recovery environment

obfuscatedgenerated · obfuscatedgenerated · commit 2d5a02ca8ff4 · 2026-01-11T23:50:23.000Z
diff --git a/src/kernel.ts b/src/kernel.ts
@@ -27,6 +27,7 @@ export interface SpawnResult {
 }
 
 export interface UserspaceKernel {
+    readonly privileged: boolean;
     get_program_registry(): UserspaceProgramRegistry;
     get_sound_registry(): SoundRegistry;
     get_fs(): UserspaceFileSystem;
@@ -64,6 +65,10 @@ export class Kernel {
 
     #init_program_name: string | null = null;
 
+    get privileged(): boolean {
+        return true;
+    }
+
     get panicked(): boolean {
         return this.#panicked;
     }
@@ -265,7 +270,9 @@ export class Kernel {
         // run init program
         try {
             const init = this.spawn(init_program, init_args, undefined, true);
+
             this.#init_program_name = init_program;
+            this.#term.focus();
 
             if (on_init_spawned) {
                 on_init_spawned(this).catch((e) => {
@@ -404,6 +411,7 @@ export class Kernel {
         const fs_proxy = AbstractFileSystem.create_userspace_proxy(kernel_fs);
 
         Object.defineProperties(proxy, {
+            privileged: { value: false, enumerable: true },
             get_program_registry: { value: () => prog_reg_proxy, enumerable: true },
             get_sound_registry: { value: () => self.get_sound_registry(), enumerable: true },
             get_fs: { value: () => fs_proxy, enumerable: true },
diff --git a/src/programs/@ALL.ts b/src/programs/@ALL.ts
@@ -2,6 +2,7 @@ export { default as ignition } from "./core/ignition";
 export { default as jetty } from "./core/jetty";
 export { default as ash } from "./core/ash";
 export { default as default_privilege_agent } from "./core/default_privilege_agent";
+export { default as recovery } from "./core/recovery";
 
 export { default as help } from "./help";
 export { default as shutdown } from "./shutdown";
diff --git a/src/programs/core/ash/index.ts b/src/programs/core/ash/index.ts
@@ -7,10 +7,11 @@ import {make_read_line_key_handlers, make_read_line_printable_handler} from "./k
 export default {
     name: "ash",
     description: "A shell.",
-    usage_suffix: "[--login]",
+    usage_suffix: "[--login] [--no-scripts]",
     arg_descriptions: {
         "Arguments:": {
-            "--login": "Start the shell as a login shell. Don't pass this flag manually, it's handled by the system."
+            "--login": "Start the shell as a login shell. Don't pass this flag manually, it's handled by the system.",
+            "--no-scripts": "Do not run any startup scripts like .ashrc or .ash_profile."
         }
     },
     compat: "2.0.0",
@@ -47,13 +48,13 @@ export default {
             }
 
             // run .ash_profile, checking it exists again just in case (because why not)
-            if (await fs.exists(absolute_profile)) {
+            if (!args.includes("--no-scripts") && await fs.exists(absolute_profile)) {
                 await shell.run_script(absolute_profile);
             }
         }
 
         // run .ashrc, checking it exists again just in case (could be deleted in profile)
-        if (await fs.exists(absolute_rc)) {
+        if (!args.includes("--no-scripts") && await fs.exists(absolute_rc)) {
             await shell.run_script(absolute_rc);
         }
 
@@ -67,8 +68,6 @@ export default {
         const read_line_key_handlers = make_read_line_key_handlers(shell, kernel);
         const read_line_printable_handler = make_read_line_printable_handler(shell);
 
-        term.focus();
-
         while (running) {
             await shell.insert_prompt(true);
 
diff --git a/src/programs/core/ignition/index.ts b/src/programs/core/ignition/index.ts
@@ -3,6 +3,8 @@ import type { PrivilegedProgram } from "../../../types";
 import {ServiceManager} from "./services";
 import type {ProcessContext} from "../../../processes";
 
