1.\" Copyright (c) 1999 Daniel C. Sobral 2.\" All rights reserved. 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. 9.\" 2. Redistributions in binary form must reproduce the above copyright 10.\" notice, this list of conditions and the following disclaimer in the 11.\" documentation and/or other materials provided with the distribution. 12.\" 13.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 14.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 15.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 16.\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 17.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 18.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 19.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 20.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 21.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 22.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 23.\" SUCH DAMAGE. 24.\" 25.\" $FreeBSD$ 26.\" 27.Dd September 29, 2021 28.Dt LOADER_SIMP 8 29.Os 30.Sh NAME 31.Nm loader_simp 32.Nd kernel bootstrapping final stage 33.Sh DESCRIPTION 34The program called 35.Nm 36is the final stage of 37.Fx Ns 's 38kernel bootstrapping process. 39On IA32 (i386) architectures, it is a 40.Pa BTX 41client. 42It is linked statically to 43.Xr libsa 3 44and usually located in the directory 45.Pa /boot . 46.Pp 47It provides a scripting language that can be used to 48automate tasks, do pre-configuration or assist in recovery 49procedures. 50This scripting language is roughly divided in 51two main components. 52The smaller one is a set of commands 53designed for direct use by the casual user, called "builtin 54commands" for historical reasons. 55The main drive behind these commands is user-friendliness. 56.Pp 57During initialization, 58.Nm 59will probe for a console and set the 60.Va console 61variable, or set it to serial console 62.Pq Dq Li comconsole 63if the previous boot stage used that. 64If multiple consoles are selected, they will be listed separated by spaces. 65Then, devices are probed, 66.Va currdev 67and 68.Va loaddev 69are set, and 70.Va LINES 71is set to 24. 72After that, 73.Pa /boot/loader.rc 74is processed if available. 75These files are processed through the 76.Ic include 77command, which reads all of them into memory before processing them, 78making disk changes possible. 79.Pp 80At this point, if an 81.Ic autoboot 82has not been tried, and if 83.Va autoboot_delay 84is not set to 85.Dq Li NO 86(not case sensitive), then an 87.Ic autoboot 88will be tried. 89If the system gets past this point, 90.Va prompt 91will be set and 92.Nm 93will engage interactive mode. 94Please note that historically even when 95.Va autoboot_delay 96is set to 97.Dq Li 0 98user will be able to interrupt autoboot process by pressing some key 99on the console while kernel and modules are being loaded. 100In some 101cases such behaviour may be undesirable, to prevent it set 102.Va autoboot_delay 103to 104.Dq Li -1 , 105in this case 106.Nm 107will engage interactive mode only if 108.Ic autoboot 109has failed. 110.Sh BUILTIN COMMANDS 111In 112.Nm , 113builtin commands take parameters from the command line. 114Presently, 115the only way to call them from a script is by using 116.Pa evaluate 117on a string. 118In the case of an error, an error message will be displayed and 119the interpreter's state will be reset, emptying the stack and restoring 120interpreting mode. 121.Pp 122The builtin commands available are: 123.Pp 124.Bl -tag -width Ds -compact 125.It Ic autoboot Op Ar seconds Op Ar prompt 126Proceeds to bootstrap the system after a number of seconds, if not 127interrupted by the user. 128Displays a countdown prompt 129warning the user the system is about to be booted, 130unless interrupted by a key press. 131The kernel will be loaded first if necessary. 132Defaults to 10 seconds. 133.Pp 134.It Ic bcachestat 135Displays statistics about disk cache usage. 136For debugging only. 137.Pp 138.It Ic boot 139.It Ic boot Ar kernelname Op Cm ... 140.It Ic boot Fl flag Cm ... 141Immediately proceeds to bootstrap the system, loading the kernel 142if necessary. 143Any flags or arguments are passed to the kernel, but they 144must precede the kernel name, if a kernel name is provided. 145.Pp 146.It Ic echo Xo 147.Op Fl n 148.Op Aq message 149.Xc 150Displays text on the screen. 151A new line will be printed unless 152.Fl n 153is specified. 154.Pp 155.It Ic heap 156Displays memory usage statistics. 