fix(runners): live-validated the crunchy stack; cutover done
All checks were successful
CI / preflight (push) Successful in 9s
CI / typecheck (push) Successful in 23s
pulumi-preview / preview (push) Successful in 26s

Fixes found running `pulumi up` live against crunchy01 (foundation-runner-02,
static .16, 8c/32G — the new default sizing):

- network-config matches the NIC by glob (`match: {name: "e*"}`) instead of a
  hardcoded enp1s0 — the libvirt.Domain enumerated it differently, leaving the VM
  with no IP.
- drop `qemuAgent: true` — it blocks the provider on the guest agent (not up on a
  fresh boot) during create; we register over the static IP instead.
- runner-register connection gets `dialErrorLimit: 30` so it waits ~5 min for the
  VM to boot + apply its IP, landing the runner in a single `up`.
- fix the register token passing (the old /tmp/t hop was an ephemeral --rm
  container → empty token); pass it directly (pulumi redacts the secret).
- README: host prep (root SSH + the `images` pool), the exact stack config, and
  the cutover marked DONE — a `runs-on: fenced` job ran green on the Pulumi-managed
  runner-02; the hand-built VM was retired.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
This commit is contained in:
Andreas Niemann 2026-07-01 03:35:06 +02:00
parent cfa71847ba
commit 44a96d84eb
3 changed files with 59 additions and 26 deletions

1
.gitignore vendored
View file

@ -12,3 +12,4 @@ offsite-backup/state/
offsite-backup/Pulumi.prod.yaml
provision/Pulumi.foundation-test.yaml
runners/state/
runners/Pulumi.crunchy.yaml