vrr/ruvector
2
0
Fork 0
mirror of https://github.com/ruvnet/RuVector.git synced 2026-05-25 15:03:46 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
ruvector/crates/ruvix/aarch64-boot
History
Exact
rUv c88039734a feat(ruvix): implement CLI, kernel shell, and PBFT consensus (#261) 
* feat(ruvix): implement ADR-087 RuVix Cognition Kernel Phase A

Implements the complete Phase A (Linux-hosted) RuVix Cognition Kernel
with 9 crates, 760 tests, and comprehensive documentation.

## Core Crates (9)
- ruvix-types: 6 kernel primitives (Task, Capability, Region, Queue, Timer, Proof)
- ruvix-cap: seL4-inspired capability management with derivation trees
- ruvix-region: Memory regions (Immutable, AppendOnly, Slab policies)
- ruvix-queue: io_uring-style lock-free IPC with zero-copy semantics
- ruvix-proof: 3-tier proof engine (Reflex <100ns, Standard <100us, Deep <10ms)
- ruvix-sched: Coherence-aware scheduler with priority computation
- ruvix-boot: 5-stage RVF boot loader with ML-DSA-65 signatures
- ruvix-vecgraph: Kernel-resident vector/graph stores with HNSW
- ruvix-nucleus: Unified kernel entry point with 12 syscalls

## Security (SEC-001, SEC-002)
- Boot signature failure: PANIC immediately, no fallback path
- Proof cache: 100ms TTL, single-use nonces, max 64 entries
- Capability delegation depth: max 8 levels with audit warnings

## Architecture
- no_std compatible for Phase B bare metal port
- Proof-gated mutation: every state change requires cryptographic proof
- Capability-based access control: no syscall without valid capability
- Zero-copy IPC via region descriptors (TOCTOU protected)

## Documentation
- Main README with architecture diagrams
- Individual crate READMEs with usage examples
- Architecture decision records

Co-Authored-By: claude-flow <ruv@ruv.net>

* docs: update ADR-087 status and add RuVix to root README

- Update ADR-087 status from Proposed to Accepted (Phase A Implemented)
- Add implementation status table with all 9 crates and 760 tests
- Document security invariants implemented (SEC-001 through SEC-004)
- Add collapsed RuVix section to root README with architecture diagram

Co-Authored-By: claude-flow <ruv@ruv.net>

* chore: update ruvector-coherence dependency to 2.0.4 for crates.io publish

Co-Authored-By: claude-flow <ruv@ruv.net>

* feat(ruvix): implement ADR-087 Phase B bare metal AArch64 support

Phase B adds bare metal AArch64 support for the RuVix Cognition Kernel:

New crates:
- ruvix-hal: Hardware Abstraction Layer traits (~500 lines)
  - Console, InterruptController, Timer, Mmu, PowerManagement traits
  - Platform-agnostic design for ARM64/RISC-V/x86_64
  - 15 unit tests passing

- ruvix-aarch64: AArch64 boot and MMU support (~2,000 lines)
  - _start assembly entry, exception vectors
  - 4-level page tables with capability metadata
  - System register accessors (SCTLR_EL1, TCR_EL1, TTBR0/1)
  - Implements ruvix_hal::Mmu trait

- ruvix-drivers: Device drivers for QEMU virt (~1,500 lines)
  - PL011 UART driver (115200 8N1, FIFO, interrupts)
  - GIC-400 interrupt controller (256 IRQs, 16 priorities)
  - ARM Generic Timer (deadline scheduling)
  - Volatile MMIO with memory barriers (DMB, DSB, ISB)

Build infrastructure:
- aarch64-boot/ with linker script and custom Rust target
- QEMU virt runner integration (Cortex-A72, 128MB RAM)
- Makefile with build/run/debug targets

ADR-087 updated with:
- Phase B objectives and new crate specifications
- QEMU virt memory map (128MB RAM at 0x40000000)
- 5-stage boot sequence documentation
- Security enhancements and testing strategy
- Raspberry Pi 4/5 platform differences

Co-Authored-By: claude-flow <ruv@ruv.net>

* feat(ruvix): implement Phases C/D/E and QEMU swarm simulation

This adds full bare metal OS capabilities to the RuVix Cognition Kernel:

## Phase C: Multi-Core & DMA Support
- ruvix-smp: Symmetric multi-processing (256 cores, spinlocks, IPIs)
- ruvix-dma: DMA controller with scatter-gather
- ruvix-dtb: Device tree blob parser
- ruvix-physmem: Buddy allocator for physical memory

