1d18339a97
* feat(devops): migrate filesystem operations to io.Local abstraction Migrate config.go: - os.ReadFile → io.Local.Read Migrate devops.go: - os.Stat → io.Local.IsFile Migrate images.go: - os.MkdirAll → io.Local.EnsureDir - os.Stat → io.Local.IsFile - os.ReadFile → io.Local.Read - os.WriteFile → io.Local.Write Migrate test.go: - os.ReadFile → io.Local.Read - os.Stat → io.Local.IsFile Migrate claude.go: - os.Stat → io.Local.IsDir Updated tests to reflect improved behavior: - Manifest.Save() now creates parent directories - hasFile() correctly returns false for directories Part of #101 (io.Medium migration tracking issue). Closes #107 Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> * chore(io): migrate remaining packages to io.Local abstraction Migrate filesystem operations to use the io.Local abstraction for improved security, testability, and consistency: - pkg/cache: Replace os.ReadFile, WriteFile, Remove, RemoveAll with io.Local equivalents. io.Local.Write creates parent dirs automatically. - pkg/agentic: Migrate config.go and context.go to use io.Local for reading config files and gathering file context. - pkg/repos: Use io.Local.Read, Exists, IsDir, List for registry operations and git repo detection. - pkg/release: Use io.Local for config loading, existence checks, and artifact discovery. - pkg/devops/sources: Use io.Local.EnsureDir for CDN download. All paths are converted to absolute using filepath.Abs() before calling io.Local methods to handle relative paths correctly. Closes #104, closes #106, closes #108, closes #111 Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> * chore(io): migrate pkg/cli and pkg/container to io.Local abstraction Continue io.Medium migration for the remaining packages: - pkg/cli/daemon.go: PIDFile Acquire/Release now use io.Local.Read, Delete, and Write for managing daemon PID files. - pkg/container/state.go: LoadState and SaveState use io.Local for JSON state persistence. EnsureLogsDir uses io.Local.EnsureDir. - pkg/container/templates.go: Template loading and directory scanning now use io.Local.IsFile, IsDir, Read, and List. - pkg/container/linuxkit.go: Image validation uses io.Local.IsFile, log file check uses io.Local.IsFile. Streaming log file creation (os.Create) remains unchanged as io.Local doesn't support streaming. Closes #105, closes #107 Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> * docs(audit): add dependency security audit report Complete security audit of all project dependencies: - Run govulncheck: No vulnerabilities found - Run go mod verify: All modules verified - Document 15 direct dependencies and 161 indirect - Assess supply chain risks: Low risk overall - Verify lock files are committed with integrity hashes - Provide CI integration recommendations Closes #185 Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> * fix(ci): build core CLI from source instead of downloading release The workflows were trying to download from a non-existent release URL. Now builds the CLI directly using `go build` with version injection. Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> * chore: trigger CI with updated workflow * chore(ci): add workflow_dispatch trigger for manual runs --------- Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
177 lines
3.8 KiB
Go
177 lines
3.8 KiB
Go
package container
|
|
|
|
import (
|
|
"encoding/json"
|
|
"os"
|
|
"path/filepath"
|
|
"sync"
|
|
|
|
"github.com/host-uk/core/pkg/io"
|
|
)
|
|
|
|
// State manages persistent container state.
|
|
type State struct {
|
|
// Containers is a map of container ID to Container.
|
|
Containers map[string]*Container `json:"containers"`
|
|
|
|
mu sync.RWMutex
|
|
filePath string
|
|
}
|
|
|
|
// DefaultStateDir returns the default directory for state files (~/.core).
|
|
func DefaultStateDir() (string, error) {
|
|
home, err := os.UserHomeDir()
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
return filepath.Join(home, ".core"), nil
|
|
}
|
|
|
|
// DefaultStatePath returns the default path for the state file.
|
|
func DefaultStatePath() (string, error) {
|
|
dir, err := DefaultStateDir()
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
return filepath.Join(dir, "containers.json"), nil
|
|
}
|
|
|
|
// DefaultLogsDir returns the default directory for container logs.
