https://github.com/varnish/tinykvm

VMM for native-performance sandboxing
https://github.com/varnish/tinykvm

high-performance kvm micro-vm sandbox virtual-machines

Last synced: 7 months ago
JSON representation

VMM for native-performance sandboxing

• Host: GitHub
• URL: https://github.com/varnish/tinykvm
• Owner: varnish
• License: gpl-2.0
• Created: 2020-08-15T14:23:02.000Z (over 5 years ago)
• Default Branch: master
• Last Pushed: 2025-06-15T18:10:57.000Z (7 months ago)
• Last Synced: 2025-06-15T19:28:17.430Z (7 months ago)
• Topics: high-performance, kvm, micro-vm, sandbox, virtual-machines
• Language: C++
• Homepage:
• Size: 1.58 MB
• Stars: 604
• Watchers: 8
• Forks: 16
• Open Issues: 6
• Metadata Files:
  • Readme: README.md
  • License: LICENSE
  • Code of conduct: CODE_OF_CONDUCT.md

Awesome Lists containing this project

• awesome-repositories - varnish/tinykvm - VMM for native-performance sandboxing (C++)

README

          
TinyKVM userspace emulator library

==============

TinyKVM is a simple, slim and specialized userspace emulator library with _native performance_.

TinyKVM is designed to execute regular Linux programs and also excels at request-based workloads in high-performance HTTP caches and web servers.

KVM is the most robust, battle-hardened virtualization API that exists right now. It is only 40k LOC in the kernel, and it is the foundation of the modern public cloud. TinyKVM uses only a fraction of the KVM API.

## Userspace Emulation

Userspace emulation means running userspace programs. You can take a regular Linux program that you just built in your terminal and run it in TinyKVM. It will have the same exact run-time, the same exact CPU features and so on.

The rule-of-thumb is thus: If you can run it locally on your machine, you can run it in TinyKVM, at the same speed.

But there are some differences:

- TinyKVM has an execution timeout feature, allowing automatic stopping of stuck programs

- TinyKVM has memory limits

- TinyKVM can fork an initialized program into hundreds of pre-initialized VMs

- TinyKVM can load programs while preferring hugepages, leading to performance gains

## Hardware Virtualization

A very understated feature of running directly on the CPU using hardware virtualization is that you don't need fancy toolchains to build programs. This is a most surprising and welcome feature as building and working with other architectures is often a struggle.

Secondly, as CPUs evolve, so does TinyKVM. It never has to be updated, yet it will continue to run at native speeds on your CPU.

## Licensing

TinyKVM and VMOD-TinyKVM are released under a dual licensing model:

- **Open Source License**: GPL‑3.0 (see [LICENSE](LICENSE)).

- **Commercial License**: Available under terms controlled by Varnish Software.

For commercial licensing inquiries, please contact:

compliance@varnish-software.com.

## Contributing

We welcome contributions! By submitting a pull request or other contribution,

you agree to our [Contributor License Agreement](CONTRIBUTOR_LICENSE_AGREEMENT.md)

and our [Code of Conduct](CODE_OF_CONDUCT.md).

For details on how to contribute, please refer to this document.