computer hardware25 min

Firmware & Boot Process

BIOS, UEFI, and what happens between pressing power and seeing your desktop

0/9Not Started

Why This Matters

You press the power button and a few seconds later your desktop appears. But between those two moments, a remarkable chain of events unfolds. The CPU wakes up with no operating system, no drivers, and no idea what hardware is attached. A small program burned into a chip on the motherboard -- the firmware -- takes over. It tests the hardware, finds a bootable disk, loads the bootloader, which loads the operating system kernel, which finally brings up the environment you see.

Understanding this bridge between hardware and software explains how computers come alive. It also explains practical things: why a corrupted bootloader can brick a machine, how Secure Boot protects against rootkits, why dual-boot setups work, and what happens when a firmware update goes wrong. Every developer should understand the boot process because it is the foundation everything else runs on.

Define Terms

Visual Model

Power OnPSU energizes
POSTHardware checks
BIOS / UEFIFind boot device
BootloaderGRUB / Windows BM
Kernel LoadOS core starts
Init Systemsystemd / launchd
DesktopUser interface
reset vector
tests pass
boot order
load
handoff
services up

The full process at a glance. Click Start tour to walk through each step.

The boot sequence: a chain of handoffs from hardware to firmware to bootloader to operating system.

Code Example

Code
// Simulating the boot sequence in JavaScript

class BootSequence {
  constructor() {
    this.log = [];
    this.stage = "off";
  }

  powerOnSelfTest() {
    this.log.push("[POST] Checking CPU... OK");
    this.log.push("[POST] Checking RAM... OK");
    this.log.push("[POST] Checking GPU... OK");
    this.log.push("[POST] Checking storage... OK");
    this.stage = "post-complete";
    return { success: true, stage: this.stage };
  }

  loadFirmware(bootOrder) {
    if (this.stage !== "post-complete") {
      return { success: false, error: "POST not completed" };
    }
    this.log.push("[UEFI] Initializing hardware...");
    for (const device of bootOrder) {
      this.log.push("[UEFI] Checking " + device + "...");
      if (device === "nvme0" || device === "sda") {
        this.log.push("[UEFI] Bootable device found: " + device);
        this.stage = "firmware-complete";
        return { success: true, device: device };
      }
    }
    return { success: false, error: "No bootable device" };
  }

  loadBootloader(device) {
    if (this.stage !== "firmware-complete") {
      return { success: false, error: "Firmware not ready" };
    }
    this.log.push("[GRUB] Reading EFI partition on " + device);
    this.log.push("[GRUB] Loading kernel image...");
    this.stage = "bootloader-complete";
    return { success: true, kernel: "/boot/vmlinuz" };
  }

  loadKernel() {
    if (this.stage !== "bootloader-complete") {
      return { success: false, error: "Bootloader not ready" };
    }
    this.log.push("[KERNEL] Initializing drivers...");
    this.log.push("[KERNEL] Mounting root filesystem...");
    this.log.push("[KERNEL] Starting init system (PID 1)...");
    this.stage = "running";
    return { success: true, pid1: "systemd" };
  }
}

// Run the boot sequence
const boot = new BootSequence();
boot.powerOnSelfTest();
boot.loadFirmware(["usb0", "nvme0", "network"]);
boot.loadBootloader("nvme0");
boot.loadKernel();

boot.log.forEach(line => console.log(line));
console.log("Final stage:", boot.stage);

Interactive Experiment

Try these exercises:

  • Modify the boot sequence so that POST fails on the RAM check. What should happen to the rest of the sequence?
  • Change the boot order to ["network", "usb0"] with no disk. What error do you get?
  • Add a secureBoot check to loadBootloader that verifies a signature before loading the kernel. Return an error if the signature is invalid.
  • Add timing to each stage. Which stage would be the slowest on real hardware, and why?

Quick Quiz

Coding Challenge

Build a Boot Sequence Simulator

Write a class called `BootSequence` with four methods that must run in order: `powerOnSelfTest()`, `loadFirmware()`, `loadBootloader()`, and `loadKernel()`. Each method should return an object with `success` (boolean) and `status` (string). If a method is called out of order (before its prerequisite completes), it should return `{ success: false, status: 'error: <method> requires <previous stage>' }`. Track the current stage internally. After all four succeed, the `stage` property should be `'running'`.

Loading editor...

Real-World Usage

The boot process is relevant far beyond the basics:

  • UEFI Secure Boot verifies cryptographic signatures on the bootloader and kernel before executing them. This prevents rootkits from inserting malicious code into the boot chain. Windows requires Secure Boot for Windows 11 certification.
  • Dual-boot setups work because the bootloader (GRUB, rEFInd) can detect multiple operating systems on different partitions and present a selection menu before any OS kernel loads.
  • BIOS/UEFI flashing updates the firmware chip on the motherboard. A failed flash can render the board unbootable (bricked), which is why many motherboards include a backup BIOS chip or USB recovery mechanism.
  • Firmware attacks target the boot process because firmware runs before any security software. The LoJax rootkit (2018) was the first in-the-wild UEFI rootkit, persisting across OS reinstalls because it lived in the firmware chip itself.
  • Cloud servers use PXE (Preboot Execution Environment) to boot from the network instead of a local disk, allowing data centers to provision thousands of machines from a central image server.

Connections