1#!/bin/sh 2 3# $FreeBSD$ 4 5# 6# Installs/updates the necessary boot blocks for the desired boot environment 7# 8# Lightly tested.. Intended to be installed, but until it matures, it will just 9# be a boot tool for regression testing. 10 11# insert code here to guess what you have -- yikes! 12 13# Minimum size of FAT filesystems, in KB. 14fat32min=33292 15fat16min=2100 16 17die() { 18 echo $* 19 exit 1 20} 21 22doit() { 23 echo $* 24 eval $* 25} 26 27find-part() { 28 dev=$1 29 part=$2 30 31 gpart show $dev | tail +2 | awk '$4 == "'$part'" { print $3; }' 32} 33 34get_uefi_bootname() { 35 36 case ${TARGET:-$(uname -m)} in 37 amd64) echo bootx64 ;; 38 arm64) echo bootaa64 ;; 39 i386) echo bootia32 ;; 40 arm) echo bootarm ;; 41 *) die "machine type $(uname -m) doesn't support UEFI" ;; 42 esac 43} 44 45make_esp_file() { 46 local file sizekb loader device mntpt fatbits efibootname 47 48 file=$1 49 sizekb=$2 50 loader=$3 51 52 if [ "$sizekb" -ge "$fat32min" ]; then 53 fatbits=32 54 elif [ "$sizekb" -ge "$fat16min" ]; then 55 fatbits=16 56 else 57 fatbits=12 58 fi 59 60 dd if=/dev/zero of="${file}" bs=1k count="${sizekb}" 61 device=$(mdconfig -a -t vnode -f "${file}") 62 newfs_msdos -F "${fatbits}" -c 1 -L EFISYS "/dev/${device}" > /dev/null 2>&1 63 mntpt=$(mktemp -d /tmp/stand-test.XXXXXX) 64 mount -t msdosfs "/dev/${device}" "${mntpt}" 65 mkdir -p "${mntpt}/EFI/BOOT" 66 efibootname=$(get_uefi_bootname) 67 cp "${loader}" "${mntpt}/EFI/BOOT/${efibootname}.efi" 68 umount "${mntpt}" 69 rmdir "${mntpt}" 70 mdconfig -d -u "${device}" 71} 72 73make_esp_device() { 74 local dev file mntpt fstype efibootname kbfree loadersize efibootfile 75 local isboot1 existingbootentryloaderfile bootorder bootentry 76 77 # ESP device node 78 dev=$1 79 file=$2 80 81 mntpt=$(mktemp -d /tmp/stand-test.XXXXXX) 82 83 # See if we're using an existing (formatted) ESP 84 fstype=$(fstyp "${dev}") 85 86 if [ "${fstype}" != "msdosfs" ]; then 87 newfs_msdos -F 32 -c 1 -L EFISYS "${dev}" > /dev/null 2>&1 88 fi 89 90 mount -t msdosfs "${dev}" "${mntpt}" 91 if [ $? -ne 0 ]; then 92 die "Failed to mount ${dev} as an msdosfs filesystem" 93 fi 94 95 echo "Mounted ESP ${dev} on ${mntpt}" 96 97 efibootname=$(get_uefi_bootname) 98 kbfree=$(df -k "${mntpt}" | tail -1 | cut -w -f 4) 99 loadersize=$(stat -f %z "${file}") 100 loadersize=$((loadersize / 1024)) 101 102 # Check if /EFI/BOOT/BOOTxx.EFI is the FreeBSD boot1.efi 103 # If it is, remove it to avoid leaving stale files around 104 efibootfile="${mntpt}/EFI/BOOT/${efibootname}.efi" 105 if [ -f "${efibootfile}" ]; then 106 isboot1=$(strings "${efibootfile}" | grep "FreeBSD EFI boot block") 107 108 if [ -n "${isboot1}" ] && [ "$kbfree" -lt "${loadersize}" ]; then 109 echo "Only ${kbfree}KB space remaining: removing old FreeBSD boot1.efi file /EFI/BOOT/${efibootname}.efi" 110 rm "${efibootfile}" 111 rmdir "${mntpt}/EFI/BOOT" 112 else 113 echo "${kbfree}KB space remaining on ESP: renaming old boot1.efi file /EFI/BOOT/${efibootname}.efi /EFI/BOOT/${efibootname}-old.efi" 114 mv "${efibootfile}" "${mntpt}/EFI/BOOT/${efibootname}-old.efi" 115 fi 116 fi 117 118 if [ ! -f "${mntpt}/EFI/freebsd/loader.efi" ] && [ "$kbfree" -lt "$loadersize" ]; then 119 umount "${mntpt}" 120 rmdir "${mntpt}" 121 echo "Failed to update the EFI System Partition ${dev}" 122 echo "Insufficient space remaining for ${file}" 123 echo "Run e.g \"mount -t msdosfs ${dev} /mnt\" to inspect it for files that can be removed." 124 die 125 fi 126 127 mkdir -p "${mntpt}/EFI/freebsd" 128 129 # Keep a copy of the existing loader.efi in case there's a problem with the new one 130 if [ -f "${mntpt}/EFI/freebsd/loader.efi" ] && [ "$kbfree" -gt "$((loadersize * 2))" ]; then 131 cp "${mntpt}/EFI/freebsd/loader.efi" "${mntpt}/EFI/freebsd/loader-old.efi" 132 fi 133 134 echo "Copying loader to /EFI/freebsd on ESP" 135 cp "${file}" "${mntpt}/EFI/freebsd/loader.efi" 136 137 if [ -n "${updatesystem}" ]; then 138 existingbootentryloaderfile=$(efibootmgr -v | grep "${mntpt}//EFI/freebsd/loader.efi") 139 140 if [ -z "$existingbootentryloaderfile" ]; then 141 # Try again without the double forward-slash in the path 142 existingbootentryloaderfile=$(efibootmgr -v | grep "${mntpt}/EFI/freebsd/loader.efi") 143 fi 144 145 if [ -z "$existingbootentryloaderfile" ]; then 146 echo "Creating UEFI boot entry for FreeBSD" 147 efibootmgr --create --label FreeBSD --loader "${mntpt}/EFI/freebsd/loader.efi" > /dev/null 148 if [ $? -ne 0 ]; then 149 die "Failed to create new boot entry" 150 fi 151 152 # When creating new entries, efibootmgr doesn't mark them active, so we need to 153 # do so. It doesn't make it easy to find which entry it just added, so rely on 154 # the fact that it places the new entry first in BootOrder. 155 bootorder=$(efivar --name 8be4df61-93ca-11d2-aa0d-00e098032b8c-BootOrder --print --no-name --hex | head -1) 156 bootentry=$(echo "${bootorder}" | cut -w -f 3)$(echo "${bootorder}" | cut -w -f 2) 157 echo "Marking UEFI boot entry ${bootentry} active" 158 efibootmgr --activate "${bootentry}" > /dev/null 159 else 160 echo "Existing UEFI FreeBSD boot entry found: not creating a new one" 161 fi 162 else 163 # Configure for booting from removable media 164 if [ ! -d "${mntpt}/EFI/BOOT" ]; then 165 mkdir -p "${mntpt}/EFI/BOOT" 166 fi 167 cp "${file}" "${mntpt}/EFI/BOOT/${efibootname}.efi" 168 fi 169 170 umount "${mntpt}" 171 rmdir "${mntpt}" 172 echo "Finished updating ESP" 173} 174 175make_esp() { 176 local file loaderfile 177 178 file=$1 179 loaderfile=$2 180 181 if [ -f "$file" ]; then 182 make_esp_file ${file} ${fat32min} ${loaderfile} 183 else 184 make_esp_device ${file} ${loaderfile} 185 fi 186} 187 188make_esp_mbr() { 189 dev=$1 190 dst=$2 191 192 s=$(find-part $dev "!239") 193 if [ -z "$s" ] ; then 194 s=$(find-part $dev "efi") 195 if [ -z "$s" ] ; then 196 die "No ESP slice found" 197 fi 198 fi 199 make_esp /dev/${dev}s${s} ${dst}/boot/loader.efi 200} 201 202make_esp_gpt() { 203 dev=$1 204 dst=$2 205 206 idx=$(find-part $dev "efi") 207 if [ -z "$idx" ] ; then 208 die "No ESP partition found" 209 fi 210 make_esp /dev/${dev}p${idx} ${dst}/boot/loader.efi 211} 212 213boot_nogeli_gpt_ufs_legacy() { 214 dev=$1 215 dst=$2 216 217 idx=$(find-part $dev "freebsd-boot") 218 if [ -z "$idx" ] ; then 219 die "No freebsd-boot partition found" 220 fi 221 doit gpart bootcode -b ${gpt0} -p ${gpt2} -i $idx $dev 222} 223 224boot_nogeli_gpt_ufs_uefi() { 225 make_esp_gpt $1 $2 226} 227 228boot_nogeli_gpt_ufs_both() { 229 boot_nogeli_gpt_ufs_legacy $1 $2 $3 230 boot_nogeli_gpt_ufs_uefi $1 $2 $3 231} 232 233boot_nogeli_gpt_zfs_legacy() { 234 dev=$1 235 dst=$2 236 237 idx=$(find-part $dev "freebsd-boot") 238 if [ -z "$idx" ] ; then 239 die "No freebsd-boot partition found" 240 fi 241 doit gpart bootcode -b ${gpt0} -p ${gptzfs2} -i $idx $dev 242} 243 244boot_nogeli_gpt_zfs_uefi() { 245 make_esp_gpt $1 $2 246} 247 248boot_nogeli_gpt_zfs_both() { 249 boot_nogeli_gpt_zfs_legacy $1 $2 $3 250 boot_nogeli_gpt_zfs_uefi $1 $2 $3 251} 252 253boot_nogeli_mbr_ufs_legacy() { 254 dev=$1 255 dst=$2 256 257 doit gpart bootcode -b ${mbr0} ${dev} 258 s=$(find-part $dev "freebsd") 259 if [ -z "$s" ] ; then 260 die "No freebsd slice found" 261 fi 262 doit gpart bootcode -p ${mbr2} ${dev}s${s} 263} 264 265boot_nogeli_mbr_ufs_uefi() { 266 make_esp_mbr $1 $2 267} 268 269boot_nogeli_mbr_ufs_both() { 270 boot_nogeli_mbr_ufs_legacy $1 $2 $3 271 boot_nogeli_mbr_ufs_uefi $1 $2 $3 272} 273 274boot_nogeli_mbr_zfs_legacy() { 275 dev=$1 276 dst=$2 277 278 # search to find the BSD slice 279 s=$(find-part $dev "freebsd") 280 if [ -z "$s" ] ; then 281 die "No BSD slice found" 282 fi 283 idx=$(find-part ${dev}s${s} "freebsd-zfs") 284 if [ -z "$idx" ] ; then 285 die "No freebsd-zfs slice found" 286 fi 287 # search to find the freebsd-zfs partition within the slice 288 # Or just assume it is 'a' because it has to be since it fails otherwise 289 doit gpart bootcode -b ${dst}/boot/mbr ${dev} 290 dd if=${dst}/boot/zfsboot of=/tmp/zfsboot1 count=1 291 doit gpart bootcode -b /tmp/zfsboot1 ${dev}s${s} # Put boot1 into the start of part 292 sysctl kern.geom.debugflags=0x10 # Put boot2 into ZFS boot slot 293 doit dd if=${dst}/boot/zfsboot of=/dev/${dev}s${s}a skip=1 seek=1024 294 sysctl kern.geom.debugflags=0x0 295} 296 297boot_nogeli_mbr_zfs_uefi() { 298 make_esp_mbr $1 $2 299} 300 301boot_nogeli_mbr_zfs_both() { 302 boot_nogeli_mbr_zfs_legacy $1 $2 $3 303 boot_nogeli_mbr_zfs_uefi $1 $2 $3 304} 305 306boot_geli_gpt_ufs_legacy() { 307 boot_nogeli_gpt_ufs_legacy $1 $2 $3 308} 309 310boot_geli_gpt_ufs_uefi() { 311 boot_nogeli_gpt_ufs_uefi $1 $2 $3 312} 313 314boot_geli_gpt_ufs_both() { 315 boot_nogeli_gpt_ufs_both $1 $2 $3 316} 317 318boot_geli_gpt_zfs_legacy() { 319 boot_nogeli_gpt_zfs_legacy $1 $2 $3 320} 321 322boot_geli_gpt_zfs_uefi() { 323 boot_nogeli_gpt_zfs_uefi $1 $2 $3 324} 325 326boot_geli_gpt_zfs_both() { 327 boot_nogeli_gpt_zfs_both $1 $2 $3 328} 329 330# GELI+MBR is not a valid configuration 331boot_geli_mbr_ufs_legacy() { 332 exit 1 333} 334 335boot_geli_mbr_ufs_uefi() { 336 exit 1 337} 338 339boot_geli_mbr_ufs_both() { 340 exit 1 341} 342 343boot_geli_mbr_zfs_legacy() { 344 exit 1 345} 346 347boot_geli_mbr_zfs_uefi() { 348 exit 1 349} 350 351boot_geli_mbr_zfs_both() { 352 exit 1 353} 354 355boot_nogeli_vtoc8_ufs_ofw() { 356 dev=$1 357 dst=$2 358 359 # For non-native builds, ensure that geom_part(4) supports VTOC8. 360 kldload geom_part_vtoc8.ko 361 doit gpart bootcode -p ${vtoc8} ${dev} 362} 363 364usage() { 365 printf 'Usage: %s -b bios [-d destdir] -f fs [-g geli] [-h] [-o optargs] -s scheme <bootdev>\n' "$0" 366 printf 'Options:\n' 367 printf ' bootdev device to install the boot code on\n' 368 printf ' -b bios bios type: legacy, uefi or both\n' 369 printf ' -d destdir destination filesystem root\n' 370 printf ' -f fs filesystem type: ufs or zfs\n' 371 printf ' -g geli yes or no\n' 372 printf ' -h this help/usage text\n' 373 printf ' -u Run commands such as efibootmgr to update the\n' 374 printf ' currently running system\n' 375 printf ' -o optargs optional arguments\n' 376 printf ' -s scheme mbr or gpt\n' 377 exit 0 378} 379 380srcroot=/ 381 382# Note: we really don't support geli boot in this script yet. 383geli=nogeli 384 385while getopts "b:d:f:g:ho:s:u" opt; do 386 case "$opt" in 387 b) 388 bios=${OPTARG} 389 ;; 390 d) 391 srcroot=${OPTARG} 392 ;; 393 f) 394 fs=${OPTARG} 395 ;; 396 g) 397 case ${OPTARG} in 398 [Yy][Ee][Ss]|geli) geli=geli ;; 399 *) geli=nogeli ;; 400 esac 401 ;; 402 u) 403 updatesystem=1 404 ;; 405 o) 406 opts=${OPTARG} 407 ;; 408 s) 409 scheme=${OPTARG} 410 ;; 411 412 ?|h) 413 usage 414 ;; 415 esac 416done 417 418if [ -n "${scheme}" ] && [ -n "${fs}" ] && [ -n "${bios}" ]; then 419 shift $((OPTIND-1)) 420 dev=$1 421fi 422 423# For gpt, we need to install pmbr as the primary boot loader 424# it knows about 425gpt0=${srcroot}/boot/pmbr 426gpt2=${srcroot}/boot/gptboot 427gptzfs2=${srcroot}/boot/gptzfsboot 428 429# For MBR, we have lots of choices, but select mbr, boot0 has issues with UEFI 430mbr0=${srcroot}/boot/mbr 431mbr2=${srcroot}/boot/boot 432 433# VTOC8 434vtoc8=${srcroot}/boot/boot1 435 436# sanity check here 437 438# Check if we've been given arguments. If not, this script is probably being 439# sourced, so we shouldn't run anything. 440if [ -n "${dev}" ]; then 441 eval boot_${geli}_${scheme}_${fs}_${bios} $dev $srcroot $opts || echo "Unsupported boot env: ${geli}-${scheme}-${fs}-${bios}" 442fi 443