fix(cd): syntax check recovery preflight in controlled lane
Some checks failed
CD Pipeline / workflow-shape (push) Successful in 0s
CD Pipeline / cancel-stale-cd (push) Has been skipped
CD Pipeline / tests (push) Successful in 36s
CD Pipeline / post-deploy-checks (push) Has been cancelled
CD Pipeline / build-and-deploy (push) Has been cancelled

This commit is contained in:
ogt
2026-07-01 21:42:48 +08:00
parent 4160126f78
commit 563ca6554d
3 changed files with 24 additions and 0 deletions

View File

@@ -782,6 +782,7 @@ jobs:
../../scripts/reboot-recovery/post-start-quick-check.sh \
../../scripts/reboot-recovery/188-host-hygiene-maintenance-checklist.sh \
../../scripts/reboot-recovery/full-stack-cold-start-check.sh \
../../scripts/reboot-recovery/momo-drive-token-source-recovery-preflight.sh \
../../scripts/reboot-recovery/full-stack-recovery-scorecard.sh \
../../scripts/reboot-recovery/harbor-watchdog.sh \
../../scripts/reboot-recovery/awoooi-startup-110.sh \

View File

@@ -52110,6 +52110,28 @@ production browser smoke:
**下一步**
- rebase / commit / push truth-chain source split讀回 Gitea queue 與 188 DB active query。若 deploy 收斂,立即 reset `awoooi` role 的 temporary `max_parallel_workers_per_gather=0`;若 110 SSH 恢復,第一動作仍是套用新版 systemd exporter 或暫停舊 exporter再回讀 systemd/logind、Gitea CPU 與 load5/core。
## 2026-07-01 — 21:41 CD controlled-runtime B5 誤觸發修正
**完成內容**
- 公開 Gitea CD `#4302``10275a9d7b` 失敗safe log 摘要確認 API tests 已通過 `3657 passed, 23 skipped`,真正紅點是 B5 step 誤跑後遇到 `BLOCKER b5_docker_socket_unavailable`
- 根因不是新 API service test而是 `10275a9d` 變更包含 `scripts/reboot-recovery/momo-drive-token-source-recovery-preflight.sh`,該 cold-start preflight script 未列入 `.gitea/workflows/cd.yaml` controlled-runtime path allowlist導致整個 run 被降回 full profile。
- 已將 `scripts/reboot-recovery/momo-drive-token-source-recovery-preflight.sh` 納入 controlled-runtime source classifier並加入 API tests step 的 `bash -n` syntax verifier。
- `ops/runner/test_cd_controlled_runtime_profile.py` 新增 guard確保該 script 的 source path 與 B5 前 syntax-check path 都維持在 controlled-runtime lane。
**本地驗證結果**
- `python3.11 -m pytest ops/runner/test_cd_controlled_runtime_profile.py -q``41 passed`
- `python3 ops/runner/guard-gitea-runner-pressure.py --root .`:通過,`auto_branch_events_on_110=0``generic_runner_labels=0`
- `bash -n scripts/reboot-recovery/momo-drive-token-source-recovery-preflight.sh`:通過。
- `python3.11 -m py_compile ops/runner/test_cd_controlled_runtime_profile.py`:通過。
- `git diff --check`:通過。
**仍維持**
- 沒有讀 secret / token / `.env` / raw sessions / SQLite / auth沒有使用 GitHub / `gh` / GitHub API。
- 沒有重啟主機,沒有 Docker / Nginx / K3s / DB / firewall 操作,沒有 workflow_dispatch沒有 force push。
**下一步**
- commit / push 後讀回新的 Gitea CD目標是 controlled-runtime 直接跳過 B5不再因 cold-start metadata/script 變更要求 Docker socket。
## 2026-07-01 — 08:50 P0 188 DB circuit breaker post-push readback
**完成內容**

View File

@@ -728,6 +728,7 @@ def test_post_start_recovery_verifiers_stay_on_controlled_runtime_profile() -> N
"../../scripts/reboot-recovery/post-start-quick-check.sh",
"../../scripts/reboot-recovery/188-host-hygiene-maintenance-checklist.sh",
"../../scripts/reboot-recovery/full-stack-cold-start-check.sh",
"../../scripts/reboot-recovery/momo-drive-token-source-recovery-preflight.sh",
"../../scripts/reboot-recovery/full-stack-recovery-scorecard.sh",
"../../scripts/reboot-recovery/harbor-watchdog.sh",
"../../scripts/reboot-recovery/awoooi-startup-110.sh",