Merge pull request #373 from sysprog21/devtools

Add QEMU-based devtools

Author: jserv

.github/workflows/devtools-release.yaml

@@ -0,0 +1,128 @@
+name: devtools-release
+
+on:
+  push:
+    branches: [ master ]
+    paths:
+      - 'devtools/config.defaults'
+      - 'devtools/kernel.config'
+      - 'devtools/initramfs/init'
+      - 'devtools/setup.sh'
+      - 'devtools/pack-prebuilt.sh'
+
+  workflow_dispatch:
+
+permissions:
+  contents: write
+
+concurrency:
+  group: devtools-release
+  cancel-in-progress: true
+
+jobs:
+  build-and-release:
+    runs-on: ubuntu-24.04
+    timeout-minutes: 45
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v6
+
+      - name: Install dependencies
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y --no-install-recommends \
+            build-essential bc flex bison libelf-dev libssl-dev \
+            cpio rsync
+
+      - name: Compute release tag
+        id: tag
+        run: |
+          . devtools/config.defaults
+          case "$(uname -m)" in
+            x86_64|amd64) HOST_ARCH=x86_64 ;;
+            aarch64|arm64) HOST_ARCH=arm64 ;;
+            *) HOST_ARCH=$(uname -m) ;;
+          esac
+          HASH=$(cat \
+            devtools/kernel.config \
+            devtools/config.defaults \
+            devtools/initramfs/init \
+            devtools/setup.sh \
+            devtools/pack-prebuilt.sh \
+            2>/dev/null | sha256sum | cut -c1-8)
+          TAG="devtools-v${KERNEL_VERSION}-${HOST_ARCH}-${HASH}"
+          echo "tag=$TAG" >> "$GITHUB_OUTPUT"
+          echo "kernel_version=$KERNEL_VERSION" >> "$GITHUB_OUTPUT"
+          echo "host_arch=$HOST_ARCH" >> "$GITHUB_OUTPUT"
+          echo "Release tag: $TAG"
+
+      - name: Check if release already exists
+        id: existing
+        run: |
+          if gh release view "${{ steps.tag.outputs.tag }}" >/dev/null 2>&1; then
+            echo "exists=true" >> "$GITHUB_OUTPUT"
+            echo "Release ${{ steps.tag.outputs.tag }} already exists, skipping build."
+          else
+            echo "exists=false" >> "$GITHUB_OUTPUT"
+          fi
+        env:
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Restore kernel source cache
+        if: steps.existing.outputs.exists == 'false'
+        uses: actions/cache@v5
+        with:
+          path: |
+            devtools/.cache/linux-*.tar.xz
+            devtools/.cache/linux-*/
+          key: devtools-kernel-src-${{ runner.os }}-${{ hashFiles('devtools/config.defaults') }}
+
+      - name: Restore kernel build cache
+        if: steps.existing.outputs.exists == 'false'
+        uses: actions/cache@v5
+        with:
+          path: devtools/.cache/kernel-build
+          key: devtools-kernel-build-${{ runner.os }}-${{ steps.tag.outputs.host_arch }}-${{ hashFiles('devtools/config.defaults', 'devtools/kernel.config') }}
+
+      - name: Restore busybox cache
+        if: steps.existing.outputs.exists == 'false'
+        uses: actions/cache@v5
+        with:
+          path: |
+            devtools/.cache/busybox-*.tar.bz2
+            devtools/.cache/busybox-*/
+          key: devtools-busybox-${{ runner.os }}-${{ hashFiles('devtools/config.defaults') }}
+
+      - name: Build kernel and initramfs
+        if: steps.existing.outputs.exists == 'false'
+        run: devtools/setup.sh
+
+      - name: Pack prebuilt tarball
+        if: steps.existing.outputs.exists == 'false'
+        run: devtools/pack-prebuilt.sh
+
+      - name: Publish release
+        if: steps.existing.outputs.exists == 'false'
+        run: |
+          TAG="${{ steps.tag.outputs.tag }}"
+          KVER="${{ steps.tag.outputs.kernel_version }}"
+          TARBALL=$(ls devtools/.cache/lkmpg-prebuilt-*.tar.xz)
+
+          gh release create "$TAG" "$TARBALL" \
+            --title "devtools: kernel $KVER prebuilt (${{ steps.tag.outputs.host_arch }})" \
+            --notes "$(cat <<EOF
+          Prebuilt kernel build output for lkmpg devtools.
+
+          - Kernel: $KVER
+          - Host arch: ${{ steps.tag.outputs.host_arch }}
+          - Inputs hash: $(echo "$TAG" | sed 's/.*-//')
+          - Contents: bzImage, kbuild headers/scripts, initramfs
+
+          Used automatically by \`devtools/setup.sh\` to skip the ~15 min kernel build.
+          The kernel source tarball is still downloaded from kernel.org (required for out-of-tree module compilation).
+          vmlinux is not included; rebuild from source for GDB debugging.
+          EOF
+          )" \
+            --prerelease
+        env:
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}

