites forwarding
    * MdeModulePkg/NonDiscoverablePciDeviceDxe: Add NULL pointer
      check
    * CryptoPkg: OpensslLib: Use RngLib to generate entropy in
      rand_pool
    * ArmVirtPkg: Add RngLib based on TimerLib for CryptoPkg
    * OvmfPkg: Add RngLib based on TimerLib for Crypto
    * MdePkg: BaseRngLibDxe: Add RngLib that uses RngDxe
    * MdePkg: TimerRngLib: Added RngLib that uses TimerLib
    * MdePkg: Correct EFI_BLOCK_IO_PROTOCOL_REVISION3 value
    * OvmfPkg: drop redundant VendorID check in VirtioMmioDeviceLib
    * MdePkg: PciExpressLib support variable size MMCONF
    * UefiPayloadPkg: Store the size of the MMCONF window
    * SecurityPkg/PeiTpmMeasurementLib: remove
      gEfiTpmDeviceSelectedGuid
    * BaseTools: update IASL extdep to more modern version
    * UefiCpuPkg/RegisterCpuFeaturesLib: Support MpServices2 only
      case.
    * BaseTools: Sort the Pcd set when generating the VPD binary
    * SecurityPkg/DxeImageVerificationLib: Disable SHA1 base on MACRO
  - Refresh ovmf-add-exclude-shell-flag.patch
  - Drop upstreamed ovmf-jscSLE-16075-SEV-ES-fixes.patch
* Thu Nov 26 2020 glin@suse.com
  - Cosmetic changes in the spec file suggested by spec-cleaner
* Tue Nov 17 2020 glin@suse.com
  - Add ovmf-jscSLE-16075-SEV-ES-fixes.patch to merge upstream SEV-ES
    fixes (jsc#SLE-16075)
* Thu Nov 05 2020 glin@suse.com
  - Update the json descriptors to address all x86_64 firmware files
    (jsc#SLE-15915)
  - Remove the executable bit from brotli source code files
* Fri Oct 30 2020 glin@suse.com
  - Add _constraints to request at least 6GB disk (bsc#1178244)
  - Remove the build files after finishing the build to reduce the
    disk usage (bsc#1178244)
* Mon Sep 07 2020 glin@suse.com
  - Update to edk2-stable202008
    + MdeModulePkg/Library: add PEIM and SEC module type to
      TpmMeasurementLibNull
    + SecurityPkg/DxeImageVerificationLib: catch alignment overflow
      (CVE-2019-14562) (bsc#1175476)
    + OvmfPkg/CpuHotplugSmm: fix CPU hotplug race before and after
      SMI broadcast
    + SecurityPkg/Tcg2: handle PRE HASH and LOG ONLY
    + MdePkg/Include: Add missing definition of SMBIOS type 42h in
      SmBios.h
    + MdePkg: UefiFileHandleLib: fix buffer overrun in
      FileHandleReadLine()
    + OvmfPkg: Add SEV-ES support
    + MdeModulePkg/PartitionDxe: Fix the incorrect LBA size in child
      hander
    + MdeModulePkg/PartitionDxe: Revert changes for the special MBR
    + MdeModulePkg/PartitionDxe: Put the UDF check ahead of MBR
    + ShellPkg: smbiosview - Change some type 17 field values format
    + CryptoPkg/OpensslLib: Upgrade OpenSSL to 1.1.1g
    + MdeModulePkg: Upon BootOption failure, Destroy RamDisk memory
      before RSC.
    + OvmfPkg/LsiScsiDxe: Add support for LSI 53C895A
    + MdeModulePkg/DisplayEngine: Add Debug message to show mismatch
      menu info
    + Add New Memory Attributes
    + MdeModulePkg/PartitionDxe: Add already start check for child
      hanldes
    + MdeModulePkg/PartitionDxe: Skip the MBR that add for CD-ROM
    + MdeModulePkg/PartitionDxe: Correct the MBR last block value
    + MdeModulePkg/Variable/RuntimeDxe: Fix return status from
      Reclaim()
    + SecurityPkg/Tcg2Pei: Add missing PCRIndex in FvBlob event.
    + SecurityPkg/Tcg2Dxe: Add PcdTcgPfpMeasurementRevision in
      SpecId event.
    + CryptoPkg/BaseCryptLib: Add MARCO to disable the deprecated
      SHA1 and MD5
    + ArmVirtPkg/NorFlashQemuLib: disable NOR flash DT nodes upon
      discovery
    + UefiCpuPkg/SecCore: Add pre-memory AP vector
    + OvmfPkg: End timer interrupt later to avoid stack overflow
      under load
    + ArmPkg/PlatformBootManagerLib: regenerate boot options on
      boot failure
    + MdeModulePkg/StatusCodeHandler: do not output \n\r for string
      data
    + Revert "OvmfPkg: use generic QEMU image loader for secure boot
      enabled ..."
    + ArmVirtPkg/PrePi: use standard PeCoff routines for
      self-relocation
    + ArmVirtPkg: add FDF rule for self-relocating PrePi
    + ArmPkg/ArmExceptionLib: use static buffer for sp_el0
    + MdeModulePkg/SetupBrowserDxe: Do not reconnect driver with
      form-update
    + OvmfPkg/X86QemuLoadImageLib: handle EFI_ACCESS_DENIED from
      LoadImage()
    + OvmfPkg/Tcg2ConfigPei: generalize TPM2-only file-top comments
    + ArmPkg: only attempt buildin MmCommunicationDxe for AArch64
    + ArmPkg/PlatformBootManagerLib: don't connect all devices on
      each boot
    + ArmPkg/PlatformBootManagerLib: hide UEFI Shell as a regular
      boot option
    + MdeModulePkg/BootManagerUiLib: show inactive boot options
    + ArmPkg/PlatformBootManagerLib: fall back to the UiApp on
      boot failure
    + ArmPkg/PlatformBootManagerLib: register 's' as UEFI Shell
      hotkey
    + ArmPkg/PlatformBootManagerLib: connect non-discoverable USB
      hosts
    + ArmPkg/ArmSvcLib: prevent speculative execution beyond svc
    + ArmPkg/PlatformBootManagerLib: reject 'default' parity and
      stop bit count
    + ArmPkg/PlatformBootManagerLib: use static assertion for
      console type
  - Update openssl to 1.1.1g
  - Drop openssl-fix-syntax-error.patch
    + The new openssl already includes the fix.
  - Refresh ovmf-pie.patch and ovmf-disable-ia32-firmware-piepic.patch
* Wed Jul 22 2020 kai.liu@suse.com
  - Fixed TPM support. TPM2_ENABLE & TPM2_CONFIG_ENABLE build flags
    were changed to TPM_* since upstream commit 07952a962a40.
* Tue Jun 09 2020 glin@suse.com
  - Use the reduced source tarballs since ovmf only needs a portion
    of the code.
    + brotli-v1.0.7-17-g666c328.tar.xz ->
      brotli-v1.0.7-17-g666c328-c.tar.xz
    - We only need the "c" directory, not the whole tarball.
    + oniguruma-v6.9.4_mark1.tar.xz ->
      oniguruma-v6.9.4_mark1-src.tar.xz
    - We only need the "src" directory, not the whole tarball.
* Fri Jun 05 2020 glin@suse.com
  - Update to edk2-stable202005
    + RegularExpressionDxe: Use submodule way to access third party
      Oniguruma
    + BrotliCustomDecompressLib: Use submodule way to access third
      party brotli
    + BaseTools: Use submodule way to access third party brotli
    + RISC-V architecture on EDK2
    + Disabling safe string constraint assertions
    + ArmVirtPkg Implement support for TPM2 measured boot
    + OVMF Implement support for Linux v5.7+ initrd and mixed mode
      loading
    + OVMF Use loadimage/startimage for loading the kernel passed
      via the QEMU command line
    + OVMF Support booting from Fusion-MPT SCSI controllers
    + OVMF Support booting from VMware PVSCSI controllers
    + OVMF RFE: VCPU hotplug with SMM
    + OVMF PEI phase variable driver / MemoryTypeInfo tracking
    + ArmVirtPkg, OvmfPkg: Pass parameter from QEMU to control PXE
      IPv4/v6 boot
    + Remove deprecate APIs in BaseCryptLib
    + Add UEFI 2.8/2.8a definition in MdePkg
    + Add PI1.7/PI1.7a definition into MdePkg
    + BaseCryptoLib MD4, ARC4, TDES, AES ECB MODE, HMAC MD5, HMAC
      SHA1 API have been deprecated.
    + SecurityPkg Tcg2PhysicalPresenceLib library class removes two
      macros TCG2_BIOS_TPM_MANAGEMENT_FLAG_DEFAULT and
      TCG2_BIOS_STORAGE_MANAGEMENT_FLAG_DEFAULT.
  - Add 2 tarballs from the submodules of edk2:
    + brotli-v1.0.7-17-g666c328.tar.xz
    + oniguruma-v6.9.4_mark1.tar.xz
  - Refresh patches:
    + ovmf-add-exclude-shell-flag.patch
    + ovmf-gdb-symbols.patch
  - Drop upstream patch: ovmf-bsc1163927-fix-ping-and-ip6dxe.patch
  - Drop ovmf-bsc1171643-workaround-outline-atomics.patch since
    upstream fixed it in another way.
* Thu May 21 2020 glin@suse.com
  - Add ovmf-bsc1171643-workaround-outline-atomics.patch to disable
    gcc10 outline-atomics in AArch64 (bsc#1171643)
* Mon Apr 20 2020 glin@suse.com
  - Build all non-native firmware files on x86_64 and aarch64 with
    cross-compilers (bsc#1159134)
    + Exclude i586 and armv7hl due to the availability of
      cross-compilers
    + Move some bash functions to ovmf-build-funcs.sh
  - Clean up PKG_TO_REMOVE
    + Only EmulatorPkg still exists.
* Mon Apr 06 2020 glin@suse.com
  - Add ovmf-bsc1163927-fix-ping-and-ip6dxe.patch to fix crash and
    hang in ShellPkg and Ip6Dxe (bsc#1163927, CVE-2019-14559)
* Fri Mar 06 2020 glin@suse.com
  - Update to edk2-stable202002
    + UefiCpuPkg/MpInitLib: Skip reading PlatformId on AMD processors.
    + BaseTools: Remove invalid leading space before !INCLUDE in Makefile
    + OvmfPkg/QemuVideoDxe: unbreak "secondary-vga" and "bochs-display" support
    + NetworkPkg/ArpDxe: Recycle invalid ARP packets (CVE-2019-14559)
    + ShellPkg: acpiview: Prevent infinite loop if structure length is 0
    + CryptoPkg/BaseHashApiLib: Change PcdHashApiLibPolicy type to FixedAtBuild
    + CryptoPkg/BaseHashApiLib: Align BaseHashApiLib with TPM 2.0 Implementation
    + MdeModulePkg: Make retval in UninstallMultipleProtocol follow Spec
    + SecurityPkg/DxeImageVerificationLib: change IsCertHashFoundInDatabase
      name (CVE-2019-14575)
    + SecurityPkg/DxeImageVerificationLib: Differentiate error/search
      result (2) (CVE-2019-14575)
    + SecurityPkg/DxeImageVerificationLib: plug Data leak in
      IsForbiddenByDbx() (CVE-2019-14575)
    + SecurityPkg/DxeImageVerificationLib: tighten default result
      (CVE-2019-14575)
    + SecurityPkg/DxeImageVerificationLib: Differentiate error/search
      result (1) (CVE-2019-14575)
    + SecurityPkg/DxeImageVerificationLib: refactor db/dbx fetching
      code (CVE-2019-14575)
    + SecurityPkg/DxeImageVerificationLib: avoid bypass in fetching
      dbx (CVE-2019-14575)
    + SecurityPkg/DxeImageVerificationLib: fix wrong fetch dbx in
      IsAllowedByDb (CVE-2019-14575)
    + SecurityPkg/DxeImageVerificationLib: reject
      CertStack.CertNumber==0 per DBX (CVE-2019-14575)
    + SecurityPkg/DxeImageVerificationLib: Fix memory leaks
      (CVE-2019-14575)
    + NetworkPkg/Ip4Dxe: Check the received package length
      (CVE-2019-14559).
    + ShellPkg: acpiview: Validate ACPI table 'Length' field
    + ShellPkg: acpiview: Remove duplicate ACPI structure size definitions
    + UefiCpuPkg RegisterCpuFeaturesLib: Match data type and format specifier
    + MdeModulePkg/SdMmcPciHcDxe: Fix double PciIo Unmap in TRB creation
      (CVE-2019-14587)
    + MdeModulePkg/DisplayEngine: Zero memory before free (CVE-2019-14558)
    + MdeModulePkg/String.c: Zero memory before free (CVE-2019-14558)
    + MdeModulePkg/HiiDB: Remove configuration table when it's freed
      (CVE-2019-14586)
    + MdePkg: Remove FIT table industry standard header file.
    + UefiCpuPkg: Remove FIT based microcode shadow logic from MpInitLib.
    + UefiCpuPkg/CpuFeature: Introduce First to indicate 1st unit.
    + UefiCpuPkg/RegisterCpuFeaturesLib: Rename [Before|After]FeatureBitMask
    + UefiCpuPkg/RegisterCpuFeaturesLib: Delete CPU_FEATURE_[BEFORE|AFTER]
    + MdePkg: Add PCCT table signature definition
    + BaseTools: Fixed build failure when using python38
    + BaseTools:fix Ecc tool issue for check StructPcd
    + BaseTools: Remove caret in NASM_INC macro
    + BaseTools: Rationalise makefile generation
    + MdePkg: Add PCI Express 5.0 Header File
    + MdePkg: Disable EBC for unit tests in MdePkg.dsc
    + MdePkg/SmBios.h: Add two additional DWORD for smbios 3.3.0 type17
    + UefiCpuPkg/MpInitLib: Not pass microcode info between archs in CPU_MP_DATA
    + Revert UefiCpuPkg/MpInitLib: Relocate microcode patch fields in CPU_MP_DATA
    + ShellPkg: acpiview: Validate global pointers before use
    + ShellPkg: acpiview: Validate System Locality count
    + ShellPkg: acpiview: Set ItemPtr to NULL for unprocessed table fields
    + ShellPkg: Document UpdateArgcArgv returns EFI_INVALID_PARAMETER
    + ShellPkg: Document ParseCommandLineToArgs returns EFI_INVALID_PARAMETER
    + ShellPkg/UefiShellAcpiViewCommandLib: Fix FADT Parser
    + SecurityPkg: Fix incorrect return value when File is NULL
    + BaseTools: Fixed a Incremental build issue
    + CryptoPkg/CryptoPkg.dsc: Add build of Crypto libraries/modules
    + CryptoPkg/Library: Add BaseCryptLibOnProtocolPpi instances
    + CryptoPkg/Driver: Add Crypto PEIM, DXE, and SMM modules
    + CryptoPkg: Add EDK II Crypto Protocols/PPIs/PCDs
    + CryptoPkg/BaseCryptLib: Add X509ConstructCertificateStackV().
    + MdeModulePkg/PiDxeS3BootScriptLib: Fix potential numeric truncation
      (CVE-2019-14563)
    + MdeModulePkg/Capsule: Remove RT restriction in UpdateCapsule service.
    + SecurityPkg/TcgPhysicalPresenceLib: Replace the ASSERT with error code
    + BaseTools/PcdValueCommon: Fix 64-bit host compiler error
    + BaseTools/Build: Do not use Common.lib in Structured PCD app
    + MdeModulePkg/BaseSerialPortLib16550: Fix Serial Port Ready
    + BaseTools: Script for converting .aml to .hex
    + MdeModulePkg: Perform test only if not ignore memory test
    + UefiCpuPkg/MpInitLib: Always get CPUID & PlatformID in MicrocodeDetect()
    + OvmfPkg/PlatformPei: detect SMRAM at default SMBASE (for real)
    + OvmfPkg: introduce PcdCsmEnable feature flag
    + OvmfPkg/SmmAccess: close and lock SMRAM at default SMBASE
    + OvmfPkg/SEV: don't manage the lifecycle of the SMRAM at the default SMBASE
    + OvmfPkg/PlatformPei: reserve the SMRAM at the default SMBASE, if it exists
    + OvmfPkg/PlatformPei: assert there's no permanent PEI RAM at default SMBASE
    + OvmfPkg/PlatformPei: detect SMRAM at default SMBASE (skeleton)
    + OvmfPkg/PlatformPei: factor out Q35BoardVerification()
    + OvmfPkg/IndustryStandard: add MCH_DEFAULT_SMBASE* register macros
    + OvmfPkg/IndustryStandard: increase vertical whitespace in Q35 macro defs
    + OvmfPkg: introduce PcdQ35SmramAtDefaultSmbase
    + CryptoPkg/BaseCryptLibNull: Add missing HkdfSha256ExtractAndExpand()
    + BaseTools/DscBuildData: Fix PCD autogen include file conflict
    + CryptoPkg/BaseHashApiLib: Implement Unified Hash Calculation API
    + CryptoPkg: Add CryptoPkg Token Space GUID
    + BaseTools/Conf/gitattributes: fix "--function-context" for C source code
    + SecurityPkg/DxeImageVerificationHandler: fix "defer" vs. "deny" policies
    + SecurityPkg/DxeImageVerificationHandler: fix imgexec info on memalloc fail
    + SecurityPkg/DxeImageVerificationHandler: fix retval for (FileBuffer==NULL)
    + SecurityPkg/DxeImageVerificationHandler: eliminate "Status" variable
    + SecurityPkg/DxeImageVerificationHandler: unnest AddImageExeInfo() call
    + SecurityPkg/DxeImageVerificationHandler: remove superfluous Status setting
    + SecurityPkg/DxeImageVerificationHandler: fix retval on memalloc failure
    + SecurityPkg/DxeImageVerificationHandler: narrow down PE/COFF hash status
    + SecurityPkg/DxeImageVerificationHandler: keep PE/COFF info status internal
    + SecurityPkg/DxeImageVerificationHandler: remove "else" after return/break
    + SecurityPkg/DxeImageVerificationHandler: simplify "VerifyStatus"
    + OvmfPkg/PlatformPei: rewrite MaxCpuCountInitialization() for CPU hotplug
    + OvmfPkg/IndustryStandard: define macros for QEMU's CPU hotplug registers
    + OvmfPkg/OvmfXen.dsc: remove PcdCpu* dynamic defaults
    + CryptoPkg/BaseCryptLib: remove HmacXxxGetContextSize interface
    + CryptoPkg/BaseCryptLib: replace HmacXxxInit API with HmacXxxSetKey
    + BaseTools: Fixed a incremental build bug
    + UefiCpuPkg/MpInitLib: Fix possible uninitialized 'InitFlag' field
    + FmdDevicePkg/FmpDxe: Support Fmp Capsule Dependency.
    + MdeModulePkg/CapsuleApp: Enhance CapsuleApp for Fmp Capsule Dependency
    + MdePkg: Add definition for Fmp Capsule Dependency.
    + MdeModulePkg/SdMmcPciHcDxe: Add retries for async commands
    + MdeModulePkg/SdMmcPciHcDxe: Add retries for sync commands
    + MdeModulePkg/SdMmcPciHcDxe: Refactor command error detection
    + MdeModulePkg/SdMmcPciHcDxe: Fix DAT lane SW reset
    + UefiCpuPkg/PiSmmCpuDxeSmm: fix 2M->4K page splitting regression for PDEs
    + MdeModulePkg/Variable: Fix VarErrorFlag RT cache offset calculation
    + MdePkg Base.h: Use correct style to check the defined macro
    + ShellPkg: acpiview: Update SRAT parser to ACPI 6.3
    + BaseTools/Capsule: Add capsule dependency support
    + MdeModulePkg/Setup: Update opcode number variable type to UINTN
    + ArmPlatformPkg/PrePeiCore: enable VFP at startup
    + ArmPkg/ArmSmcPsciResetSystemLib: remove EnterS3WithImmediateWake ()
    + NetworkPkg/HttpDxe: fix 32-bit truncation in HTTPS download
    + MdeModulePkg/UefiBootManagerLib: log reserved mem allocation failure
    + BaseTools/Scripts/PatchCheck: Address false error conditions
    + BaseTools:Fix GenFds issue for BuildOption replace GenFdsOption
    + BaseTools:Change the case rules for ECC check pointer names
    + MdeModulePkg/SdMmcPciHcDxe: Fix unknown doxygen tag error
    + ArmVirtPkg: remove EnterS3WithImmediateWake () from ResetSystemLib
    + OvmfPkg: remove EnterS3WithImmediateWake () from ResetSystemLib
    + UefiPayloadPkg: remove EnterS3WithImmediateWake () from ResetSystemLib
    + PcAtChipsetPkg: remove EnterS3WithImmediateWake () from ResetSystemLib
    + MdeModulePkg: remove EnterS3WithImmediateWake () from ResetSystemLib
    + UefiCpuPkg: Shadow microcode patch according to FIT microcode entry.
    + MdePkg: Add header file for Firmware Interface Table specification.
    + UefiCpuPkg/CpuCommonFeaturesLib: SMXE bit of CR4 should set
    + MdePkg BaseLib.h: Update IA32_CR4 strut to include all public fields
    + MdePkg: Do not use CreateEventEx unless required
    + UefiCpuPkg/PiSmmCpuDxeSmm: Add missed comments for parameter.
    + OvmfPkg: use HII type PCDs for TPM2 config related variables
    + OvmfPkg: reorganize TPM2 support in DSC/FDF files
    + BaseTools/PatchCheck.py: Ignore CR and LF characters in subject length
    + MdeModulePkg: Add EDK2 Platform Boot Manager Protocol
    + CryptoPkg: Support for SHA384 & SHA512 RSA signing schemes
    + UefiCpuPkg: Always load microcode patch on AP processor.
    + UefiCpuPkg: Remove alignment check when calculate microcode size.
    + Revert "UefiCpuPkg/PiSmmCpuDxeSmm: Fix buffer overflow issue."
    + MdeModulePkg/UsbMouseAbsolutePointer: Fix endpoint selection
    + MdeModulePkg/Usb/UsbMouse: Fix endpoint selection
    + MdeModulePkg/Usb/EfiKey: Fix endpoint selection
    + SecurityPkg/Tcg2Pei: Add TCG PFP 105 support.
    + MdeModulePkg/Smbios: Add TCG PFP rev 105 support.
    + MdeModulePkg/dec: add PcdTcgPfpMeasurementRevision PCD
    + MdeModulePkg/Smbios: Done measure Smbios multiple times.
    + SecurityPkg/Tcg2Dxe: Add Tcg2Dxe to support 800-155 event.
    + SecurityPkg/Guid: Add TCG 800-155 event GUID definition.
    + MdeModulePkg/SdMmcPciHcDxe: Add function to start SD clock
    + MdeModulePkg/SdMmcPciHcDxe: Hook SwitchClockFreq after SD clock start
    + UefiCpuPkg/PiSmmCpuDxeSmm: Pre-allocate PROCEDURE_TOKEN buffer
    + UefiPayloadPkg/BootManager: Add PS2 keyboard support
    + UefiCpuPkg/MpInitLib: Remove redundant microcode fields in CPU_MP_DATA
    + UefiCpuPkg/MpInitLib: Relocate microcode patch fields in CPU_MP_DATA
    + UefiCpuPkg/MpInitLib: Produce EDKII microcode patch HOB
    + UefiCpuPkg: Add definitions for EDKII microcode patch HOB
    + UefiCpuPkg/MpInitLib: Reduce the size when loading microcode patches
    + UefiCpuPkg/MpInitLib: Collect processors' CPUID & Platform ID info
    + BaseTools/Scripts: Add sendemail.transferEncoding to SetupGit.py
    + UefiCpuPkg/PiSmmCpuDxeSmm: Fix buffer overflow issue.
    + UefiCpuPkg/PiSmmCpuDxeSmm: Remove dependence between APs
    + edksetup.bat stuck on unicode locale Windows
    + MdePkg/Tcg: Add new definition in TCG PFP spec.
    + MdePkg: Use __builtin_offset with CLANGPDB toolchain
    + MdePkg PciExpress21: PCI_REG_PCIE_DEVICE_CONTROL2 struct has 17 bits
    + ShellPkg/ShellProtocol: Return error code while fail parsing cmd-line
    + MdePkg/Spdm: fix Nonce structure error.
    + BaseTools: Resolve a issue of Incremental build
    + Maintainers.txt: Update email address and role
    + BaseTools:replaces the two offending quotes by ascii quotes
    + BaseTools: Fix build failure when multiple build targets given
    + MdePkg/Include: Add DCC and BCM2835 SPCR UART types
    + ArmPkg/MmCommunicationDxe: relay architected PI events to MM context
    + SecurityPkg/Tcg2Smm: Measure the table before patch.
    + BaseTools: Remove redundant binary cache file
    + BaseTools: Leverage compiler output to optimize binary cache
    + BaseTools: enhance the CacheCopyFile method arg names
    + BaseTools: store more complete output files in binary cache
    + BaseTools: Enhance Basetool for incremental build
    + BaseTools: Update build_rule.txt to generate dependent files.
    + BaseTools: Generate dependent files for ASL and ASM files
    + BaseTools: Add build option for dependency file generation
    + UefiCpuPkg/PiSmmCpuDxeSmm: Avoid allocate Token every time
    + BaseTools: Avoid "is" with a literal Python 3.8 warnings
    + ArmPkg: Dispatch deferred images after EndOfDxe
    + ShellPkg/UefiHandleParsingLib: Fix error allocate pool
    + ShellPkg/edit: typo "%d Lines Wrote"
    + ShellPkg: acpiview: IORT Spec Rev D updates
    + ShellPkg: acpiview: Add support for parsing FACS
    + MdeModulePkg: Add ARM/Aarch64 support which were missing
    + MdeModulePkg: LzmaCustomDecompressLib.inf don't support EBC anymore
    + BaseTools:Enhance the way to handling included dsc file
    + UefiCpuPkg/UefiCpuPkg.uni: Add missing strings for PCD
    + NetworkPkg/NetworkPkg.uni: Add missing strings for PCD
    + MdeModulePkg/MdeModulePkg.uni: Add missing strings for PCD
    + NetworkPkg: Fixes to static code analysis hits
    + CryptoPkg/OpensslLib.inf: list OpenSSL local header "ms/uplink.h"
    + CryptoPkg/OpensslLib: improve INF file consistency
    + MdeModulePkg/VariableSmmRuntimeDxe.inf: list local header "Variable.h"
  - Drop upstreamed fixes
    + ovmf-bsc1163927-fix-ip4dxe-and-arpdxe.patch
    + ovmf-bsc1163959-PiDxeS3BootScriptLib-fix-numeric-truncation.patch
    + ovmf-bsc1163969-fix-DxeImageVerificationHandler.patch
  - Refresh ovmf-gdb-symbols.patch
* Mon Feb 24 2020 glin@suse.com
  - Add ovmf-bsc1163969-fix-DxeImageVerificationHandler.patch to fix
    dbx signature check (bsc#1163969, CVE-2019-14575)
    + Also change the order of several patches to distinguish the
      openssl patch
  - Add ovmf-bsc1163927-fix-ip4dxe-and-arpdxe.patch to fix memory
    leakage in Ip4Dxe and ArpDxe (bsc#1163927, CVE-2019-14559)
* Tue Feb 18 2020 glin@suse.com
  - Add ovmf-bsc1163959-PiDxeS3BootScriptLib-fix-numeric-truncation.patch
    to fix the numeric truncation to avoid the potential memory
    corruption (bsc#1163959, CVE-2019-14563)
* Mon Feb 03 2020 glin@suse.com
  - Build the unified firmware with preloaded keys for backward
    compatibility (bsc#1159793)
* Fri Dec 20 2019 dmueller@suse.com
  - only build -aarch32 Cortex-A15 EFI on armv7hl
* Tue Dec 03 2019 glin@suse.com
  - Update to edk2-stable201911
    + SecurityPkg: Fix TPM2 ACPI measurement
    + MdeModulePkg: Enable variable runtime cache by default
    + OvmfPkg: Disable variable runtime cache
    + MdeModulePkg/Variable: Add RT GetVariable() cache support
    + CryptoPkg: Upgrade OpenSSL to 1.1.1d
    + MdePkg-UefiSpec.h: Add UEFI 2.8 new memory attributes
    + MdePkg/UefiFileHandleLib: Fix potential NULL dereference
    + NetworkPkg/HttpDxe: Set the HostName for the verification
      (CVE-2019-14553)
    + NetworkPkg/TlsDxe: Add the support of host validation to TlsDxe
      driver (CVE-2019-14553)
    + CryptoPkg/TlsLib: TlsSetVerifyHost: parse IP address literals
      as such (CVE-2019-14553)
    + CryptoPkg/TlsLib: Add the new API "TlsSetVerifyHost"
      (CVE-2019-14553)
    + MdePkg/Include/Protocol/Tls.h: Add the data type of
      EfiTlsVerifyHost (CVE-2019-14553)
    + MdeModulePkg/BdsDxe: Fix PlatformRecovery issue
    + NetworkPkg/SnpDxe: Add PCD to remove ExitBootServices event
      from SNP driver
    + MdeModulePkg: Update to support SmBios 3.3.0
    + UefiCpuPkg/MpInitLib: honor the platform's boot CPU count in AP
      detection
    + SecurityPkg/Tcg2: Add Support Laml, Lasa for TPM2 ACPI
    + OvmfPkg/PlatformDxe: fix EFI_HII_HANDLE parameters of internal
      functions
    + OvmfPkg/VirtioNetDxe: fix SignalEvent() call
    + OvmfPkg/XenBusDxe: fix UninstallMultipleProtocolInterfaces()
      call
    + NetworkPkg/Ip4Dxe: fix NetLibDestroyServiceChild() call
    + MdeModulePkg/ScsiDiskDxe: Support Storage Security Command
      Protocol
    + MdePkg: Implement SCSI commands for Security Protocol In/Out
    + MdeModulePkg/TerminalDxe: Enhance the arrow keys support
    + MdeModulePkg/UefiBootManager: Unload image on
      EFI_SECURITY_VIOLATION
    + MdeModulePkg/DxeCapsuleLibFmp: Unload image on
      EFI_SECURITY_VIOLATION
    + MdeModulePkg: Extend the support keyboard type of Terminal
      console
    + UefiCpuPkg/CpuExceptionHandlerLib: Fix split lock
    + UefiCpuPkg: Fix potential spinLock issue in SmmStartupThisAp
    + UefiCpuPkg/PiSmmCpu: Enable 5L paging only when phy addr line
      > 48
    + OvmfPkg/EnrollDefaultKeys: clean up Base64Decode() retval
      handling
    + ArmVirtPkg/PlatformBootManagerLib: unload image on
      EFI_SECURITY_VIOLATION
    + ShellPkg/ShellPkg.dsc AARCH64: enable stack protector
    + ArmVirtPkg/ArmVirtPrePiUniCoreRelocatable: revert to PIE
      linking
    + BaseTools/GenFw AARCH64: fix up GOT based relative relocations
    + ShellPkg/Pci.c: Update supported link speed to PCI5.0
    + PcAtChipsetPkg: add PcdRealTimeClockUpdateTimeout
    + UefiCpuPkg: Add PcdCpuSmmRestrictedMemoryAccess
    + ShellPkg/CommandLib: avoid NULL derefence and memory leak
    + MdePkg/DxeHstiLib: Added checks to improve error handling
    + BaseTools: Support more file types in build cache
    + UefiCpuPkg/SecCore: get AllSecPpiList after SecPlatformMain
  - Update openssl to 1.1.1d
    + Add openssl-fix-syntax-error.patch to fix a syntax error
  - Drop ovmf-bsc1153072-fix-invalid-https-cert.patch
    + Already upstreamed
* Fri Nov 08 2019 glin@suse.com
  - Use the same x86 4MB firmware names as the ones in the previous
    version (< stable201905) for backward compatibility
* Wed Nov 06 2019 glin@suse.com
  - Disable TLS for IA32(i586) to avoid exceeding the size limitation
    while using the tool chain from SLE15-SP2/openSUSE Leap 15.2
* Mon Nov 04 2019 glin@suse.com
  - Add ovmf-bsc1153072-fix-invalid-https-cert.patch to reject the
    invalid server certificates for HTTPS Boot
    (bsc#1153072, CVE-2019-14553)
* Thu Oct 17 2019 glin@suse.com
  - Add the firmware descriptors for QEMU
  - Tweak the install commands
* Tue Sep 03 2019 glin@suse.com
  - Update to edk2-stable201908
    + OvmfPkg: Introduce platform OvmfXen
    + OvmfPkg/ResetSystemLib: Add missing dependency on PciLib
    + MdeModulePkg DxeCore: Fix for missing Memory Attributes Table
      (MAT) update
    + BaseTools: Fixed issue of incorrect Module Unique Name
    + CryptoPkg/OpensslLib: Add missing header files in INF file
    + SecurityPkg/SecurityPkg.uni: Add missing strings for new PCDs
    + MdeModulePkg/DxeIplPeim: Initialize pointer PageMapLevel5Entry
    + MdeModulePkg/MdeModulePkg.dec: Remove gEfiDpcProtocolGuid
    + Readme.md: add submodule policy and clone commands
    + MdeModulePkg/DxeIplPeim: Relocate operation of
      PageMapLevel5Entry++
    + MdeModulePkg: Add missing header files in INF files
    + MdePkg: Add MmAccess and MmControl definition.
