logo

bootstrap-initrd

Linux initrd to bootstrap from a small binary seed git clone https://anongit.hacktivis.me/git/bootstrap-initrd.git/

README.md (7516B)

    

  1. # bootstrap-initrd
  2. ```
  3. Copyright 2017 Haelwenn (lanodan) Monnier <contact@hacktivis.me>
  4. SPDX-License-Identifier: MPL-2.0
  5. ```
  7. A initrd generator for Linux to bootstrap a POSIX-ish system from a reasonably small binary seed.
  9. ## Status
  10. - [x] Small binary seed of only TCC and musl (~1.2MB of binaries, depending on the architecture), enforced by [deblob](https://hacktivis.me/projects/deblob)
  11. - [x] Capable of bootstrapping <https://git.sr.ht/~mcf/oasis>
  12. - [ ] Self-replicating: Able to reassemble the initrd with Alpine apks
  13. - [ ] Self-hosting: Able to recompile all the software used from source (including tcc and musl)
  14. - [x] Code compiled by `init.sh` is reviewable, mostly thanks to a lack of autotools
  16. ## Explorations
  17. - Reduce the binary seed even further, without compromising on keeping the bootstrapping simple and reasonably fast
  19. ## Non-Goals
  20. - GNU Environment, there is already <https://github.com/fosslinux/live-bootstrap> for this and it's a massive effort
  21. - Become a distro, at worst it should end up deferring to an existing ports system like <https://www.pkgsrc.org/>
  23. ## Architectures
  25. You can set `ALPINE_ARCH` to change the architecture, by default it's set to `x86_64`.
  27. - `aarch64`: Untested
  28. - `armhf`: Untested
  29. - `armv7`: Untested
  30. - `riscv64`: Broken.
  31. - `x86`: Works
  32. - `x86_64` (aka amd64): Works
  34. ## Rationales
  35. Each of those roughly by their build order.
  37. ### TCC (binary)
  38. Need to start somewhere and TCC allows to interpret C, allowing to avoid seeding another interpreter.  
  39. The reason to not pick Guile+MesCC instead is because I find Guile Scheme to be less well-known than amd64 itself.
  41. ### musl (binary)
  42. Need a libc to start somewhere, tryhards could maybe compile it from source with TCC to reduce the seed further but this hasn't been tried.  
  43. It's `libc.a` is removed, to shave off 9.1MB from the binary seed, going from 11MB total to 1.2MB total, you're likely going to rebuild musl anyway since this is a sort of stage0.
  45. ### TCC as ar(1) implementation
  46. Meanwhile:
  47. - Binutils: 300+ MiB repository of sources, generated artifacts frequently over 1MB, and test fixtures also often over 1MB. Nope.
  49. ### OpenBSD ksh
  50. Portable version done by Dr. Brian Robert Callahan aka ibara@, of OpenBSD.
  51. Buildable with only a C compiler while being nicely complete (maybe even too much).
  53. Builtin commands (as of 7.6):
  54. - defined in c_sh.c: ., :, [, break, builtin, continue, eval, exec, exit, false, return, set, shift, times, trap, wait, read, test, true, ulimit, umask, unset, suspend
  55. - defined in c_ksh.c: alias, cd, command, echo, export, fc, getopts, jobs, kill, let, print, pwd, readonly, type, typeset, unalias, whence, bg, fg (and bind when emacs-mode is enabled)
  57. Meanwhile:
  58. - loksh: similar port but header names overrides the libc ones
  59. - mrsh: Too incomplete for actual use, but trivial to build with only a C Compiler
  60. - heirloom-sh: Also buildable with only a C Compiler but fails to allocate memory at launch
  61. - bash, yash: autoconf, so needs an existing shell
  62. - dash: autoconf and generator scripts, so needs an existing shell
  63. - mksh: ./Build.sh, so needs an existing shell
  64. - AT&T ksh: Way too big to even try, might as well try Perl
  66. ### OpenBSD yacc
  67. Portable version done by Dr. Brian Robert Callahan aka ibara@, of OpenBSD.
  69. Uses a BSD-style configure script, trivial to diff between versions and adjust hardcoded compiler flags (no utilities to run said script yet).
  71. Meanwhile:
  72. - bison: autoconf, way too early
  73. - byacc: autoconf
  74. - [yacc from compilertools.net](https://web.archive.org/web/20220511161030/http://dinosaur.compilertools.net/): Domain expired years ago and turns out Gentoo was the only distro still providing it
  76. ### utils-std
