cmd/planterette: remove hsu special case

Remove special case and invoke hakurei out of process. Signed-off-by: Ophestra <cat@gensokyo.uk>
2025-06-25 20:44:49 +09:00 · 2025-06-25 20:44:49 +09:00 · aa454b158f
commit aa454b158f
parent 7007bd6a1c
20 changed files with 101 additions and 85 deletions
--- a/.gitea/workflows/test.yml
+++ b/.gitea/workflows/test.yml
@ -73,20 +73,20 @@ jobs:
          path: result/*
          retention-days: 1
-  fpkg:
+  planterette:
-    name: Fpkg
+    name: Planterette
    runs-on: nix
    steps:
      - name: Checkout
        uses: actions/checkout@v4
      - name: Run NixOS test
-        run: nix build --out-link "result" --print-out-paths --print-build-logs .#checks.x86_64-linux.fpkg
+        run: nix build --out-link "result" --print-out-paths --print-build-logs .#checks.x86_64-linux.planterette
      - name: Upload test output
        uses: actions/upload-artifact@v3
        with:
-          name: "fpkg-vm-output"
+          name: "planterette-vm-output"
          path: result/*
          retention-days: 1
@ -97,7 +97,7 @@ jobs:
      - race
      - sandbox
      - sandbox-race
-      - fpkg
+      - planterette
    runs-on: nix
    steps:
      - name: Checkout
--- a/cmd/fpkg/proc.go
+++ b/cmd/fpkg/proc.go
@ -1,29 +0,0 @@
 package main
 import (
 	"context"
 	"os"
 	"git.gensokyo.uk/security/hakurei/hst"
 	"git.gensokyo.uk/security/hakurei/internal/app"
 	"git.gensokyo.uk/security/hakurei/internal/app/instance"
 	"git.gensokyo.uk/security/hakurei/internal/hlog"
 )
 func mustRunApp(ctx context.Context, config *hst.Config, beforeFail func()) {
 	rs := new(app.RunState)
 	a := instance.MustNew(instance.ISetuid, ctx, std)
 	var code int
 	if sa, err := a.Seal(config); err != nil {
 		hlog.PrintBaseError(err, "cannot seal app:")
 		code = 1
 	} else {
 		code = instance.PrintRunStateErr(instance.ISetuid, rs, sa.Run(rs))
 	}
 	if code != 0 {
 		beforeFail()
 		os.Exit(code)
 	}
 }
--- a/cmd/hsu/main.go
+++ b/cmd/hsu/main.go
@ -41,7 +41,7 @@ func main() {
 		log.Fatalf("cannot read parent executable path: %v", err)
 	} else if strings.HasSuffix(p, " (deleted)") {
 		log.Fatal("hakurei executable has been deleted")
-	} else if p != mustCheckPath(hmain) && p != mustCheckPath(fpkg) {
+	} else if p != mustCheckPath(hmain) {
 		log.Fatal("this program must be started by hakurei")
 	} else {
 		toolPath = p
--- a/cmd/hsu/package.nix
+++ b/cmd/hsu/package.nix
@ -16,15 +16,8 @@ buildGoModule {
    go mod init hsu >& /dev/null
  '';
-  ldflags =
+  ldflags = lib.attrsets.foldlAttrs (
-    lib.attrsets.foldlAttrs
+    ldflags: name: value:
-      (
+    ldflags ++ [ "-X main.${name}=${value}" ]
