Syd: Writing an application kernel in Rust [video]
5 days ago
- #Kernel
- #Rust
- #Syscall
- Syd (sydbox-3) is an application kernel written in Rust.
- The talk covers its runtime architecture and Rust's role in portability.
- Key threads include syd_main (startup, namespaces), syd_mon (lifecycle), syd_emu (syscall brokering), syd_ipc (UNIX-socket control), syd_int (timers), and syd_aes (crypto).
- Implementation highlights: minimal unsafe code, per-thread isolation, syscall-argument cookies, forced O_CLOEXEC, randomized FDs, deterministic policy, and mseal(2) sealing.
- Portability features: supports Linux ≥ 5.19, multi-arch (x86-64, arm64, etc.), ILP32/LP64 awareness, and MSRV 1.83+.
- Provides patterns for building a thread-isolated, multi-arch syscall broker in Rust.