## Phase D: Raspberry Pi 4/5 Support
- ruvix-bcm2711: BCM2711/2712 SoC drivers (GPIO, mailbox, UART)
- ruvix-rpi-boot: RPi boot support (spin table, early UART)

## Phase E: Networking & Filesystem
- ruvix-net: Full network stack (Ethernet/ARP/IPv4/UDP/ICMP)
- ruvix-fs: Filesystem layer (VFS, FAT32, RamFS)

## QEMU Swarm Simulation
- qemu-swarm: Multi-QEMU cluster for distributed testing
- Network topologies: mesh, ring, star, tree
- Fault injection and chaos testing scenarios

## Summary
- 10 new crates, ~27,000 lines of code
- 400+ new tests passing
- ADR-087 updated with Phases C/D/E documentation
- Main README updated with all phases

Co-Authored-By: claude-flow <ruv@ruv.net>

* fix(ruvix): address critical security vulnerabilities CVE-001 through CVE-005

Security fixes applied from deep review audit:

- CVE-001 (CRITICAL): Add compile-time protection preventing
  `disable-boot-verify` feature in release builds. This closes
  a boot signature bypass vulnerability.

- CVE-002 (HIGH): Add MMIO address validation to GIC driver.
  `Gic::new()` now returns `Result<Self, GicError>` and validates
  addresses against known platform ranges. Added `new_unchecked()`
  for trusted callers.

- CVE-003 (HIGH): Add integer overflow protection in DTB parser.
  All offset calculations now use `checked_add()` to prevent
  buffer overflow via crafted DTB files.

- CVE-005 (HIGH): Add IPv4 header validation ensuring
  `total_length >= header_len` per RFC 791.

Also includes test fixes:
- Mark hardware-dependent tests as `#[ignore]` (MMIO, ARM timer)
- Fix swap32 test assertion in rpi-boot
- Update doctests for new GIC API

All 259 tests pass across affected crates.

Co-Authored-By: claude-flow <ruv@ruv.net>

* feat(ruvix): implement CLI, kernel shell, and PBFT consensus

Implements Phase F features for the RuVix Cognition Kernel:

CLI (ruvix-cli):
- build: Cross-compile kernel for AArch64 targets
- config: Manage kernel configuration files
- dtb: Device tree blob operations (validate, dump, compile, compare, search)
- flash: UART/serial flash operations with progress reporting
- keys: Ed25519 key management with secure storage
- monitor: Real-time kernel metrics dashboard
- security: Security audit and vulnerability scanning

Kernel Shell (ruvix-shell):
- Interactive command parser with history support
- Commands: help, info, mem, tasks, caps, vectors, witness, proofs,
  queues, perf, cpu, trace, reboot
- Configurable prompt with trace mode indication
- Shell backend integration with nucleus kernel

PBFT Consensus (qemu-swarm):
- Full PBFT implementation (pre-prepare, prepare, commit phases)
- View change protocol for leader recovery
- Checkpoint mechanism for state synchronization
- Custom serde wrappers for fixed-size byte arrays (Signature, HashDigest)
- Byzantine fault tolerance (f < n/3)

Additional:
- Example RVF swarm consensus demo
- Nucleus shell backend for kernel introspection
- Fixed chrono DateTime type annotation in keys.rs

Co-Authored-By: claude-flow <ruv@ruv.net>

* chore(ruvix): add version specs for crates.io publishing

- Add version = "0.1.0" to ruvix-dtb dependency in CLI
- Add README.md for ruvix-shell crate

Co-Authored-By: claude-flow <ruv@ruv.net>

---------

Co-authored-by: Reuven <cohen@ruv-mac-mini.local>
2026-03-14 16:25:03 -04:00
..
.cargo feat(ruvix): implement CLI, kernel shell, and PBFT consensus (#261) 2026-03-14 16:25:03 -04:00
aarch64-ruvix.json feat(ruvix): implement CLI, kernel shell, and PBFT consensus (#261) 2026-03-14 16:25:03 -04:00
build.rs feat(ruvix): implement CLI, kernel shell, and PBFT consensus (#261) 2026-03-14 16:25:03 -04:00
linker.ld feat(ruvix): implement CLI, kernel shell, and PBFT consensus (#261) 2026-03-14 16:25:03 -04:00
Makefile feat(ruvix): implement CLI, kernel shell, and PBFT consensus (#261) 2026-03-14 16:25:03 -04:00
README.md feat(ruvix): implement CLI, kernel shell, and PBFT consensus (#261) 2026-03-14 16:25:03 -04:00

README.md

RuVix AArch64 Boot Infrastructure

Bare metal boot infrastructure for RuVix on AArch64 architecture.