157For debugging purposes only. 158.Pp 159.It Ic help Op topic Op subtopic 160Shows help messages read from 161.Pa /boot/loader.help . 162The special topic 163.Em index 164will list the topics available. 165.Pp 166.It Ic include Ar file Op Ar 167Process script files. 168Each file, in turn, is completely read into memory, 169and then each of its lines is passed to the command line interpreter. 170If any error is returned by the interpreter, the include 171command aborts immediately, without reading any other files, and 172returns an error itself (see 173.Sx ERRORS ) . 174.Pp 175.It Ic load Xo 176.Op Fl t Ar type 177.Ar file Cm ... 178.Xc 179Loads a kernel, kernel loadable module (kld), disk image, 180or file of opaque contents tagged as being of the type 181.Ar type . 182Kernel and modules can be either in a.out or ELF format. 183Any arguments passed after the name of the file to be loaded 184will be passed as arguments to that file. 185Use the 186.Li md_image 187type to make the kernel create a file-backed 188.Xr md 4 189disk. 190This is useful for booting from a temporary rootfs. 191Currently, argument passing does not work for the kernel. 192.Pp 193.It Ic load_geli Xo 194.Op Fl n Ar keyno 195.Ar prov Ar file 196.Xc 197Loads a 198.Xr geli 8 199encryption keyfile for the given provider name. 200The key index can be specified via 201.Ar keyno 202or will default to zero. 203.Pp 204.It Ic ls Xo 205.Op Fl l 206.Op Ar path 207.Xc 208Displays a listing of files in the directory 209.Ar path , 210or the root directory if 211.Ar path 212is not specified. 213If 214.Fl l 215is specified, file sizes will be shown too. 216.Pp 217.It Ic lsdev Op Fl v 218Lists all of the devices from which it may be possible to load modules, 219as well as ZFS pools. 220If 221.Fl v 222is specified, more details are printed, including ZFS pool information 223in a format that resembles 224.Nm zpool Cm status 225output. 226.Pp 227.It Ic lsmod Op Fl v 228Displays loaded modules. 229If 230.Fl v 231is specified, more details are shown. 232.Pp 233.It Ic lszfs Ar filesystem 234A ZFS extended command that can be used to explore the ZFS filesystem 235hierarchy in a pool. 236Lists the immediate children of the 237.Ar filesystem . 238The filesystem hierarchy is rooted at a filesystem with the same name 239as the pool. 240.Pp 241.It Ic more Ar file Op Ar 242Display the files specified, with a pause at each 243.Va LINES 244displayed. 245.Pp 246.It Ic pnpscan Op Fl v 247Scans for Plug-and-Play devices. 248This is not functional at present. 249.Pp 250.It Ic read Xo 251.Op Fl t Ar seconds 252.Op Fl p Ar prompt 253.Op Va variable 254.Xc 255Reads a line of input from the terminal, storing it in 256.Va variable 257if specified. 258A timeout can be specified with 259.Fl t , 260though it will be canceled at the first key pressed. 261A prompt may also be displayed through the 262.Fl p 263flag. 264.Pp 265.It Ic reboot 266Immediately reboots the system. 267.Pp 268.It Ic set Ar variable 269.It Ic set Ar variable Ns = Ns Ar value 270Set loader's environment variables. 271.Pp 272.It Ic show Op Va variable 273Displays the specified variable's value, or all variables and their 274values if 275.Va variable 276is not specified. 277.Pp 278.It Ic unload 279Remove all modules from memory. 280.Pp 281.It Ic unset Va variable 282Removes 283.Va variable 284from the environment. 285.Pp 286.It Ic \&? 287Lists available commands. 288.El 289.Ss BUILTIN ENVIRONMENT VARIABLES 290Environment variables can be set and unset through the 291.Ic set 292and 293.Ic unset 294builtins, and can have their values interactively examined through the 295use of the 296.Ic show 297builtin. 298Their values can also be accessed as described in 299.Sx BUILTIN PARSER . 300.Pp 301Notice that these environment variables are not inherited by any shell 302after the system has been booted. 303.Pp 304A few variables are set automatically by 305.Nm . 306Others can affect the behavior of either 307.Nm 308or the kernel at boot. 309Some options may require a value, 310while others define behavior just by being set. 311Both types of builtin variables are described below. 312.Bl -tag -width bootfile 313.It Va autoboot_delay 314Number of seconds 315.Ic autoboot 316will wait before booting. 317Configuration options are described in 318.Xr loader.conf 5 . 319.It Va boot_askname 320Instructs the kernel to prompt the user for the name of the root device 321when the kernel is booted. 