recipe-maintainers/cc-ci
0
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,338 Commits 20 Branches 1 Tag
07fc6d4af5dfbbe9500a2819039631fb0a7fb2a3
Commit Graph

1338 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
autonomic-bot
07fc6d4af5 fix(mumble): widen handshake readiness budget 60s->180s (load flake stabilization)
Some checks failed
continuous-integration/drone/push Build is failing
Details 
The TCP READY_PROBE proves 64738 is listening, but the murmur control channel needs more warmup to
complete a full TLS+ServerSync handshake; under concurrent sweep load that exceeded the 60s budget
(green in isolation, red under load). Longer budget absorbs the delay; assertions unchanged (a dead
server still fails after all retries).
 2026-06-18 01:58:16 +00:00
autonomic-bot
61211dba70 fix(keycloak): collision-free canonical domain for live-warm providers; enroll keycloak 
canonical_domain() routes any recipe in warm.WARM_DOMAINS (keycloak) to a distinct warm-canon-<recipe>
domain so the data-warm canonical promote can never collide with the live-warm OIDC provider at
warm-keycloak. keycloak WARM_CANONICAL=True (full canonical coverage without risking live SSO).
 2026-06-18 01:58:16 +00:00
autonomic-bot
c742f9adc4 journal(redfix): cc-ci-side verification mechanism (temp-checkout run) + M2 progress snapshot
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 01:51:54 +00:00
autonomic-bot
125e1ba675 journal(redfix): M2 bluesky — abra drops compose net aliases (proven); pivot to service rename app->pds + coupled cc-ci exec-ref update
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 01:50:26 +00:00
autonomic-bot
c3854a9bcc status+journal(redfix): M2 — mattermost-lts FIXED (run #901 all green, restore fixed); discourse #4 green; bluesky PR #4 created (promote-path verify next)
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 01:30:57 +00:00
autonomic-bot
abfbe8b0aa journal+status(redfix): M2 recon — discourse #4 (official-image) already !testme-green; mattermost #1 (pg-restore) triggered for verify
Some checks failed
continuous-integration/drone/push Build is failing
Details
continuous-integration/drone Build is passing
Details
2026-06-18 01:24:48 +00:00
autonomic-bot
6771c713f0 inbox(redfix): consume Adversary M1-PASS heads-up — node clean (gitea idle 3.5.3 unchanged, keycloak healthy); proceeding to M2
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 01:20:27 +00:00
autonomic-bot
191ddc9fb8 status(redfix): M1 PASS (Adversary cold-verified all 6 classifications CORRECT); begin M2 fixes
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 01:20:15 +00:00
autonomic-bot
b6038e9796 inbox(redfix): heads-up to Builder — M1 PASS, node restored clean (gitea idle 3.5.3 canonical unchanged), cleared for M2
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 01:19:52 +00:00
autonomic-bot
edee91341c review(redfix-M1): PASS — all 6 classifications cold-verified by my own isolation re-runs. discourse=stale overlay (no timeout, my run converged in min), mattermost=deterministic restore RED, mumble=flake (handshake green isolated), bluesky=recipe app-alias proxy collision (getent app->10.10.0.4, not machinery), gitea=read-only app.ini JWT crash (canonical unchanged), keycloak=warm-domain collision. No VETO. Node clean before+after.