|
|
func DefaultLogsDir() (string, error) {
|
|
dir, err := DefaultStateDir()
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
return filepath.Join(dir, "logs"), nil
|
|
}
|
|
|
|
// NewState creates a new State instance.
|
|
func NewState(filePath string) *State {
|
|
return &State{
|
|
Containers: make(map[string]*Container),
|
|
filePath: filePath,
|
|
}
|
|
}
|
|
|
|
// LoadState loads the state from the given file path.
|
|
// If the file doesn't exist, returns an empty state.
|
|
func LoadState(filePath string) (*State, error) {
|
|
state := NewState(filePath)
|
|
|
|
absPath, err := filepath.Abs(filePath)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
content, err := io.Local.Read(absPath)
|
|
if err != nil {
|
|
if os.IsNotExist(err) {
|
|
return state, nil
|
|
}
|
|
return nil, err
|
|
}
|
|
|
|
if err := json.Unmarshal([]byte(content), state); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return state, nil
|
|
}
|
|
|
|
// SaveState persists the state to the configured file path.
|
|
func (s *State) SaveState() error {
|
|
s.mu.RLock()
|
|
defer s.mu.RUnlock()
|
|
|
|
absPath, err := filepath.Abs(s.filePath)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
data, err := json.MarshalIndent(s, "", " ")
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
// io.Local.Write creates parent directories automatically
|
|
return io.Local.Write(absPath, string(data))
|
|
}
|
|
|
|
// Add adds a container to the state and persists it.
|
|
func (s *State) Add(c *Container) error {
|
|
s.mu.Lock()
|
|
s.Containers[c.ID] = c
|
|
s.mu.Unlock()
|
|
|
|
return s.SaveState()
|
|
}
|
|
|
|
// Get retrieves a copy of a container by ID.
|
|
// Returns a copy to prevent data races when the container is modified.
|
|
func (s *State) Get(id string) (*Container, bool) {
|
|
s.mu.RLock()
|
|
defer s.mu.RUnlock()
|
|
|
|
c, ok := s.Containers[id]
|
|
if !ok {
|
|
return nil, false
|
|
}
|
|
// Return a copy to prevent data races
|
|
copy := *c
|
|
return ©, true
|
|
}
|
|
|
|
// Update updates a container in the state and persists it.
|
|
func (s *State) Update(c *Container) error {
|
|
s.mu.Lock()
|
|
s.Containers[c.ID] = c
|
|
s.mu.Unlock()
|
|
|
|
return s.SaveState()
|
|
}
|
|
|
|
// Remove removes a container from the state and persists it.
|
|
func (s *State) Remove(id string) error {
|
|
s.mu.Lock()
|
|
delete(s.Containers, id)
|
|
s.mu.Unlock()
|
|
|
|
return s.SaveState()
|
|
}
|
|
|
|
// All returns copies of all containers in the state.
|
|
// Returns copies to prevent data races when containers are modified.
|
|
func (s *State) All() []*Container {
|
|
s.mu.RLock()
|
|
defer s.mu.RUnlock()
|
|
|
|
containers := make([]*Container, 0, len(s.Containers))
|
|
for _, c := range s.Containers {
|
|
copy := *c
|
|
containers = append(containers, ©)
|
|
}
|
|
return containers
|
|
}
|
|
|
|
// FilePath returns the path to the state file.
|
|
func (s *State) FilePath() string {
|
|
return s.filePath
|
|
}
|
|
|
|
// LogPath returns the log file path for a given container ID.
|
|
func LogPath(id string) (string, error) {
|
|
logsDir, err := DefaultLogsDir()
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
return filepath.Join(logsDir, id+".log"), nil
|
|
}
|
|
|
|
// EnsureLogsDir ensures the logs directory exists.
|
|
func EnsureLogsDir() error {
|
|
logsDir, err := DefaultLogsDir()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
return io.Local.EnsureDir(logsDir)
|
|
}
|