Earthbound: Difference between revisions
(Created page with "{{stub}}thumb|right|The Earthbound emblem.'''Earthbound''' is a network and system agnostic software procurement system, designed to obtain and consume software packages in various formats and manage them in concert together at once. Category:Byblos components") |
(update page) |
||
| Line 1: | Line 1: | ||
{{ | {{infobox swproj | ||
|name=Earthbound | |||
|image=Earthbound.jpg | |||
|by=Alexander Nicholi | |||
|langs={{wp|Unix shell|POSIX <tt>sh</tt>}} | |||
|lic=[[Artisan Software Licence#ASL 1.1|ASL 1.1]] | |||
}}'''Earthbound''' is a network- and system-agnostic software procurement system, designed to obtain and consume software packages in various formats and manage them in concert together at once. | |||
==Background and purpose== | |||
Earthbound is part of the '''developmental quartet''' alongside [[Inbound]], [[Outbound]] and [[Rebound]]. It arose out of the need to acquire and integrate upstream software sources in a way that presumes as little as practical about the file structure or network availability of the source. Initially, this meant upstream cryptography libraries for [[Hinterlib]] which cannot be brought in-tree since doing so would undermine the confidence of the routines' security. | |||
==Design== | |||
Earthbound only concerns itself with what we will call '''files of interest'''. These are files, often source code, that may come in from anywhere over the network, that were selected by the downstream developer to contain in good faith the data they need. Earthbound keeps SHA-3 hashes of these files of interest and uses them to verify the files' authenticity. | |||
Beyond acquisition, Earthbound has a know-nothing approach, giving developers total discretion on what to do with these files after they have been downloaded and verified. This is true to its purpose of software procurement, which exalts the Unix philosophy of doing one thing and doing it well. | |||
===Configuration file=== | |||
Earthbound uses a simple INI file structure to define a collection of files of interest along with their hashes and details on where they may be found. Observe: | |||
<div class="mw-code"><span style="color:rgba(24,24,24,0.333)"># is used for comments, not ;<br/># must be at the start of a logical line<br/>	 # leading space is OK though</span><br/><span style="color:hsl(212,60%,40%)">[</span><span style="color:hsl(212,55%,55%)">file1.c</span><span style="color:hsl(212,60%,40%)">]</span><br/>sha2sum<span style="color:rgba(24,24,24,0.667)">=</span>70d181c0bebbac369cddb65e6304e55a8efdcef50589154faf30390fdc6a1427<br/><span style="color:rgba(24,24,24,0.333)"># at least one is required, but multiple may be given<br/># if so, all hashes are checked</span><br/>sha3sum<span style="color:rgba(24,24,24,0.667)">=</span>4e9e5320e30e44ff31463806d5578fbfdc9212f32d2e9dd41998d0a8aaf830c9<br/><span style="color:rgba(24,24,24,0.333)"># all of these URLs are candidates and may be tried in any order</span><br/>source<span style="color:rgba(24,24,24,0.667)">=</span>https<span></span>://www.example.com/file1.c<br/>source<span style="color:rgba(24,24,24,0.667)">=</span>https<span></span>://www.example.de/file1.c<br/>source<span style="color:rgba(24,24,24,0.667)">=</span>ftp<span></span>://ftp.example.ch/srv/file1.c</div> | |||
For Earthbound's INI files, the following schema rules apply: | |||
# all key–value pairs must appear under a section heading (there is no "global section") | |||
# only ASCII is permitted, except within comments, where the high bit may be set to passively allow UTF-8 | |||
# all URIs must be valid UTF-8 and legalised into ASCII via {{wp|percent-encoding}} | |||
# comments begin with the hash symbol <code>#</code>, not the semicolon <code>;</code> | |||
# file names are specified as the contents of the section name in whole | |||
# file names cannot constitute paths; no directory component is permitted | |||
[[Category:Byblos components]] | [[Category:Byblos components]] | ||
Revision as of 08:44, 9 April 2025
| Earthbound | |||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| |||||||||||
| Created by | Alexander Nicholi | ||||||||||
| Written in | POSIX sh | ||||||||||
| Licence | ASL 1.1 | ||||||||||
Earthbound is a network- and system-agnostic software procurement system, designed to obtain and consume software packages in various formats and manage them in concert together at once.
Background and purpose
Earthbound is part of the developmental quartet alongside Inbound, Outbound and Rebound. It arose out of the need to acquire and integrate upstream software sources in a way that presumes as little as practical about the file structure or network availability of the source. Initially, this meant upstream cryptography libraries for Hinterlib which cannot be brought in-tree since doing so would undermine the confidence of the routines' security.
Design
Earthbound only concerns itself with what we will call files of interest. These are files, often source code, that may come in from anywhere over the network, that were selected by the downstream developer to contain in good faith the data they need. Earthbound keeps SHA-3 hashes of these files of interest and uses them to verify the files' authenticity.
Beyond acquisition, Earthbound has a know-nothing approach, giving developers total discretion on what to do with these files after they have been downloaded and verified. This is true to its purpose of software procurement, which exalts the Unix philosophy of doing one thing and doing it well.
Configuration file
Earthbound uses a simple INI file structure to define a collection of files of interest along with their hashes and details on where they may be found. Observe:
# must be at the start of a logical line
# leading space is OK though
[file1.c]
sha2sum=70d181c0bebbac369cddb65e6304e55a8efdcef50589154faf30390fdc6a1427
# at least one is required, but multiple may be given
# if so, all hashes are checked
sha3sum=4e9e5320e30e44ff31463806d5578fbfdc9212f32d2e9dd41998d0a8aaf830c9
# all of these URLs are candidates and may be tried in any order
source=https://www.example.com/file1.c
source=https://www.example.de/file1.c
source=ftp://ftp.example.ch/srv/file1.c
For Earthbound's INI files, the following schema rules apply:
- all key–value pairs must appear under a section heading (there is no "global section")
- only ASCII is permitted, except within comments, where the high bit may be set to passively allow UTF-8
- all URIs must be valid UTF-8 and legalised into ASCII via percent-encoding
- comments begin with the hash symbol
#, not the semicolon; - file names are specified as the contents of the section name in whole
- file names cannot constitute paths; no directory component is permitted
