Sandal
Sandal is a basic, deamonless container system for Linux-embedded systems.
This project aims to have a container system which light weight and respects systems disk usage.
It utilizes the squashfs filesystem as a container image, so you can execute the container directly from the file, and easy to distribute it with portable media.
Installation
ARCH=amd64 # arm64, armv7, armv6, 386
wget https://github.com/ahmetozer/sandal/releases/latest/download/sandal-linux-${ARCH} -O /usr/bin/sandal
chmod +x /usr/bin/sandal
Commands
Multiple subcommands are available on the system for different usage purposes.
Run
Executing a new container image with given options.
flag |
default |
description |
-d |
false |
Run your container at background |
-startup |
false |
Run your container at startup with sandal daemon |
devtmpfs |
|
Mount devtmpfs inside the container in the given location -devtmpfs=/mnt/host/dev |
-env-all |
false |
Pass hosts enviroment variable to container |
-help |
false |
print argument helps |
-host-ips |
172.16.0.1/24;fd34:0135:0123::1/64 |
host interface ip addresses |
-host-net |
sandal0 |
host interface for bridge or macvlan |
-hosts |
cp |
Behavior of /etc/hosts file. cp (copy), cp-n (copy if not exist), image(use image) |
-keep |
false |
Do not remove container files on exit |
-name |
|
name of the container |
-net-type |
bridge |
Type of host net type. bridge, macvlan, ipvlan |
-ns-net |
|
net namespace or host |
-ns-pid |
|
pid namespace or host |
-ns-user |
host |
user namespace or host |
-ns-uts |
|
uts namespace or host |
-pod-ips |
|
container interface ips |
-resolv |
cp-n |
Behavior of /etc/resolv file. cp (copy), cp-n (copy if not exist), image (use image), 1.1.1.1;2606:4700:4700::1111 |
-ro |
false |
read only rootfs |
-sq |
./rootfs.sqfs |
squashfs image location |
-tmp |
0 |
allocate changes at memory instead of disk. unit is in MB, disk is used used by default |
-v |
|
attach system directory paths to container -v=/mnt/homeasistant:/config |
Examples:
sandal run -sq=homeas.sq -v=/run/dbus:/run/dbus -name=homeas -env-all \
-v=/mnt/homeassistant/config:/config /init
sandal run -sq=/mnt/sandal/images/homeas.sq -pod-ips="172.16.0.3/24;fd34:0135:0123::3/64" \
-ns-net=host -v=/run/dbus:/run/dbus -name=homeas -v=/mnt/homeassistant/config:/config /init
sandal run -sq=/mnt/sandal/images/octo.sq -env-all --ns-net=host --name=octo \
-pod-ips="172.16.0.4/24;172.16.0.5/24;fd34:0135:0123::4/64" -v=/mnt/octo:/octoprint/octoprint -devtmpfs=/mnt/external/ /init
Ps
Listing existing containers
Example:
sandal ps
NAME SQUASHFS COMMAND CREATED STATUS PID
22IQkaDNhRp9okqsewZL19 /mnt/sandal/images/homeas.sqfs /bin/bash 2024-05-11T22:48:59+01:00 exit 0 815519
22J7btLUSru7kuDRbkxLpi alpine.sqfs /bin/ash 2024-05-12T15:18:32+01:00 exit 0 927465
22J7dGBOWOz5sgrXiwVpRx alpine.sqfs /bin/ash 2024-05-12T15:20:38+01:00 exit 0 928541
22JbC5X2ks59IViFLkuVfG alpine.sqfs /bin/ping 2024-05-12T19:38:31+01:00 hang 957321 <-
22JbvIh9nbT1CpkNgrB8K1 alpine.sqfs /bin/ash 2024-05-12T19:32:28+01:00 exit 130 953991
sandal ps -dry
NAME SQUASHFS COMMAND CREATED STATUS PID
22IQkaDNhRp9okqsewZL19 /mnt/sandal/images/homeas.sqfs /bin/bash 2024-05-11T22:48:59+01:00 exit 0 815519
22J7btLUSru7kuDRbkxLpi alpine.sqfs /bin/ash 2024-05-12T15:18:32+01:00 exit 0 927465
22J7dGBOWOz5sgrXiwVpRx alpine.sqfs /bin/ash 2024-05-12T15:20:38+01:00 exit 0 928541
22JbC5X2ks59IViFLkuVfG alpine.sqfs /bin/ping 2024-05-12T19:38:31+01:00 running 957321 <- Note here
22JbvIh9nbT1CpkNgrB8K1 alpine.sqfs /bin/ash 2024-05-12T19:32:28+01:00 exit 130 953991
Listing namespace id's
sandal ps -ns
NAME PID CGROUPNS IPC MNT NET PIDNS USERNS UTS
22IQkaDNhRp9okqsewZL19 815519 4026532509 4026532507 4026532505 4026532510 4026532508 4026531837 4026532506
22J7btLUSru7kuDRbkxLpi 927465 4026532603 4026532601 4026532599 4026532604 4026532602 4026531837 4026532600
22J7dGBOWOz5sgrXiwVpRx 928541 4026532603 4026532601 4026532599 4026532604 4026532602 4026531837 4026532600
22JbC5X2ks59IViFLkuVfG 957321 4026532603 4026532601 4026532599 4026532604 4026532602 4026531837 4026532600
22JbvIh9nbT1CpkNgrB8K1 953991 4026532603 4026532601 4026532599 4026532604 4026532602 4026531837 4026532600
Rm
Delete container run files.
sandal rm alpine-1
Convert
Creating squashfs from existing containers.
Note: this process requires podman or docker to get details for your container, and squashfs-tools
to create a squashfs archive image.
Example
podman run -it --rm --name cont1 alpine
sandal convert cont1
#[==================================================|] 92/92 100%
sandal run -sq=cont1.sqfs /bin/ping 1.0.0.1
To install squashfs-tools
#Debian, Ubuntu
sudo apt install squashfs-tools
#Fedora
sudo yum install squashfs-tools
#Alpine
apk add squashfs-tools
Kill
Kill container process
Example
sandal run -d -sq=cont1.sqfs --name cont1 /bin/ping 1.0.0.1
sandal kill cont1
sandal kill 22JbC5X2ks59IViFLkuVfG
Rerun
Kill and restart container proccess with same args and current enviroment variable.
sandal run -d -sq=cont1.sqfs --name cont1 /bin/ping 1.0.0.1
sandal rerun cont1
Cmd
Get last execution command.
sandal cmd minecraft
# Output
"sandal run -name=minecraft -keep -sq=/mnt/sandal/images/ubuntu.sq -pod-ips=172.16.0.4/24 -startup -d /sbin/runit"
Daemon
Run all startup containers and watch in case of hang errors.
sandal daemon
2024/06/27 03:09:37 INFO daemon started
2024/06/27 03:10:01 INFO starting container=minecraft oldpid=102679
2024/06/27 03:10:03 INFO new container started container=minecraft pid=102759
2024/06/27 03:16:01 INFO starting container=homeas-2 oldpid=91491
2024/06/27 03:16:03 INFO new container started container=homeas-2 pid=103751
Inspect
Get configuration file
sandal inspect minecraft
{
"Name": "minecraft",
"Created": 1719447001,
"HostPid": 102751,
"ContPid": 102759,
"LoopDevNo": 128,
"TmpSize": 0,
...}