One of the founders of Ferrous Systems has answered some questions about it on Hacker News. See here and here.
The spec they created for the certification process is open source. There is some “tiny” amount of the patches that aren’t public but it sounds like it is essentially a recent stable release of Rust because the other major changes have been contributed upstream. It’s not clear if they definitely plan to eventually release the rest of thier changes as open source or not but they will consider it.
Well, Rust is MIT + Apache 2.0, so they can do this. It isn’t copyleft.
Personally I consider it a a shame that rust and it’s ecosystem isn’t at least weakly copyleft (e.g. LGPL or MPL) though there are some good reasons not to use those specifically. (LGPL isn’t not well defined if you don’t use dynamic linking, MPL is younger than rust, but would have been an excellent fit otherwise). And the ecosystem follows the leader for the most part.
But that is neither here nor there, and I’m not interested in arguing about licenses on the Internet. :)