16:26 <re_irc> <jessebraham> burrbull: Great, thank you so much! I'll take a look tomorrow

17:11 <re_irc> <pacrat (@pacrat:matrix.org)> Is a fully rust-based OS for networking on embedded hardware realisitic? I'm thinking that all the good foss firewalls are either Linux or Freebsd based but suffer from the same issues of memory allocation. This seems like an difficulet thing to do because of the various architectures and drivers needed to run network hardware.

17:13 <re_irc> <newam> I'm not sure what you mean by networking, but I have done a number of personal projects with Ethernet entirely in rust (and asm)

17:13 <re_irc> <pacrat (@pacrat:matrix.org)> I mean to say its a ton of work, and would need alot of community support.

17:14 <re_irc> <newam> work, yes, but that's part of the fun 🙃

17:15 <re_irc> <pacrat (@pacrat:matrix.org)> newam: I see projects like pfsense and opnsense, which use freebsd, but those systems are riddled with funky stuff like python, php, C-code, and legacy goop.

17:15 <re_irc> <newam> Ahhh, so higher level software for a layer 3 networking appliance

17:16 <re_irc> <pacrat (@pacrat:matrix.org)> Many corporate types turn their nose up to those firewall projects, but some consider them to be way better than the corporate poop that gets extruded by the big-boys..

17:17 <re_irc> <pacrat (@pacrat:matrix.org)> Yes, but also low levels too. All layers, hardware, as well.

17:17 <re_irc> <newam> What's the motivation with doing bare metal for a project like that?

17:17 <re_irc> Most of those appliances have rather large CPUs that can run a full OS

17:17 <re_irc> <pacrat (@pacrat:matrix.org)> Rust can do it all from what I see, from layer 0 to presentation

17:18 <re_irc> <pacrat (@pacrat:matrix.org)> Motivation: security mainly. Getting rid of C (over time )

17:18 <re_irc> <pacrat (@pacrat:matrix.org)> +, memory security mainly.

17:19 <re_irc> <newam> Mmmm, it could, but you are right about the "lots of work". Starting with linux or freebsd gives you all the drivers for "free".

17:19 <re_irc> There is also this fully rust OS, I don't know a ton about it but if you want a full-rust solution it might be a good starting point: https://www.redox-os.org/

17:20 <re_irc> <newam> Huh, it just uses smoltcp under the hood for networking, neat!

17:22 <re_irc> <pacrat (@pacrat:matrix.org)> Sounds nice.. Looking at it..

17:28 <re_irc> <pacrat (@pacrat:matrix.org)> The big problem I see is that many individuals and businesses use commodity firewalls that are easy to hack, and offer little security, ... If there was an embedded rust os that could work on vendor hardware, then that would tempt them to use it.

17:29 <re_irc> <pacrat (@pacrat:matrix.org)> * they (vendors) would be tempted to use it.and support

17:29 <re_irc> <pacrat (@pacrat:matrix.org)> Of course support means $$$.

17:29 <re_irc> <pacrat (@pacrat:matrix.org)> * $$$ for developers.

17:30 <re_irc> <newam> Redox did get a $200k donation recently

17:30 <Shellhound> it wouldn't tempt them to use it. if they cared, they would use pfsense/etc, which are all-in-all fine.

17:31 <re_irc> <pacrat (@pacrat:matrix.org)> But pfsense only really works on x86-ish hardware. So it would still be some work to port it, and its inherent flaws will still be baked in.

17:32 <re_irc> <pacrat (@pacrat:matrix.org)> Looks like arm, risc-v, risc appliances are getting popular.

17:34 <re_irc> <pacrat (@pacrat:matrix.org)> Shellhound: Yea, sorta agree with you. Someone has to make them care. Certain governmental objectives need to focus on it.

17:35 <Shellhound> you can buy a pfsense box for sub-$500 straight from the pfsense website. if the companies who are using a dodgy ISP-supplied router cared, they would've bought one. the problem here isn't really the technical side, it's pretty much entirely working out how to make people care.

17:36 <re_irc> <pacrat (@pacrat:matrix.org)> There is some activity in that area in US , but at least business should care, they are getting hammerd by hackers, and many utilities are 20 years in the past technologically. Of courrse tey need more than just a firewall, the entire infrastructure is rotten.

17:38 <Shellhound> yup.

17:38 <re_irc> <pacrat (@pacrat:matrix.org)> Shellhound: You can't make normal people care.. That will never work, but you can make companies care by various means and making their default firewalls meet a minimum level of quality.

17:39 <Shellhound> sure. point is mostly, it's not a technical problem by far. :)

17:39 <re_irc> <pacrat (@pacrat:matrix.org)> Yes, everything is political.

