Lmst
Login

#efi

Felix Palmen :freebsd: :c64:zirias@bsd.cafe
2025-06-20

@cdrmack It's #GELI for me. If your threat scenario is physical hardware access by unauthorized persons (like e.g. a stolen laptop), you want to leak as little information as possible. With GELI, all you need is some #ESP (#EFI partition) with #FreeBSD's loader(8) installed, it supports booting from GELI.

If, on the other hand, your threat scenario is unauthorized access to some data by someone who *is* authorized to access the machine in general, just not that specific data, per-dataset encryption as offered by #ZFS is the better match. A concrete scenario could be a machine used by multiple users that don't necessarily trust each other. That way, some datasets can remain "locked" while the machine is up and running, but of course you'll always expose pool metadata (like, which datasets, snapshots etc exist at all).

You might combine both approaches if you *really* need to. 😆

L29Ah@qoto.org
2025-06-15

#? #windows #android #efi @rf
Как отформатировать USB-флешку чтобы она одновременно монтировалась на чтение-запись в Windows, Android, (Linux естественно тоже но с этим проблем никогда не возникает) и была загрузочной для EFI-систем?

urmaul.com blogblog@gts.urmaul.com
2025-06-13

New blog post: How Not to Resize EFI Partition

I have a Framework laptop with Fedora Linux and at some point I couldn’t install firmware updates. The error was not enough free space in my 100MB /boot/efi partition so I had to resize it somehow. None of the guides I could find helped me completely so here’s another one. I also wrote down what didn’t work because those parts of existing forum discussions turned out to be most useful for me.

https://urmaul.com/blog/resize-efi-partition/

#EFI #FrameworkLaptop #Fedora

C.cazabon@mindly.social
2025-06-12

Days since I installed Debian on a new computer and completed a complex manual partitioning scheme involving stacked md, dmcrypt, and lvm while forgetting to create an EFI system partition, and so having to do the whole thing over from scratch:

0.

Argh. The installer should warn you about this earlier in the process. I always forget because I only do this every 3 or 4 years.

#Debian #linux #installed #EFI #ESP #SystemPartition #partition #disks #oops

postmodernpostmodern@infosec.exchange
2025-06-10

What is the magic command to create an .iso that is both bootable by UEFI and BIOS (CSM) systems? Trying to re-build a Ubuntu .iso and cannot get the modified .iso to boot under OVMF; I did verify that OVMF can boot an unmodified Ubuntu .iso.

#ubuntu #uefi #efi #iso #xorriso #genisoimage

JdeBPJdeBP@tty0.social
2025-06-10

A destructive back space, to go alongside a destructive forward space, is an exceedingly unusual but valid choice. There are terminals in the termcap database that did this.

If you want actual madness, however, look to u-boot, where BS is non-destructive *unless* the user is using TrueType fonts, when this code kicks in.

github.com/u-boot/u-boot/blob/

Just say no to using the BS character for text effects effects in boot loaders, kids! (-:

#uboot #termcap #NetBSD #FreeBSD #EFI

JdeBPJdeBP@tty0.social
2025-06-10

The same goes for #GhostBSD and #DragonFlyBSD on EFI, obviously.

You've all assumed a non-destructive back space and a destructive forward space, and you're all calling OutputString twice.

github.com/ghostbsd/ghostbsd-s

github.com/DragonFlyBSD/Dragon

OutputString is a fairly hefty function to be calling once per character, and as you can see even calls itself recursively to do a back space. Not using BS at all seems like a good choice.

#UEFI #EFI

JdeBPJdeBP@tty0.social
2025-06-10

You could even model the save/restore cursor functionality around the getcursor() that's already there for PC/AT firmwares.

github.com/freebsd/freebsd-src

#FreeBSD #TianoCore #EFI #UEFI

JdeBPJdeBP@tty0.social
2025-06-10

Dear #FreeBSD people booting on EFI:

You are in exactly the same boat as the NetBSD people.

github.com/freebsd/freebsd-src

And the fix is the same: A specialized putchar_twiddle() function that saves and restores the cursor position around the call to OutputString.

As a side benefit such a function does not have to worry about CRLF checks, because it knows that it isn't printing control characters, & does not do those checks & call OutputString twice for every spinner update.

#TianoCore #EFI #UEFI

JdeBPJdeBP@tty0.social
2025-06-10

Dear #NetBSD people:

The reason that the spinners do not work in your boot loader when booted on TianoCore firmware is that, very unusually, #TianoCore has made back space (BS) consistent with forward space (SPC). They are *both* destructive spaces.

github.com/tianocore/edk2/blob

You need to print the BS before printing the spinner character. And do an initial SPC and a final BS.

github.com/NetBSD/src/blob/tru

Or drop BS and save and restore the cursor position.

uefi.org/specs/UEFI/2.10/12_Pr

#EFI #UEFI

JdeBPJdeBP@tty0.social
2025-06-08

@feld

What that manual page tells you is what the source to read is, to confirm that that StackExchange answer is on the level. It gives you the title, publisher, and document ID of the spec; in its "see also" section. DMTF stands for Distributed Management Task Force.