Overview

This directory contains the build infrastructure for creating a bootable RuVix kernel for AArch64 systems, specifically targeting QEMU's virt machine with Cortex-A72 CPU.

Architecture

Memory Layout

  • Base Address: 0x40000000 (1 GiB)
  • RAM Size: 128 MiB
  • Stack Size: 64 KiB
  • Heap: Dynamic, from __heap_start to end of RAM

Memory Sections

0x40000000  .text.boot    Boot code (KEEP enforced)
            .text         Code section
            .rodata       Read-only data (4K aligned)
            .data         Initialized data (4K aligned)
            .bss          Uninitialized data (4K aligned)
            __stack       64K stack
            __heap        Heap to end of RAM

Files

Build Configuration

  • linker.ld: Linker script defining memory layout and sections
  • aarch64-ruvix.json: Custom Rust target specification for bare metal AArch64
  • .cargo/config.toml: Cargo build configuration
  • build.rs: Build script to link with custom linker script
  • Makefile: Build automation with QEMU integration

Prerequisites

Required Tools

# Rust nightly (for build-std)
rustup default nightly

# QEMU for AArch64
# macOS
brew install qemu

# Ubuntu/Debian
sudo apt-get install qemu-system-aarch64

# Fedora
sudo dnf install qemu-system-aarch64

Rust Components

rustup component add rust-src
rustup component add llvm-tools-preview

Building

Quick Build

make build

This runs:

cargo build --release

Build Details

The build process:

  1. Compiles with custom target aarch64-ruvix.json
  2. Links using linker.ld script via rust-lld
  3. Builds Rust core libraries from source (build-std)
  4. Creates a bare metal binary at target/aarch64-ruvix/release/ruvix-kernel

Running

Run in QEMU

make run

This executes:

qemu-system-aarch64 \
    -machine virt \
    -cpu cortex-a72 \
    -m 128M \
    -nographic \
    -kernel target/aarch64-ruvix/release/ruvix-kernel

Debug in QEMU

make debug

This starts QEMU with GDB server on port 1234:

qemu-system-aarch64 \
    -machine virt \
    -cpu cortex-a72 \
    -m 128M \
    -nographic \
    -s -S \
    -kernel target/aarch64-ruvix/release/ruvix-kernel

Then in another terminal:

gdb-multiarch target/aarch64-ruvix/release/ruvix-kernel
(gdb) target remote :1234
(gdb) continue

Target Specification

The aarch64-ruvix.json target:

  • Architecture: AArch64
  • OS: None (bare metal)
  • Panic: Abort (no unwinding)
  • Red Zone: Disabled (required for bare metal)
  • Features: Strict alignment, NEON, FP-ARMv8
  • Linker: rust-lld (LLD linker from LLVM)

Memory Map (QEMU virt)

The QEMU virt machine provides:

Address Range Device
0x00000000 - 0x08000000 Flash (128 MiB)
0x08000000 - 0x09000000 Device memory
0x09000000 - 0x09010000 UART (PL011)
0x40000000 - 0x48000000 RAM (128 MiB)

Our kernel is loaded at 0x40000000 (RAM base).

Customization

Changing RAM Size

Edit linker.ld:

MEMORY {
    RAM (rwx) : ORIGIN = 0x40000000, LENGTH = 256M  /* 256 MiB */
}

And Makefile:

-m 256M

Changing Stack Size

Edit linker.ld:

. = . + 128K;  /* 128 KiB stack */

Adding Sections

Edit linker.ld to add custom sections:

.custom_section : ALIGN(4K) {
    __custom_start = .;
    *(.custom)
    __custom_end = .;
} > RAM

Troubleshooting

Build Errors

Error: error: linking with 'rust-lld' failed

  • Ensure llvm-tools-preview is installed: rustup component add llvm-tools-preview

Error: error: requires nightly

  • Switch to nightly: rustup default nightly

Error: can't find crate for 'core'

  • Install rust-src: rustup component add rust-src

Runtime Issues

QEMU doesn't start

  • Verify QEMU is installed: qemu-system-aarch64 --version
  • Check kernel exists: ls -lh target/aarch64-ruvix/release/ruvix-kernel

Kernel crashes immediately

  • Ensure _start symbol is defined in your kernel
  • Check that .text.boot section contains the entry point
  • Verify stack is properly initialized before calling Rust code

Next Steps

  1. Create src/main.rs with _start entry point
  2. Implement UART driver for console output
  3. Set up page tables and MMU
  4. Initialize heap allocator
  5. Add interrupt handling

References

License

Part of the RuVector project.