helexa/cortex
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix(deploy): use dnf upgrade for stale installs, install only when absent
All checks were successful
CI / Format (push) Successful in 35s
Details
build-prerelease / Resolve version stamps (push) Successful in 39s
Details
CI / Clippy (push) Successful in 2m27s
Details
CI / Test (push) Successful in 4m30s
Details
CI / Build cortex SRPM (push) Has been skipped
Details
CI / Publish cortex to COPR (push) Has been skipped
Details
CI / Build neuron SRPM (push) Has been skipped
Details
CI / Publish neuron to COPR (push) Has been skipped
Details
CI / Bump version in source (push) Has been skipped
Details
build-prerelease / Build neuron-blackwell (push) Successful in 3m29s
Details
build-prerelease / Build cortex binary (push) Successful in 4m32s
Details
build-prerelease / Package cortex RPM (push) Successful in 1m20s
Details
build-prerelease / Build neuron-ampere (push) Successful in 5m15s
Details
build-prerelease / Build neuron-ada (push) Successful in 4m51s
Details
build-prerelease / Package helexa-neuron-ada RPM (push) Successful in 2m48s
Details
build-prerelease / Package helexa-neuron-ampere RPM (push) Successful in 2m47s
Details
build-prerelease / Package helexa-neuron-blackwell RPM (push) Successful in 3m38s
Details
build-prerelease / Publish to rpm.lair.cafe (unstable) (push) Successful in 57s
Details

Browse Source 
dnf5's `dnf install <pkg>` is a no-op when the package is already
installed at ANY version — it does NOT auto-upgrade to the latest
available. The deploy script's install branch was therefore silently
leaving hosts on older builds even though needs_update correctly
reported an upgrade was available.

Add an is_installed() probe and an install_or_upgrade() helper that
picks the right verb: `dnf install` when fresh, `dnf upgrade` when
stale. Captured combined-stream output is exposed via __DNF_OUTPUT__
for the existing failure-diagnostic path.

Verified end-to-end against the live fleet: hanzalova/beast/benjy/
quadbrat all upgraded cleanly from prior prerelease NVRs to
0.1.16-0.1.20260519134302.git1866b99.fc43, validation script returned
"Paris" from all three neurons.

Followup (not in this commit): all hosts running helexa-neuron-*
need libcudnn.so.9 available at runtime. Currently:
  - quadbrat: libcudnn9-cuda-13 RPM (rhel9 CUDA repo)
  - beast:    /usr/lib64/libcudnn.so.9 (manual install)
  - benjy:    needed rhel9 CUDA repo added + libcudnn9-cuda-13 installed
              as part of this validation pass.
The spec currently excludes cuDNN from auto-detected deps. Should
add a Recommends:libcudnn9-cuda-13 (soft) and ensure the rhel9 CUDA
repo is configured on each neuron host, similar to how ensure_lair_repo
handles the unstable channel.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
This commit is contained in:
rob thijssen
2026-05-19 14:10:48 +03:00
parent 1866b99a89
commit 1a0400131e
1 changed files with 36 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

40
script/deploy.sh
View File

@@ -94,6 +94,38 @@ needs_update() {
fi fi
} }
# True if the named package is currently installed on the remote host.
# Used to decide between `dnf install` (fresh) and `dnf upgrade` (stale):
# dnf5's `install` is a no-op when the package is already present at
# any version — it does NOT auto-upgrade to the latest available — so
# the wrong command silently leaves the host on an old build.
is_installed() {
local host="$1" pkg="$2"
ssh "${host}" "rpm -q ${pkg}" >/dev/null 2>&1
}
# Install or upgrade the named package on the remote, picking the
# right dnf verb based on the installed-or-not state. Returns 0 with
# dnf's combined stdout/stderr captured in __DNF_OUTPUT__ on success,
# and 1 with the same captured output on failure.
__DNF_OUTPUT__=""
install_or_upgrade() {
local host="$1" pkg="$2"
local cmd
if is_installed "${host}" "${pkg}"; then
cmd="upgrade"
else
cmd="install"
fi
if __DNF_OUTPUT__=$(
ssh "${host}" sudo dnf "${cmd}" --refresh --allowerasing -y "${pkg}" 2>&1
); then
return 0
else
return 1
fi
}
# --------------------------------------------------------------------------- # ---------------------------------------------------------------------------
# cortex (gateway) # cortex (gateway)
# --------------------------------------------------------------------------- # ---------------------------------------------------------------------------
@@ -108,12 +140,12 @@ if needs_update "${cortex_host}" cortex; then
# under set -e. # under set -e.
if ssh "${cortex_host}" "[ ! -f /usr/lib/systemd/system/cortex.service ] || sudo systemctl stop cortex.service"; then if ssh "${cortex_host}" "[ ! -f /usr/lib/systemd/system/cortex.service ] || sudo systemctl stop cortex.service"; then
echo "[${cortex_host}] stopped cortex service" echo "[${cortex_host}] stopped cortex service"
if dnf_output=$(ssh "${cortex_host}" sudo dnf install --refresh --allowerasing -y cortex 2>&1); then if install_or_upgrade "${cortex_host}" cortex; then
cortex_nvr=$(installed_nvr "${cortex_host}" cortex) cortex_nvr=$(installed_nvr "${cortex_host}" cortex)
echo "[${cortex_host}] installed/upgraded cortex to ${cortex_nvr}" echo "[${cortex_host}] installed/upgraded cortex to ${cortex_nvr}"
else else
echo "[${cortex_host}] failed to install/upgrade cortex:" echo "[${cortex_host}] failed to install/upgrade cortex:"
echo "${dnf_output}" | sed "s/^/[${cortex_host}] /" echo "${__DNF_OUTPUT__}" | sed "s/^/[${cortex_host}] /"
fi fi
else else
echo "[${cortex_host}] failed to stop cortex service" echo "[${cortex_host}] failed to stop cortex service"
@@ -165,7 +197,7 @@ for entry in "${neuron_entries[@]}"; do
# bare helexa-neuron or a different flavour without manual # bare helexa-neuron or a different flavour without manual
# intervention. The Conflicts: clauses in the spec ensure # intervention. The Conflicts: clauses in the spec ensure
# only one flavour is ever resident. # only one flavour is ever resident.
if dnf_output=$(ssh "${neuron_host}" sudo dnf install --refresh --allowerasing -y "${package}" 2>&1); then if install_or_upgrade "${neuron_host}" "${package}"; then
neuron_nvr=$(installed_nvr "${neuron_host}" "${package}") neuron_nvr=$(installed_nvr "${neuron_host}" "${package}")
echo "[${neuron_host}] installed/upgraded ${package} to ${neuron_nvr}" echo "[${neuron_host}] installed/upgraded ${package} to ${neuron_nvr}"
# Ensure firewalld allows neuron port # Ensure firewalld allows neuron port
@@ -177,7 +209,7 @@ for entry in "${neuron_entries[@]}"; do
fi fi
else else
echo "[${neuron_host}] failed to install ${package}:" echo "[${neuron_host}] failed to install ${package}:"
echo "${dnf_output}" | sed "s/^/[${neuron_host}] /" echo "${__DNF_OUTPUT__}" | sed "s/^/[${neuron_host}] /"
fi fi
else else
echo "[${neuron_host}] failed to stop neuron service" echo "[${neuron_host}] failed to stop neuron service"