-        ldflags: name: value:
+  ) [ "-s -w" ] { hmain = "${hakurei}/libexec/hakurei"; };
        ldflags ++ [ "-X main.${name}=${value}" ]
      )
      [ "-s -w" ]
      {
        hmain = "${hakurei}/libexec/hakurei";
        fpkg = "${hakurei}/libexec/fpkg";
      };
 }
--- a/cmd/hsu/path.go
+++ b/cmd/hsu/path.go
@ -9,7 +9,6 @@ const compPoison = "INVALIDINVALIDINVALIDINVALIDINVALID"
 var (
 	hmain = compPoison
 	fpkg  = compPoison
 )
 func mustCheckPath(p string) string {
--- a/cmd/planterette/app.go
+++ b/cmd/planterette/app.go
--- a/cmd/planterette/build.nix
+++ b/cmd/planterette/build.nix
--- a/cmd/planterette/main.go
+++ b/cmd/planterette/main.go
@ -13,36 +13,23 @@ import (
 	"git.gensokyo.uk/security/hakurei/command"
 	"git.gensokyo.uk/security/hakurei/hst"
 	"git.gensokyo.uk/security/hakurei/internal"
 	"git.gensokyo.uk/security/hakurei/internal/app/instance"
 	"git.gensokyo.uk/security/hakurei/internal/hlog"
 	"git.gensokyo.uk/security/hakurei/internal/sys"
 	"git.gensokyo.uk/security/hakurei/sandbox"
 )
 const shellPath = "/run/current-system/sw/bin/bash"
 var (
 	errSuccess = errors.New("success")
 	std sys.State = new(sys.Std)
 )
 func init() {
-	hlog.Prepare("fpkg")
+	hlog.Prepare("planterette")
 	if err := os.Setenv("SHELL", shellPath); err != nil {
 		log.Fatalf("cannot set $SHELL: %v", err)
 	}
 }
 func main() {
 	// early init path, skips root check and duplicate PR_SET_DUMPABLE
 	sandbox.TryArgv0(hlog.Output{}, hlog.Prepare, internal.InstallFmsg)
 	if err := sandbox.SetDumpable(sandbox.SUID_DUMP_DISABLE); err != nil {
 		log.Printf("cannot set SUID_DUMP_DISABLE: %s", err)
 		// not fatal: this program runs as the privileged user
 	}
 	if os.Geteuid() == 0 {
 		log.Fatal("this program must not run as root")
 	}
@ -55,15 +42,10 @@ func main() {
 		flagVerbose   bool
 		flagDropShell bool
 	)
-	c := command.New(os.Stderr, log.Printf, "fpkg", func([]string) error {
+	c := command.New(os.Stderr, log.Printf, "planterette", func([]string) error { internal.InstallFmsg(flagVerbose); return nil }).
 		internal.InstallFmsg(flagVerbose)
 		return nil
 	}).
 		Flag(&flagVerbose, "v", command.BoolFlag(false), "Print debug messages to the console").
 		Flag(&flagDropShell, "s", command.BoolFlag(false), "Drop to a shell in place of next hakurei action")
 	c.Command("shim", command.UsageInternal, func([]string) error { instance.ShimMain(); return errSuccess })
 	{
 		var (
 			flagDropShellActivate bool
@ -84,7 +66,7 @@ func main() {
 			}
 			/*
-				Look up paths to programs started by fpkg.
+				Look up paths to programs started by planterette.
 				This is done here to ease error handling as cleanup is not yet required.