  77. My own software, which explicitly allows to bootstrap with an incomplete POSIX environment such as this one.
  79. Meanwhile:
  80. - GNU coreutils: Autoconf, therefore needs the utilities it's building plus some extras to already be available
  81. - Busybox and Toybox: Heavy dependency on GNU Make, bash, …, which can only come much later on in the bootstrapping process
  83. ## sbase
  84. Simple `ed` and `sed` implementations which uses `regex.h` instead of some broken regex engine.
  85. Lack of support of `-i` option on sed(1) is a bit annoying, might patch this.
  87. Meanwhile:
  88. - minised: Broken regex engine which is too limited to pass `./configure` checks like the one in GNU make
  89. - GNU sed: `./configure` script requires an existing sed (*why*), doesn't seems like there's a workaround.
  91. ### (One True) awk
  92. Reference implementation and AFAIK the one used in BSDs, can be built with only a Yacc implementation and a C Compiler.
  94. ### pdpmake
  95. Public Domain POSIX make, trivial to compile without an existing make, features future POSIX additions and common extensions.
  97. Meanwhile:
  98. - bmake (NetBSD make port): autotools configure script, simpler than the one in GNU make but still unreviewable
  99. - OpenBSD make, port at <https://github.com/ibara/make> is incomplete and likely outdated
  100. - (OpenOffice) dmake: Horribly massive
  102. ### bzip2
  103. Builds with C Compiler + POSIX make.
  105. Meanwhile:
  106. - pbzip2: Requires C++ compiler
  108. ### zlib
  109. Simple albeit slightly broken `./configure` script (see patches).
  111. ### pigz
  112. Simple, needs make + c compiler + zlib.  
  113. Note: Vendored zopfli got removed, so no compression beyond -9
  115. Meanwhile:
  116. - GNU gzip: Autotools
  118. ### Heirloom-devtools lex
  119. Slightly messy Makefiles but only has few dependencies.
  121. Meanwhile:
  122. - flex: Autotools
  124. ### Heirloom-devtools m4
  125. Slightly messy Makefiles but only has few dependencies.
  127. Meanwhile:
  128. - GNU m4: Not even close
  129. - OpenBSD m4 aka om4: Requires a more modern lex than heirloom-devtools provides
  131. ### Heirloom (toolchest) diff, sort
  132. Slightly messy Makefiles but only has few dependencies.
  134. ### Heirloom (toolchest) tar
  135. Slightly messy Makefiles but only has few dependencies.
  137. Meanwhile:
  138. - libarchive aka bsdtar: Autotools
  139. - GNU tar: [No.](https://www.roguelazer.com/blog/surprising-behavior-in-gnu-tar/)
  141. ### extras as packed tarballs
  142. - GNU make: Required by the other extras
  143. - xz: Not for anything yet, but requires working around libtool to build so including it
  144. - lua: For oasis
  145. - pkgconf: For iproute2
  146. - iproute2: Basic networking configuration
  147. - bearssl: small TLS library
  148. - tiny-curl: Still pretty big but hopefully close enough to the usual one
  149. - cacert (from curl.haxx.se): Maybe could be reduced to a handful of CAs (like maybe even just Let's Encrypt)
  150. - gettext-tiny: Much smaller replacement to GNU gettext, for git
  151. - git: For oasis
  152. - e2fsprogs: In case you need to format some extra storage
  154. You can automatically build all of the above with `/extras-build-all.sh` but be warned that those aren't as curated and due to lack of deblob, they might contain binaries and some use autotools which harms reviewability.
  156. You can also exclude those tarballs from the initrd with setting the `EXCLUDE_EXTRAS` environment variable to any value.
  158. ## Launching in QEMU
  159. * You need a Linux kernel, so far no known version limitations
  160. * Combination of `panic=1` and `-no-reboot` allows to exit+relaunch
  162. ```
  163. $ ./make-initrd.sh && qemu-system-x86_64 -enable-kvm -m 512 -kernel /boot/vmlinuz-6.6.21-gentoo -initrd bootstrap-initrd/x86_64.cpio.gz -append 'init=/init console=ttyS0 panic=1' -nographic -no-reboot
  164. ```
  166. ## Dev setup via bubblewrap
  168. ```
  169. $ ./make-root.sh && bwrap --clearenv --unshare-all --bind bootstrap-initrd/x86_64/ / --proc /proc --dev /dev --uid 0 /init
  170. ```
  172. Useful as it allows to manipulate the environment externally, for example to edit files in an editor more comfortable than `ed(1)`.