Latticra

Home / Kernel and State Lattice

No-External-Effect Kernel Evidence

Kernel and State Lattice

Latticra's kernel lane is a compiled C evidence surface for identity, state, subsystem posture, and lifecycle reports. It is not bootable, not a production runtime, and not an operating-system replacement.

Kernel Rule

Internal state can be inspected without external effects.

The current kernel evidence allows bounded in-memory state transitions so reports can show a lifecycle path. It still denies filesystem effects, network effects, process execution, runtime entry, hardware behavior, device operation, boot behavior, and production security-boundary claims.

01

State lattice

Deterministic fixed-size C fixture for origin, route, path, health, risk, lock, and no-effect labels.

02

Kernel seed

Compiled kernel identity and deterministic report surface with boot and runtime status denied.

03

Subsystem registry

Metadata entries for boot, runtime, scheduler, memory, process, filesystem, network, device, and security.

04

State machine

Sequential in-memory steps through the kernel ladder while external effects remain zero.

05

Lifecycle summary

Report-only summary connects lifecycle completion to subsystem readiness and denied authority labels.

Current Snapshot

The kernel lane reports readiness metadata, not runtime authority.

These fields summarize the current evidence posture from the kernel and lifecycle records.

kernel_status initialized-report-only
boot_status not-booted
runtime_status not-entered
no_effect 1
final_state runtime-entry-recovery-audit-review-observation-view-ready
lifecycle_complete 1
external_effect 0
hardware_effect 0

Lifecycle Ladder

The sequence is explicit and bounded.

The lifecycle runner can advance a local in-memory state object through an approved sequence ending at runtime-entry-recovery-audit-review-observation-view-ready. That path is evidence, not scheduler execution.

Start

created to registry-ready

Initializes the kernel state and proves the subsystem registry metadata surface is ready.

Core tables

scheduler to ipc-table

Records scheduler, memory map, process table, syscall table, and IPC table readiness metadata.

Namespace

vfs to driver-catalog

Records VFS namespace, device registry, and driver catalog evidence while denying filesystem and device authority.

Interrupts

interrupt to scheduler-tick

Records interrupt table, timer-source, and scheduler-tick metadata without arming timers or dispatching interrupts.

Target

runtime-entry-recovery-audit-review-observation-view-ready

Reports the current lifecycle target while recovery-audit-review observation metadata is visible and recovery audit review observation, recovery audit reviews, recovery audit observation, recovery audits, recovery closeout observation, recovery closeouts, recovery-outcome observation, recovery outcomes, recovery-disposition observation, recovery dispositions, recovery-plan observation, recovery-boundary observation, recovery boundaries, recovery plans, persistence-boundary observation, persistence boundaries, persistence commits, recovery authority, quiescent-return observation, quiescent returns, quiescent state reads, idle-return observation, idle returns, idle state reads, process-return observation, process returns, process state reads, process wakes, scheduler-return observation, scheduler returns, scheduler execution, scheduler dispatch, context switching, run queue mutation, post-resume observation, instruction-pointer reads, stack-pointer reads, CPU-mode reads, user-mode resume, user instruction resume, resume frame commits, syscall exit commits, syscall exits, syscall returns, interrupt returns, privilege transitions, address-space switching, page-table writes, TLB flushes, MMU updates, stack switching, register save/restore, frame construction, runtime entry admission, runtime entry, scheduler run-entry, scheduler activation, scheduler handoff, scheduler selection, scheduler credit updates, quota updates, time reads, and preemption remain denied.

Authority Boundary

Internal mutation is not host mutation.

The most important reading rule is the distinction between a bounded in-memory state object and any external or operational behavior.

Allowed now

Fixed-size state lattice reports, kernel identity reports, subsystem registry reports, in-memory state-machine transitions, lifecycle reports, and subsystem summary reports.

Controlled internal state

The lifecycle may report internal state changes such as a completed sequence to runtime-entry-recovery-audit-review-observation-view-ready while preserving external_effect_performed=0.

Denied now

Booting, runtime entry, scheduler execution, memory allocation, process spawn, syscall dispatch, filesystem read/write, network I/O, device I/O, interrupts, timer arms, run queue mutation, DMA, hardware effects, sandboxing, and OS replacement.

Local Commands

Run the kernel evidence as report-only checks.

These commands compile and inspect deterministic C surfaces. They do not boot a kernel or enter runtime behavior.

