Add support for cloud run

Author: tysonthomas9

Dockerfile.kernel-cloud

@@ -182,6 +182,11 @@ RUN chmod +x /images/chromium-headful/start-chromium.sh
 COPY kernel-images/images/chromium-headful/supervisord.conf /etc/supervisor/supervisord.conf
 COPY supervisord-cloudrun.conf /etc/supervisor/supervisord-cloudrun.conf
 COPY kernel-images/images/chromium-headful/supervisor/services/ /etc/supervisor/conf.d/services/
+# Copy Cloud Run-specific supervisor configs
+COPY supervisor-cloudrun/ /etc/supervisor/conf.d/services-cloudrun/
+# Copy Cloud Run-specific chromium start script
+COPY start-chromium-cloudrun.sh /start-chromium-cloudrun.sh
+RUN chmod +x /start-chromium-cloudrun.sh
 
 # copy the kernel-images API binary built in the builder stage
 COPY --from=server-builder /out/kernel-images-api /usr/local/bin/kernel-images-api
@@ -193,8 +198,9 @@ COPY nginx.conf /etc/nginx/nginx.conf
 RUN mkdir -p /tmp/nginx_client_temp /tmp/nginx_proxy_temp /tmp/nginx_fastcgi_temp \
     /tmp/nginx_uwsgi_temp /tmp/nginx_scgi_temp \
     /var/log/supervisord/chromium /var/log/supervisord/neko /var/log/supervisord/xorg \
-    /var/log/supervisord/dbus /var/log/supervisord/kernel-images-api /var/log/supervisord/mutter && \
-    chown -R kernel:kernel /tmp/nginx_* /var/log/supervisord
+    /var/log/supervisord/dbus /var/log/supervisord/kernel-images-api /var/log/supervisord/mutter \
+    /tmp/supervisord /tmp/dbus && \
+    chown -R kernel:kernel /tmp/nginx_* /var/log/supervisord /tmp/supervisord /tmp/dbus
 
 # Create chromium flags file with Cloud Run optimized settings
 RUN mkdir -p /chromium && \

cloudrun-kernel-wrapper.sh

@@ -72,12 +72,12 @@ echo "[cloudrun-kernel] Starting D-Bus..."
 supervisorctl -c /etc/supervisor/supervisord-cloudrun.conf start dbus
 echo "[cloudrun-kernel] Waiting for D-Bus system bus..."
 for i in {1..50}; do
-  if [ -S /run/dbus/system_bus_socket ]; then
+  if [ -S /tmp/dbus/system_bus_socket ]; then
     break
   fi
   sleep 0.2
 done
-export DBUS_SESSION_BUS_ADDRESS="unix:path=/run/dbus/system_bus_socket"
+export DBUS_SESSION_BUS_ADDRESS="unix:path=/tmp/dbus/system_bus_socket"
 
 echo "[cloudrun-kernel] Starting Chromium..."
 supervisorctl -c /etc/supervisor/supervisord-cloudrun.conf start chromium

nginx.conf

@@ -47,7 +47,7 @@ http {
 
         # WebRTC client (main interface)
         location / {
-            proxy_pass http://127.0.0.1:8081;
+            proxy_pass http://127.0.0.1:8080;
             proxy_http_version 1.1;
             proxy_set_header Upgrade $http_upgrade;
             proxy_set_header Connection $connection_upgrade;
@@ -61,7 +61,7 @@ http {
 
         # Chrome DevTools Protocol WebSocket
         location /ws {
-            proxy_pass http://127.0.0.1:9222;
+            proxy_pass http://127.0.0.1:9223;
             proxy_http_version 1.1;
             proxy_set_header Upgrade $http_upgrade;
             proxy_set_header Connection $connection_upgrade;
@@ -75,7 +75,7 @@ http {
 
         # Chrome DevTools Protocol HTTP endpoints
         location /json {
-            proxy_pass http://127.0.0.1:9222;
+            proxy_pass http://127.0.0.1:9223;
             proxy_set_header Host $host;
             proxy_set_header X-Real-IP $remote_addr;
             proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

service.yaml

@@ -16,19 +16,19 @@ spec:
         # Increase startup timeout
         run.googleapis.com/timeout: "3600"
         # Auto-scaling settings
-        autoscaling.knative.dev/minScale: "0"
+        autoscaling.knative.dev/minScale: "1"
         autoscaling.knative.dev/maxScale: "10"
     spec:
-      # One browser instance per container
-      containerConcurrency: 1
+      # Allow multiple concurrent requests (browser can handle multiple tabs/requests)
+      containerConcurrency: 10
       # 1 hour timeout for long browser sessions
       timeoutSeconds: 3600
       # Service account for GCP access
       serviceAccountName: kernel-browser-sa
       containers:
       - name: kernel-browser
         # This will be set during deployment
-        image: gcr.io/PROJECT_ID/kernel-browser:latest
+        image: gcr.io/browseroperator/kernel-browser:latest
         ports:
         - name: http1
           containerPort: 8080
@@ -58,9 +58,14 @@ spec:
           value: "768"
         - name: WIDTH
           value: "1024"
-        # TURN server configuration for WebRTC (replace with your TURN server)
+        # ICE servers configuration for WebRTC (includes both STUN and TURN)
         - name: NEKO_ICESERVERS
-          value: '[{"urls": ["stun:stun.l.google.com:19302"]}]'
+          value: '[{"urls":["stun:global.stun.twilio.com:3478"]},{"urls":["turn:global.turn.twilio.com:3478?transport=udp"],"username":"464cefa09d5a8b4030b34b3faf15871b5efe0eef8331e9324f3f4f9144158ada","credential":"1Fm/UdpnNFbvfDPBtETUSZ4BhQsi0cubgLBdbScluPs="}]'
+        # WebRTC configuration
+        - name: NEKO_WEBRTC_TCPPORT
+          value: "8081"
+        - name: NEKO_WEBRTC_UDPPORT  
+          value: "8082"
         # Optional: Google Cloud Storage bucket for recordings
         - name: GCS_BUCKET
           value: "kernel-browser-recordings"

