Advanced OS Customizations & Bootloaders

Custom Android Kernel Compilation: Enabling IOMMU and VFIO for Advanced KVM Passthrough

By Antigravity Research Published May 30, 2026 ⏱️ 9 Min Read
Google AdSense Native Placement - Horizontal Top-Post banner

Introduction: Unlocking Advanced Virtualization on Android

The Android ecosystem, while primarily focused on mobile applications, runs on a powerful Linux kernel. This underlying foundation can be leveraged for advanced use cases, such as hosting virtual machines with near-native performance using KVM (Kernel-based Virtual Machine). A critical component for achieving high-performance I/O for these virtualized guests, particularly for tasks like GPU passthrough or high-speed storage, is PCI passthrough. This requires enabling IOMMU (Input/Output Memory Management Unit) and VFIO (Virtual Function I/O) in the Android kernel, a process that necessitates custom kernel compilation.

This expert guide will walk you through the intricate steps of obtaining, configuring, and compiling a custom Android kernel to activate IOMMU and VFIO support. By the end, you’ll have a kernel ready to empower your Android device to run KVM guests with direct access to PCI hardware, dramatically improving performance and capabilities.

Understanding IOMMU and VFIO for Passthrough

What is IOMMU?

The IOMMU is a hardware component that provides memory management services for DMA (Direct Memory Access) capable I/O devices. Just as a CPU’s MMU translates virtual addresses to physical addresses for processes, an IOMMU translates device-visible virtual addresses (often called I/O virtual addresses or IOVAs) to physical addresses. For PCI passthrough, the IOMMU is essential because it isolates devices by creating separate address spaces for each VM, preventing a malicious or buggy VM from accessing the physical memory of the host or other VMs.

What is VFIO?

VFIO is a Linux kernel framework that exposes direct device access to userspace in a secure manner. It works in conjunction with the IOMMU to provide isolation and security for PCI devices being passed through to a guest VM. VFIO ensures that the guest VM has sole control over the assigned device, and all DMA operations are properly managed by the IOMMU. This framework is the modern, secure, and recommended way to perform PCI passthrough on Linux.

Prerequisites for Custom Android Kernel Compilation

Before diving into the compilation process, ensure you have the following:

  • Linux Host Machine: A powerful Linux-based workstation (Ubuntu, Debian, or similar) with ample RAM (16GB+) and storage (100GB+) is recommended for kernel compilation.
  • Cross-Compilation Toolchain: Since most Android devices run on ARM or ARM64 architecture, you’ll need a cross-compilation toolchain. For AOSP-based kernels, the Android NDK provides suitable toolchains.
  • Android Kernel Source Code: Obtain the exact kernel source code for your specific Android device or a generic AOSP kernel source compatible with your device’s architecture. Device-specific sources are usually found on the manufacturer’s open-source portal or via AOSP device trees.
  • Build Essentials: Install necessary packages on your host machine:
sudo apt updatesudo apt install git flex bison build-essential libncurses-dev bc kmod cpio libssl-dev dwarves

Step 1: Obtain Kernel Source and Toolchain

Getting the Kernel Source

If your device uses an AOSP-based kernel, you can fetch it using `repo`:

mkdir android-kernelcd android-kernelrepo init -u https://android.googlesource.com/platform/manifest -b android-<version> --depth=1 --partial-clone --no-tags --no-repo-verify --platform=android -g all,-notdefault,-device,-arm,-x86,-mips,-darwin,-windowsrepo sync -j$(nproc)

Replace `<version>` with your target Android version (e.g., `android-13.0.0_r0.1`). Alternatively, clone a device-specific kernel from your device manufacturer’s GitHub or similar repository.

Navigate to the kernel directory, typically `kernel/<vendor>/<codename>` or `kernel/common`.