    + CryptoPkg/BaseCryptLib: Wrap OpenSSL HKDF algorithm
    + MdeModulePkg/DxeIpl: Create 5-level page table for long mode
    + MdeModulePkg/DxeIpl: Introduce PCD PcdUse5LevelPageTable
    + UefiCpuPkg/CpuDxe: Support parsing 5-level page table
    + UefiCpuPkg/MpInitLib: Enable 5-level paging for AP when BSP's
      enabled
    + OvmfPkg/PlatformPei: Change referenced MSR name.
    + UefiCpuPkg/PiSmmCpuDxeSmm: Add check for pointer Pml5Entry
    + SecurityPkg/SecurityPkg.dec: Remove trailing white space
    + MdeModulePkg/PiSmmCore: Use unique structure signatures
    + UefiCpuPkg/MpInitLib: don't shadow the microcode patch twice.
    + ShellPkg: improve acpiview
    + MdePkg: Add PI 1.5 SmramMemoryReserve HOB file
    + MdePkg/PciExpress21.h: Fix the PCI industry standard register
      defines
    + CryptoPkg/BaseCryptLib: Use cmp-operator for non-Boolean
      comparisons
    + ArmPkg: DebugPeCoffExtraActionLib: fix trivial comment typos
    + ArmPkg: DebugPeCoffExtraActionLib: debugger commands are not
      errors
    + UefiCpuPkg/RegisterCpuFeaturesLib: Start all processors
      simultaneously.
    + UefiCpuPkg: Add new EDKII_PEI_MP_SERVICES2_PPI
    + list module-internal header files in INF [Sources]
    + SecurityPkg: introduce the SM3 digest algorithm
    + BaseTools: Fix python3.8 SyntaxWarning
    + BaseTools: Add HOST_APPLICATION module type.
    + UefiCpuPkg/PiSmmCpu: Enable 5 level paging when CPU supports
    + MdePkg/BaseLib.h: Update IA32_CR4 structure for 5-level paging
    + UefiCpuPkg RegisterCpuFeaturesLib: Fix an ASSERTION issue
    + ArmPlatformPkg: Actually disable PL031 interrupts
    + UefiCpuPkg/PiSmmCpu: Change variable names and comments to follow
      SDM
    + OvmfPkg: use DxeTpmMeasurementLib if and only if TPM2_ENABLE
    + ArmPlatformPkg: Fix various typos
    + ArmPkg: Fix various typos
    + Remove IntelFrameworkPkg
    + Remove IntelFrameworkModulePkg
    + MdeModulePkg/BdsDxe: Use a pcd to control PlatformRecovery
    + MdeModulePkg: Add a pcd to set the OS indications bit
    + SecurityPkg: Remove DxeDeferImageLoadLib in DSC
    + BaseTools:Linux changes the way the latest version is judged
    + Fix indentation in edksetup.sh SetupPython3
    + MdeModulePkg/SdMmcHcDxe: Implement revision 3 of
      SdMmcOverrideProtocol
    + MdeModulePkg/SdMmcOverride: Add GetOperatingParam notify phase
    + MdeModulePkg/UfsPassThruDxe: Fix unaligned data transfer
      handling
    + ArmVirtPkg: handle NETWORK_TLS_ENABLE in ArmVirtQemu*
    + UefiCpuPkg/MpInitLib: MicrocodeDetect: Ensure checked range is
      valid
    + MdeModulePkg/UfsPassThruDxe: Refactor UFS device presence
      detection
    + PcAtChipsetPkg: Remove framework modules
    + SecurityPkg: add FvReportPei.inf in dsc for build validation
    + SecurityPkg/FvReportPei: implement a common FV verifier and
      reporter
    + SecurityPkg: add definitions for OBB verification
    + OvmfPkg: don't assign PCI BARs above 4GiB when CSM enabled
    + OvmfPkg: Don't build in QemuVideoDxe when we have CSM
    + OvmfPkg/LegacyBbs: Add boot entries for VirtIO and NVME
      devices
    + OvmfPkg/LegacyBios: set NumberBbsEntries to the size of
      BbsTable
    + SecurityPkg: Add missing instances for build only
    + BaseTools: Move Build Cache related function out of
      CreateAsBuiltInf
    + BaseTools: refine CreateAsBuiltInf function
    + BaseTools:Add DetectNotUsedItem.py to Edk2\BaseTools\Scripts
    + BaseTools:Add import in FvImageSection
    + MdeModulePkg/PeiMain: PeiAllocatePool: output NULL if HOB
      creation fails
    + MdePkg: Add Generic Initiator Affinity Structure definitions
      to SRAT
    + BaseTools:Introduce CopyFileOnChange() function to copy cache
      files
    + MdeModulePkg: Add missing instances for build only
    + SourceLevelDebugPkg: Add missing instances for build only
    + CryptoPkg: Add missing instance for build only
    + MdeModulePkg: Introduce EDKII_SERIAL_PORT_LIB_VENDOR_GUID
    + MdeModulePkg/GraphicsConsoleDxe: Initialize the output mode
    + MdeModulePkg/ConSplitterDxe: Optimize the
      ConSplitterTextOutSetMode
    + BaseTools: add script to configure local git options
    + BaseTools: add centralized location for git config files
    + OvmfPkg/QemuVideoDxe: Shouldn't assume system in VGA alias
      mode.
  - Refresh ovmf-gdb-symbols.patch
  - Enable NETWORK_TLS_ENABLE for AArch64
* Fri Jul 05 2019 glin@suse.com
  - Reset BootOrder after enrolling the default keys (boo#1140195)
* Mon Jun 17 2019 glin@suse.com
  - Update to edk2-stable201905
    + Update OpenSSL version to upcoming 1.1.1
    + Delete EdkCompatibilityPkg from edk2/master
    + Remove .S assembly code for IA32 and X64 arch
    + Replace BSD 2-Clause License with BSD + Patent Licence
    + Recovery PEI BlockIO support for ATA device
    + Add PCD to Enabled/Disabled IPv4/IPv6 PXE Support in NetworkPkg
    + Remove NetworkPkg/IpSecDxe
    + Add api to DebubLib to expose a print routine with VaList
      parameter
    + Introduce DebugPpi to save the image size with the debug
      message
    + ResetSystemLib Adds a new API ResetSystem
    + ResetUtilityLib Add a new API ResetSystemWithSubtype
    + Add support for get organization name to x509 in BaseCryptLib
    + Add support for checking x509 EKUs in BaseCryptLib
    + Add support for PKCS 1v2 RSAES-OAEP PKI encryption in
      BaseCryptLib
    + Remove ShellBinPkg from edk2/master
    + Enable multiple thread /MP option for MSVC compiler
    + Upstream the EnrollDefaultKeys application to OvmfPkg
    + Share code for BaseUefiDecompressLib in MdePkg and MdeModulePkg
    + Move network related components from MdeModulePkg to NetworkPkg
    + Move BeagleBoardPkg and Omap35xxPkg from edk2 to edk2-platforms
      repo
    + Move MinnowMax and Quark platform to edk2-platforms repo
    + Move OptionRomPkg into new Drivers directory edk2-platforms
      repo
    + Add ACPI6.3 definition
    + Remove Nt32Pkg from edk2/master
    + update ArmSoftFloatLib to latest upstream version (= 3e)
  - Update openssl to 1.1.1b
    + Add berkeley-softfloat-3-b64af41c3276f.tar.xz since arm7 needs
      the softfloat implementation for openssl 1.1.1b
  - Build the varstore templates with EnrollDefaultKeys.efi
    + Create the iso files for key enrollment
    - Add gen-key-enrollment-iso.sh to generate the iso file
    + Drop the non-upstream ovmf-embed-default-keys.patch
    - Also drop owner-guid-zero.h
    + Drop the MS keys and dbx since they are already in
      EnrollDefaultKeys.efi: MicCorKEKCA2011_2011-06-24.crt,
      MicCorUEFCA2011_2011-06-27.crt, MicWinProPCA2011_2011-10-19.crt,
      and dbxupdate.zip
    - Also drop the related script strip_authinfo.pl
    + Add ovmf-set-fixed-enroll-time.patch to set the fixed enrolling
      time to make the varstore template reproducible
    + Require qemu 3.0.0 for fw_cfg
  - Update the build flags for network functions
    + For x86_64, only enable TLS for the 4MB image since the code
      size exceeds the boundary of 2MB image
  - Refresh patches:
    + ovmf-add-exclude-shell-flag.patch
    + ovmf-disable-ia32-firmware-piepic.patch
    + ovmf-pie.patch
  - Drop the requirement of xxd
  - Update README
  - Update the License tag to BSD-2-Clause-Patent
* Mon May 06 2019 guillaume.gardet@opensuse.org
  - Build SecureBoot firmwares for aarch64
* Wed Mar 20 2019 guillaume.gardet@opensuse.org
  - Enable debug for aarch32
  - Add aavmf-aarch32-code.bin and aavmf-aarch32-vars.bin files
* Tue Mar 12 2019 glin@suse.com
  - Update to 2019+git1552059899.89910a39dcfd (edk2-stable201903)
    + MdeModulePkg/HiiImage: Fix stack overflow when corrupted BMP
      is parsed (bsc#1128503, CVE-2018-12181)
    + MdeModulePkg/HiiDatabase: Fix potential integer overflow
      (bsc#1128503, CVE-2018-12181)
    + UefiCpuPkg/Microcode.c: Add verification before calculate
      CheckSum32
    + UefiCpuPkg/Microcode: Fix InComplete CheckSum32 issue
    + UefiCpuPkg: restore strict page attributes via #DB in nonstop
      mode only
    + IntelFrameworkModulePkg/FwVolDxe: Ensure FfsFileHeader 8 bytes
      aligned (bsc#1127822, CVE-2018-3630)
    + MdeModulePkg/DxeCore: Ensure FfsFileHeader 8 bytes aligned
      (bsc#1127822, CVE-2018-3630)
    + MdeModulePkg/PeiCore: Ensure FfsFileHeader 8 bytes aligned
      (bsc#1127822, CVE-2018-3630)
    + NetworkPkg: Add WiFi Connection Manager to NetworkPkg
    + UefiCpuPkg/PiSmmCpu: Add Shadow Stack Support for X86 SMM
    + MdePkg/BaseLib: Add Shadow Stack Support for X86
    + NetworkPkg/DnsDxe: Check the received packet size before
      parsing the message (bsc#1127821, CVE-2018-12178)
    + MdeModulePkg/RamDiskDxe: Restrict on RAM disk size
      (bsc#1127820, CVE-2018-12180)
    + MdeModulePkg/PartitionDxe: Ensure blocksize holds MBR
      (bsc#1127820, CVE-2018-12180)
    + ArmVirtPkg/PlatformBootManagerLib: display boot option
      loading/starting
    + ArmVirtPkg/ArmVirtQemu*: enable minimal Status Code Routing
      in DXE
    + OvmfPkg/PlatformBootManagerLib: display boot option
      loading/starting
    + OvmfPkg: add library to track boot option loading/starting on
      the console
    + MdeModulePkg/UefiBootManagerLib: fix LoadImage/StartImage
      status code rep
    + MdeModulePkg/AhciPei: Add AHCI mode ATA device support in PEI
    + MdeModulePkg: Add definitions for EDKII PEI ATA PassThru PPI
    + MdeModulePkg: Add definitions for ATA AHCI host controller PPI
    + MdePkg/UefiDevicePathLib: Add sanity check for FilePath device
      path
    + UefiCpuPkg/Microcode: Fix incorrect checksum issue for
      extended table
    + SecurityPkg/TcgConfigDxe: Allow enabling TPM 1.2 device from
      disabled state
    + UefiCpuPkg/SecCore: Wrong Debug Information for SecCore
    + Various bug fixes in BaseTools
    + DynamicTablesPkg: Dynamic Tables Framework
    + MdeModulePkg: Remove EmuVariableRuntimeDxe
    + UefiCpuPkg/MtrrLib: Fix a bug that may wrongly set memory <1MB
      to UC
    + MdeModulePkg/BmBoot: Report status when fail to load/start
      boot option
    + MdeModulePkg/ReportStatusCodeLib: Avoid using AllocatePool if
      possible
    + NetworkPkg/Ip6Dxe: Clean the invalid IPv6 configuration during
      driver start
* Thu Feb 21 2019 glin@suse.com
  - Add TPM2_CONFIG_ENABLE build flag to enable TPM2 config menu
* Mon Feb 18 2019 glin@suse.com
  - Update to 2019+git1550452308.c417c1b33d06
    + BaseTools: Fixed an issue about StructurePcd
    + UefiCpuPkg/SecCore: Support EFI_PEI_CORE_FV_LOCATION_PPI
    + OvmfPkg: Add TCG2 Configuration menu to the Device Manager menu
    + FatPkg/FatPei/Gpt.c: Fix uninitialized variable issue
    + Make BaseTools compatible with python3
    + CryptoPkg/BaseCryptLib: split CryptPkcs7Verify.c on behalf
      of runtime
    + MdeModulePkg/UefiBootManagerLib: Match the nested partitions
    + ArmPkg/ArmMmuLib AARCH64: get rid of needless TLB invalidation
    + Upgrade UEFI supporting TCG spec info
    + MdeModulePkg Variable: Add emulated variable NV mode support
    + Code clean-up in the network packages
    + OvmfPkg: add MmServicesTableLib resolution
    + ArmPkg/ArmMmuLib AARCH64: fix out of bounds access
    + BaseTools/VfrCompile: report error for Integer overflow
    + OvmfPkg: require GCC48 or later
    + MdePkg/BaseLib: Introduce new SpeculationBarrier API
    + Remove the obsolete network packages in MdeModulePkg
    + Upgrade OpenSSL to 1.1.0j
    + MdePkg/Base: introduce MAX_ALLOC_ADDRESS
    + MdeModulePkg/PciBus: Fix system hang when no PCI Option ROM exists
    + BaseTools/tools_def AARCH64 RELEASE: move GCC49/GGC5 to 4 KB
      alignment
    + SecurityPkg: Remove dead code and inf redundant definitions
    + UefiCpuPkg/Cpuid.h: Sync CPUID definition to latest SDM
    + MdeModulePkg/PciBus: Shadow option ROM after BARs are programmed
    + ArmVirtPkg/QemuVirtMemInfoLib: trim the MMIO region mapping
    + ArmVirtPkg/XenVirtMemInfoLib: refactor reading of the PA space
      size
    + ArmVirtPkg/QemuVirtMemInfoLib: remove 1:1 mapping of top of
      PA range
    + ArmVirtPkg/NorFlashQemuLib: discover NOR flash banks dynamically
    + ArmPkg/ArmSmcPsciResetSystemLib: add missing call to
      ExitBootServices()
    + SecurityPkg: Update TCG PFP spec revision.
    + OvmfPkg: simply use the Bochs interface for vmsvga
    + ArmPlatformPkg & ArmVirtPkg: clear frame pointer in startup
      code
    + Remove unused DuetPkg, EdkShellBinPkg, and UnixPkg
    + ArmPkg/ArmGicDxe ARM: fix encoding for GICv3 interrupt
      acknowledge
    + MdePkg/BaseIoLibIntrinsicArmVirt ARM: avoid double word loads
      and stores
  - Refresh patches
    + ovmf-add-exclude-shell-flag.patch
    + ovmf-disable-ia32-firmware-piepic.patch
  - Enable Python3 support in BaseTools (bsc#1075770)
* Thu Dec 27 2018 glin@suse.com
  - Add a new "smm" flavor to enable System Management Mode
    + Also add ovmf-add-exclude-shell-flag.patch to exclude shell
      from the resultant SMM firmware files
  - Retire the old openSUSE 4096 bit certificates since all those
    programs are unmaintained.
  - Amend the numbering of patches and sources
  - Update README to reflect the current status
* Mon Dec 03 2018 glin@suse.com
  - Update ovmf-embed-default-keys.patch and add owner-guid-zero.h to
    set the default owner of PK/KEK/db/dbx and make the
    auto-enrollment only happen at the very first boot. (bsc#1117998)
  - Change the group of qemu-ovmf-x86_64-debug to Development/Sources
    since there is no Development/Debug anymore
* Thu Nov 15 2018 glin@suse.com
  - Update to 2018+git1542164568.85588389222a (edk2-stable201811)
    + UefiCpuPkg/CommonFeature: Always set FEATURE_CONTROL.Lock
    + MdeModulePkg/NvmExpressPei: Refine data buffer & len check in
      PassThru
    + OvmfPkg/QemuVideoDxe: list "UnalignedIoInternal.h" in the INF
      file
    + OvmfPkg/QemuVideoDxe: VMWare SVGA device support
    + OvmfPkg/QemuVideoDxe: Helper functions for unaligned port I/O
    + OvmfPkg: VMWare SVGA display device register definitions
    + Fix UEFI and Tiano Decompression logic issue
    + MdePkg: Fix incorrect check for DisplayOnly text format in
      AcpiEx
    + UefiCpuPkg/PiSmmCpuDxeSmm: Separate semaphore container
    + UefiCpuPkg/RegisterCpuFeaturesLib: Separate semaphore container
    + UefiCpuPkg/RegisterCpuFeaturesLib: Adjust Order
    + MdePkg/BaseSynchronizationLib: Fix InternalSync[De|In]crement
    + UefiCpuPkg/SmmCpu: Block access-out only when static paging is
      used
    + MdeModulePkg/Core: fix ineffective guard page issue
    + MdeModulePkg/Core: fill logic hole in
      MemoryProtectionCpuArchProtocolNotify
    + MdeModulePkg/Mtftp4Dxe: Fix invalid configuration of MTFTP
      local port
    + OvmfPkg: Replace obsoleted network drivers from platform DSC/FDF
    + MdePkg/Base.h: Implement BASE_CR() via OFFSET_OF()
    + MdeModulePkg/PiSmmIpl: Do not reset SMRAM to UC when CPU driver
      runs
    + NetworkPkg/TlsDxe: Fix failure to process multiple TLS records
    + BaseTools ConvertFceToStructurePcd: Fix the array value with
      empty string
    + CryptoPkg/BaseCryptLib: Fix potential integer overflow issue
    + ArmPkg/OpteeLib: Add APIs to communicate with OP-TEE
    + UefiCpuPkg/PiSmmCpuDxeSmm: Fix ASSERT for success
    + UefiCpuPkg/MpInitLib: Fix ASSERT for success
    + MdeModulePkg/Core: fix an issue of potential NULL pointer access
    + NetworkPkg/Mtftp6Dxe: Correct the total received and saved
      block number
    + MdeModulePke/Mtftp4Dxe: Correct the total received and saved
      block number
    + MdeModulePkg EhciDxe: Extract new EhciInsertAsyncIntTransfer
      function
    + MdeModulePkg XhciDxe: Extract new XhciInsertAsyncIntTransfer
      function
    + BaseTools: Sync the DevicePath Function update from MdePkg
    + MdeModulePkg/HiiDB: Make sure database update behaviors are
      atomic
    + MdeModulePkg/HiiDB: Reorganize codes of exporting HII settings
    + UefiCpuPkg/RegisterCpuFeaturesLib: Support combo CPU feature
      style
    + UefiCpuPkg/RegisterCpuFeaturesLib: Fix ECC issues
    + MdeModulePkg/Core: add freed-memory guard feature
    + MdeModulePkg/Core: prevent re-acquire GCD memory lock
    + UefiCpuPkg/CpuDxe: prevent recursive calling of
      InitializePageTablePool
    + UefiCpuPkg/CpuDxe: consider freed-memory guard in non-stop mode
    + MdeModulePkg: introduce UEFI freed-memory guard bit in HeapGuard
      PCD
    + MdeModulePkg/NvmExpressDxe: Refine PassThru IO queue creation
      behavior
    + MdeModulePkg/NvmExpressDxe: Always copy CQ entry to PassThru
      packet
    + MdeModulePkg/NvmExpressDxe: Refine data buffer & len check in
      PassThru
    + MdePkg: Handle various device path when optional para is not
      specified
    + FatPkg: Correct the line ending to CRLF
    + MdePkg-BaseLib: Fix PathCleanUpDirectories() issue with
      "\\..\\.."
    + FatPkg/EnhancedFatDxe Fix Double Cluster Allocation
    + FatBinPkg: Remove FatBinPkg and refresh document
    + ShellPkg/dmem: Only dump sizeof (EFI_SYSTEM_TABLE) bytes for gST
    + MdeModulePkg/UsbMass: Fix USB key write failure
    + IntelFrameworkModulePkg: Add more checker in
      UefiTianoDecompressLib (CVE FIX)
    + MdePkg: Add more checker in UefiDecompressLib to access the
      valid buffer only (CVE FIX)
    + MdeModulePkg/PartitionDxe: Add check for underlying device
      block size (bsc#1130267, CVE-2019-0160)
    + MdeModulePkg Xhci: Handle value 5 in Port Speed field of PORTSC
    + MdeModulePkg XhciDxe: Assign Usb2Hc.XXXRevision based on SBRN
    + MdePkg/BaseLib: AsciiStrToUnicodeStr(S) not handle EASCII
      properly
    + UefiCpuPkg/CpuCommonFeaturesLib: Register MSR base on scope Info
    + UefiCpuPkg/CpuS3DataDxe: Keep old data if value already existed
    + UefiCpuPkg/PiSmmCpuDxeSmm: Add logic to support semaphore type
    + UefiCpuPkg/RegisterCpuFeaturesLib: Add logic to support
      semaphore type
    + UefiCpuPkg/RegisterCpuFeaturesLib.h: Add new dependence types
    + UefiCpuPkg/Include/AcpiCpuData.h: Add Semaphore related
      Information
    + NetworkPkg/IpSecDxe: Fix issue to parse SA Payload
    + NetworkPkg: Correct the time stamp and fix the integer overflow
      issue
    + NetworkPkg/TlsDxe: Remove the redundant library class
    + MdePkg UefiLib: Check Table against NULL in ScanTableInSDT
    + MdeModulePkg BrotliDecompressLib: Add the checker to avoid array
      out of bound
    + UefiCpuPkg/CpuExceptionHandlerLib: always clear descriptor data
      in advance
    + fix InternalSyncCompareExchange*()
    + MdeModulePkg Variable: Fix Timestamp zeroing issue on
      APPEND_WRITE
    + MdeModulePkg/Bus/Ufs: Ensure device not return more data than
      expected
    + MdeModulePkg/AbsPointer: Don't access key codes when length is
      wrong
    + MdeModulePkg BrotliCustomDecompressLib: Don't build it for EBC
      arch
    + MdeModulePkg RegularExpressionDxe: Enable STDARG for variable
      arguments
    + MdeModulePkg/RegularExpressionDxe: Miss null pointer check
    + MdeModulePkg PcdDxe: ASSERT PcdSetNvStoreDefaultId set
    + UefiCpuPkg/S3Resume2Pei: disable paging before creating new
      page table
    + MdeModulePkg/SdMmcPciHcDxe: Allow additional SDHCI versions
    + MdeModulePkg/SdMmcPciHcDxe: Add controller version defines
    + MdePkg: Use VENDOR_DEVICE_PATH structure for Debug Port device
      path
    + ShellPkg-Cd: Ensure all valid cd targets are handled properly
    + MdePkg-BaseLib: Fix PathCleanUpDirectories() error involving
      "\..\.."
