Skip to main content
FOSDEM PWA

Distributing Rust in RPMs for fun (relatively speaking) and profit

UB2.147 | Day 2 | 14:00 - 14:25 | Speakers: Fabio Valentini

Distributing Rust in RPMs for fun (relatively speaking) and profit
A picture of a devroom at FOSDEM 2024
Open in browser

Notes

Abstract

This talk gives an overview of how Rust libraries ("crates") and applications are packaged as RPMs for Fedora Linux, and how this distribution mechanism addresses multiple shortcomings of the limited functionality of the distribution mechanism built-in to cargo, the Rust package manager:

  • Application updates that are integrated with the system package manager.
  • Automatic distribution of security updates independent of application releases.
  • System integration features like shell completions, manual pages, launchers, etc.
  • Test coverage for CPU architectures that are usually not available in CI systems.

Packaging Rust crates as individual RPM packages also simplifies package maintainer responsibilities, despite increased up-front work:

  • Security issues in library code are patched once instead of once per affected package.
  • Audits can happen once per crate / version instead of once per vendored copy.
  • Test coverage for library crates (not possible when using vendored dependencies).

Speakers

Fabio Valentini

Fabio Valentini ("decathorpe") has contributed to Fedora Linux for over a decade and has been a member of the Engineering Steering Committee (FESCo) and Packaging Committee (FPC) for multiple years. He has been the main maintainer of Rust packages in Fedora Linux for the past few years, and is now also the primary developer of the tooling that is used for packaging Rust crates and applications as RPM packages.

Notice: The placeholder video image is licensed under CC BY-SA 4.0. The original image can be found hereChanges made to the image are: Cropped the image to a new ratio, part of the image was cut off.