Setting up the Toolchain

For Android, Google’s prebuilt Clang toolchain is often used. You can download it:

mkdir toolchaincd toolchainwget https://android.googlesource.com/platform/prebuilts/clang/host/linux-x86/+archive/refs/heads/master/clang-r487747b.tar.gztar -xf clang-r487747b.tar.gz

Then, set environment variables:

export PATH="/path/to/your/toolchain/bin:$PATH"export ARCH=arm64 # Or arm for 32-bit devicesexport CROSS_COMPILE=aarch64-linux-android- # Or arm-linux-androideabi-export KBUILD_COMPILER_STRING="clang" # Use clang from NDKexport CC="clang"

Ensure your `CROSS_COMPILE` prefix matches the toolchain binaries (e.g., `aarch64-linux-android-clang`).

Step 2: Configure Kernel for IOMMU and VFIO

First, clean your kernel tree and load the default configuration for your device:

make cleanmake mrpropermake <defconfig_name>

The `<defconfig_name>` varies by device (e.g., `gs101_defconfig`, `common_android_defconfig`). You can find this in `arch/arm64/configs/` or `arch/arm/configs/`.

Now, invoke `menuconfig` to interactively enable the required features:

make menuconfig

Navigate through the menu and enable the following options. Use the spacebar to toggle `[ ]` (unselected), `[*] ` (built-in), or `<M>` (module). For critical features like IOMMU, it’s safer to compile them directly into the kernel (`[*]`).

  • General setup

    • `[ ] Initial RAM filesystem and RAM disk (initramfs/initrd) support` (Disable if using an external ramdisk)

  • Processor type and features

    • `[ * ] > Enable KVM for ARM hosts` (Crucial for KVM)
    • `[ * ] > Virtualization`

  • Memory Management options

    • `[ * ] > IOMMU support`
    • `[ * ] > ARM SMMUv3 support` (For ARM/ARM64. Also check `ARM SMMU Support` for older SMMU versions.)

  • Device Drivers

    • `[ * ] > VFIO Non-Privileged userspace driver framework`
    • `[ * ] > VFIO PCI support`
    • `[ * ] > KVM host support`
    • `[ * ] > KVM > KVM for ARM processor`

Ensure that all dependencies are also met. `menuconfig` will usually guide you. Once configured, save your new configuration as `.config` and exit.

Step 3: Compile the Custom Kernel

With the configuration set, compile your kernel. The `-j$(nproc)` flag utilizes all available CPU cores for faster compilation.

make -j$(nproc)

The compilation process can take a significant amount of time depending on your host machine’s power. Upon successful completion, your compiled kernel image (e.g., `Image` or `Image.gz-dtb`) will be located in `arch/arm64/boot/` or `arch/arm/boot/`.

Step 4: Flashing the Kernel (Brief Overview)

Flashing a custom kernel to an Android device typically involves packaging the kernel image with a ramdisk into a `boot.img` and then using `fastboot`. This step is highly device-specific and beyond the scope of this deep dive. You will likely need to:

  1. Obtain your device’s stock `boot.img`.
  2. Extract the ramdisk from the stock `boot.img`.
  3. Replace the kernel image within the `boot.img` with your newly compiled `Image.gz-dtb` (or similar).
  4. Repackage the `boot.img`.
  5. Flash using `fastboot flash boot boot.img`.

Always ensure your bootloader is unlocked and you have a backup of your current `boot.img` before attempting to flash a custom kernel.

Step 5: Verify IOMMU and VFIO Status

After successfully booting your device with the custom kernel, verify that IOMMU and VFIO are enabled and functioning:

Check IOMMU Status

adb shell dmesg | grep -i "iommu"

You should see output indicating that the IOMMU is enabled and initialized (e.g., `IOMMU enabled`).

Check VFIO Status and IOMMU Groups

IOMMU groups are critical for passthrough; all devices within an IOMMU group must be passed through together. If you want to pass through a single device, it must reside in its own IOMMU group.

adb shell "for iommu_group in $(find /sys/kernel/iommu_groups/ -maxdepth 1 -mindepth 1 -type d); do echo "IOMMU Group $(basename $iommu_group):"; for device in $(find $iommu_group/devices/ -maxdepth 1 -mindepth 1 -type l); do echo "  $(basename $device)"; done; done"

This command lists all IOMMU groups and the devices within them. You can also specifically check for VFIO drivers:

adb shell dmesg | grep -i "vfio"adb shell lsmod | grep vfio

You should see `vfio_pci` and other VFIO modules loaded.