    + MdeModulePkg/NonDiscoverablePciDeviceDxe: expose unique B/D/F
      identifiers
    + MdeModulePkg: Update Brotli DecompressLib to the latest v1.0.6
    + BaseTools: Update Brotli Compress to the latest one 1.0.6
    + MdePkg: Add PciRoot/PcieRoot text for ACPI Expanded Device Path
    + MdePkg: Correct condition check for AcpiExp text format
    + MdePkg: Correct the string order of ACPI Expanded Device Path
    + MdePkg: Correct the string expression of UTF8 vendor device path
    + MdeModulePkg/HiiDB: Fix incorrect structure convention for
      checkbox
    + Lzma: Update LZMA SDK version to 18.05
    + OvmfPkg/PlatformPei: clear CPU caches
    + Various BaseTools clean up and fixes
    + Various UDF fixes
    + Various USB fixes
  - Drop upstreamed patches
    + ovmf-bsc1115916-fix-timestamp-zeroing.patch
    + ovmf-bsc1115917-bounds-checking-for-ueficompress.patch
* Wed Nov 14 2018 glin@suse.com
  - Add ovmf-bsc1115916-fix-timestamp-zeroing.patch to fix Timestamp
    zeroing issue on APPEND_WRITE (bsc#1115916, CVE-2018-3613)
  - Add ovmf-bsc1115917-bounds-checking-for-ueficompress.patch for
    the bound checking of ueficompress (bsc#1115917, CVE-2017-5731,
    CVE-2017-5732, CVE-2017-5733, CVE-2017-5734, CVE-2017-5735)
* Fri Oct 05 2018 glin@suse.com
  - Update to 2018+git1538590187.c0b1f749ef13
    + ShellPkg: Create a homefilesystem environment variable
    + NetworkPkg/HttpUtilitiesDxe: fix read memory access overflow
    + NetworkPkg/HttpDxe: fix read memory access overflow in HTTPBoot
    + PcAtChipsetPkg PcRtc: Use new EfiLocateFirstAcpiTable()
    + MdeModulePkg S3SaveStateDxe: Use new EfiLocateFirstAcpiTable()
    + MdePkg UefiLib: Add new EfiLocateXXXAcpiTable() APIs
    + NetworkPkg/UefiPxeBcDxe: Add the clarification compared to
      UefiPxeBcDxe in MdeModulePkg
    + NetworkPkg/IScsiDxe: Add the clarification compared to
      IScsiDxe in MdeModulePkg
    + NetworkPkg/TcpDxe: Add the clarification compared to Tcp4Dxe
      in MdeModulePkg
    + MdeModulePkg/UefiPxeBcDxe: Add the clarification compared
      to UefiPxeBcDxe in NetworkPkg
    + MdeModulePkg/IScsiDxe: Add the clarification compared to
      IScsiDxe in NetworkPkg
    + MdeModulePkg/Tcp4Dxe: Add the clarification compared to TcpDxe
      in NetworkPkg
    + NetworkPkg/UefiPxeBcDxe: Use the specified MTFTP windowsize
    + NetworkPkg: Define one PCD for PXE to specify MTFTP windowsize
    + NetworkPkg/Mtftp6Dxe: Support windowsize in read request
      operation
    + MdeModulePke/Mtftp4Dxe: Support windowsize in read request
      operation
    + MdePkg/BaseSynchronizationLib: fix XADD operands in GCC
      IA32/X64 assembly
    + MdeModulePkg/PciHostBridge: Fix a bug that prevents PMEM
      access
    + MdeModulePkg/PciHostBridge: Enhance boundary check in
      Io/Mem.Read/Write
    + MdeModulePkg/DxeIpl: support more NX related PCDs
    + MdeModulePkg: XhciDxe: Prevent illegal memory access in
      XhcSetHsee
    + SecurityPkg/TcgStorageOpalLib: Fixed correct user password
      not works issue
    + MdeModulePkg/SdMmcPciHcDxe: Execute card detect only for
      RemovableSlot
    + MdeModulePkg/SdMmcPciHcDxe: Fix SdMmcHcReset to set only
      necesery bits
    + NetworkPkg: UefiPxeBcDxe: Add EXCLUSIVE attribute when opening
      SNP protocol installed by PXE
    + BaseTools: Check GUID C structure format
    + MdeModulePkg: Avoid key notification called more than once
    + IntelFrameworkModulePkg: Avoid key notification called more
      than once
    + MdeModulePkg/Library/DxeHttpLib: Handle the blank value in
      HTTP header
    + MdeModulePkg/Ip4Dxe: Sync the direct route entry setting
    + MdeModulePkg XhciDxe: Set HSEE Bit if SERR# Enable Bit is set
    + BaseTools: Correct DXE_PCD_DATABASE_INIT
    + BaseTools: Check PcdNvStoreDefaultValueBuffer
    + BaseTools: Involve Dec default value to calculate Maxsize
    + BaseTools: Structure Pcd value override incorrect
    + BaseTools: Report error for incorrect hex value format
    + MdeModulePkg/ConPlatform: Support short-form USB device path
    + UefiCpuPkg/CpuDxe: fix an incorrect bit-wise operation
    + UefiCpuPkg/CpuDxe: fix ECC reported issues
    + UefiCpuPkg/CpuMpPei: support stack guard feature
    + UefiCpuPkg/MpInitLib: fix register restore issue in AP wakeup
    + UefiCpuPkg/CpuExceptionHandlerLib: support stack switch for
      PEI exceptions
    + MdeModulePkg/DxeIpl: disable paging before creating new page
      table
    + MdeModulePkg PeiCore: Always use PeiImageRead() function to
      load PEI image
    + MdeModulePkg/EhciDxe: factor out EhcIsDebugPortInUse()
    + BaseTools/PatchCheck.py: Fix error when run with Python3
    + BaseTools: Report more clear error message for PCD used in
      expression
    + BaseTools: Fix a bug about list the PCD in "not used" section
    + UefiCpuPkg/MpInitLib: Fix ECC issues
    + MdeModulePkg/EhciDxe: fix host controller reset condition in
      BindingStart
    + BaseTools: Extend the keyword "!include"/"!if" to
      case-insensitive
    + MdeModulePkg/Setup: Fix incorrect size used in AllocateCopyPool
    + MdeModulePkg DxeCore: Handle multiple FV images in one FV file
    + MdeModulePkg PeiCore: Handle multiple FV images in one FV file
    + UefiCpuPkg/CpuExceptionHandlerLib: Avoid calling PEI services
      from AP
    + CpuExceptionHandlerLib: Add comments to make code more readable
    + BaseTools: Fixed the PcdValue trailing zero issue
    + BaseTools: Dynamic Pcd value override from command line
    + BaseTools: Check pcd DefaultValue and SkuId EBNF
    + ShellPkg: Update Ifconfig command to accept 32bit subnet mask
    + MdeModulePkg/Network: Add 32bit subnet mask support for IP4
      PXE boot
    + BaseTools: Clarify a DSC parsing error about PCDs
    + BaseTools: minimize assignment processing
    + BaseTools: Refactor to remove functionally equivalent
      functions
    + BaseTools: include variable namespace GUIDs of HII PCDs in
      Guid.xref
    + ShellPkg/SmbiosView: Update SmbiosView for SMBIOS3.2.0
    + UefiCpuPkg/CpuDxe: change level of DEBUG message
    + UefiCpuPkg/CpuDxe: implement non-stop mode for uefi
    + UefiCpuPkg/CpuExceptionHandlerLib: Setup single step in #PF
      handler
    + MdeModulePkg/MdeModulePkg.dec: add new settings for PCDs
    + MdePkg: Add the missing spec version information for header
      files
    + BaseTools: Fix one expression bug to support ~ operate
    + BaseTools: Add check only VOID* type Pcd need the maxsize info
    + MdeModulePkg: Update SMBIOS PCDs to 3.2.0
    + MdePkg SmBios.h: Add SMBIOS 3.2.0 definitions
    + MdeModulePkg/PciBus: Restrict one VGA per HostBridge not
      Segment
    + MdeModulePkg/PciBus: Refine ActiveVGADeviceOnTheRootBridge
    + ArmPkg/PlatformBootManagerLib: fix hotkey of boot option
    + BaseTools: Use hashlib instead of md5
    + BaseTools: remove cmp due to deprecated in python3
    + BaseTools: Modify class OrderedListDic
    + BaseTools: Update Makefile for ECC tool
    + BaseTools/VfrCompile: honor EXTRA_LDFLAGS
    + NetworkPkg/TlsAuthConfigDxe: fix TlsCaCertificate attributes
      retrieval
    + IntelFrameworkPkg/FrameworkUefiLib: don't special-case
      EFI_FILE_MODE_CREATE
    + MdePkg/UefiLib: don't special-case EFI_FILE_MODE_CREATE in
      OpenMode
    + Remove redundant variables, functions, library clesses, and
      GUIDs
* Mon Aug 20 2018 glin@suse.com
  - Update to 2018+git1534736099.43fe4c405292
    + BaseTools: AutoGen refactor ModuleAutoGen caching
    + OvmfPkg: link Sha384 and Sha512 support into Tcg2Pei and Tcg2Dxe
    + MdePkg/UefiLib: introduce EfiOpenFileByDevicePath()
    + BaseTools: Update the rule to remove .lib before link it for GCC
    + BaseTools: Add Dns and BluetoothLE DevicePath
    + MdeModulePkg SmmLockBox: Return actual data length in
      SmmLockBoxRestore
    + UefiCpuPkg/RegisterCpuFeaturesLib: Combine implementation
    + UefiCpuPkg/CpuS3DataDxe: Remove below 4G limitation
    + UefiCpuPkg/CpuS3DataDxe: Change Memory Type and address
      limitation
    + UefiCpuPkg/AcpiCpuData.h: Remove AcpiNVS and Below 4G limitation
    + UefiCpuPkg/PiSmmCpuDxeSmm: Use GDT/IDT saved in Smram
    + SecurityPkg/TcgStorageCoreLib.h: Use ascii instead of unicode
    + BaseTool: Fixed the bug of Boolean Hii Pcd packing
    + SecurityPkg: HashLib: Update HashLib file GUID
    + SecurityPkg/Library/Tpm2DeviceLibDTpm: fix s/Constructor/CONSTRUCTOR
    + OvmfPkg/PlatformDebugLibIoPort: fix port detection for use in
      the DXE Core
    + NetworkPkg/HttpDxe: Strip square brackets in IPv6 expressed
      HostName
    + MdeModulePkg/BdsDxe: Move display of test key usage into BDS
      module
    + ArmPkg: Add initial OpteeLib implementation
    + SecurityPkg: HashLib: Add SHA384, SHA512 HashLib
    + MdeModulePkg/BdsDxe: Call PlatformBootManagerUnableToBoot()
    + MdeModulePkg/BdsDxe: Revert "fall back to UI loop before hanging"
    + ArmVirtPkg/PlatformBDS: Implement PlatformBootManagerUnableToBoot
    + OvmfPkg/PlatformBds: Implement PlatformBootManagerUnableToBoot
    + MdeModulePkg/PciBusDxe: Fix small memory leak in FreePciDevice
    + MdeModulePkg/DxeCore: Not update RtCode in MemAttrTable after
      EndOfDxe
    + UefiCpuPkg/MpInitLib: Not use disabled AP when call StartAllAPs
    + UefiCpuPkg/MpInitLib: Remove redundant CpuStateFinished State
    + MdeModulePkg/DxeLoadFunc: Add use case for new Perf macro
    + SecurityPkg/Tcg: Add use case for new Perf macro
    + ArmVirtPkg: remove wrong and superfluous ResourcePublicationLib
      resolution
    + OvmfPkg: Correct ResourcePublicationLib class name in DSC/INF
      file
    + MdeModulePkg CapsuleApp: Do not parse bits in CapsuleFlags of
      ESRT
    + MdeModulePkg, TpmMeasureLib: Variable: Re-prioritize TCG/TCG2
      protocol
    + SecurityPkg: TcgSmm: Handle invalid parameter in MOR SMI handler
    + OvmfPkg/XenPvBlkDxe: remove gEfiDevicePathProtocolGuid from
      [Protocols]
    + StandaloneMmPkg/Core: Implementation of Standalone MM Core Module
    + UefiCpuPkg/CpuDxe: fix incorrect check of SMM mode
    + UefiCpuPkg/MpInitLib: Optimize get processor number performance
    + OvmfPkg/AcpiPlatformDxe: clean up libs and protos in
      "AcpiPlatformDxe.inf"
    + UefiCpuPkg/MpInitLib: Fix S3 resume hang issue
    + UefiCpuPkg/MpInitLib: Use BSP uCode for APs if possible
    + UefiCpuPkg/MpInitLib: Relocate uCode to memory to save time
    + Update BaseTools for the preparation of python3 adoption
  - Refresh ovmf-pie.patch and ovmf-gdb-symbols.patch
* Fri Jul 13 2018 glin@suse.com
  - Update to 2018+git1531464032.ae08ea246fe9
    + ArmVirtPkg/ArmVirtQemu: enable the IPv6 stack
    + SecurityPkg: Fix assert when setting key from eMMC/SD/USB
    + UefiCpuPkg/MpInitLib: Avoid calling PEI services from AP
    + NetworkPkg/HttpDxe: Fix the bug when parsing HTTP(S) message
      body
    + SecurityPkg/OpalPassword: Fixed input correct password not
      works issue
    + SecurityPkg/TcgStorageOpalLib: Return AUTHORITY_LOCKED_OUT error
    + OvmfPkg/QemuFlashFvbServicesRuntimeDxe: Restore C-bit when SEV
      is active
    + OvmfPkg/QemuFlashFvbServicesRuntimeDxe: Do not expose MMIO in
      SMM build
    + OvmfPkg/QemuFlashFvbServicesRuntimeDxe: mark Flash memory
      range as MMIO
    + MdeModulePkg/Variable: Check EFI_MEMORY_RUNTIME attribute
      before setting it
    + MdeModulePkg SataControllerDxe: Calculate ChannelCount based
      on PI value
    + SecurityPkg Tpm2DeviceLibDTpm: Update enum type name to match
      the one in lib
    + MdeModulePkg UsbBusDxe: Fix wrong buffer length used to read
      hub desc (bsc#1131361, CVE-2019-0161)
    + SecurityPkg: Tpm2DeviceLib: Enable CapCRBIdleBypass support
    + SecurityPkg: Cache TPM interface type info
    + FatPkg/FatPei: Add the recognition of recovery capsule on NVME
      device
    + MdeModulePkg/NvmExpressPei: Add the NVME device PEI BlockIo
      support
    + MdeModulePkg: Add definitions for EDKII PEI NVME host
      controller PPI
    + ArmPkg/ArmMmuLib ARM: fix Mva to use idx instead of table base
    + ArmPkg/ArmMmuLib ARM: assume page tables are in writeback
      cacheable memory
    + ArmPkg/ArmMmuLib ARM: remove cache maintenance of block mapping
      contents
    + MdeModulePkg: Enable SATA Controller PCI mem space
    + MdeModulePkg/NetworkPkg: Checking for NULL pointer before use
    + MdeModulePkg/Core: remove SMM check for Heap Guard feature
      detection
    + UefiCpuPkg/CpuDxe: allow accessing (DXE) page table in SMM mode
    + BaseTools/tools_def IA32: drop -no-pie linker option for GCC49
    + SecurityPkg/SecureBootConfigDxe: Fix invalid NV data issue
    + ArmVirtPkg: add QemuRamfbDxe
    + OvmfPkg: add QemuRamfbDxe
    + BaseTools/tools_def IA32: disable PIE code generation explicitly
    + MdePkg UefiLib: Use comparison logic to check UINTN parameter
    + ArmVirtPkg: switch to KVM safe IoLib implementation
    + MdePkg/BaseIoLibIntrinsic: make BaseIoLibIntrinsic safe for
      ArmVirt/KVM
    + ArmPkg/CompilerIntrinsicsLib: fix GCC8 warning for
      __aeabi_memcpy aliases
  - The IP6 stack of AAVMF is enabled
* Mon Jun 11 2018 glin@suse.com
  - Update to 2018+git1528497654.eb5943134630
    + CryptoPkg PeiCryptLib: Enable SHA384/512 support
    + MdePkg/UefiRuntimeLib: Do not allow to be linked by DXE driver
    + CryptoPkg: Remove deprecated function usage in
      X509GetCommonName()
    + PlatformBootManagerLib: add missing report status code call
    + OvmfPkg: raise DXEFV size to 11 MB
    + SignedCapsulePkg/PlatformFlashAccessLib: Add progress API
    + MdeModulePkg: Add DisplayUpdateProgressLib class
    + PcAtChipsetPkg/PcRtc: Add two new PCD for RTC Index/Target
      registers
    + OvmfPkg/Virtio10Dxe: convert to PciCapLib
    + OvmfPkg/PciHotPlugInitDxe: convert to PciCapLib
    + ArmVirtPkg: resolve PciCapLib, PciCapPciSegmentLib,
      PciCapPciIoLib
    + OvmfPkg: resolve PciCapLib, PciCapPciSegmentLib, PciCapPciIoLib
    + OvmfPkg: introduce PciCapPciIoLib
    + OvmfPkg: introduce PciCapPciSegmentLib
    + OvmfPkg: introduce PciCapLib
    + BaseTools/tools_def: add "-fno-unwind-tables" to
      GCC_AARCH64_CC_FLAGS
    + OvmfPkg/PlatformBootManagerLib: process TPM PPI request
    + OvmfPkg: add Tcg2PhysicalPresenceLibQemu
    + OvmfPkg/IndustryStandard: add QemuTpm.h header
    + OvmfPkg: add Tcg2PhysicalPresenceLibNull when !TPM2_ENABLE
    + MdePkg/SmmPeriodicSmiLib: Get Periodic SMI Context More Robustly
    + OvmfPkg/PlatformBootManagerLib: connect Virtio RNG devices again
    + ArmVirtPkg/PlatformBootManagerLib: connect Virtio RNG devices
      again
    + OvmfPkg/QemuVideoDxe: Enable DISPLAY_OTHER pci class for qemu
      stdvga
    + OvmfPkg/QemuVideoDxe: Add SubClass field to QEMU_VIDEO_CARD
    + OvmfPkg/PlatformBootManagerLib: connect consoles unconditionally
    + BaseTools: Fix generating array's size is incorrect in AutoGen.c
    + BaseTools: incorrect calculation for 16M
* Fri May 18 2018 glin@suse.com
  - Enable TLS support correctly
* Thu May 17 2018 glin@suse.com
  - Enable TPM 2.0 support
* Thu May 10 2018 glin@suse.com
  - Update to 2018+git1525854636.13e3f8c03339
    + BaseTools/VfrCompile: Avoid using uninitialized pointer
    + MdeModulePkg/PciHostBridge: Count the (mm)io overhead when polling
    + UefiCpuPkg/SecMain: Add NORETURN decorator to SecStartup()
    + CryptoPkg/CrtLibSupport: add secure_getenv() stub function
    + MdeModulePkg/AcpiPlatformDxe: Unload after execution
    + SecurityPkg/OpalPassword: Add support for pyrite 2.0 devices
    + NetworkPkg/NetworkPkg.dsc: Add the instance of library class
      [SafeIntLib]
    + ArmVirtPkg: use protocol-based DevicePathLib instance for most
      DXE modules
    + OvmfPkg/QemuVideoDxe: round up FrameBufferSize to full page
    + ArmVirtPkg: reinstate timer unmask quirk for Xen
    + ArmPkg/TimerDxe: remove workaround for KVM timer handling
    + FatPkg/EnhancedFatDxe: Ensure traverse of subtasks is
      delete-safe
    + OvmfPkg/PlatformBootManagerLib: add USB keyboard to ConIn
    + CryptoPkg/OpensslLib: Update OpenSSL version to 1.1.0h
      (bsc#1094289, CVE-2018-0739)
    + OvmfPkg/TlsAuthConfigLib: configure trusted cipher suites for
      HTTPS boot
    + ArmVirtPkg/ArmVirtQemu: hook NvVarStoreFormattedLib into
      VariableRuntimeDxe
    + ArmPlatformPkg/NorFlashDxe: cue the variable driver with
      NvVarStoreFormatted
    + ArmPlatformPkg/NorFlashDxe: initialize varstore headers eagerly
    + OvmfPkg: remove BLOCK_MMIO_PROTOCOL and BlockMmioToBlockIoDxe
    + OvmfPkg/TlsAuthConfigLib: configure trusted CA certs for
      HTTPS boot
    + MdeModulePkg/Variable/RuntimeDxe: introduce
      PcdMaxVolatileVariableSize
    + NetworkPkg/TlsAuthConfigDxe: preserve TlsCaCertificate variable
      attributes
    + NetworkPkg/HttpDxe: drop misleading comment / status code in
      cert config
    + NetworkPkg/HttpDxe: use error handler epilogue in
      TlsConfigCertificate()
    + NetworkPkg/HttpBootDxe: fix typo in DHCPv4 packet parsing
    + OvmfPkg/QemuVideoDxe: handle invalid BltOperation gracefully
    + NetworkPkg/UefiPxeBcDxe: Configure the ARP Instance/RouteTable
      with new address
    + NetworkPkg/HttpDxe: Handle the large data request via HTTPS
      channel
    + NetworkPkg/TlsDxe: Handle the multiple TLS record messages
      encryption/decryption
    + SecurityPkg Tpm12CommandLib: Fix TPM12 GetCapability response
      error
    + SecurityPkg Tpm2CommandLib: Fix TPM2.0 response memory overflow
    + MdeModulePkg/DxeMain: Fix BSP interrupts reenabled in
      ExitBootServices
    + UefiCpuPkg/MpInitLib: Disable interrupt at ExitBootServices AP
      Mwait
    + OvmfPkg/PlatformBootManagerLib: process "-kernel" before boot
      devices
    + OvmfPkg/PlatformBootManagerLib: hoist PciAcpiInitialization()
    + ArmVirtPkg/PlatformBootManagerLib: return to "-kernel before
      boot devices"
    + MdeModulePkg/Core: allow HeapGuard even before CpuArchProtocol
      installed
    + UefiCpuPkg CpuExceptionHandlerLib: use FixedPcdGetSize() as the
      macro value
    + remove TrEE
    + MdeModulePkg/PciBus: return CPU address for GetBarAttributes
    + MdeModulePkg/PciBus: convert host address to device address
    + MdeModulePkg/PciHostBridgeDxe: Add support for address translation
    + OvmfPkg/PciHostBridgeLib: clear PCI aperture vars for (re)init
    + ArmPkg/TimerDxe: Add ISB for timer compare value reload
    + BaseTools code refactoring
* Thu Mar 15 2018 glin@suse.com
  - Update to 2018+git1521096615.b3fa393f477a
    + OvmfPkg/QemuBootOrderLib: add ConnectDevicesFromQemu()
    + NetworkPkg/IScsiDxe: Fix the ISCSI connection failure in
      certain case
    + OvmfPkg/QemuFlashFvbServicesRuntimeDxe: Clear C-bit when SEV is
      active (bsc#1099193)
    + OvmfPkg: include Tcg2Dxe module
    + OvmfPkg: simplify SecurityStubDxe.inf inclusion
    + OvmfPkg/AmdSevDxe: decrypt the pages of the initial SMRAM save
      state map
    + OvmfPkg/SmmCpuFeaturesLib: SEV: encrypt+free pages of init.
      save state map
    + OvmfPkg/PlatformPei: SEV: allocate pages of initial SMRAM save
      state map
    + OvmfPkg/MemEncryptSevLib: find pages of initial SMRAM save
      state map
    + MdeModulePkg/UsbMass: Retry CMD for MediaChanged sense key
    + NetworkPkg/HttpDxe: Support HTTP Delete Method
    + NetworkPkg/HttpBootDxe: Fix the incorrect error message output
    + MdeModulePkg: Add Boot Logo 2 Protocol
    + MdeModulePkg/UsbMass: Fix hot-plug USB CDROM can't be recognized
    + NetworkPkg: Read HttpTlsCipherList variable and configure it
      for HTTPS session
    + NetworkPkg: Define one private variable for HTTPS to set Tls
      CipherList
    + ArmVirtPkg: Add SafeIntLib and BmpSupportLib to DSC files
    + OvmfPkg: Add SafeIntLib and BmpSupportLib to DSC files
    + UefiCpuPkg/PiSmmCpuDxeSmm: fix infinite loop issue in SMM profile
    + MdeModulePkg Ppi/IoMmu.h: Add EFI_NOT_AVAILABLE_YET return
      status code
    + MdeModulePkg/Core: fix feature conflict between NX and heap guard
    + ReadKeyStrokeEx always return key state
    + SecurityPkg: Tcg2Smm: Enable TPM2.0 interrupt support
    + MdeModulePkg/Partition: Fix media probe
    + NetworkPkg/HttpBootDxe: Avoid to corrupt HttpBootDxe setup screen
    + MdeModulePkg/UefiBootManagerLib: Skip the DNS device path node check
    + MdeModulePkg/Core: fix a logic hole in page free
    + OvmfPkg/BaseMemEncryptSevLib: Enable protection for newly
      added page table
    + MdeModulePkg/Ip4Dxe: Add an independent timer for reconfig checking
    + NetworkPkg: Fix a memory leak issue in UDP6 driver
    + UefiCpuPkg/MtrrLib: Fix bug that may calculate wrong MTRR result
    + MdeModulePkg/DxeNetLib: Fix an error in packet length counting
    + NetworkPkg: Fix memory leak problem in PXE driver
    + MdeModulePkg/DxeHttpLib: Add boundary condition check
    + CryptoPkg/OpensslLib: Update OpenSSL version to 1.1.0g
    + MdeModulePkg/Core: Fix heap guard issues
    + NetworkPkg/HttpBootDxe: Break the HttpBoot Callback function
      when meet redirect status
    + NetworkPkg/HttpBootDxe: Avoid the potential memory leak when
      eror happen
    + MdeModulePkg/DxeIplPeim: fix incorrect page table split during
      protecting
    + NetworkPkg/UefiPxeBcDxe: Allow the NULL configuration for
      NewStationIP/NewSubnetMask
    + NetworkPkg/UefiPxeBcDxe: Fix Pxe.Dhcp() return status code
    + MdeModulePkg/Dhcp*: Check Media status before starting DHCP process
    + MdeModulePkg/Ip4Dxe: fix ICMP echo reply memory leak
    + NetworkPkg/DnsDxe: Update RetryCount/RetryInterval to comply
      with UEFI spec
    + MdeModulePkg/TcpIoLib: Cancel TCP token if connect/accept is
      timeout
    + MdeModulePkg/TcpIoLib: Check input Timeout before calling
      CheckEvent() service
    + MdeModulePkg/DxeIpl: Mark page table as read-only
    + SecurityPkg:Tcg2Smm:Enabling TPM SIRQ interrupt support
    + MdeModulePkg/ScsiDisk: Return EFI_NO_MEDIA when no media presents
    + BaseTool/tools_def GCC5: enable optimization for ARM/AARCH64
      DEBUG builds
    + UefiCpuPkg/CpuDxe: Initialize stack switch for MP
    + UefiCpuPkg/CpuExceptionHandlerLib: Add stack switch support
    + UefiCpuPkg PiSmmCpuDxeSmm: SMM profile and static paging mutual
      exclusion
    + MdeModulePkg/NetLib: Fix an error when AIP doesn't support
      network media state detection
    + MdeModulePkg/NetLib: Add NetLibDetectMediaWaitTimeout() API to
      support EFI_NOT_READY media state detection
    + MdeModulePkg/Core/Dxe: log informative memprotect msgs at
      DEBUG_INFO level
    + ArmVirtPkg/ArmVirtXen: move from Intel to generic BDS
    + MdeModulePkg/SerialDxe: Do not fail reset when SetAttributes is
      not supported
    + MdeModulePkg/DxeCorePerformanceLib: add lock protection
    + OvmfPkg/QemuBootOrderLib: let an OFW devpath match multiple
      UEFI boot opts
    + OvmfPkg/QemuBootOrderLib: skip already matched / appended UEFI
      boot opts
    + MdeModulePkg/Core: Merge memory map after filtering paging
      capability
    + ArmVirtPkg/PrePi: don't export PE/COFF and LZMA libraries via HOBs
    + MdeModulePkg/BdsDxe: fall back to a Boot Manager Menu loop
      before hanging
    + SecurityPkg/SecureBootConfigDxe: Fix deleting signature data issue
    + CryptoPkg/IntrinsicLib: Fix the warning on memset
    + MdeModulePkg/DxeCore: Filter out all paging capabilities
      (bsc#1092943)
    + CryptoPkg/TlsLib: Change the return type of TlsInitialize()
    + NetworkPkg/HttpDxe: Fix the incorrect SizeofHeaders in
      HttpTcpReceiveHeader()
    + ArmVirtPkg: introduce ArmVirtMemInfoLib library class
    + ArmVirtPkg/PrePi: remove bogus primary core check
    + BaseTools/tools_def AARCH64 ARM: suppres PIE sections via
      linker script
    + PcAtChipsetPkg: Define FixePCD's for RTC register values
    + MdeModulePkg EhciPei: Minor refinement about IOMMU
    + MdeModulePkg/UefiBootManagerLib: Remove assertion
    + MdeModulePkg EhciPei: Also check Buf against NULL to return error
    + MdeModulePkg/UsbMassStorageDxe: Check Get Max LUN status/value
    + MdeModulePkg/UsbBusDxe: Add UsbControlTransfer() error check
    + BaseTools: Fix a bug for single module build with GenC/GenMake option
    + MdeModulePkg/PiSmmCore: Fix an assert issue in pool free
    + BaseTools: Fix the bug to collect source files per build rule family
    + MdeModulePkg/UdfDxe: Avoid possible loss track of allocated buffer
    + MdeModulePkg/PartitionDxe: Merge the discovery of ElTorito into UDF
  - Refresh ovmf-gdb-symbols.patch and ovmf-pie.patch
  - Modify openssl tarball unpacking to fit the change in ovmf
* Wed Jan 24 2018 glin@suse.com
  - Only use SLES-UEFI-CA-Certificate-2048.crt for the suse flavor to
    provide the better compatibility (bsc#1077330)
* Mon Nov 20 2017 glin@suse.com
  - Update to 2017+git1510945757.b2662641d5
    + ArmPlatformPkg/ArmPlatformLibNull: remove bogus PCD dependencies
    + MdeModulePkg/UsbMassStorageDxe: Enhance Request Sense Handling
    + OvmfPkg: save on I/O port accesses when the debug port is not
      in use
    + OvmfPkg: create a separate PlatformDebugLibIoPort instance for
      SEC
    + OvmfPkg: make PlatformDebugLibIoPort a proper BASE library
    + OvmfPkg: restore temporary SEC/PEI RAM size to 64KB
    + OvmfPkg/Sec/X64: seed the temporary RAM with PcdInitValueInTempStack
    + ArmVirtPkg: switch to new PL011UartLib implementation
    + OvmfPkg/XenHypercallLib: enable virt extensions for ARM
    + MdeModulePkg/PiSmmCore: Implement heap guard feature for SMM mode
    + MdeModulePkg/DxeCore: Implement heap guard feature for UEFI
    + ArmVirtPkg/ArmVirtQemu: use non-accelerated CopyMem for
      VariableRuntimeDxe
    + NetworkPkg: Fix incorrect SizeofHeaders returned from
      HttpTcpReceiveHeader()
    + NetworkPkg: Print error message to screen if error occurs
      during HTTP boot
    + MdeModulePkg/PartitionDxe: Fix UDF fs access on certain CD/DVD
      medias
    + MdeModulePkg/UsbMassStorageDxe: Fix USB Mass Storage detection
    + MdeModulePkg SerialDxe: Handle Timeout change more robustly
    + CryptoPkg/BaseCryptLib: Fix mismatched memory allocation/free
    + CryptoPkg/BaseCryptLib: Fix buffer overflow issue in realloc
      wrapper
    + ArmPlatformPkg/PlatformPeim: allow PlatformPeiLib to set the
      boot mode
    + Deprecate EFI_VARIABLE_AUTHENTICATED_WRITE_ACCESS
    + SecurityPkg: Remove Counter Based AuthVariable support
    + BaseTools/tools_def AARCH64 ARM: disable PIE linking
    + NetworkPkg/TlsAuthConfigDxe: Remove the extra FreePool
    + NetworkPkg/HttpBootDxe: Add IPv6 support condition check
    + NetworkPkg/IScsiDxe: Fix the incorrect/needless DHCP process
    + MdeModulePkg/PciBus: Fix bug that PCI BUS claims too much resource
    + UefiCpuPkg/MtrrLib: Use SetMem instead of SetMem64 to fix hang
    + NetworkPkg: Remove ping6 and ifconfig shell application
    + OvmfPkg: fix dynamic default for oprom verification policy PCD
      without SB
    + OvmfPkg/PlatformPei: DENY_EXECUTE_ON_SECURITY_VIOLATION when
      SEV is active
    + SecurityPkg\Tcg2Pei: FV measure performance enhancement
    + SecurityPkg:AuthVariableLib:Implement ECR1707 for Private Auth
      Variable
    + ArmPlatformPkg: Store initial timer value
    + ArmVirtPkg ArmVirtDxeHobLib: Implement BuildFv3Hob
    +  MdeModulePkg/Variable/RuntimeDxe: delete and lock OS-created
      MOR variable
    + ArmPkg/PlatformBootManagerLib: fix bug in ESRT invocation
    + OvmfPkg/PciHotPlugInitDxe: translate QEMU's resource
      reservation hints
    + OvmfPkg/PciHotPlugInitDxe: generalize RESOURCE_PADDING
      composition
    + OvmfPkg/IndustryStandard: define PCI Capabilities for QEMU's
      PCI Bridges
    + MdeModulePkg/BdsDxe: Don't delete "BootNext" until booting it
    + Clarify the usage of HttpConfigData in HTTP protocol
    + SecurityPkg/SecureBootConfigImpl.c: Secure Boot DBX UI
      Enhancement
    + MdeModulePkg/UDF: Fix creation of UDF logical partition
    + CryptoPkg: Add new API to retrieve commonName of X.509 certificate
    + OvmfPkg/VirtioNetDxe: log debug message in VirtioNetExitBoot()
    + OvmfPkg/QemuBootOrderLib: recognize "usb-storage" devices in
      XHCI ports
    + MdeModulePkg/Core: Fix out-of-sync issue in GCD
    + UefiCpuPkg/CpuDxe: Fix out-of-sync issue in page attributes
    + OvmfPkg/QemuVideoDxe/VbeShim: handle PAM1 register on Q35
      correctly
    + OvmfPkg/QemuVideoDxe/VbeShim: rename Status to
      Segment0AllocationStatus
    + OvmfPkg/CsmSupportLib: move PAM register addresses to
      IndustryStandard
    + NetworkPkg/IScsiDxe: Remove redundant call to StrLen
    + BaseTools/tools_def AARCH64: enable frame pointers for RELEASE
      builds
    + ArmPkg/PlatformBootManagerLib: process pending capsules
    + MdeModulePkg/Udf: Avoid declaring and initializing local GUID
      variable
    + MdeModulePkg/UdfDxe: Avoid short (single character) variable name
    + MdeModulePkg/UdfDxe: Use compare operator for non-boolean
      comparisons
    + MdeModulePkg/UdfDxe: Fix operands of different size in bitwise
      OP
    + MdeModulePkg/UdfDxe: Add checks to ensure no possible NULL ptr
      deref
    + MdeModulePkg/SerialDxe: Fix not able to change serial attributes
    + NetworkPkg: Remove the redundant '/' in the end of returned
      ISCSIMacAddr keyword
    + MdeModulePkg/UdfDxe: Fix NULL pointer dereference
    + OvmfPkg/VirtioNetDxe: negotiate VIRTIO_F_IOMMU_PLATFORM
    + OvmfPkg/VirtioNetDxe: map caller-supplied Tx packet to
      device-address
    + OvmfPkg/VirtioNetDxe: add Tx packet map/unmap helper functions
    + OvmfPkg/VirtioNetDxe: update TechNotes
    + OvmfPkg/VirtioNetDxe: dynamically alloc transmit header
    + OvmfPkg/VirtioNetDxe: alloc RxBuf using AllocateSharedPages()
    + OvmfPkg/VirtioNetDxe: map VRINGs using VirtioRingMap()
    + OvmfPkg/VirtioNetDxe: add helper VirtioNetUninitRing()
  - Update openssl to 1.1.0g
* Mon Oct 16 2017 glin@suse.com
  - Update ovmf-gdb-symbols.patch to avoid some symbols from being
    removed (bsc#1063463)
  - Add needssslcertforbuild back. It's useful for the devel projects.
* Thu Sep 14 2017 glin@suse.com
  - Update to 2017+git1505340320.5afa5b8159
    + MdeModulePkg/UdfDxe: suppress incorrect compiler warning in
      ReadFile()
    + MdeModulePkg/UdfDxe: reject reserved values in ICB.Flags[2:0]
    + MdeModulePkg: Add UdfDxe to the dsc file
    + MdeModulePkg: Update PiDxeS3BootScriptLib Internal function name
    + MdeModulePkg/UdfDxe: Remove negative comparison of unsigned
      number
    + ArmVirtPkg/ArmVirtQemu: port HTTP_BOOT_ENABLE from OvmfPkg
    + ArmVirtPkg: don't build the network stack uselessly for Xen
    + MdeModulePkg/PartitionDxe: remove always false comparison
    + MdeModulePkg/PartitionDxe: don't divide 64-bit values with C
      operators
    + MdeModulePkg/UdfDxe: replace zero-init of local variables with
      ZeroMem()
    + MdeModulePkg/UdfDxe: don't return unset Status if INLINE_DATA
      req succeeds
    + MdeModulePkg/UdfDxe: ASSERT() valid ReadFileInfo Flags for
      INLINE_DATA req
    + MdeModulePkg/UdfDxe: Initialize the array after declaration
    + ShellPkg/Ifconfig6: Update error message and add a new line
    + NetworkPkg/IScsiDxe: Fix the incorrect max length of IP_ADDRESS
    + OvmfPkg/SataControllerDxe: log informative message at
      DEBUG_INFO level
    + OvmfPkg/PlatformBootManagerLib: log informative message at
      DEBUG_INFO lvl
    + OvmfPkg/PlatformPei: log informative message at DEBUG_INFO level
    + UefiCpuPkg/CpuDxe: log informative message at DEBUG_INFO level
    + MdeModulePkg/UsbBusDxe: log warning message at DEBUG_WARN level
    + OvmfPkg/PlatformDebugLibIoPort: write messages with IoWriteFifo8()
    + MdePkg/BaseIoLibIntrinsic: fix SEV (=unrolled) variants of IoWriteFifoXX()
    + MdeModulePkg Xhci: Correct description of Timeout param in XhciReg.h
    + BaseTools/GCC: set -Wno-unused-const-variable on RELEASE builds
    + ArmVirtPkg: Enable UDF file system support
    + OvmfPkg: Enable UDF file system support
    + MdeModulePkg/PartitionDxe: Add UDF file system support
    + OvmfPkg/IoMmuDxe: unmap all IOMMU mappings at ExitBootServices()
    + OvmfPkg/IoMmuDxe: generalize IoMmuUnmap() to IoMmuUnmapWorker()
    + OvmfPkg/IoMmuDxe: track all mappings
    + OvmfPkg/VirtioScsiDxe: don't unmap VRING at ExitBootServices()
    + OvmfPkg/VirtioRngDxe: don't unmap VRING at ExitBootServices()
    + OvmfPkg/VirtioGpuDxe: don't unmap VRING & BackingStore at ExitBootServices
    + OvmfPkg/VirtioBlkDxe: don't unmap VRING at ExitBootServices()
    + MdeModulePkg/AtaAtapiPassThru: disable the device at ExitBootServices()
    + MdeModulePkg/AtaAtapiPassThru: unmap DMA buffers after disabling
      BM DMA
    + MdeModulePkg/AtaAtapiPassThru: cache EnabledPciAttributes
    + OvmfPkg/SecMain: Fix stack switching to permanent memory
    + ArmPkg: add ArmCrashDumpDxe driver
    + MdeModulePkg, NetworkPkg: Fix GCC build error
    + NetworkPkg/Ip6Dxe: fix a bug in IP6 driver for IpSec protocol
      notify
    + MdeModulePkg/Ip4Dxe: fix a bug in IP4 driver for IpSec protocol
      notify
    + MdePkg: Add UEFI 2.7 defined GUID and structure for AIP network
      media type
    + MdeModulePkg/UefiBootManagerLib: Generate boot description for
      SD/eMMC
    + Pkcs7VerifyDxe: Don't allow Pkcs7Verify to install protocols twice
    + SecurityPkg/Pkcs7Verify: Complete the Pkcs7VerifyDxe protocol
    + MdePkg PeiMemoryAllocationLib: Update InternalAllocateAlignedPages
    + MdePkg PeiMemoryAllocationLib: Update Free(Aligned)Pages
    + MdeModule PeiCore: Support pre memory page allocation
    + OvmfPkg/VirtioGpuDxe: negotiate VIRTIO_F_IOMMU_PLATFORM
    + OvmfPkg/VirtioGpuDxe: map backing store to bus master device address
    + OvmfPkg/VirtioGpuDxe: helpers for backing store (de)allocation+(un)mapping
    + OvmfPkg/VirtioGpuDxe: take EFI_PHYSICAL_ADDRESS in ResourceAttachBacking()
    + OvmfPkg/VirtioGpuDxe: map virtio GPU command objects to device
      addresses
    + OvmfPkg/VirtioGpuDxe: map VRING for bus master common buffer
      operation
    + OvmfPkg/IoMmuDxe: IoMmuFreeBuffer(): clean up DEBUG message
    + OvmfPkg/IoMmuDxe: IoMmuAllocateBuffer(): nicer and more
      informative DEBUGs
    + OvmfPkg/IoMmuDxe: IoMmuUnmap(): clean up DEBUG message
    + OvmfPkg/IoMmuDxe: IoMmuMap(): log nicer and more informative
      DEBUG msgs
    + OvmfPkg/BaseMemEncryptSevLib: clean up upper-case / lower-case
      in DEBUGs
    + OvmfPkg/BaseMemEncryptSevLib: promote DEBUG_WARN levels to
      DEBUG_ERROR
    + OvmfPkg/BaseMemEncryptSevLib: clean up debug logging of
      PhysicalAddress
    + OvmfPkg/BaseMemEncryptSevLib: clean up DEBUG prefixes
    + OvmfPkg/BaseMemEncryptSevLib: break DEBUG calls to multiple lines
    + OvmfPkg/BaseMemEncryptSevLib: unify encrypt/decrypt DEBUG messages
    + ArmPkg: remove ArmDmaLib
    + OvmfPkg/VirtioScsiDxe: negotiate VIRTIO_F_IOMMU_PLATFORM
    + OvmfPkg/VirtioScsiDxe: map virtio-scsi request and response buffers
    + OvmfPkg/VirtioScsiDxe: add helper to create a fake host adapter error
    + OvmfPkg/VirtioScsiDxe: map VRING using VirtioRingMap()
    + ArmPkg: remove UncachedMemoryAllocationLib
    + BaseTools/Gcc ARM AARCH64: add support for building device tree
      binaries
    + BaseTools: Enable --whole-archive in GCC tool chain as the
      default option
    + UefiCpuPkg/Mplib.c: Perform complete initialization when enable AP
    + OvmfPkg/VirtioBlkDxe: Check the return status of unmap data buffer
    + ArmVirtPkg: remove DmaLib library class resolution
    + ShellPkg: Update CWD and current mapping when commands return
    + ShellPkg: Fix bug that fails to change CWD after "map -r"
    + SecurityPkg: Add ARM/AARCH64 arch to enable RngTest module build
    + OvmfPkg/QemuFwCfgDxeLib: SEV: zero FW_CFG_DMA_ACCESS before
      decrypting it
    + ArmPkg/ArmDmaLib: implement DmaAllocateAlignedBuffer()
    + MdeModulePkg/UefiHiiLib: Fix incorrect check for string length
    + OvmfPkg/VirtioBlkDxe: negotiate VIRTIO_F_IOMMU_PLATFORM
    + Ovmfpkg/VirtioBlkDxe: map virtio-blk request and response buffers
    + OvmfPkg/VirtioBlkDxe: map VRING using VirtioRingMap()
    + MdePkg/S3PciSegmentLib: Add S3PciSegmentLib class and instance
    + MdePkg/PciSegmentLib: Add instances that consumes PciSegmentInfoLib
    + MdePkg/PciSegmentInfoLib: Add PciSegmentInfoLib class and instance
    + UefiCpuPkg/CpuCommonFeaturesLib: Add CPUID MCA support check
    + UefiCpuPkg: Update default for PcdCpuProcTraceMemSize/PcdCpuProcTraceOutputScheme
    + UefiCpuPkg/CpuCommonFeaturesLib: Use MSR data structure when
      change MSR value
    + UefiCpuPkg/ArchitecturalMsr.h: Add RTIT TOPA table entry
      definition
    + UefiCpuPkg/MpLib: fix potential overflow issue
    + UefiCpuPkg/PiSmmCpuDxeSmm: Fix memory protection crash
    + BaseTools/EfiRom: Add multiple device id support
    + OvmfPkg/VirtioRngDxe: negotiate VIRTIO_F_IOMMU_PLATFORM
    + OvmfPkg/Virtio10: define VIRTIO_F_IOMMU_PLATFORM feature bit
    + MdeModulePkg XhciDxe: Fix Map and Unmap inconsistency
    + SecurityPkg/Tcg2Dxe: Properly shutdown TPM before reset
    + OvmfPkg/VirtioRngDxe: map host address to device address
    + OvmfPkg/VirtioLib: change the parameter of VirtioAppendDesc()
      to UINT64
    + OvmfPkg/VirtioLib: alloc VRING buffer with AllocateSharedPages()
    + OvmfPkg/VirtioLib: add function to map VRING
    + OvmfPkg/Virtio10Dxe: add the RingBaseShift offset
    + OvmfPkg/Virtio: take RingBaseShift in SetQueueAddress()
    + OvmfPkg/VirtioLib: take VirtIo instance in VirtioRingInit/VirtioRingUninit
    + OvmfPkg/VirtioLib: add VirtioMapAllBytesInSharedBuffer() helper
      function
    + OvmfPkg/VirtioMmioDeviceLib: implement IOMMU-like member functions
    + OvmfPkg/VirtioPciDeviceDxe: implement IOMMU-like member functions
    + OvmfPkg/Virtio10Dxe: implement IOMMU-like member functions
    + OvmfPkg: introduce IOMMU-like member functions to VIRTIO_DEVICE_PROTOCOL
    + BaseTools: Add the missing -pie link option in GCC tool chain
    + ArmPkg/ArmDmaLib: remove dependency on UncachedMemoryAllocationLib
    + OvmfPkg/QemuVideoDxe: remove AARCH64/ARM support
    + ArmVirtPkg: remove QemuVideoDxe from ArmVirtQemu and ArmVirtQemuKernel
    + BaseTools: Roll back GenFw Change to keep unknown field in RSDS
      debug entry
    + MdeModulePkg/DisplayEngine: Add implementation of HiiPopup protocol
    + MdeModulePkg/Library: Remove the self-reference in
      UdpIoLib/TcpIoLib/IpIoLib
    + ShellPkg/mkdir: support creating nested directories
    + MdeModulePkg/ScsiBusDxe: don't produce ScsiIo for nonexistent LUNs
    + UefiCpuPkg/PiSmmCpuDxeSmm: Add CPUID MCA support check
    + ArmPkg/ArmDmaLib: use double buffering only for bus master write
    + ArmVirtPkg/FdtPL011SerialPortLib: call PL011UartLib in all
      SerialPortLib APIs
    + UefiCpuPkg RegisterCpuFeaturesLib: Fix buffer pointer error usage
    + NetworkPkg/Ip6Dxe: Fix the bug when checking the DataSize
    + MdePkg/BaseLib: Update internal LinkedList verifications
    + MdePkg/BaseLib: Add IsNodeInList() function
    + MdeModulePkg: Delete useless case code
    + MdeModulePkg: Delete never touched code
    + UefiCpuPkg/BaseUefiCpuLib.inf: Remove unnecessary library class
    + UefiCpuPkg RegisterCpuFeaturesLib: Enhance debug messages.
