Even more README updates (#130)

geofft · alex · alex · commit 64178fb38c9c · 2019-08-19T09:07:36.000-05:00
* Even more README updates

* Apply suggestions from code review

Co-Authored-By: Alex Gaynor &lt;alex.gaynor@gmail.com&gt;
diff --git a/README.md b/README.md
@@ -1,6 +1,63 @@
 # Linux kernel modules in safe Rust
 
-1. Make sure you have Rust installed, as well as [LLVM/Clang 3.9 or higher](https://github.com/rust-lang/rust-bindgen/issues/1316) and kernel headers. Install [cargo-xbuild](https://github.com/rust-osdev/cargo-xbuild) and the `rust-src` and `rustfmt` components for `rustup` component:
+This is a framework for writing loadable Linux kernel modules in Rust,
+using safe abstractions around kernel interfaces and primitives.
+
+For more information on the motivation and goals for this project, check
+out [our presentation at Linux Security Summit North America
+2019](https://lssna19.sched.com/event/RHaT). We're immediately focusing
+on making this project viable for out-of-tree modules, but we also see
+this project as a testing ground for whether in-tree components could be
+written in Rust.
+
+There is a simple demo module in the hello-world directory, as well as
+various other examples in the tests/ directory.
+
+## Design
+
+We run [bindgen](https://github.com/rust-lang/rust-bindgen) on the
+kernel headers to generate automatic Rust FFI bindings. bindgen is
+powered by [Clang](https://clang.llvm.org), so we use use the kernel's
+own build system to determine the appropriate CFLAGS (see
+`kernel-cflags-finder`) and pass them to bindgen (see `build.rs`). Then we
+write safe bindings to these types (see the various files inside `src/`).
+
+Each kernel module in Rust lives in a `staticlib` crate, which generates
+a `.a` file. We pass this object to the Linux kernel's own module build
+system for linking into a `.ko`.
+
+The kernel is inherently multi-threaded: kernel resources can be
+accessed from multiple userspace processes at once, which causes
+multiple threads of execution inside the kernel to handle system calls
+(or interrupts). Therefore, the `KernelModule` type is
+[`Sync`](https://doc.rust-lang.org/book/ch16-04-extensible-concurrency-sync-and-send.html),
+so all data shared by a kernel module must be safe to access
+concurrently (such as by implementing locking).
+
+## System requirements
+
+We're currently only running CI on Linux 4.15 (Ubuntu Xenial) on amd64,
+although we try to keep support for newer (and perhaps older) kernels
+working. Other architectures should work but are untested - see
+[#112](https://github.com/fishinabarrel/linux-kernel-module-rust/issues/112)
+for expected status.
+
+You'll need to have [Rust](https://www.rust-lang.org) - in particular
+Rust nightly, as we use [some unstable
+features](https://github.com/fishinabarrel/linux-kernel-module-rust/issues/41) -
+and [Clang](https://clang.llvm.org) installed. You need LLVM/Clang 3.9
+or higher [to bind constants
+properly](https://github.com/rust-lang/rust-bindgen/issues/1316). If
+you're running kernel 5.0 or newer, [you'll need Clang
+9](https://github.com/fishinabarrel/linux-kernel-module-rust/issues/123)
+(currently the development release).  You may need to set the `CLANG`
+environment variable appropriately, e.g., `CLANG=clang-9`.
+
+## Building hello-world
+
+1. Install clang, kernel headers,
+[cargo-xbuild](https://github.com/rust-osdev/cargo-xbuild), and the
+`rust-src` and `rustfmt` components from `rustup`:
 
 ```
 apt-get install llvm clang linux-headers-"$(uname -r)" # or the equivalent for your OS
