feat: Implement complete Zero OS Alpine Initramfs Builder

- Complete bash framework with strict error handling - Modular library system (docker, alpine, components, initramfs, kernel, testing) - Rust component integration (zinit, rfs, mycelium) with musl targeting - Rootless Docker/Podman support for GitHub Actions - Centralized configuration in config/build.conf - 2-stage module loading system - Strip + UPX optimization for minimal size - Complete zinit integration replacing OpenRC - GitHub Actions CI/CD pipeline - Comprehensive documentation and usage guides Components: - Latest stable kernel 6.12.44 - Alpine Linux 3.22 base - ThreeFold components: zinit, mycelium, rfs, corex - Target: ~8-12MB final initramfs.cpio.xz
2025-08-31 12:31:49 +02:00
commit 860b9aa161
81 changed files with 30118 additions and 0 deletions
--- a/configs/zinit/cgroup.yaml
+++ b/configs/zinit/cgroup.yaml
@@ -0,0 +1,2 @@
+exec: sh /etc/zinit/init/cgroup.sh
+oneshot: true
--- a/configs/zinit/console.yaml
+++ b/configs/zinit/console.yaml
@@ -0,0 +1,2 @@
+exec: /sbin/getty -L 9600 console
+restart: always
--- a/configs/zinit/depmod.yaml
+++ b/configs/zinit/depmod.yaml
@@ -0,0 +1 @@
+exec: depmod -a
--- a/configs/zinit/getty.yaml
+++ b/configs/zinit/getty.yaml
@@ -0,0 +1,2 @@
+exec: /sbin/getty -L 115200 ttyS0 vt100
+restart: always
--- a/configs/zinit/gettyconsole.yaml
+++ b/configs/zinit/gettyconsole.yaml
@@ -0,0 +1,2 @@
+exec: /sbin/getty console linux
+restart: always
--- a/configs/zinit/haveged.yaml
+++ b/configs/zinit/haveged.yaml
@@ -0,0 +1,2 @@
+exec: haveged -w 1024 -d 32 -i 32 -v 1
+oneshot: true
--- a/configs/zinit/init/ashloging.sh
+++ b/configs/zinit/init/ashloging.sh
@@ -0,0 +1,6 @@
+#!/bin/bash
+
+echo "start ash terminal"
+while true; do
+    getty -l /bin/ash -n 19200 tty2
+done
--- a/configs/zinit/init/cgroup.sh
+++ b/configs/zinit/init/cgroup.sh
@@ -0,0 +1,10 @@
+set -x
+
+mount -t tmpfs cgroup_root /sys/fs/cgroup
+
+subsys="pids cpuset cpu cpuacct blkio memory devices freezer net_cls perf_event net_prio hugetlb"
+
+for sys in $subsys; do
+    mkdir -p /sys/fs/cgroup/$sys
+    mount -t cgroup $sys -o $sys /sys/fs/cgroup/$sys/
+done
--- a/configs/zinit/init/modprobe.sh
+++ b/configs/zinit/init/modprobe.sh
@@ -0,0 +1,10 @@
+#!/bin/bash
+
+modprobe fuse
+modprobe btrfs
+modprobe tun
+modprobe br_netfilter
+
+echo never > /sys/kernel/mm/transparent_hugepage/enabled
+
+ulimit -n 524288
--- a/configs/zinit/init/ntpd.sh
+++ b/configs/zinit/init/ntpd.sh
@@ -0,0 +1,10 @@
+#!/bin/sh
+
+ntp_flags=$(grep -o 'ntp=.*' /proc/cmdline | sed 's/^ntp=//')
+
+params=""
+if [ -n "$ntp_flags" ]; then
+  params=$(echo "-p $ntp_flags" | sed s/,/' -p '/g)
+fi
+
+exec ntpd -n $params
--- a/configs/zinit/init/routing.sh
+++ b/configs/zinit/init/routing.sh
@@ -0,0 +1,4 @@
+#!/bin/bash
+
