From owner-freebsd-hackers@freebsd.org Fri Nov 30 14:23:33 2018 Return-Path: Delivered-To: freebsd-hackers@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 6585F11458F7 for ; Fri, 30 Nov 2018 14:23:33 +0000 (UTC) (envelope-from freebsd-hackers@dino.sk) Received: from mailhost.netlabit.sk (mailhost.netlabit.sk [84.245.65.72]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 0A5E9846CE for ; Fri, 30 Nov 2018 14:23:31 +0000 (UTC) (envelope-from freebsd-hackers@dino.sk) Received: from zeta.dino.sk (fw3.dino.sk [84.245.95.254]) (AUTH: LOGIN milan) by mailhost.netlabit.sk with ESMTPA; Fri, 30 Nov 2018 15:18:20 +0100 id 00DB9424.5C0146AC.0000AE49 Date: Fri, 30 Nov 2018 15:18:20 +0100 From: Milan Obuch To: freebsd-hackers@freebsd.org Subject: EFI boot with multiple alternate boot/OS partitions - possible? Message-ID: <20181130151820.1a197589@zeta.dino.sk> X-Mailer: Claws Mail 3.17.1 (GTK+ 2.24.32; i386-portbld-freebsd10.4) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 0A5E9846CE X-Spamd-Result: default: False [-0.07 / 15.00]; ARC_NA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; NEURAL_HAM_MEDIUM(-0.90)[-0.902,0]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+mx]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; DMARC_NA(0.00)[dino.sk]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.65)[-0.650,0]; RCVD_TLS_LAST(0.00)[]; NEURAL_SPAM_SHORT(0.78)[0.783,0]; MX_GOOD(-0.01)[mail.dino.sk]; IP_SCORE(0.01)[country: SK(0.03)]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; SUBJECT_ENDS_QUESTION(1.00)[]; RCVD_COUNT_TWO(0.00)[2]; ASN(0.00)[asn:16160, ipnet:84.245.64.0/18, country:SK] X-Rspamd-Server: mx1.freebsd.org X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 30 Nov 2018 14:23:33 -0000 Hi, I am working on a project using relatively simple workstation, basically web browser with custom backend, running page with javascript communicating with said backend to display status of some processes (customer's technology aka real world) being supervised. Current prototype uses UP2 board with 32 GB eMMC, where EFI BIOS is used. So far so good, everything runs to project manager's satisfaction, just there is one problem to solve - UPS is not used in order to keep installation simpler and cost lower, so I need to find a way how to run everything from read-only mounted file systems, but occasional update could be requested. It is manageable when dealing with application/libraries, both from ports and custom programms, but if OS partition is to be upgraded, maybe for security reason or the like, power outage in wrong instant could render whole system unusable. In order to minimise risks with such an upgrade, I would like to employ following scheme: (partial partition layout from gpart show) 40 409600 1 efi (200M) 409640 3145728 2 freebsd-ufs (1.5G) 3555368 3145728 3 freebsd-ufs (1.5G) 6701096 8388608 4 freebsd-swap (4.0G) (other partition for application data, cache etc) with /etc/fstab corresponding part being # Device Mountpoint FStype Options Dump Pass# /dev/sdda0p2 / ufs ro 1 1 /dev/sdda0p3 /alt ufs ro 2 2 /dev/sdda0p4 none swap sw 0 0 When upgrade request is being handled, /alt filesystem is being remount with read-write access, receives whole OS installation, relevant config files in /etc directory are being copied into /alt/etc directory, resulting in usable alternate OS copy. This can be verified for accuracy etc. and system should be switched to use partition 3 for next boot, something like nextboot command with -k option makes, but whole partition, not just directory with kernel is switched... Then partitions' roles are swapped, as /etc/fstab file in now active secondary partition would be # Device Mountpoint FStype Options Dump Pass# /dev/sdda0p2 /alt ufs ro 2 2 /dev/sdda0p3 / ufs ro 1 1 /dev/sdda0p4 none swap sw 0 0 Any ideas/hints would be appreciated, I tried to look into efibootmgr and efivar man pages, but got no clear idea how they could be used for my purpose. I do not fully understand some details of EFI boot process, so if some good material for reading is available, let me know (I did some googling, but found no definitive answers yet). Or should I modify my partitions by inserting second efi, so the result would be like 40 409600 1 efi (200M) 409640 3145728 2 freebsd-ufs (1.5G) xxxxx68 409600 3 efi (200M) xxxxx68 3145728 4 freebsd-ufs (1.5G) xxxxx96 8388608 5 freebsd-swap (4.0G) and EFI BIOS will see those two efi partitions as two independent systems allowing me to switch them with some BootOrder vars? I would like to avoid having two efi partitions, 200 MB basically wasted space is not too much in today's devices, but as the whole eMMC is 32 GB in size, it is not negligible, it could be missed sometimes... Regards, Milan