From owner-freebsd-hackers@freebsd.org Thu Oct 26 02:58:12 2017 Return-Path: Delivered-To: freebsd-hackers@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 1A160E38C9F for ; Thu, 26 Oct 2017 02:58:12 +0000 (UTC) (envelope-from wlosh@bsdimp.com) Received: from mail-io0-x232.google.com (mail-io0-x232.google.com [IPv6:2607:f8b0:4001:c06::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id D06A467A56 for ; Thu, 26 Oct 2017 02:58:11 +0000 (UTC) (envelope-from wlosh@bsdimp.com) Received: by mail-io0-x232.google.com with SMTP id e89so3160561ioi.11 for ; Wed, 25 Oct 2017 19:58:11 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=bsdimp-com.20150623.gappssmtp.com; s=20150623; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc; bh=wa0ZBOu8RT7PEfVA+GqV76St9FtfslbFu329nq1okYI=; b=TjIwoK4LqsUPu0dtC9hss18afYbgcmWQU6mMvamqfbxF2Mlzk2K6yAjhphkBp7XyzR EK5m5B4i+4QLkmiSjy3UBR1XOJJPGXeCZ/U4EtgbkCj1sM+A9BhDyLAQCGg3phruKekQ JMDCwzhXvBsZpHf/lN+XmeT0ZkWKp8YIYQtzgF4e7TmqVorkxdT4pt7YdrykdNHbNsoC Y8XxM2b/I8LKX3BA7cDQM7wENsSCJvjFcvZO9h7aC/zvXkjv5jb8dd6fzEdM0Liunrsi TeTUW27av1jTCDP9WpNWeXZt6dPcC1Spd9F8XVUhG/l0TBz2JKKMw+SmCm7pTS1L06WB gEAQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to:cc; bh=wa0ZBOu8RT7PEfVA+GqV76St9FtfslbFu329nq1okYI=; b=DpBAnk640Av8mSrI1HfxH5oLqNUbHbRy/1wbZfCDNGPBtz2NxQgWK2srxLsHlKUiIG /APthBDgoZnKLrk7FteZWop0VjVgi0dQr3XxN2xBWwFmlVKHTxV3S0rwSLVY2VR0CuPK eQjFbANgKcelR5L0bA3hxBM6rPDANi+JgwzxQyxmY6Rg0aFCDNALgXHAjiRUqMNp+yc2 AX3ICGXTXE9wVUWFESx6HnQpQJz1Wg58twDqoKQ5Gs2NehIrDlC1pkWI48nExFbLX52M 9dZnyOVBXDGstDHviRRtl6szXcvuYJUYZqvUzIfiyZB9E4t+ttoXgrR50omockPv15QA BT4Q== X-Gm-Message-State: AMCzsaWbKuYJX+AbahhnOwCHWXTOF2y5pKoVTnn5gZyBm1C3dBuWxm5b SwKWZJkbdT4jP8y30OScJsbua6sAIqrCG3PXJ6V01A== X-Google-Smtp-Source: ABhQp+T98h7AhPkMXGOLgsQ3EPFMk2pSIaIDArQKACIuwPxAYr8WVv3QnzGKommh7A53cs3F/ts10lrlF8gsM5iIGNs= X-Received: by 10.107.27.7 with SMTP id b7mr16767338iob.136.1508986691127; Wed, 25 Oct 2017 19:58:11 -0700 (PDT) MIME-Version: 1.0 Sender: wlosh@bsdimp.com Received: by 10.79.57.22 with HTTP; Wed, 25 Oct 2017 19:58:10 -0700 (PDT) X-Originating-IP: [2603:300b:6:5100:903c:60f5:8b97:c431] In-Reply-To: References: From: Warner Losh Date: Wed, 25 Oct 2017 20:58:10 -0600 X-Google-Sender-Auth: SD_dFTP5MJXVYaU42pkguMLRMsg Message-ID: Subject: Re: New behaviors for loader.efi To: Eric McCorkle Cc: "freebsd-arch@freebsd.org" , "freebsd-hackers@freebsd.org" , Warner Losh Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.23 X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 26 Oct 2017 02:58:12 -0000 On Wed, Oct 25, 2017 at 7:46 PM, Eric McCorkle wrote: > Following the earlier discussion on the fate of loader.efi, and in light > of my GELI work, I've begun working on modifications to loader.efi to > allow it to be installed to the ESP, while maintaining > back-compatibility with the legacy system. > Cool. I have some concerns, as this doesn't follow the doc I posted a while ago. I've not yet worked through the boot1.efi removal in that document, however. > There's a couple of points that probably warrant discussion before I go > any farther. > > First, we'll need to figure out what to do with boot.conf, which > previously contained the arguments that would get passed to loader. > Personally, I think the logical place for this is /efi/boot/config or > /efi/boot.conf > I would vote neither. If it belongs on the ESP at all, it belongs in \efi\freebsd\boot.conf. We now own \efi\freebsd, so that's where all our boot files need to wind up in our install. But I'm not sure that we need it at all, since boot.conf is only for boot1/boot2 in the current system (though it does set serial by default, which might be helpful to preserve). It would be even better, though, to use the command line that's passed in as part of the UEFI:BootXXXX environment variable. Since we have to move it anyway, we should do things in the EFI way, which is to store all the nonvolatile info in UEFI environment variables (and in this case, the command line / aux info in the BootXXXX variable). We really need to