Skip to content

krun

krun

Krun backend for ContainerRuntime — microVM isolation peer of PodmanRuntime.

Launches unmodified OCI images inside KVM microVMs via podman --runtime krun. Container lifecycle (state, logs, force-remove, image inspection) delegates to a held PodmanRuntime because podman --runtime krun honours every other verb that doesn't need to reach into the running guest.

exec is the one verb that diverges and the reason this module exists: podman exec can't enter krun microVMs (libkrun can't inject processes post-boot — see crun#1098), so exec routes through a pluggable KrunTransport instead. The real transport is OpenSSH over a passt-forwarded TCP port (see TcpSSHTransport); a FakeKrunTransport ships here so the skeleton and its callers are unit-testable without standing up a real guest.

KrunRuntime(*, transport, podman=None)

Container runtime that launches tasks inside KVM microVMs.

Composition, not inheritance: holds a PodmanRuntime for every lifecycle verb (podman --runtime krun is just podman driving a different OCI runtime) and a KrunTransport for the one verb that can't go through podman — exec.

The transport is required: there is no sensible default beyond a real SSH-over-passt-TCP implementation, and the fake exists explicitly for tests. Production callers wire the real transport at the ContainerRuntime selection point in the orchestrator.

Source code in src/terok_sandbox/runtime/krun.py 
61
62
63
64
65
66
67
68
def __init__(
    self,
    *,
    transport: KrunTransport,
    podman: PodmanRuntime | None = None,
) -> None:
    self._podman = podman or PodmanRuntime()
    self._transport = transport

transport property

Return the transport used for exec.

container(name)

Return a KrunContainer handle wrapping the podman container — same lifecycle, krun-aware login_command.

Return type stays the Container Protocol rather than the narrower concrete class: mypy treats Protocol method return types as invariant, so a narrower annotation breaks structural ContainerRuntime matching for downstream consumers (terok's _runtime: ContainerRuntime assignment was the loud failure). The runtime value is genuinely a KrunContainer — callers needing the concrete type cast at the call site.

Source code in src/terok_sandbox/runtime/krun.py 
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
def container(self, name: str) -> Container:
    """Return a [`KrunContainer`][terok_sandbox.runtime.krun.KrunContainer]
    handle wrapping the podman container — same lifecycle, krun-aware
    ``login_command``.

    Return type stays the [`Container`][terok_sandbox.runtime.protocol.Container]
    Protocol rather than the narrower concrete class: mypy treats
    Protocol method return types as invariant, so a narrower
    annotation breaks structural ``ContainerRuntime`` matching for
    downstream consumers (terok's ``_runtime: ContainerRuntime``
    assignment was the loud failure).  The runtime value is
    genuinely a ``KrunContainer`` — callers needing the concrete
    type ``cast`` at the call site.
    """
    return KrunContainer(name, runtime=self._podman, transport=self._transport)

containers_with_prefix(prefix)

Same prefix lookup as podman; rewrap each handle as a KrunContainer so its login_command routes through the TCP-SSH transport.

Same Protocol-invariance rationale as container for the wider declared return type.

Source code in src/terok_sandbox/runtime/krun.py 
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
def containers_with_prefix(self, prefix: str) -> list[Container]:
    """Same prefix lookup as podman; rewrap each handle as a
    [`KrunContainer`][terok_sandbox.runtime.krun.KrunContainer] so its
    ``login_command`` routes through the TCP-SSH transport.

    Same Protocol-invariance rationale as
    [`container`][terok_sandbox.runtime.krun.KrunRuntime.container]
    for the wider declared return type.
    """
    return [
        KrunContainer(c.name, runtime=self._podman, transport=self._transport)
        for c in self._podman.containers_with_prefix(prefix)
    ]

image(ref)

Delegate image-handle construction to podman.

Source code in src/terok_sandbox/runtime/krun.py 
107
108
109
def image(self, ref: str) -> Image:
    """Delegate image-handle construction to podman."""
    return self._podman.image(ref)

images(*, dangling_only=False)

Delegate image enumeration to podman.

Source code in src/terok_sandbox/runtime/krun.py 
111
112
113
def images(self, *, dangling_only: bool = False) -> list[Image]:
    """Delegate image enumeration to podman."""
    return self._podman.images(dangling_only=dangling_only)

exec(container, cmd, *, timeout=None)

Route to the transport — typically SSH-over-passt-TCP.