322.It Va boot_cdrom 323Instructs the kernel to try to mount the root file system from CD-ROM. 324.It Va boot_ddb 325Instructs the kernel to start in the DDB debugger, rather than 326proceeding to initialize when booted. 327.It Va boot_dfltroot 328Instructs the kernel to mount the statically compiled-in root file system. 329.It Va boot_gdb 330Selects gdb-remote mode for the kernel debugger by default. 331.It Va boot_multicons 332Enables multiple console support in the kernel early on boot. 333In a running system, console configuration can be manipulated 334by the 335.Xr conscontrol 8 336utility. 337.It Va boot_mute 338All kernel console output is suppressed when console is muted. 339In a running system, the state of console muting can be manipulated by the 340.Xr conscontrol 8 341utility. 342.It Va boot_pause 343During the device probe, pause after each line is printed. 344.It Va boot_serial 345Force the use of a serial console even when an internal console 346is present. 347.It Va boot_single 348Prevents the kernel from initiating a multi-user startup; instead, 349a single-user mode will be entered when the kernel has finished 350device probing. 351.It Va boot_verbose 352Setting this variable causes extra debugging information to be printed 353by the kernel during the boot phase. 354.It Va bootfile 355List of semicolon-separated search path for bootable kernels. 356The default is 357.Dq Li kernel . 358.It Va comconsole_speed 359Defines the speed of the serial console (i386 and amd64 only). 360If the previous boot stage indicated that a serial console is in use 361then this variable is initialized to the current speed of the console 362serial port. 363Otherwise it is set to 9600 unless this was overridden using the 364.Va BOOT_COMCONSOLE_SPEED 365variable when 366.Nm 367was compiled. 368Changes to the 369.Va comconsole_speed 370variable take effect immediately. 371.It Va comconsole_port 372Defines the base i/o port used to access console UART 373(i386 and amd64 only). 374If the variable is not set, its assumed value is 0x3F8, which 375corresponds to PC port COM1, unless overridden by 376.Va BOOT_COMCONSOLE_PORT 377variable during the compilation of 378.Nm . 379Setting the 380.Va comconsole_port 381variable automatically set 382.Va hw.uart.console 383environment variable to provide a hint to kernel for location of the console. 384Loader console is changed immediately after variable 385.Va comconsole_port 386is set. 387.It Va comconsole_pcidev 388Defines the location of a PCI device of the 'simple communication' 389class to be used as the serial console UART (i386 and amd64 only). 390The syntax of the variable is 391.Li 'bus:device:function[:bar]' , 392where all members must be numeric, with possible 393.Li 0x 394prefix to indicate a hexadecimal value. 395The 396.Va bar 397member is optional and assumed to be 0x10 if omitted. 398The bar must decode i/o space. 399Setting the variable 400.Va comconsole_pcidev 401automatically sets the variable 402.Va comconsole_port 403to the base of the selected bar, and hint 404.Va hw.uart.console . 405Loader console is changed immediately after variable 406.Va comconsole_pcidev 407is set. 408.It Va console 409Defines the current console or consoles. 410Multiple consoles may be specified. 411In that case, the first listed console will become the default console for 412userland output (e.g.\& from 413.Xr init 8 ) . 414.It Va currdev 415Selects the default device to loader the kernel from. 416The syntax is: 417.Dl Ic loader_device: 418or 419.Dl Ic zfs:dataset: 420Examples: 421.Dl Ic disk0p2: 422.Dl Ic zfs:zroot/ROOT/default: 423.It Va dumpdev 424Sets the device for kernel dumps. 425This can be used to ensure that a device is configured before the corresponding 426.Va dumpdev 427directive from 428.Xr rc.conf 5 429has been processed, allowing kernel panics that happen during the early stages 430of boot to be captured. 431.It Va init_chroot 432See 433.Xr init 8 . 434.It Va init_exec 435See 436.Xr init 8 . 437.It Va init_path 438Sets the list of binaries which the kernel will try to run as the initial 439process. 440The first matching binary is used. 441The default list is 442.Dq Li /sbin/init:/sbin/oinit:/sbin/init.bak:\:/rescue/init . 443.It Va init_script 444See 445.Xr init 8 . 446.It Va init_shell 447See 448.Xr init 8 . 449.It Va interpret 450Has the value 451.Dq Li OK 452if the Forth's current state is interpreting. 453.It Va LINES 454Define the number of lines on the screen, to be used by the pager. 