* Mon Aug 28 2017 glin@suse.com
  - Update ovmf-embed-default-keys.patch to handle the empty
    certificate files correctly
* Thu Aug 17 2017 glin@suse.com
  - Update to 2017+git1502826981.a136bc3ccf
    + OvmfPkg/Protocol/VirtioDevice: fix comment style
    + OvmfPkg/VirtioMmioDeviceLib: add missing IN and OUT decoration
    + OvmfPkg/VirtioPciDeviceDxe: add missing IN and OUT decoration
    + OvmfPkg/Virtio10Dxe: supply missing BUS_MASTER attribute
    + OvmfPkg/VirtioPciDeviceDxe: supply missing BUS_MASTER attribute
    + UefiCpuPkg MpInitLib: Save/restore original WakeupBuffer for
      DxeMpLib
    + ShellPkg UefiDpLib: Init CustomCumulativeData.MinDur
    + MdeModulePkg DxeCore: Enhance "ConvertPages: Incompatible
      memory types"
    + MdeModulePkg DxeCore: Fix double free pages on LoadImage
      failure path
    + NetworkPkg/HttpBootDxe: Update device path node to include DNS
      information
    + MdeModulePkg/UefiBootManagerLib: Support DNS device path
      description
    + MdePkg/UefiDevicePathLib: Add DevPathFromTextDns and
      DevPathToTextDns libraries
    + MdePkg/DevicePath.h: Add DNS Device Path definition
    + NetworkPkg/HttpDxe: Handle the HttpVersionUnsupported in the
      HttpConfigData
    + BaseTools: Support TabSpace between section tag in DEC file
    + BaseTools: Don't need to add extra quotes when UI string from
      file
    + BaseTools/UPT: Support Multiple Installation
    + BaseTools/Scripts: Add sample makefile for use with
      RunMakefile.py
    + BaseTools/Scripts: Add python script to run a makefile
    + BaseTools/build: Expand PREBUILD/POSTBUILD DSC actions
    + NetworkPkg/Ip6Dxe: Support SetData interface to clear specific
      configuration
    + MdeModulePkg/Ip4Dxe: Support SetData interface to clear
      specific configuration
    + ShellPkg/drivers: Fix GCC build failure
    + BaseTools/edksetup.sh: fix invalid test for current working
      directory
    + ShellPkg/driver: Show "-" in non-SFO mode
    + ShellPkg/drivers: Show Image Name in non-SFO mode
    + MdeModulePkg: Variable: Fix typo in variable measure
    + MdeModulePkg/NvmExpressDxe: Notify NVME HW when system reset
      happens
    + MdePkg/Nvme: Add NVME shutdown notification related macros
    + NetworkPkg/HttpBootDxe: Refine the coding style.
    + OvmfPkg/AcpiPlatformDxe: short-circuit the transfer of an empty
      S3_CONTEXT
    + MdeModulePkg SerialDxe: Process timeout consistently in
      SerialRead
    + UefiCpuPkg MtrrLib: Remove deprecated micro.
    + UefiCpuPkg CpuDxe: Remove reference deprecated macro.
    + UefiCpuPkg CpuDxe: Enhance get mtrr mask logic.
    + BaseTools/Conf: apply nasmb, asm16 build rule order
    + NetworkPkg/HttpDxe: Support HTTP Patch method
    + OvmfPkg/PlatformPei: support >=1TB high RAM, and discontiguous
      high RAM
    + OvmfPkg/QemuFwCfgLib: Use BusMasterCommonBuffer to map
      FW_CFG_DMA_ACCESS
    + OvmfPkg/IoMmuDxe: Unmap(): recycle MAP_INFO after
      BusMasterCommonBuffer[64]
    + OvmfPkg/IoMmuDxe: abort harder on memory encryption mask
      failures
    + OvmfPkg/IoMmuDxe: implement in-place decryption/encryption for
      Map/Unmap
    + OvmfPkg/IoMmuDxe: rework setup of "MapInfo->PlainTextAddress"
      in Map()
    + OvmfPkg/IoMmuDxe: zero out pages before releasing them
    + OvmfPkg/IoMmuDxe: clean up used library classes
    + OvmfPkg/IoMmuDxe: propagate errors from AmdSevInstallIoMmuProtocol()
    + OvmfPkg/IoMmuDxe: don't initialize local variables
    + OvmfPkg/IoMmuDxe: convert UINTN arguments to UINT64 for the
      %Lx fmt spec
    + OvmfPkg/IoMmuDxe: rename HostAddress to CryptedAddress in
      MAP_INFO
    + OvmfPkg/IoMmuDxe: rename DeviceAddress to PlainTextAddress in
      MAP_INFO
    + OvmfPkg/IoMmuDxe: rewrap source code to 79 characters
    + OvmfPkg/IoMmuDxe: Fix header guard macro
    + MdeModulePkg/DisplayEngine: Fix incorrect display issue
    + BaseTools/VfrCompile: Remove the MAX_PATH limitation
    + BaseTools/VfrCompile: Fix segmentation fault issues
    + NetworkPkg: iSCSI should allow to set 6 or 12 length of ISID
      keyword.
    + UefiCpuPkg: Enable Processor Trace feature.
    + UefiCpuPkg: Add Processor Trace feature definition.
    + UefiCpuPkg: Add Pcds used by processor trace feature.
    + UefiCpuPkg/Msr: Add a missing IvyBridge processor signature
    + MdeModulePkg PeiCore: Install SEC HOB data
    + MdePkg: Add definition for SecHobData PPI
    + UefiCpuPkg PiSmmCpuDxeSmm: Check LMCE capability when wait for
      AP.
    + UefiCpuPkg CpuCommonFeaturesLib: Enable LMCE feature.
    + UefiCpuPkg: Add definition for LMCE feature.
    + NetworkPkg: Display HTTP redirection info to the screen if need.
    + ShellPkg/dblk: Honor the BlockIo alignment requirement.
    + MdeModulePkg/Ufs: Set 'Data Segment Length' field for Write
      Descriptor
    + MdeModulePkg/UfsPassThruDxe: Add impl of UFS Device Config
      Protocol
    + UefiCpuPkg SecCore: Fix operands of different size in bitwise
      operation
    + MdePkg/Ftp4: Fix wrong function pointer declaration
    + NetworkPkg/HttpDxe: Destroy the TLS instance when cleaning up
      the HTTP child
    + CryptoPkg/TlsLib: Remove the redundant free of BIO objects
    + NetworkPkg/Ip6Dxe: Fix the IPv6 PXE boot option goes missing
      issue
    + Fix spelling typo in EFI_HTTP_STATUS_CODE
    + NetworkPkg/HttpDxe: Refine the coding style.
    + MdePkg/Http.h: Refine the coding style.
    + ArmPkg: Move IS_DEVICE_PATH_NODE for sharing
    + MdeModulePkg FirmwarePerfPei: Remove SEC performance data
      getting code
    + UefiCpuPkg SecCore: Add SecPerformancePpiCallBack
    + UefiCpuPkg SecCore: Adjust PeiTemporaryRamBase&Size to be
      8byte aligned
    + MdeModulePkg PeiCore: Handle notification PPI from SEC
    + MdePkg PiPeiCis.h: Add description for notification PPI from
      SEC
    + MdeModulePkg PiSmmCoreMemoryAllocLib: Fix a FreePool()
      assertion issue
    + BaseTools/GenCrc32: Fix a bug to hand empty file for decode
    + BaseTools/EfiLdrImage: Fix a segmentation fault from
      vfprintf()
    + BaseTools/EfiRom: Fix a segmentation fault from
      vsprintf()/vfprintf()
    + BaseTools/GenFfs: Fix a segmentation fault from
      vsprintf()/vfprintf()
    + BaseTools/GenSec: Fix a segmentation fault in main()
    + BaseTools/Split: Fix the segmentation fault in GetSplitValue()
    + BaseTools: Fix the bug to correctly check Pcd type that in FDF
      file
    + MdeModulePkg/PciBus: Avoid hang when BUS pad resource is not
      in top
    + ShellPkg: Avoid buffer out-of-bound access
    + ShellPkg/setvar: Check the duplicate flag
    + ShellPkg/ShellLib: Remove unused macros
    + MdePkg: Follow UEFI 2.7 spec to deprecate SMM Communication
      ACPI Table
    + UefiCpuPkg PiSmmCommunicationSmm: Deprecate SMM Communication
      ACPI Table
    + MdeModulePkg/BMMUiLib: Check reset requirement before exiting
      UiApp
    + MdeModulePkg/BMUiLib: Check reset requirement before exiting
      UiApp
    + MdeModulePkg/SetupBrowser: Record the reset status in all
      SendForm
    + ShellPkg/map: Recognize CDROM change
    + MdeModulePkg Xhci: Also RecoverHaltedEndpoint for BABBLE_ERROR
    + MdeModulePkg SmmLockBoxDxeLib: Get SmmCommRegion for COMM
      buffer
    + MdePkg/ResetNotification: Rename to UnregisterResetNotify
    + MdePkg: Add UEFI 2.7 defined GUID and structure for KMS
      protocol.
    + ShellPkg/ls: Display the file time in local time.
    + BaseTools: Fix the bug that warn() function with only 1
      argument
    + BaseTools: add some comment for .PrebuildEnv file's usage
    + UefiCpuPkg: Update RegisterCpuFeaturesLib to consume
      PcdGetSize with UINTN
    + UefiCpuPkg: Update RegisterCpuFeaturesLib module UNI to match
      it
    + MdeModulePkg: Update NonDiscoverableDeviceRegistrationLib file
      header format
    + MdePkg UsbFunctionIo.h: Update comments for GetDeviceInfo
      return status
    + UefiCpuPkg: Remove deprecated CPU feature.
    + MdeModulePkg SmmAccess: Update comments to follow PI spec.
    + MdePkg SmmAccess2: Update comments to follow PI spec.
    + UefiCpuPkg RegisterCpuFeaturesLib: Add error handling.
    + MdeModulePkg/DxeCore: Avoid accessing non-owned memory
    + MdePkg DxeHstiLib: Fix memory leak issue
    + MdePkg Hsti.h: Update version info to 1.1a
    + ArmPlatformPkg: Support different PL011 reg offset
    + CryptoPkg/OpensslLib AARCH64: clear XIP CC flags
    + BaseTools/tools_def AARCH64: avoid SIMD registers in XIP code
    + BaseTools/tools_def AARCH64: mark register x18 as reserved
    + BaseTools/Build: Support python scripts in PREBUILD/POSTBUILD
    + UefiCpuPkg CpuCommonFeaturesLib: Fix smx/vmx enable logic
      error.
    + UefiCpuPkg RegisterCpuFeaturesLib: Add error handling code.
    + OvmfPkg/QemuFwCfgLib: Suppress GCC49 IA32 build failure
    + MdePkg: Declare _ReturnAddress() in Base.h for MSFT tool chain
    + OvmfPkg: update PciHostBridgeDxe to use PlatformHasIoMmuLib
    + OvmfPkg/QemuFwCfgLib: Add SEV support
    + OvmfPkg: Add IoMmuDxe driver
    + OvmfPkg: Add PlatformHasIoMmuLib
    + OvmfPkg: Add AmdSevDxe driver
    + OvmfPkg/PlatformPei: Set memory encryption PCD when SEV is
      enabled
    + OvmfPkg/BaseMemcryptSevLib: Add SEV helper library
    + OvmfPkg: Update dsc to use IoLib from BaseIoLibIntrinsicSev.inf
    + OvmfPkg/ResetVector: Set C-bit when building initial page table
    + MdeModulePkg/XhciDxe: Make comments align with function
    + MdeModulePkg/PartitionDxe: Add impl of Partition Information
      Protocol
    + MdePkg: Add EFI Partition Information Protocol definitions
    + BaseTools: Report Fd File Path in build log
    + BaseTools: Fix FDF file parse !include file issue
    + BaseTools: Add PCDs conditional operator function
    + BaseTools/Eot: register MM Module types with FFS class.
    + BaseTools/Workspace: check MM module type compatibility with
      PI version.
    + BaseTools/build: register MM module types with build tools.
    + BaseTools/GenFds: register MM Modules and MM FV file types.
    + BaseTools/CommonDataClass: register MM Modules.
    + BaseTools/Common: add support in FDF Parser to parse MM
      Modules.
    + BaseTools/Common: add MM Module data types.
    + BaseTools/AutoGen: auto generate MM template APIs and
      dependencies.
    + BaseTools/GenFw: recognize MM file types as EFI Boot Service
      Drivers.
    + BaseTools/GenFfs: add FFS file types for MM modules.
    + UefiCpuPkg MpInitLib: Update return status to follow spec.
    + UefiCpuPkg CpuMpPei: Update return status to follow spec.
    + UefiCpuPkg CpuDxe: Update return status to follow spec.
    + MdePkg MpServices: Update return status to follow spec.
    + BaseTools/GenFw: disregard payload in PE debug directory entry
      size
    + MdeModulePkg/NvmExpressDxe: Handle timeout for blocking
      PassThru req
    + OvmfPkg: mention the extended TSEG near the PcdQ35TsegMbytes
      declaration
    + OvmfPkg/PlatformPei: honor extended TSEG in PcdQ35TsegMbytes
      if available
    + OvmfPkg/SmmAccess: support extended TSEG size
    + OvmfPkg/IndustryStandard/Q35MchIch9.h: add extended TSEG size
      macros
    + OvmfPkg: make PcdQ35TsegMbytes dynamic
    + OvmfPkg/SmmAccess: prepare for PcdQ35TsegMbytes becoming dynamic
    + OvmfPkg/PlatformPei: prepare for PcdQ35TsegMbytes becoming dynamic
    + OvmfPkg: widen PcdQ35TsegMbytes to UINT16
    + OvmfPkg: update -D E1000_ENABLE from Intel PROEFI v.07 to
      BootUtil v.22
    + OvmfPkg: disable build-time relocation for DXEFV modules
    + ArmVirtPkg: remove status code support
    + ArmPlatformPkg: convert VExpress ResetSystemLib to
      ResetSystemLib
    + MdeModulePkg/XhciDxe: Check timeout URB again after stopping
      endpoint
    + MdeModulePkg/XhciDxe: Separate common logic to XhcTransfer
    + MdeModulePkg/XhciDxe: Dump the CMD/EVENT/INT/BULK ring
      information
    + MdeModulePkg/XhciDxe: Refine IsTransferRingTrb and
      IsAsyncIntTrb
    + BaseTools: suppress usage instructions with rebuild options
    + ArmVirtPkg: switch to generic ResetSystemRuntimeDxe
    + ArmPkg: implement ResetSystemLib using PSCI 0.2 calls
    + MdeModulePkg CapsuleApp: Fix print info in BuildGatherList()
    + MdeModulePkg ResetSystem: Update the comments of ResetSystem()
    + MdeModulePkg/ResetSystem: Implement ResetNotification protocol
    + MdeModulePkg/ResetSystem: Remove unnecessary global variable
    + MdePkg: Add ResetNotification protocol definition
    + MdeModulePkg PeiCore: Correct the comments of PeiResetSystem2
    + MdePkg: Correct the comments of EFI_PEI_RESET2_SYSTEM
    + ShellPkg: Update dh command to reflect correct driver field
      information
    + MdeModulePkg/AtaAtapiPassThru: relax PHY detect timeout
    + MdePkg/IndustryStandard: update ACPI/IORT definitions to
      revision C
    + ShellPkg DmpStore: Make NameSize to be consistent with name
      buffer
    + MdeModulePkg/BdsDxe: Report Status Code when booting from
      BootOrder list
    + MdePkg/PiStatusCode: Add new Status Code for BDS when
      attempting BootOrder
    + Revert "MdeModulePkg/DxeCore: Fixed Interface returned by
      CoreOpenProtocol"
    + UefiCpuPkg: Modify GetProcessorLocationByApicId() to support
      AMD.
    + UefiCpuPkg: Add CPUID definitions for AMD.
    + UefiCpuPkg: Define AMD Memory Encryption specific CPUID and MSR
    + MdeModulePkg DxeCore: Only free ScratchBuffer when it is not
      NULL
    + MdeModulePkg/DxeCore: Fixed Interface returned by
      CoreOpenProtocol
    + BaseTools/PatchCheck.py: Add warning info for new binary files
    + BaseTools/PatchCheck.py: Fix misreport for binary changes in
      patch
    + BaseTools: support building the same INF more than once with
    - m option
    + BaseTools: report error HiiString in HII format PCD must not
      be empty
    + BaseTools: Fix the bug that use '|' or '||' in DSC file's Pcd
      value
    + BaseTools: Enhance the report to not show the empty section
    + BaseTools: Enhance DEC Defines section format check
    + BaseTools: Copy "TianoCore" userextensions into As Built Inf
    + BaseTools: Copy "MODULE_UNI_FILE" file into OUTPUT directory
    + MdePkg/Cper.h: Update Firmware Error Record per UEFI 2.7
    + MdeModulePkg: Enhance the debug message for
      InstallProtocolInterface
    + MdePkg: update Base.h in MdePkg to check the _MSC_VER
    + BaseTools: add /Gw to CC_FLAGS for VS2013 and higher tool
      chain tags
    + NetworkPkg: Fix GCC build issue.
    + BaseTools/tools_def: AARCH64: disable LTO type mismatch
      warnings
    + BaseTools/tools_def GCC: ARM/AARCH64: drop -save-temps from
      command line
    + MdeModulePkg Variable: Add missing change in dd59d95e1994
    + MdeModulePkg: Minor update to the Data parameter for PEI
      GetVariable()
    + MdePkg: Minor update to the Data parameter for PEI
      GetVariable()
    + NetworkPkg/HttpBootDxe: Add HTTP Boot Callback protocol
      support.
    + MdePkg: Add header file for HTTP Boot Callback protocol
      in UEFI 2.7.
    + MdeModulePkg: Return invalid param in LocateProtocol for
      Protocol==NULL
    + MdePkg: Add EFI UFS Device Config Protocol definitions
    + MdeModulePkg: Fix use-after-free error in
      InstallConfigurationTable()
    + MdeModulePkg: Clean ACPI 2.0 characters in UEFI spec
    + MdePkg: Clean ACPI 2.0 characters in UEFI spec
    + UefiCpuPkg/SmmCpuFeatureLib: Add more CPU ID for
      SmmFeatureControl.
    + ShellBinPkg: Ia32/X64 Shell binary update.
    + MdeModulePkg/BMMUiLib: Fix incorrect variable name
    + SecurityPkg TcgDxe: Simplify debug msg when "TPM not working
      properly"
    + ShellPkg: Fix typo errors in ifconfig help output
    + Shell/alias: Print detailed error when deleting alias
    + OvmfPkg/AcpiPlatformDxe: fix spurious uninitialized var warning
    + NetworkPkg/HttpBootDxe: Handle new #define in HttpBootDxe
    + MdeModulePkg/DxeHttpLib: Handle new #define in
      HttpMappingToStatusCode
    + MdePkg/Http.h: Add #define for 308 redirect
    + ShellPkg/ifconfig: Update help message
    + MdeModulePkg/PciHostBridgeDxe: Make bitwise operands of the
      same size
    + OvmfPkg/AcpiPlatformDxe: alloc blobs from 64-bit space unless
      restricted
    + BaseTools: Fix the bug use same FMP_PAYLOAD in different
      capsule file
    + BaseTools: Fix incremental build failure that override file be
      removed
    + ShellBinPkg: Ia32/X64 Shell binary update.
    + ShellPkg/parse: Handle Unicode stream from pipe correctly
    + ShellPkg/alias: Return status for alias deletion
    + MdePkg SmmIoLib: Use NULL pointer check instead of useless
      Status check
    + MdePkg SmmMemLib: Remove ASSERT in SmmIsBufferOutsideSmmValid
    + MdeModulePkg/UefiPxeBcDxe: Refine the PXE boot displayed
      information
    + MdeModulePkg/UefiPxeBcDxe: Fix the PXE BootMenu selection issue
  - Build x86_64 4MB images since upstream switched to 4MB by for a
    larger space for variables. Also update README to reflect the
    change.
  - Remove License-fat-driver.txt since FatPkg uses the same license
    as the root license.
  - Add the OVMF license file
  - Disable the PIE/PIC warning for the debug files since all object
    files will be converted to PE/COFF, so it's pointless to enable
    PIE/PIC.
  - Remove Default_DB_EX and Default_DBX correctly
* Mon Jun 05 2017 glin@suse.com
  - Update to 2017+git1496630893.7ec69844b8
    + ShellPkg/alias: Fix bug to support upper-case alias
    + BaseTools/GCC ARM/AARCH64: Force disable PIE
    + BaseTools/Scripts: discard .gnu.hash section in GCC builds
    + OvmfPkg: make the 4MB flash size the default
    + MdeModulePkg/BDS: Fix a buffer overflow bug
    + CryptoPkg/BaseCryptLib: Add NULL pointer checks in DH and P7Verify
    + UefiCpuPkg/BaseUefiCpuLib: Use NASM read-only data section name
    + OvmfPkg/PlatformPei: align EmuVariableNvStore at any page boundary
    + OvmfPkg/EmuVariableFvbRuntimeDxe: change block size to 4KB
    + OvmfPkg/EmuVariableFvbRuntimeDxe: correct NumOfLba vararg type
      in EraseBlocks()
    + ArmPlatformPkg/NorFlashDxe: correct NumOfLba vararg type in
      EraseBlocks()
    + OvmfPkg/EmuVariableFvbRuntimeDxe: always format an auth
      varstore header
    + MdeModulePkg/PciBus: Add IOMMU support
    + MdeModulePkg/PciHostBridge: Add IOMMU support
    + MdeModulePkg/Include: Add IOMMU protocol definition
    + ShellPkg/HandleParsingLib: Show LoadedImageProtocol file path
      as text
    + NetworkPkg: Fix issue in dns driver when building DHCP packet
    + Addressing TCP Window Retraction when window scale factor is used
    + Add wnd scale check before shrinking window
    + UefiCpuPkg/MtrrLib: Don't report OutOfResource when MTRR is enough
    + MdePkg DxeServicesLib: Handle potential NULL FvHandle
    + OvmfPkg/PlatformPei: handle non-power-of-two spare size for
      emu variables
    + SecurityPkg/Pkcs7VerifyDxe: Add format check in DB list contents
    + OvmfPkg: raise max variable size (auth & non-auth) to 33KB for
      FD_SIZE_4MB
    + OvmfPkg: introduce 4MB flash image (mainly) for Windows HCK
    + OvmfPkg/OvmfPkg.fdf.inc: extract VARS_LIVE_SIZE and
      VARS_SPARE_SIZE macros
    + OvmfPkg: introduce the FD_SIZE_IN_KB macro / build flag
    + ArmVirtPkg: install EdkiiPlatformHasDeviceTree proto in the
      32-bit builds
    + NetworkPkg: Fix PXEv6 boot failure when DhcpBinl offer received
    + NetworkPkg: Fix bug in iSCSI mode ipv6 when enabling target DHCP
    + Fix issue the iSCSI client can not send reset packet
    + CryptoPkg/SmmCryptLib: Enable HMAC-SHA256 support for SMM
    + ShellPkg/Shell: eliminate double-free in RunSplitCommand()
    + ShellPkg/Shell: clean up bogus member types in SPLIT_LIST
    + MdeModulePKg/BDS: Build meaningful description for Wi-Fi boot
      option
    + MdeModulePkg/DeviceManagerUiLib: Fix the network device MAC
      display issue
    + MdeModulePkg/Mtftp4Dxe: Add invalid ServerIp check during MTFTP
      configuration
    + NetworkPkg/TlsAuthConfigDxe: Close and free the file related
      resource
    + NetworkPkg: Correct the proxy DHCP offer handing
    + NetworkPkg/HttpDxe: Fix HTTP download OS image over 4G size
      failure
    + MdeModulePkg/UefiBootManagerLib: Avoid buggy USB short-form
      expanding
    + NetworkPkg: Fix bug related DAD issue in IP6 driver
    + NetworkPkg: Add check logic for iSCSI driver
    + MdeModulePkg PiSmmCore: Enhance SMM FreePool to catch buffer
      overflow
    + UefiCpuPkg/PiSmmCpuDxeSmm: Lock should be acquired
    + MdeModulePkg/BootManagerMenu: Add assertion to indicate no DIV
      by 0
    + CryptoPkg: Correct some minor issues in function comments
    + MdePkg/UefiLib: Avoid mis-calculate of graphic console size
    + MdeModulePkg/PiSmmCore: Fix potentially uninitialized local
      variable
    + MdeModulePkg DxeCore: Fix issue to print GUID value %g without
      pointer
    + ArmVirtPkg/ArmVirtXen: remove ARM BdsLib library class resolution
  - Add ovmf-disable-ia32-firmware-piepic.patch to disable pic/pie
    explicitly since gcc7 in Factory enables pic/pie by default but
    GenFw cannot handle the GOT sections and failed the build.
* Sat May 06 2017 meissner@suse.com
  - ovmf-pie.patch: add -fPIE to the Common build Makefile to
    allow a global PIE build.
* Thu Apr 13 2017 glin@suse.com
  - Update to 2017+git1492060560.b6d11d7c46 (fate#322331, bsc#1032659)
    + MdePkg: BaseIoLibIntrinsic (IoLib class) library
    + MdeModulePkg/IdeBusPei: Fix undefined behavior in signed left
      shift
    + MdeModulePkg/ScsiDiskDxe: Fix undefined behavior in signed left
      shift
    + OvmfPkg/QemuVideoDxe: VMWare SVGA device support
    + MdeModulePkg/UefiBootManagerLib: Enhance short-form expanding
      logic
    + CryptoPkg/BaseCryptLib: Adding NULL checking in time() wrapper
    + CryptoPkg: Fix possible unresolved external symbol issue.
