Skip to content

VZ Operations (macOS Apple Silicon)

This guide covers day-to-day operations with the VZ backend.

VZ support is currently Apple Silicon-only.

Basic Operations

Create a shed

# Basic creation
shed create myproject --backend=vz

# With a git repository
shed create myproject --backend=vz --repo=git@github.com:user/repo.git

# With a local directory (mounted via VirtioFS)
shed create myproject --backend=vz --local-dir=/path/to/project

# With custom resources
shed create myproject --backend=vz --cpus=4 --memory=8192

Start and stop

shed start myproject
shed stop myproject

Delete

shed delete myproject

List sheds

shed list

Local Directory Mounting

When using --local-dir, the host directory is shared with the VM via VirtioFS and mounted at /workspace inside the guest. Changes on either side are immediately visible to the other.

shed create myproject --backend=vz --local-dir=~/projects/myapp
shed console myproject
# Inside the VM: ls /workspace shows the contents of ~/projects/myapp

--local-dir is mutually exclusive with --repo. If the VirtioFS mount fails (e.g., the guest kernel lacks CONFIG_VIRTIO_FS), the create or start operation will fail with an error.

Credentials

Credentials work the same way as Firecracker — they're transferred via tar-over-vsock at create and start time.

  • Read-only credentials: Copied once at create/start. Changes on host require a restart.
  • Writable credentials: Synced bidirectionally while the VM is running. Host-side changes push to the VM via fsnotify, and in-VM changes (e.g., token refreshes) sync back to the host.

Configure credentials in server.yaml:

credentials:
  git-ssh:
    source: ~/.ssh
    target: /home/shed/.ssh
    readonly: true
  claude:
    source: ~/.claude
    target: /home/shed/.claude
    readonly: false

Provisioning

Provisioning hooks execute in the VM via vsock, identically to Firecracker. Directory credentials are mounted via VirtioFS; single-file credentials are transferred via tar-over-vsock. Both are set up before hooks run.

For the full sequence of operations during create, start, stop, and delete (including how VZ differs from other backends), see Shed Lifecycle. For hook configuration, see Provisioning.

Inspecting VMs

Metadata

Each instance stores metadata at:

~/Library/Application Support/shed/vz/instances/<name>/metadata.json

cat ~/Library/Application\ Support/shed/vz/instances/myproject/metadata.json | jq .

vfkit process

ps aux | grep vfkit

Socket files

Each VM creates per-port Unix sockets:

ls ~/.shed/vz/sockets/
# myproject-1024.sock  (console)
# myproject-1025.sock  (health)
# myproject-1026.sock  (notify)

Networking

VZ uses NAT networking provided by Apple's Virtualization.framework. The guest obtains an IP address via DHCP through systemd-networkd.

From the host, shed commands communicate with the VM over vsock (Unix sockets), not TCP. The GetNetworkEndpoint API returns 127.0.0.1.

Docker Inside VZ

Docker is pre-installed in the VZ rootfs image. It starts automatically via systemd:

shed console myproject
docker ps
docker run hello-world

Debugging

Manual health check

# Connect to the health port socket
nc -U ~/.shed/vz/sockets/myproject-1025.sock

View console log

Each VM writes boot and console output to a log file:

cat ~/Library/Application\ Support/shed/vz/instances/myproject/console.log

Check vfkit process

ps aux | grep vfkit

View instance metadata

cat ~/Library/Application\ Support/shed/vz/instances/myproject/metadata.json

macOS-Specific Notes

  • Code signing: The shed-server binary must be signed with the com.apple.security.virtualization entitlement.
  • No /proc: Process identification uses ps -p <pid> -o comm= instead of reading /proc/<pid>/cmdline.
  • Console device: VZ uses hvc0 (virtio console) instead of Firecracker's ttyS0.
  • vfkit subprocess model: Each VM runs as a separate vfkit process. Stopping a VM sends SIGTERM, then SIGKILL after timeout.
  • Socket naming: Per-port sockets follow the pattern <name>-<port>.sock in the socket directory.