stop polluting \efi\boot with anything, except on removable media. > Second, does loader.conf exist on the boot filesystem, or should it also > exist on the ESP? I'm inclined to think this should be left on the boot > filesystem, as there may be more than one, and it's potentially specific > to the kernel installed there. > I think it should be in /boot/loader.conf on /, not the ESP. We should only have \efi\freebsd\loader.efi in the ESP. > Last, loader has typically relied on the fact that it's installed > directly on the boot filesystem, so it can obtain a good initial > currdev/loaddev. If it's installed on the ESP, it potentially has to go > hunting for the boot device. > I'm not sure that it should look very hard, and it should only look as a last result. UEFI:BootCurrent lists the current boot variable. It points to the UEFI:BootXXXX that contains a LoadOption variable. This variable contains a series of DevicePaths. The first one is what the UEFI BIOS uses to load loader.efi (installed as ESP:\EFI\FREEBSD\LOADER.EFI). The second one in the list will point to the kernel to load. That way we shouldn't have to go looking at all. We assume that the root is the same partition we load the kernel comes from. We should only go looking if we fail to find the second path in the LoadOption. I'm stealing (back) code from my boot1 refactor for this, which first > looks at partitions on the same disk, then looks at all devices. The > actual test, I'm thinking, is to look for /boot/loader.conf, > /boot/kernel/kernel, and possibly other files. Of course, we also need > to retain the legacy behavior so that existing systems don't break. > No, we don't. boot1.efi already does this, and legacy systems will already have this installed. So we don't have to recreate this behavior if we don't want to since updated systems will need to follow the efibootmgr protocol. There's no way the loader.efi will fit on the old ESPs we created anyway... loader.efi needs to cope with being loaded this way, but it doesn't have to recreate boot1.efi's behavior. All we need to do is to find / when we're booting of removable media. This means we can use a super-simplified method to find it. If you want something more complicated, you must use the EFI boot manager protocol. I'm in the final stages, btw, at work of reviewing code we've written to implement a mostly Linux CLI compatable efibootmgr. > So I'm thinking the overall procedure looks like this: > > 1) Parse command-line args (this is to maintain back-compatibility) > UEFI:BootXXXX also provides a way to pass this in. > 2) Load /efi/boot.conf or /efi/boot/config if they exist, parse the args > inside as if they were extra args > > 4) If loaddev/currdev are set by command-line arguments, use them as-is > and stop > I don't want to do this from the command line. We follow the EFI boot manager protocol. There's no need to invent our own here, especially since the loader's devices aren't familiar to people. It adds extra complication for no benefit. > 5) Otherwise, try the legacy currdev/loaddev detection scheme (this will > fail if we're installed to the ESP) > We don't need to do this... > 6) If that fails, check the preferred devices > At most we need to check the same device we were booted from if the EFI variables aren't set. > 7) If that fails, check all devices > I really really want to never do this again. It causes more problems than it solves and is part of the boot1.efi hack we should run away from. None of our other systems do it, and boot1.efi did it only as a kludge because it didn't implement the EFI Boot Manager protocol. I think we should do it as I described above: find things directly from the BootXXXX variable, per the EFI Boot Manager Protocol, and then fallback to the first UFS filesystem with /boot/kernel/kernel on the same device we were loaded from. > 8) If that fails, continue without a currdev (which will drop us to the > loader prompt) > That's fine. > What do people think of this procedure? > I have some issues with it. Warner