    + CryptoPkg/OpensslLib: Suppress extra build warnings in openssl
      source
    + CryptoPkg: Move openssl and CRT headers to private include
      section
    + BaseTools: Update tools_def.template to add -fno-builtin in GCC
      tool chain
    + SecurityPkg: SecureBootConfigDxe: Support AUTH_2 enrollment to
      DBX
    + MdeModulePkg/UefiHiiLib:Fix incorrect comparison expression
    + ArmVirtPkg/ArmVirtQemuKernel: increase slack space for DTB
    + ArmVirtPkg/FdtClientDxe: honor memory DT node 'status' property
    + NetworkPkg: Fix some bugs related to iSCSI keyword configuration
    + MdeModulePkg/DxeHttpLib: Avoid the pointless comparison of
      UINTN with zero
    + BaseTools: Enhance expression to support some more operation
    + MdePkg/Shell.h: Update Shell version from 2.1 to 2.2
    + UefiCpuPkg/PiSmmCpuDxeSmm: Update saved SMM ranges check in
      SmmProfile
    + ArmVirtPkg/PlatformHasAcpiDtDxe: allow guest level ACPI disable
      override
    + BaseTools/GCC AARCH64: force disable PIC code generation
    + UefiCpuPkg/MtrrLib: Use a better algorithm to calculate MTRR
    + MdeModulePkg/SmmCore: Fix memory leak on Profile unregistered
    + OvmfPkg: Allow multiple add-pointer linker commands to same
      ACPI table
  - Drop upstream patch: ovmf-bsc1031336-fix-hii-gcc7-build.patch
* Wed Apr 05 2017 glin@suse.com
  - Add ovmf-bsc1031336-fix-hii-gcc7-build.patch to fix gcc7 build
    (bsc#1031336)
* Thu Mar 30 2017 glin@suse.com
  - Update to 2017+git1490844769.d3017dd96b
    + MdeModulePkg/DxeHttpLib: Fix the incorrect return status if URI
      port is invalid
    + NetworkPkg/DnsDxe: Fix zero StationIp configuration failure of
      DNSv6
    + CryptoPkg: Clean-up CRT Library Wrapper
    + CryptoPkg: Fix handling of &strcmp function pointers
    + CryptoPkg/OpensslLib: Update INF files to support OpenSSL-1.1.0x
      build
    + ArmVirtPkg/PlatformHasAcpiDtDxe: don't expose DT if QEMU
      provides ACPI
    + ArmVirtPkg: enable AcpiTableDxe and EFI_ACPI_TABLE_PROTOCOL
      dynamically
    + ArmVirtPkg: add XenPlatformHasAcpiDtDxe
    + ArmVirtPkg: add PlatformHasAcpiDtDxe
    + UefiCpuPkg/AcpiCpuData.h: Support >4GB MMIO address
    + NetworkPkg/IScsiDxe: Fix the incorrect error handling in
      DriverEntryPoint
    + Fix potential ASSERT if NetIp4IsUnicast is called
    + ArmPkg/PlatformBootManagerLib: move to BootLogoLib for boot
      splash support
    + UefiCpuPkg: Add CPU Features PEI/DXE drivers
    + ArmVirtPkg/HighMemDxe: use CPU arch protocol to apply memprotect
      policy
    + MdeModulePkg/BootGraphicsResourceTableDxe: don't allocate below
      4 GB
    + MdeModulePkg/DxeCore: deal with allocations spanning several
      memmap entries
    + MdeModulePkg/AcpiTableDxe: Not make FADT.{DSDT,X_DSDT} mutual
      exclusion
    + NetworkPkg: Fix service binding issue in TCP dxe
    + MdeModulePkg: Fix service binding issue in TCP4 and Ip4 dxe
    + MdeModulePkg: Fix bug in DxeHttplib when converting port number
    + MdeModulePkg/Ip4Dxe: Add Ip/Netmask pair check for Ip4Config2
    + ArmPkg/UncachedMemoryAllocationLib: set XP bit via CPU arch
      protocol
    + MdeModulePkg DxeCore: Remove unreferenced symbol for memory
      profile
    + MdeModulePkg PiSmmCore: Remove unreferenced symbol for SMRAM
      profile
    + NetworkPkg: Fix potential bug if the iSCSI use dns protocol
    + MdePkg/UefiDevicePathLib: Fix the wrong MAC address length
    + OvmfPkg/AcpiPlatformDxe: save fw_cfg boot script with QemuFwCfgS3Lib
    + ArmVirtPkg, OvmfPkg: retire QemuFwCfgS3Enabled() from QemuFwCfgLib
    + OvmfPkg: resolve QemuFwCfgS3Lib
    + ArmVirtPkg: resolve QemuFwCfgS3Lib
    + OvmfPkg/QemuFwCfgS3Lib: add initial PEI and DXE fw_cfg library
      instances
    + OvmfPkg: introduce QemuFwCfgS3Lib class
    + MdeModulePkg/SmmCore: Add Context in SmiHandlerProfileUnregister
    + MdeModulePkg/UefiBootManagerLib: Generate boot description for
      NVME
    + ArmVirtPkg/ArmVirtPL031FdtClientLib: unconditionally disable DT
      node
    + ArmVirtPkg/FdtClientDxe: supplement missing EFIAPI calling conv
      specifiers
    + MdeModulePkg/AcpiTableDxe: improve FADT.{DSDT,X_DSDT} mutual
      exclusion
    + ArmPkg/CpuDxe: handle implied attributes in EfiAttributeToArmAttribute
    + ArmVirtPkg: apply PE/COFF memory protection to DxeCore as well
    + ArmPkg/UncachedMemoryAllocationLib: map uncached allocations
      non-executable
    + ArmPkg/UncachedMemoryAllocationLib: use CWG value to align pool
      allocations
    + ArmPkg/UncachedMemoryAllocationLib: restore mapping attributes
      after free
  - Update openssl to 1.1.0e
* Wed Mar 08 2017 glin@suse.com
  - Update to 2017+git1488934948.29e9bf10dc
    + ArmVirtPkg: enable non-executable DXE stack for all platforms
    + ArmVirtPkg: enable PE/COFF image and memory protection for ARM
      platforms
    + ArmPkg/CpuDxe ARM: honour RO/XP attributes in SetMemoryAttributes()
    + ArmPkg/CpuDxe ARM: avoid unnecessary cache/TLB maintenance
    + ArmPkg/CpuDxe ARM: avoid splitting page table sections
      unnecessarily
    + Refine casting expression result to bigger size
    + NetworkPkg/Dhcp6Dxe: Handle the Nil UUID case
    + ArmVirtPkg AARCH64: enable NX memory protection for all platforms
    + ArmVirtPkg/HighMemDxe: preserve non-exec permissions on newly
      added regions
    + SecurityPkg: Fix potential bug in Security Boot dxe
    + MdeModulePkg/EbcDxe: use EfiBootServicesCode memory for thunks
    + CryptoPkg/OpensslLib: Upgrade OpenSSL version to 1.0.2k
      (bsc#1030565)
    + ArmVirtPkg: clear PcdPerformanceLibraryPropertyMask PCD
    + Ignore duplicated DNS address check
    + MdeModulePkg/DxeCore: base code protection on permission
      attributes
    + OvmfPkg: exclude libssl functionality from OpensslLib if
      TLS_ENABLE=FALSE
    + CryptoPkg/OpensslLib: introduce OpensslLibCrypto instance
    + ArmVirtPkg/ArmVirt.dsc.inc: AARCH64: enable DXE image
      protection feature
    + OvmfPkg/XenBusDxe: Use EFIAPI for XenStoreVSPrint
    + Update the Ethernet interface name
    + NetworkPkg:Add scriptable configuration to iSCSI driver by
      leveraging x-UEFI
    + ArmPkg/ArmMmuLib: AARCH64: enable stack alignment checking
    + ArmPlatformPkg/ArmPlatformStackLib: use callee preserved
      registers
    + MdeModulePkg/DxeCore: Add UEFI image protection
    + UefiCpuPkg/CpuDxe: Add memory attribute setting
    + OvmfPkg/QemuFwCfg: introduce FW_CFG_IO_SELECTOR, FW_CFG_IO_DATA,
      and FW_CFG_IO_DMA_ADDRESS
    + UefiCpuPkg/ExceptionHandlerAsm.S: Fix code length issue with
      GCC 5.4
    + ArmPkg/ArmMmuLib: AARCH64: add support for modifying only
      permissions
    + ArmPkg/CpuDxe: ARM: ignore page table updates that only change
      permissions
    + ArmPkg/CpuDxe: translate invalid memory types in
      EfiAttributeToArmAttribute
    + ArmPkg/CpuDxe: Correct EFI_MEMORY_RO usage
    + OvmfPkg/AcpiPlatformDxe: implement the QEMU_LOADER_WRITE_POINTER
      command
    + MdeMoudlePkg/DisplayEngine: Fix incorrect index used in array
      "InputText"
    + MdeModulePkg: Add the EFI_PRINT2S_PROTOCOL
    + MdePkg/BasePrintLib: Add safe print functions [A|U]ValueToStringS
    + Refine the SPrint functions
    + SecurityPkg: enhance secure boot Config Dxe & Time Based
      AuthVariable
    + Generate the correct operational state of the interface
    + NetworkPkg/HttpBootDxe: Update to check specified media type
    + NetworkPkg/HttpBootDxe: Request HTTP token notify as a DPC at
      TPL_CALLBACK
    + NetworkPkg/iSCSIDxe: Update the condition for IScsiStart Abort
    + MdePkg ACPI: Incorrect definition name for ACPI IORT Table
      signature
    + MdeModulePkg/PciBus: Accept Spec values as BarIndex and
      Alignment
    + NetworkPkg/NetworkPkg.uni: Define the prompt and help
      information for PcdAllowHttpConnections
    + MdeModulePkg/DxeHttpLib: Correct the return status for the
      HTTP Port/ContentLength
    + MdeModulePkg/UefiBootManagerLib: Initialize Handle before
      using it
    + OvmfPkg/SmmControl2Dxe: select broadcast SMI if available
    + OvmfPkg: dynamic defaults for PcdCpuSmmApSyncTimeout,
      PcdCpuSmmSyncMode
    + ArmVirtPkg/QemuFwCfgLib: implement QemuFwCfgSkipBytes() API
    + ArmVirtPkg/QemuFwCfgLib: use DMA for QemuFwCfgWriteBytes() if
      available
    + ArmVirtPkg/QemuFwCfgLib: extract generic DmaTransferBytes()
      function
    + OvmfPkg/QemuFwCfgLib: add QemuFwCfgSkipBytes()
    + OvmfPkg/QemuFwCfgLib: generalize InternalQemuFwCfgDmaBytes()
      to SKIP op
    + SecurityPkg: Tcg2Dxe: Update PCR[4] measure logic
    + MdePkg: Add definitions for SMBIOS spec 3.1.1
    + OvmfPkg/QemuVideoDxe: Frame buffer config size may change in
      new mode
  - Update openssl to 1.0.2k
* Tue Jan 24 2017 glin@suse.com
  - update to 2017+git1485224553.6671cd7444
    + NetworkPkg: Fix protocol handler service in HttpDxe
    + OvmfPkg: Allow HTTP connections if HTTP Boot enabled
    + NetworkPkg: Add PCD to enable the HTTP connections switch
    + MdePkg: Add definitions for SMBIOS spec 3.1.0
    + ArmPlatformPkg/NorFlashDxe: Change Flash memory attributes
      before writes
    + MdePkg DxeHobLib: Make GetHobList working before Constructor
      is called
    + NetworkPkg: Add dns support for target URL configuration in
      ISCSI
    + MdeModulePkg/FileExplorer: Enable functionality of creating
      new file/folder
    + OvmfPkg: pull in TLS modules with -D TLS_ENABLE (also enabling
      HTTPS)
    + OvmfPkg: correct the IScsiDxe module included for the IPv6 stack
    + OvmfPkg: always resolve OpenSslLib, IntrinsicLib and
      BaseCryptLib
    + OvmfPkg: Modify QemuFwCfgLib to use new IoLib class library
    + OvmgPkg/PlatformBootManagerLib: Add Debug Agent console
    + OvmfPkg/SmmControl2Dxe: correct PCI_CONFIG_READ_WRITE in S3
      boot script
    + OvmfPkg: Install BGRT ACPI table
    + MdeModulePkg/Bds: Fix a bug that may causes S4 fails to resume
    + MdePkg, MdeModulePkg: S3BootScriptSaveMemPoll(): accept 64-bit
      LoopTimes
    + NetworkPkg/HttpDxe: Fix the potential NULL dereference
    + NetworkPkg/HttpDxe: HTTPS support over IPv4 and IPv6
    + NetworkPkg/TlsAuthConfigDxe: Provide the UI to support TLS
      auth configuration
    + NetworkPkg/TlsDxe: TlsDxe driver implementation over OpenSSL
    + MdePkg: Add TLS related protocol definition
    + MdePkg/MemoryLib: Refine InternalMemSetMem16|32|64 functions
      logic
    + NetworkPkg: Replace ASSERT with error return code in PXE and
      HTTP boot driver
    + MdeModulePkg: Replace ASSERT with error return code in PXE
      driver
    + UefiCpuPkg/Cpuid.h: Update CPUID definitions with SDM (Sep.2016)
    + UefiCpuPkg/Include: Update MSR header files with SDM (Sep.2016)
    + UefiCpuPkg/PiSmmCpuDxeSmm: Always initialze PSD
    + MdeModulePkg/PiSmmCore: MemoryAttributeTable need keep non-PE
      record
    + MdeModulePkg/PiSmmCore: AllocatePool should use MemoryType
    + OvmfPkg/XenHypercallLib: Add EFIAPI
    + OvmfPkg/QemuFwCfgLib: support QEMU's DMA-like fw_cfg access
      method
    + ArmVirtPkg/QemuFwCfgLib: rebase lib instance to updated lib
      class header
    + OvmfPkg/QemuFwCfgLib: extend lib class header with more
      definitions
    + ArmVirtPkg, OvmfPkg: QemuFwCfgLib: move DMA-related defs to lib
      class
    + OvmfPkg/QemuFwCfgLib: move InternalQemuFwCfgIsAvailable() to
      lib instances
    + ArmVirtPkg/QemuFwCfgLib: remove superfluous InternalQemuFwCfgIsAvailable()
    + OvmfPkg: Remove use of IntelFrameworkModulePkg legacy libs
    + UefiCpuPkg/PiSmmCpuDxeSmm: Remove MTRRs from PSD structure
    + UefiCpuPkg/PiSmmCpuDxeSmm: Clear some semaphores on S3 boot
      path
    + ArmPkg/ArmDmaLib: add support for fixed host-to-device DMA
      offset
    + ArmPkg/ArmDmaLib: clean up abuse of device address
    + ArmPkg/ArmDmaLib: fix incorrect device address of double buffer
    + ArmPkg/ArmDmaLib: use DMA buffer alignment from CPU arch
      protocol
    + ArmPkg/ArmMmuLib: support page tables in cacheable memory only
    + UefiCpuPkg/PiSmmCpu: relax superpage protection on page split
    + OvmfPkg/PlatformPei: take VCPU count from QEMU and configure
      MpInitLib
    + UefiCpuPkg/MpInitLib: wait no longer than necessary for initial
      AP startup
  - Enable TLS support by default (for HTTPS)
* Tue Nov 29 2016 glin@suse.com
  - update to 2017+git1480394913.2b2efe3:
    + UefiCpuPkg/PiSmmCpuDxeSmm: handle dynamic
      PcdCpuMaxLogicalProcessorNumber
    + SecurityPkg Tcg2ConfigDxe: Align Attempt TPM Device help with
      options
    + SecurityPkg Tcg2ConfigDxe: Remove BlockSID actions and related
      strings
    + SecurityPkg OpalPasswordDxe: Use PP actions to enable BlockSID
    + SecurityPkg Tcg2PPLib: Support BlockSID related actions
    + MdeModulePkg/NetLib: Handle an invalid IPv6 address case
    + UefiCpuPkg/DxeMpLib: Fix bug when getting target C-State from
      eax
    + UefiCpuPkg/DxeMpLib: Make sure APs in safe loop code
    + UefiCpuPkg/DxeMpLib: Allocate new safe stack < 4GB
    + UefiCpuPkg/DxeMpLib: Get safe AP loop handler from global
      variable
    + ArmPlatformPkg: Fix VE RTSM mem map descriptor count
    + ArmPlatformPkg: Reformat VE Memory Map code
    + ArmPkg: remove the LinuxLoader application
    + MdeModulePkg/SetupBrowser:Don't support password without
      interactive flag
    + MdeModulePkg/DisplayEngine: Popup dialogue when password is
      not supported
    + MdeModulePkg/AtaAtapiPassThru: Ensure GHC.AE bit is always set
      in Ahci
    + MdeModulePkg/Xhci: Add 10ms delay before sending SendAddr cmd
      to dev
    + UefiCpuPkg/PiSmmCpu: Correct exception message
    + UefiCpuPkg: fix feature test for Extended Topology CPUID leaf
    + SecurityPkg DxeTcg2PPLib: Lock Tcg2PhysicalPresenceFlags
      variable on S4
    + MdeModulePkg/DxeNetLib: Allow the IPv4/prefix case when
      AsciiStrToIp4
    + ShellPkg: update ping6 to use timer service instead of timer
      arch protocol
    + MdeModulePkg/DisplayEngine: Return the selectable menu
      correctly
    + SecurityPkg Tcg2Dxe: ASSERT to ensure 'VarData' is not NULL
    + SecurityPkg TcgStorageCoreLib: ASSERT to ensure 'ByteSeq' is
      not NULL
    + UefiCpuPkg/PiSmmCpuDxeSmm: dynamic PcdCpuSmmApSyncTimeout,
      PcdCpuSmmSyncMode
    + MdeModulePkg/PiSmmCore: Cache CommunicationBuffer info before
      using it
    + Check for the max DHCP packet length before use it
    + OvmfPkg: Add 4K PE alignment to enable SMM page level
      protection
    + UefiCpuPkg/PiSmmCpu: Check XdSupport before set NX
    + MdeModulePkg/BdsDxe: Avoid overwriting PlatformRecovery####
    + MdeModulePkg/BdsDxe: Fix bug to run non-first
      PlatformRecovery####
    + PcAtChipsetPkg/PcRtc: Handle NULL table entry in RSDT/XSDT
    + UefiCpuPkg/SecCore: Correct print format for stack information
    + MdeModulePkg/PiSmmCpuDxeSmm: Check RegisterCpuInterruptHandler
      status
    + MdeModulePkg/CpuExceptionHanderLibNull:
      RegisterCpuInterruptHandler()
    + UefiCpuPkg/PiSmmCpuDxeSmm: Add volatile to mNumberToFinish
    + UefiCpuPkg/PiSmmCpuDxeSmm: TransferApToSafeState() use UINTN
      params
    + MdePkg/BaseSynchronizationLib: Fix function names in function
      headers
    + MdePkg/BaseSynchronizationLib: Add volatile Interlocked*() APIs
    + MdePkg/Include: Add volatile to SynchronizationLib parameters
    + UefiCpuPkg/MpInitLib: support 64-bit AP stack addresses
    + UefiCpuPkg/MpInitLib/X64/MpFuncs.nasm: fix fatal typo
    + UefiCpuPkg/MpInitLib/X64/MpFuncs.nasm: remove superfluous
      instruction
    + UefiCpuPkg/DxeMpInitLib: remove duplicate HobLib class
      dependency
    + MdeModulePkg/Include: Add PiSmmMemoryAttributesTable.h
    + MdeModulePkg HiiDatabase: Remove extra memory initialization
    + UefiCpuPkg/PiSmmCpuDxeSmm: Add paging protection
    + UefiCpuPkg/dec: Add PcdCpuSmmStaticPageTable
    + MdeModulePkg/PiSmmCore: Add MemoryAttributes support
    + ArmVirtPkg DxeHobLib: Update func header description of
      BuildFv(2)Hob()
    + IntelFrameworkPkg PeiHobLib: Check FV alignment when building
      FV HOB
    + MdePkg HobLib: Check FV alignment when building FV HOB
    + MdeModulePkg DxeCore: Show error message on unaligned FvImage
      issue
    + MdeModulePkg/Ip4Dxe: Correct the return status
    + MdeModulePkg/Ip4Dxe: Add wrong/invalid subnet check
    + OvmfPkg AcpiTables: Use PcdDebugIoPort to describe QEMU debug
      console
    + MdePkg/BaseLib: Add one wrapper on RdRand access for parameter
      check
    + UefiCpuPkg/MpInitLib: Update AP information when BSP switched
    + UefiCpuPkg/MpInitLib: Program AP stack in fixed address
    + UefiCpuPkg/MpInitLib: Add InitFlag and CpuInfo in
      MP_CPU_EXCHANGE_INFO
    + UefiCpuPkg/MpInitLib: Remove CPU information from CPU_AP_DATA
    + UefiCpuPkg/MpInitLib: Force sending INIT-SIPI-SIPI to reset APs
    + UefiCpuPkg/MpInitLib: Fixed offset error on Cr3Location
    + UefiCpuPkg/PiSmmCpuDxeSmm: Free SmramRanges to save SMM space
    + ShellPkg/dmpstore: Support "-sfo"
    + ArmPkg/Library/ArmDmaLib: Deallocate Map buffer in case of
      error
    + UefiCpuPkg/PiSmmCpuDxeSmm: Decrease mNumberToFinish in AP safe
      code
    + UefiCpuPkg/PiSmmCpuDxeSmm: Place AP to 32bit protected mode on
      S3 path
    + UefiCpuPkg/PiSmmCpuDxeSmm: Put AP into safe hlt-loop code on S3
      path
    + UefiCpuPkg/DxeMpLib: Place APs to suitable state on Legacy OS
      boot
    + UefiCpuPkg/DxeMpLib: Allocate below 4GB mem for
      AsmRelocateApLoopFunc
    + CryptoPkg/BaseCryptLib: Make comments consistent with the
      function
    + OvmfPkg/PlatformBds: Dispatch deferred images after EndOfDxe
    + ArmVirPkg/PlatformBds: Dispatch deferred images after EndOfDxe
    + MdeModulePkg/BdsDxe: Check deferred images before booting to OS
    + UefiCpuPkg/MpInitLib: Do not wakeup AP if only one processor
      supported
    + BaseTools/EfiRom: Fix potential memory leak
    + OvmfPkg/ResetVector: Depend on PCD values of the page tables
    + CryptoPkg: Add HMAC-SHA256 cipher support
    + CryptoPkg: Add xxxxHashAll APIs to facilitate the digest
      computation
    + NetworkPkg: Fix the wrong Timer event check
    + NetworkPkg: Update IP4 stack drivers for classless address
      unicast check
    + PcAtChipsetPkg/HpetTimerDxe: Fix race condition in
      SetTimerPeriod()
    + OvmfPkg: Make more use of ARRAY_SIZE()
    + rebase to ARRAY_SIZE()
    + ArmPlatformPkg: remove ARM BDS
    + OvmfPkg/XenConsoleSerialPortLib: don't include
      <Uefi/UefiBaseType.h>
    + NetworkPkg: Support bracketed IPv6 address during a redirection
      in iSCSI
    + NetworkPkg: Enhance the code in DNS driver
    + NetworkPkg: Add dns support for pxe boot based on IPv6
    + disable deprecated interfaces
    + OvmfPkg/QemuVideoDxe: drop useless variables
      QEMU_VIDEO_MODE_DATA.RefreshRate
      QEMU_VIDEO_CIRRUS_MODES.RefreshRate
      QEMU_VIDEO_PRIVATE_DATA.CurrentMode
      QEMU_VIDEO_PRIVATE_DATA.LineBuffer
    + ArmVirtPkg: undo bogus component name and driver diagnostics
      disablement
    + NetworkPkg: Record user configured TargetIP/Port in iBFT
  - Use GCC5 in Tumbleweed
* Thu Oct 13 2016 glin@suse.com
  - update to 2017+git1476331065.08354c3:
    + OvmfPkg: add NOOPT build target for source level debugging
    + OvmfPkg: QemuVideoDxe uses MdeModulePkg/FrameBufferLib
    + BaseTools: support the NOOPT target with the GCC tool chains
    + BaseTools Makefile: Enable O2 option for GCC tool chain
    + CryptoPkg/OpensslLib: Upgrade OpenSSL version to 1.0.2j
      (bsc#1013603)
    + MdeModulePkg/Logo: Add LogoDxe module
    + MdeModulePkg/HiiDatabase: Add HiiImageEx implementation
    + MdeModulePkg/PciBusDxe: make OPROM BAR degradation configurable
    + NetworkPkg: Correct the DNS token return status by RCODE
    + BaseTools/EfiRom: supply missing machine type lookup strings
    + ArmVirtPkg: restrict mapping attributes of normal memory to
      EFI_MEMORY_WB
    + OvmfPkg/QemuBootOrderLib: drop too strict "/HD(" suffix from
      vblk prefix (bsc#1009707)
    + NetworkPkg/DnsDxe: Handle CNAME type responded from the name
      server
    + ArmVirtPkg/FdtPciHostBridgeLib: enable 64-bit PCI DMA
    + MdeModulePkg: Support classless IP for DHCPv4 TransmitReceive()
    + ArmVirtPkg: implement FdtPciHostBridgeLib
    + OvmfPkg: Use MdeModulePkg/ResetSystemRuntimeDxe
    + OvmfPkg/VirtioGpuDxe: implement EFI_GRAPHICS_OUTPUT_PROTOCOL
    + include VirtioGpuDxe in the platform DSC/FDF files
    + OvmfPkg/Virtio10Dxe: don't bind virtio-vga
    + OvmfPkg/QemuVideoDxe: don't incorrectly bind virtio-gpu-pci
    + BaseTools/GenFw: ignore dynamic RELA sections
    + Add implementations of API IsZeroBuffer()
    + ArmVirtPkg: Add Ramdisk support to ArmVirtPkg platforms
    + ArmVirtPkg: Move inclusion of AcpiTableDxe.inf to ArmVirt.dsc.inc
  - Drop upstreamed ArmVirtPkg-Enable-PCI-bus-probing-again.patch
* Wed Sep 14 2016 dmueller@suse.com
  - update to 2017+git1472049752.ea2f21e:
    + switches git branch from an (outdated) master tree
    to the UDK2017 branch, which provides an insane amount of
    changes. for details please look at https://github.com/tianocore/edk2/commits/UDK2017
  - unify build flags with aarch64 build for increased compatibility with
    openSUSE installation medias
* Fri Aug 19 2016 glin@suse.com
  - Update to 2015+git1471575292.00bcb5c
    + NetworkPkg/IpSecDxe: Fix UEFI IKE Initial Exchange failure
    + MdeModulePkg: Fix potential failure if UseDefaultAddress
      configured
    + OvmfPkg: Add MpInitLib reference in DSC files
    + SecurityPkg: AuthVariableLib: Fix inconsistent CertDB case
    + OvmfPkg: use StatusCode Router and Handler from MdeModulePkg
    + ArmVirtPkg/ArmVirtPrePiUniCoreRelocatable: deal with relaxed
      XIP alignment
    + BaseTools GCC: introduce GCC5 toolchain to support GCC v5.x in
      LTO mode
    + BaseTools GCC: use 'gcc' as the linker command for GCC44 and
      later
    + ArmVirtPkg/ArmVirtPrePiUniCoreRelocatable: ignore .hash and
      .note sections
    + OvmfPkg/Sec: Support SECTION2 DXEFV types
    + Preserve hii section in GCC binaries
    + Fix IPv6 HTTPClient vendor class data
    + CryptoPkg/OpensslLib: Upgrade OpenSSL version to 1.0.2h
    + NetworkPkg: Fix bug in TCP which not sending out ACK in
      certain circumstance
    + OvmfPkg: include UefiCpuPkg/CpuMpPei
    + OvmfPkg/PlatformPei: rebase and resize the permanent PEI memory
      for S3
    + SecurityPkg SecureBootConfigDxe: Add check for the external
      PE/COFF image
    + ArmVirtPkg/PlatformBootManagerLib: remove stale FvFile boot
      options
    + OvmfPkg/PlatformPei: add missing auto variable initialization
    + OvmfPkg: add PciHotPlugInitDxe
    + MdeModulePkg/PciBusDxe: recognize hotplug-capable PCIe ports
    + OvmfPkg/PlatformBootManagerLib: remove stale FvFile boot
      options
    + OvmfPkg: add a Name GUID to each Firmware Volume
    + CryptoPkg BaseCryptLib: Init the content of struct 'CertCtx'
      before use
    + CryptoPkg BaseCryptLib: Avoid passing NULL ptr to function
      BN_bn2bin()
    + MdeModulePkg/Bds: MemoryTypeInformation excludes boot option
      mem use
    + MdeModulePkg: Fix IPv4 stack potential disappeared issue
    + NetworkPkg: Stop the HTTP Boot service after the boot image
      download complete
    + ArmVirtPkg: Re-add the Driver Health Manager
    + OvmfPkg: Re-add the Driver Health Manager
    + ArmVirtPkg/ArmVirtXen: Add ACPI support for Virt Xen ARM
    + Massive conversion of assembly code to NASM
    + MdeModulePkg/UefiBootManagerLib: Fix data in
      MemoryTypeInformation
    + ArmVirtPkg: add FDF definition for empty varstore
    + ArmVirtPkg/ArmVirtQemu: switch secure boot build to NorFlashDxe
    + NetworkPkg: Handling timeout case in httpboot driver
    + NetworkPkg: HttpDxe response/cancel issue fix
    + NetworkPkg: Support TCP Cancel function
    + MdeModulePkg/RamDiskDxe: Add Memory Type selection support in
      Ramdisk HII
    + MdeModulePkg RamDiskDxe: Do not save 'Size' numeric value by
      varstore
    + MdeModulePkg: Fix IPv4 UseDefaultAddress failure case
    + MdeModulePkg/AtaBusDxe: Fix some ATA hard drives cannot be
      discovered
    + ArmVirtPkg/PlatformBootManagerLib: rebase boot logo display to
      BootLogoLib
    + OvmfPkg: set SMM stack size to 16KB
    + OvmfPkg/PlatformBootManagerLib: Connect the Xen drivers before
      loading NvVars
    + MdeModulePkg: Fix SNP.Initialize() spec conformance issue
    + OvmfPkg: raise DXEFV size to 10 MB
    + MdeModulePkg: Stop the timer before clean IP service
    + OvmfPkg/PlatformBootManagerLib: rebase boot logo display to
      BootLogoLib
    + OvmfPkg/SerializeVariablesLib: Relax check for the read-only
      variable
    + OvmfPkg: prevent 64-bit MMIO BAR degradation if there is no CSM
    + OvmfPkg, ArmVirtPkg: rename QemuNewBootOrderLib to
      QemuBootOrderLib
    + MdeModulePkg/PciBus: do not improperly degrade resource
    + NetworkPkg/HttpDxe: Don't free Wrap in HttpTcpReceiveNotifyDpc
    + NetworkPkg/TcpDxe: Remove the status check of
      SockProcessRcvToken
    + UefiCpuPkg/SmmCpuFeaturesLib: Add SMRR PhysBase/PhysMask
      fields check
    + MdeModulePkg: Skip invalid bus number scanning in PciBusDxe
      driver
    + OvmfPkg/PlatformPei: provide 10 * 4KB of PCI IO Port space on
      Q35
    + OvmfPkg: introduce ICH9_PMBASE_VALUE
    + OvmfPkg: replace PcdAcpiPmBaseAddress with PIIX4_PMBA_VALUE
    + OvmfPkg/AcpiTimerLib: don't use possibly unset PMBA register
      (PEI phase)
    + MdeModulePkg: Refine the code for DxeHttpLib
    + OvmfPkg/XenBusDxe: duplicate twice-iterated VA_LIST in
      XenStoreVSPrint()
    + SecurityPkg: Use PcdGet32() to access PcdPeiCoreMaxFvSupported
    + UefiCpuPkg/PiSmmCpuDxeSmm/SmmProfile: Fix BTS support check bug
    + NetworkPkg:HttpDxe: Code changes to support HTTP PUT/POST
      operations
    + CryptoPkg/SmmCryptLib: Enable AES support for SMM
    + MdePkg: Add NFIT definition from ACPI 6.1
    + BaseTools/GenFw: enhance to use Magic Field to identify the
      image
    + MdeModulePkg-DxeCore: rename CoreGetMemoryMapPropertiesTable
    + MdeModulePkg Variable: return error for empty str VariableName
      to GetVariable
    + PcAtChipsetPkg AcpiTimerLib: Fix a logic error
    + MdeModulePkg UiApp: change code for easy customization
    + MdePkg: Add HII definitions from UEFI 2.6
    + NetworkPkg: Make HttpBootGetBootFile return
      EFI_BUFFER_TOO_SMALL
    + MdeModulePkg:DxeHttpLib: Add checks in HttpGenRequestMessage
      API
    + ArmPkg/ArmLib: don't invalidate entire I-cache on range
      operation
    + OvmfPkg/PlatformBootManagerLib: Postpone the shell registration
    + OvmfPkg/QemuNewBootOrderLib: adapt Q35 SATA PMPN to UEFI spec
      Mantis 1353
    + MdeModulePkg Ata: Use the new (incompatible) PortMultiplierPort
      semantics
    + NetworkPkg: Bug fix of iSCSI to support MPIO
  - Drop upstreamed patches
    + ovmf-dxe-10mb.patch
    + ovmf-bsc976253-postpone-shell.patch
    + ovmf-bsc980635-fix-http-crash.patch
    + ovmf-bsc982193-dont-restore-readonly-var.patch
    + ovmf-bsc982193-connect-xen-drivers.patch
    + ovmf-bsc990612-update-openssl-1.0.2h.patch
    + ovmf-bsc990773-remove-stale-boot-options.patch
  - Update dbxupdate.zip since there are new hashes added into dbx
* Wed Jul 27 2016 glin@suse.com
  - Update openssl to 1.0.2h (bsc#990612)
    + Add the patch: ovmf-bsc990612-update-openssl-1.0.2h.patch
    + Update the openssl tarball
  - Add ovmf-bsc990773-remove-stale-boot-options.patch to remove the
    stale boot options (bsc#990773)
* Tue Jun 14 2016 glin@suse.com
  - Generate the varstore template for AArch64 (bsc#983747,
    bsc#981836)
* Mon Jun 06 2016 jengelh@inai.de
  - Keep %prep minimal to shorten quilt setup run.
    Adjust RPM group. Drop redundant 4th defattr argument.
