Skip to content

osservatorionessuno/cantina-os

BranchesTags

Repository files navigation

CantinaOS

This repository contains instructions, assets and tips for building, running and developing an image for amnesic tor linux.

Some basic assumption are:

  • this is only a script around stimages project
  • the image is debian
  • docker is not mandatory, but really reccomanded for building

What to expect from this repo:

  • build the image for stboot
  • build the image for the real live OS (aka CantinaOS)

TODOs

  • smaller stboot kernel conf
  • automatic set up all devices to able to detect connected cables

Basic setup

Setup root pwd

echo "my root pwd" >> config/cantina/pw.root

Pick up patela patela build and place in config/cantina/overlays/vanilla/usr/sbin/patela.

Dev setup

There are some deps to install, if you are on debian you can run

apt-get -qq update
apt-get install -qqy ca-certificates make cpio mmdebstrap libsystemd-shared

go install system-transparency.org/[email protected]
go install system-transparency.org/[email protected]

Or there is a pre-build docker image that you can compile with

docker build -t cantinaos .

Dev

Build the image

docker run --rm -it -v $PWD:/stimages cantina/stboot:latest make

Build the stboot live image

docker run --rm -it -v $PWD:/stimages cantina/stboot:latest make stboot-iso

Then to share the image for simulating a real-world scenario

docker run --name stboot -v $PWD/build:/usr/share/nginx/html -d -p 8080:80 nginx

In order to test with qemu you need edk2-ovmf.

qemu-system-x86_64 \
    -m 8G \
    -accel kvm \
    -accel tcg \
    -pidfile qemu.pid \
    -no-reboot \
    -nographic \
    -rtc base=localtime \
    -drive if=pflash,format=raw,file=/usr/share/OVMF/x64/OVMF_CODE.4m.fd,readonly=on \
    -drive if=pflash,format=raw,file=/usr/share/OVMF/x64/OVMF_VARS.4m.fd \
    -object rng-random,filename=/dev/urandom,id=rng0 \
    -device virtio-rng-pci,rng=rng0 \
    -drive file="stimages/build/stboot.iso",format=raw,if=none,media=cdrom,id=drive-cd1,readonly=on \
    -device ahci,id=ahci0 -device ide-cd,bus=ahci0.0,drive=drive-cd1,id=cd1,bootindex=1

Se vuoi invece testare solo l'immagine

qemu-system-x86_64 \
    -m 8G \
    -accel kvm \
    -accel tcg \
    -pidfile qemu.pid \
    -no-reboot \
    -nographic \
    -kernel stimages/build/debian-bookworm-amd64.vmlinuz \
    -initrd stimages/build/debian-bookworm-amd64.cpio.gz \
    -append "console=ttyS0,115200n8 ro rdinit=/lib/systemd/systemd systemd.log_level=debug"

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages