⭐ feat(runner): More runner improvements (#294)

## Description
Whew..

- Steam can now run without namespaces using live-patcher (because
Docker..)
- Improved NVIDIA GPU selection and handling
- Pipeline tests for GPU picking logic
- Optimizations and cleanup all around
- SSH (by default disabled) for easier instance debugging.
- CachyOS' Proton because that works without namespaces (couldn't figure
out how to enable automatically in Steam yet..)
- Package updates and partial removal of futures (libp2p is going to
switch to Tokio in next release hopefully)



<!-- This is an auto-generated comment: release notes by coderabbit.ai
-->
## Summary by CodeRabbit

- **New Features**
- SSH server can now be enabled within the container for remote access
when configured.
- Added persistent live patching for Steam runtime entrypoints to
improve compatibility with namespace-less applications.
- Enhanced GPU selection with multi-GPU support and PCI bus ID matching
for improved hardware compatibility.
- Improved encoder selection by runtime testing of video encoders for
better reliability.
  - Added WebSocket transport support in peer-to-peer networking.
- Added flexible compositor and application launching with configurable
commands and improved socket handling.

- **Bug Fixes**
- Addressed NVIDIA-specific GStreamer issues by setting new environment
variables.
  - Improved error handling and logging for GPU and encoder selection.
- Fixed process monitoring to handle patcher restarts and added cleanup
logic.
- Added GStreamer cache clearing workaround for Wayland socket failures.

- **Improvements**
- Real-time logging of container processes to standard output and error
for easier monitoring.
- Enhanced process management and reduced CPU usage in protocol handling
loops.
- Updated dependency versions for greater stability and feature support.
  - Improved audio capture defaults and expanded audio pipeline support.
- Enhanced video pipeline setup with conditional handling for different
encoder APIs and DMA-BUF support.
- Refined concurrency and lifecycle management in protocol messaging for
increased robustness.
- Consistent namespace usage and updated crate references across the
codebase.
- Enhanced SSH configuration with key management, port customization,
and startup verification.
  - Improved GPU and video encoder integration in pipeline construction.
- Simplified error handling and consolidated write operations in
protocol streams.
- Removed Ludusavi installation from container image and updated package
installations.

- **Other**
- Minor formatting and style changes for better code readability and
maintainability.
- Docker build context now ignores `.idea` directory to streamline
builds.
<!-- end of auto-generated comment: release notes by coderabbit.ai -->

---------

Co-authored-by: DatCaptainHorse <DatCaptainHorse@users.noreply.github.com>

packages/server/src/p2p/p2p_safestream.rs

@@ -1,6 +1,6 @@
 use byteorder::{BigEndian, ByteOrder};
-use futures_util::io::{ReadHalf, WriteHalf};
-use futures_util::{AsyncReadExt, AsyncWriteExt};
+use libp2p::futures::io::{ReadHalf, WriteHalf};
+use libp2p::futures::{AsyncReadExt, AsyncWriteExt};
 use prost::Message;
 use serde::Serialize;
 use serde::de::DeserializeOwned;
@@ -63,21 +63,15 @@ impl SafeStream {
 
     async fn send_with_length_prefix(&self, data: &[u8]) -> Result<(), Box<dyn std::error::Error>> {
         if data.len() > MAX_SIZE {
-            return Err(Box::new(std::io::Error::new(
-                std::io::ErrorKind::InvalidData,
-                "Data exceeds maximum size",
-            )));
+            return Err("Data exceeds maximum size".into());
         }
 
+        let mut buffer = Vec::with_capacity(4 + data.len());
+        buffer.extend_from_slice(&(data.len() as u32).to_be_bytes()); // Length prefix
+        buffer.extend_from_slice(data); // Payload
+
         let mut stream_write = self.stream_write.lock().await;
-
-        // Write the 4-byte length prefix
-        let mut length_prefix = [0u8; 4];
-        BigEndian::write_u32(&mut length_prefix, data.len() as u32);
-        stream_write.write_all(&length_prefix).await?;
-
-        // Write the actual data
-        stream_write.write_all(data).await?;
+        stream_write.write_all(&buffer).await?; // Single write
         stream_write.flush().await?;
         Ok(())
     }
@@ -85,20 +79,16 @@ impl SafeStream {
     async fn receive_with_length_prefix(&self) -> Result<Vec<u8>, Box<dyn std::error::Error>> {
         let mut stream_read = self.stream_read.lock().await;
 
-        // Read the 4-byte length prefix
+        // Read length prefix + data in one syscall
         let mut length_prefix = [0u8; 4];
         stream_read.read_exact(&mut length_prefix).await?;
         let length = BigEndian::read_u32(&length_prefix) as usize;
 
         if length > MAX_SIZE {
-            return Err(Box::new(std::io::Error::new(
-                std::io::ErrorKind::InvalidData,
-                "Data exceeds maximum size",
-            )));
+            return Err("Data exceeds maximum size".into());
         }
 
-        // Read the actual data
-        let mut buffer = vec![0; length];
+        let mut buffer = vec![0u8; length];
         stream_read.read_exact(&mut buffer).await?;
         Ok(buffer)
     }