+echo "Enable ip forwarding"
+echo 1 > /proc/sys/net/ipv4/ip_forward
--- a/configs/zinit/init/shm.sh
+++ b/configs/zinit/init/shm.sh
@@ -0,0 +1,3 @@
+#!/bin/sh
+mkdir /dev/shm
+mount -t tmpfs shm /dev/shm 
--- a/configs/zinit/init/sshd-setup.sh
+++ b/configs/zinit/init/sshd-setup.sh
@@ -0,0 +1,15 @@
+#!/bin/ash
+if [ -f /etc/ssh/ssh_host_rsa_key ]; then
+    # ensure existing file permissions
+    chown root:root /etc/ssh/ssh_host_*
+    chmod 600 /etc/ssh/ssh_host_*
+    exit 0
+fi
+
+echo "Setting up sshd"
+mkdir -p /run/sshd
+
+ssh-keygen -f /etc/ssh/ssh_host_rsa_key -N '' -t rsa
+ssh-keygen -f /etc/ssh/ssh_host_dsa_key -N '' -t dsa
+ssh-keygen -f /etc/ssh/ssh_host_ecdsa_key -N '' -t ecdsa -b 521
+ssh-keygen -f /etc/ssh/ssh_host_ed25519_key -N '' -t ed25519
--- a/configs/zinit/init/udev.sh
+++ b/configs/zinit/init/udev.sh
@@ -0,0 +1,4 @@
+#!/bin/sh
+
+udevadm trigger --action=add
+udevadm settle
--- a/configs/zinit/lo.yaml
+++ b/configs/zinit/lo.yaml
@@ -0,0 +1,2 @@
+exec: ip l set lo up
+oneshot: true
--- a/configs/zinit/local-modprobe.yaml
+++ b/configs/zinit/local-modprobe.yaml
@@ -0,0 +1,2 @@
+exec: sh /etc/zinit/init/modprobe.sh
+oneshot: true
--- a/configs/zinit/mycelium.yaml
+++ b/configs/zinit/mycelium.yaml
@@ -0,0 +1,6 @@
+exec: /usr/bin/mycelium --key-file /tmp/mycelium_priv_key.bin
+  --tun-name my0 --silent --peers tcp://188.40.132.242:9651 tcp://136.243.47.186:9651
+  tcp://185.69.166.7:9651 tcp://185.69.166.8:9651 tcp://65.21.231.58:9651 tcp://65.109.18.113:9651
+  tcp://209.159.146.190:9651 tcp://5.78.122.16:9651 tcp://5.223.43.251:9651 tcp://142.93.217.194:9651
+after:
+  - network
--- a/configs/zinit/network.yaml
+++ b/configs/zinit/network.yaml
@@ -0,0 +1,5 @@
+exec: dhcpcd eth0
+after:
+  - depmod
+  - udevd
+  - udev-trigger
--- a/configs/zinit/ntp.yaml
+++ b/configs/zinit/ntp.yaml
@@ -0,0 +1,3 @@
+exec: sh /etc/zinit/init/ntpd.sh
+after:
+  - network
--- a/configs/zinit/routing.yaml
+++ b/configs/zinit/routing.yaml
@@ -0,0 +1,2 @@
+exec: sh /etc/zinit/init/routing.sh
+oneshot: true
--- a/configs/zinit/shm.yaml
+++ b/configs/zinit/shm.yaml
@@ -0,0 +1,2 @@
+exec: /etc/zinit/init/shm.sh
+oneshot: true
--- a/configs/zinit/sshd-setup.yaml
+++ b/configs/zinit/sshd-setup.yaml
@@ -0,0 +1,2 @@
+exec: sh /etc/zinit/init/sshd-setup.sh
+oneshot: true
--- a/configs/zinit/sshd.yaml
+++ b/configs/zinit/sshd.yaml
@@ -0,0 +1,3 @@
+exec: /usr/sbin/sshd -D -e
+after:
+    - sshd-setup
--- a/configs/zinit/udev-trigger.yaml
+++ b/configs/zinit/udev-trigger.yaml
@@ -0,0 +1,6 @@
+exec: sh /etc/zinit/init/udev.sh
+oneshot: true
+after:
+  - depmod
+  - udevmon
+  - udevd
--- a/configs/zinit/udevd.yaml
+++ b/configs/zinit/udevd.yaml
@@ -0,0 +1 @@
+exec: udevd
--- a/configs/zinit/udevmon.yaml
+++ b/configs/zinit/udevmon.yaml
@@ -0,0 +1 @@
+exec: udevadm monitor