When will the FreeBSD (u)EFI work?

Simon J. Gerraty sjg at juniper.net
Mon Mar 30 05:18:12 UTC 2020

Warner Losh <imp at bsdimp.com> wrote:
> True, but as we move from boot1.efi to loader.efi, the need will
> grow...  Even if we keep boot1.efi, loader.efi will be needed for
> interesting secure systems, so we can't cop-out like we have in the
> past.

Sigh, that would force me to have to add verification to boot1.efi ;-)

Personally I'm quite happy with installing loader.efi as bootx64.efi
to avoid that.

I treat it as a separately published component, independent of the
loaders used on non-uefi platforms.  So the fact that I have to build it
from head, matters little.

The loader should be largely independent of the rest of the system, and
was until lua came along.  Eg we can successfully verify and load a
stable/6 based system using loader built from stable/11.
For at least some platforms we cannot use lua, as it takes up headroom
we need for verifying modules. 

More information about the freebsd-current mailing list