From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from gimli.kloenk.de (gimli.kloenk.de [49.12.72.200])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id E98DF20296C
	for <ksummit@lists.linux.dev>; Tue,  4 Mar 2025 11:17:57 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=49.12.72.200
ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1741087079; cv=none; b=Vofn5WDvLdwHRU75fb5ho6/JXR4LVHltxTN5bMPkmzb2+si7jMpdW8ouA0YiGII3+0FOSylDb8gW5jCk/jMKAZoAsw7p8N4C7JSbvsWqhVvffjvSFnZUy2mRk572in1eTrEjvyaCj7rY+F0snKkEsizlbxHulEYFVJ7QU7caIZM=
ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1741087079; c=relaxed/simple;
	bh=XgYmH0+OJwg4e3U1YtmHRre0O+sLoOFhVcee8+/rJQY=;
	h=From:To:Cc:Subject:In-Reply-To:References:Date:Message-ID:
	 MIME-Version:Content-Type; b=EXTSoTN768wdXlCyVZgwa31/e5eMIPifYu8dPdXUQDQ8iuGF8MNvNYR9AspF5VRLkGIX9l389d/o+y/0EmrFxfB6D7l+LHgZIJgtygpUFqLKGhvybmvUuhyHjUfnREIF6zh2SsEBFaseb2GXKEs6jQaUl4HjpTF0fxbqWSYxpaw=
ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=reject dis=none) header.from=kloenk.dev; spf=pass smtp.mailfrom=kloenk.dev; dkim=pass (1024-bit key) header.d=kloenk.dev header.i=@kloenk.dev header.b=GeVFSe4M; arc=none smtp.client-ip=49.12.72.200
Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=reject dis=none) header.from=kloenk.dev
Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=kloenk.dev
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (1024-bit key) header.d=kloenk.dev header.i=@kloenk.dev header.b="GeVFSe4M"
From: Fiona Behrens <me@kloenk.dev>
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kloenk.dev; s=mail;
	t=1741087075; bh=yYpiBJkawOAfe3NG34s2NRh6SN3BccAQUsJuyxfuq54=;
	h=From:To:Cc:Subject:In-Reply-To:References:Date;
	b=GeVFSe4MKE5MAfYHRXw944RUvEBnsSdfM3IghDSwPOeB3vtt7RVSlkabwpz7g+fAB
	 DryDg2BYfCDEDA1yN9R4+0El0gPil15cr+KF5q6WqMayQmi2gq064aRRztqaxchGEg
	 +Cr4um4sHjfHynUg9v10rfMbDWQ+zLaFwcLQlpFE=
To: Jarkko Sakkinen <jarkko@kernel.org>
Cc: Bart Van Assche <bvanassche@acm.org>,  Steven Rostedt
 <rostedt@goodmis.org>,  Jason Gunthorpe <jgg@nvidia.com>,  Kees Cook
 <kees@kernel.org>,  Miguel Ojeda <miguel.ojeda.sandonis@gmail.com>,
  Christoph Hellwig <hch@infradead.org>,  rust-for-linux
 <rust-for-linux@vger.kernel.org>,  Linus Torvalds
 <torvalds@linux-foundation.org>,  Greg KH <gregkh@linuxfoundation.org>,
  David Airlie <airlied@gmail.com>,  linux-kernel@vger.kernel.org,
  ksummit@lists.linux.dev
Subject: Re: Rust kernel policy
In-Reply-To: <Z7c3PguDn-sEl3gm@kernel.org> (Jarkko Sakkinen's message of "Thu,
	20 Feb 2025 16:07:58 +0200")
References: <Z7SwcnUzjZYfuJ4-@infradead.org>
	<CANiq72myjaA3Yyw_yyJ+uvUrZQcSLY_jNp65iKH8Y5xGY5tXPQ@mail.gmail.com>
	<202502191026.8B6FD47A1@keescook>
	<20250219140821.27fa1e8a@gandalf.local.home>
	<202502191117.8E1BCD4615@keescook> <20250219202751.GA42073@nvidia.com>
	<20250219154610.30dc6223@gandalf.local.home>
	<97841173-1de8-4221-8bf3-3470a5ac98a7@acm.org>
	<89f2547edcaaba53d9965cab9133d809607330ac.camel@kernel.org>
	<87pljc6d7s.fsf@kloenk.dev> <Z7c3PguDn-sEl3gm@kernel.org>
Date: Tue, 04 Mar 2025 12:17:54 +0100
Message-ID: <m2cyexjb8d.fsf@kloenk.dev>
Precedence: bulk
X-Mailing-List: ksummit@lists.linux.dev
List-Id: <ksummit.lists.linux.dev>
List-Subscribe: <mailto:ksummit+subscribe@lists.linux.dev>
List-Unsubscribe: <mailto:ksummit+unsubscribe@lists.linux.dev>
MIME-Version: 1.0
Content-Type: text/plain