Source code in src/terok_sandbox/runtime/krun.py 
117
118
119
120
121
122
123
124
125
126
127
def exec(
    self,
    container: Container,
    cmd: list[str],
    *,
    timeout: float | None = None,
) -> ExecResult:
    """Route to the transport — typically SSH-over-passt-TCP."""
    if not cmd:
        raise ValueError("exec argv must not be empty")
    return self._transport.exec(container, cmd, timeout=timeout)

exec_stdio(container, cmd, *, stdin, stdout, stderr=None, env=None, timeout=None)

Route stdio-bridged exec to the transport.

Source code in src/terok_sandbox/runtime/krun.py 
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
def exec_stdio(
    self,
    container: Container,
    cmd: list[str],
    *,
    stdin: BinaryIO,
    stdout: BinaryIO,
    stderr: BinaryIO | None = None,
    env: Mapping[str, str] | None = None,
    timeout: float | None = None,
) -> int:
    """Route stdio-bridged exec to the transport."""
    if not cmd:
        raise ValueError("exec_stdio argv must not be empty")
    return self._transport.exec_stdio(
        container,
        cmd,
        stdin=stdin,
        stdout=stdout,
        stderr=stderr,
        env=env,
        timeout=timeout,
    )

force_remove(containers)

Delegate forcible removal to podman.

Source code in src/terok_sandbox/runtime/krun.py 
155
156
157
def force_remove(self, containers: list[Container]) -> list[ContainerRemoveResult]:
    """Delegate forcible removal to podman."""
    return self._podman.force_remove(containers)

reserve_port(host='127.0.0.1')

Delegate port reservation to podman.

Source code in src/terok_sandbox/runtime/krun.py 
159
160
161
def reserve_port(self, host: str = "127.0.0.1") -> PortReservation:
    """Delegate port reservation to podman."""
    return self._podman.reserve_port(host)

KrunTransport

Bases: Protocol

How KrunRuntime reaches into a running microVM to run commands.

The exec divergence is forced by libkrun: a microVM is sealed after boot and cannot accept injected processes. The real implementation speaks SSH to a sshd inside the guest, reachable through a per-task host TCP port that podman's passt has forwarded into the guest namespace; that is wire-protocol shaped, not in-tree code we want to invent.

Kept narrow on purpose — only the two operations ContainerRuntime needs to route through it. Lifecycle stays on the podman side.

exec(container, cmd, *, timeout=None)

Run cmd inside the guest backed by container; return its outcome.

Source code in src/terok_sandbox/runtime/krun.py 
184
185
186
187
188
189
190
191
192
def exec(
    self,
    container: Container,
    cmd: list[str],
    *,
    timeout: float | None = None,
) -> ExecResult:
    """Run *cmd* inside the guest backed by *container*; return its outcome."""
    ...

exec_stdio(container, cmd, *, stdin, stdout, stderr=None, env=None, timeout=None)

Bridge byte streams to cmd inside the guest; return its exit code.

Source code in src/terok_sandbox/runtime/krun.py 
194
195
196
197
198
199
200
201
202
203
204
205
206
def exec_stdio(
    self,
    container: Container,
    cmd: list[str],
    *,
    stdin: BinaryIO,
    stdout: BinaryIO,
    stderr: BinaryIO | None = None,
    env: Mapping[str, str] | None = None,
    timeout: float | None = None,
) -> int:
    """Bridge byte streams to *cmd* inside the guest; return its exit code."""
    ...

login_command(container, *, command=())

Return an argv for os.execvp to attach interactively.

Mirrors the protocol method on Container.login_command but routed through the transport so the krun runtime can hand the operator an SSH invocation instead of podman exec.

Source code in src/terok_sandbox/runtime/krun.py 
208
209
210
211
212
213
214
215
216
217
218
219
220
221
def login_command(
    self,
    container: Container,
    *,
    command: tuple[str, ...] = (),
) -> list[str]:
    """Return an argv for [`os.execvp`][os.execvp] to attach interactively.

    Mirrors the protocol method on
    [`Container.login_command`][terok_sandbox.runtime.protocol.Container.login_command]
    but routed through the transport so the krun runtime can hand the
    operator an SSH invocation instead of ``podman exec``.
    """
    ...

FakeKrunTransport()

In-memory KrunTransport for tests.

