Skip to content

oomol-lab/ovm-next

BranchesTags

Repository files navigation

ovm next

Lightweight Linux microVM manager backed by libkrun. Boots Linux guests on macOS/arm64 and Linux/(arm64|amd64) using Apple Hypervisor or KVM, with optional Podman-compatible container engine support.

Subcommands

start — Start the VM with Podman engine

ovm start [flags]

Boots a microVM running a Podman-compatible container engine. The VM lifecycle is tied to the process; stopping the process shuts down the VM.

Flag Type Default Description
--cpus int host CPU count Number of vCPU cores
--memory uint64 host available VM memory in MB (min 512)
--id string Session name; workspace is ~/.cache/ovm-krun/<id>
--envs string[] Environment variables (KEY=VALUE), repeatable
--raw-disk string[] Attach ext4 disk (<path>[,version=<v>][,uuid=<u>][,mnt=<guest-path>]), repeatable
--mount string[] VirtIO-FS shared directory (/host:/guest[,ro]), repeatable
--var-disk string Persistent ext4 disk for guest /var (<path>[,version=<v>])
--network string gvisor Virtual network: gvisor (NAT via 192.168.127.0/24) or tsi (transparent socket interception)
--system-proxy bool false Forward macOS system HTTP/HTTPS proxy to guest
--podman-api string /tmp/<id>/socks/podman-api.sock Unix socket for host-side Podman API
--manage-api string /tmp/<id>/socks/vmctl.sock Unix socket for VM management API
--ssh-private-key string Symlink path for generated SSH private key
--ssh-public-key string Symlink path for generated SSH public key
--forward-unix string[] Forward guest unix socket to host unix socket (<guest-path>:<host-path>), repeatable
--report-url string HTTP endpoint for lifecycle events (unix:///path or tcp://host:port)
--log-level string info Log verbosity: trace, debug, info, warn, error, fatal, panic
--log-to string /tmp/<id>/logs/vm.log Custom log file path

Examples

# Start with 4 cores and 2 GB RAM
ovm start --cpus 4 --memory 2048 --id my-session

# Mount a host directory read-only and attach a data disk
ovm start --id dev \
  --mount /home/user/src:/workspace,ro \
  --raw-disk /var/lib/data.img

# Forward macOS system proxy into the guest
ovm start --id dev --system-proxy

# Forward one guest unix socket to host unix socket
ovm start --id dev --forward-unix /tmp/a.sock:/tmp/a.sock

# Multiple unix socket forwards
ovm start --id dev \
  --forward-unix /tmp/a.sock:/tmp/a.sock \
  --forward-unix /tmp/b.sock:/tmp/b.sock

Built-in SSH agent forwarding:

  • If host SSH_AUTH_SOCK is available, ovm also forwards guest /opt/ssh_auth/oo-ssh-agent.sock to host ~/.cache/ovm-krun/<id>/socks/oo-ssh-agent.sock.
  • If user already configures /opt/ssh_auth/oo-ssh-agent.sock via --forward-unix, user config takes precedence and built-in forwarding is skipped.

--raw-disk Usage and Behavior

Usage:

--raw-disk <path>[,version=<v>][,uuid=<u>][,mnt=<guest-path>]

Defaults:

  • version=define.DefaultRawDiskVersion
  • uuid=random
  • mnt=/mnt/<UUID>

Behavior matrix:

raw-path version xattr version compare UUID rule mnt rule action
not exists N/A N/A user uuid or random user mnt or /mnt/<UUID> create disk, write UUID, write version xattr
exists missing skip bump keep on-disk UUID (ignore user uuid) if mnt empty, use probed mount target no regenerate
exists present same keep on-disk UUID (ignore user uuid) if mnt empty, use probed mount target no regenerate
exists present different keep on-disk UUID (ignore user uuid) if mnt empty, use probed mount target regenerate and write latest version xattr

--var-disk Usage and Behavior

Usage:

--var-disk <path>[,version=<v>]

Fixed/default semantics:

  • version default is define.DefaultRawDiskVersion
  • uuid is fixed to define.VarDataDiskUUID
  • mnt is fixed to /var

Behavior matrix:

  • version compare = same: version xattr exists and equals expected version
  • version compare = different: version xattr is missing or differs from expected version
var-disk path UUID check version compare action
not exists N/A N/A create disk with fixed UUID and write version xattr
exists not define.VarDataDiskUUID any regenerate with fixed UUID and write version xattr
exists is define.VarDataDiskUUID same no regenerate
exists is define.VarDataDiskUUID different regenerate and write latest version xattr

attach — Attach to a running VM

ovm attach [--pty] <session-name> [-- <command> [args...]]

Connects to a running VM session via SSH. The session name maps to ~/.cache/ovm-krun/<name>.

Flag Type Default Description
--pty bool false Allocate a pseudo-terminal for interactive shell
--log-level string info Log verbosity

Examples

# Interactive shell
ovm attach --pty my-session

# Run a single command
ovm attach my-session -- ls -la /workspace

# Run a multi-arg command
ovm attach my-session -- podman ps -a

Platform Support

OS Architecture
macOS arm64 (Apple Silicon)
Linux arm64, amd64

Related projects

About

self contained vm/container used by oomol studio

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 13

v5.1.8 Latest
Apr 16, 2026
+ 12 releases

Packages

 
 
 

Contributors

Languages