thaloco/banger
1
Fork 0
Code Pull requests Releases Packages Activity Actions
One-command development sandboxes on Firecracker microVMs. https://git.thaloco.com/thaloco/banger/
18 commits 3 branches 11 tags 389 MiB
Find a file
Thales Maciel 092700b241
Use shared rootfs with per-VM home
2026-01-29 21:41:33 -03:00
.gitignore lol 2026-01-26 18:05:54 -03:00
AGENTS.md Add repo guidelines and verify script 2026-01-27 16:44:44 -03:00
customize.sh Use shared rootfs with per-VM home 2026-01-29 21:41:33 -03:00
firecracker Add Firecracker runtime artifacts 2026-01-21 18:55:34 -03:00
firecracker-api.yaml Add runtime options and schema 2026-01-29 01:14:29 -03:00
id_ed25519 Add Firecracker runtime artifacts 2026-01-21 18:55:34 -03:00
kill.sh Harden kill script and DNS config 2026-01-29 16:49:54 -03:00
list.sh Move VM dirs under state/vms 2026-01-29 14:47:09 -03:00
logs.sh Add logs helper 2026-01-29 15:33:27 -03:00
namegen Add VM metadata and naming 2026-01-29 00:09:25 -03:00
nat.sh Add per-VM NAT and DNS config 2026-01-29 16:22:28 -03:00
ps.sh Move VM dirs under state/vms 2026-01-29 14:47:09 -03:00
README.md Use shared rootfs with per-VM home 2026-01-29 21:41:33 -03:00
rm.sh Move VM dirs under state/vms 2026-01-29 14:47:09 -03:00
run.sh Use shared rootfs with per-VM home 2026-01-29 21:41:33 -03:00
stop.sh Move VM dirs under state/vms 2026-01-29 14:47:09 -03:00
verify.sh Move VM dirs under state/vms 2026-01-29 14:47:09 -03:00
vmlinux Add Firecracker runtime artifacts 2026-01-21 18:55:34 -03:00

README.md

banger

Minimal Firecracker launcher.

Requirements

  • Linux host with KVM (/dev/kvm access)
  • sudo, ip, curl, ssh

Files

  • firecracker: Firecracker binary
  • vmlinux: guest kernel
  • rootfs.ext4: guest root filesystem
  • id_ed25519: SSH key for root

Run

./run.sh

Run Options

./run.sh --name calm_otter --vcpu 4 --ram 2048 --home-size 6G
  • --name: must be unique and match [a-z0-9][a-z0-9_-]{0,63}.
  • --vcpu: defaults to 2, max 16.
  • --ram: MiB, defaults to 1024, max 32768.
  • --home-size: M/G suffixes supported (default: 2G).

Storage Layout

  • rootfs.ext4 is mounted read-only as / and shared across VMs.
  • Each VM gets a writable ext4 disk mounted at /home.
  • The base image must include an /etc/fstab entry for /dev/vdb/home.

SSH

ssh -i "./id_ed25519" root@<guest_ip>

Internet Access

VMs do not get internet access by default. You must enable forwarding and NAT:

./nat.sh up <id-or-name-prefix>

This enables net.ipv4.ip_forward=1 and installs per-VM NAT rules for the VM's guest IP and TAP device. To remove rules:

./nat.sh down <id-or-name-prefix>

Check status with:

./nat.sh status <id-or-name-prefix>

Shutdown

reboot

VM Info File

Each VM writes a metadata file at state/vms/<id>/info with the following fields:

  • id: unique identifier for the VM instance.
  • pid: Firecracker process ID.
  • created_at: timestamp when the VM was launched.
  • guest_ip: IP address assigned to the guest.
  • tap: host TAP interface name attached to the bridge.
  • api_sock: path to the Firecracker API socket (stored under $XDG_RUNTIME_DIR/banger/ when available).
  • log: path to the Firecracker log file.
  • base_loop: loop device backing the base rootfs (if present).
  • cow_file: copy-on-write image file (if present).
  • cow_loop: loop device for the COW image (if present).
  • dm_name: device-mapper name for the merged rootfs (if present).
  • dm_dev: device-mapper device path for the merged rootfs (if present).

Log Notes

  • PCI: Fatal: No config space access function found and MissingAddressRange lines are expected with pci=off in run.sh.
  • SELinux: Could not open policy file ... is expected in the minimal rootfs.