.github/workflows/status-check.yaml

@@ -19,17 +19,26 @@ jobs:
   detect-changes:
     runs-on: ubuntu-24.04
     outputs:
-      examples_changed: ${{ steps.changed-files.outputs.any_changed }}
+      examples_changed: ${{ steps.changed-examples.outputs.any_changed }}
+      devtools_changed: ${{ steps.changed-devtools.outputs.any_changed }}
     steps:
       - name: Checkout code
         uses: actions/checkout@v6
       - name: Detect changed example files
-        id: changed-files
+        id: changed-examples
         uses: tj-actions/changed-files@v47
         with:
           files: |
             examples/**
             .ci/**
+      - name: Detect changed devtools files
+        id: changed-devtools
+        uses: tj-actions/changed-files@v47
+        with:
+          files: |
+            devtools/**
+            examples/**
+            .ci/non-working
 
   lint:
     needs: detect-changes
@@ -131,12 +140,95 @@ jobs:
           path: ${{ runner.temp }}/status-check-logs
           if-no-files-found: ignore
 
+  devtools-check:
+    needs: detect-changes
+    if: ${{ github.event_name == 'workflow_dispatch' ||
+            needs.detect-changes.outputs.devtools_changed == 'true' }}
+    runs-on: ubuntu-24.04
+    timeout-minutes: 5
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v6
+      - name: Install shellcheck
+        run: sudo apt-get update && sudo apt-get install -y --no-install-recommends shellcheck
+      - name: Run devtools offline checks
+        run: devtools/check.sh
+
+  devtools-qemu:
+    needs:
+      - detect-changes
+      - devtools-check
+    if: ${{ github.event_name == 'workflow_dispatch' ||
+            needs.detect-changes.outputs.devtools_changed == 'true' }}
+    runs-on: ubuntu-24.04
+    timeout-minutes: 45
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v6
+      - name: Install dependencies
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y --no-install-recommends \
+            build-essential bc flex bison libelf-dev libssl-dev \
+            cpio qemu-system-x86
+      - name: Restore kernel source cache
+        uses: actions/cache@v5
+        with:
+          path: |
+            devtools/.cache/linux-*.tar.xz
+            devtools/.cache/linux-*/
+          key: devtools-kernel-src-${{ runner.os }}-${{ hashFiles('devtools/config.defaults') }}
+      - name: Restore kernel build cache
+        uses: actions/cache@v5
+        with:
+          path: devtools/.cache/kernel-build
+          key: devtools-kernel-build-${{ runner.os }}-${{ hashFiles('devtools/config.defaults', 'devtools/kernel.config') }}
+          restore-keys: |
+            devtools-kernel-build-${{ runner.os }}-
+      - name: Restore busybox cache
+        uses: actions/cache@v5
+        with:
+          path: |
+            devtools/.cache/busybox-*.tar.bz2
+            devtools/.cache/busybox-*/
+          key: devtools-busybox-${{ runner.os }}-${{ hashFiles('devtools/config.defaults') }}
+      - name: Restore initramfs cache
+        uses: actions/cache@v5
+        with:
+          path: |
