Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/iamvirul/ferrous-kernel

Ferrous is a research-grade operating system kernel that addresses fundamental limitations of existing kernels through modern language features, capability-based security, and first-class support for cloud-era workloads.
https://github.com/iamvirul/ferrous-kernel

kernel rust

Last synced: 3 months ago
JSON representation

Ferrous is a research-grade operating system kernel that addresses fundamental limitations of existing kernels through modern language features, capability-based security, and first-class support for cloud-era workloads.

Awesome Lists containing this project

README 

          
# Ferrous Kernel



**A next-generation operating system kernel written in Rust**



> Rethinking kernel design for security, isolation, and modern workloads



---



## What is Ferrous?



Ferrous is a research-grade operating system kernel that addresses fundamental limitations of existing kernels through modern language features, capability-based security, and first-class support for cloud-era workloads.



This is **not** a Linux replacement. It's a long-term research project exploring what becomes possible when you design a kernel from scratch without decades of backward compatibility constraints.



---



## Core Principles



**Memory Safety**

- Eliminate entire classes of bugs through Rust's type system

- Minimal, auditable unsafe code with clear safety boundaries



**Isolation by Default**

- Driver crashes don't bring down the system

- Fault containment is a first-class design constraint

- Sandboxed components where possible



**Modern Workloads First**

- Containers and microservices as kernel primitives, not abstractions

- Resource groups, namespaces, and observability built-in



**Built-In Observability**

- Every kernel decision is explainable

- Tracing, metrics, and causality tracking from day one



**Small Trusted Core**

- Minimize privileged code

- Capability-based security model

- Message passing over shared state



---



## Current Status



**Phase:** Phase 1 — Proof of Life (In Progress)

**Target Architecture:** x86_64 (ARM64 planned)

**Target Environment:** Server / Cloud / Research



See [ROADMAP.md](docs/ROADMAP.md) for detailed development plan.



---



## Project Structure



```

ferrous-kernel/

├── docs/               # Documentation and design documents

├── kernel/             # Core kernel code

│   └── src/

│       ├── arch/      # Architecture-specific implementations

│       │   └── x86_64/

│       └── drivers/   # Hardware device drivers

│           └── serial # 16550 UART driver (COM1)

├── drivers/           # Driver subsystems

│   ├── block/        # Block device drivers

│   ├── net/          # Network drivers

│   └── char/         # Character device drivers

├── userspace/         # User-space components

│   ├── init/         # Init system

│   └── services/     # System services

├── boot/              # Bootloader and early boot

├── lib/               # Shared libraries

│   ├── core/         # Core utilities

│   └── alloc/        # Allocation primitives

├── tools/             # Development tools

├── tests/             # Testing infrastructure

└── scripts/           # Build and utility scripts

```



---



## Key Design Decisions



### Why Rust?



- **Memory safety without garbage collection** - Critical for kernel performance

- **Zero-cost abstractions** - Safety doesn't mean slow

- **Fearless concurrency** - Compiler-verified thread safety

- **Explicit unsafe boundaries** - Audit surface is minimized



### Why Capabilities?



- **No ambient authority** - Explicit permission model

- **Composable security** - Build complex policies from simple rules

- **Audit-friendly** - Clear authorization chain



### Why Microkernel-Inspired?



- **Fault isolation** - Component failures don't cascade

- **Easier verification** - Smaller trusted computing base

- **Flexibility** - Swap components without kernel changes



*Note: "Microkernel-inspired" means we adopt good ideas (isolation, small TCB) while pragmatically keeping performance-critical paths in kernel space.*



---



## What Makes Ferrous Different?



| Aspect | Traditional Kernels | Ferrous |

|--------|-------------------|---------|

| **Memory Safety** | C/C++, manual memory management | Rust, compiler-verified safety |

| **Driver Crashes** | Often panic entire system | Isolated, restartable services |

| **Containers** | Bolt-on via namespaces/cgroups | First-class kernel primitives |

| **Observability** | Added via external tools | Built-in tracing and metrics |

| **Security Model** | DAC/MAC, ambient authority | Capability-based, explicit grants |

| **Unsafe Code** | Entire kernel | Minimal, isolated, audited |



---



## Getting Started



### Prerequisites



- Rust toolchain (nightly)

- QEMU (for testing)

- Cross-compilation tools for x86_64



See [SETUP.md](docs/SETUP.md) for detailed setup instructions.



### Building



```bash

# Clone the repository

git clone https://github.com/iamvirul/ferrous-kernel.git

cd ferrous-kernel



# Activate the pre-commit hook (one-time, required)

git config core.hooksPath .githooks



# Build the bootloader

cd boot && cargo build && cd ..



# Run in QEMU

./scripts/run-qemu.sh

```



See [SETUP.md](docs/SETUP.md) for complete setup and build instructions.



