Clone this repo:
  1. be4a4c9 gitignore: Remove Cargo.lock by Dylan Reid · 8 days ago factory-eve-9667.B master
  2. 71501e0 sys_util: Add TempDir class by Dylan Reid · 2 weeks ago
  3. 7e33f61 crosvm: add virtio MMIO transport module by Zach Reizner · 3 weeks ago firmware-twinkie-9628.B
  4. f61e803 crosvm: add virtio module with queue module by Zach Reizner · 3 weeks ago
  5. c1c23a8 crosvm: add child process device proxy by Zach Reizner · 3 weeks ago

Chrome OS KVM

This component, known as crosvm, runs untrusted operating systems along with virtualized devices. No actual hardware is emulated. This only runs VMs through the Linux's KVM interface. What makes crosvm unique is a focus on safety within the programming language and a sandbox around the virtual devices to protect the kernel from attack in case of an exploit in the devices.

Overview

The crosvm source code is organized into crates, each with their own unit tests. These crates are:

  • kvm-sys low-level (mostly) auto-generated structures and constants for using KVM
  • kvm unsafe, low-level wrapper code for using kvm-sys
  • crosvm the top-level binary front-end for using crosvm

Usage

Currently there is no front-end, so the best you can do is run cargo test in each crate.