container: Implement setEgressHttp for containers

[gabivlj]

Continuation of: #5939
The main implementation of container-client.c++ has been mostly navigated through Claude Opus 4.5.

We are implementing a HTTP CONNECT service in Workerd that intercepts all TCP traffic off the container thanks to https://hub.docker.com/r/cloudflare/proxy-everything.

We then check configured mappings of the container, if the targetted host exists in the mappings, we redirect to that subrequest channel. If not, we check if enabledInternet is set to true, which then we just connect directly to the internet. If set to false, we just close the connection.

[gabivlj]

builds are failing because proxy-everything is not being pulled by default, I will check if we can pull it when we try to start it

[codspeed-hq]

Merging this PR will degrade performance by 16.29%

❌ 1 regressed benchmark
✅ 69 untouched benchmarks
⏩ 129 skipped benchmarks¹

⚠️ Please fix the performance issues or acknowledge them on CodSpeed.

Performance Changes

	Benchmark	BASE	HEAD	Efficiency
❌	jsonResponse[Response]	39.8 µs	47.6 µs	-16.29%

---

_{Comparing gv/set-egress-binding-pr (73210ab) with main (02c8669)}

Footnotes

1. 129 benchmarks were skipped, so the baseline results were used instead. If they were deleted from the codebase, click here and archive them to remove them from the performance reports. ↩

[codecov-commenter]

Codecov Report

❌ Patch coverage is 4.46735% with 278 lines in your changes missing coverage. Please review.
✅ Project coverage is 70.55%. Comparing base (02c8669) to head (73210ab).

Files with missing lines	Patch %	Lines
src/workerd/server/container-client.c++	0.00%	246 Missing ⚠️
src/workerd/api/container.c++	0.00%	22 Missing ⚠️
src/workerd/server/server.c++	56.52%	9 Missing and 1 partial ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #5985      +/-   ##
==========================================
- Coverage   70.73%   70.55%   -0.18%     
==========================================
  Files         409      409              
  Lines      109253   109530     +277     
  Branches    18007    18037      +30     
==========================================
+ Hits        77276    77281       +5     
- Misses      21171    21438     +267     
- Partials    10806    10811       +5     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[kentonv]

I've only looked at the interfaces so far. Happy to trust Dan's review of implementation details.

[gabivlj]

rebased conflict.

[gabivlj]

rebased

[danlapid]

lgtm, only thing left is the excess attachments, feel free to patch that out and merge.