* Fri Jun 03 2016 glin@suse.com
  - Add ovmf-bsc982193-dont-restore-readonly-var.patch and
    ovmf-bsc982193-connect-xen-drivers.patch to fix the file-based
    NvVars restoring. (bsc#982193)
* Tue May 24 2016 glin@suse.com
  - Add the commands to remove irrelevant packages in %prep to make
    sure those source code will never build. (bsc#973038)
* Fri May 20 2016 glin@suse.com
  - Add ovmf-bsc980635-fix-http-crash.patch to fix the crash when
    downloading files from the http server (bsc#980635)
* Wed May 11 2016 glin@suse.com
  - Update to 2015+git1462940744.321151f
    + BaseTools: Fix bug in GenFds to handle FV image alignment
    + SecurityPkg: SecureBootConfigDxe: Add NULL pointer check
    + OvmfPkg/PciHostBridgeLib: Scan for root bridges when running
      over Xen
    + OvmfPkg/PciHostBridgeLib: Change InitRootBridge prototype
    + MdeModulePkg/PciHostBridgeDxe: Honor ResourceAssigned
    + OvmfPkg/PciHostBridgeLib: Set correct Base/Limit for absent
      resource
    + MdeModulePkg/PciHostBridgeDxe: Fix a Base/Limit comparing bug
    + MdeModulePkg/PciHostBridgeDxe: Don't miss prefetchable MMIO
      aperture
    + ArmVirtPkg: set PcdMaxVariableSize and PcdMaxAuthVariableSize
    + ArmPkg/AArch64Mmu: don't let table entries inherit XN
      permission bits
    + ArmPkg/ArmDmaLib: do not remap arbitrary memory regions as
      uncached
    + ArmPkg/ArmDmaLib: reject consistent DMA mappings of cached
      memory
    + MdeModulePkg/PciSioSerialDxe: Do not flush the UART
    + MdeModulePkg RamDiskDxe: Fix wrong HII behavior for more than 8
      RAM disks
    + OvmfPkg: Modify FDF/DSC files for RamDiskDxe's adding NFIT
      report feature
    + MdeModulePkg RamDiskDxe: Report ACPI NFIT for reserved memory
      RAM disks
    + ArmVirtPkg/ArmVirtQemu: use MdeModulePkg/BDS
    + Ignore BootFileName if it is overloaded (HTTP Boot/PXE)
    + NetworkPkg: Fix a memory leak in HTTP boot driver
    + NetworkPkg/HttpBootDxe: Fix for the issue that the HTTP boot
      option can't be booted more than once
    + deModulePkg NvmExpressDxe: Initialize IoAlign info for an NVMe
      device
    + MdeModulePkg: Refine SNP driver's media status check logic
    + MdeModulePkg: ScsiDiskDxe: cope with broken "Supported VPD Pages"
      VPD page
    + MdeModulePkg FileExplorerLib: Add UefiHiiServicesLib dependency
    + SecurityPkg: SecureBootConfigDxe: Disable SecureBoot
      Enable/Disable in some case
    + Do not use hard coded TTL/ToS in PXE driver
    + NetworkPkg: Use UefiBootManagerLib API to create load option
    + Remove DeployedMode/AuditMode
    + OvmfPkg: Use MdeModulePkg/BDS
    + ArmPlatformPkg/PrePi: allow unicore version to be used on MP
      hardware
    + ArmPkg: implement CpuIo2 protocol driver specific for PCI
    + ArmPlatformPkg: move PCI related PCD definitions to ArmPkg
    + MdeModulePkg/DxeCore: set ImageContext Handle and ImageRead()
      fields
    + MdeModulePkg/PciBusDxe: don't create bogus descriptor if no
      resources needed
    + MdeModulePkg: Add new driver to publish EDKII_PI_SMM_COMMUNICATION_REGION_TABLE
    + SecuritPkg: DxeImageVerificationLib: Fix wrong verification
      logic in DBX & DBT
    + UefiCpuPkg/MtrrLib: Reduce the loop time to get fixed-MTRR MSR
      index
    + MdeModulePkg: PiDxeS3BootScriptLib: honor PcdAcpiS3Enable
    + NetworkPkg: Fix incorrect buffer free in HttpDxe
    + NetworkPkg: Avoid the indefinite wait case in HttpDxe
    + MdeModulePkg: DxeCore MemoryPool Algorithm Update
    + MdeModulePkg: Export ConfigResp only for form Package after
      ReadyToBoot
    + NetworkPkg:HttpDxe:Consume DxeHttpLib API changes
    + MdeModulePkg:DxeHttpLib: Update to DxeHttpLib API
    + NetworkPkg: Allow user to create a HTTP corporate boot option
      in setup page
    + MdePkg:Http11.h: Add defines for "Expect" header
    + BaseTools: Update FMP Capsule support to follow FDF spec
    + OvmfPkg: SataControllerDxe: SataControllerStop: fix use after
      free
    + OvmfPkg: SataControllerDxe: SataControllerStop: remove useless
      null check
    + MdeModulePkg DxeCore: Check free memory type by CoreUpdateProfile()
    + MdeModulePkg/NvmExpress: Fix bug of handling not
      null-terminated strings
    + ShellPkg: Enahance 'dh' command to add more protocols decoding
      support
    + MdeModulePkg/DxeCore: Avoid assertion in CoreLocateProtocol
    + MdeModulePkg: Correct PlatformHookLibSerialPortPpi module type
    + FatPkg: Update License.txt to have the full license text
    + refine codes of iSCSI driver
    + MdeModulePkg DxeCore: Enhance MemoryAttributesTable installation
    + MdeModulePkg DxeCore: Return memory type from internal free
      pool/pages
    + MdeModulePkg DxeCore: Fix a memory leak in
      InstallMemoryAttributesTable()
    + MdeModulePkg DxeCore: Call PeCoffExtraActionLib member after
      Constructor
    + MdeModulePkg/Usb: Fix wrong condition judgment to support
      usb3.1 dev
    + MdeModulePkg/UsbKbDxe: don't assert when the key read is
      invalid
    + BaseTools: Add mixed PCD support feature
    + OvmfPkg: AcpiPlatformDxe: Don't enable unsupported PCI
      attributes
    + MdeModulePkg/HiiDatabaseDxe: Support EfiVarStore to get AltCfg
      from Driver
    + MdeModulePkg/HiiDatabaseDxe: Correct the ReallocatePool size
    + MdeModulePkg/SetupBrowserDxe: Get default from callback for
      orderedList
    + SecurityPkg: AuthVariableLib & SecureBootConfigDxe:
      Fix SecureBootEnable & PK inconsistency issue
    + ShellPkg: Update ping command options to sync with Spec
    + MdeModulePkg NvmExpressDxe: Ensure write-through for NVMe write
      command
    + ShellPkg: Cache the environment variable into memory to enhance
      the performance.
    + BaseTools: Update to handle PE image with .code section only
    + ArmPkg/AArch64Mmu: disable MMU during page table manipulations
    + ArmPkg/AArch64Mmu: Fix XN attribute for device memory
    + NetworkPkg: Fix issue in Ip6Dxe SetData
  - The updated tarball includes the PCI host bridge fix for Xen
    (bsc#976253)
  - Add ovmf-dxe-10mb.patch to raise DXEFV to 10MB to avoid build
    error.
  - Add ovmf-bsc976253-postpone-shell.patch to postpone the creation
    of the shell boot option so that the firmware will try the block
    devices first. (bsc#976253)
  - Update README for Xen debugging.
* Thu Apr 21 2016 agraf@suse.com
  - Add patch to enable PCI BAR probing on ARM again:
    * ArmVirtPkg-Enable-PCI-bus-probing-again.patch
* Fri Apr 15 2016 glin@suse.com
  - Change the fat driver license to the BSD license in FatPkg
    instead of the proprietary license in FatBinPkg since OvmfPkg and
    ArmVirtPkg now use FatPkg (bsc#973038)
* Thu Apr 14 2016 glin@suse.com
  - Update to 2015+git1460599637.f70cfe7
    + MdeModulePkg S3SaveStateDxe: Add protocol usage for gEfiLockBoxProtocolGuid
    + ArmVirtPkg/VirtFdtDxe: remove Xenio handling and rename to VirtioFdtDxe
    + ArmVirtPkg/ArmVirtXen: move from VirtFdtDxe to new XenioFdtDxe driver
    + OvmfPkg/XenIoMmioLib: add missing MemoryAllocationLib dependency to INF
    + ArmVirtPkg/VirtFdtDxe: move FDT config table installation to FdtClientDxe
    + ArmVirtPkg/VirtFdtDxe: remove unused PL011 DT node type
    + ArmVirtPkg: get rid of A PRIORI DXE declarations for VirtFdtDxe
    + ArmVirtPkg/VirtFdtDxe: drop RTC handling
    + ArmVirtPkg: move QEMU based platforms to ArmVirtPL031FdtClientLib
    + ArmVirtPkg: implement ArmVirtPL031FdtClientLib
    + ArmVirtPkg/RelocatableVirtHelper: use correct FindMemNode argument order
    + IntelFrameworkModulePkg: Remove unused PCD/Protocol
    + IntelFrameworkModulePkg/KeyboardDxe: Use PCD defined in MdeModulePkg
    + IntelFrameworkModulePkg/Ps2Mouse: Use PCD defined in MdeModulePkg
    + IntelFrameworkModulePkg/Ps2AbsPointer: Use PCD defined in MdeModulePkg
    + IntelFrameworkModulePkg/Ps2Kbd: use PCD/Protocol in MdeModulePkg
    + MdeModulePkg/MdeModulePkg.uni: Add PS2 related PCD description
    + MdeModulePkg/Ps2MouseDxe: Use a different FILE_GUID
    + MdeModulePkg/Ps2KeyboardDxe: Use a different FILE_GUID
    + MdeModulePkg/Ps2Mouse: Fix potential buffer overflow issue.
    + MdeModulePkg: Update Guid/Protocol usages in INF files.
    + ShellPkg: Update Guid/Protocol usages in INF files.
    + SecurityPkg: Update protocol usage in module INF files.
    + MdePkg: Add EFI Erase Block Protocol definitions
    + MdeModulePkg/Ps2MouseDxe: Fix build failure of GCC tool chain
    + ArmVirtPkg/VirtFdtDxe: drop PCI host bridge handling
    + ArmVirtPkg/PciHostBridgeDxe: move to FDT client protocol
    + ArmVirtPkg/BaseCachingPciExpressLib: depend on PciPcdProducerLib
    + ArmVirtPkg: implement FdtPciPcdProducerLib
    + ArmVirtPkg/VirtFdtDxe: remove handling of fw_cfg DT node
    + ArmVirtPkg/QemuFwCfgLib: move to FDT client protocol
    + BaseTools: use unsigned chars on ARM architectures
    + BaseTools: generate hash value in build report for each output EFI image
    + BaseTools/VolInfo: generate HASH value for each PE image
    + ArmVirtPkg/VirtFdtDxe: remove timer DT node handling
    + ArmVirtPkg: move TimerDxe to FDT client library
    + ArmVirtPkg: implement ArmVirtTimerFdtClientLib
    + ArmVirtPkg/VirtFdtDxe: drop detection of PSCI method
    + ArmVirtPkg/ArmVirtPsciResetSystemLib: move to FDT client protocol
    + ArmVirtPkg/VirtFdtDxe: remove GIC discovery
    + ArmVirtPkg/ArmGicArchLib: move to FdtClient protocol
    + ArmVirtPkg: add FdtClientDxe to the ArmVirtPkg platforms
    + ArmVirtPkg/FdtClientDxe: implement new driver
    + ArmVirtPkg: introduce FdtClientProtocol
    + UefiCpuPkg: CpuIo2Dxe: optimize FIFO reads and writes of IO ports
    + MdeModulePkg: Update PerformanceLib instances not to check Identifier.
    + MdePkg: Update PerformanceLib comments not to check Identifier.
    + Update edksetup.bat to check EDK_TOOLS_PATH before set it.
    + MdeModulePkg/Ps2Keyboard: Add missing PCD and protocol to DEC file
    + UefiCpuPkg/CpuMpPei: Fix potential AP mwait wakeup issue
    + NetworkPkg: Add RAM disk boot support to HTTP Boot driver.
    + ShellPkg: Fix Shell ASSERT when mv file with cwd is NULL.
    + MdeModulePkg BootScriptExecutorDxe: Consume PcdAcpiS3Enable to control the code
    + MdeModulePkg SmmS3SaveStateDxe: Consume PcdAcpiS3Enable to control the code
    + MdeModulePkg: Add new macros and refine codes
    + NetworkPkg: Add new macros and refine codes
    + MdeModulePkg: Add Ps2MouseDxe driver
    + MdeModulePkg: Add Ps2KeyboardDxe driver.
    + MdeModulePkg/UefiBootManagerLib: API BmIsValidLoadOptionVariableName
    + SecurityPkg OpalPasswordDxe: Clean up debug message in OpalHii.c
    + SecurityPkg TcgStorageOpalLib: Fix wrong condition judgment.
    + SecurityPkg OpalPasswordDxe: Suppress option for special device.
    + OvmfPkg: remove PciHostBridgeDxe fork
    + OvmfPkg: remove USE_OLD_PCI_HOST build option
    + OvmfPkg: Convert to using FatPkg in the EDK II tree
    + ArmVirtPkg: Convert to build FatPkg from source
    + ArmVirtPkg: drop dependency on PeiPcdLib for PEI Pcd.inf
    + ArmVirtPkg: drop dependency on DxePcdLib for DXE Pcd.inf
    + IntelFrameworkModulePkg AcpiS3SaveDxe: Remove S3Ready() functional code
    + IntelFrameworkModulePkg AcpiS3SaveDxe: Consume PcdAcpiS3Enable to control the code
    + OvmfPkg: Retire AcpiS3SaveDxe
    + MdeModulePkg S3SaveStateDxe: Move S3Ready() functional code from AcpiS3SaveDxe
    + MdeModulePkg S3SaveStateDxe: Consume PcdAcpiS3Enable to control the code
    + OvmfPkg: Install LockBox protocol in constructor of LockBoxDxeLib
    + OvmfPkg: Set PcdAcpiS3Enable according to QemuFwCfgS3Enabled()
    + MdeModulePkg: Introduce new PCD PcdAcpiS3Enable
    + ArmVirtPkg: drop bogus ArmPlatformSecExtraActionLib resolution
    + ArmVirtPkg: remove linux loader from ARM builds
    + Merge 2-clause BSD licensed FatPkg
    + BaseTools: Add support to merge Prebuild and Postbuild into build Process
    + BaseTools: Enhance --Pcd which override by build option
    + MdeModulePkg/Bds: Fix build failures of VS tool chain
    + OvmfPkg: disable PcdHiiOsRuntimeSupport
    + OvmfPkg: remove PcdMaxHardwareErrorVariableSize from the DSC files
    + ArmVirtPkg: include Virtio10Dxe from OvmfPkg
    + OvmfPkg: include Virtio10Dxe
    + OvmfPkg: Virtio10Dxe: non-transitional driver for virtio-1.0 PCI devices
    + OvmfPkg: VirtioNetDxe: adapt virtio-net packet header size to virtio-1.0
    + OvmfPkg: VirtioScsiDxe: adapt feature negotiation to virtio-1.0
    + OvmfPkg: VirtioRngDxe: adapt feature negotiation to virtio-1.0
    + OvmfPkg: VirtioNetDxe: adapt feature negotiation to virtio-1.0
    + OvmfPkg: VirtioBlkDxe: adapt feature negotiation to virtio-1.0
    + OvmfPkg: VirtioLib: add Virtio10WriteFeatures() function
    + OvmfPkg: IndustryStandard: add definitions from the VirtIo 1.0 spec
    + OvmfPkg: IndustryStandard: factor out Virtio095Net.h
    + OvmfPkg: IndustryStandard: factor out Virtio095.h
    + OvmfPkg: VirtioRngDxe: clear all feature bits more explicitly
    + OvmfPkg: VirtioBlkDxe: don't clear non-negotiable feature bits
    + OvmfPkg: VIRTIO_DEVICE_PROTOCOL: pass VRING object to SetQueueAddress()
    + OvmfPkg: VIRTIO_DEVICE_PROTOCOL: remove GetQueueAddress() member
    + OvmfPkg: VIRTIO_DEVICE_PROTOCOL: widen the Features bitmap to 64 bits
    + MdeModulePkg/Bds: Fix a boot hang due to Ram Disk boot support
    + BaseTools: cache the defined Guid tool to improve the performance
    + MdeModulePkg/Bds: Memory Bins don't count the memory used by RAM Disk
    + MdeModulePkg/Bds: Free resources after ram disk boot finishes
    + MdeModulePkg/Bds: Allocate reserved memory for RAM Disk boot media
    + SecurityPkg OpalPasswordSupportLib: Add comments for the used protocol in inf file.
    + SecurityPkg OpalPasswordSupportLib: Remove the hard code debug build option.
    + SecurityPkg OpalPasswordSupportLib: Fixed gcc build failure.
    + SecurityPkg TcgStorageOpalLib: Fixed gcc build failure.
    + SecurityPkg OpalPasswordDxe: Check the pointer before use it.
    + SecurityPkg TcgStorageOpalLib: Remove the hard code debug build option.
    + SecurityPkg OpalPasswordDxe: Remove the hard code debug build option.
    + SecurityPkg OpalPasswordSmm: Remove the hard code build option.
    + MdePkg Cper.h: Add missing structure for 'Processor Error Record'
    + SourceLevelDebugPkg/SmmDebugAgent: mMailboxPointer is used before set
    + MdePkg/MdePkg.uni: Add description for PcdUartDefaultReceiveFifoDepth
    + MdePkg/BaseSynchronizationLib: Add spin lock alignment for IA32/x64
    + MdePkg/BaseSynchronizationLib: Do not check timeout if lock released
    + BaseTools/GenFds: Fix the bug for wrong alignment generate for RAW file
    + MdeModulePkg/UiApp: Correct the total RAM calculation
    + IntelFrameworkModulePkg/Bds: Correct the total RAM calculation
    + MdeModulePkg: DxeUdpIoLib: fix non-empty payload path in UDP reception
    + OvmfPkg: Add RAM disk support
    + ArmPkg/ArmArchTimerLib: correct typos
    + ArmPkg/ArmArchTimerLib: fix unused variable in RELEASE builds
    + EmbeddedPkg/AcpiLib: fix SBSA Generic Watchdog helper definition
    + ArmPlatformPkg: Add PCD for Pl011 UART Interrupt
    + MdePkg: Add ARM Serial Port Subtypes to DBG2
    + MdePkg: Add ARM Serial Port Subtype definitions
    + ArmVirtPkg: disable PcdHiiOsRuntimeSupport
    + ArmPkg/ArmArchTimerLib: add GetTimeInNanoSecond() to ArmArchTimerLib
    + ArmPkg/ArchArmTimerLib: refactor MultU64xN and TimerFreq definitions
    + NetworkPkg: Check received packet size before use it.
    + MdeModulePkg: Check received packet size before use it.
    + NetworkPkg: Check pointer for NULL before use.
    + Revert "TerminalDxe: select the UART's default receive FIFO depth"
    + ArmVirtPkg/ArmVirtQemu: gate FDT config table install with build option
    + ArmVirtPkg/VirtFdtDxe: make installation of FDT as config table optional
    + MdeModulePkg RamDiskDxe: Fix incorrect RAM disk memory address calculation
    + MdeModulePkg EmmcDxe: Fix GCC build failure with set but unused variables
    + SecurityPkg: Tcg2Dxe: Fix undersized TempBuf
    + MdeModulePkg/UefiBootManagerLib: BmGetActiveConsoleIn code cleanup
    + MdeModulePkg/SdMmc: Add EDKII SD/MMC stack
    + MdePkg/IndustryStandard: Add SD/EMMC common definitions
    + MdePkg/DevicePath: Add EMMC device path definition
    + MdePkg: Add EFI_SD_MMC_PASS_THRU_PROTOCOL definition
    + UefiCpuPkg/Cpuid.h: Display Intel SGX Resource Enumeration Leaves
    + UefiCpuPkg/Cpuid.h: Add CPUID defines and structures for Intel SGX
    + ShellPkg: Refine the comparisons code in ShellPkg.
    + MdeModulePkg PartitionDxe: Add Re-entry handling logic for BindingStop
    + SecurityPkg: Enable Opal password solution build.
    + SecurityPkg: OpalPasswordSmm: Add Opal password Smm driver.
    + SecurityPkg: OpalPasswordDxe: Add Opal password dxe driver.
    + SecurityPkg: OpalPasswordSupportLib: Add Opal password support library.
    + SecurityPkg: TcgStorageOpalLib: Add TCG storage opal library.
    + SecurityPkg: TcgStorageCoreLib: Add TCG storage core library.
    + MdePkg: Add definition for TCG Storage Core and Opal specs.
    + BaseTools: Add two new sections for PCD in the build report
    + MdeModulePkg/SerialDxe: Set FIFO depth with PCD
    + MdePkg: Add PCD for UART default receive FIFO depth
    + MdeModulePkg DiskIoDxe: Media status check not be done at DiskIo level
    + MdeModulePkg PartitionDxe: Some ISO images cannot be recognized properly
    + MdeModulePkg ScsiDiskDxe: Fix hang issue when reconnecting an ISCSI device
    + PcAtChipsetPkg/PciHostBridge: Remove PciHostBridge driver
    + ShellPkg/UefiDpLib: Fix a memory leak issue in Dp.
    + PerformancePkg/Dp_App: Fix a memory leak issue in Dp.
    + BaseTools: Remove the unnecessary check for RAW File
    + BaseTools: generate alignment when the FV content come from the filesystem
    + BaseTools: Extend the RAW format to support multiple binary files
    + ShellPkg AARCH64: remove DEBUG BuildOptions override
    + BaseTools AARCH64: move DEBUG GCC49 to the small code model
    + OvmfPkg: Increase the maximum size for Authenticated variables
    + BaseTools/GCC: set -Wno-unused-but-set-variables only on RELEASE builds
    + UefiCpuPkg: CpuMpPei: remove set but unused variables
    + UefiCpuPkg: PiSmmCpuDxeSmm: remove set but unused variables
    + UefiCpuPkg/MtrrLib: remove unused but set variable
    + NetworkPkg: IpSecDxe: remove set but unused variables
    + MdeModulePkg: DeviceManagerUiLib: remove set but unused variables
    + MdeModulePkg: BootMaintenanceManagerUiLib: remove set but unused variables
    + MdeModulePkg: UfsPassThruDxe: remove set but unused variables
    + MdeModulePkg: BootManagerMenuApp: remove set but unused variables
    + MdeModulePkg/PciHostBridgeDxe: remove unused but set variables
    + IntelFspWrapperPkg: PeiFspHobProcessLibSample: remove set but unused variables
    + IntelFrameworkModulePkg: LegacyBootMaintUiLib: remove set but unused variables
    + IntelFrameworkModulePkg: DxeCapsuleLib: remove set but unused variables
    + IntelFrameworkModulePkg: BiosVideo: remove set but unused variable
    + EmulatorPkg: CpuRuntimeDxe: remove set but unused variables
    + EdkCompatibilityPkg: SmmBaseHelper: remove set but unused variables
    + EdkCompatibilityPkg: EdkIIGlueLib: remove set but unused variables
    + EdkCompatibilityPkg: BsSerialStatusCode: remove set but unused variable
    + EdkCompatibilityPkg: UefiEfiIfrSupportLib: remove set but not used variables
    + ArmPkg|EmbeddedPkg: make PcdCpuVectorBaseAddress 64 bits wide
    + ArmPlatformPkg: fixups for 64-bit pointers
    + ArmPkg: apply Cortex-A57 errata
    + NetworkPkg:Fix bug when parsing the dhcp6 option 16
    + NetworkPkg:Fix Http boot download issue.
    + ShellPkg/UefiHandleParsingLib: Fix GUID reference
    + BaseTools: Updated BuildNotes URLs
    + MdeModulePkg/RamDiskDxe: Fix typo in HII message
    + SecurityPkg/SecureBootConfigDxe: Remove type casting from the ChooseFile handlers
    + SecurityPkg/SecureBootConfigDxe: Declare EFIAPI for the ChooseFile handlers
    + ShellPkg/UefiShellDebug1CommandsLib: remove unused but set variable
    + MdeModulePkg/PciBus: Should reserve enough bus number for HPC
    + MdeModulePkg/Bds: Fix VS2012 build failure.
    + ShellPkg: Modify the 'dh' Shell command to dump the Firmware Management Protocol Image Descriptor Information.
    + MdePkg: Move SMBIOS data into the IndustryStandard header.
    + ShellPkg: Make the USB mouse behavior in 'edit' consistent with 'hexedit'.
    + NetworkPkg: Fix HII related problem in HTTP boot driver.
    + MdeModulePkg/FileExplorerLib.h: Remove the redefinition of typedefs
    + OvmfPkg: PciHostBridgeLib: install 64-bit PCI host aperture
    + OvmfPkg: PlatformPei: determine the 64-bit PCI host aperture for X64 DXE
    + OvmfPkg: PlatformPei: factor out GetFirstNonAddress()
    + OvmfPkg: AcpiPlatformDxe: enable PCI IO and MMIO while fetching QEMU tables
    + OvmfPkg: AcpiPlatformDxe: when PCI is enabled, wait for Platform BDS's cue
    + ArmVirtPkg: PlatformIntelBdsLib: signal gRootBridgesConnectedEventGroupGuid
    + OvmfPkg: PlatformBdsLib: signal gRootBridgesConnectedEventGroupGuid
    + OvmfPkg: introduce gRootBridgesConnectedEventGroupGuid
    + OvmfPkg: OvmfPkg.dec: add horizontal whitespace under Guids and Protocols
    + OvmfPkg/PlatformBdsLib: rebase to EfiEventGroupSignal
    + ArmVirtPkg/PlatformIntelBdsLib: rebase to EfiEventGroupSignal
    + IntelFrameworkPkg/FrameworkUefiLib: implement EfiEventGroupSignal
    + IntelFrameworkPkg/FrameworkUefiLib: move InternalEmptyFunction to UefiLib.c
    + MdePkg/UefiLib: introduce EfiEventGroupSignal
    + MdePkg/UefiLib: move InternalEmptyFunction to UefiLib.c
    + BaseTools: not include the undefined macro in response file
    + MdeModulePkg/BootMaintenanceManagerUiLib: Remove type casting in ChooseFile
    + MdeModulePkg/BootMaintManagerUiLib: Declare EFIAPI for ChooseFile handler
    + MdeModulePkg RamDiskDxe: Remove unnecessary TPL raise operations
    + MdeModulePkg RamDiskDxe: Uninstall DEVICE_PATH_PROTOCOL with correct param
    + MdeModulePkg RamDiskDxe: Remove unnecessary 'DisconnectController' calls
    + MdeModulePkg/Bds: BDS hotkey shouldn't work on inactive consoles
    + ArmPkg/AArch64Mmu: use correct AP[] bits in ArmClearMemoryRegionReadOnly
    + ArmPkg/ArmExceptionLib: reimplement register stack/unstack routines
    + ArmPkg/ArmExceptionLib: avoid indirect call if using vector table in place
    + ArmPkg/ArmExceptionLib: make build time define visible to the compiler
    + ArmPkg/ArmExceptionLib: don't restore ESR and FAR upon exception return
    + ArmPkg/ArmExceptionLib: stack FPSR on common path
    + ArmPkg/ArmExceptionLib: fold exception handler prologue into vector table
    + ArmPkg/AsmMacroIoLibV8: remove undocumented assumption from ELx macros
    + BaseTools: Fix nmake failure due to command-line length limitation
    + MdePkg/Pci22.h: Fix a coding style issue
    + MdeModulePkg DxeCore: Address boundary check for Type AllocateAddress
    + MdeModulePkg DxeCore: Check Start consistently in CoreConvertPagesEx
    + OvmfPkg/PlatformPei: suppress wrong VS2008 warning (use of uninited local)
    + MdeModulePkg PlatformVarCleanupLib: Locate VarCheck protocol when using
    + ArmPkg: update CpuDxe to use CpuExceptionHandlerLib
    + ArmVirtPkg/ArmVirtQemu: move to ARM version of CpuExceptionHandlerLib
    + ShellPkg: Remove the unused local variable.
    + MdeModulePkg: Fixed incorrect return value of MatchString
    + MdeModulePkg: ConSplitterDxe: use U64 mult/div wrappers in AbsPtr scaling
    + ArmPkg: ARM/AArch64 implementation of CpuExceptionHandlerLib
    + ArmPkg/ArmLib: add ArmReadHcr to enable read-modify-write of HCR
    + MdeModulePkg: Rescale ConSplitter Absolute Pointer.
    + ShellPkg: Per UEFI Shell 2.2 SPEC to make Shell supports 'NoNesting'.
    + NetworkPkg: Fix the driver model issue in HTTP Boot driver.
    + MdeModulePkg: Coding style update for DxeHttpLib.inf
    + IntelFrameworkModulePkg/LegacyBootMaintUiLib: Refine the code
    + MdeModulePkg: Refine the UI code
    + MdeModulePkg/DriverSampleDxe: Uninstall the ConfigAccess protocol
    + BaseTools: add new command line option to support override PCD value
  - The fix for bsc#973625 is also included in the update tarball
  - Remove upstreamed patches:
    ovmf-fix-choose-handlers-crash.patch
    ovmf-fix-httpboot-driver-option-16.patch
    ovmf-fix-httpboot-driver-model.patch
* Fri Apr 01 2016 glin@suse.com
  - Add ovmf-fix-httpboot-driver-option-16.patch to fix the parsing
    of DHCPv6 option 16
* Wed Mar 23 2016 glin@suse.com
  - Add ovmf-fix-choose-handlers-crash.patch to fix the crash while
    selecting files from BootMaintenanceManager and SecureBootConfig
* Wed Mar 16 2016 glin@suse.com
  - Update to 2015+git1458029440.db27e9f
    + OvmfPkg/LegacyRegion: Support legacy region manipulation of Q35
    + CryptoPkg: Fix the potential system hang issue
    + CryptoPkg/OpensslLib: Upgrade OpenSSL version to 1.0.2g
    + ArmVirtPkg/VirtFdtDxe: set /chosen/linux,pci-probe-only to 1
      in DTB
    + OvmfPkg: match PCI config access to machine type
      (if not USE_OLD_PCI_HOST)
    + OvmfPkg: add DxePciLibI440FxQ35
    + OvmfPkg: Enable Network2 Shell Commands for IPv6
    + MdeModulePkg AcpiTableDxe: Use Rsdt to check against NULL
    + MdePkg: Fix ACPI NFIT GUID definitions
    + NetworkPkg: Add URI configuration form to HTTP boot driver
    + CryptoPkg/OpensslLib: Switch to upstream fix for OpenSSL
      RT#3628, RT#3674, RT#3951, RT#3955, RT#3964, RT#3969, RT#3992,
      RT#4175, RT#4310
    + CryptoPkg/OpensslLib: Include complete copy of opensslconf.h
    + SecurityPkg/SecureBootConfigDxe: Handle allocation failure
      gracefully
    + MdeModulePkg/Bds: Support booting from remote file system
    + MdeModulePkg/Bds: Wide match HTTP boot option
    + MdeModulePkg: Fix IPv4 double free
    + UefiCpuPkg: Add dynamic type for PcdCpuMaxLogicalProcessorNumber
    + ArmPkg: Configure TTBCR register
    + OvmfPkg: switch to MdeModulePkg/Bus/Pci/PciHostBridgeDxe
    + MdeModulePkg: PciHostBridgeDxe: don't assume extended config
      space
    + ShellPkg: Update 'ifconfig -r' implementation
    + NetworkPkg: Change the default IPv6 config policy
    + MdeModulePkg: Change the default IPv4 config policy
    + OvmfPkg: copy log level comments from DebugLib.h
    + ArmVirtPkg: sync log level comments to DebugLib.h
    + MdeModulePkg: DxeCore: fully initialize image context before
      passing it on
    + MdeModulePkg/NvmExpress: Fix uninitialized field used in NVMe
      DiskInfo
    + MdeModulePkg: Add new API HttpUrlGetPath() to HttpLib.h
    + MdeModulePkg: Add RamDiskDxe driver implementation
    + SecurityPkg: Tcg2Smm: Change TPM2.0 MMIO range attribute
    + MdeModulePkg:Fix a robustness issue of Mnp Driver
    + MdeModulePkg: RegularExpressionDxe: support free(NULL)
    + MdeModulePkg/PciHostBridge: Don't assume resources are fully
      NonExistent
    + SecurityPkg: Use FileExplorerLib in SecureBootConfigDxe
    + MdeModulePkg: Add ASSERT to make sure pointer 'OptionalData'
      not be NULL
    + MdeModulePkg: Add ASSERT to make sure pointer 'MemoryMap' is
      not NULL
  - Update openssl to 1.0.2g
  - Add ovmf-fix-httpboot-driver-model.patch to fix the crash caused
    by the httpboot driver.
