public
/
stagex
Archived
5
0
Fork 0
Code Issues 1 Pull Requests 1 Packages Projects Releases Wiki Activity

Compare commits

base: public:c2f3edeccade3fc7da7895024297c1e9c48af791
Branches Tags
public:main
public:kernel
public:ryan/rust-1.75.0-fix
public:nodejs
public:gen_initramfs
public:stage3-wget
public:zig
public:feat/update-readme
public:feat/add-sops
public:fsb
..
compare: public:a876992489de36db7e8f5695f2f6f343a534dbe5
Branches Tags
public:kernel
public:ryan/rust-1.75.0-fix
public:main
public:nodejs
public:gen_initramfs
public:stage3-wget
public:zig
public:feat/update-readme
public:feat/add-sops
public:fsb

No commits in common. "c2f3edeccade3fc7da7895024297c1e9c48af791" and "a876992489de36db7e8f5695f2f6f343a534dbe5" have entirely different histories.
c2f3edecca ... a876992489

5 changed files with 373 additions and 404 deletions
Show Stats Expand all files Collapse all files

126
src/bootstrap/stage0/Containerfile
View File

@ -1,49 +1,69 @@
ARG VERSION=1.6.0
ARG SRC_SITE=https://github.com/oriansj/stage0-posix/releases/download
ARG SRC_HASH=9260ff69278366e5c056af7b8c436b74773eaa1330a0c6a6b8ab1b5f92e5065c
FROM alpine@sha256:51b67269f354137895d43f3b3d810bfacd3945438e94dc5ac55fdac340352f48 as apline FROM alpine@sha256:51b67269f354137895d43f3b3d810bfacd3945438e94dc5ac55fdac340352f48 as apline
FROM debian@sha256:bac353db4cc04bc672b14029964e686cd7bad56fe34b51f432c1a1304b9928da as debian FROM debian@sha256:bac353db4cc04bc672b14029964e686cd7bad56fe34b51f432c1a1304b9928da as debian
FROM archlinux@sha256:1f83ba0580a15cd6ad1d02d62ad432ddc940f53f07d0e39c8982d6c9c74e53e0 as arch FROM archlinux@sha256:1f83ba0580a15cd6ad1d02d62ad432ddc940f53f07d0e39c8982d6c9c74e53e0 as archlinux
FROM scratch as base FROM debian as build1
ENV VERSION=1.6.0 ARG VERSION
ENV SRC_SITE=https://github.com/oriansj/stage0-posix/releases/download ENV VERSION=${VERSION}
ENV SRC_HASH=9260ff69278366e5c056af7b8c436b74773eaa1330a0c6a6b8ab1b5f92e5065c ARG SRC_SITE
COPY <<-EOF build.sh ENV SRC_SITE=${SRC_SITE}
#!/bin/sh ARG SRC_HASH
set -eux ENV SRC_HASH=${SRC_HASH}
wget ${SRC_SITE}/Release_${VERSION}/stage0-posix-${VERSION}.tar.gz RUN apt update && apt install -y wget gcc
echo "${SRC_HASH} stage0-posix-${VERSION}.tar.gz" | sha256sum -c RUN set -eux; \
tar -xf stage0-posix-${VERSION}.tar.gz wget ${SRC_SITE}/Release_${VERSION}/stage0-posix-${VERSION}.tar.gz; \
cd stage0-posix-${VERSION} echo "${SRC_HASH} stage0-posix-${VERSION}.tar.gz" | sha256sum -c; \
bootstrap-seeds/POSIX/x86/kaem-optional-seed tar -xf stage0-posix-${VERSION}.tar.gz
mkdir -p /rootfs && cp -R * /rootfs/ WORKDIR stage0-posix-${VERSION}
cd /rootfs RUN set -eux; \
sha256sum x86/bin/* > hashes.txt; \ bootstrap-seeds/POSIX/x86/kaem-optional-seed; \
find . -exec touch -hcd "@0" "{}" + mkdir -p /rootfs && cp -R * /rootfs/
EOF WORKDIR /rootfs
RUN sha256sum x86/bin/* > hashes.txt; \
find . -exec touch -hcd "@0" "{}" +
FROM base as build1 FROM archlinux as build2
COPY --from=debian . / ARG VERSION
RUN --mount=type=cache,target=/var/cache/apt <<-EOF ENV VERSION=${VERSION}
set -eux ARG SRC_SITE
apt update ENV SRC_SITE=${SRC_SITE}
apt install -y wget gcc ARG SRC_HASH
sh build.sh ENV SRC_HASH=${SRC_HASH}
EOF RUN pacman -Sy --noconfirm wget gcc
RUN set -eux; \
wget ${SRC_SITE}/Release_${VERSION}/stage0-posix-${VERSION}.tar.gz; \
echo "${SRC_HASH} stage0-posix-${VERSION}.tar.gz" | sha256sum -c; \
tar -xf stage0-posix-${VERSION}.tar.gz
WORKDIR stage0-posix-${VERSION}
RUN set -eux; \
bootstrap-seeds/POSIX/x86/kaem-optional-seed; \
mkdir -p /rootfs && cp -R * /rootfs/
