govm

module
v0.1.3 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Mar 14, 2026 License: MIT

README

govm

Go SDK wrapper for BoxLite VM runtime.

What this repo contains

  • pkg/client: public Go API
  • internal/binding: cgo bridge to native static library
  • rust-bridge: Rust staticlib exporting govm_* C ABI, implemented on top of github.com/boxlite-ai/boxlite
  • internal/native/<os>_<arch>: vendored native artifacts committed in this repository
  • internal/offline/images/<name>/rootfs.tar.gz: embedded offline OCI image layout bundles

Build modes

  • Default mode (no tags): stub binding, useful for unit tests and CI compile checks without native libs.
  • Native mode: build with -tags govm_native to link vendored native libs.

Native mode quick start

# 1) ensure native libs exist in internal/native/<platform>
./scripts/verify-native.sh

# 2) run tests in native mode
go test -tags govm_native ./...

# 3) run example
go run -tags govm_native ./examples/basic
go run -tags govm_native ./examples/all-api

Health checks:

go run ./cmd/govm-doctor
go run ./cmd/govm-doctor --json
make platform-check

Strict cross-platform gate (fails when expected platforms are missing):

GOVM_DOCTOR_STRICT=1 go run ./cmd/govm-doctor
STRICT=1 make platform-check

Sync native artifacts from local boxlite checkout

./scripts/vendor-boxlite.sh /path/to/boxlite

Rebuild Rust bridge staticlib

./scripts/build-bridge.sh release

Public API sample

rt, err := client.NewRuntime(nil)
if err != nil { panic(err) }
defer rt.Close()

box, err := rt.CreateBox(context.Background(), "demo", client.BoxOptions{Image: "alpine:latest"})
if err != nil { panic(err) }
defer box.Close()

_ = box.Start()
res, _ := box.Exec("echo", &client.ExecOptions{Args: []string{"hello"}})
fmt.Println(res.ExitCode, res.Stdout)

Streaming output is also available:

res, _ := box.ExecStream("/bin/sh", &client.ExecOptions{
	Args: []string{"-lc", "echo hello && echo warn 1>&2"},
}, client.ExecStreamCallbacks{
	OnStdout: func(line string) { fmt.Println("stdout:", line) },
	OnStderr: func(line string) { fmt.Println("stderr:", line) },
})
fmt.Println(res.ExitCode, res.Stdout, res.Stderr)

Shared Directories

govm exposes host directory mounts through pkg/client:

  • Mount.HostPath: directory on the host
  • Mount.GuestPath: absolute path inside the guest
  • Mount.ReadOnly: whether the guest mount is read-only

Example:

box, err := rt.CreateBox(context.Background(), "mount-demo", client.BoxOptions{
	OfflineImage: "py312-alpine",
	Mounts: []client.Mount{
		{HostPath: "./workspace", GuestPath: "/workspace", ReadOnly: false},
		{HostPath: "./input", GuestPath: "/input", ReadOnly: true},
	},
})
if err != nil { panic(err) }
_ = box

Network API

govm exposes network controls in pkg/client:

  • NetworkMode: disabled, nat, bridged (bridged currently unsupported by backend)
  • NetworkPolicy: block_all / allow_all policy intent
  • PortForwards: host -> guest TCP/UDP forwarding

Example with runtime default profile and per-box override:

rt, err := client.NewRuntime(&client.RuntimeOptions{
	NetworkDefaults: &client.RuntimeNetworkDefaults{Profile: "strict"},
})
if err != nil { panic(err) }
defer rt.Close()

box, err := rt.CreateBox(context.Background(), "net-demo", client.BoxOptions{
	OfflineImage: "py312-alpine",
	Network: &client.NetworkConfig{
		Enabled: true,
		Mode:    client.NetworkNAT,
		Policy:  &client.NetworkPolicy{Mode: client.PolicyBlockAll},
		PortForwards: []client.PortForward{
			{HostIP: "127.0.0.1", HostPort: 18080, GuestPort: 8080, Protocol: client.ProtoTCP},
		},
	},
})
if err != nil { panic(err) }
_ = box

Detailed design and capability matrix:

  • docs/networking.md

Embedded Offline Images

govm can ship offline OCI layout bundles directly in the repository.

  • Place bundles under internal/offline/images/<name>/rootfs.tar.gz
  • Use client.BoxOptions{OfflineImage: "<name>"} in CreateBox
  • At runtime, the bundle is extracted to ~/.govm/offline-rootfs/... and used as LocalBundlePath

BoxOptions path fields:

  • LocalBundlePath: preferred field, points to local OCI layout directory
  • RootfsPath: backward-compatible alias (deprecated)

Example:

go run -tags govm_native ./examples/offline

Full API walkthrough:

go run -tags govm_native ./examples/all-api

Garbage Collection

Remove stopped boxes:

go run ./cmd/govm-gc

Remove all boxes forcefully:

go run ./cmd/govm-gc --all --force

Directories

Path Synopsis
cmd
govm-doctor command
govm-gc command
examples
all-api command
basic command
offline command
internal
binding
offline
runtimeassets
pkg
client

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.