Expose a few more host locations inside the container under /run/host

[debarshiray]

This is meant to alleviate some of the pain of not being able to modify
the list of bind mounts once a toolbox container has been created. For
some cases, where read-only access is enough, one can get by with
setting up symbolic links inside the toolbox container.

Based on an idea from Colin Walters.

[cgwalters]

Hm, but I see you chose /run/host instead of /host. Standardizing that path as much as we can is useful because other tools may come to rely on it. For example, things like Systemtap may want to look at /host/usr/lib/modules to find the host kernel.

I chose /host because oc debug node from OpenShift did.

[debarshiray]

Interesting. I didn't know OpenShift uses /host. I did notice that you had went with /host, not /run/host.

I went with /run/host for no other reason than that we already had it for resolv.conf, and the original reason was just that it's the location that Flatpak uses.

I am happy to switch to /host or add some symbolic links or whatever.

[debarshiray]

Let's merge this, and think of /run/host versus /host in a separate PR or issue.

[debarshiray]

For some reason, I cannot enter a toolbox that was created without that line removed
(on current F31 Silverblue).

You mean this line:

        --volume /usr:/run/host/usr:rslave \

We are also discussing it in containers/podman#4061

[debarshiray]

For some reason, I cannot enter a toolbox that was created without that line
removed (on current F31 Silverblue).

Should be fixed by https://github.com/debarshiray/toolbox/pull/276

We should roll a new release as soon as possible to address this regression.

[debarshiray]

This is also affected by containers/crun#120 or https://github.com/debarshiray/toolbox/issues/282 on Fedora 31 Silverblue.