logo

drewdevault.com

[mirror] blog and personal website of Drew DeVault git clone https://hacktivis.me/git/mirror/drewdevault.com.git

Status-update-May-2022.md (7090B)

    

  1. ---
  2. title: Status update, May 2022
  3. date: 2022-05-16
  4. ---
  6. This was an exciting month: [the Hare programming language] is a secret no more!
  7. You can now [try out] the programming language I first teased [over a year ago]
  8. and [tell me what you think](mailto:sir@cmpwn.com). I hope you like it! I'm
  9. quite pleased with it so far.
  11. [the Hare programming language]: https://harelang.org
  12. [try out]: https://harelang.org/tutorials/introduction/
  13. [over a year ago]: /2021/03/19/A-new-systems-language.html
  15. One thing Hare has done is allow me to unshelve several projects which were
  16. blocked pending the availability of a suitable language to write them in. I have
  17. actually been working on several of these for a while now — and several
  18. more are to come later — but I couldn't share them thanks to Hare's policy
  19. of secrecy early in its development. Allow me to introduce you to a few
  20. projects!
  22. **[Helios]** is a micro-kernel for x86\_64, and ideally later for aarch64 and
  23. riscv64 as well (and possibly other targets as Hare grows additional ports). We
  24. have a few things working, such as paging and interrupts, and as of this morning
  25. we have entered userspace. Next up is rigging up syscalls and scheduling, then
  26. we're going to start fleshing out an L4-inspired API and writing some drivers in
  27. userspace.
  29. ![A screenshot showing Helios booting and entering userspace](https://l.sr.ht/COLx.png)
  31. [Helios]: https://sr.ht/~sircmpwn/helios
  33. **[Himitsu]** is a secret storage system. It can act as a password manager, but
  34. it also stores other arbitrary secret data, such as private keys. Each key is a
  35. set of key/value pairs, some of which can be secret. This allows you to store
  36. additional data alongside your password (such as your username or email for
  37. login), and also supports secret data other than passwords — like SSH
  38. keys. An extensible consent and agent protocols allow you to expand it to
  39. support a wide variety of use-cases for secure use of secrets.
  41. <video src="https://mirror.drewdevault.com/hissh-agent.webm" muted controls></video>
  43. [Himitsu]: https://sr.ht/~sircmpwn/himitsu
  44. [Codeberg]: https://codeberg.org
  46. **[btqd]**, or "bittorrent queue daemon", is (going to be) a bittorrent daemon,
  47. but it is still very early in development. The design is essentially that of a
  48. process supervisor which manages a queue of torrents and fires up subprocesses
  49. to seed or leech for a set of active torrents. Each subprocess, such as btlc
  50. (bittorrent leech client), or btsc (bittorrent seed client), can also be used
  51. separately from the queue daemon. Further development is blocked on net::http,
  52. which is blocked on TLS support, for tracker announce requests. I may
  53. temporarily unblock this by shelling out to curl instead.
  55. [btqd]: https://sr.ht/~sircmpwn/btqd
  57. **[scheduled]** is also early in development. It is a replacement for crond (and
  58. also [at(1)]) which is redesigned from the ground up. I have never been thrilled
  59. with cron's design &mdash; it's very un-Unix like. scheduled will have better
  60. error handling and logging, a much more flexible and understandable approach to
  61. configuration, and a better approach to security, plus the ability to do ad-hoc
  62. scheduling from the command line. This was designed prior to date/time support
  63. landing in Hare, and was blocked for a while, but is now unblocked. However, it
  64. is not my highest priority.
  66. [scheduled]: https://sr.ht/~sircmpwn/scheduled
  67. [at(1)]: https://linux.die.net/man/1/at
  69. ---
  71. Each of these projects will spawn more blog posts (or talks) going into greater
  72. depth on their design goals and rationale later on. For now, with the
  73. introductions out of the way, allow me to fill you in on the things which got
  74. done in this past month in particular.
  76. I'll keep the SourceHut news short, and expand upon it in the "what's cooking"
  77. post later today. For my own part, I spent some time working on [hut] to add
  78. support for comprehensive account data import/export. This will allow you to
  79. easily take all of your data out of sourcehut and import it into another
  80. instance, or any compatible software &mdash; your git repos are just git repos
  81. and your mailing lists are just mbox files, so you could push them to GitHub or
  82. import them into GNU Mailman, for example. This work is also a step towards
  83. self-service account deletion and renaming, both prioritized for the beta.
  85. [hut]: https://sr.ht/~emersion/hut
  87. Regarding Hare itself, there are many important recent developments. Over 300
  88. commits landed this month, so I'll have to leave some details out. An OpenBSD
  89. port is underway by Brian Callahan, and the initial patches have landed for the
  90. Hare compiler. The crypto module grew [blowfish] and [bcrypt] support, both
  91. useful mainly for legacy compatibility, as well as the more immediately useful
  92. [x25519] and [pem] implementations. There is also a new [encoding::json]
  93. module,[^extlib] and a number of fixes and improvements have been steadily
  94. flowing in for [regex], [bufio], [net], [net::uri], and [datetime], along with
  95. dozens of others.
  97. [blowfish]: https://docs.harelang.org/crypto/blowfish
  98. [bcrypt]: https://docs.harelang.org/crypto/bcrypt
  99. [x25519]: https://docs.harelang.org/crypto/x25519
  100. [regex]: https://docs.harelang.org/regex
  101. [bufio]: https://docs.harelang.org/bufio
  102. [datetime]: https://docs.harelang.org/datetime
  103. [pem]: https://docs.harelang.org/encoding/pem
  104. [net]: https://docs.harelang.org/net
  105. [net::uri]: https://docs.harelang.org/net/uri
  106. [encoding::json]: https://docs.harelang.org/encoding/json
  107. [^extlib]: Which is likely to be moved to the extended library in the future.
  109. For Himitsu, I developed [hare-ssh] this month to facilitate the addition of
  110. [himitsu-ssh], which provides SSH tooling that integrates with Himitsu (check
  111. out the video above for a demo). The "hissh-import" command decodes OpenSSH
  112. private keys and loads them into the Himitsu keystore, and the "hissh-agent"
  113. command runs an SSH agent that performs authentication with the private keys
  114. stored in Himitsu. Future additions will include "hissh-export", for getting
  115. your private keys back out in a useful format, and "hissh-keygen", for skipping
  116. the import/export step entirely. Presently only ed25519 keys are supported; more
  117. will be added as the necessary primitives are added to Hare upstream.
  119. [hare-ssh]: https://sr.ht/~sircmpwn/hare-ssh
  120. [himitsu-ssh]: https://git.sr.ht/~sircmpwn/himitsu-ssh
  122. I did some work on Helios this weekend, following a brief hiatus. I wrote a more
  123. generalized page table implementation which can manage multiple page tables
  124. (necessary to have separate address spaces for each process), and started
  125. rigging up the kernel to userspace transition, which I briefly covered earlier
  126. in the post. As of this morning, I have some code running in userspace &mdash;
  127. one variant attempts to `cli`, causing a general protection fault (as expected),
  128. and another just runs a busy loop, which works without any faults. Next steps
  129. are syscalls and scheduling.
  131. That's all the news for today. Hare! Woo! Thanks for reading, and be sure to
  132. check out &mdash; and maybe contribute to? &mdash; some of these projects. Take
  133. care!