State and kernel seed

sh scripts/test-state-lattice.sh
sh scripts/test-kernel.sh
sh scripts/test-kernel-report-runner.sh

State machine and lifecycle

sh scripts/test-kernel-state-machine.sh
sh scripts/test-kernel-scheduler-credit.sh
sh scripts/test-kernel-scheduler-credit-report-runner.sh
sh scripts/test-kernel-scheduler-selection.sh
sh scripts/test-kernel-scheduler-selection-report-runner.sh
sh scripts/test-kernel-scheduler-dispatch.sh
sh scripts/test-kernel-scheduler-dispatch-report-runner.sh
sh scripts/test-kernel-scheduler-handoff.sh
sh scripts/test-kernel-scheduler-handoff-report-runner.sh
sh scripts/test-kernel-scheduler-activation.sh
sh scripts/test-kernel-scheduler-activation-report-runner.sh
sh scripts/test-kernel-scheduler-run-entry.sh
sh scripts/test-kernel-scheduler-run-entry-report-runner.sh
sh scripts/test-kernel-runtime-entry-admission.sh
sh scripts/test-kernel-runtime-entry-admission-report-runner.sh
sh scripts/test-kernel-runtime-entry-frame.sh
sh scripts/test-kernel-runtime-entry-frame-report-runner.sh
sh scripts/test-kernel-runtime-entry-register-view.sh
sh scripts/test-kernel-runtime-entry-register-view-report-runner.sh
sh scripts/test-kernel-runtime-entry-stack-view.sh
sh scripts/test-kernel-runtime-entry-stack-view-report-runner.sh
sh scripts/test-kernel-runtime-entry-address-space-view.sh
sh scripts/test-kernel-runtime-entry-address-space-view-report-runner.sh
sh scripts/test-kernel-runtime-entry-privilege-level-view.sh
sh scripts/test-kernel-runtime-entry-privilege-level-view-report-runner.sh
sh scripts/test-kernel-runtime-entry-syscall-gate-view.sh
sh scripts/test-kernel-runtime-entry-syscall-gate-view-report-runner.sh
sh scripts/test-kernel-runtime-entry-syscall-dispatch-view.sh
sh scripts/test-kernel-runtime-entry-syscall-dispatch-view-report-runner.sh
sh scripts/test-kernel-runtime-entry-syscall-return-view.sh
sh scripts/test-kernel-runtime-entry-syscall-return-view-report-runner.sh
sh scripts/test-kernel-runtime-entry-syscall-exit-view.sh
sh scripts/test-kernel-runtime-entry-syscall-exit-view-report-runner.sh
sh scripts/test-kernel-runtime-entry-user-mode-resume-view.sh
sh scripts/test-kernel-runtime-entry-user-mode-resume-view-report-runner.sh
sh scripts/test-kernel-runtime-entry-post-resume-observation-view.sh
sh scripts/test-kernel-runtime-entry-post-resume-observation-view-report-runner.sh
sh scripts/test-kernel-runtime-entry-scheduler-return-observation-view.sh
sh scripts/test-kernel-runtime-entry-scheduler-return-observation-view-report-runner.sh
sh scripts/test-kernel-runtime-entry-process-return-observation-view.sh
sh scripts/test-kernel-runtime-entry-process-return-observation-view-report-runner.sh
sh scripts/test-kernel-runtime-entry-idle-return-observation-view.sh
sh scripts/test-kernel-runtime-entry-idle-return-observation-view-report-runner.sh
sh scripts/test-kernel-runtime-entry-quiescent-return-observation-view.sh
sh scripts/test-kernel-runtime-entry-quiescent-return-observation-view-report-runner.sh
sh scripts/test-kernel-runtime-entry-persistence-boundary-observation-view.sh
sh scripts/test-kernel-runtime-entry-persistence-boundary-observation-view-report-runner.sh
sh scripts/test-kernel-runtime-entry-recovery-boundary-observation-view.sh
   sh scripts/test-kernel-runtime-entry-recovery-boundary-observation-view-report-runner.sh
   sh scripts/test-kernel-runtime-entry-recovery-plan-observation-view.sh
   sh scripts/test-kernel-runtime-entry-recovery-plan-observation-view-report-runner.sh
   sh scripts/test-kernel-runtime-entry-recovery-disposition-observation-view.sh
   sh scripts/test-kernel-runtime-entry-recovery-disposition-observation-view-report-runner.sh
   sh scripts/test-kernel-runtime-entry-recovery-outcome-observation-view.sh
   sh scripts/test-kernel-runtime-entry-recovery-outcome-observation-view-report-runner.sh
   sh scripts/test-kernel-runtime-entry-recovery-closeout-observation-view.sh
   sh scripts/test-kernel-runtime-entry-recovery-closeout-observation-view-report-runner.sh
   sh scripts/test-kernel-runtime-entry-recovery-audit-observation-view.sh
   sh scripts/test-kernel-runtime-entry-recovery-audit-observation-view-report-runner.sh
   sh scripts/test-kernel-lifecycle.sh
sh scripts/test-kernel-lifecycle-report-runner.sh

Subsystem summary

sh scripts/test-kernel-lifecycle-subsystem-summary.sh
sh scripts/test-kernel-lifecycle-subsystem-summary-report-runner.sh
sh scripts/test-kernel-lifecycle-status-alignment.sh

Source Records

Trace kernel claims back to exact evidence.