WORKDIR /rootfs
RUN sha256sum x86/bin/* > hashes.txt; \
find . -exec touch -hcd "@0" "{}" +
FROM base as build2 FROM alpine as build3
COPY --from=arch . / ARG VERSION
RUN --mount=type=cache,target=/var/cache/pacman/pkg <<-EOF ENV VERSION=${VERSION}
set -eux ARG SRC_SITE
pacman -Sy --noconfirm wget gcc ENV SRC_SITE=${SRC_SITE}
sh build.sh ARG SRC_HASH
EOF ENV SRC_HASH=${SRC_HASH}
RUN apk add wget gcc
FROM base as build3 RUN set -eux; \
COPY --from=alpine . / wget ${SRC_SITE}/Release_${VERSION}/stage0-posix-${VERSION}.tar.gz; \
RUN --mount=type=cache,target=/var/cache/apk <<-EOF echo "${SRC_HASH} stage0-posix-${VERSION}.tar.gz" | sha256sum -c; \
set -eux tar -xf stage0-posix-${VERSION}.tar.gz
apk add wget gcc WORKDIR stage0-posix-${VERSION}
sh build.sh RUN set -eux; \
EOF bootstrap-seeds/POSIX/x86/kaem-optional-seed; \
mkdir -p /rootfs && cp -R * /rootfs/
WORKDIR /rootfs
RUN sha256sum x86/bin/* > hashes.txt; \
find . -exec touch -hcd "@0" "{}" +
FROM scratch as compare FROM scratch as compare
COPY --from=build1 /rootfs/ /a COPY --from=build1 /rootfs/ /a
@ -52,26 +72,26 @@ COPY --from=build3 /rootfs/ /c
FROM compare as test1 FROM compare as test1
WORKDIR /a WORKDIR /a
RUN --network=none ["x86/bin/sha256sum","-c","/a/hashes.txt"] RUN ["x86/bin/sha256sum","-c","/a/hashes.txt"]
RUN --network=none ["x86/bin/sha256sum","-c","/b/hashes.txt"] RUN ["x86/bin/sha256sum","-c","/b/hashes.txt"]
RUN --network=none ["x86/bin/sha256sum","-c","/c/hashes.txt"] RUN ["x86/bin/sha256sum","-c","/c/hashes.txt"]
FROM compare as test2 FROM compare as test2
WORKDIR /b WORKDIR /b
RUN --network=none ["x86/bin/sha256sum","-c","/a/hashes.txt"] RUN ["x86/bin/sha256sum","-c","/a/hashes.txt"]
RUN --network=none ["x86/bin/sha256sum","-c","/b/hashes.txt"] RUN ["x86/bin/sha256sum","-c","/b/hashes.txt"]
RUN --network=none ["x86/bin/sha256sum","-c","/c/hashes.txt"] RUN ["x86/bin/sha256sum","-c","/c/hashes.txt"]
FROM compare as test3 FROM compare as test3
WORKDIR /c WORKDIR /c
RUN --network=none ["x86/bin/sha256sum","-c","/a/hashes.txt"] RUN ["x86/bin/sha256sum","-c","/a/hashes.txt"]
RUN --network=none ["x86/bin/sha256sum","-c","/b/hashes.txt"] RUN ["x86/bin/sha256sum","-c","/b/hashes.txt"]
RUN --network=none ["x86/bin/sha256sum","-c","/c/hashes.txt"] RUN ["x86/bin/sha256sum","-c","/c/hashes.txt"]
FROM scratch as install FROM scratch as install
COPY --from=test1 /a/hashes.txt / COPY --from=test1 /a/hashes.txt /a-hashes.txt
COPY --from=test2 /b/hashes.txt / COPY --from=test2 /b/hashes.txt /b-hashes.txt
COPY --from=test3 /c/hashes.txt / COPY --from=test3 /c/hashes.txt /c-hashes.txt
COPY --from=build1 /rootfs / COPY --from=build1 /rootfs /
FROM scratch as package FROM scratch as package

99
src/bootstrap/stage1/Containerfile
View File

@ -2,6 +2,7 @@ ARG VERSION=fc6eeb6bd75ea0d0025a79ea9fe45614bd60ba14
ARG SRC_SITE=https://codeload.github.com/lrvick/live-bootstrap/legacy.tar.gz ARG SRC_SITE=https://codeload.github.com/lrvick/live-bootstrap/legacy.tar.gz
ARG SRC_HASH=0c268b19cf9f4eefdaf45dab64ac393ccf8ee43de58f0721624cab358044bf78 ARG SRC_HASH=0c268b19cf9f4eefdaf45dab64ac393ccf8ee43de58f0721624cab358044bf78
FROM debian@sha256:bac353db4cc04bc672b14029964e686cd7bad56fe34b51f432c1a1304b9928da as debian FROM debian@sha256:bac353db4cc04bc672b14029964e686cd7bad56fe34b51f432c1a1304b9928da as debian
FROM stagex/stage0 as stage0
FROM debian as fetch FROM debian as fetch
ARG VERSION ARG VERSION
@ -10,68 +11,56 @@ ARG SRC_SITE
ENV SRC_SITE=${SRC_SITE} ENV SRC_SITE=${SRC_SITE}
ARG SRC_HASH ARG SRC_HASH