Mirrors NullRuntime's pre-register-then-replay shape so tests that already understand the null backend pick this up by analogy. Records every call so tests can assert dispatch without a real sshd listener.

Source code in src/terok_sandbox/runtime/krun.py 
236
237
238
239
def __init__(self) -> None:
    self._results: dict[tuple[str, tuple[str, ...]], ExecResult] = {}
    self.exec_calls: list[tuple[str, tuple[str, ...]]] = []
    self.exec_stdio_calls: list[tuple[str, tuple[str, ...], dict[str, str]]] = []

exec_calls = [] instance-attribute

exec_stdio_calls = [] instance-attribute

set_result(container_name, cmd, result)

Pre-register the result exec returns for exact cmd on container_name.

Source code in src/terok_sandbox/runtime/krun.py 
241
242
243
244
245
246
247
248
249
250
def set_result(
    self,
    container_name: str,
    cmd: tuple[str, ...],
    result: ExecResult,
) -> None:
    """Pre-register the result [`exec`][terok_sandbox.runtime.krun.FakeKrunTransport.exec]
    returns for exact *cmd* on *container_name*.
    """
    self._results[(container_name, cmd)] = result

exec(container, cmd, *, timeout=None)

Return a pre-registered result, or empty success.

Source code in src/terok_sandbox/runtime/krun.py 
252
253
254
255
256
257
258
259
260
261
262
263
264
265
def exec(
    self,
    container: Container,
    cmd: list[str],
    *,
    timeout: float | None = None,
) -> ExecResult:
    """Return a pre-registered result, or empty success."""
    # ``timeout`` is part of the protocol shape; the fake doesn't
    # block on anything, so there is nothing to time out on.
    del timeout
    key = (container.name, tuple(cmd))
    self.exec_calls.append(key)
    return self._results.get(key, ExecResult(exit_code=0, stdout="", stderr=""))

exec_stdio(container, cmd, *, stdin, stdout, stderr=None, env=None, timeout=None)

Record the call and return exit code 0 (no I/O is moved).

Source code in src/terok_sandbox/runtime/krun.py 
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
def exec_stdio(
    self,
    container: Container,
    cmd: list[str],
    *,
    stdin: BinaryIO,
    stdout: BinaryIO,
    stderr: BinaryIO | None = None,
    env: Mapping[str, str] | None = None,
    timeout: float | None = None,
) -> int:
    """Record the call and return exit code 0 (no I/O is moved)."""
    # Stream + timeout params are part of the protocol shape; the
    # fake intentionally doesn't move bytes — tests that need stdio
    # behaviour write a custom transport.
    del stdin, stdout, stderr, timeout
    self.exec_stdio_calls.append((container.name, tuple(cmd), dict(env or {})))
    return 0

login_command(container, *, command=())

Return a placeholder argv ["fake-login", <name>, *command].

Tests assert on the shape; no real transport is contacted.

Source code in src/terok_sandbox/runtime/krun.py 
286
287
288
289
290
291
292
293
294
295
296
def login_command(
    self,
    container: Container,
    *,
    command: tuple[str, ...] = (),
) -> list[str]:
    """Return a placeholder argv ``["fake-login", <name>, *command]``.

    Tests assert on the shape; no real transport is contacted.
    """
    return ["fake-login", container.name, *command]

KrunContainer(name, *, runtime, transport)

Bases: PodmanContainer

Container handle for krun-managed microVMs.

Subclasses PodmanContainer because podman --runtime krun honours every lifecycle verb (state, start/stop, logs, inspect) — only login_command diverges, since podman exec can't enter the guest. That single override routes through the held KrunTransport so the operator gets an SSH argv that actually reaches in.

Source code in src/terok_sandbox/runtime/krun.py 
313
314
315
316
317
318
319
320
321
def __init__(
    self,
    name: str,
    *,
    runtime: PodmanRuntime,
    transport: KrunTransport,
) -> None:
    super().__init__(name, runtime=runtime)
    self._transport = transport

login_command(*, command=())

Return the transport's interactive-attach argv for this container.

Source code in src/terok_sandbox/runtime/krun.py 
323
324
325
def login_command(self, *, command: tuple[str, ...] = ()) -> list[str]:
    """Return the transport's interactive-attach argv for this container."""
    return self._transport.login_command(self, command=command)