17:41 <re_irc> <newam> Making companies care is also difficult. A client at work still doesn't use TLS certs for services they expose to the internet even though they're free from lets encrypt now :|

17:41 <re_irc> <newam> I offered to help them out, but they just did not care

17:48 <re_irc> <pacrat (@pacrat:matrix.org)> Assume we had all the $$$ and political leveraged to make it happen, how many man-years do you think it would take to fully produce a working OS that targets all major embedded systems that are used for SMB commercial firewalls?

17:49 <re_irc> <pacrat (@pacrat:matrix.org)> +I mean an embedded OS+firewall + OS+switching too.

17:50 <re_irc> <K900> Why is the goal building this in Rust again?

17:50 <re_irc> <K900> Like, it feels like you're trying to frame the problem in terms of "let's do X but in Rust"

17:50 <re_irc> <pacrat (@pacrat:matrix.org)> memory security.

17:50 <re_irc> <K900> When that's unlikely to be the actual problem

17:50 <re_irc> <K900> Memory security against what? What's your threat model?

17:52 <re_irc> <pacrat (@pacrat:matrix.org)> You don't think memory issues are exploitable?

17:54 <re_irc> <K900> I don't think _all_ memory issues are, and I also don't think Rust prevents every possible memory issue

17:54 <re_irc> <pacrat (@pacrat:matrix.org)> There are all sorts of documented tcp buffer overflows and memory issues. Many are undiscovered . To sit around and wait until they are found isn't a good plan in my book.

17:54 <re_irc> <K900> Especially in a kernel, where there will be lots and lots of unsafe code

17:55 <Shellhound> frankly, companies do not normally get broken into because they had a buggy firewall for their office.

17:55 <re_irc> <K900> TCP buffer overflows in kernel code? I don't think I've seen one in a very long time

17:55 <re_irc> <pacrat (@pacrat:matrix.org)> True that rust doen't prevent all memory (or other issues) but its a good foundation.

17:56 <re_irc> <K900> I mean if you have at least a couple person-decades to spend on this

17:56 <re_irc> <K900> Then sure, maybe rewriting everything in Rust is a good idea

17:56 <re_irc> <pacrat (@pacrat:matrix.org)> Shellhound: true, but there is a lot of DOS and DDOS, and limited firewall hacking that affects the internet as a whole.

17:56 <re_irc> <K900> But that's unrealistic

17:57 <re_irc> <K900> And Rust can't prevent DoS or DDoS

17:57 <Shellhound> so you're going to go up to a Government and tell them what, they can solve the dozen or so cases a year of office firewall hacking by mandating that all companies buy your router? :)

17:58 <re_irc> <pacrat (@pacrat:matrix.org)> Thats why I mentioned switching as well, DDOS is a distributed problem that needs a distributed solution.

17:58 <Shellhound> ok, let me know when you have a distributed solution to DDoS. (hint: it doesn't involve rewriting things in Rust.)

17:58 <re_irc> <K900> Nothing can solve DDoS

17:59 <re_irc> <K900> That's kind of the point

17:59 <re_irc> <K900> The best you can do is mitigate it

17:59 <re_irc> <K900> But if you have a huge pile of things sending you data, you need to handle that data somehow

17:59 <re_irc> <K900> And Rust won't help you not have to do that

18:00 <re_irc> <pacrat (@pacrat:matrix.org)> You can reduce the number of infected systems, which isn't a firewall issue, then you can mitigate, bu that is another issue.

18:01 <re_irc> <pacrat (@pacrat:matrix.org)> DDOS is mitigated by companies now, otherwise they would never stop.

18:02 <re_irc> <pacrat (@pacrat:matrix.org)> Those solutions exist, and not perfect, but they work.

18:02 <re_irc> <K900> Honestly, I don't think this argument is going anywhere

18:02 <re_irc> <K900> If you really want to rewrite pfSense in Rust, it's a matter of person-decades

18:02 <re_irc> <K900> And the number of people does not scale proportionally to the number of decades

18:02 <re_irc> <pacrat (@pacrat:matrix.org)> I agree, its probably more.

18:03 <Shellhound> it'd take you person-decades to get to supporting one specific piece of real-world routing hardware, tbh.

18:06 <re_irc> <pacrat (@pacrat:matrix.org)> BTW: Im not propose re-writing pfsense/etc ... This would be new, using modern ideas .

18:07 <re_irc> <K900> There aren't exactly many "modern ideas" left in networking

18:07 <re_irc> <pacrat (@pacrat:matrix.org)> +And targeting more embedded hw.

18:07 <re_irc> <K900> Most things are already done in Linux and/or BSD

18:07 <re_irc> <pacrat (@pacrat:matrix.org)> They said that when they invented the wheel.

