overlay/systemd: add boot.mount unit #105
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -9,3 +9,5 @@ enable afterburn-checkin.service | |
| enable afterburn-firstboot-checkin.service | ||
| # Service to write SSH key snippets from cloud providers. | ||
| enable [email protected] | ||
| # mount /boot/efi | ||
| enable boot-efi.mount | ||
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,11 @@ | ||
| [Unit] | ||
| Description=EFI System Partition | ||
| Documentation=https://github.com/coreos/fedora-coreos-config | ||
| ConditionPathExists=/boot/efi | ||
|
|
||
| [Mount] | ||
| What=/dev/disk/by-label/EFI-SYSTEM | ||
| Where=/boot/efi | ||
|
|
||
| [Install] | ||
| RequiredBy=local-fs.target | ||
|
There was a problem hiding this comment. Do we need this and the preset blurb for There was a problem hiding this comment. I'm not sure why we don't need it in 👍 to static enablement. There was a problem hiding this comment. Actually I'm not sure how I feel about static enablement anymore. It would either need to go in There was a problem hiding this comment. Not to rehash the whole convo in #77, but yup presets are fine too. I guess I see those mounts as part of the OS (i.e. can't update without it), so you wouldn't want to disable it, unless you really know what you're doing (in which case having to resort to There was a problem hiding this comment. just a note: we can update without it, even on uefi. The only thing in There was a problem hiding this comment.
Right, speaking more to |
||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
How about
ConditionPathExists=/sys/firmware/efi/efivarsas used by/usr/lib/systemd/system/dbxtool.service?There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
We still want to mount it on combined UEFI+BIOS image for consistency, yes? We want to key off what image we're using instead of what mode we booted in.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Hmm. What value would it be to mount the ESP on BIOS?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
In practice I can't think of any. But I was to preserve consistency. One of the things I like from CL is things largely happen the same on different platforms. That's one of the reasons why we're shipping one image to all the clouds. Ultimately this should be invisible to users.
I don't feel super strongly on this but would be curious what other historically CL/Atomic folks thought. cc @bgilbert @jlebon ?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
No strong feelings either. I'm not sure of the ramifications either way. (Though related, I was just this morning catching up on the latest posts on the Silverblue board, and I saw this post about trying to install both BIOS and UEFI, which I see you've already replied to. :) -- I guess in such a case, there is some value in having it mounted so you can e.g. update ESP files even if the current machine you're on is BIOS. That use case doesn't translate quite as well for FCOS though...)
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Hmm, in that case though, why do we need this conditional at all? systemd already knows to order
boot.mountbeforeboot-efi.mount, right? Ahh, or this is to account for the fact that coreos/coreos-assembler#556 doesn't yet handle metal BIOS images as well?There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Well that, but that should be fixed soon. I was more thinking of arches other than x86_64 and arm64 where there is no EFI.