ENV SRC_HASH=${SRC_HASH} ENV SRC_HASH=${SRC_HASH}
WORKDIR /home/user RUN apt update && apt install -y curl gcc
RUN \ RUN set -eux; \
--mount=type=cache,target=/var/cache/apt \ curl ${SRC_SITE}/${VERSION} -o live-bootstrap.tar.gz; \
--mount=type=cache,target=/var/lib/apt \ echo "${SRC_HASH} live-bootstrap.tar.gz" | sha256sum -c; \
apt update && apt install -y curl tar -xvf live-bootstrap.tar.gz; \
RUN <<-EOF mv lrvick-live-bootstrap-* live-bootstrap
set -uex WORKDIR live-bootstrap
curl -C - ${SRC_SITE}/${VERSION} -o live-bootstrap.tgz RUN ./download-distfiles.sh
echo "${SRC_HASH} live-bootstrap.tgz" | sha256sum -c
tar -xvf live-bootstrap.tgz
mv lrvick-live-bootstrap-* live-bootstrap
live-bootstrap/download-distfiles.sh
EOF
FROM debian as config FROM fetch as config
COPY --from=fetch . / RUN set -eux; \
RUN <<-EOF mkdir -p /rootfs/external; \
set -eux mv steps seed/* /rootfs/; \
mkdir -p /rootfs/external mv distfiles /rootfs/external/; \
cd /home/user/live-bootstrap export CORES=$(nproc --all); \
cp -R distfiles /rootfs/external/ echo "\
cp -R steps seed/* /rootfs/ FORCE_TIMESTAMPS=False\n\
export CORES=$(nproc --all) CHROOT=True\n\
printf "\ UPDATE_CHECKSUMS=False\n\
FORCE_TIMESTAMPS=False\n\ JOBS=${CORES}\n\
CHROOT=True\n\ SWAP_SIZE=0\n\
UPDATE_CHECKSUMS=False\n\ FINAL_JOBS=${CORES}\n\
JOBS=${CORES}\n\ INTERNAL_CI=False\n\
SWAP_SIZE=0\n\ INTERACTIVE=False\n\
FINAL_JOBS=${CORES}\n\ BARE_METAL=False\n\
INTERNAL_CI=False\n\ EXTERNAL_SOURCES=True\n\
INTERACTIVE=False\n\ DISK=sda1\n\
BARE_METAL=False\n\ KERNEL_BOOTSTRAP=False\n\
EXTERNAL_SOURCES=True\n\ BUILD_KERNELS=False" \
DISK=sda1\n\ > /rootfs/steps/bootstrap.cfg
KERNEL_BOOTSTRAP=False\n\ RUN touch /rootfs/steps/lwext4-1.0.0-lb1/files/fiwix-file-list.txt
BUILD_KERNELS=False" \
> /rootfs/steps/bootstrap.cfg
touch /rootfs/steps/lwext4-1.0.0-lb1/files/fiwix-file-list.txt
EOF
FROM stagex/stage0 as build FROM scratch as build
COPY --from=stagex/stage0 / .
COPY --from=config /rootfs .
ENV ARCH_DIR=x86 ENV ARCH_DIR=x86
ENV ARCH=x86 ENV ARCH=x86
COPY --from=config /rootfs . RUN ["/x86/bin/kaem","--verbose","--strict","--file","./after.kaem"]
RUN --network=none \
["/x86/bin/kaem","--verbose","--strict","--file","./after.kaem"]
FROM build as install FROM build as install
ENV PATH=/bin:/usr/sbin:/usr/bin ENV PATH=/bin:/usr/sbin:/usr/bin
RUN --mount=type=cache,target=/rootfs \ RUN set -eux; \
--network=none <<-EOF rm -rf /usr/lib/python*/__pycache__; \
set -eux mkdir -p /rootfs/etc /rootfs/home/user /rootfs/tmp; \
rm -rf /usr/lib/python*/__pycache__ chown -R 1000:1000 /rootfs/home/user /rootfs/tmp; \
mkdir -p /rootfs/etc /rootfs/home/user /rootfs/tmp cp -R $(ls -d /etc/* | grep -v '\(resolv.conf\|hosts\)') /rootfs/etc/; \
chown -R 1000:1000 /rootfs/home/user /rootfs/tmp cp -R lib usr bin var /rootfs/; \
cp -R $(ls -d /etc/* | grep -v '\(resolv.conf\|hosts\)') /rootfs/etc/ echo "user:x:1000:" > /rootfs/etc/group; \
cp -R lib usr bin var /rootfs/ echo "user:x:1000:1000::/home/user:/bin/bash" > /rootfs/etc/passwd; \
echo "user:x:1000:" > /rootfs/etc/group find /rootfs -exec touch -hcd "@0" "{}" +
echo "user:x:1000:1000::/home/user:/bin/bash" > /rootfs/etc/passwd
find /rootfs -exec touch -hcd "@0" "{}" +
EOF
FROM scratch as package FROM scratch as package
COPY --from=install /rootfs / COPY --from=install /rootfs /

232
src/bootstrap/stage2/Containerfile
View File

@ -34,120 +34,108 @@ ENV BINUTILS_DIR ${HOME}/build-binutils
FROM base as fetch FROM base as fetch
WORKDIR ${HOME} WORKDIR ${HOME}
RUN <<-EOF RUN set -eux; \