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 01:19:27 +00:00
autonomic-bot
14aa55f02b note(redfix): M1 interim — gitea CONFIRMED by my run + container crash log (LoadCommonSettings JWT save to read-only /etc/gitea/app.ini config mount); genuine recipe defect
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 01:09:49 +00:00
autonomic-bot
c9c870f0a6 note(redfix): M1 interim — mattermost CONFIRMED deterministic restore RED (ci_marker does not exist, 91s isolation; no restore.post-hook); genuine recipe defect not load-race
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 01:02:16 +00:00
autonomic-bot
968780234b note(redfix): M1 interim — discourse CONFIRMED (no timeout/wedge; install+backup+restore+custom pass, upgrade reds on PR-faithfulness overlay asserting unreleased official:3.5.3/no-sidekiq); stale overlay test
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 00:56:57 +00:00
autonomic-bot
5512dcaba5 note(redfix): M1 interim — mumble CONFIRMED flake (handshake test PASSED in my isolation run, all 5 tiers green, promote ok); bluesky orphan cleaned up
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 00:44:44 +00:00
autonomic-bot
0c11b0b39d note(redfix): M1 interim — bluesky-pds CONFIRMED by my reproduction (getent app->10.10.0.4 proxy collision, real app 10.0.5.6 never resolved; deterministic 000); recipe routing defect not machinery/flake
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 00:26:19 +00:00
autonomic-bot
65fe47feea journal(redfix): M2 prep — bluesky fix refinement (unique internal alias, not service rename)
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 00:25:57 +00:00
autonomic-bot
4777ba8edc backlog(redfix): M2 fix designs from M1 evidence (mattermost/bluesky/gitea recipe PRs; keycloak/mumble harness; discourse overlay-scope) — execution gated on M1 PASS
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 00:20:14 +00:00
autonomic-bot
0a06c411a6 claim(redfix-M1): all 6 canon-sweep failures investigated in isolation + classified (results table + cold-verify guide). discourse=stale overlay test, mattermost-lts=recipe restore defect, mumble=load FLAKE (2x green), bluesky=app-alias proxy collision, gitea=app.ini RO crash, keycloak=warm-domain collision. 2 canon root-causes corrected.
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 00:18:09 +00:00
autonomic-bot
00fca8a33e journal+status(redfix): M1 gitea app.ini read-only JWT crash CONFIRMED on warm advance (recipe defect); 6/6 classified
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 00:14:32 +00:00
autonomic-bot
88c9ebcce4 status(redfix): M1 tracker — keycloak classified (harness collision); 5/6 done, gitea app.ini advance reproducing
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 00:08:40 +00:00
autonomic-bot
93e1e7d87a note(redfix): M1 pre-staging — mattermost (no restore.post-hook) + discourse (PR-faithfulness overlay) static claims corroborated via code; owe own discourse isolation run + bluesky diag before any PASS
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 00:08:31 +00:00
autonomic-bot
8a54c4d0ea journal(redfix): M1 keycloak (harness warm-domain collision, design-complete) + gitea first-run already-deployed confound
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 00:08:25 +00:00
autonomic-bot
f8ba0c3a1f journal(redfix): M1 bluesky-pds — 000 reproduces deterministically; root cause = caddy↔app cross-stack 'app' alias collision on shared proxy (recipe defect)
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-18 00:02:26 +00:00
autonomic-bot
41e161a433 status(redfix): M1 tracker — discourse/mattermost/mumble classified; bluesky promote in flight
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-17 23:53:13 +00:00
autonomic-bot
9a58268e12 journal(redfix): M1 mumble isolation GREEN — load/timing flake confirmed
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-17 23:44:24 +00:00
autonomic-bot
8df74d7bc0 journal(redfix): M1 mattermost-lts isolation — DETERMINISTIC restore fail; genuine recipe defect (no restore.post-hook vs immich)
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-17 23:41:29 +00:00
autonomic-bot
23b439db83 journal(redfix): M1 discourse isolation — canon root-cause wrong; deploys fine, only upgrade overlay (unreleased official-image migration) fails
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-17 23:33:18 +00:00
autonomic-bot
3e61473365 chore(redfix): bootstrap phase state files (STATUS/BACKLOG/JOURNAL); M1 investigation tracker seeded
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-17 23:20:55 +00:00
autonomic-bot
a30e71825e review(redfix): open phase — REVIEW skeleton, cold access to cc-ci confirmed healthy, awaiting Builder bootstrap + M1 claim
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-17 23:19:36 +00:00
autonomic-bot
de4d69072c status(nixenv): mark phase DONE in STATUS (M1+M2 both PASS, no VETO)
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-17 23:18:36 +00:00
autonomic-bot
0b84452290 review(M2-nixenv): PASS — live parity cold-verified on cc-ci (claim f7b6f26, deploy d11f8f5). Deploy byte-identical to M1 build; host healthy post-sweep (systemctl --failed empty, timer+services active, endpoints 200, no orphan test stacks, live cc-ci-run=zxlx9jn). gitea test_lfs_roundtrip GREEN under BOTH real timer fire (git-lfs from runtimeInputs; unit PATH has no git-lfs) AND Drone #871 (cc-ci-run runner/run_recipe_ci.py). No regression: ZERO missing-tool signatures across whole sweep; SKIPs/promotes correct; gitea promote-fail (warm-gitea already deployed) + discourse/mattermost reds (image-assertion / postgres relation, docker resolved) all proven pre-existing — identical in OLD-env pre-deploy fires, runner/ unchanged since canon f94de22. No defects, no VETO. M1+M2 fresh PASS → DONE cleared.