+import {ANSI} from "../../../term_ctl";
+
 interface IgnitionIPCMessageBase {
     type: string;
 }
@@ -60,6 +62,8 @@ export default {
     main: async (data) => {
         const { kernel, term, process } = data;
 
+        const {CURSOR} = ANSI;
+
         // check if ignition is already running (only allowed to be PID 1)
         if (process.pid !== 1) {
             term.writeln("Cannot run ignition.");
@@ -213,13 +217,13 @@ export default {
             let error: Error | null = null;
             try {
                 exit_code = await boot_target_proc.completion;
-                boot_target_proc.process.kill(exit_code);
             } catch (e) {
                 console.error(e);
                 error = e as Error;
                 exit_code = -1;
             }
 
+            boot_target_proc.process.kill(exit_code);
             console.log(`boot target ${boot_target} exited with code ${exit_code}`);
 
             term.writeln(`Boot target ${boot_target} exited with code ${exit_code}!`);
@@ -236,9 +240,31 @@ export default {
             deaths_in_window++;
 
             if (deaths_in_window >= 5) {
-                term.writeln("Boot target has crashed too many times in a short period. Halting to prevent a crash loop.");
-                term.writeln("Press any key to retry...");
-                await term.wait_for_keypress();
+                term.writeln("Boot target has crashed too many times in a short period.");
+                term.writeln("Press R key to enter recovery mode, or any other key to retry...");
+                term.write(CURSOR.invisible);
+
+                const key = await term.wait_for_keypress();
+                if (key.key.toLowerCase() === "r") {
+                    term.writeln("Entering recovery mode...");
+
+                    const recovery_proc = kernel.spawn("recovery", [], undefined, true);
+                    let recovery_exit_code: number;
+                    try {
+                        recovery_exit_code = await recovery_proc.completion;
+                        recovery_proc.process.kill(recovery_exit_code);
+                    } catch (e) {
+                        console.error(e);
+                        recovery_exit_code = -1;
+                    }
+
+                    term.writeln(`Recovery environment exited with code ${recovery_exit_code}. Retrying boot target...`);
+                } else {
+                    term.writeln("Retrying boot target...");
+                }
+
+                term.write(CURSOR.visible);
+
                 deaths_in_window = 0;
                 window_start = null;
             }
diff --git a/src/programs/core/jetty.ts b/src/programs/core/jetty.ts
@@ -98,6 +98,8 @@ export default {
             term.write(ANSI.CURSOR.visible);
 