State latticeFixed-size no-effect C fixture, default labels, C policy, invariants, and non-claims. Kernel seedCompiled kernel identity, report fields, no-effect posture, and denied boot/runtime behavior. Subsystem registryBoot, runtime, scheduler, memory, process, filesystem, network, device, and security metadata. State machineBounded in-memory state object, sequential step function, transition log, and report surface. Lifecycle seedApproved sequence to runtime-entry-recovery-audit-review-observation-view-ready with external effects denied. Scheduler credit seedCandidate scheduler credit metadata with quota and CPU usage write authority denied. Scheduler selection seedCandidate runnable selection metadata with dispatch and run-queue authority denied. Scheduler dispatch seedCandidate dispatch metadata with context-switch and run-queue authority denied. Scheduler handoff seedCandidate handoff metadata with scheduler, dispatch, context-switch, and run-queue authority denied. Scheduler activation seedCandidate activation metadata with execution, context-switch, runtime, and run-queue authority denied. Scheduler run-entry seedCandidate run-entry metadata with runtime entry, context-switch, and scheduler authority denied. Runtime entry admission seedCandidate admission metadata with runtime entry, scheduler run-entry, context-switch, and run-queue authority denied. Runtime entry frame seedCandidate frame metadata with frame construction, runtime entry, context-switch, and stack-switch authority denied. Runtime entry register-view seedCandidate register-view metadata with register capture, save/restore, context-switch, and stack-switch authority denied. Runtime entry stack-view seedCandidate stack-view metadata with stack capture, stack-switch, context-switch, and address-space authority denied. Runtime entry address-space-view seedCandidate address-space-view metadata with address-space switching, page-table writes, TLB flushes, and MMU updates denied. Runtime entry privilege-level-view seedCandidate privilege-level metadata with privilege transitions, syscall gates, and interrupt returns denied. Runtime entry syscall-gate-view seedCandidate syscall-gate metadata with gate installation, syscall dispatch, instruction execution, handlers, and returns denied. Runtime entry syscall-dispatch-view seedCandidate syscall-dispatch metadata with argument copy, instruction execution, handlers, and returns denied. Runtime entry syscall-return-view seedCandidate syscall-return metadata with result copy, syscall returns, interrupt returns, and host effects denied. Runtime entry syscall-exit-view seedCandidate syscall-exit metadata with exit commits, process wakes, syscall exits, and host effects denied. Runtime entry user-mode-resume-view seedCandidate user-mode-resume metadata with resume frame commits, instruction resume, interrupt returns, and host effects denied. Runtime entry post-resume-observation-view seedCandidate post-resume observation metadata with instruction-pointer reads, stack-pointer reads, CPU-mode reads, scheduler execution, and host effects denied. Runtime entry scheduler-return-observation-view seedCandidate scheduler-return observation metadata with scheduler returns, context switches, run queue mutation, and host effects denied. Runtime entry process-return-observation-view seedCandidate process-return observation metadata with process returns, process state reads, process wakes, and host effects denied. Runtime entry idle-return-observation-view seedCandidate idle-return observation metadata with idle returns, idle state reads, process returns, and host effects denied. Runtime entry quiescent-return-observation-view seedCandidate quiescent-return observation metadata with quiescent returns, quiescent state reads, idle returns, and host effects denied. Runtime entry persistence-boundary-observation-view seedCandidate persistence-boundary observation metadata with persistence commits, recovery authority, runtime entry, and host effects denied. Runtime entry recovery-boundary-observation-view seedCandidate recovery-boundary observation metadata with recovery plans, persistence commits, recovery authority, runtime entry, and host effects denied. Runtime entry recovery-plan-observation-view seedCandidate recovery-plan observation metadata with recovery-plan observation, recovery authority, runtime entry, and host effects denied. Runtime entry recovery-disposition-observation-view seedCandidate recovery-disposition observation metadata with recovery-disposition observation, recovery disposition authority, runtime entry, and host effects denied. Runtime entry recovery-outcome-observation-view seedCandidate recovery-outcome observation metadata with recovery-outcome observation, recovery outcome authority, runtime entry, and host effects denied. Runtime entry recovery-closeout-observation-view seedCandidate recovery-closeout observation metadata with recovery closeout authority, runtime entry, and host effects denied. Runtime entry recovery-audit-observation-view seedCandidate recovery-audit observation metadata with recovery audit authority, runtime entry, and host effects denied. Time accounting seedCandidate CPU charge metadata with clock, quota, and scheduler credit authority denied. Preemption seedCandidate preemption decision metadata with dispatch and context-switch authority denied. Context switch seedCandidate switch metadata with register, stack, and address-space authority denied. Subsystem summaryLifecycle-to-registry summary and denied subsystem authority labels. Kernel lifecycle statusStatus alignment, current evidence list, authority posture, rollback planning, and non-claims. Boot preview boundaryWhy kernel lifecycle evidence is separate from SeaBIOS/GRUB boot evidence and bootable OS readiness. Runtime boundaryHow kernel evidence stays separate from runtime execution and operational authority.