Clone this repo:
  1. 5e77e88 crosvm: add pure virtio net device by Stephen Barber · 5 days ago master
  2. d527d85 crosvm: Add barrier before updating used_ring index by Dylan Reid · 6 days ago
  3. c28f6a6 crosvm: Add virtio random by Dylan Reid · 10 days ago
  4. d579e3c crosvm: rename Net virtio device to VhostNet by Stephen Barber · 12 days ago
  5. 604d989 net_util: implement Read, Write, and Pollable for Tap by Stephen Barber · 12 days ago

Chrome OS KVM

This component, known as crosvm, runs untrusted operating systems along with virtualized devices. No actual hardware is emulated. This only runs VMs through the Linux's KVM interface. What makes crosvm unique is a focus on safety within the programming language and a sandbox around the virtual devices to protect the kernel from attack in case of an exploit in the devices.


The crosvm source code is organized into crates, each with their own unit tests. These crates are:

  • kernel_loader Loads elf64 kernel files to a slice of memory.
  • kvm_sys low-level (mostly) auto-generated structures and constants for using KVM
  • kvm unsafe, low-level wrapper code for using kvm_sys
  • crosvm the top-level binary front-end for using crosvm
  • x86_64 Support code specific to 64 bit intel machines.


Currently there is no front-end, so the best you can do is run cargo test in each crate.