Skip to content

Stellux operating system is my research operating system project inspired by Symbiote's philosophy of providing runtime privilege level switching for userspace threads.

License

Notifications You must be signed in to change notification settings

FlareCoding/StelluxOS

Repository files navigation

logo

Stellux OS

StelluxOS is a personal operating system project inspired by Symbiote project's philosophy of providing runtime privilege level switching mechanism for userspace threads. The unique feature of StelluxOS is that within the authoritative OS-level privileged domain, threads can transition in and out of hardware privilege at a very low cost using light-weight primitives called elevate and lower. This use of dynamic privilege would allow deprivileging large parts of the kernel and allow threads within the "blessed" kernel address space to acquire privilege when needed, performing privileged operations, and dropping hardware privileges right after.

The benefit of this design that we aim to explore is that, for example, if a driver or a filesystem component has a memory corruption bug and causes a stray write that would overwrite a bit in some page table entry, in a regular monolithic kernel this might not show any problematic symptoms until later down the line, however in Stellux, if an unprivileged driver makes such a stray write into a privileged region or data structure, it would cause a page fault with a nice backtrace showcasing what happened right there and then when it actually happened.

Additionally, this design might bring a new persepctive on how privilege is viewed, used, and leveraged in userspace applications, potentially offering new design spaces that we are yet to explore. It is important to note, the goal of StelluxOS is NOT to replace an existing design or claim that this one is better, but rather explore a new point in the design space and potentially offer a new avenue for operating system research.

badge contributors last update forks stars open issues license


📖 Table of Contents

🌟 About the Project

StelluxOS is an operating system project inspired from my research with Tommy Unger and Jonathan Appavoo at Boston University. The work that inspired it is Symbiote - a chronokernel approach to dissolving the barrier between userspace and kernelspace. The motivation behind Symbiote was to provide an "elevation" mechanism for userspace threads to allow them to run at privileged supervisor level. The benefit of this approach is that it combines debuggability and ease of development of userspace applications, encourages the use of third-party libraries, while providing functionality and performance benefits of a kernel module.

The goal for Stellux operating system is to be developed stemming and being built on top of Symbiote's philosophy that threads can make a runtime choice of elevating or lowering themselves, effectively transitioning in and out of hardware privilege. The benefit of this design that we aim to explore is that, for example, if a driver or a filesystem component has a memory corruption bug and causes a stray write that would overwrite a bit in some page table entry, in a regular monolithic kernel this might not show any problematic symptoms until later down the line, however in Stellux, if an unprivileged driver makes such a stray write into a privileged region or data structure, it would cause a page fault with a nice backtrace showcasing what happened right there and then when it actually happened.

📷 Screenshots

screenshot
screenshot

🎯 Features

  • Userspace and syscall support
  • Multithreading
  • SMP multicore support
  • Kernel and userspace thread management
  • elevate/lower mechanisms for runtime privilege switching
  • PCI device enumeration
  • Optimized write-combining graphics buffer management
  • HPET and time management support
  • Stacktrace dump from the interrupt context
  • Kernel module subsystem allowing daemons and drivers to be spawned easily
  • Xhci driver module for USB stack support
  • Unit testing framework integrated with Github Actions CI pipeline
  • VFS and RAM filesystem support
  • GDB server stub for low-level kernel debugging, including breakpoint and memory inspection support on baremetal

⚙️ Getting Started

‼️ Prerequisites

Clone the repository

git clone https://github.com/FlareCoding/StelluxOS.git

Install dependencies

make install-dependencies

🛠️ Building and Running the Project

To build the Stellux image, simply run

make

Running in QEMU in a separate graphical window

make run

Running in QEMU headless in the current shell
Note: use this if in ssh session

make run-headless

Running unit-tests

make execute-unit-tests

🔧 Debugging

  1. Run a headless QEMU session in the current shell
make run-debug-headless

Note: This will hang until a GDB client connects to the stub

  1. In a separate shell connect to the GDB server
make connect-gdb

Note: Type 'y' in the prompt and continue, the kernel will hit a breakpoint on kernel entry

🔧 Baremetal Debugging

In my personal setup, I have installed a PCIe serial controller card which Stellux looks for during PCI device enumeration. If you include enable-gdb-stub in GRUB kernel command line args, and have a second machine watching the serial port, you could run make connect-gdb-serial and be able to debug Stellux running on a baremetal machine using GDB.

Note: you might need to modify the connect-gdb-serial make target to specify your serial tty device you are using.

👋 Contributing

Contributions are always welcome through pull requests.

📰 License

License: MIT

💎 Acknowledgements

This work was supported by the Red Hat Collaboratory at Boston University under the award “Symbiotes: A New Step in Linux’s Evolution”, Red Hat Collaboratory Research Incubation Award Program (2024-01-RH12)

Additionally, special thanks to Dr. Tommy Unger for the Symbiote and kElevate work, Dr. Jonathan Appavoo for supporting this project from inception, and all the support they brought to the table.

About

Stellux operating system is my research operating system project inspired by Symbiote's philosophy of providing runtime privilege level switching for userspace threads.

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published