---



## Documentation



- [ROADMAP.md](docs/ROADMAP.md) - Development roadmap and milestones

- [ARCHITECTURE.md](docs/ARCHITECTURE.md) - System architecture

- [SETUP.md](docs/SETUP.md) - Development environment setup guide

- [CONTRIBUTING.md](docs/CONTRIBUTING.md) - Contribution guidelines

- [CODING_STANDARDS.md](docs/CODING_STANDARDS.md) - Coding standards and style guide

- [CHARTER.md](docs/CHARTER.md) - Project charter and design principles

- [UNSAFE_GUIDELINES.md](docs/UNSAFE_GUIDELINES.md) - Unsafe Rust policy



---



## Development Phases



### Phase 0: Foundation & Design — Complete

Established structure, documentation, and development environment.



### Phase 1: Proof of Life (Q2-Q3 2026) — Current

Boot via UEFI, basic memory management, serial output.

- Task 1.1.1 (UEFI Bootloader): complete

- Task 1.1.2 (Kernel Entry Point Handoff): complete — verified on QEMU

- Task 1.1.3 (Basic Serial Output): complete — "Hello from Ferrous!" on serial console



### Phase 2: Core Kernel (Q4 2026 - Q2 2027)

Scheduler, IPC, capability system, first user-space program.



### Phase 3: Isolation (Q3-Q4 2027)

User-space drivers, fault containment, service restart.



### Phase 4: Modern Workloads (2028)

Container primitives, resource groups, observability pipeline.



### Phase 5: Validation (2029+)

Performance benchmarks, security audit, formal verification.



See [ROADMAP.md](docs/ROADMAP.md) for complete details.



---



## Contributing



Contributions are welcome! Ferrous Kernel is an open-source research project. We value contributions of all kinds:



- Code contributions

- Documentation improvements

- Bug reports and fixes

- Architecture discussions and ADRs

- Testing and feedback



**Getting Started:**

- Read [CONTRIBUTING.md](docs/CONTRIBUTING.md) for detailed guidelines

- Run `git config core.hooksPath .githooks` after cloning to enable the pre-commit formatter check

- Check [open issues](https://github.com/iamvirul/ferrous-kernel/issues) for tasks

- Review the [ROADMAP.md](docs/ROADMAP.md) for current phase work

- Join discussions and share ideas



**What to Expect:**

- Rigorous code review (especially for unsafe code)

- Design justification for major changes (ADRs)

- High standards for correctness and safety

- Collaborative and respectful environment



See [CONTRIBUTING.md](docs/CONTRIBUTING.md) for the complete contribution guide.



---



## Non-Goals



To keep the project focused, these are **explicitly out of scope**:



- Desktop/GUI support (research phase)

- Full POSIX compatibility

- Running existing Linux binaries

- Supporting legacy hardware

- Backward compatibility with anything



These might be explored later, but not during core development.



---



## License



This project is licensed under the Apache License 2.0 - see the [LICENSE](LICENSE) file for details.



Apache 2.0 is a permissive open-source license that provides explicit patent protection and allows for flexible use, including in commercial and proprietary contexts. This license is popular in the Rust ecosystem and modern software development.



---



## Inspiration & Related Work



This project stands on the shoulders of giants:



- **seL4** - Formal verification, capability model

- **Redox OS** - Rust microkernel

- **Fuchsia** - Capability-based, modern design

- **Linux** - Decades of kernel wisdom (and lessons in what to avoid)

- **MINIX 3** - Fault tolerance and isolation



---



## FAQ



**Q: When will this be usable?**

A: This is a multi-year research project. Don't expect to run production workloads for several years.



**Q: Why not contribute to Redox OS?**

A: Redox is excellent. Ferrous explores different design points (capability model, observability-first, etc.). Multiple experiments are healthy.



**Q: Will this support my hardware?**

A: Initially only QEMU x86_64. Real hardware support comes later. ARM64 is planned.



**Q: Can I use this for my startup/product?**

A: Not yet. This is research-grade software. Stability and completeness are years away.



**Q: How can I help?**

A: Check out [CONTRIBUTING.md](docs/CONTRIBUTING.md) for ways to contribute. We welcome code contributions, documentation improvements, bug reports, and architectural discussions.



---



## Project Status



This project is in its infancy. The roadmap is ambitious. Progress will be incremental.



If you're interested in the long-term future of operating systems, kernel security, or Rust systems programming - welcome. Let's build something remarkable.



---



**"Correctness first. Performance follows. Features last."**