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-17 18:21:16 +00:00
autonomic-bot
f7b6f26859 claim(M2-nixenv): live parity proven on BOTH paths — gitea test_lfs_roundtrip green under the real timer fire (@17:57:54Z, git-lfs from cc-ci-run runtimeInputs; unit PATH has no git-lfs) AND the Drone path (build #871, RECIPE=gitea REF=357926f2 PR=1). Deploy d11f8f5 healthy post-sweep (systemctl --failed empty, timer+oneshots active, endpoints 200). No regression: sweep SKIPs/promotes correct; gitea promote-fail + discourse/mattermost reds all pre-existing (identical pre-deploy, runner/ unchanged since canon f94de22). Awaiting Adversary.
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-17 18:18:53 +00:00
autonomic-bot
e0c296e0e6 inbox(nixenv): consumed Builder M2 heads-up — Drone-path witness #871 in flight; concur promote-failure pre-existing. Will independently verify both witnesses before verdict.
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-17 18:12:00 +00:00
autonomic-bot
c8d4528cbc inbox(nixenv): Drone-path LFS witness build #871 in flight (RECIPE=gitea REF=357926f2 PR=1); timer-fire witness already PASS
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-17 18:11:25 +00:00
autonomic-bot
bfdfd10098 inbox(nixenv): consume Adversary M2 heads-up — concur GREEN-BUT-PROMOTE-FAILED is pre-existing (nixenv diff dd6712c..d11f8f5 is nix/+docs only, runner/nightly_sweep.py unchanged since canon f94de22; warm-gitea up since 08:39Z → 'already deployed')
Some checks failed
continuous-integration/drone/push Build is failing
Details
continuous-integration/drone Build is passing
Details
2026-06-17 18:07:05 +00:00
autonomic-bot
b278082272 note(nixenv): heads-up to Builder — gitea LFS witness GREEN under timer fire, but sweep hit GREEN-BUT-PROMOTE-FAILED (warm-gitea already deployed); asking claim to establish it's pre-existing not nixenv-caused (runner promote path unchanged)
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-17 18:05:58 +00:00
autonomic-bot
2cc7328c5c status(M2-nixenv): timer-fire LFS witness PASS (test_lfs_roundtrip green from cc-ci-run runtimeInputs; systemd unit PATH has no git-lfs). GREEN-BUT-PROMOTE-FAILED is pre-existing abra warm-deploy idempotency, not a regression. Drone-path witness pending sweep completion.
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-17 18:05:29 +00:00
autonomic-bot
d9eab45557 status(M2-nixenv): deployed clean (system byte-identical to M1 review); real timer fire started — gitea LFS witness in flight
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-17 17:36:09 +00:00
autonomic-bot
c0ac552441 status(M2-nixenv): M1 PASS recorded; M2 deploy in flight on cc-ci(hetzner)
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-17 17:28:37 +00:00
autonomic-bot
d11f8f56c4 review(M1-nixenv): PASS — single-source harness runtime env cold-verified (claim 8b8fc1f). Both hosts build (no collision); withPackages/pytest-playwright/ccciRuntimeTools each single-def; sweep+Drone both exec byte-identical cc-ci-run zxlx9jn… (15-tool PATH incl git-lfs-3.6.1+openssl-3.3.3, ends :$PATH so nothing dropped); host configs textually identical, cc-ci sw/bin GAINS git-lfs+openssl, DEFECT-3 host-PATH patch removed; future-dep propagation single-source by construction. No defects, no VETO. M2 (deploy+live LFS witness) awaits.
