On Fri, 17 Feb 2023 at 11:43, German Maglione <gmaglione@xxxxxxxxxx> wrote: > > Hi Stefan, > > Sorry for being so late, if it is still possible I would like to propose the > following project: Added, thanks! https://wiki.qemu.org/Internships/ProjectIdeas/VirtiofsdSandboxingTool Stefan > > === A sandboxing tool for virtiofsd === > > ''Summary:''' Create a tool that runs virtiofsd in a sandboxed environment > > Virtiofs is a shared file system that lets virtual machines access a directory > tree on the host. Unlike existing approaches, it is designed to > offer local file system semantics and performance. > > Currently, virtiofsd integrates the sandboxing code and the server code in a > single binary. The goal is to extract that code and create an external tool that > creates a sandbox environment and runs virtiofsd in it. In addition, that tool > should be extended to be able to run virtiofsd in a restricted environment with > Landlock. > > This will allow greater flexibility when integrating virtiofsd into a VMM or > running it inside a container. > > Goals: > * Understand how to setup a restricted environment using chroot, namespaces, and > Landlock > * Refactor virtiofsd to extract the sandbox code to its own crate > * Create an external sandboxing tool for virtiofsd > > '''Links:''' > * https://virtio-fs.gitlab.io/ > * https://gitlab.com/virtio-fs/virtiofsd > * https://landlock.io/ > > '''Details:''' > * Project size: 175 hours > * Skill level: intermediate (knowledge of Rust and C) > * Language: Rust > * Mentor: German Maglione <gmaglione@xxxxxxxxxx>, Stefano Garzarella <sgarzare@xxxxxxxxxx> > * Suggested by: German Maglione <gmaglione@xxxxxxxxxx> > > > On Fri, Jan 27, 2023 at 4:18 PM Stefan Hajnoczi <stefanha@xxxxxxxxx> wrote: >> >> Dear QEMU, KVM, and rust-vmm communities, >> QEMU will apply for Google Summer of Code 2023 >> (https://summerofcode.withgoogle.com/) and has been accepted into >> Outreachy May 2023 (https://www.outreachy.org/). You can now >> submit internship project ideas for QEMU, KVM, and rust-vmm! >> >> Please reply to this email by February 6th with your project ideas. >> >> If you have experience contributing to QEMU, KVM, or rust-vmm you can >> be a mentor. Mentors support interns as they work on their project. It's a >> great way to give back and you get to work with people who are just >> starting out in open source. >> >> Good project ideas are suitable for remote work by a competent >> programmer who is not yet familiar with the codebase. In >> addition, they are: >> - Well-defined - the scope is clear >> - Self-contained - there are few dependencies >> - Uncontroversial - they are acceptable to the community >> - Incremental - they produce deliverables along the way >> >> Feel free to post ideas even if you are unable to mentor the project. >> It doesn't hurt to share the idea! >> >> I will review project ideas and keep you up-to-date on QEMU's >> acceptance into GSoC. >> >> Internship program details: >> - Paid, remote work open source internships >> - GSoC projects are 175 or 350 hours, Outreachy projects are 30 >> hrs/week for 12 weeks >> - Mentored by volunteers from QEMU, KVM, and rust-vmm >> - Mentors typically spend at least 5 hours per week during the coding period >> >> For more background on QEMU internships, check out this video: >> https://www.youtube.com/watch?v=xNVCX7YMUL8 >> >> Please let me know if you have any questions! >> >> Stefan >> > > > -- > German