* Wed Mar 02 2016 glin@suse.com
  - Add ovmf-tools to package EfiRom (FATE#319531)
* Fri Feb 26 2016 glin@suse.com
  - Update to 2015+git1456452471.ba33c80
    + CryptoPkg: RuntimeCryptLib: support realloc(NULL, size)
    + CryptoPkg: support free(NULL)
    + MdePkg: Add EFI RAM Disk Protocol definitions
    + MdePkg: Update Http11 with additional useful definitions
    + NetworkPkg: Use Http11 definitions in HttpDxe and HttpBootDxe
    + Add new HII action type EFI_BROWSER_ACTION_SUBMITTED
    + UefiCpuPkg/Cpuid: Add UEFI CPUID application
    + BaseTools/tools_def.txt: Add -march=i586 for IA32 GCC targets
    + MdeModulePkg: Fix Memory Attributes table type issue
    + MdePkg: Add definition for new warning code
      EFI_WARN_FILE_SYSTEM
    + OvmfPkg: add driver for Virtio-RNG device
    + ArmVirtPkg: ArmVirtQemu: add driver for Virtio-RNG device
    + OvmfPkg: implement UEFI driver for Virtio RNG devices
    + OvmfPkg: VirtioFlush(): return the number of bytes written by
      the host
    + ArmPlatformPkg/IntelBds: call BdsLibConnectAll()
    + ArmVirtPkg/ArmVirtQemu: limit ACPI support to v5.0 and higher
    + MdeModulePkg: AcpiTableDxe: make 4 GB table allocation limit
      optional
    + ShellPkg: Support finding help message embedded in resource
      section
    + MdeModulePkg/UsbBusDxe: Fix memory leak
    + MdePkg: BaseLib: fix AArch64 DAIF interrupt mask definitions
    + ArmPkg: CpuDxe: don't track interrupt state in a global
      variable
    + ArmPkg: CpuDxe: fix AArch64 interrupt read masks
    + MdeModulePkg: Refine the code in BootMaintenanceManagerUiLib
    + MdeModulePkg: HiiDatabaseDxe: HiiStringToImage() should not
      overwrite BltX
    + CryptoPkg/OpensslLib: Upgrade OpenSSL version to 1.0.2f
    + UefiCpuPkg/PiSmmCpuDxeSmm: Enable/Restore XD in SMM
    + UefiCpuPkg/PiSmmCpuDxeSmm: Add EFIAPI to CheckFeatureSupported()
    + ArmVirtPkg: ArmVirtQemu: make ACPI support AARCH64 only
    + SecurityPkg: TcgConfigDxe: Move TPM state string update to
      CallBack function
    + MdePkg: Fix incorrect PCIe Extended Capabilities definition
    + MdeModulePkg/Partition: Use proper partition number for MBR
    + MdePkg: Change PcdPropertiesTableEnable default value to FALSE
    + ArmVirtPkg: ArmVirtQemu: expose only 64-bit entry point for
      v3.0+ SMBIOS
    + NetworkPkg: Replace the internal function with exposed one
    + MdeModulePkg: Define a general function to create DNS QName
    + MdePkg: Add invocation register support in SMM Communication
      ACPI Table
    + MdeModulePkg: SNP should check Cdb.StatCode with
      PXE_STATCODE_SUCCESS
    + MdeModulePkg: Make the DEBUG info consistent in SNP driver
    + Add UEFI2.6 MemoryAttributes Table
    + OvmfPkg: simplify VARIABLE_STORE_HEADER generation
    + Minor comments update to AllocatePages() and AllocatePool()
    + MdeModulePkg DxeCore: Missing change for OEM reserved memory
      type at R17460
    + ArmPkg: DefaultExceptionHandler fixes for use with DxeCore
    + BaseTools/GenFw AARCH64: add support for relative data
      relocations
  - Update openssl to 1.0.2f
    Feb 15 09:17:12 UTC 2016 - glin@suse.com
  - edk2 upstream switched the repo from svn to git, so the naming
    has to change to use the git hash. The most recent stable release
    of edk2 is UDK 2015, so the base version changes to 2015.
  - update to ovmf-2015+git1454310736.ed5e386
    + MdePkg: Update the UEFI version to reflect new revision
    + MdePkg: Add EFI Supplicant Protocol definitions
    + MdePkg: Add EFI Wireless MAC Connection II Protocol definitions
    + MdePkg: Add ACPI6.1 definition
    + NetworkPkg: better sanity check on Ipv6 prefix length
    + NetworkPkg: Reword PXE download message
    + ShellPkg: ShellFileHandleReadLine must return UCS2 lines
    + ArmPlatformPkg/Bds: Early Console Initialization
    + ShellBinPkg: Arm/AArch64 Shell binary update
    + ShellPkg: Fix ASCII and UNICODE file pipes
    + ArmVirtPkg: implement ArmVirtQemuKernel
    + ArmVirtPkg: introduce new ArmQemuRelocatablePlatformLib
    + MdeModulePkg: Update DxeCore dispatcher to ignore PEI and SMM
      depex for FV
    + ArmPkg: Add isb when setting SCR
    + MdeModulePkg/PcRtc: Still create timezone variable when
      Daylight != 0
    + MdeModulePkg/UsbAbsPointer:Fix GetState() to return absolute
      value
    + MdeModulePkg: Correct one return status code in SNP Transmit
      function
    + MdeModulePkg: Update the default size of MNP TX buffer pool
    + MdeModulePkg: Update DBsize in SNP GetStatus command
    + NetworkPkg:Add a new error status code EFI_HTTP_ERROR
    + MdePkg:Add a new error status code EFI_HTTP_ERROR
    + NetworkPkg: Fix suspicious dereference of pointer 'Mode.Ia'
    + OvmfPkg: QemuBootOrderLib: recognize NVMe devices
    + OvmfPkg: include NvmExpressDxe driver
    + SecurityPkg: AuthVariableLib: Add new cert database for
      volatile time based Auth variable
    + MdeModulePkg: Add BS+RT+AT variable attribute definition
    + MdePkg: Add new enum EfiPlatformConfigurationActionUnsupportedGuid
    + PcAtChipsetPkg/Rtc: Don't unnecessarily create timezone
      variable
    + Correct inconsistent function descriptions in DNS
    + OvmfPkg: Increase default RELEASE build image size to 2MB
    + Minor update to the Data parameter for GetVariable()
    + MdeModulePkg: NvmExpressDxe: clean up NvmeRead() / NvmeWrite()
      debug msgs
    + MdePkg:Add new traffic statistics definition for Wireless NIC
    + NetworkPkg:Fix Network memory leak when calling GetModeData
      interface
    + SecurityPkg: Correct data copy in Tpm2NvReadPublic
    + SecurityPkg: Add TPM PTP detection in Tpm12SubmitCommand
    + MdeModulePkg DxeCore: Avoid the closed event to be signaled
      wrongly
    + SecurityPkg: SecureBootConfigDxe: Fix potential NULL pointer
      dereference
    + CryptoPkg: Fix function qsort for non 32-bit machines
  - update _service to fetch git repo
* Tue Jan 26 2016 glin@suse.com
  - update to R19743
    + NetworkPkg: Removing or adding some ASSERT statement
    + MdeModulePkg:Fix the potential memory leak issue in Display
      Engine
    + MdeModulePkg: Add error DEBUG statements in ATA passthru driver
    + NetworkPkg: DnsDxe: fix return type of DnsFillinQNameForQueryIp()
    + MdeModulePkg/Ide: return correct status when DRQ is not ready
      for ATAPI
    + MdeModulePkg/ScsiDisk: Increase the value of SCSI_DISK_TIMEOUT
      to 30s
    + OvmfPkg: inherit Image Verification Policy defaults from
      SecurityPkg
    + OvmfPkg: execute option ROM images regardless of Secure Boot
    + Rename TisTpmCommand to avoid name collision
    + MdeModulePkg: update SNP.GetStatus to handle multiple recycled
      TX buffer.
    + MdeModulePkg: Update MNP driver to recycle TX buffer
      asynchronously.
    + Refine error handle code, avoid assert when load this module
      twice.
    + MdeModulePkg: DeleteLoadOptionVariable() removes Boot####
    + MdeModulePkg: Fix GraphicsConsole driver resolution out of
      sync issue
    + SecurityPkg: MOR drivers use Tcg2Protocol instead of TrEE.
    + SecurityPkg: Add Tpm2Startup return code check.
    + SecurityPkg: Clear AuthSession content after use.
    + BaseTools/VfrCompile: honor CC if it is set
    + BaseTools AARCH64: add separate GCC build rule for XIP objects
    + BaseTools AARCH64: build XIP modules with strict alignment
    + SecurityPkg: TcgDxe,Tcg2Dxe,TrEEDxe: New PCD for TCG event log
      and TCG2 final event log area
    + NetworkPkg: Fix some typos in Http boot driver.
    + MdeModulePkg: Add DNS QType and QClass values definition
    + NetworkPkg: Remove DNS QType and QClass definition
    + SecurityPkg: SecureBootConfigDxe: Change
      KEY_TRANS_SECURE_BOOT_MODE value
    + SecurityPkg: SecureBootConfigDxe: Enhance secure boot string
      update logic
    + MdeModulePkg:Fix the potential memory leak issue in Display
      Engine
    + ShellPkg: Update 'dh' command to reflect correct driver handle
      information
    + NetworkPkg: Fix IpSec SPD and SAD mapping issue when SPD is
      updated
    + NetworkPkg: Fix SPD entry edit policy issue in IPSecConfig.
    + MdeModulePkg: Add new library class PciHostBridgeLib
    + MdeModulePkg: Add PciHostBridgeLibNull
    + MdePkg: Add PciSegmentLib instance based on PciLib
    + MdeModulePkg: Add generic PciHostBridgeDxe driver.
    + Add NOOPT target
    + ShellPkg UefiDpLib: Use Image->FilePath to get name for SMM
      drivers
    + MdeModulePkg/.../IdeMode: actualize DRQReady*() comment blocks
    + MdeModulePkg/.../IdeMode: report early finish of packet read
      as success
    + MdeModulePkg: SerialDxe: lay out mSerialIoMode initializer more
      nicely
    + MdeModulePkg: SerialDxe: sync EFI_SERIAL_IO_MODE.Timeout with
      the spec
    + MdeModulePkg: TerminalDxe: select the UART's default receive
      FIFO depth
    + BaseTools: make build report tolerant of FVs specified by name
    + Replace TpmCommLib with Tpm12DeviceLib
    + Add TPM 1.2 commands used by TCG modules
    + SecurityPkg: Update TCG PPI "1.3" for TCG2.
    + Add TPM PTP support
  - Remove upstreamed ovmf-fix-signedness.patch
* Wed Jan 06 2016 glin@suse.com
  - update to R19584
    + NetworkPkg: Support DNS4/6 GeneralLookUp feature
    + SecurityPkg AuthVariableLib: Correct comment/error log about
      CleanCertsFromDb
    + NetworkPkg: Fix suspicious dereference of pointer before NULL
      check
    + NetworkPkg: Update module inf to include the missing uni file
    + NetworkPkg: Remove a CopyMem to speed up the HTTP boot download
    + NetworkPkg: Remove unused EFI_HTTP_PROTOCOL definition
    + MdePkg : Update SPCR to use ACPI5 definition
    + MdeModulePkg ScsiDiskDxe: Raise the Tpl of async IO callback
      to TPL_NOTIFY
    + ScsiDiskDxe: Close event when SCSI command fails
    + MdeModulePkg ScsiBusDxe: Only signal caller event when
      PassThru() succeeds
    + MdeModulePkg DiskIoDxe: Check for MediaPresent in
      DiskIo2ReadWriteDisk()
    + MdeModulePkg ScsiDiskDxe: Modify WriteBlocks(Ex)() to follow
      UEFI spec
    + MdeModulePkg ScsiDiskDxe: Modify FlushBlocksEx() to follow UEFI
      spec
    + MdeModulePkg ScsiDiskDxe: Set block I/O media of SCSI CDROM to
      read-only
    + PcAtChipsetPkg/Rtc: Fix a UEFI Win7 boot hang issue
    + MdeModulePkg:Clear the screen before booting the boot option
    + NetworkPkg : Remove unused local variables to fix gcc build
      errors
    + MdePkg: Add HTTP 1.1 industry standard definitions
    + SecurityPkg: SecureBootConfigDxe: Remove useless code in VFR
    + NetworkPkg:Fix a bug the 2nd httpboot fail issue
    + NetworkPkg: Update iSCSI driver to check existing AIP instances
    + UefiCpuPkg/CpuMpPei: Fix pack(1) issue on x64 arch
    + MdeModulePkg:Fix bug that get the password width info
      incorrectly
    + NetworkPkg:Fix the issue Http boot hang when network failed
    + DxeTpmMeasureBootLib: Change global variable name to avoid
      name conflict
    + ArmVirtPkg/ArmVirtXen: add ARM support
    + ArmVirtPkg/XenRelocatablePlatformLib: rewrite DTB memory node
      retrieval in C
    + OvfmPkg/XenHypercallLib: add missing GCC_ASM_EXPORT to
      XenHypercall2
    + Shell update
    + MdeModulePkg:Fix a bug HttpLib can't parse last chunked data
      well
    + MdeModulePkg/PciSioSerialDxe:add non-null pointer dereference
      assertion
    + ArmPkg: rewrite vector table population macros
    + BootManagerLib: Check the pointer to avoid use NULL pointer
    + MdeModulePkg: Fix RegularExpressionDxe memcpy intrinsic
  - Add ovmf-fix-signedness.patch to fix the build error
* Wed Dec 16 2015 glin@suse.com
  - Update R19289
    + MdePkg: Add missing SMBIOS definitions for SATA and SAS Ports
    + MdePkg: Add GIC version to ACPI 5.1/6 definitions
    + MdePkg: Add Ipmi2.0 definitions head file
    + MdeModulePkg: Add NULL pointer check for RegularExpressionDxe
    + Convert all .uni files to utf-8
    + BaseTools/Scripts: Add ConvertUni.py script
    + Fix >4G issue on IDT not restored correctly
    + MdeModulePkg: Improved SetupBrowser handling to failed GOTO
      callback
    + ArmPlatformPkg/Sec: fix return_from_exception code and comment
    + ArmPlatformPkg/ArmPlatformLibNull: use declared PPI rather than
      module local var
    + ArmVirtPkg RVCT: build DXE_RUNTIME_DRIVER modules with 4 KB
      alignment
    + BaseTools/GenFw RVCT: fix relocation processing of PT_DYNAMIC
      sections
    + BaseTools RVCT: use scatter file to enforce minimum section
      alignment
    + MdePkg/BaseIoLibIntrinsic: Add EBC support
    + MdePkg: Add 3 macro defined in latest TPM2 specification
    + ShellPkg: Initialize the local pointer to avoid potential
      suspicious dereference
    + CryptoPkg/OpensslLib: upgrade OpenSSL version to 1.0.2e
    + MdeModulePkg ScsiDiskDxe: Add BlockIO2 Support
    + MdePkg UefiScsiLib: Add non-blocking support for SCSI
      Read/Write command
    + NetworkPkg: Fix the potential NULL pointer dereferenced issue
    + ShellPkg: Make 'dh' support showing all spec defined protocols
    + BaseTools GCC: avoid the use of COMMON symbols
    + ArmPkg/PrePeiCore: adhere to architectural stack alignment
      requirement
    + UefiCpuPkg/MtrrLib: Add PCD PcdCpuNumberOfReservedVariableMtrrs
    + ArmPkg/BdsLib: Send RemainingDevicePath to PXE Load File
      protocol
    + CryptoPkg/BaseCryptLib: make mVirtualAddressChangeEvent STATIC
    + CryptoPkg ARM: add ArmSoftFloatLib resolution to CryptoPkg.dsc
    + SecurityPkg: AuthVariableLib: Customized SecureBoot Mode
      transition
    + MdePkg: DebugAssert enhancement
    + ArmVirtPkg: HighMemDxe: add memory space for the high memory
      nodes
    + ArmVirtPkg: ArmVirtPlatformLib: find the lowest memory node
  - Update openssl to 1.0.2e
  - Update ovmf-embed-default-keys.patch to include one more db key
  - Add MicWinProPCA2011_2011-10-19.crt, the Windows Product key
* Fri Dec 04 2015 glin@suse.com
  - Update to R19110
    + ShellPkg: Fix wrong return status for Ifconfig.c
    + OvmfPkg: pull in SMM-based variable driver stack
    + OvmfPkg: any AP in SMM should not wait for the BSP for more
      than 100 ms
    + OvmfPkg: use relaxed AP SMM synchronization mode
    + OvmfPkg: SmmCpuFeaturesLib: implement SMRAM state save map
      access
    + OvmfPkg: import SmmCpuFeaturesLib from UefiCpuPkg
    + OvmfPkg: set gUefiCpuPkgTokenSpaceGuid.PcdCpuSmmEnableBspElection
      to FALSE
    + OvmfPkg: LockBox: use SMM stack with -D SMM_REQUIRE
    + OvmfPkg: introduce -D SMM_REQUIRE and PcdSmmSmramRequire
    + ArmVirtPkg: add secure boot support to 32-bit ARM targets
    + MdeModulePkg/BDS: Do not pass unnecessary option to boot option
    + NetworkPkg: Fix a bug in HttpBootDriverBindingStop() when
      destroying child
    + ArmPlatformPkg/PrePiHobListPointerLib: use thread ID register
    + ArmPlatformPkg/PrePeiCore: add missing entries to AArch64
      vector table
  - Refresh ovmf-gdb-symbols.patch
  - Run fdupes on /usr/share/qemu
* Fri Nov 27 2015 glin@suse.com
  - Update to R18975
    + ArmVirtPkg: Use SerialDxe in MdeModulePkg instead of
      EmbeddedPkg
    + OvmfPkg XenConsoleSerialPortLib: Implement
      Get(Set)Control/SetAttributes
    + NetworkPkg:Fix NULL pointer dereference issues
    + Always set WP in CR0
    + ArmPkg/UncachedMemoryAllocationLib: fix warning about
      uninitialized local var
    + UefiCpuPkg/CpuS3DataDxe: Add module to initialize ACPI_CPU_DATA
      for S3
    + Move CommunicationBuffer from stack to global variable
    + Move SmmDebug feature from ASM to C
    + Install LoadedImage protocol for PiSmmCore
    + Uninstall LoadedImage protocol if SMM driver returns error and
      is unloaded
    + ArmLib/ArmV7Mmu: use 64-bit type for mapping region size
    + ArmVirtPkg/ArmVirtPlatformLib: reduce ID map size to GCD region
      size
    + ArmVirtPkg/ArmVirtQemu: limit the (I)PA space to 40 bits
    + MdeModulePkg/UefiBootManagerLib: Always create MemoryTypeInfo
      variable
    + ShellBinPkg: Arm/AArch64 Shell binary update
    + MdeModulePkg:Create Boot Maintenance Manager Library
    + MdeModulePkg:Create Device Manager Library
    + MdeModulePkg:Create Boot Manager Library
    + ArmPkg: Invalidate cache after allocating UC memory
    + MdeModulePkg FileExplorerDxe: Create file explorer Protocol
    + ArmPkg: ArmLib: purge incorrect ArmDrainWriteBuffer () alias
    + UefiCpuPkg/CpuDxe: Don't use gBS->Stall
    + UefiCpuPkg/SmmFeatureLib: Check SmmFeatureControl by
      Code_Access_Chk
    + UefiCpuPkg: Not touch SmmFeatureControl if Code_Access_Chk not
      Set
    + ArmPkg/ArmPlatformPkg: position vectors relative to base
    + ArmPkg: correct TTBR1_EL1 settings in TCR_EL1
    + ShellPkg: Corrected CatSPrint usage to prevent memory leaks
    + ArmPkg/ArmV7Mmu: handle memory regions over 4 GB correctly
    + ArmPkg/ArmV7Lib: take MP extensions into account when
      programming TTBR
    + ArmPkg/ArmV7Lib: fix definition of TTBR_NON_INNER_CACHEABLE
    + ArmPkg/ArmV7Mmu: introduce feature PCD to map normal memory
      non-shareable
    + ArmPkg/ArmV7Mmu: make cached translation table accesses
      shareable
    + ArmPkg/ArmV7Lib: add function to test for presence of MP
      extensions
    + ArmPkg/ArmV7Lib: add support for reading the ID_MMFR0 system
      register
    + ArmPkg/ArmV7Mmu: fix write-through translation table accesses
    + ArmPkg/Mmu: set required XN attributes for device mappings
    + ArmVirtPkg/ArmVirtPlatformLib: map executable NOR region as
      normal memory
    + ArmPkg/AArch64Mmu: remove unused GcdAttributeToArmAttribute()
* Wed Nov 18 2015 glin@suse.com
  - Update to R18868
    + ArmPkg: ensure DebugAgentVectorTable is 2K-aligned
    + MdeModulePkg: Add Platform recovery support
    + MdePkg: Add Platform Recovery definitions
    + MdeModulePkg: SmmLockBoxPeiLib: work without
      EFI_PEI_SMM_COMMUNICATION_PPI
    + NetworkPkg: Httpboot will fail the 2nd time result by wrong
      TCP state
    + MdeModulePkg PeiCore: PEI dispatcher need retry to process
      NOT_DISPATCHED FV
    + ArmPkg/ArmLib: mark all cached mappings as (inner) shareable
    + ArmPlatformPkg: bring DS-5 scripts in line with linker script
      changes
    + MdeModulePkg: Add BootLogoLib to provide interfaces about logo
      display
    + MdeModulePkg: Add ImageDecoderLib to provide image decoding
      service
    + MdeModulePkg: Add PlatformLogo protocol definition
* Thu Nov 12 2015 glin@suse.com
  - Update to R18768
    + MdePkg: Add more DataBits support to Port80 output
    + MdeModulePkg PeiCore: Fix issue AuthenticationStatus is not
      propagated correctly
    + NetworkPkg: Report Http Errors to screen when http layer
      occurs an error
    + Add error handling for TPM in S3 resume failure
    + ArmPkg/ArmDmaLib: use the cache writeback granularity for
      alignment
    + ArmPkg/ArmLib: fix barriers in AArch64 ArmEnableMmu
    + NetworkPkg:Enable Http Boot over Ipv6 stack
    + NetworkPkg:Missing CloseEvent() in HttpResponseWorker
    + CryptoPkg: Add one new API (Pkcs7GetCertificatesList) for certs
      retrieving
    + SourceLevelDebugPkg: DebugAgent: Set Local APIC SoftwareEnable
    + UefiCpuPkg: LocalApicLib: Add API to set SoftwareEnable bit
    + UefiCpuPkg: CpuDxe: Update GDT to be consistent with DxeIplPeim
    + NetworkPkg: HttpDxe sometimes free a pointer twice
    + CryptoPkg/OpensslLib: Move OPENSSL_NO_xxx defines into
      opensslconf.h
    + CryptoPkg/OpensslLib: Eliminate GETPID_IS_MEANINGLESS
      definition
    + CryptoPkg: Fix OpenSSL BN wordsize and OPENSSL_SYS_UEFI
      handling
    + CryptoPkg/OpensslLib: Undefine NO_BUILTIN_VA_FUNCS to fix
      varargs breakage
    + CryptoPkg/BaseCryptLib: Use X509_V_FLAG_NO_CHECK_TIME
    + CryptoPkg/BaseCryptLib: Use X509_V_FLAG_PARTIAL_CHAIN
    + CryptoPkg/BaseCryptLib: Clean up checking of PKCS#7 contents
      type
    + CryptoPkg/BaseCryptLib: Use accessor functions for ASN1_OBJECT
    + CryptoPkg/BaseCryptLib: Use accessor functions for
      X509_ATTRIBUTE
    + CryptoPkg/BaseCryptLib: Use i2d_X509_NAME() instead of abusing
      X509_NAME
    + CryptoPkg/BaseCryptLib: Add missing OpenSSL includes
    + UefiCpuPkg: PiSmmCpuDxeSmm: Replace PcdSet## with PcdSet##S
    + MdePkg/BaseSynchronizationLib: fix AArch64 return values
    + Fix issue that calling GetS3MemoryInfo() with wrong order
    + Do not deadloop if Microcode not found in FspTempRamInit
    + Move Smbios measurement from TCG driver to Smbios driver
    + Add suppressif around TCG hash seleciton checkbox in TCG2
    + UefiCpuPkg: PiSmmCpuDxeSmm: Remove unused references to SmmLib
    + OvmfPkg: QemuFlashFvbServicesRuntimeDxe: split out runtime DXE
      specifics
    + OvmfPkg: QemuFlashFvbServicesRuntimeDxe: no dual addressing
      needed
    + MdeModulePkg Variable: Enhance variable performance by reading
      from existed memory cache
* Thu Oct 22 2015 glin@suse.com
  - Update to R18651
    + OvmfPkg: XenPvBlkDxe: handle empty cdrom drives
    + MdeModulePkg SetupBrowserDxe: Save global variable values
      before nest function called
    + UefiCpuPkg: Add CPU Hot Plug Data include file
    + UefiCpuPkg: Add ACPI CPU Data include file
    + UefiCpuPkg: Add SMM CPU Service Protocol
    + UefiCpuPkg: CpuDxe: broadcast MTRR changes to APs
    + UefiCpuPkg: CpuDxe: Wait for APs to enter idle loop
    + UefiCpuPkg: CpuDxe: Use PCD for AP detection timeout
    + UefiCpuPkg: Update CPU MP drivers to support single CPU
      configuration
    + MdeModulePkg VarCheckLib: R18611 was thoughtless for property
      set
    + SecurityPkg : Fix Rsa2048Sha256GuidedSectionExtractLib issue
    + OvmfPkg: VirtioBlkDxe: reset device at ExitBootServices()
    + OvmfPkg: VirtioScsiDxe: reset device at ExitBootServices()
    + OvmfPkg: Sec: Fix SOURCE_DEBUG_ENABLE ASSERT()
    + MdeModulePkg: SmbiosDxe: soften DEBUG messages about table
      reallocation
    + MdeModulePkg: FaultTolerantWriteDxe: clean up some "success"
      messages
    + MdeModulePkg: FaultTolerantWriteDxe: mellow DEBUGs about
      workspace reinit
    + ArmPlatformPkg: NorFlashDxe: mellow DEBUG messages about flash
      reinit
    + ArmVirtPkg: include BaseStackCheckLib also for AARCH64
    + NetworkPkg: reset DHCP child when leaving PXE LoadFile
    + MdeModulePkg: reset DHCP child when leaving PXE LoadFile
    + SecurityPkg AuthVariableLib: Add the missing
      gEfiAuthenticatedVariableGuid
    + MdeModulePkg VariableRuntimeDxe: Add the missing
      gEfiImageSecurityDatabaseGuid
    + MdeModulepkg VarCheckLib: Return NULL when no property set to
      variable with wildcard name
    + NetworkPkg: remove unnecessary timeout event when setting IPv6
      address
    + ShellPkg: Print error message when Shell set environment
      variable fail
    + BaseTools/PeCoffLoader: fix handling of ARM MOVW/MOVT
      instruction relocs
    + UefiCpuPkg: Add ASSERT to handle local APIC not config properly
    + SecurityPkg: Integrate new RngLib into RngDxe
    + MdePkg: Create GetRandomNumber128 in RngLib
    + ArmVirtPkg/ArmVirtQemu: enable non-exec DXE stack for AARCH64
    + MdeModulePkg/DxeIplPeim: implement non-exec stack for
      ARM/AARCH64
    + ArmPkg/ArmLib MMU: add functions to set/clear RO and XN bits on
      regions
    + ArmPkg/AArch64Mmu: move page table traversal code to separate
      function
    + ArmPkg/AArch64Mmu: use architecturally correct definitions for
      XN/UXN
* Thu Oct 08 2015 glin@suse.com
  - Update to R18577
    + OvmfPkg: raise DXEFV size to 9 MB
    + MdeModulePkg: exit pci function loops early if device is not
      multi-function
    + NetworkPkg: HttpDxe: Remove unused local variables
    + ArmPkg/AArch64Mmu: remove cache maintenance for page tables
    + BaseTools/AARCH64: use large code model for GCC <= 4.8
    + ArmPkg/Mmu: do not configure block translations at level 0
    + ArmVirtPkg: use 4 KB section alignment for
      ARM DXE_RUNTIME_DRIVER modules
    + BaseTools/ARM: move to unified GCC linker script
  - Enable HttpBoot for i586 and x86_64
  - Drop patches since upstream fixes the issues
    + ovmf-use-non-default-gcc48.patch
    + 0001-Revert-BaseTools-AARCH64-use-tiny-code-model-by-defa.patch
    + 0010-avoid-potentially-uninitialized-variable.diff
* Thu Oct 01 2015 glin@suse.com
  - Update to R18564
    + OvmfPkg: set 4 KB section alignment for DXE_RUNTIME_DRIVER
      modules
    + MdeModulePkg Ip4Dxe: Ip4Config2 to request DHCP Option6 DNS
      server IP
    + MdeModulePkg: Add SMBIOS 3.0 support in NetLibGetSystemGuid
    + ArmVirtPkg: build the TFTP command into the UEFI shell
    + OvmfPkg: build the TFTP command into the UEFI shell
    + ArmVirtPkg: reduce preallocation of boot services data pages
    + OvmfPkg: enable SATA controller
    + OvmfPkg: QemuBootOrderLib: recognize Q35 SATA disks / CD-ROMs
    + MdePkg: Add RngLib into MdePkg
    + MdeModulePkg: Remove event from protocol database only if
      registered
    + ArmVirtPkg: PlatformIntelBdsLib: signal ReadyToBoot on direct
      kernel boot
    + ShellPkg: Added SMBIOS 2.8 Type 17 changes to smbiosview
    + ShellPkg: Added SMBIOS 3.0 support in dmem
    + MdeModulePkg: Enhance PCI capability looking up logic to avoid
      hang
    + OvmfPkg: disable no-exec DXE stack by default
    + OvmfPkg: make PcdPropertiesTableEnable dynamic
    + OvmfPkg: make PcdSetNxForStack dynamic
    + MdeModulePkg: Change the algorithm in SNP to use the first
      found BAR index
    + NetworkPkg: Update Http driver to use DPC mechanism
    + NetworkPkg: RxToken event not closed in Http.Response()
    + NetworkPkg: Avoid memory allocation for each HTTP message
      exchange
    + NetworkPkg: Update cache management in HTTP boot driver
    + NetworkPkg: Enlarge receive block size of HTTP boot driver
    + PXE Driver's LoadFile protocol should check FilePath
    + ArmVirtPkg: set max physical address width to 40 bits
    + ArmVirtPkg/ArmVirtMemoryInitPeiLib: handle memory above 4 GB
      on 32-bit ARM
    + ArmPkg/Mmu: Fix potential page table memory leak
    + ArmPkg/Mmu: Increase PageLevel when table found at the targeted
      level
    + ArmPkg/Mmu: Fix literal number left shift bug
    + ArmPkg/Mmu: Fix page level calculation bug
    + ArmPkg/Mmu: Fix bug of aligning new allocated page table
    + MdeModulePkg: Fix a performance data buffer overrun issue
    + ShellPkg: Fix 'for' command fail with multiple fields
    + MdeModulePkg: Regular expression protocol
    + NetworkPkg: Fix suspicious dereference of pointer 'FieldCount'
    + Handle extra module patchable PCD variable in Linux map
    + NetworkPkg: Fix the HttpCloseConnection fail issue
    + UefiCpuPkg/MtrrLib: MtrrValidBitsMask and MtrrValidAddressMask
      wrong
  - Add ovmf-use-non-default-gcc48.patch: gcc5 generates the larger
    code size and causes the x86_64 final image exceeds the size
    limit if we enable Secure Boot and IPv6 at the same time. As a
    workaround, we use the non-default gcc48.
  - Drop ovmf-gcc5-conf.patch and use GCC49 as TOOL_CHAIN_TAG for
    the distro with gcc5
  - Limit 0001-Revert-BaseTools-AARCH64-use-tiny-code-model-by-defa.patch
    to the distro with gcc lower than 5
  - Refresh ovmf-embed-default-keys.patch and ovmf-gdb-symbols.patch
* Thu Sep 03 2015 glin@suse.com
  - Update to R18393
    + OvmfPkg: PlatformPei: force 32-bit MMIO aperture above 3 GB
    on Q35
    + OvmfPkg: AcpiTables: serialize control methods that create
      named objects
    + OvmfPkg: PlatformPei: clear CMOS 0xF after setting mBootMode
    + CryptoPkg: Fix one wrong parameter for weak key checking
    + CryptoPkg: Replace string wrapper functions with safe string
      functions
    + ArmPlatformPkg/PlatformIntelBdsLib: add splash screen support
    + ArmPlatformPkg/PlatformIntelBdsLib: fix and clean up error
      handling
    + ArmPlatformPkg/PlatformIntelBdsLib: remove ARM BDS dependency
    + Locate IpSec on IP packet processing only if it's installed
    + ShellPkg: Get media status in ifconfig command
    + OvmfPkg: prevent code execution from DXE stack
    + MdePkg: Modify string expression of Wi-Fi device path to
      follow UEFI spec
    + NetworkPkg: Fix IpSec run into infinite loop issue in some case
    + FatBinPkg: Update EBC/IA32/X64/IPF binaries
    + SecurityPkg: Fix one returned code issue in P7Verify Protocol
    + Add VarCheckLib library
    + BaseTools: Add NULL pointer check in AutoGen code
    + Follow PI spec to update ExtendedSize in EFI_FFS_FILE_HEADER2
    + NetworkPkg: Add HTTP utilities driver
    + OvmfPkg: Add HttpBoot support
    + NetworkPkg: Remove the hostname from the http request URL
    + MdeModulePkg:Full support F10 hot key in UiApp
    + NetworkPkg: Fix DHCP TransmitReceive EFI_NO_MAPPING return in
      DnsDxe
    + MdeModulePkg: Fix default router table and interface missing
      error
    + ShellPkg: Fix 'ifconfig' can't get the address from dhcp in
      some case
    + ArmPkg: remove ARMv6 support code
    + MdeModulePkg: Update UiApp to handle terminal type TtyTerm
    + MdeModulePkg/Xhci: make all timeout values be consistent with
      comments
    + SecurityPkg: Fixed build error due to FixedAtBuild
      PcdTcg2HashAlgorithmBitmap
    + MdeModulePkg: IP4 should re-initiate a DHCP if it detects
      network reconnection
    + NetworkPkg: Stop and release DHCP4 child after boot info is
      ready
    + Add restriction that HashFinal() must be after at least one
      HashUpdate()
    + SecurityPkg: Update SignatureSize to comply UEFI spec
    + NetworkPkg: Fix hang issue after system reconnected when IPSec
      has set up
    + Add TPM2 definition in trusted computing group
    + BaseTools IA32/X64: prevent .eh_frame sections from being
      generated
    + MdeModulePkg:Use safe string functions in UiApp
    + MdeModulePkg: Add codes to support trailer parse in HttpLib
    + OvmfPkg/Xen: use lower case x in hex immediate value
    + ArmVirtPkg: use global section alignment in custom linker
      script
    + ArmVirtPkg: avoid relocated immediates in AARCH64 asm
    + MdeModulePkg: Fix issue about current Ip4Dxe implementation
      for DHCP DORA process
    + BaseTools/GenFw: allow AArch64 tiny and small code model
      relocations
  - Add 0001-Revert-BaseTools-AARCH64-use-tiny-code-model-by-defa.patch
    to use the large model for aarch64 since ld/binutils couldn't
    calculate the sections properly and GenFw would fail due to the
    section offset.
