View previous topic :: View next topic |
Author |
Message |
eccerr0r Watchman
Joined: 01 Jul 2004 Posts: 9690 Location: almost Mile High in the USA
|
Posted: Sat Aug 08, 2020 7:24 am Post subject: "Reinstalling" MBR -> EFI boot |
|
|
Well, for an experienced user this isn't that big a deal but I wonder if it's worth the effort to switch over from MBR boot to EFI boot if your motherboard supports both?
Anyone do it for a specific reason? Pitfalls?
What I'm thinking is all I need to do is just build an EFI kernel with custom command line as needed, embed initramfs if needed, enable EFI in BIOS, and install it somewhere in the boot partition, which you just relabel as EFI system partition. Should boot right up, though I do wonder what EFI will do with my current MD-RAID1 boot partitions for MBR, I suspect I'll have to also convert from EXT2 to FAT as well.
Hmm. Too much risk for accidentally causing an unbootable system for limited or no value...? _________________ Intel Core i7 2700K/Radeon R7 250/24GB DDR3/256GB SSD
What am I supposed watching? |
|
Back to top |
|
|
pietinger Moderator
Joined: 17 Oct 2006 Posts: 4236 Location: Bavaria
|
Posted: Sat Aug 08, 2020 8:07 am Post subject: Re: "Reinstalling" MBR -> EFI boot |
|
|
eccerr0r wrote: | [...] but I wonder if it's worth the effort to switch over from MBR boot to EFI boot if your motherboard supports both? |
No, its not worth. The only reason to switch would be if you want to have SecureBoot.
eccerr0r wrote: | Anyone do it for a specific reason? |
I do it for every new installation because it is the future (and I want to have SecureBoot). |
|
Back to top |
|
|
NeddySeagoon Administrator
Joined: 05 Jul 2003 Posts: 54300 Location: 56N 3W
|
Posted: Sat Aug 08, 2020 8:14 am Post subject: |
|
|
eccerr0r,
The only reason for doing the switch is because you need to boot from a HDD bigger than 2TiB.
Then you need a GPT partition table.
Even then you can BIOS boot mostly but its getting harder.
You cannot use EFI with a MSDOS partition table. _________________ Regards,
NeddySeagoon
Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail. |
|
Back to top |
|
|
eccerr0r Watchman
Joined: 01 Jul 2004 Posts: 9690 Location: almost Mile High in the USA
|
Posted: Sat Aug 08, 2020 2:43 pm Post subject: |
|
|
Actually it depends on the EFI firmware. However, most EFI firmware that I've run across will indeed allow a ESP on MBR-partitioned disks along with the usual GPT partitioned disks (in fact, some work on El-Torito "disks" too!).
So without using canonical/redhat's keys, it's now possible to do secure boot on any EFI machine? I haven't looked into this in a long time, was annoyed at the fact you can't create your own boot image back then because mere mortals can't sign their own boot images and require the use of "third party" software if one wants to run Gentoo because there's no way to get/change the keys from/in firmware ... _________________ Intel Core i7 2700K/Radeon R7 250/24GB DDR3/256GB SSD
What am I supposed watching? |
|
Back to top |
|
|
GDH-gentoo Veteran
Joined: 20 Jul 2019 Posts: 1548 Location: South America
|
Posted: Sat Aug 08, 2020 3:13 pm Post subject: |
|
|
eccerr0r wrote: | Actually it depends on the EFI firmware. However, most EFI firmware that I've run across will indeed allow a ESP on MBR-partitioned disks along with the usual GPT partitioned disks (in fact, some work on El-Torito "disks" too!). | Both are required by the UEFI specification, I believe. The ESP is marked with partition type EF in an MS-DOS formatted partition table. Whether actual firmware complies may vary, I suppose.
eccerr0r wrote: | So without using canonical/redhat's keys, it's now possible to do secure boot on any EFI machine? | It depends on whether the UEFI firmware will let you enter setup mode and replace the platform and key exchange keys (if yes, the described procedure still looks scary and easy to screw up, though). |
|
Back to top |
|
|
DONAHUE Watchman
Joined: 09 Dec 2006 Posts: 7651 Location: Goose Creek SC
|
|
Back to top |
|
|
eccerr0r Watchman
Joined: 01 Jul 2004 Posts: 9690 Location: almost Mile High in the USA
|
Posted: Sun Aug 09, 2020 2:00 pm Post subject: |
|
|
As far as I can tell I don't know if it's possible to change keys in my old motherboard firmware, so I guess it stops here unless if I want to switch to EFI boot for the heck of it.
As long as Linux continues to allow MBR boot and Grub is updated I suppose I'm OK. But with Linux dropping things like ISA support, I sometimes worry if MBR days are numbered... _________________ Intel Core i7 2700K/Radeon R7 250/24GB DDR3/256GB SSD
What am I supposed watching? |
|
Back to top |
|
|
NeddySeagoon Administrator
Joined: 05 Jul 2003 Posts: 54300 Location: 56N 3W
|
Posted: Sun Aug 09, 2020 3:35 pm Post subject: |
|
|
eccerr0r,
The kernel has little or no involvement in BIOS booting. It just gets loaded by your favourite boot loader.
Loadlin is out, The kernel will no longer fit on a floppy.
Lilo, grub-legacy and sys-linux will continue to work.
Does anyone still have ISA hardware to test a modern kernel? _________________ Regards,
NeddySeagoon
Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail. |
|
Back to top |
|
|
eccerr0r Watchman
Joined: 01 Jul 2004 Posts: 9690 Location: almost Mile High in the USA
|
Posted: Sun Aug 09, 2020 5:51 pm Post subject: |
|
|
The problem is that the first sector in the Linux kernel image is an MBR boot sector - and that has to be 16-bit to run as that's MBR requirement. As fewer and fewer machines have MBR boot, just like ISA, will have less and less need for maintenance of that piece of code.
Likewise for Grub's MBR code.
If most new machines are EFI there's no need for the code and it will bitrot.
Main problem with ISA hardware these days is that they don't have enough RAM. IIRC the most RAM I have on any ISA machine is 1GiB, and the main ones top out at 256MB or so, which is fine running Linux but no longer enough to run a full GUI.
But that's not the specific issue. As MBR machines age out, they also will have arbitrary limitations that will likewise go the way of ISA machines. _________________ Intel Core i7 2700K/Radeon R7 250/24GB DDR3/256GB SSD
What am I supposed watching? |
|
Back to top |
|
|
Ant P. Watchman
Joined: 18 Apr 2009 Posts: 6920
|
Posted: Mon Aug 10, 2020 10:25 am Post subject: |
|
|
eccerr0r wrote: | If most new machines are EFI there's no need for the code and it will bitrot. |
Are we anticipating the ever-changing laws of physics to cause a hand-auditable amount of unchanging code running on unevolving hardware to behave wildly differently any time soon? |
|
Back to top |
|
|
eccerr0r Watchman
Joined: 01 Jul 2004 Posts: 9690 Location: almost Mile High in the USA
|
Posted: Mon Aug 10, 2020 3:08 pm Post subject: |
|
|
Ant P. wrote: | Are we anticipating the ever-changing laws of physics to cause a hand-auditable amount of unchanging code running on unevolving hardware to behave wildly differently any time soon? |
Same question could be posed to ISA hardware drivers, yet it still got yanked... _________________ Intel Core i7 2700K/Radeon R7 250/24GB DDR3/256GB SSD
What am I supposed watching? |
|
Back to top |
|
|
|