Move avoidable daemon shell-outs into Go

Reduce the control plane's dependency on helper scripts while keeping the hard Linux integration points in the approved shell-out layer. Replace the bash-driven image build path with a native Go builder that clones and optionally resizes the rootfs, boots a temporary Firecracker VM, provisions the guest over SSH, installs packages and modules, and preserves the package-manifest sidecar. Also replace a few small convenience shell-outs with Go helpers: read process stats from /proc, use os.Truncate for ext4 image growth, add file-clone and normalized-line helpers, drop the sh -c work-disk flattening path, and launch Firecracker via a direct sudo command. Add tests for the new SSH/archive and system helpers, plus a policy test that keeps os/exec imports confined to cli/firecracker/system. Update the docs to describe customize.sh as a manual helper rather than the daemon's image-build backend. Validated with go mod tidy, go test ./..., and make build.
2026-03-17 17:13:07 -03:00 · 2026-03-17 17:13:07 -03:00 · 942d242c03
commit 942d242c03
parent 0a0b0b617b
17 changed files with 936 additions and 145 deletions
--- a/internal/daemon/vm.go
+++ b/internal/daemon/vm.go
@ -703,14 +703,7 @@ func (d *Daemon) flattenNestedWorkHome(ctx context.Context, workMount string) er
 	if !exists(nestedHome) {
 		return nil
 	}
-	script := `set -e
-src="$1"
-dst="$2"
-for path in "$src"/.[!.]* "$src"/..?* "$src"/*; do
-	[ -e "$path" ] || continue
-	cp -a "$path" "$dst"/
-done`
-	if _, err := d.runner.RunSudo(ctx, "sh", "-c", script, "sh", nestedHome, workMount); err != nil {
+	if err := system.CopyDirContents(ctx, d.runner, nestedHome, workMount, true); err != nil {
 		return err
 	}
 	_, err := d.runner.RunSudo(ctx, "rm", "-rf", nestedHome)