             term.reset();
+
+            // TODO: add recovery logic here too
         }
 
         return final_code;
diff --git a/src/programs/core/recovery.ts b/src/programs/core/recovery.ts
@@ -0,0 +1,151 @@
+import type {PrivilegedProgram} from "../../types";
+
+import {ANSI, NEWLINE} from "../../term_ctl";
+
+export default {
+    name: "recovery",
+    description: "Emergency recovery environment",
+    usage_suffix: "",
+    arg_descriptions: {},
+    hide_from_help: true,
+    compat: "2.0.0",
+    main: async (data) => {
+        const { kernel, term } = data;
+
+        const {CURSOR} = ANSI;
+
+        if (!kernel.privileged) {
+            term.writeln("Recovery requires privileged environment.");
+            return 1;
+        }
+
+        let running = true;
+        while (running) {
+            term.reset();
+
+            term.writeln("RECOVERY ENVIRONMENT");
+            term.writeln("===================");
+            term.write(NEWLINE);
+            term.writeln("1. Reboot");
+            term.writeln("2. Privileged ash shell");
+            term.writeln("3. Reset bootloader and reboot");
+            term.writeln("4. Wipe filesystem and reboot");
+            term.write(NEWLINE);
+            term.writeln("X: Exit recovery");
+            term.write(NEWLINE);
+            term.writeln("Press the corresponding key to select an option.");
+
+            if (typeof window !== "undefined") {
+                term.writeln(`Recovery also available at ${window.location.origin}/recover_fs`);
+            }
+
+            term.write(CURSOR.invisible);
+
+            const key = await term.wait_for_keypress();
+
+            switch (key.key.toLowerCase()) {
+                case "1":
+                    term.writeln(NEWLINE + "Rebooting...");
+                    window.location.reload();
+                    break;
+                case "2": {
+                    term.writeln(NEWLINE + "Starting privileged ash shell...");
+                    term.write(CURSOR.visible);
+
+                    // TODO: this doesnt make much difference being privileged as the programs are separate processes
+                    let exit_code: number;
+                    const shell = kernel.spawn("ash", ["--no-scripts"], undefined, true);
+                    try {
+                        exit_code = await shell.completion;
+                    } catch (e) {
+                        exit_code = -1;
+                        term.writeln("Error in privileged shell:");
+                        term.writeln(e);
+                    }
+
+                    shell.process.kill(exit_code)
+                }
+                    break;
+                case "3": {
+                    term.writeln("Are you sure you want to reset the bootloader? This will clear your choice of init system, boot target, default shell, and privilege agent but retains your files.");
+                    term.writeln("Press Y to confirm, or any other key to cancel.");
+
+                    const confirm_key = await term.wait_for_keypress();
+                    if (confirm_key.key.toLowerCase() !== "y") {
+                        term.writeln("Bootloader reset cancelled.");
+                        break;
+                    }
+
+                    term.writeln(NEWLINE + "Resetting bootloader...");
+
+                    // delete /boot/init, /etc/boot_target, /etc/default_shell, /sys/privilege_agent
+                    const fs = kernel.get_fs();
+                    try {
+                        await fs.delete_file("/boot/init");
+                    } catch (e) {
+                        term.writeln("Warning: Failed to delete /boot/init");
+                        term.writeln(e);
+                    }
+
+                    try {
+                        await fs.delete_file("/etc/boot_target");
+                    } catch (e) {
+                        term.writeln("Warning: Failed to delete /etc/boot_target");
+                        term.writeln(e);
+                    }
+
+                    try {
+                        await fs.delete_file("/etc/default_shell");
+                    } catch (e) {
+                        term.writeln("Warning: Failed to delete /etc/default_shell");
+                        term.writeln(e);
+                    }
+
+                    try {
+                        await fs.delete_file("/sys/privilege_agent");
+                    } catch (e) {
+                        term.writeln("Warning: Failed to delete /sys/privilege_agent");
+                        term.writeln(e);
+                    }
+
+                    term.writeln("Rebooting...");
+                    window.location.reload();
+                }
+                    break;
+                case "4": {
+                    term.writeln("Are you sure you want to erase the filesystem? This action cannot be undone.");
+                    term.writeln("Press Y to confirm, or any other key to cancel.");
+
+                    const confirm_key = await term.wait_for_keypress();
+                    if (confirm_key.key.toLowerCase() !== "y") {
+                        term.writeln("Filesystem wipe cancelled.");
+                        break;
+                    }
+
+                    term.writeln(NEWLINE + "Wiping filesystem...");
+
+                    const fs = kernel.get_fs();
+                    try {
+                        await fs.erase_all();
+                    } catch (e) {
+                        term.writeln("Error: Failed to wipe filesystem.");
+                        term.writeln(e);
+                    }
+
+                    term.writeln("Rebooting...");
+                    window.location.reload();
+                }
+                    break;
+                case "x":
+                    term.writeln(NEWLINE + "Exiting recovery.");
+                    running = false;
+                    break;
+                default:
+                    // ignore other keys
+                    break;
+            }
+        }
+
+        return 0;
+    }
+} as PrivilegedProgram;

Original file line number	Diff line number	Diff line change
`@@ -98,6 +98,8 @@ export default {`
`98`	`98`	`term.write(ANSI.CURSOR.visible);`
`99`	`99`
`100`	`100`	`term.reset();`
	`101`	`+`
	`102`	`+ // TODO: add recovery logic here too`
`101`	`103`	`}`
`102`	`104`
`103`	`105`	`return final_code;`