  - Drop arm patches
    + 0001-ArmPlatformPkg-ArmVirtualizationPkg-enable-DEBUG_VER.patch
    + 0002-ArmPlatformPkg-Bds-generate-ESP-Image-boot-option-if.patch
    + 0003-ArmPlatformPkg-Bds-check-for-other-defaults-too-if-u.patch
    + 0005-ArmPlatformPkg-Bds-initialize-ConIn-ConOut-ErrOut-be.patch
    + 0006-ArmPlatformPkg-Bds-let-FindCandidate-search-all-file.patch
    + 0007-ArmPlatformPkg-Bds-FindCandidateOnHandle-log-full-de.patch
    + 0008-ArmPlatformPkg-Bds-fall-back-to-Boot-Menu-when-no-de.patch
    + 0009-ArmPlatformPkg-Bds-always-connect-drivers-before-loo.patch
* Mon Aug 10 2015 glin@suse.com
  - Update to R18191
    + UefiCpuPkg CpuDxe: Sync up the settings of Execute Disable to APs
    + MdeModulePkg DxeIpl: Fix IA32 build failure with GCC 5.1.1
    + ArmPlatformPkg/PlatformPeim: constify EFI_PEI_PPI_DESCRIPTOR
      globals
    + ArmPlatformPkg/PrePeiCore: constify PPI globals
    + MdeModulePkg: Use monotonic count to initialize the NetLib
      random seed
    + OvmfPkg: SmbiosVersionLib: recognize SMBIOS 3.x entry point
    + OvmfPkg: SmbiosPlatformDxe: eliminate duplicate entry point
      validation
    + ArmVirtPkg/ArmVirtQemu.dsc: set default for
      PcdQemuSmbiosValidated
    + OvmfPkg: introduce PcdQemuSmbiosValidated
    + ArmVirtPkg: set SMBIOS version in DetectSmbiosVersionLib
      instead of QemuFwCfgToPcdDxe
    + OvmfPkg: set SMBIOS version in DetectSmbiosVersionLib instead
      of PlatformPei
    + OvmfPkg: SmbiosVersionLib: add "plugin" for detecting SMBIOS
      version
    + OvmfPkg: PlatformDebugLibIoPort: fix AsciiSPrint() format
      string
    + ShellPkg: Fix issue about ping fail with IPv4
    + MdeModulePkg DxeIpl: Add stack NX support
    + NetworkPkg: Fix assert caused by wrong parameter in
      AsciiStrCpyS()
    + ArmVirtPkg/ArmVirtQemu: add LinuxLoader UEFI app to ARM build
    + ArmVirtPkg/ArmVirtXen: remove unused PcdFirmwareVendor PCD
    + ArmVirtPkg/ArmVirtQemu: drop ARM BDS and make Intel BDS the
      default
    + BaseTools GCC: move AutoGen.obj contents to .text section
    + BaseTools GCC: align start of .data to .text alignment
    + BaseTools GCC: add unified GCC linker script for all archs and
      versions
    + BaseTools IA32/X64: get header size and alignment from ld
      commandline
    + BaseTools IA32/X64: move .got contents to the PE/COFF .text
      section
    + BaseTools IA32/X64: drop redundant alignment from linker script
    + BaseTools IA32/X64: move .rodata to PE/COFF .text section
    + BaseTools IA32/X64: remove NOP padding from X86/IA32 GCC linker
      scripts
    + MdeModulePkg PeiCore: Add PCD to specify PEIM Shadow
    + ArmVirtPkg: use 'auto' alignment and FIXED placement for XIP
      modules
    + MdeModulePkg: Enhance PciBusDxe to handle high 32bit of MEM64
      BAR returns 0
  - Refresh ovmf-gcc5-conf.patch
  - Refresh 0001-ArmPlatformPkg-ArmVirtualizationPkg-enable-DEBUG_VER.patch
  - Drop upstreamed patch: ovmf-netlib-random-seed.patch
  - Drop 0004-ArmPlatformPkg-ArmVirtualizationPkg-auto-detect-boot.patch
    since the ARM BDS was dropped
* Wed Jul 29 2015 glin@suse.com
  - Update to R18107
    + NetworkPkg: Fix the issue cannot boot to UEFI Network after
      reset
    + ArmVirtPkg: implement DT-based ArmGicArchLib
    + OvmfPkg: fix conversion specifiers in DEBUG format strings
    + Reduce reserved memory consumption
    + MdeModulePkg: Make boot option description unique
    + NetworkPkg: Fix the issue EfiPxeBcDhcp() may return wrong
      status.
    + ArmVirtPkg/ArmVirtQemu: support SMBIOS
    + ArmVirtPkg: QemuFwCfgToPcdDxe: set SMBIOS entry point version
      dynamically
    + ArmVirtPkg: add QemuFwCfgToPcdDxe
    + OvmfPkg: SmbiosPlatformDxe: restrict current Xen code to
      IA32/X64
    + OvmfPkg: SmbiosPlatformDxe: move IsEntryPointStructureValid()
      to Xen.c
    + OvmfPkg: AcpiS3SaveDxe: drop EFI_ACPI_S3_SAVE_PROTOCOL
    + OvmfPkg: install DxeSmmReadyToLock in PlatformBdsLib
    + IntelFrameworkModulePkg/GenericBdsLib: remove AcpiS3->S3Save()
      call
    + OvmfPkg: PlatformBdsLib: signal End-of-Dxe event group
    + OvmfPkg: AcpiS3SaveDxe: call S3Ready() at End-of-Dxe
    + OvmfPkg: AcpiS3SaveDxe: prepare for End-of-Dxe callback
  - Add ovmf-netlib-random-seed.patch to avoid the DHCPv6 IAID
    collision
* Fri Jul 24 2015 glin@suse.com
  - Update to R18030
    + ArmVirtPkg: Make terminal type consistent
    + NetworkPkg: Add the unspecified address check for DNS6
      StationIp
    + ShellPkg: Add optional 'tftp' EFI Shell command
    + NetworkPkg: Fix bios bootup hang issue when enable network
    + SecurityPkg: Fix DBX Variable Read Error in
      ImageVerificationLib
    + SecurityPkg: Correct BootOrder/Boot#### measurement behavior
    + ArmVirtPkg/ArmVirtQemu.dsc: Remove Linux specific boot path
    + ArmPkg/BdsLib: Remove Linux loader from BdsLib
    + ArmPlatformPkg: Add the LinuxLoader.efi EFI application
    + ArmPkg/BdsLib: Replaced BdsLoadApplication() by
      LocateEfiApplicationInFv()
    + OvmfPkg: QemuBootOrderLib: recognize extra PCI root buses
    + OvmfPkg: QemuBootOrderLib: introduce ExtraRootBusMap
    + OvmfPkg: PciHostBridgeDxe: shorten search for extra root buses
    + OvmfPkg: PciHostBridgeDxe: look for all root buses
    + OvmfPkg: PciHostBridgeDxe: eliminate
      PCI_HOST_BRIDGE_INSTANCE.RootBridgeNumber
    + OvmfPkg: PciHostBridgeDxe: use private buffer in
      RootBridgeIoConfiguration()
    + OvmfPkg: PciHostBridgeDxe: release resources on driver entry
      failure
    + OvmfPkg: PciHostBridgeDxe: factor out InitRootBridge() function
    + OvmfPkg: PciHostBridgeDxe: embed device path in private root
      bridge struct
    + OvmfPkg: PciHostBridgeDxe: kill RootBridgeNumber and
      RootBridgeAttribute
    + OvmfPkg: PciHostBridgeDxe: eliminate nominal support for
      multiple host bridges
    + OvmfPkg: PlatformBdsLib: connect all PCI root buses
  - Refresh patches
    + 0001-ArmPlatformPkg-ArmVirtualizationPkg-enable-DEBUG_VER.patch
    + 0002-ArmPlatformPkg-Bds-generate-ESP-Image-boot-option-if.patch
    + 0003-ArmPlatformPkg-Bds-check-for-other-defaults-too-if-u.patch
    + 0004-ArmPlatformPkg-ArmVirtualizationPkg-auto-detect-boot.patch
    + 0005-ArmPlatformPkg-Bds-initialize-ConIn-ConOut-ErrOut-be.patch
    + 0006-ArmPlatformPkg-Bds-let-FindCandidate-search-all-file.patch
    + 0007-ArmPlatformPkg-Bds-FindCandidateOnHandle-log-full-de.patch
    + 0008-ArmPlatformPkg-Bds-fall-back-to-Boot-Menu-when-no-de.patch
    + 0009-ArmPlatformPkg-Bds-always-connect-drivers-before-loo.patch
    + 0010-avoid-potentially-uninitialized-variable.diff
* Mon Jul 13 2015 glin@suse.com
  - Update to R17935
    + CryptoPkg: update OpenSSL dependency to version 1.0.2d
    + OvmfPkg: QemuFwCfgLib: avoid "variable set but not used"
      warning from GCC
    + Remove Ip4ConfigDxe module
    + IntelFrameworkPkg FrameworkUefiLib: Fix ASSERT in CatVSPrint
    + BaseTools: aarch64: add -fno-asynchronous-unwind-tables to gcc
      cflags
    + MdePkg/AArch64: use GCC_ASM_EXPORT to export functions
    + MdeModulePkg/FvSimpleFileSystemDxe: Support file opening with
      no '.efi'
    + OvmfPkg: Fix GCC49 build hang in PeiCore
    + Add "TtyTerm" terminal type to TerminalDxe
    + MdeModulePkg AcpiTableDxe: Install config table at ACPI data
      change
  - Remove upstreamed ovmf-remove-old-ip4config.patch
* Wed Jul 08 2015 glin@suse.com
  - Update to R17883
    + MdePkg: Add UEFI2.5 Ramdisk device path definition
    + ArmVirtPkg: use correct ASM decoration for non-function global
      symbols
    + NetworkPkg: Add UEFI HTTP boot driver
    + NetworkPkg: Add HTTP Driver
    + NetworkPkg: Add DNS feature support over IPv4 and IPv6
    + MdeModulePkg: Update Ip4Dxe driver to support Ip4Config2
      protocol
    + ArmVirtPkg: adapt ArmVirtXen build to system memory end global
      variable
    + ArmPkg/CpuDxe: Fixed AArch64 MMU
    + ArmPkg/Application: Add new EFI application to boot Linux
    + ArmVirtPkg: build runtime drivers with 64 KB section alignment
    + Restructure AuthVariableLib
    + Conversion of the safe string functions
    + CryptoPkg: Fix the dereferenced pointer issue
    + SecurityPkg: Add MD5 support to Hash2DxeCrypto
    + OvmfPkg: Increase the maximum size of RAM
    + ArmVirtPkg: signal EndOxDxe event in PlatformBsdInit
    + MdeModulePkg: Add Memory Capabilities for MMIO and Reserved
      Range
  - Add ovmf-remove-old-ip4config.patch to remove the old Ip4Config
  - Refresh patches
    + ovmf-embed-default-keys.patch
    + ovmf-gcc5-conf.patch
    + 0001-ArmPlatformPkg-ArmVirtualizationPkg-enable-DEBUG_VER.patch
    + 0002-ArmPlatformPkg-Bds-generate-ESP-Image-boot-option-if.patch
    + 0003-ArmPlatformPkg-Bds-check-for-other-defaults-too-if-u.patch
    + 0004-ArmPlatformPkg-ArmVirtualizationPkg-auto-detect-boot.patch
    + 0005-ArmPlatformPkg-Bds-initialize-ConIn-ConOut-ErrOut-be.patch
    + 0006-ArmPlatformPkg-Bds-let-FindCandidate-search-all-file.patch
    + 0007-ArmPlatformPkg-Bds-FindCandidateOnHandle-log-full-de.patch
    + 0008-ArmPlatformPkg-Bds-fall-back-to-Boot-Menu-when-no-de.patch
    + 0009-ArmPlatformPkg-Bds-always-connect-drivers-before-loo.patch
  - Add the source-level debugging to README
* Wed Jun 24 2015 glin@suse.com
  - Update to R17700
    + OvmfPkg/PlatformDxe: Convert Platform.uni to UTF-8
    + OvmfPkg: QemuVideoDxe: add virtio-vga support
    + CryptoPkg: OpensslLib: reintroduce EFIAPI for
      ERR_add_error_data()
    + SecurityPkg: Provide correct file GUID for Pkcs7VerifyDxe
    + SecurityPkg: Fix wrong calculation of ImageExeInfoEntrySize
    + OvmfPkg: PlatformPei: set SMBIOS entry point version
      dynamically
    + SecurityPkg: Add UEFI-2.5 PKCS7 Verification Protocol Support
    + CryptoPkg: Add one new API for PKCS7 Verification Protocol
      Support
    + MdeModulePkg PiSmmCore: Introduce SMM Exit Boot Services and
      Legacy Boot
    + MdePkg/DxeServicesLib: Return NULL GetFileBufferByFilePath
      reads directory
    + MdeModulePkg: Fix DHCP4 driver hang issue in some case
    + MdeModulePkg: Remove DHCP4.TransmitReceive()and DORA process
      dependency
    + MdeModulePkg:System hangs in setup menu
    + ArmVirtPkg: increase memory preallocations for secure build
    + Update openssl to 1.0.2c
    + Add code to protect the whole BIOS region on SPI flash, except
      UEFI Variable region
    + SecurityPkg/MdeModulePkg: Add PcdMaxAuthVariableSize
      declaration
    + MdePkg: Add EFI REST Protocol definitions
    + OvmfPkg/PlatformPei: Initialise RCBA (B0:D31:F0 0xf0) register
    + OvmfPkg/PlatformPei: Query Host Bridge DID only once
    + ArmPkg: reduce sysreg access count in GIC revision probe
    + SecurityPkg: Fix wrong cert data measurement in DBX path
    + MdeModulePkg/UhciDxe: Update async polling interval to 1ms
    + MdeModulePkg/EhciDxe: Update async polling interval to 1ms
    + MdeModulePkg/XhciDxe: Update async polling interval to 1ms
    + ShellPkg\Application\Shell: Clean start row information after
      the console has been Reset or SetMode
    + Add SysPrepOrder and SysPrep#### to global list
    + MdePkg: Add EFI Capsule Report data structure and GUID
    + Add UEFI 2.5 Properties table definition
    + MdePkg:Add UEFI 2.5 PKCS7 Verification Protocol Definition
    + ShellPkg: Handle escape characters properly for parse command
    + ShellPkg: Add pipe support for parse command
    + ArmVirtPkg: increase memory preallocations to reduce region
      count
  - Add ovmf-gcc5-conf.patch for GCC5 and adjust the spec file for
    gcc5
* Wed Jun 03 2015 glin@suse.com
  - Update to R17553
    + MdeModulePkg/AtaAtapiPassThru: ensure PRDT of IDE is in 64K
      boundary
    + ArmPkg/BdsLib: Fixed TFTP when there are directories in the
      name
    + Renamed ArmPlatformPkg/ArmVirtualizationPkg into ArmVirtPkg
    + ArmPkg: Expand AArch64 address width to 48 bits
    + MdeModulePkg:Support delete key
    + MdeModulePkg/AtaAtapiPassThruDxe: Support 4K bytes block size
      HDDs
    + MdeModulePkg: Fix potential buffer overflow issues
    + Update for OEM reserved memory type
  - Update ArmPlatformPkg patches
    + 0001-ArmPlatformPkg-ArmVirtualizationPkg-enable-DEBUG_VER.patch
    + 0002-ArmPlatformPkg-Bds-generate-ESP-Image-boot-option-if.patch
    + 0003-ArmPlatformPkg-Bds-check-for-other-defaults-too-if-u.patch
    + 0004-ArmPlatformPkg-ArmVirtualizationPkg-auto-detect-boot.patch
    + 0005-ArmPlatformPkg-Bds-initialize-ConIn-ConOut-ErrOut-be.patch
    + 0006-ArmPlatformPkg-Bds-let-FindCandidate-search-all-file.patch
    + 0007-ArmPlatformPkg-Bds-FindCandidateOnHandle-log-full-de.patch
    + 0008-ArmPlatformPkg-Bds-fall-back-to-Boot-Menu-when-no-de.patch
    + 0009-ArmPlatformPkg-Bds-always-connect-drivers-before-loo.patch
    + 0010-avoid-potentially-uninitialized-variable.diff
  - Remove the prefix of the arm patches
    + ovmf-0001-ArmPlatformPkg-ArmVirtualizationPkg-enable-DEBUG_VER.patch
    + ovmf-0002-ArmPlatformPkg-Bds-generate-ESP-Image-boot-option-if.patch
    + ovmf-0003-ArmPlatformPkg-Bds-check-for-other-defaults-too-if-u.patch
    + ovmf-0004-ArmPlatformPkg-ArmVirtualizationPkg-auto-detect-boot.patch
    + ovmf-0005-ArmPlatformPkg-Bds-initialize-ConIn-ConOut-ErrOut-be.patch
    + ovmf-0006-ArmPlatformPkg-Bds-let-FindCandidate-search-all-file.patch
    + ovmf-0007-ArmPlatformPkg-Bds-FindCandidateOnHandle-log-full-de.patch
    + ovmf-0008-ArmPlatformPkg-Bds-fall-back-to-Boot-Menu-when-no-de.patch
    + ovmf-0009-ArmPlatformPkg-Bds-always-connect-drivers-before-loo.patch
    + ovmf-0010-avoid-potentially-uninitialized-variable.diff
* Thu May 14 2015 glin@suse.com
  - Update to R17446
    + OvmfPkg: AcpiS3SaveDxe: fix protocol usage hint in the INF file
    + OvmfPkg: extract some bits and port offsets common to Q35 and
      I440FX
    + MdeModulePkg: Add ESRT management module.
    + MdeModulePkg: Add ESRT management protocol definition
    + MdePkg: Add Microsoft UX capsule GUID & layout
    + SecurityPkg: Update SecureBootConfigDxe to support ARM image
    + SecurityPkg Variable: Make PK & SecureBootMode consistent
    + MdeModulePkg DxeCore: Add read only memory support
    + OvmfPkg: QemuBootOrderLib: parse OFW device path nodes of PCI
      bridges
    + MdePkg: Add UEFI 2.5 SD (Secure Digital) Device Path Definitions
    + Hash2 driver to [Components.IA32, Components.X64, Components.IPF]
      section
    + ArmVirtualizationPkg: Enable secure boot for ArmVirtualizationQemu
    + ArmPlatformPkg: enable use of authenticated variables in
      NorFlashDxe
  - Refresh patch
    + ovmf-0002-ArmPlatformPkg-Bds-generate-ESP-Image-boot-option-if.patch
  - Enable Secure Boot for AArch64
  - Remove the workaround for SLE11
* Thu May 07 2015 glin@suse.com
  - Although ovmf-gdb-symbols.patch has been included for a while,
    it's not mentioned in changelog and legal-auto script is not
    happy with it.
* Thu May 07 2015 glin@suse.com
  - Update to R17351
    + BaseTools: Fix build fail issue
    + MdeModluePkg: Enable refresh opcode to refresh the entire form
    + BaseTool: Add refresh form opcode in vfrcompiler
    + MdeModulePkg: Add BootManagerMenuApp
    + MdeModulePkg: Add BdsDxe driver and PlatformBootManagerNull
      library
    + MdeModulePkg: Add UefiBootManagerLib
    + MdePkg: Update the UEFI version to reflect new revision
    + OvmfPkg: Use the new PCDs defined in MdePkg and MdeModulePkg
    + MdePkg: Add UEFI2.5 bluetooth protocol/devicepath definition
    + Add UEFI2.5 HASH protocol implementation
    + MdeModulePkg: Add UEFI2.5 and PI1.4 PersistentMemory feature
    + MdePkg: Add ESRT Interface Definitions
    + Various fixes for Shell
  - Drop ovmf-sle-11-gcc47.patch
    + The NASM version in SLE11 is too old to build the newer ovmf
  - Rename the ARM patches to make the legal-auto script happy
    + ovmf-0001-ArmPlatformPkg-ArmVirtualizationPkg-enable-DEBUG_VER.patch
    + ovmf-0002-ArmPlatformPkg-Bds-generate-ESP-Image-boot-option-if.patch
    + ovmf-0003-ArmPlatformPkg-Bds-check-for-other-defaults-too-if-u.patch
    + ovmf-0004-ArmPlatformPkg-ArmVirtualizationPkg-auto-detect-boot.patch
    + ovmf-0005-ArmPlatformPkg-Bds-initialize-ConIn-ConOut-ErrOut-be.patch
    + ovmf-0006-ArmPlatformPkg-Bds-let-FindCandidate-search-all-file.patch
    + ovmf-0007-ArmPlatformPkg-Bds-FindCandidateOnHandle-log-full-de.patch
    + ovmf-0008-ArmPlatformPkg-Bds-fall-back-to-Boot-Menu-when-no-de.patch
    + ovmf-0009-ArmPlatformPkg-Bds-always-connect-drivers-before-loo.patch
    + ovmf-0010-avoid-potentially-uninitialized-variable.diff
* Thu Apr 23 2015 glin@suse.com
  - Update ovmf-embed-default-keys.patch to embed the default dbx.
    Also add the dbx list from the UEFI website and enable it in the
    MS flavor. A script, strip_authinfo.pl, was added to strip the
    AuthInfo headers from dbxupdate.bin since those are not necessary
    in dbx.
* Mon Apr 20 2015 glin@suse.com
  - Update to R17187
    + Save initial TSVal from TCP connection initiation packets
    + BaseTools/Ecc: Add ECC (EFI Code Checker) Binary into BaseTools
      bin directory
    + MdePkg: Add ESRT Interface Definitions
    + OvmfPkg: XenConsoleSerialPortLib: deal with output overflow
    + OvmfPkg: Q35: Use correct ACPI PM control register:bit
    + PXE driver bug fix
    + A failed PXEv6 after a success PXEv4 will cause ASSERT
    + MdePkg: BaseSynchronizationLib: fix Increment/Decrement retvals
      for ARM
    + Updated Memory Error Record Per UEFI Specification 2.4a
    + MdeModulePkg BootScriptExecutorDxe: Use ImageContext.ImageSize
      to allocate memory for PE image to handle the case PE file
      alignment is not same as PE section alignment.
    + Fix GCC hang issue: Point should use directly assignment
      instead of IP4_COPY_ADDRESS.
    + SecurityPkg Variable: Update code in ProcessVariable ()
  - Update openssl to 0.9.8zf
* Tue Mar 17 2015 glin@suse.com
  - Update to R17055
    + OvmfPkg: include XHCI driver
    + ArmVirtualizationPkg/ArmVirtualizationQemu: include XHCI driver
    + ArmVirtualizationPkg: build UEFI shell from source
    + SecurityPkg Variable: Allow the delete operation of common auth
      variable at user physical presence
    + Set network boot option to the default last priority
    + MdeModulePkg: improve scalability of memory pools
    + MdeModulePkg: use correct granularity when allocating pool
      pages
* Fri Mar 06 2015 glin@suse.com
  - Update to R17007
    + ArmVirtualizationPkg: PlatformIntelBdsLib: lack of QEMU kernel
      is no error
    + Improve Xen support in Ovmf
    + ArmVirtualizationPkg: PlatformIntelBdsLib: display TianoCore
      logo
    + ArmVirtualizationPkg/ArmVirtualizationQemu: add USB keyboard
      input
    + ArmVirtualizationPkg/ArmVirtualizationQemu: add VGA console
      output
    + ArmVirtualizationPkg/ArmVirtualizationQemu: enable PCI support
    + OvmfPkg/QemuVideoDxe: enable ARM builds
    + Improve ACPI support in Ovmf
    + OvmfPkg/PlatformBdsLib: Signal ReadyToBoot before booting QEMU
      kernel
    + ArmPkg/ArmLib.h: Add CPU Affinity definitions
    + OvmfPkg/SMBIOS: Provide default Type 0 (BIOS Information)
      structure
    + NetworkPkg: Code refine to avoid NULL pointer dereferenced
    + DHCP6 bug fix
    + BaseTools/GenFw: Set the PE/COFF attribute BaseOfData with the
      address of the first '.data' section
    + OvmfPkg: Update PlatformBaseDebugLibIoPort library
    + Various fixes for shell
  - Update ARM patches
* Fri Feb 06 2015 lnussel@suse.de
  - update to R16775
  - add RH patches for ARM
* Tue Jan 06 2015 glin@suse.com
  - Update to R16580
    + MdeModulePkg Variable: Implement VarCheck PROTOCOL and follow
      UEFI spec to check UEFI defined variables
    + ArmVirtualizationPkg: Intel BDS: load EFI-stubbed Linux kernel
      from fw_cfg
    + ArmVirtualizationPkg: identify "new shell" as builtin shell
      for Intel BDS
    + ArmVirtualizationPkg: PlatformIntelBdsLib: adhere to QEMU's
      boot order
    + OvmfPkg: QemuBootOrderLib: OFW-to-UEFI translation for
      virtio-mmio
    + OvmfPkg: QemuBootOrderLib: widen ParseUnitAddressHexList() to
      UINT64
    + ArmVirtualizationPkg: VirtFdtDxe: use dedicated
      VIRTIO_MMIO_TRANSPORT_GUID
    + OvmfPkg: introduce VIRTIO_MMIO_TRANSPORT_GUID
    + OvmfPkg: QemuBootOrderLib: featurize PCI-like device path
      translation
    + OvmfPkg: extract QemuBootOrderLib
    + ArmVirtualizationPkg: PlatformIntelBdsLib: add basic policy
    + ArmVirtualizationPkg: clone PlatformIntelBdsLib from
      ArmPlatformPkg
    + ArmVirtualizationPkg: introduce QemuFwCfgLib instance for DXE
      drivers
    + ArmVirtualizationPkg: VirtFdtDxe: forward FwCfg addresses from
      DTB to PCDs
    + MdeModulePkg/FvSimpleFileSystem:Fix a potential NULL
      dereference issue
    + Correct the Hash Calculation for Revoked X.509 Certificate to
      align with RFC3280 and UEFI 2.4 Spec
    + MdeModulePkg/FvSimpleFileSystem: Add a new module to provide
      access to executable files in FVs
    + OvmfPkg: enable IPv6 support
    + Fix a bug that the gateway is not necessary in a simple PXE
      network
    + ArmPkg/BdsLib: Update the size of the Device Tree before
      booting Linux
    + ArmPkg/BdsLib: Rework TFTP boot
    + MdePkg: UefiScsiLib: do not encode LUN in CDB for SCSI commands
    + Correct the alignment calculation of PE/COFF attribute
      certificate entry
    + OvmfPkg: CsmSupportLib: depend on OvmfPkg.dec explicitly
    + OvmfPkg: AcpiPlatformDxe: make dependency on PCI enumeration
      explicit
    + MdePkg/MdeModulePkg: Implement the missing
      SetMemorySpaceCapabilities function
    + Various fixes for shell
  - Set the flag to enable IPv6 support
  - Refresh ovmf-embed-default-keys.patch
* Tue Nov 18 2014 glin@suse.com
  - Update to R16398
    + OvmfPkg: PlatformBdsLib: Dynamic PCI Interrupt Line register
      setup
    + SecurityPkg: VariableServiceSetVariable(): fix dbt <-> GUID
      association
    + CryptoPkg: OpenSslSupport.h: edk2-ize offsetof() macro for
      gcc-4.8 / X64
    + CryptoPkg: TimestampTokenVerify(): fix gcc-4.8 / Ia32 build
      failure
    + UEFI 2.4 X509 Certificate Hash and RFC3161 Timestamp
      Verification support for Secure Boot
    + OvmfPkg: PlatformBdsLib: Platform dependent
      PCI/IRQ initialization
    + OvmfPkg: AcpiTimerLib: Split into multiple phase-specific
      instances
    + OvmfPkg: PlatformPei: Platform specific ACPI power management
      setup
    + OvmfPkg: Factor out platform detection (q35 vs. piix4)
    + UefiCpuPkg/CpuDxe: install Mp Service protocol
    + UefiCpuPkg/CpuDxe: introduce EFI_MP_SERVICES_PROTOCOL
    + ArmPkg/ArmGicLib: select GICv2 mode if SRE is present but
      unavailable
    + OvmfPkg/XenPvBlkDxe: Don't include system inttypes.h
    + ArmPlatformPkg: fix undefined reference to memcpy
    + CryptoPkg Updates to support RFC3161 timestamp signature
      verification
    + MdeModulePkg DxeCore/PiSmmCore: Add UEFI memory and SMRAM
      profile support
* Tue Nov 11 2014 glin@suse.com
  - Update to R16329
    + ArmPkg/ArmArchTimerLib: Promotes 32bit value to prevent
      overflow
    + ArmPkg/CompilerIntrinsicesLib: Fixed memmove() and memset()
    + ArmPkg: Ensured the stack is always quad-word aligned
    + ArmPlatformPkg: Increase more ARM address Pcd entries to 64-bit
    + Fix execution status & DEBUG message level mismatch
    + OvmfPkg: set video resolution of text setup to 640x480
    + OvmfPkg: BDS: drop custom boot timeout, revert to
      IntelFrameworkModulePkg's
    + OvmfPkg: BDS: drop superfluous "connect first boot option"
      logic
    + OvmfPkg: BDS: optimize second argument in
      PlatformBdsEnterFrontPage() call
    + OvmfPkg: BDS: don't overwrite the BDS Front Page timeout
    + OvmfPkg: BDS: drop useless return statement
    + OvmfPkg: BDS: remove dead call to PlatformBdsEnterFrontPage()
    + BaseTools/GenFw: Fixed R_AARCH64_CALL26/R_AARCH64_JUMP26 when
      referring to start of a section
    + Various fixes for ShellPkg
    + Convert the assembly code in OVMF to NASM
    + MdeModulePkg/SecurityPkg Variable: Add boundary check for
      while (IsValidVariableHeader (Variable))
    + Add Xen support for OVMF
    + OvmfPkg: Add the MIT license to License.txt
    + ArmPkg/ArmLib: Removed duplicated invalidate TLB function
    + ArmPlatformPkg/ArmShellCmdRunAxf: Added 'runaxf' cmd to shell
  - Amend the spec file to use the system gcc version as the tool
    chain tag
* Wed Oct 22 2014 glin@suse.com
  - Update to R16226
    + ArmVirtualizationPkg: FdtPL011SerialPortLib: support
      UEFI_APPLICATION
    + ArmPlatformPkg/ArmVirtualizationPkg: Added support for Intel
      BDS
    + ArmPkg/ArmLib/AArch64: Initialize the new N+1-level page table
      before registering it
    + ArmPkg/UncachedMemoryAllocationLib: Track uncached memory
      allocations
    + ArmPkg/ArmPsciResetSystemLib: Made the library only using SMC
    + ArmPlatformPkg/Bds: Reduce boot device entries
    + Various fixes for ShellPkg
    + OvmfPkg: disable stale fork of SecureBootConfigDxe
  - Drop upstreamed ovmf-use-generic-sb-config.patch

Files

/usr/share/doc/packages/ovmf
/usr/share/doc/packages/ovmf/README
/usr/share/ovmf
/usr/share/ovmf/EnrollDefaultKeys.efi
/usr/share/ovmf/Shell.efi
/usr/share/ovmf/gen-key-enrollment-iso.sh


Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Jul 9 18:17:49 2024