 			*/
@ -100,7 +82,7 @@ func main() {
 			*/
 			var workDir string
-			if p, err := os.MkdirTemp("", "fpkg.*"); err != nil {
+			if p, err := os.MkdirTemp("", "planterette.*"); err != nil {
 				log.Printf("cannot create temporary directory: %v", err)
 				return err
 			} else {
--- a/cmd/planterette/paths.go
+++ b/cmd/planterette/paths.go
--- a/cmd/planterette/proc.go
+++ b/cmd/planterette/proc.go
@ -0,0 +1,60 @@
 package main
 import (
 	"context"
 	"encoding/json"
 	"errors"
 	"io"
 	"log"
 	"os"
 	"os/exec"
 	"git.gensokyo.uk/security/hakurei/hst"
 	"git.gensokyo.uk/security/hakurei/internal"
 	"git.gensokyo.uk/security/hakurei/internal/hlog"
 )
 var hakureiPath = internal.MustHakureiPath()
 func mustRunApp(ctx context.Context, config *hst.Config, beforeFail func()) {
 	var (
 		cmd *exec.Cmd
 		st  io.WriteCloser
 	)
 	if r, w, err := os.Pipe(); err != nil {
 		beforeFail()
 		log.Fatalf("cannot pipe: %v", err)
 	} else {
 		if hlog.Load() {
 			cmd = exec.CommandContext(ctx, hakureiPath, "-v", "app", "3")
 		} else {
 			cmd = exec.CommandContext(ctx, hakureiPath, "app", "3")
 		}
 		cmd.Stdin, cmd.Stdout, cmd.Stderr = os.Stdin, os.Stdout, os.Stderr
 		cmd.ExtraFiles = []*os.File{r}
 		st = w
 	}
 	go func() {
 		if err := json.NewEncoder(st).Encode(config); err != nil {
 			beforeFail()
 			log.Fatalf("cannot send configuration: %v", err)
 		}
 	}()
 	if err := cmd.Start(); err != nil {
 		beforeFail()
 		log.Fatalf("cannot start hakurei: %v", err)
 	}
 	if err := cmd.Wait(); err != nil {
 		var exitError *exec.ExitError
 		if errors.As(err, &exitError) {
 			beforeFail()
 			internal.Exit(exitError.ExitCode())
 		} else {
 			beforeFail()
 			log.Fatalf("cannot wait: %v", err)
 		}
 	}
 }
--- a/cmd/planterette/test/configuration.nix
+++ b/cmd/planterette/test/configuration.nix
--- a/cmd/planterette/test/default.nix
+++ b/cmd/planterette/test/default.nix
@ -9,7 +9,7 @@ let
  buildPackage = self.buildPackage.${system};
 in
 nixosTest {
-  name = "fpkg";
+  name = "planterette";
  nodes.machine = {
    environment.etc = {
      "foot.pkg".source = callPackage ./foot.nix { inherit buildPackage; };
--- a/cmd/planterette/test/foot.nix
+++ b/cmd/planterette/test/foot.nix
--- a/cmd/planterette/test/test.py
+++ b/cmd/planterette/test/test.py
@ -79,15 +79,15 @@ print(machine.succeed("sudo -u alice -i hakurei version"))
 machine.wait_for_file("/run/user/1000/wayland-1")
 machine.wait_for_file("/tmp/sway-ipc.sock")
-# Prepare fpkg directory:
+# Prepare planterette directory:
 machine.succeed("install -dm 0700 -o alice -g users /var/lib/hakurei/1000")
-# Install fpkg app:
+# Install planterette app:
-swaymsg("exec fpkg -v install /etc/foot.pkg && touch /tmp/fpkg-install-done")
+swaymsg("exec planterette -v install /etc/foot.pkg && touch /tmp/planterette-install-ok")
-machine.wait_for_file("/tmp/fpkg-install-done")
+machine.wait_for_file("/tmp/planterette-install-ok")
 # Start app (foot) with Wayland enablement:
-swaymsg("exec fpkg -v start org.codeberg.dnkl.foot")
+swaymsg("exec planterette -v start org.codeberg.dnkl.foot")
 wait_for_window("hakurei@machine-foot")
 machine.send_chars("clear; wayland-info && touch /tmp/success-client\n")
 machine.wait_for_file("/tmp/hakurei.1000/tmpdir/2/success-client")
--- a/cmd/planterette/with.go
+++ b/cmd/planterette/with.go
--- a/dist/install.sh
+++ b/dist/install.sh
@ -2,7 +2,7 @@
 cd "$(dirname -- "$0")" || exit 1
 install -vDm0755 "bin/hakurei" "${HAKUREI_INSTALL_PREFIX}/usr/bin/hakurei"
-install -vDm0755 "bin/fpkg" "${HAKUREI_INSTALL_PREFIX}/usr/bin/fpkg"
+install -vDm0755 "bin/planterette" "${HAKUREI_INSTALL_PREFIX}/usr/bin/planterette"
 install -vDm6511 "bin/hsu" "${HAKUREI_INSTALL_PREFIX}/usr/bin/hsu"
 if [ ! -f "${HAKUREI_INSTALL_PREFIX}/etc/hsurc" ]; then
--- a/dist/release.sh
+++ b/dist/release.sh
@ -11,9 +11,9 @@ cp -rv "dist/comp" "${out}"
 go generate ./...