+            devtools/.cache/initramfs
+            devtools/.cache/initramfs.cpio.gz
+            devtools/.cache/.initramfs-stamp
+          key: devtools-initramfs-${{ runner.os }}-${{ hashFiles('devtools/config.defaults', 'devtools/initramfs/init') }}
+      - name: Build kernel and initramfs
+        run: devtools/setup.sh
+      - name: Build kernel modules
+        run: devtools/build-modules.sh
+      - name: Run QEMU module tests
+        timeout-minutes: 10
+        run: devtools/test-modules.sh --no-build
+      - name: Collect guest log
+        if: failure()
+        run: |
+          mkdir -p "${{ runner.temp }}/devtools-logs"
+          sudo dmesg --color=never | tail -n 200 \
+            > "${{ runner.temp }}/devtools-logs/dmesg.log" 2>/dev/null || true
+      - name: Upload diagnostics
+        if: failure()
+        uses: actions/upload-artifact@v7
+        with:
+          name: devtools-qemu-logs
+          path: ${{ runner.temp }}/devtools-logs
+          if-no-files-found: ignore
+
   validate:
     needs:
       - detect-changes
       - lint
       - static-analysis
       - build-and-run
+      - devtools-check
+      - devtools-qemu
     if: ${{ always() }}
     runs-on: ubuntu-24.04
     steps:
@@ -146,19 +238,32 @@ jobs:
           result_lint="${{ needs.lint.result }}"
           result_sa="${{ needs.static-analysis.result }}"
           result_bar="${{ needs.build-and-run.result }}"
-          changed="${{ needs.detect-changes.outputs.examples_changed }}"
+          result_check="${{ needs.devtools-check.result }}"
+          result_qemu="${{ needs.devtools-qemu.result }}"
+          examples_changed="${{ needs.detect-changes.outputs.examples_changed }}"
+          devtools_changed="${{ needs.detect-changes.outputs.devtools_changed }}"
 
           if [[ "${result_detect}" != "success" ]]; then
             echo "Change-detection job did not succeed: ${result_detect}"
             exit 1
           fi
 
-          # When examples changed (or manual dispatch), jobs must succeed
-          if [[ "${changed}" == "true" || "${{ github.event_name }}" == "workflow_dispatch" ]]; then
+          # When examples changed (or manual dispatch), lint/analysis/build jobs must succeed
+          if [[ "${examples_changed}" == "true" || "${{ github.event_name }}" == "workflow_dispatch" ]]; then
             for r in "${result_lint}" "${result_sa}" "${result_bar}"; do
               if [[ "${r}" != "success" ]]; then
                 echo "Required job did not succeed: ${r}"
                 exit 1
               fi
             done
           fi
+
+          # When devtools or examples changed (or manual dispatch), devtools jobs must succeed
+          if [[ "${devtools_changed}" == "true" || "${{ github.event_name }}" == "workflow_dispatch" ]]; then
+            for r in "${result_check}" "${result_qemu}"; do
+              if [[ "${r}" != "success" ]]; then
+                echo "devtools job did not succeed: ${r}"
+                exit 1
+              fi
+            done
+          fi