set -eux curl -OJ ${LINUX_SITE}/${LINUX_FILE}; \
curl -OJ ${LINUX_SITE}/${LINUX_FILE} echo "${LINUX_HASH} ${LINUX_FILE}" | sha256sum -c; \
echo "${LINUX_HASH} ${LINUX_FILE}" | sha256sum -c curl -OJ ${GCC_SITE}/${GCC_FILE}; \
curl -OJ ${GCC_SITE}/${GCC_FILE} echo "${GCC_HASH} ${GCC_FILE}" | sha256sum -c; \
echo "${GCC_HASH} ${GCC_FILE}" | sha256sum -c curl -OJ ${GCC_DEP_SITE}/${GMP_FILE}; \
curl -OJ ${GCC_DEP_SITE}/${GMP_FILE} echo "${GMP_HASH} ${GMP_FILE}" | sha256sum -c; \
echo "${GMP_HASH} ${GMP_FILE}" | sha256sum -c curl -OJ ${GCC_DEP_SITE}/${MPFR_FILE}; \
curl -OJ ${GCC_DEP_SITE}/${MPFR_FILE} echo "${MPFR_HASH} ${MPFR_FILE}" | sha256sum -c; \
echo "${MPFR_HASH} ${MPFR_FILE}" | sha256sum -c curl -OJ ${GCC_DEP_SITE}/${MPC_FILE}; \
curl -OJ ${GCC_DEP_SITE}/${MPC_FILE} echo "${MPC_HASH} ${MPC_FILE}" | sha256sum -c; \
echo "${MPC_HASH} ${MPC_FILE}" | sha256sum -c curl -OJ ${GCC_DEP_SITE}/${ISL_FILE}; \
curl -OJ ${GCC_DEP_SITE}/${ISL_FILE} echo "${ISL_HASH} ${ISL_FILE}" | sha256sum -c; \
echo "${ISL_HASH} ${ISL_FILE}" | sha256sum -c curl -OJ ${MUSL_SITE}/releases/${MUSL_FILE}; \
curl -OJ ${MUSL_SITE}/releases/${MUSL_FILE} echo "${MUSL_HASH} ${MUSL_FILE}" | sha256sum -c; \
echo "${MUSL_HASH} ${MUSL_FILE}" | sha256sum -c curl -OJ ${BINUTILS_SITE}/${BINUTILS_FILE}; \
curl -OJ ${BINUTILS_SITE}/${BINUTILS_FILE} echo "${BINUTILS_HASH} ${BINUTILS_FILE}" | sha256sum -c
echo "${BINUTILS_HASH} ${BINUTILS_FILE}" | sha256sum -c
EOF
FROM fetch as extract FROM fetch as extract
RUN <<-EOF RUN set -eux; \
set -eux tar -xf ${LINUX_FILE}; \
tar -xf ${LINUX_FILE} tar -xzf ${MUSL_FILE}; \
tar -xzf ${MUSL_FILE} tar -xf ${BINUTILS_FILE}; \
tar -xf ${BINUTILS_FILE} tar -xf ${GCC_FILE}; \
tar -xf ${GCC_FILE} cd gcc-${GCC_VERSION}; \
cd gcc-${GCC_VERSION} mv ../*.tar.* .; \
mv ../*.tar.* . ./contrib/download_prerequisites
./contrib/download_prerequisites
EOF
FROM extract as build FROM extract as build
# Phase 1: Build cross binutils in build-binutils # Phase 1: Build cross binutils in build-binutils
WORKDIR ${BINUTILS_DIR} WORKDIR ${BINUTILS_DIR}
RUN <<-EOF RUN set -eux; \
set -eux ../binutils-${BINUTILS_VERSION}/configure \
../binutils-${BINUTILS_VERSION}/configure \ --build=i386-unknown-linux-musl \
--build=i386-unknown-linux-musl \ --host=i386-unknown-linux-musl \
--host=i386-unknown-linux-musl \ --target=${TARGET} \
--target=${TARGET} \ --with-sysroot=/${TARGET} \
--with-sysroot=/${TARGET} \ --prefix= \
--prefix= \ --libdir=/lib \
--libdir=/lib \ --disable-nls \
--disable-nls \ --disable-multilib \
--disable-multilib \ --disable-plugins \
--disable-plugins \ --disable-gprofng \
--disable-gprofng \ --enable-64-bit-bfd \
--enable-64-bit-bfd \ --enable-ld=default \
--enable-ld=default \ --enable-install-libiberty \
--enable-install-libiberty \ --enable-deterministic-archives; \
--enable-deterministic-archives make all
make all
EOF
# Phase 2: Prepare build sysroot # Phase 2: Prepare build sysroot
WORKDIR ${SYSROOT_DIR} WORKDIR ${SYSROOT_DIR}
RUN <<-EOF RUN set -eux; \
set -eux mkdir -p include; \
mkdir -p include ln -sf . usr; \
ln -sf . usr ln -sf lib lib32; \
ln -sf lib lib32 ln -sf lib lib64
ln -sf lib lib64
EOF
# Phase 3: Build gcc (without libgcc) in build-gcc # Phase 3: Build gcc (without libgcc) in build-gcc
WORKDIR ${GCC_DIR} WORKDIR ${GCC_DIR}
RUN <<-EOF RUN set -eux; \
set -eux ../gcc-${GCC_VERSION}/configure \
../gcc-${GCC_VERSION}/configure \ --build=i386-unknown-linux-musl \
--build=i386-unknown-linux-musl \ --host=i386-unknown-linux-musl \
--host=i386-unknown-linux-musl \ --target=${TARGET} \