Mastodon mangled the URL that I entered so that the closing bracket was outside of the hyperlink. Here's an alternative query form of it, for completeness.

man.freebsd.org/cgi/man.cgi?qu

#SMBIOS #EFI

Stephen HoffmanHoffmanLabs@infosec.exchange
2025-06-08

For the ~six of y’all that might be interested in the GUID partitioning table storage partitioning — used on many modern systems including macOS, OpenVMS I64 on Integrity Itanium, most anything using EFI or UEFI consoles, and others — here is the Apple Technical Note TN2166
Secrets of the GPT document:

developer.apple.com/library/ar

This being one of the better GPT introductions available.

This and related technical discussions also have all unfortunately been buried by that unrelated AI stuff.

#efi #macos #uefi #gpt #openvms

JdeBPJdeBP@tty0.social
2025-06-08

@feld @ireneista @wollman

The canonical source is actually cited by the #FreeBSD manual page, as "see also". (-:

man.freebsd.org/cgi/man.cgi?sm)

#SMBIOS #EFI

JdeBPJdeBP@mastodonapp.uk
2025-06-04

@jaypatelani

It's wrong in a couple of places. For starters, systems with EFI firmware do not require EFI partition tables. In fact it has things backwards. It's the older firmwares that place the requirement on what partitioning scheme is used; not the newer ones.

And as far as I know @emaste does not reject German keyboard layouts for #FreeBSD. (-:

It's on point about "What the Hell is enable cgd?" though.

#NetBSD #EFI

JdeBPJdeBP@mastodonapp.uk
2025-06-01

Top tip from yesterday's experience:

In #TianoCore, the EDK2 UEFI firmware, version 1.42 (PFTF build) the shell that one obtains from pressing F1 when the prompt is on screen is different to the shell that one obtains from going into SETUP and picking "UEFI Shell" from the Boot Manager.

The former only maps a minimal set of EFI devices, it appears. Whereas the latter maps all block devices and the EFI system volume.

So: no, you have not accidentally misconfigured your #RaspberryPi and made it stop finding devices. (-:

#UEFI #EFI

Dendrobatus AzureusDendrobatus_Azureus@bsd.cafe
2025-05-21

rEFInd is a wonderful tool

All your EFI boot parameters nearly displayed before you boot and more

Go read about it and see if it's something you need.

I found it in my freeBSD ghostBSD installation

#OpenSource #POSIX #BSD #Linux #freeBSD #EFI #GRUB #boot #programming

The photograph composed in total darkness shows two screens. The top screen displays a pink background with the text "Q Refind" and a cartoon penguin logo. Below the logo, there are colorful icons, including a spiral, a recycling symbol, and a penguin, along with a blue arrow pointing upwards. The text on the screen reads: "Insert, use arrow keys to move cursor; Enter or F2 for more options; Esc or Backspace to refresh." The bottom screen is dark blue with the word "Music" in light blue text. Below it, there is a music player interface showing the song "Oh Mama Original 12 inch" by Disco & Sussie, with a progress bar indicating 2 minutes and 33 seconds elapsed out of a total duration. The background of the music player is dark, with a small album cover visible. Ovis2-8B 🌱 Energy used: 0.232 Wh
Kevin Karhan :verified:kkarhan@infosec.space
2025-05-19

@jbqueru Also I hope for #RISCv to be the #ISA of the future for long-term #OpenSourceHardware and support.

#ARM64 - just like #amd64 - is yet another proprietary ISA and almost all devices with it in terms of #Laptops have #AntiRepairDesign like #Apple's #MacBook|s that self-destroy their #SSD|s which also contains it's #EFI / "#BridgeOS", making machines with fried SSDs 'braindead'

And yes, #RAM to also fails and making it not fully replaceable and upgradeable is inherently bad and I'm still mad at @frameworkcomputer for their botched #FrameworkDesktop #PC!

  • Cuz it's neither necessary nor beneficial for a #Desktop PC, unlike with the #Framework12 where the #SoC used only supports single channel and a single SODIMM so it makes sense for them to take that into account.
TZLtimezoneless@mstdn.social
2025-05-19

Hmm.. it seems disabling #SGX support in #EFI will only impact userspace applications. The #linux #kernel does not seem to make use of SGX itself.

wiwsportwiwsport
2025-05-18

🏇 World Jumping Challenge – Résultats du 2e et dernier jour
📍 Racing Club de Dakar


wiwsportwiwsport
2025-05-18

🏇 Résultats – Épreuve n°6 : CATÉGORIE C
🥇 Babacar Omar Dieng & Elite Longane (PCH)

📍 World Jumping Challenge – Racing Club de Dakar


Client Info

Server: https://mastodon.social
Version: 2025.04
Repository: https://github.com/cyevgeniy/lmst