I'm confused, is it bare metal or is it an EFI application? (bare metal used to mean that something can run without services, like those that UEFI provides)
I really like this idea but can anyone please summarize what it does for me. To me it feels very fascinating (bare metal golang in general) but I am not sure I truly understand its usecase and I would love to know more.
I've been idly following this stuff on & off for years, but I never saw proving a point "instead of using Rust" as one of the motivations of the project. Was that ever stated anywhere?
And Linux kernel is written in C etc, so by this logic you don't even need memory safety. There is no good excuse for designing a language in modern times (this century) with every object nullable by default. C# at least mostly has solved this design mistake later by introducing nullable reference types (https://learn.microsoft.com/en-us/dotnet/csharp/nullable-ref...). Then again, Go designers insisted that generics were also unnecessary, until they changed their mind.
On the contrary, because there we have 40 years of security exploits to prove otherwise, and Linux kernel has plenty of CVEs.
C# solution doesn't work, most projects never adopted it, because it is a mess to use with third party libraries that never bothered to add the required annotations, hence why it is still a warning and optional to this day.
The number of memory safety CVEs written in C by people who ostensibly 'didn't need training wheels' point strongly to the antithesis of your argument.
And I say that as someone who's been a kernel engineer for 20 years.
Nah, people ignore on purpose that C creators are the first to acknowledge C's flaws, hence why Alef, Limbo and Go were created by them, and Plan 9/Inferno as improvements on UNIX.
Too many focus on where the journey started instead of where it ended.
Yeah, it’s very much like the meme showing the bell curve with the novice and the wizard/expert both saying “I can’t write safe C code” and the guy in the middle bragging that he can.
When you turn on a computer, it transfers code to software required to get the machine up and running reliably--the boot process. That used start in a chip called the BIOS. It's a 40-year old holdover from the early days of the IBM PC. UEFI is a more complex and feature-rich protocol. Due to its default memory management Go hasn't been considered the first choice for such purposes but this proof of concept uses Go for the very low level code needed for UEFI.
There aren't that many UEFI shells and the ones that exist are certainly not modern. Anything new is helpful, especially if its written in a popular language like Go.
> Go applications built with GOOS=none would run on bare metal, without any underlying OS. All required support is provided by the Go runtime and external driver packages, also written in Go.
And:
> These hooks act as a "Rosetta Stone" for integration of a freestanding Go runtime within an arbitrary environment, whether bare metal or OS supported.
I'm confused, is it bare metal or is it an EFI application? (bare metal used to mean that something can run without services, like those that UEFI provides)
I really like this idea but can anyone please summarize what it does for me. To me it feels very fascinating (bare metal golang in general) but I am not sure I truly understand its usecase and I would love to know more.
The use cases is not writing unsafe C in first place, and proving the point Go is usable in such scenarios, regardless of naysayers.
The creators of USB Armory also created TamaGo, instead of using Rust, exactly for the same reasons, to prove a point.
https://github.com/usbarmory/tamago
https://reversec.com/usb-armory/
Because in IT, seeing is believing.
It's also a good way to learn about UEFI for people most familiar with go.
Quite apart from that, an EFI shell that's less awful than the standard UEFI one is an interesting project in its own right...
I've been idly following this stuff on & off for years, but I never saw proving a point "instead of using Rust" as one of the motivations of the project. Was that ever stated anywhere?
Yes,
> Languages like Rust have already proven they role in bare metal world, Go on the other hand needs to … and it really can!
From https://fiif.fi/wp-content/uploads/sites/9/2021/06/TamaGo.pd...
That's a shame, I was hoping it would be so I could boot thousands of kernels in parallel at once
No amount of proven points will give Go null safety, though.
Yet the whole Docker, Kubernetes, CNCF ecosystem is powered by Go, doesn't seem to have been hindered by lack of null safety.
Same applies to GCP, AWS and Azure, powered mostly by Java, C# and C++.
People should stop being so obsessed with one specific language feature, when there is so much C and C++ code being produced every day.
And Linux kernel is written in C etc, so by this logic you don't even need memory safety. There is no good excuse for designing a language in modern times (this century) with every object nullable by default. C# at least mostly has solved this design mistake later by introducing nullable reference types (https://learn.microsoft.com/en-us/dotnet/csharp/nullable-ref...). Then again, Go designers insisted that generics were also unnecessary, until they changed their mind.
On the contrary, because there we have 40 years of security exploits to prove otherwise, and Linux kernel has plenty of CVEs.
C# solution doesn't work, most projects never adopted it, because it is a mess to use with third party libraries that never bothered to add the required annotations, hence why it is still a warning and optional to this day.
If one can't write safe C code, then maybe stick to web development and leave the bootloaders and UEFI stuff to people who can.
Training wheels are merely a race to the bottom for barely-literate programmers.
The number of memory safety CVEs written in C by people who ostensibly 'didn't need training wheels' point strongly to the antithesis of your argument.
And I say that as someone who's been a kernel engineer for 20 years.
Nah, people ignore on purpose that C creators are the first to acknowledge C's flaws, hence why Alef, Limbo and Go were created by them, and Plan 9/Inferno as improvements on UNIX.
Too many focus on where the journey started instead of where it ended.
There are only people who think they can write safe C code and those who know they can’t.
Including the language authors, let that sink in.
Yeah, it’s very much like the meme showing the bell curve with the novice and the wizard/expert both saying “I can’t write safe C code” and the guy in the middle bragging that he can.
When you turn on a computer, it transfers code to software required to get the machine up and running reliably--the boot process. That used start in a chip called the BIOS. It's a 40-year old holdover from the early days of the IBM PC. UEFI is a more complex and feature-rich protocol. Due to its default memory management Go hasn't been considered the first choice for such purposes but this proof of concept uses Go for the very low level code needed for UEFI.
“Due to its garbage collection” you mean. There’s nothing stopping you from writing go for bare metal, only your pride.
GC has never been an impediment for Xerox PARC.
There aren't that many UEFI shells and the ones that exist are certainly not modern. Anything new is helpful, especially if its written in a popular language like Go.
There’s some more context in a proposal from the folks behind this project to upstream the needed Go runtime hooks into Go proper.
From what I can tell, the core Go team seems generally favorable to it, so seems like a decent chance it will happen.
From:
#73608 proposal: all: add bare metal support
https://github.com/golang/go/issues/73608
> Go applications built with GOOS=none would run on bare metal, without any underlying OS. All required support is provided by the Go runtime and external driver packages, also written in Go.
And:
> These hooks act as a "Rosetta Stone" for integration of a freestanding Go runtime within an arbitrary environment, whether bare metal or OS supported.
This would also benefit the Embedded Go project, which uses similar modifications to the runtime.
https://embeddedgo.github.io/
There's also Sprout by Edera https://github.com/edera-dev/sprout
> Sprout: UEFI Bootloader in Rust
The TamaGo project (which this uses for running on bare metal) looks super impressive! Kudos to the authors for getting this working.
I wonder what GC changes had to be made, if any.
I wonder if it supports multiprocessing.
> Go-boot: bare metal Go UEFI boot manager
The bare metal list is quiet thin.
Why is so HW focused ? I use refind and it seems to be HW independent.
As much as I appreciate Go, putting it on bare metal makes me cringe a little.
If that makes you cringe, I cannot even begin to imagine what this https://tinygo.org will do to you.
Why? You can’t just leave that dangling like a meat stick.
Why? Xerox PARC used to do this.
As did all machines that booted into a Lisp or BASIC REPL.
missed chance to name it Goo-Boot