18:07 <re_irc> <K900> And hardware is becoming _less_ embedded, not more

18:08 <re_irc> <K900> Well, do you have any specific "modern ideas" that Linux or FreeBSD aren't doing?

18:08 <re_irc> <pacrat (@pacrat:matrix.org)> As long as there is new mathematics and technology there will be new ideas. That is the nature of technology.

18:09 <re_irc> <K900> So you want "new ideas" but you don't know what those ideas are?

18:09 <re_irc> <K900> Which kinda brings me back to the whole solution in search of a problem thing

18:10 <Shellhound> generally speaking, most new ideas in networking wind up in Linux or FreeBSD (usually accompanied by a research paper), and if they're any good they wind up in both.

18:11 <re_irc> <pacrat (@pacrat:matrix.org)> So what is your solution for the future?

18:12 <re_irc> <K900> My solution for what problem?

18:51 <re_irc> <pacrat (@pacrat:matrix.org)> Look at this: https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=linux and from the 10 most recent events, how many of those are related to memory or pointers?

18:52 <re_irc> <James Munns> totally not following the conversation

18:52 <re_irc> <James Munns> but

18:52 <re_irc> <James Munns> in repeated studies, 70% of CVEs are related to memory safety

18:52 <re_irc> <James Munns> chrome, macos, firefox, adobe flash, some more I can't remember

18:53 <re_irc> <James Munns> the BEST project I've seen with a documented study was curl

18:53 <re_irc> <James Munns> where 50% of CVEs were memory safety, IIRC.

18:54 <re_irc> <James Munns> oh, all microsoft products like 2006-current was another study

18:54 <re_irc> <James Munns> (also roughly 70% CVEs from memory safety)

18:54 <re_irc> <mattjperez> I remember that Microsoft one from Levitt's presentation. 70%

18:55 <re_irc> <James Munns> (I was at Ferrous Systems for about 3 years, I've given the "rust pitch" like 100 times, including writing a lot of slides, AMA)

19:06 <re_irc> <James Munns> wow, that's a lot of chat. not gunna chime in on that. hope my irrelevant was at least interesting for someone out there :)

19:17 <re_irc> <monacoprinsen> Hi,

19:17 <re_irc> Do any of you know any good flight controllers that you can program in rust?

19:18 <re_irc> <monacoprinsen> Thinking about making a small drone

19:19 <re_irc> <James Munns> * statistics were

19:34 <re_irc> <therealprof> monacoprinsen: Uhm, STM even offers a drone kit which is Rustable... _A lot_ of flight controllers are built around STM32 MCUs...

20:29 <re_irc> <firefrommoonlight> Yo I have a pretty extensive Rust drone project

20:29 <re_irc> <firefrommoonlight> I'm targetting custom G4 and H7 boards

20:30 <re_irc> <firefrommoonlight> G4 for cheaper one with 20mm/30mm mountings. H7 with 30mm mountings, more busses broken out, dedicated 10V line, more power filtering etc

20:31 <re_irc> <firefrommoonlight> Have found no rust-related roadblocks, but bear in mind a full FC firmware has a lot of components!

20:31 <re_irc> <firefrommoonlight> And needs some care re project structure and complexity management to keep it organized

20:33 <re_irc> <firefrommoonlight> You could probably program any off-the-shelf STM32 FC using Rust; ideally one with broken-out SWD pins

20:33 <re_irc> <firefrommoonlight> * SWD pads

20:35 <re_irc> <firefrommoonlight> Also of note, you can share a surprising amount of code and hardware between quads and fixed-wing

21:07 <re_irc> <monacoprinsen> Interesting, will look into those boards.

21:07 <re_irc> In regards to Hal support, which one is better?

21:07 <re_irc> Might try to get the G4 to get started

21:07 <re_irc> Or are they all well supported.

21:36 <re_irc> <therealprof> I'm not up-to-date wrt STM32G support, sorry.

21:51 <re_irc> <monacoprinsen> therealprof: No prob, tnx anyways!

21:51 <re_irc> <monacoprinsen> firefrommoonlight: How do you handle video feed?

21:57 <re_irc> <firefrommoonlight> monacoprinsen: I use this one, which I wrote - https://docs.rs/stm32-hal2/latest/stm32_hal2/

21:59 <re_irc> <firefrommoonlight> My design doesn't support analog video - the DJI or HDZero cam and transmitter handle the video itself. I have a pin header for this purpose. OSD is handled using MSP Displayport over UART, which DJI goggles etc support. Ideally I'd like a pixel-buffer-based API, but that's not possible with current VTXs. (Could do a lot of interesting things with that, like overlay points onto the real world, like a base point, steerpoints etc)

22:06 <re_irc> <monacoprinsen> firefrommoonlight: Great, thanks for sharing!