--target=${TARGET} \ --with-build-sysroot=${SYSROOT_DIR} \
--with-build-sysroot=${SYSROOT_DIR} \ --with-sysroot=/${TARGET} \
--with-sysroot=/${TARGET} \ --prefix= \
--prefix= \ --libdir=/lib \
--libdir=/lib \ --disable-multilib \
--disable-multilib \ --disable-bootstrap \
--disable-bootstrap \ --disable-assembly \
--disable-assembly \ --disable-libmudflap \
--disable-libmudflap \ --disable-libsanitizer \
--disable-libsanitizer \ --disable-gnu-indirect-function \
--disable-gnu-indirect-function \ --disable-libmpx \
--disable-libmpx \ --disable-werror \
--disable-werror \ --enable-languages=c,c++ \
--enable-languages=c,c++ \ --enable-tls \
--enable-tls \ --enable-initfini-array \
--enable-initfini-array \ --enable-libstdcxx-time=rt \
--enable-libstdcxx-time=rt \ --enable-deterministic-archives \
--enable-deterministic-archives \ AR_FOR_TARGET=${BINUTILS_DIR}/binutils/ar \
AR_FOR_TARGET=${BINUTILS_DIR}/binutils/ar \ AS_FOR_TARGET=${BINUTILS_DIR}/gas/as-new \
AS_FOR_TARGET=${BINUTILS_DIR}/gas/as-new \ LD_FOR_TARGET=${BINUTILS_DIR}/ld/ld-new \
LD_FOR_TARGET=${BINUTILS_DIR}/ld/ld-new \ NM_FOR_TARGET=${BINUTILS_DIR}/binutils/nm-new \
NM_FOR_TARGET=${BINUTILS_DIR}/binutils/nm-new \ OBJCOPY_FOR_TARGET=${BINUTILS_DIR}/binutils/objcopy \
OBJCOPY_FOR_TARGET=${BINUTILS_DIR}/binutils/objcopy \ OBJDUMP_FOR_TARGET=${BINUTILS_DIR}/binutils/objdump \
OBJDUMP_FOR_TARGET=${BINUTILS_DIR}/binutils/objdump \ RANLIB_FOR_TARGET=${BINUTILS_DIR}/binutils/ranlib \
RANLIB_FOR_TARGET=${BINUTILS_DIR}/binutils/ranlib \ READELF_FOR_TARGET=${BINUTILS_DIR}/binutils/readelf \
READELF_FOR_TARGET=${BINUTILS_DIR}/binutils/readelf \ STRIP_FOR_TARGET=${BINUTILS_DIR}/binutils/strip-new; \
STRIP_FOR_TARGET=${BINUTILS_DIR}/binutils/strip-new make all-gcc
make all-gcc
EOF
# Phase 4: Install musl libc headers to build-sysroot for use by libgcc # Phase 4: Install musl libc headers to build-sysroot for use by libgcc
WORKDIR ${MUSL_DIR} WORKDIR ${MUSL_DIR}
RUN <<-EOF RUN set -eux; \
set -eux ../musl-${MUSL_VERSION}/configure \
../musl-${MUSL_VERSION}/configure \ CC="${GCC_DIR}/gcc/xgcc -B ${GCC_DIR}/gcc" \
CC="${GCC_DIR}/gcc/xgcc -B ${GCC_DIR}/gcc" \ LIBCC="${GCC_DIR}/${TARGET}/libgcc/libgcc.a" \
LIBCC="${GCC_DIR}/${TARGET}/libgcc/libgcc.a" \ --prefix= \
--prefix= \ --host=${TARGET}; \
--host=${TARGET} make DESTDIR=${SYSROOT_DIR} install-headers
make DESTDIR=${SYSROOT_DIR} install-headers
EOF
# Phase 5: Compile libgcc # Phase 5: Compile libgcc
WORKDIR ${GCC_DIR} WORKDIR ${GCC_DIR}
@ -155,13 +143,11 @@ RUN make MAKE="make enable_shared=no" all-target-libgcc
# Phase 5: Compile musl libc and install to sysroot # Phase 5: Compile musl libc and install to sysroot
WORKDIR ${MUSL_DIR} WORKDIR ${MUSL_DIR}
RUN <<-EOF RUN set -eux; \
set -eux make \
make \ AR=${BINUTILS_DIR}/binutils/ar \
AR=${BINUTILS_DIR}/binutils/ar \ RANLIB=${BINUTILS_DIR}/binutils/ranlib; \
RANLIB=${BINUTILS_DIR}/binutils/ranlib make DESTDIR=${SYSROOT_DIR} install
make DESTDIR=${SYSROOT_DIR} install
EOF
# Phase 6: Compile remaining gcc targets # Phase 6: Compile remaining gcc targets
WORKDIR ${GCC_DIR} WORKDIR ${GCC_DIR}
@ -169,31 +155,27 @@ RUN make all
# Phase 7: Generate linux headers # Phase 7: Generate linux headers
WORKDIR ${HOME}/linux-${LINUX_VERSION} WORKDIR ${HOME}/linux-${LINUX_VERSION}
RUN <<-EOF RUN set -eux; \
set -eux make ARCH=${ARCH} headers; \
make ARCH=${ARCH} headers find usr/include -name '.*' -delete; \
find usr/include -name '.*' -delete rm usr/include/Makefile; \
rm usr/include/Makefile rm usr/include/headers_check.pl; \
