fix(e2e): stabilize local Docker smoke test

[elezar]

Summary

Fix local Docker e2e by honoring the configured supervisor image and isolating host OpenSSH from Nix/devenv linker variables while preserving the proxy child environment.

Related Issue

N/A

Changes

• Honor the configured Docker supervisor image when running local Docker e2e.
• Scrub host linker environment variables before launching external ssh.
• Restore the original linker environment for the openshell ssh-proxy child command.
• Add focused CLI tests for the split SSH/proxy environment behavior.

Testing

• mise run pre-commit passes
• Unit tests added/updated
• E2E tests added/updated (if applicable)

Additional validation run:

• /home/elezar/.cargo/bin/cargo fmt --check
• /home/elezar/.cargo/bin/cargo test -p openshell-cli linker_environment
• /home/elezar/.cargo/bin/cargo clippy -p openshell-cli --all-targets -- -D warnings
• mise run e2e:docker

mise run pre-commit was attempted locally but did not complete: helm lint reported missing chart dependency metadata for postgresql, and three openshell-supervisor-process tests failed because this shell could not resolve the current user/group. The clippy failure from this change was fixed and rechecked.

Checklist

• Follows Conventional Commits
• Commits are signed off (DCO)

[github-actions]

🌿 Preview your docs: https://nvidia-preview-pr-1935.docs.buildwithfern.com/openshell

[github-actions]

Label test:e2e applied for 5b97b26. Open the existing run and click Re-run all jobs to execute with the label set. The run will execute the standard E2E suite after building the required gateway and supervisor images once. The matching required CI gate status on this PR will flip green automatically once the run finishes.

[github-actions]

Label test:e2e-gpu applied for 5b97b26. Open the existing run and click Re-run all jobs to execute with the label set. The run will execute GPU E2E after building the required supervisor image once. The matching required CI gate status on this PR will flip green automatically once the run finishes.

[elezar]

gator-agent

PR Review Status

Validation: this is maintainer-authored, project-valid Docker e2e and SSH environment stabilization work. It keeps local Docker e2e aligned with the configured supervisor image and prevents host linker variables from breaking the external OpenSSH process while preserving the proxy child environment.
Head SHA: 5b97b26a7af0618d2b86569e01a9a94fcccd6406

Review findings:

• No blocking findings remain.
• Nonblocking suggestion from the independent review: the internal DockerComputeConfig.supervisor_image comment is stale because configured supervisor_image now takes precedence over sibling/local builds when supervisor_bin is unset.

Docs: relevant Docker supervisor image behavior is reflected in the Docker driver README and docs/reference/gateway-config.mdx; no docs navigation change appears necessary.
E2E: test:e2e and test:e2e-gpu are already applied because this affects Docker e2e/supervisor behavior.
Checks: OpenShell / Branch Checks, OpenShell / Helm Lint, and DCO are passing. OpenShell / E2E and OpenShell / GPU E2E are pending for this head.

Next state: gator:watch-pipeline

[elezar]

gator-agent

Re-check After CI Update

I re-evaluated latest head 5b97b26a7af0618d2b86569e01a9a94fcccd6406 after the required E2E gates completed.

Disposition: not resolved.

Remaining items:

• Still blocking: OpenShell / E2E failed. The e2e / E2E (rust-docker) and e2e / E2E (rust-podman-rootless) jobs both failed tests/forward_proxy_graphql_l7.rs::graphql_l7_enforces_allow_and_deny_rules_on_forward_and_connect_paths.
• Docker observed forward_query_allowed = 403 where the test expected 200.
• Rootless Podman observed forward_get_query_allowed = 403 where the test expected 200.
• OpenShell / Branch Checks, OpenShell / Helm Lint, DCO, and OpenShell / GPU E2E are green for this head.

Next state: gator:in-review

[pimlock]

There is a comment here:

OpenShell/crates/openshell-driver-docker/src/lib.rs

Lines 159 to 163 in 242ace2

	/// Optional override for the image the gateway pulls to extract the
	/// Linux `openshell-sandbox` binary when no explicit binary path or
	/// local build is available. Defaults to
	/// `ghcr.io/nvidia/openshell/supervisor:<gateway-image-tag>`.
	pub supervisor_image: Option<String>,

that should be updated after changing order in which the supervisor bin is resolved.

Could be something like:

/// Optional image used to extract the Linux `openshell-sandbox` binary.
/// Ignored when `supervisor_bin` is set. See `resolve_supervisor_bin` for
/// the full resolution order.
pub supervisor_image: Option<String>,

It could make sense to validate the config and only allow either supervisor_bin or supervisor_image, so both cannot be set. But that would be a breaking change.

[pimlock]

Also, it would be good to have a test for this new resolution order.

[pimlock]

You could use temp-env here (cli crate already has a dep on it) to remove the unsafe and resetting the env var.

I think it could also remove the need for the lock, based on their docs.

Avoid interference when running concurrently