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-17 17:26:56 +00:00
autonomic-bot
8b8fc1ff8e claim(M1-nixenv): single-source harness runtime env — ccciPyEnv+ccciRuntimeTools+cc-ci-run in packages.nix, referenced by harness/sweep/both hosts; sweep execs cc-ci-run (no dup pyEnv, no DEFECT-3 PATH patch); cc-ci host gains git-lfs+openssl; both #cc-ci and #cc-ci-hetzner build; awaiting Adversary
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-17 17:23:28 +00:00
autonomic-bot
706583bee3 review(nixenv): cold-prep — enumerate 3 current env declarations + union the shared set must cover; noted cc-ci/hetzner host git-lfs divergence as break-it target. Awaiting M1 claim.
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-17 17:12:06 +00:00
autonomic-bot
dd6712c243 status(settings): ## DONE — M1+M2 fresh Adversary PASS (cd19c1b, 99d6bbc), no VETO
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-17 17:07:14 +00:00
autonomic-bot
40d2056c9e review(M2-settings): PASS — live cold-verified on cc-ci. Deployed runner @99d6bbc byte-identical to M1-reviewed cd19c1b. CASE1 (file absent/false): keycloak(no canon)->release tag 10.7.1+26.6.2 NOT main-tip; gitea(canon)->last-green 3.5.3 unchanged. CASE2 (scratch file/true): live flag reads True from /etc/cc-ci/settings.toml, gitea canonical BYPASSED to release-tag path. RESTORE: file removed->flag False, reason back to last-green; steady state restored (file absent, clean). Harness file-pickup proven via real DEFAULT_PATH. No defects, no VETO. M1+M2 fresh PASS.
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-17 17:06:24 +00:00
autonomic-bot
a9ff941dda claim(M2-settings): live server verified — no-canonical recipe (keycloak) -> release tag 10.7.1+26.6.2; flag true bypasses gitea canonical to release-tag path, restored false. Deployed /etc/cc-ci@99d6bbc; awaiting Adversary
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-17 17:04:16 +00:00
autonomic-bot
99d6bbc1a1 chore(settings): add scripts/show-upgrade-base.py — faithful live resolver probe for M2 evidence
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-17 17:02:33 +00:00
autonomic-bot
b7a2a5d699 journal(settings): M2 prep — server canonical registry inventory + M2 evidence candidates
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-17 16:58:59 +00:00
autonomic-bot
fb2dbeae05 review(M1-settings): PASS — cold-verified loader + flag + release-tag-first fallback. 32+315 tests pass; independent loader probes (absent/malformed/wrong-type/int-bool/unknown-key all correct, env override, get() default False); resolver matrix all 6 cells (false=canonical unchanged, true=canonical bypassed to release tag); samever helper reused; scope narrow (flag read only in resolve_upgrade_base, promote/--quick untouched); stdlib-only; no secrets. No defects, no VETO.
Some checks failed
continuous-integration/drone/push Build is failing
Details
2026-06-17 16:58:52 +00:00
autonomic-bot
fed2678200 claim(M1-settings): settings loader + SKIP_CANONICALS_FOR_UPGRADE + release-tag-first fallback implemented + unit-tested (315 pass); awaiting Adversary cold-verify
Some checks failed
continuous-integration/drone/push Build is failing
Details 
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-17 16:55:59 +00:00
autonomic-bot
cd19c1b172 feat(settings): server settings.toml loader + SKIP_CANONICALS_FOR_UPGRADE + release-tag-first no-canonical fallback
Some checks failed
continuous-integration/drone/push Build is failing
Details 
- harness/settings.py: stdlib tomllib loader, [upgrade].skip_canonicals_for_upgrade
  (bool, default false), _SCHEMA single-source defaults+validation; graceful on
  absent/malformed (WARN+defaults), warn-and-ignore unknown keys/tables, TypeError on
  wrong type. Path $CCCI_SETTINGS / /etc/cc-ci/settings.toml. + tracked settings.toml.example.
- resolve_upgrade_base: flag true bypasses the canonical lookup -> no-canonical fallback;
  canonical-present path (incl. samever step-back) unchanged when false.
- _no_canonical_base (always-on, §2.C): newest release tag < head (reuse
  warm_reconcile.newest_older_version) -> main-tip -> skip; replaces jump-to-main-tip.
- unit: full resolution matrix + loader tests; 315 unit pass, ruff clean.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-17 16:55:22 +00:00