josh/Vetting
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

deep profile + threshold gating + firmware stage + Burn super-stage
CI / Lint + build + test (push) Failing after 1m57s
Details
Release / release (push) Has been cancelled
Details

Browse Source 
Ships all five phases of the deep-profile overhaul together. Runs now
carry a profile (quick/deep/soak); every profile walks the same
11-stage order — Inventory → Firmware → SpecValidate → SMART →
CPUStress → Storage → Network → Burn → GPU → PSU → Reporting —
with only per-stage durations and concurrency scaled.

Phase 1: profiles.ProfileRegistry loaded from vetting.yaml; runs.profile
column + CreateWithProfile; threshold table + evaluator seeded per-run
from the shared vetting.thresholds block; breach flips result at
/sensor + /result.

Phase 2: upgraded CPUStress (stress-ng --cpu-method=all --verify +
EDAC/MCE poll), Storage (fio --verify=md5 + SMART start/end delta),
Network (sustained iperf + /proc/net/dev deltas) with per-profile
knobs from Deps.

Phase 3: Burn super-stage with goroutine fan-out for CPU + memory +
fio + iperf, PSU rails sampled across the Burn window, SensorMux
(2 s flush, 500-sample cap) to absorb backpressure.

Phase 4: Firmware stage + firmware_snapshots table; probes dmidecode
(BIOS), ipmitool (BMC), ethtool -i (NIC), nvme (sysfs + id-ctrl),
lspci (HBA), /proc/cpuinfo (microcode). spec.DiffFirmware folds into
SpecValidate with pin-by-identifier and fan-out-across-component
matching; mismatches park the run in FailedHolding.

Phase 5: profile radio on the host start form, profile chip on the
run header, Firmware section in the HTML report, coverage artifact
uploaded from CI, agent/tests/fakes/ scaffold with Deps.LookPath
seam + stress_ng and dmidecode example fakes.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
This commit is contained in:
Josh Wright
2026-04-18 22:50:57 -04:00
parent fbb21cbafd
commit 23c689aa5b
60 changed files with 5911 additions and 527 deletions
Download Patch File Download Diff File Expand all files Collapse all files
agent/tests/fakes/doc.go
+22
View File
@@ -0,0 +1,22 @@
// Package fakes is the umbrella for deterministic stand-ins for
// external probe binaries that Vetting's stage code normally shells
// out to (stress-ng, fio, iperf3, dmidecode, ethtool, nvidia-smi,
// mcelog, nvme). Each real binary gets its own subpackage under
// fakes/<name>/ with `package main` and a main() that prints golden
// output — build with `go build -o <tmp>/<name> ./agent/tests/fakes/<name>`
// and point a test's tests.Deps.LookPath at <tmp>/<name>.
//
// The seam in tests is tests.Deps.LookPath: when non-nil the stage
// code uses it instead of os/exec.LookPath. Outside tests, nil
// LookPath means "use the real binary on $PATH" — stages continue to
// work on production hosts without the fakes package around.
//
// How to add a new fake:
// 1. Create agent/tests/fakes/<binaryname>/main.go.
// 2. Write `package main` with a main() that prints exactly the
// bytes the real tool would produce for the input you care to
// simulate. Determinism > completeness — tests want a known
// sample, not a realistic one.
// 3. Reference the fake from the unit test with `go test` compiling
// it via t.TempDir() + `go build -o` before the test body runs.
package fakes