rm usr/include/headers_check.pl cp -rv usr/include ${LINUX_DIR}
cp -rv usr/include ${LINUX_DIR}
EOF
FROM build as install FROM build as install
WORKDIR ${HOME} WORKDIR ${HOME}
USER 0:0 USER 0:0
COPY --from=stagex/stage1 . /rootfs/ COPY --from=stagex/stage1 . /rootfs/
RUN <<-EOF RUN set -eux; \
set -eux rm /rootfs/lib; \
rm /rootfs/lib env -C build-musl make DESTDIR=/rootfs/${TARGET} install; \
env -C build-musl make DESTDIR=/rootfs/${TARGET} install env -C build-gcc make DESTDIR=/rootfs/ install; \
env -C build-gcc make DESTDIR=/rootfs/ install env -C build-binutils make DESTDIR=/rootfs/ install; \
env -C build-binutils make DESTDIR=/rootfs/ install cp -Rv ${LINUX_DIR}/* /rootfs/${TARGET}/include; \
cp -Rv ${LINUX_DIR}/* /rootfs/${TARGET}/include ln -s /usr/lib/ld-musl-i386.so.1 /rootfs/lib/libc.so; \
ln -s /usr/lib/ld-musl-i386.so.1 /rootfs/lib/libc.so ln -s /usr/lib/ld-musl-i386.so.1 /rootfs/lib/ld-musl-i386.so.1; \
ln -s /usr/lib/ld-musl-i386.so.1 /rootfs/lib/ld-musl-i386.so.1 ln -s /${TARGET}/lib/ld-musl-${ARCH}.so.1 /rootfs/lib/ld-musl-${ARCH}.so.1; \
ln -s /${TARGET}/lib/ld-musl-${ARCH}.so.1 /rootfs/lib/ld-musl-${ARCH}.so.1 find /rootfs -exec touch -hcd "@0" "{}" +
find /rootfs -exec touch -hcd "@0" "{}" +
EOF
FROM scratch as package FROM scratch as package
COPY --from=install /rootfs/ / COPY --from=install /rootfs/ /

318
src/bootstrap/stage3/Containerfile
View File

@ -56,190 +56,168 @@ ENV LINUX_DIR ${HOME}/build-linux
FROM base as fetch FROM base as fetch
WORKDIR /home/user WORKDIR /home/user
RUN <<-EOF RUN set -eux; \
set -eux curl -OJ ${LINUX_SITE}/${LINUX_FILE}; \
curl -OJ ${LINUX_SITE}/${LINUX_FILE} echo "${LINUX_HASH} ${LINUX_FILE}" | sha256sum -c; \
echo "${LINUX_HASH} ${LINUX_FILE}" | sha256sum -c curl --insecure -OJ ${MUSL_SITE}/${MUSL_FILE}; \
curl --insecure -OJ ${MUSL_SITE}/${MUSL_FILE} echo "${MUSL_HASH} ${MUSL_FILE}" | sha256sum -c; \
echo "${MUSL_HASH} ${MUSL_FILE}" | sha256sum -c curl --insecure -OJ ${BUSYBOX_SITE}/${BUSYBOX_FILE}; \
curl --insecure -OJ ${BUSYBOX_SITE}/${BUSYBOX_FILE} echo "${BUSYBOX_HASH} ${BUSYBOX_FILE}" | sha256sum -c; \
echo "${BUSYBOX_HASH} ${BUSYBOX_FILE}" | sha256sum -c curl --insecure -OJ ${BINUTILS_SITE}/${BINUTILS_FILE}; \
curl --insecure -OJ ${BINUTILS_SITE}/${BINUTILS_FILE} echo "${BINUTILS_HASH} ${BINUTILS_FILE}" | sha256sum -c; \
echo "${BINUTILS_HASH} ${BINUTILS_FILE}" | sha256sum -c curl --insecure -OJ ${MAKE_SITE}/${MAKE_FILE}; \
curl --insecure -OJ ${MAKE_SITE}/${MAKE_FILE} echo "${MAKE_HASH} ${MAKE_FILE}" | sha256sum -c; \
echo "${MAKE_HASH} ${MAKE_FILE}" | sha256sum -c curl --insecure -OJ ${GCC_SITE}/${GCC_FILE}; \
curl --insecure -OJ ${GCC_SITE}/${GCC_FILE} echo "${GCC_HASH} ${GCC_FILE}" | sha256sum -c; \
echo "${GCC_HASH} ${GCC_FILE}" | sha256sum -c curl --insecure -OJ ${GMP_SITE}/${GMP_FILE}; \
curl --insecure -OJ ${GMP_SITE}/${GMP_FILE} echo "${GMP_HASH} ${GMP_FILE}" | sha256sum -c; \
echo "${GMP_HASH} ${GMP_FILE}" | sha256sum -c curl --insecure -OJ ${MPFR_SITE}/${MPFR_FILE}; \
curl --insecure -OJ ${MPFR_SITE}/${MPFR_FILE} echo "${MPFR_HASH} ${MPFR_FILE}" | sha256sum -c; \
echo "${MPFR_HASH} ${MPFR_FILE}" | sha256sum -c curl --insecure -OJ ${MPC_SITE}/${MPC_FILE}; \
curl --insecure -OJ ${MPC_SITE}/${MPC_FILE} echo "${MPC_HASH} ${MPC_FILE}" | sha256sum -c; \
echo "${MPC_HASH} ${MPC_FILE}" | sha256sum -c curl --insecure -OJ ${ISL_SITE}/${ISL_FILE}; \
curl --insecure -OJ ${ISL_SITE}/${ISL_FILE} echo "${ISL_HASH} ${ISL_FILE}" | sha256sum -c
echo "${ISL_HASH} ${ISL_FILE}" | sha256sum -c
EOF
FROM fetch as extract FROM fetch as extract
