Motor OS | What | Why | GitHub

What is Motor OS

TL;DR: static HTTP(s) serving works "out of the box". Other things are work-in-progress.

Motor OS is a microkernel-based operating system, built in Rust, that targets virtualized workloads exclusively. It currently supports x64 KVM-based virtual machines, and can run in Qemu, Cloud Hypervisor, or Alioth VMMs.

Rust is the language of Motor OS: not only it is implemented in Rust, it also exposes its ABI in Rust, not C.

What works

Motor OS is under active development, and should not be used for sensitive workloads. It is, however, ready for trials/experiments/research. In fact, Motor OS web site is served from inside a couple of Motor OS VMs (proxied via Cloudflare).

More specifically, these things work:

• boots via MBR (Qemu) or PVH (Alioth, Cloud Hypervisor) in 100ms (Alioth) or 200ms (CHV, Qemu)
• himem micro-kernel
• scheduling:
• a simple multi-processor round robin (SMP)
• in-kernel scheduling is cooperative: the kernel is very small and does not block, so does not need to be preemptible
• the userspace is preemptible
• memory management:
• only 4K pages at the moment
• stacks are guarded
• page faults in the userspace work and are properly handled (only stack memory allocations are currently lazy)
• I/O subsystem (in the userspace)
• VirtIO-BLK and VirtIO-NET drivers
• two simple filesystems (srfs and flatfs)
• smoltcp-based networking (TCP only at the moment)
• max host-guest TCP throughput is about 10Gbps at the moment
• the userspace:
• multiple processes, with preemption
• threads, thread local storage
• Rust's standard library mostly ported
• Rust programs that use Rust standard library and do not depend, directly or indirectly, on Unix or Windows FFI, will cross-compile for Motor OS and run, subject to "what does not work" below
• a simple TLS-enabled httpd is provided
• a simple unix-like shell in the serial console
• a simle text editor
• basic commands like free, ps, ls, top, cat, ss, etc. (do `ls bin` to list all commands)

What does not work

Most pieces are not yet ready for production use. No security audit has been made. More specifically:

• Filesystem: most Rust std::fs APIs have been implemented as proof-of-concept, but are slow (synchronous) and will have to be reimplemented using Motor OS async I/O
• Networking:
• DHCP not implemented: static IP addresses only at the moment
• DNS lookup not implemented yet
• UDP not implemented yet
• The ecosystem outside Rust std:
• "sans-io" crates and crates like rand or rustls can be compiled and used with minor tweaks
• crates depending on specific async runtimes (e.g. Tokio) will not compile at the moment
• Tokio Mio will soon be ported
• crates that are wrappers around native Linux or Windows APIs will not work, obviously