Explore the innovative RedLeaf operating system, developed from scratch in Rust, in this 22-minute OSDI '20 conference talk. Dive into the impact of language safety on OS organization, examining how RedLeaf utilizes Rust's type and memory safety for isolation instead of traditional hardware address spaces. Learn about lightweight language-based isolation domains, enabling dynamic loading, clean termination, and fault isolation. Discover the implementation of Rv6, a POSIX-subset OS built with RedLeaf domains, and examine the development of efficient 10Gbps Intel ixgbe network and NVMe solid-state disk device drivers. Gain insights into isolation mechanisms, heap isolation, cross-domain communication, device driver recovery, and performance benchmarks comparing Rust implementations to traditional approaches.
RedLeaf - Isolation and Communication in a Safe Operating System
Overview
Syllabus
Intro
History of Isolation
Isolation mechanisms
Traditional Safe languages vs Rust
Language-based isolation - Rust
Fault isolation in Language-based systems
Language-based isolation: Deep copy
Language-based isolation: Capabilities
Language-based isolation: Singularity
Heap Isolation
Exchangeable types
Ownership tracking
Heap reclamation
Cross-domain call proxying
Interface validation
Device driver Recovery
System setup
Communication costs
Language overheads: Cvs Rust
Case Study: Device Drivers
Ixgbe performance benchmark
Application benchmarks: Maglev
Application: Key Value Store
Conclusion
Taught by
USENIX