Step 6: Preparing PCI Devices for KVM Passthrough

Once your kernel is confirmed to have IOMMU and VFIO enabled, you can prepare devices for passthrough. This usually involves unbinding a device from its host driver and binding it to the `vfio-pci` driver.

  1. Identify PCI Devices: Use `lspci` to list your device’s PCI hardware. Note down the device’s PCI address (e.g., `00:1f.3`) and its Vendor/Device ID (e.g., `8086:a180`).

    adb shell lspci -nn

  2. Unbind from Host Driver: First, find the current driver:

    adb shell lspci -vvv -s <PCI_ADDRESS> | grep "Kernel driver in use"

    Then, unbind the device from its current driver:

    adb shell echo "<PCI_ADDRESS>" > /sys/bus/pci/devices/<PCI_ID>/driver/unbind

  3. Bind to VFIO-PCI Driver:

    adb shell echo "<VENDOR_ID> <DEVICE_ID>" > /sys/bus/pci/drivers/vfio-pci/new_id

    Or, directly bind by PCI address:

    adb shell echo "<PCI_ADDRESS>" > /sys/bus/pci/drivers/vfio-pci/bind

Confirm the binding: `adb shell lspci -vvv -s <PCI_ADDRESS> | grep "Kernel driver in use"` should now show `vfio-pci`.

Step 7: QEMU Guest Configuration Example

Finally, when launching your KVM guest with QEMU, you’ll use the `-device vfio-pci` option to pass through your hardware. Replace `<PCI_ADDRESS>` with the device’s address:

qemu-system-aarch64 
  -enable-kvm 
  -cpu host 
  -smp 4 
  -m 4G 
  -M virt 
  -device virtio-blk-pci,drive=disk0 
  -drive if=none,id=disk0,file=<path_to_guest_image.qcow2>,format=qcow2 
  -device virtio-net-pci,netdev=net0 
  -netdev user,id=net0 
  -device vfio-pci,host=<PCI_ADDRESS>,x-vga=on 
  # Add other QEMU options as needed

The `x-vga=on` option is useful if you’re passing through a GPU and want it to be the primary display for the guest. You might need to add `iommu=pt` to your kernel command line during boot for full passthrough functionality, though the kernel options enabled should suffice for basic operation.

Conclusion

Compiling a custom Android kernel to enable IOMMU and VFIO support is an advanced procedure that significantly expands the virtualization capabilities of your device. By following this guide, you’ve equipped your Android system with the fundamental building blocks for high-performance KVM guests with direct PCI hardware access. This opens doors to scenarios like running desktop operating systems with native GPU acceleration on your ARM Android device, or utilizing specialized hardware directly within a virtualized environment. While challenging, the rewards in terms of flexibility and performance are substantial for enthusiasts and developers pushing the boundaries of mobile computing.

Android Mobile Specs & Compare Directory

Are you researching mobile hardware properties, processor SoCs, GPU chipsets, or RAM configurations? Access our complete specs catalog to compare up to 5 devices side-by-side!

Compare Devices Specs →
Google AdSense Inline Placement - Content Footer banner
Tags: #Android Kernel #IOMMU #KVM #PCI Passthrough #VFIO

Related Technical Guides

Deep Dive: Implementing F2FS Read-Ahead Optimizations via Custom Kernel Patching on Android

May 30, 2026

Unlocking Secure Boot: A Step-by-Step Lab for Replacing OEM Keys (PK/KEK) on Android

May 30, 2026

rEFInd Deep Dive: Mastering EFI Bootloader Configuration for Seamless Multi-OS Management

May 30, 2026