Hi Stefan, Sorry for being so late, if it is still possible I would like to propose the following project:
=== A sandboxing tool for virtiofsd === ''Summary:''' Create a tool that runs virtiofsd in a sandboxed environment Virtiofs is a shared file system that lets virtual machines access a directory tree on the host. Unlike existing approaches, it is designed to offer local file system semantics and performance. Currently, virtiofsd integrates the sandboxing code and the server code in a single binary. The goal is to extract that code and create an external tool that creates a sandbox environment and runs virtiofsd in it. In addition, that tool should be extended to be able to run virtiofsd in a restricted environment with Landlock. This will allow greater flexibility when integrating virtiofsd into a VMM or running it inside a container. Goals: * Understand how to setup a restricted environment using chroot, namespaces, and Landlock * Refactor virtiofsd to extract the sandbox code to its own crate * Create an external sandboxing tool for virtiofsd '''Links:''' * https://virtio-fs.gitlab.io/ * https://gitlab.com/virtio-fs/virtiofsd * https://landlock.io/ '''Details:''' * Project size: 175 hours * Skill level: intermediate (knowledge of Rust and C) * Language: Rust * Mentor: German Maglione <gmagli...@redhat.com>, Stefano Garzarella < sgarz...@redhat.com> * Suggested by: German Maglione <gmagli...@redhat.com> On Fri, Jan 27, 2023 at 4:18 PM Stefan Hajnoczi <stefa...@gmail.com> wrote: > Dear QEMU, KVM, and rust-vmm communities, > QEMU will apply for Google Summer of Code 2023 > (https://summerofcode.withgoogle.com/) and has been accepted into > Outreachy May 2023 (https://www.outreachy.org/). You can now > submit internship project ideas for QEMU, KVM, and rust-vmm! > > Please reply to this email by February 6th with your project ideas. > > If you have experience contributing to QEMU, KVM, or rust-vmm you can > be a mentor. Mentors support interns as they work on their project. It's a > great way to give back and you get to work with people who are just > starting out in open source. > > Good project ideas are suitable for remote work by a competent > programmer who is not yet familiar with the codebase. In > addition, they are: > - Well-defined - the scope is clear > - Self-contained - there are few dependencies > - Uncontroversial - they are acceptable to the community > - Incremental - they produce deliverables along the way > > Feel free to post ideas even if you are unable to mentor the project. > It doesn't hurt to share the idea! > > I will review project ideas and keep you up-to-date on QEMU's > acceptance into GSoC. > > Internship program details: > - Paid, remote work open source internships > - GSoC projects are 175 or 350 hours, Outreachy projects are 30 > hrs/week for 12 weeks > - Mentored by volunteers from QEMU, KVM, and rust-vmm > - Mentors typically spend at least 5 hours per week during the coding > period > > For more background on QEMU internships, check out this video: > https://www.youtube.com/watch?v=xNVCX7YMUL8 > > Please let me know if you have any questions! > > Stefan > > -- German
