Date: Fri, 27 Jan 2017 12:37:19 -0500 From: Shawn Webb <shawn.webb@hardenedbsd.org> To: Allan Jude <allanjude@freebsd.org> Cc: Warner Losh <imp@bsdimp.com>, Toomas Soome <tsoome@me.com>, "Ngie Cooper (yaneurabeya)" <yaneurabeya@gmail.com>, FreeBSD Current <current@freebsd.org> Subject: Re: gptzfsboot grew a lot after skein support was added; need knob to control bloat Message-ID: <20170127173719.atrbjuj7mpwmf3o3@mutt-hardenedbsd> In-Reply-To: <94f227b6-1f94-e54a-825a-dd9554c3bea3@freebsd.org> References: <A33154F2-70E1-4047-8496-7D4D85CFF292@gmail.com> <EF719374-BF9D-44EF-9F45-53B2B506047C@me.com> <CANCZdfrzOr3YdbAKRrwUXsFDhdQ3hErf1vbYSG7MdpV_m%2B=YRQ@mail.gmail.com> <444df1a4-1f27-49a8-6fa6-81f5853e6d80@freebsd.org> <20170127173338.wv6dul7zhxaaw4f4@mutt-hardenedbsd> <94f227b6-1f94-e54a-825a-dd9554c3bea3@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--kam6yvtrhj75rx5j Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Jan 27, 2017 at 12:35:21PM -0500, Allan Jude wrote: > On 2017-01-27 12:33, Shawn Webb wrote: > > On Fri, Jan 27, 2017 at 12:30:17PM -0500, Allan Jude wrote: > >> On 2017-01-27 12:05, Warner Losh wrote: > >>> On Fri, Jan 27, 2017 at 12:34 AM, Toomas Soome <tsoome@me.com> wrote: > >>>> > >>>>> On 27. jaan 2017, at 1:40, Ngie Cooper (yaneurabeya) <yaneurabeya@g= mail.com> wrote: > >>>>> > >>>>> Hi, > >>>>> I tried upgrading one of my workstations and unfortunately th= e freebsd-boot partition is too small (I follow manpage directions, exactly= , and those seem to be too small as of 10.3-RELEASE timeframe), and I don??= ?t have enough space or ability to resize the partition and make it bigger.= So, I???m in need of a build knob to control the bloat, and/or having an a= lternative boot loader without geli/skein/crypto support compiled in. Would= you be opposed to the work? > >>>>> Thanks, > >>>>> -Ngie > >>>> > >>>> > >>>> I do agree that since the geli knob is already there, it may do. Of = course we also can think of additional knobs, but there is an issue - it wo= nt help just to exclude some files, the additional features also do sit in = the code, so the replacement stubs will be needed, also testing them all ov= er will take some time. And the preprocessor spaghetti really is nasty thin= g to deal with;) > >>>> > >>>> And then there is another issue (partly why I did the feature suppor= t in first place) - as the kernel does not block user from enabling the fea= tures, the user can end up facing non-bootable setup which is also not good= , as user is using perfectly legal options, and still the whole thing is ju= st rendered unusable??? > >>> > >>> I'm curious why you can't find the space for a bigger partition? > >>> Almost all drives these days are partitioned with a little wasted > >>> space, and that wasted space should be more than enough to cover us > >>> here. Also, most drives have a swap partition that can be shrunk a > >>> trivial amount to get space for this... > >>> > >>> Warner > >>> > >> > >> I need to do some testing to make a recipe that works for it, but the > >> other option is to use the ZFS bootcode area. > >> > >> ZFS it self, reserves something like 3.5 mb of space in the ZFS > >> partition, for boot code. This is how we boot ZFS on MBR. > >> > >> It should be possible to use this on GPT as well, we just don't. > >=20 > > In the future, maybe it'd be a good idea for the installer to leave > > more space (a few MB, perhaps?) between the freebsd-boot and > > freebsd-swap partitions? At least, for ZFS installs. > >=20 > > Thanks, > >=20 >=20 > The PMBR code has a limitation for 536kb, and it all has to fit under > the 640k barrier, so the current 512kb size is plenty. The issue is some > people are upgrading from systems that were isntalled long ago, when > 64kb or less was the default. Gotcha. Thanks for the explanation. --=20 Shawn Webb Cofounder and Security Engineer HardenedBSD GPG Key ID: 0x6A84658F52456EEE GPG Key Fingerprint: 2ABA B6BD EF6A F486 BE89 3D9E 6A84 658F 5245 6EEE --kam6yvtrhj75rx5j Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEKrq2ve9q9Ia+iT2eaoRlj1JFbu4FAliLhU4ACgkQaoRlj1JF bu7C5A//X9awaexjUsyO4sG9BAhgy+6BdlKZMGx4Hg5AEI71Sh6oRI5C96eMriOa vcZKzktTGH8AW/3hl0MMP2XIQPrfGhpegYjPQe0YXAnrdePiDrNQPmJeYW1mB7J4 FcgrSxAxBdrQ1FLZKflZUQkKeXC5ByIStWSPtu7CxZGc36qYPDIgMZHcW9FEboXp ErFTYfgnNRBr5k2PaR1bymN32sg8Q5vp2+PJ7KkOFIujfOSO+QhyDeoBIEQRAZ5w nF+a5A8y8T5HcYWRL3Rivdhwmw1wMfIIl6gLFeHa/rrELy0i5QHlgCkQumYq/R5k RSSHfMORHZ5oktZVfOG17bZ3f6OEMuBVXHsEo/2qQcTsMGGysT16qE3wVM1dEh27 YKaNtdPahqJeMkgooQBXEv6YyarA/azVfvmIvRtADxi/qJ0AvZ621M0HZQHh1VtB 63lLQnFk9E5k/AoSx88o5XOvOC7galkxmEoLC18+glKatdS0LPB4AbkzFgNoUWdO j6KV6P8W5fPJI7YWYYjWWB+U/9gYTyUGDCmOauiAhd6QlASybgdc1NkFMia+Z3/h hO93MlPeToFMNqhN8HHRAQ8Jha8y5m6VfhtC7uLvs5Z9HmCvJhxyGMOABD5YpSX7 AS3N8otHDw/i+CjR5WSrmRb0j5VqjBl6Wt7zRN2ug8JBl9SSJh0= =rCrY -----END PGP SIGNATURE----- --kam6yvtrhj75rx5j--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20170127173719.atrbjuj7mpwmf3o3>