RUN <<-EOF RUN set -eux; \
set -eux tar -xf ${LINUX_FILE}; \
tar -xf ${LINUX_FILE} tar -kxzf ${MUSL_FILE}; \
tar -kxzf ${MUSL_FILE} tar -kxjf ${BUSYBOX_FILE}; \
tar -kxjf ${BUSYBOX_FILE} tar -kxf ${BINUTILS_FILE}; \
tar -kxf ${BINUTILS_FILE} tar -kxzf ${MAKE_FILE}; \
tar -kxzf ${MAKE_FILE} tar -kxf ${GCC_FILE}
tar -kxf ${GCC_FILE}
EOF
FROM extract as build FROM extract as build
WORKDIR ${MUSL_DIR} WORKDIR ${MUSL_DIR}
RUN <<-EOF RUN set -eux; \
set -eux ../musl-${MUSL_VERSION}/configure \
../musl-${MUSL_VERSION}/configure \ --prefix=/usr \
--prefix=/usr \ --build=${BUILD} \
--build=${BUILD} \ --host=${TARGET}; \
--host=${TARGET} make
make
EOF
WORKDIR ${BINUTILS_DIR} WORKDIR ${BINUTILS_DIR}
RUN <<-EOF RUN set -eux; \
set -eux ../binutils-${BINUTILS_VERSION}/configure \
../binutils-${BINUTILS_VERSION}/configure \ --build=${BUILD} \
--build=${BUILD} \ --host=${TARGET} \
--host=${TARGET} \ --prefix=/usr \
--prefix=/usr \ --bindir=/usr/bin \
--bindir=/usr/bin \ --mandir=/usr/share/man \
--mandir=/usr/share/man \ --infodir=/usr/share/info \
--infodir=/usr/share/info \ --sysconfdir=/etc \
--sysconfdir=/etc \ --disable-nls \
--disable-nls \ --disable-multilib \
--disable-multilib \ --disable-plugins \
--disable-plugins \ --disable-gprofng \
--disable-gprofng \ --enable-64-bit-bfd \
--enable-64-bit-bfd \ --enable-ld=default \
--enable-ld=default \ --enable-install-libiberty \
--enable-install-libiberty \ --enable-deterministic-archives; \
--enable-deterministic-archives make
make
EOF
WORKDIR ${MAKE_DIR} WORKDIR ${MAKE_DIR}
RUN <<-EOF RUN set -ex; \
set -eux ../make-${MAKE_VERSION}/configure \
../make-${MAKE_VERSION}/configure \ --build=${BUILD} \
--build=${BUILD} \ --host=${TARGET} \
--host=${TARGET} \ --prefix=/usr \
--prefix=/usr \ --mandir=/usr/share/man \
--mandir=/usr/share/man \ --infodir=/usr/share/info \
--infodir=/usr/share/info \ --disable-nls; \
--disable-nls
make make
EOF
WORKDIR ${GCC_DIR} WORKDIR ${GCC_DIR}
RUN <<-EOF RUN set -eux; \
set -eux cp ../*.tar.* ../gcc-${GCC_VERSION}; \
cp ../*.tar.* ../gcc-${GCC_VERSION} env -C ${HOME}/gcc-${GCC_VERSION} ./contrib/download_prerequisites; \
env -C ${HOME}/gcc-${GCC_VERSION} ./contrib/download_prerequisites ../gcc-${GCC_VERSION}/configure \
../gcc-${GCC_VERSION}/configure \ --build=${BUILD} \
--build=${BUILD} \ --host=${TARGET} \
--host=${TARGET} \ --target=${TARGET} \
--target=${TARGET} \ --prefix=/usr \
--prefix=/usr \ --mandir=/usr/share/man \
--mandir=/usr/share/man \ --infodir=/usr/share/info \
--infodir=/usr/share/info \ --libdir=/usr/lib \
--libdir=/usr/lib \ --disable-cet \
--disable-cet \ --disable-fixed-point \
--disable-fixed-point \ --disable-libstdcxx-pch \
--disable-libstdcxx-pch \ --disable-multilib \
--disable-multilib \ --disable-libsanitizer \
--disable-libsanitizer \ --disable-nls \
--disable-nls \ --disable-werror \
--disable-werror \ --enable-__cxa_atexit \
--enable-__cxa_atexit \ --enable-default-pie \
--enable-default-pie \ --enable-default-ssp \
--enable-default-ssp \ --enable-languages=c,c++ \
--enable-languages=c,c++ \ --enable-link-serialization=2 \
--enable-link-serialization=2 \ --enable-linker-build-id; \
--enable-linker-build-id make
make
EOF
WORKDIR ${BUSYBOX_DIR} WORKDIR ${BUSYBOX_DIR}
RUN <<-EOF RUN set -eux; \
set -eux setConfs=' \
setConfs=' \ CONFIG_LAST_SUPPORTED_WCHAR=0 \
CONFIG_LAST_SUPPORTED_WCHAR=0 \ CONFIG_STATIC=y \
CONFIG_STATIC=y \ '; \
' unsetConfs=' \
unsetConfs=' \ CONFIG_FEATURE_SYNC_FANCY \
CONFIG_FEATURE_SYNC_FANCY \ CONFIG_FEATURE_HAVE_RPC \
