Package: wnpp Severity: wishlist Owner: Greg Lamberson <[email protected]>
* Package name : lamboot Version : 0.15.2 Upstream Contact: Lamco Development LLC <[email protected]> * URL : https://lamco.ai/products/lamboot/ * License : MIT or Apache-2.0 Programming Lang: Rust Description : memory-safe UEFI bootloader for Linux LamBoot is a UEFI bootloader for Linux written in Rust. It loads kernels from the running system rather than relying on prebuilt EFI filesystem driver blobs: it reads ext4, btrfs, LVM, and FAT volumes with native Rust backends, discovers boot entries via the Boot Loader Specification (BLS Type 1), measures what it loads into the TPM, and records a structured trust-evidence log of each boot. Key features: * Native PE loader and native read-only filesystem backends (ext4, btrfs, LVM, FAT), so no third-party prebuilt EFI filesystem drivers are needed for the common cases. * Boot Loader Specification (Type 1) multi-filesystem discovery. * TPM measurement of loaded images and a structured trust-evidence log. * A host-side installer (lamboot-install) that deploys the bootloader to the EFI System Partition and registers a UEFI boot entry. The package itself never writes the ESP. Why this is useful in Debian: Debian already ships several bootloaders (grub2, systemd-boot, refind, and the architecture-specific m1n1). LamBoot adds a memory-safe, general-purpose option whose distinguishing feature is reading the boot filesystems natively in Rust instead of depending on external prebuilt driver binaries, which is a good fit for an archive that prefers building everything from source. Its TPM measurement and trust-evidence log are useful for measured-boot and attestation workflows. Packaging notes: * Built entirely from source. Like src:m1n1, it builds the UEFI target standard library from source with cargo's -Zbuild-std (RUSTC_BOOTSTRAP=1 on the archive's stable rustc, with rust-src as a build dependency), so no precompiled *-unknown-uefi target std is required. * DFSG-clean: the package ships only what it builds from source. The upstream convenience distribution bundles prebuilt GPL EfiFs filesystem drivers; the Debian package omits those entirely and relies on the native ext4, btrfs, LVM, and FAT backends. Filesystems outside that native set are not supported by the Debian build. * The .efi is shipped unsigned; trust is the operator's MOK enrollment. * The Rust library dependencies are being packaged through the rust-team debcargo workflow in parallel; this binary depends on those landing. I intend to maintain this package, with Lamco Development LLC as the packaging maintainer. A sponsor will be needed for the initial upload.
