EriX Block Device Daemon (blockd)

blockd is the mediated storage service for the storage stack. It consumes raw block providers from deviced, validates GPT media through lib-partition, and publishes a logical block namespace through lib-block.

EriX is a clean-room, capability-based microkernel operating system written entirely in Rust.

Technical requirements are tracked in the EriX requirements, conventions, and project documentation.

See:

• docs for design documents, specifications, and development plans.
• Related architecture repositories for kernel, services, libraries, drivers, and integration tooling.

Purpose of This Repository

This repository implements the EriX block-storage mediation service. Its purpose in EriX is to turn raw block-provider access into a bounded logical block namespace for storage consumers.

Functionally, it validates GPT metadata, publishes whole-disk and partition devices, and translates bounded logical I/O to the active block provider. The repository keeps the implementation, interface contracts, tests, and documentation for that behavior in one reviewable ownership boundary.

The maintained responsibilities are:

• validate startup authority and bind only to the assigned block-provider endpoint
• discover GPT media and publish bounded whole-disk and partition devices
• translate logical block requests into provider-relative reads and writes
• keep storage publication deterministic and fail closed on malformed media

Clean-Room Policy

EriX follows a strict clean-room philosophy:

• No external source code may be copied.
• No external Rust crates are allowed.
• No code generation tools that embed third-party code.
• All code must be authored within the project.

Violations will result in rejection of the contribution.

License

All EriX repositories are licensed under the ISC License.

Development Model

EriX development is modular, deterministic, reproducible, authority-explicit, security-first, and self-hosting oriented.

This repository follows the project roadmap and the validation rules documented in its own roadmap.

Validation

• cargo fmt --all -- --check
• strict clippy with warnings as errors
• standalone crate CI through ../integration/scripts/setup-component-ci-overrides.sh so internal git dependencies resolve from the matching branch head without cross-repo path deps
• local unit tests for transport framing and GPT publication logic
• full VM integration through integration storage scenarios
• Cargo.toml keeps lib-block / lib-partition on branch = "main"; local branch-head validation relies on the generated integration CARGO_HOME overrides instead of cross-repo path dependencies

Governance Principles

blockd governance is scoped to mediated block-device publication and partition-relative I/O.

The scoped governance rules are:

• It may publish only devices derived from the startup-supplied block provider and validated partition metadata.
• It must reject malformed GPT state instead of exposing ambiguous storage authority.
• It keeps partition translation deterministic and bounded by the discovered device geometry.
• It treats writes as explicit block authority delegated by deviced, never as ambient disk access.

Authority Boundaries

• blockd receives its service endpoint, the dedicated deviced registration/resolve endpoints, and the transferred provider endpoint.
• It does not receive broad kernel-control, filesystem-provider, or driver-management authority.
• Additional block providers require explicit deviced mediation and validation before publication.

Contact

Development occurs in EriX organization and discussions happen in issues and design documents.

No decisions are considered valid without documented rationale.

Maintainers can be reached via email: admin@erikinkinen.fi.