.gitignore

@@ -40,3 +40,7 @@ lkmpg.synctex.gz
 
 # format checks
 expected-format
+
+# devtools build cache and local overrides
+devtools/.cache/
+devtools/config.local

devtools/boot.sh

@@ -0,0 +1,89 @@
+#!/usr/bin/env bash
+
+# devtools/boot.sh -- launch QEMU with the lkmpg kernel and initramfs.
+# The project root is shared into the guest via 9p virtfs at /mnt/lkmpg/.
+#
+# Usage:
+#   devtools/boot.sh              # interactive shell
+#   devtools/boot.sh --gdb        # wait for GDB on localhost:1234
+#   devtools/boot.sh --test CMD   # run CMD in guest, exit with its status
+#   devtools/boot.sh -- EXTRA     # pass extra args to QEMU
+
+set -euo pipefail
+
+DEVTOOLS_DIR="$(cd "$(dirname "$0")" && pwd)"
+PROJECT_ROOT="$(cd "$DEVTOOLS_DIR/.." && pwd)"
+. "$DEVTOOLS_DIR/config.defaults"
+[ -f "$DEVTOOLS_DIR/config.local" ] && . "$DEVTOOLS_DIR/config.local"
+
+die() { echo "ERROR: $*" >&2; exit 1; }
+
+base64_nowrap() {
+    base64 | tr -d '\n'
+}
+
+# Parse arguments before expensive checks so --help works without setup
+GDB_MODE=0
+TEST_CMD=""
+EXTRA_QEMU_ARGS=()
+
+while [ $# -gt 0 ]; do
+    case "$1" in
+        --gdb)      GDB_MODE=1; shift ;;
+        --test)     shift; TEST_CMD="${1:?--test requires a command}"; shift ;;
+        --)         shift; EXTRA_QEMU_ARGS=("$@"); break ;;
+        -h|--help)
+            echo "Usage: $0 [--gdb] [--test CMD] [-- QEMU_ARGS...]"
+            exit 0 ;;
+        *)          die "Unknown option: $1" ;;
+    esac
+done
+
+BZIMAGE="$KERNEL_BUILD/arch/x86/boot/bzImage"
+[ -f "$BZIMAGE" ] || die "Kernel not built. Run devtools/setup.sh first."
+[ -f "$INITRAMFS_CPIO" ] || die "Initramfs not built. Run devtools/setup.sh first."
+command -v "$QEMU_BIN" >/dev/null 2>&1 || die "$QEMU_BIN not found. Install QEMU."
+
+# Kernel command line
+KCMD="console=ttyS0 loglevel=7 nokaslr"
+if [ -n "$TEST_CMD" ]; then
+    # Base64-encode the command to survive kernel cmdline word-splitting.
+    # Strip newlines portably so this works with both GNU and BSD base64.
+    # The init script decodes it before execution.
+    KCMD="$KCMD lkmpg.cmd64=$(printf '%s' "$TEST_CMD" | base64_nowrap)"
+fi
+
+# Build QEMU arguments
+QEMU_ARGS=(
+    -kernel "$BZIMAGE"
+    -initrd "$INITRAMFS_CPIO"
+    -nographic
+    -m "$QEMU_MEM"
+    -smp "$QEMU_SMP"
+    -no-reboot
+    -virtfs "local,id=lkmpg,path=$PROJECT_ROOT,security_model=none,mount_tag=lkmpg"
+    -append "$KCMD"
+)
+
+# KVM acceleration (Linux only, when available)
+if [ -w /dev/kvm ] 2>/dev/null; then
+    QEMU_ARGS+=(-enable-kvm -cpu host)
+fi
+
+# GDB mode: start paused, waiting for debugger
+if [ "$GDB_MODE" -eq 1 ]; then
+    QEMU_ARGS+=(-gdb "tcp::$QEMU_GDB_PORT" -S)
+    echo "QEMU waiting for GDB on localhost:$QEMU_GDB_PORT"
+    if [ -f "$KERNEL_BUILD/vmlinux" ]; then
+        echo "Connect with: gdb $KERNEL_BUILD/vmlinux -ex 'target remote :$QEMU_GDB_PORT'"
+    else
+        echo "WARNING: vmlinux not found (prebuilt kernels exclude it for size)."
+        echo "Rebuild from source for full GDB support: LKMPG_NO_PREBUILT=1 devtools/setup.sh"
+        echo "Connect with: gdb -ex 'target remote :$QEMU_GDB_PORT'"
+    fi
+fi
+
+# Append any extra user-provided QEMU args
+QEMU_ARGS+=("${EXTRA_QEMU_ARGS[@]+"${EXTRA_QEMU_ARGS[@]}"}")
+
+exec "$QEMU_BIN" "${QEMU_ARGS[@]}"