455.It Va module_path 456Sets the list of directories which will be searched for modules 457named in a load command or implicitly required by a dependency. 458The default value for this variable is 459.Dq Li /boot/kernel;/boot/modules . 460.It Va num_ide_disks 461Sets the number of IDE disks as a workaround for some problems in 462finding the root disk at boot. 463This has been deprecated in favor of 464.Va root_disk_unit . 465.It Va prompt 466Value of 467.Nm Ns 's 468prompt. 469Defaults to 470.Dq Li "${interpret}" . 471If variable 472.Va prompt 473is unset, the default prompt is 474.Ql > . 475.It Va root_disk_unit 476If the code which detects the disk unit number for the root disk is 477confused, e.g.\& by a mix of SCSI and IDE disks, or IDE disks with 478gaps in the sequence (e.g.\& no primary slave), the unit number can 479be forced by setting this variable. 480.It Va rootdev 481By default the value of 482.Va currdev 483is used to set the root file system 484when the kernel is booted. 485This can be overridden by setting 486.Va rootdev 487explicitly. 488.El 489.Pp 490Other variables are used to override kernel tunable parameters. 491The following tunables are available: 492.Bl -tag -width Va 493.It Va efi.rt.disabled 494Disable UEFI runtime services in the kernel, if applicable. 495Runtime services are only available and used if the kernel is booted in a UEFI 496environment. 497.It Va hw.physmem 498Limit the amount of physical memory the system will use. 499By default the size is in bytes, but the 500.Cm k , K , m , M , g 501and 502.Cm G 503suffixes 504are also accepted and indicate kilobytes, megabytes and gigabytes 505respectively. 506An invalid suffix will result in the variable being ignored by the 507kernel. 508.It Va hw.pci.host_start_mem , hw.acpi.host_start_mem 509When not otherwise constrained, this limits the memory start 510address. 511The default is 0x80000000 and should be set to at least size of the 512memory and not conflict with other resources. 513Typically, only systems without PCI bridges need to set this variable 514since PCI bridges typically constrain the memory starting address 515(and the variable is only used when bridges do not constrain this 516address). 517.It Va hw.pci.enable_io_modes 518Enable PCI resources which are left off by some BIOSes or are not 519enabled correctly by the device driver. 520Tunable value set to ON (1) by default, but this may cause problems 521with some peripherals. 522.It Va kern.maxusers 523Set the size of a number of statically allocated system tables; see 524.Xr tuning 7 525for a description of how to select an appropriate value for this 526tunable. 527When set, this tunable replaces the value declared in the kernel 528compile-time configuration file. 529.It Va kern.ipc.nmbclusters 530Set the number of mbuf clusters to be allocated. 531The value cannot be set below the default 532determined when the kernel was compiled. 533.It Va kern.ipc.nsfbufs 534Set the number of 535.Xr sendfile 2 536buffers to be allocated. 537Overrides 538.Dv NSFBUFS . 539Not all architectures use such buffers; see 540.Xr sendfile 2 541for details. 542.It Va kern.maxswzone 543Limits the amount of KVM to be used to hold swap 544metadata, which directly governs the 545maximum amount of swap the system can support, 546at the rate of approximately 200 MB of swap space 547per 1 MB of metadata. 548This value is specified in bytes of KVA space. 549If no value is provided, the system allocates 550enough memory to handle an amount of swap 551that corresponds to eight times the amount of 552physical memory present in the system. 553.Pp 554Note that swap metadata can be fragmented, 555which means that the system can run out of 556space before it reaches the theoretical limit. 557Therefore, care should be taken to not configure 558more swap than approximately half of the 559theoretical maximum. 560.Pp 561Running out of space for swap metadata can leave 562the system in an unrecoverable state. 563Therefore, you should only change 564this parameter if you need to greatly extend the 565KVM reservation for other resources such as the 566buffer cache or 567.Va kern.ipc.nmbclusters . 568Modifies kernel option 569.Dv VM_SWZONE_SIZE_MAX . 570.It Va kern.maxbcache 571Limits the amount of KVM reserved for use by the 572buffer cache, specified in bytes. 573The default maximum is 200MB on i386, 574and 400MB on amd64. 575This parameter is used to 576prevent the buffer cache from eating too much 577KVM in large-memory machine configurations. 