Jarkko Sakkinen <jarkko@kernel.org> writes:

> On Thu, Feb 20, 2025 at 12:57:11PM +0100, Fiona Behrens wrote:
>> Jarkko Sakkinen <jarkko@kernel.org> writes:
>> 
>> > On Wed, 2025-02-19 at 12:52 -0800, Bart Van Assche wrote:
>> >> On 2/19/25 12:46 PM, Steven Rostedt wrote:
>> >> > I do feel that new drivers written in Rust would help with the
>> >> > vulnerabilities that new drivers usually add to the kernel.
>> >> 
>> >> For driver developers it is easier to learn C than to learn Rust. I'm
>> >> not sure that all driver developers, especially the "drive by"
>> >> developers, have the skills to learn Rust.
>> >
>> > IMHO, Rust is not that difficult to learn but it is difficult to
>> > run.
>> >
>> > One point of difficulty for me still is the QA part, not really the
>> > code. QuickStart discusses on how to install all the shenanigans
>> > with distribution package managers.
>> >
>> > The reality of actual kernel development is that you almost never
>> > compile/run host-to-host, rendering that part of the documentation
>> > in the battlefield next to useless.
>> >
>> > Instead it should have instructions for BuildRoot, Yocto and
>> > perhaps NixOS (via podman). It should really explain this instead
>> > of dnf/apt-get etc.
>> 
>> What do you mean with via podman for NixOS?
>
> I sometimes use NixOS to test more complex kernel configurations. See
>
> https://social.kernel.org/notice/ArHkwNIVWamGvUzktU
>
> I'm planning to use this approach to check if I could use that to
> build efficiently kernels with Rust.
>
> I've not been so far successful to do it with BuildRoot, which has
> zeroed out any possible contributions for rust linux. Writing code
> is like 5% of kernel development. Edit-compile-run cycle is the
> 95%.
>
>> I do still have on my ToDo list to build and publish a better nix
>> development shell for kernel with rust enabled, and could also add a
>> section on how to build a NixOS iso in the same nix code.
>> But sadly time is a finite resource and so did not yet got to it.
>
> Please do ping me if you move forward with this. IMHO, why wouldn't
> you contribute that straight to the kernel documentation? Right no
> there are exactly zero approaches in kernel documentation on how
> test all of this.

I do have a new pr open in the nix repo, it still needs some polishing
and gcc and all that. but it does work for me to build using clang and
also run kunit.

https://github.com/Rust-for-Linux/nix/pull/8

Thanks
Fiona

>
> The best known method I know is to extend this type of example I
> did year ago:
>
> #!/usr/bin/env bash
>
> set -e
>
> make defconfig
> scripts/config --set-str CONFIG_INITRAMFS_SOURCE "initramfs.txt"
> yes '' | make oldconfig
>
> cat > initramfs.txt << EOF
> dir /dev 755 0 0
> nod /dev/console 644 0 0 c 5 1
> nod /dev/loop0 644 0 0 b 7 0
> dir /bin 755 1000 1000
> slink /bin/sh busybox 777 0 0
> file /bin/busybox initramfs/busybox 755 0 0
> dir /proc 755 0 0
> dir /sys 755 0 0
> dir /mnt 755 0 0
> file /init initramfs/init.sh 755 0 0
> EOF
>
> mkdir initramfs
>
> curl -sSf https://dl-cdn.alpinelinux.org/alpine/edge/main/x86_64/busybox-static-1.36.1-r25.apk | tar zx --strip-components 1
> cp busybox.static initramfs/busybox
>
> cat > initramfs/init.sh << EOF
> #!/bin/sh
> mount -t proc none /proc
> mount -t sysfs none /sys
> sh
> EOF
>
> and then qemu-system-x86_64 -kernel arch/x86/boot/bzImage
>
> It's sad really.
>
>> 
>> Fiona
>
> BR, Jarkko