 go build -trimpath -v -o "${out}/bin/" -ldflags "-s -w -buildid= -extldflags '-static'
  -X git.gensokyo.uk/security/hakurei/internal.version=${VERSION}
  -X git.gensokyo.uk/security/hakurei/internal.hakurei=/usr/bin/hakurei
  -X git.gensokyo.uk/security/hakurei/internal.hsu=/usr/bin/hsu
-  -X main.hmain=/usr/bin/hakurei
+  -X main.hmain=/usr/bin/hakurei" ./...
  -X main.fpkg=/usr/bin/fpkg" ./...
 rm -f "./${out}.tar.gz" && tar -C dist -czf "${out}.tar.gz" "${pname}"
 rm -rf "./${out}"
--- a/flake.nix
+++ b/flake.nix
@ -32,7 +32,7 @@
      buildPackage = forAllSystems (
        system:
        nixpkgsFor.${system}.callPackage (
-          import ./cmd/fpkg/build.nix {
+          import ./cmd/planterette/build.nix {
            inherit
              nixpkgsFor
              system
@ -69,7 +69,7 @@
            withRace = true;
          };
-          fpkg = callPackage ./cmd/fpkg/test { inherit system self; };
+          planterette = callPackage ./cmd/planterette/test { inherit system self; };
          formatting = runCommandLocal "check-formatting" { nativeBuildInputs = [ nixfmt-rfc-style ]; } ''
            cd ${./.}
@ -125,7 +125,7 @@
              glibc
              xdg-dbus-proxy
-              # fpkg
+              # planterette
              zstd
              gnutar
              coreutils
--- a/internal/path.go
+++ b/internal/path.go
@ -8,16 +8,26 @@ import (
 )
 var (
-	hsu = compPoison
+	hakurei = compPoison
 	hsu     = compPoison
 )
 func MustHakureiPath() string {
 	if name, ok := checkPath(hakurei); ok {
 		return name
 	}
 	hlog.BeforeExit()
 	log.Fatal("invalid hakurei path, this program is compiled incorrectly")
 	return compPoison // unreachable
 }
 func MustHsuPath() string {
 	if name, ok := checkPath(hsu); ok {
 		return name
 	}
 	hlog.BeforeExit()
 	log.Fatal("invalid hsu path, this program is compiled incorrectly")
-	return compPoison
+	return compPoison // unreachable
 }
 func checkPath(p string) (string, bool) { return p, p != compPoison && p != "" && path.IsAbs(p) }
--- a/package.nix
+++ b/package.nix
@ -13,7 +13,7 @@
  wayland-scanner,
  xorg,
-  # for fpkg
+  # for planterette
  zstd,
  gnutar,
  coreutils,
@ -76,6 +76,7 @@ buildGoModule rec {
      )
      {
        version = "v${version}";
        hakurei = "${placeholder "out"}/libexec/hakurei";
        hsu = "/run/wrappers/bin/hsu";
      };
@ -116,7 +117,7 @@ buildGoModule rec {
      makeBinaryWrapper "$out/libexec/hakurei" "$out/bin/hakurei" \
        --inherit-argv0 --prefix PATH : ${lib.makeBinPath appPackages}
-      makeBinaryWrapper "$out/libexec/fpkg" "$out/bin/fpkg" \
+      makeBinaryWrapper "$out/libexec/planterette" "$out/bin/planterette" \
        --inherit-argv0 --prefix PATH : ${
          lib.makeBinPath (
            appPackages