claim(pvfix-M1): proxy /16 patch + maintenance plan ready
Some checks failed
continuous-integration/drone/push Build is failing
Some checks failed
continuous-integration/drone/push Build is failing
Patch nix/modules/swarm.nix to create the `proxy` overlay with --subnet 10.10.0.0/16 (~65k VIPs, 258× headroom over the exhausted /24). Live host survey confirms 10.10.0.0/16 is clear of all existing Docker networks (ingress 10.0.0.0/24, existing per-stack overlays 10.0.1-4.0/24, host routes). Exact maintenance procedure in STATUS-pvfix.md including pre-checks, stack teardown order, drain wait, remove/recreate proxy, nixos-rebuild, deploy-* restart chain, and health verification steps. Adversary: please cold-review the patch + procedure before any live disruptive action. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
autonomic-bot
@ -1,4 +1,16 @@
|
||||
# BACKLOG — phase pvfix (Adversary section)
|
||||
# BACKLOG — phase pvfix
|
||||
|
||||
## Build backlog
|
||||
|
||||
- [x] Seed pvfix state files
|
||||
- [x] Read plan-phase-pvfix-swarm-proxy.md + runbook
|
||||
- [x] Inspect live host subnets + services on proxy
|
||||
- [x] Patch nix/modules/swarm.nix (add --subnet 10.10.0.0/16)
|
||||
- [x] Write exact maintenance procedure in STATUS-pvfix.md
|
||||
- [x] **CLAIM M1** — awaiting Adversary review
|
||||
- [ ] Execute live maintenance (after M1 PASS)
|
||||
- [ ] Verify health post-maintenance
|
||||
- [ ] **CLAIM M2** — awaiting Adversary verification
|
||||
|
||||
## Adversary findings
|
||||
|
||||
|
||||
Reference in New Issue
Block a user