start-chromium-cloudrun.sh

@@ -0,0 +1,32 @@
+#!/bin/bash
+
+set -o pipefail -o errexit -o nounset
+
+# Cloud Run optimized Chromium launcher - no runuser needed since we're already kernel user
+
+echo "Starting Chromium launcher (Cloud Run mode)"
+
+# Resolve internal port for the remote debugging interface
+INTERNAL_PORT="${INTERNAL_PORT:-9223}"
+
+# Load additional Chromium flags from env and optional file
+CHROMIUM_FLAGS="${CHROMIUM_FLAGS:-}"
+if [[ -f /chromium/flags ]]; then
+  CHROMIUM_FLAGS="$CHROMIUM_FLAGS $(cat /chromium/flags)"
+fi
+echo "CHROMIUM_FLAGS: $CHROMIUM_FLAGS"
+
+# Always use display :1 and point DBus to the system bus socket
+export DISPLAY=":1"
+export DBUS_SESSION_BUS_ADDRESS="unix:path=/tmp/dbus/system_bus_socket"
+export XDG_CONFIG_HOME=/home/kernel/.config
+export XDG_CACHE_HOME=/home/kernel/.cache
+export HOME=/home/kernel
+
+echo "Running chromium as kernel user (Cloud Run mode)"
+exec chromium \
+  --remote-debugging-port="$INTERNAL_PORT" \
+  --user-data-dir=/home/kernel/user-data \
+  --password-store=basic \
+  --no-first-run \
+  ${CHROMIUM_FLAGS:-}

supervisor-cloudrun/chromium.conf

@@ -0,0 +1,8 @@
+[program:chromium]
+command=/bin/bash -lc '/start-chromium-cloudrun.sh'
+user=kernel
+autostart=false
+autorestart=true
+startsecs=5
+stdout_logfile=/tmp/supervisord/chromium
+redirect_stderr=true

supervisor-cloudrun/dbus.conf

@@ -0,0 +1,8 @@
+[program:dbus]
+command=/bin/bash -lc 'mkdir -p /tmp/dbus && dbus-uuidgen --ensure=/tmp/dbus/machine-id && dbus-daemon --session --address=unix:path=/tmp/dbus/system_bus_socket --nopidfile --nosyslog --nofork'
+user=kernel
+autostart=false
+autorestart=true
+startsecs=2
+stdout_logfile=/tmp/supervisord/dbus
+redirect_stderr=true

supervisor-cloudrun/kernel-images-api.conf

@@ -0,0 +1,8 @@
+[program:kernel-images-api]
+command=/bin/bash -lc 'mkdir -p "${KERNEL_IMAGES_API_OUTPUT_DIR:-/recordings}" && PORT="${KERNEL_IMAGES_API_PORT:-10001}" FRAME_RATE="${KERNEL_IMAGES_API_FRAME_RATE:-10}" DISPLAY_NUM="${KERNEL_IMAGES_API_DISPLAY_NUM:-${DISPLAY_NUM:-1}}" MAX_SIZE_MB="${KERNEL_IMAGES_API_MAX_SIZE_MB:-500}" OUTPUT_DIR="${KERNEL_IMAGES_API_OUTPUT_DIR:-/recordings}" exec /usr/local/bin/kernel-images-api'
+user=kernel
+autostart=false
+autorestart=true
+startsecs=2
+stdout_logfile=/tmp/supervisord/kernel-images-api
+redirect_stderr=true

supervisor-cloudrun/mutter.conf

@@ -0,0 +1,8 @@
+[program:mutter]
+command=/bin/bash -lc 'XDG_SESSION_TYPE=x11 mutter --replace --sm-disable'
+user=kernel
+autostart=false
+autorestart=true
+startsecs=2
+stdout_logfile=/tmp/supervisord/mutter
+redirect_stderr=true

supervisor-cloudrun/neko.conf

@@ -0,0 +1,8 @@
+[program:neko]
+command=/usr/bin/neko serve --server.static /var/www --server.bind 0.0.0.0:8080
+user=kernel
+autostart=false
+autorestart=true
+startsecs=2
+stdout_logfile=/tmp/supervisord/neko
+redirect_stderr=true