578Only mess around with this parameter if you need to 579greatly extend the KVM reservation for other resources 580such as the swap zone or 581.Va kern.ipc.nmbclusters . 582Note that 583the NBUF parameter will override this limit. 584Modifies 585.Dv VM_BCACHE_SIZE_MAX . 586.It Va kern.msgbufsize 587Sets the size of the kernel message buffer. 588The default limit of 96KB is usually sufficient unless 589large amounts of trace data need to be collected 590between opportunities to examine the buffer or 591dump it to a file. 592Overrides kernel option 593.Dv MSGBUF_SIZE . 594.It Va machdep.disable_mtrrs 595Disable the use of i686 MTRRs (x86 only). 596.It Va net.inet.tcp.tcbhashsize 597Overrides the compile-time set value of 598.Dv TCBHASHSIZE 599or the preset default of 512. 600Must be a power of 2. 601.It Va twiddle_divisor 602Throttles the output of the 603.Sq twiddle 604I/O progress indicator displayed while loading the kernel and modules. 605This is useful on slow serial consoles where the time spent waiting for 606these characters to be written can add up to many seconds. 607The default is 16; a value of 32 spins half as fast, 608while a value of 8 spins twice as fast. 609.It Va vm.kmem_size 610Sets the size of kernel memory (bytes). 611This overrides the value determined when the kernel was compiled. 612Modifies 613.Dv VM_KMEM_SIZE . 614.It Va vm.kmem_size_min 615.It Va vm.kmem_size_max 616Sets the minimum and maximum (respectively) amount of kernel memory 617that will be automatically allocated by the kernel. 618These override the values determined when the kernel was compiled. 619Modifies 620.Dv VM_KMEM_SIZE_MIN 621and 622.Dv VM_KMEM_SIZE_MAX . 623.El 624.Ss ZFS FEATURES 625.Nm 626supports the following format for specifying ZFS filesystems which 627can be used wherever 628.Xr loader 8 629refers to a device specification: 630.Pp 631.Ar zfs:pool/filesystem: 632.Pp 633where 634.Pa pool/filesystem 635is a ZFS filesystem name as described in 636.Xr zfs 8 . 637.Pp 638If 639.Pa /etc/fstab 640does not have an entry for the root filesystem and 641.Va vfs.root.mountfrom 642is not set, but 643.Va currdev 644refers to a ZFS filesystem, then 645.Nm 646will instruct kernel to use that filesystem as the root filesystem. 647.Sh SECURITY 648Access to the 649.Nm 650command line provides several ways of compromising system security, 651including, but not limited to: 652.Pp 653.Bl -bullet 654.It 655Booting from removable storage. 656.Pp 657One can prevent unauthorized access 658to the 659.Nm 660command line by booting unconditionally in 661.Pa loader.rc . 662In order for this to be effective, one should also configure the firmware 663(BIOS or UEFI) to prevent booting from unauthorized devices. 664.Sh FILES 665.Bl -tag -width /boot/loader_simp -compact 666.It Pa /boot/loader_simp 667.Nm 668itself. 669.It Pa /boot/loader.rc 670The script run by 671.Nm 672on startup. 673.Sh EXAMPLES 674Boot in single user mode: 675.Pp 676.Dl boot -s 677.Pp 678Load the kernel, a splash screen, and then autoboot in five seconds. 679Notice that a kernel must be loaded before any other 680.Ic load 681command is attempted. 682.Bd -literal -offset indent 683load kernel 684load splash_bmp 685load -t splash_image_data /boot/chuckrulez.bmp 686autoboot 5 687.Ed 688.Pp 689Set the disk unit of the root device to 2, and then boot. 690This would be needed in a system with two IDE disks, 691with the second IDE disk hardwired to ada2 instead of ada1. 692.Bd -literal -offset indent 693set root_disk_unit=2 694boot /boot/kernel/kernel 695.Ed 696.Pp 697Set the default device used for loading a kernel from a ZFS filesystem: 698.Bd -literal -offset indent 699set currdev=zfs:tank/ROOT/knowngood: 700.Ed 701.Pp 702.Sh ERRORS 703The following values are thrown by 704.Nm : 705.Bl -tag -width XXXXX -offset indent 706.It 100 707Any type of error in the processing of a builtin. 708.It -1 709.Ic Abort 710executed. 711.It -2 712.Ic Abort" 713executed. 714.It -56 715.Ic Quit 716executed. 717.It -256 718Out of interpreting text. 719.It -257 720Need more text to succeed -- will finish on next run. 721.It -258 722.Ic Bye 723executed. 724.It -259 725Unspecified error. 726.El 727.Sh SEE ALSO 728.Xr libsa 3 , 729.Xr loader.conf 5 , 730.Xr tuning 7 , 731.Xr boot 8 , 732.Xr btxld 8 733.Sh HISTORY 734The 735.Nm 736first appeared in 737.Fx 3.1 . 738.Sh AUTHORS 739.An -nosplit 740The 741.Nm 742was written by 743.An Michael Smith Aq msmith@FreeBSD.org . 744