CONFIG_FEATURE_HAVE_RPC \ CONFIG_FEATURE_INETD_RPC \
CONFIG_FEATURE_INETD_RPC \ CONFIG_FEATURE_UTMP \
CONFIG_FEATURE_UTMP \ CONFIG_FEATURE_WTMP \
CONFIG_FEATURE_WTMP \ '; \
' make \
make \ -f ../busybox-${BUSYBOX_VERSION}/Makefile \
-f ../busybox-${BUSYBOX_VERSION}/Makefile \ KBUILD_SRC=../busybox-${BUSYBOX_VERSION} \
KBUILD_SRC=../busybox-${BUSYBOX_VERSION} \ CROSS_COMPILE=${TARGET}- \
CROSS_COMPILE=${TARGET}- \ defconfig; \
defconfig for conf in $unsetConfs; do \
for conf in $unsetConfs; do \ sed -i \
sed -i \ -e "s!^$conf=.*\$!# $conf is not set!" \
-e "s!^$conf=.*\$!# $conf is not set!" \ .config; \
.config done; \
done for confV in $setConfs; do \
for confV in $setConfs; do \ conf="${confV%=*}"; \
conf="${confV%=*}" sed -i \
sed -i \ -e "s!^$conf=.*\$!$confV!" \
-e "s!^$conf=.*\$!$confV!" \ -e "s!^# $conf is not set\$!$confV!" \
-e "s!^# $conf is not set\$!$confV!" \ .config; \
.config if ! grep -q "^$confV\$" .config; then \
if ! grep -q "^$confV\$" .config; then \ echo "$confV" >> .config; \
echo "$confV" >> .config; \ fi; \
fi done; \
done make oldconfig CROSS_COMPILE=${TARGET}-; \
make oldconfig CROSS_COMPILE=${TARGET}- for conf in $unsetConfs; do \
for conf in $unsetConfs; do ! grep -q "^$conf=" .config; \
! grep -q "^$conf=" .config done; \
done for confV in $setConfs; do \
for confV in $setConfs; do grep -q "^$confV\$" .config; \
grep -q "^$confV\$" .config done; \
done make CROSS_COMPILE=${TARGET}-
make CROSS_COMPILE=${TARGET}-
EOF
WORKDIR ${HOME}/linux-${LINUX_VERSION} WORKDIR ${HOME}/linux-${LINUX_VERSION}
RUN <<-EOF RUN set -eux; \
set -eux make ARCH=${ARCH} headers; \
make ARCH=${ARCH} headers find usr/include -name '.*' -delete; \
find usr/include -name '.*' -delete rm usr/include/Makefile; \
rm usr/include/Makefile rm usr/include/headers_check.pl; \
rm usr/include/headers_check.pl cp -rv usr/include ${LINUX_DIR}
cp -rv usr/include ${LINUX_DIR}
EOF
FROM build as install FROM build as install
USER 0:0 USER 0:0
RUN <<-EOF RUN set -eux; \
set -eux env -C ${BUSYBOX_DIR} make \
env -C ${BUSYBOX_DIR} make \ CROSS_COMPILE=${TARGET}- \
CROSS_COMPILE=${TARGET}- \ CONFIG_PREFIX=/rootfs \
CONFIG_PREFIX=/rootfs \ install ; \
install env -C ${MUSL_DIR} make DESTDIR=/rootfs install; \
env -C ${MUSL_DIR} make DESTDIR=/rootfs install env -C ${BINUTILS_DIR} make DESTDIR=/rootfs install; \
env -C ${BINUTILS_DIR} make DESTDIR=/rootfs install env -C ${MAKE_DIR} make DESTDIR=/rootfs install; \
env -C ${MAKE_DIR} make DESTDIR=/rootfs install env -C ${GCC_DIR} make DESTDIR=/rootfs install; \
env -C ${GCC_DIR} make DESTDIR=/rootfs install cp -Rv ${LINUX_DIR}/* /rootfs/usr/include/; \
cp -Rv ${LINUX_DIR}/* /rootfs/usr/include/ cd /rootfs/; \
cd /rootfs/ ln -sT /lib lib64; \
ln -sT /lib lib64 mkdir -p etc tmp var/tmp home/user; \
mkdir -p etc tmp var/tmp home/user echo "user:x:1000:" > etc/group; \
echo "user:x:1000:" > etc/group echo "user:x:1000:1000::/home/user:/bin/sh" > etc/passwd; \
echo "user:x:1000:1000::/home/user:/bin/sh" > etc/passwd chown -R 1000:1000 tmp var/tmp home/user; \
chown -R 1000:1000 tmp var/tmp home/user find /rootfs -exec touch -hcd "@0" "{}" +
find /rootfs -exec touch -hcd "@0" "{}" +
EOF
FROM scratch as package FROM scratch as package
COPY --from=install /rootfs / COPY --from=install /rootfs /

2
src/kernel/build.mk
View File

@ -14,5 +14,5 @@ out/linux-generic.tgz: \
out/perl.tgz \ out/perl.tgz \
out/zlib.tgz \ out/zlib.tgz \
out/flex.tgz \ out/flex.tgz \
out/elfutils.tgz out/libelf.tgz
$(call build,kernel,linux-generic) $(call build,kernel,linux-generic)