logo

live-bootstrap

Mirror of <https://github.com/fosslinux/live-bootstrap>

README.rst (6217B)

    

  1. .. SPDX-FileCopyrightText: 2021 Andrius Štikonas <andrius@stikonas.eu>
  2. .. SPDX-FileCopyrightText: 2021 Paul Dersey <pdersey@gmail.com>
  3. .. SPDX-FileCopyrightText: 2021 fosslinux <fosslinux@aussies.space>
  5. .. SPDX-License-Identifier: CC-BY-SA-4.0
  8. live-bootstrap
  9. ==============
  11. An attempt to provide a reproducible, automatic, complete end-to-end
  12. bootstrap from a minimal number of binary seeds to a supported fully
  13. functioning operating system.
  15. How do I use this?
  16. ------------------
  18. Quick start:
  20. See ``./rootfs.py --help`` and follow the instructions given there.
  21. This uses a variety of userland tools to prepare the bootstrap.
  23. (*Currently, there is no way to perform the bootstrap without external
  24. preparations! This is a currently unsolved problem.*)
  26. Without using Python:
  28. 1. ``git clone https://github.com/fosslinux/live-bootstrap``
  29. 2. ``git submodule update --init --recursive``
  30. 3. Consider whether you are going to run this in a chroot, in QEMU, or on bare
  31.    metal. (All of this *can* be automated, but not in a trustable way. See
  32.    further below.)
  34.    a. **chroot:** Create a directory where the chroot will reside, run
  35.       ``./download-distfiles.sh``, and copy:
  37.       * The entire contents of ``seed/stage0-posix`` into that directory.
  38.       * All other files in ``seed`` into that directory.
  39.       * ``steps/`` and ``distfiles/`` into that directory.
  41.         * At least all files listed in ``steps/pre-network-sources`` must be
  42.           copied in. All other files will be obtained from the network.
  43.       * Run ``/bootstrap-seeds/POSIX/x86/kaem-optional-seed`` in the chroot.
  44.         (Eg, ``chroot rootfs /bootstrap-seeds/POSIX/x86/kaem-optional-seed``).
  45.    b. **QEMU:** Create two blank disk images.
  47.       * Generate ``builder-hex0-x86-stage1.img`` from hex0 source:
  49.         ``sed 's/[;#].*$//g' builder-hex0/builder-hex0-x86-stage1-hex0 | xxd -r -p``
  50.       * On the first image, write ``builder-hex0-x86-stage1.img`` to it, followed
  51.         by ``kernel-bootstrap/builder-hex0-x86-stage2.hex0``, followed by zeros
  52.         padding the disk to the next sector.
  53.       * distfiles can be obtained using ``./download-distfiles.sh``.
  54.       * See the list in part a. For every file within that list, write a line to
  55.         the disk ``src <size-of-file> <path-to-file>``, followed by the contents
  56.         of the file.
  58.         * *Only* copy distfiles listed in ``sources`` files for ``build:`` steps
  59.           manifested before ``improve: get_network`` into this disk.
  60.       * Optionally (if you don't do this, distfiles will be network downloaded):
  62.         * On the second image, create an MSDOS partition table and one ext3
  63.           partition.
  64.         * Copy ``distfiles/`` into this disk.
  65.       * Run QEMU, with 4+G RAM, optionally SMP (multicore), both drives (in the
  66.         order introduced above), a NIC with model E1000
  67.         (``-nic user,model=e1000``), and ``-machine kernel-irqchip=split``.
  68.    c. **Bare metal:** Follow the same steps as QEMU, but the disks need to be
  69.       two different *physical* disks, and boot from the first disk.
  71. Background
  72. ----------
  74. Problem statement
  75. =================
  77. live-bootstrap's overarching problem statement is;
  79. > How can a usable Linux system be created with only human-auditable, and
  80. wherever possible, human-written, source code?
  82. Clarifications:
  84. * "usable" means a modern toolchain, with appropriate utilities, that can be
  85.   used to expand the amount of software on the system, interactively, or
  86.   non-interactively.
  87. * "human-auditable" is discretionary, but is usually fairly strict. See
  88.   "Specific things to be bootstrapped" below.
  90. Why is this difficult?
  91. ======================
  93. The core of a modern Linux system is primarily written in C and C++. C and C++
  94. are **self-hosting**, ie, nearly every single C compiler is written in C.
  96. Every single version of GCC was written in C. To avoid using an existing
  97. toolchain, we need some way to be able to compile a GCC version without C. We
  98. can use a less well-featured compiler, TCC, to do this. And so forth, until we
  99. get to a fairly primitive C compiler written in assembly, ``cc_x86``.
  101. Going up through this process requires a bunch of other utilities as well; the
  102. autotools suite, guile and autogen, etc. These also have to be matched
  103. appropriately to the toolchain available.
  105. Why should I care?
  106. ------------------
  108. That is outside of the scope of this README. Here’s a few things you can
  109. look at:
  111. -  https://bootstrappable.org
  112. -  Trusting Trust Attack (as described by Ken Thompson)
  113. -  https://guix.gnu.org/manual/en/html_node/Bootstrapping.html
  114. -  Collapse of the Internet (eg CollapseOS)
  116. Specific things to be bootstrapped
  117. ----------------------------------
  119. GNU Guix is currently the furthest along project to automate
  120. bootstrapping. However, there are a number of non-auditable files used
  121. in many of their packages. Here is a list of file types that we deem
  122. unsuitable for bootstrapping.
  124. 1. Binaries (apart from seed hex0, kaem, builder-hex0).
  125. 2. Any pre-generated configure scripts, or Makefile.in’s from autotools.
  126. 3. Pre-generated bison/flex parsers (identifiable through a ``.y``
  127.    file).
  128. 4. Any source code/binaries downloaded within a software’s build system
  129.    that is outside of our control to verify before use in the build
  130.    system.
  131. 5. Any non-free software. (Must be FSF-approved license).
  133. How does this work?
  134. -------------------
  136. **For a more in-depth discussion, see parts.rst.**
  138. Firstly, ``builder-hex0`` is launched. ``builder-hex0`` is a minimal kernel that is
  139. written in ``hex0``, existing in 3 self-bootstrapping stages.
  141. This is capable of executing the entirety of ``stage0-posix``, (see
  142. ``seed/stage0-posix``), which produces a variety of useful utilities and a basic
  143. C language, ``M2-Planet``.
  145. ``stage0-posix`` runs a file called ``after.kaem``. This is a shell script that
  146. builds and runs a small program called ``script-generator``. This program reads
  147. ``steps/manifest`` and converts it into a series of shell scripts that can be
  148. executed in sequence to complete the bootstrap.
  150. From this point forward, ``steps/manifest`` is effectively self documenting.
  151. Each package built exists in ``steps/<pkg>``, and the build scripts can be seen
  152. there.