ananke/README.md

# ananke

Ananke gets Atlas back on its feet after power trouble.

It runs on both tethys (in cluster - titan-24) and titan-db (out of cluster), outside Kubernetes as the host level, because some failures start before the cluster is healthy enough to fix itself. Its job is to bring nodes, Flux, core workloads, ingresses, and service checks back into a known-good state.

It aspires to be boring software: do the checks, repair the known deadlocks, and stomp loudly when it exhausts is remedy library.

## How it works

Ananke walks the cluster through startup or shutdown gates:

- confirm the expected nodes and SSH access
- check that Flux is looking at the right repo and branch
- wait for required Flux kustomizations and namespaces
- repair known startup traps, including Harbor/Gitea/Flux coupling
- run ingress, service, endpoint, and soak checks before calling startup done

Recovery cordons are given short 1hr leases. If Ananke cordons a node to repair something, it must either clear the cordon within the configured window or mark the node for manual action.

The following are notes for future Brad.

## Daily commands

```bash
sudo /usr/local/bin/ananke status --config /etc/ananke/ananke.yaml
sudo /usr/local/bin/ananke startup --config /etc/ananke/ananke.yaml --execute --force-flux-branch main
sudo /usr/local/bin/ananke shutdown --config /etc/ananke/ananke.yaml --execute --reason graceful-maintenance --mode cluster-only
```

Host files:

- `/var/lib/ananke/startup-progress.json`
- `/var/lib/ananke/last-startup-report.json`
- `/var/lib/ananke/last-shutdown-report.json`
- `/var/log/ananke/update.log`

## Development

Local testing check before installing:

```bash
./scripts/quality_gate.sh
```

Emergency installs can bypass the gate with `ANANKE_ENFORCE_QUALITY_GATE=0` - try to avoid this. You should be treating failures as an instructive opportunity to improve Ananke.
docs: replace legacy hecate README with ananke runbook 2026-04-07 12:40:45 -03:00			`# ananke`
bootstrap: scaffold hecate startup/shutdown service 2026-04-03 01:43:16 -03:00
Update README.md 2026-06-19 20:40:33 +00:00			`Ananke gets Atlas back on its feet after power trouble.`
bootstrap: scaffold hecate startup/shutdown service 2026-04-03 01:43:16 -03:00
Update README.md 2026-06-19 20:40:33 +00:00			`It runs on both tethys (in cluster - titan-24) and titan-db (out of cluster), outside Kubernetes as the host level, because some failures start before the cluster is healthy enough to fix itself. Its job is to bring nodes, Flux, core workloads, ingresses, and service checks back into a known-good state.`
docs: refresh ananke README and clarify flux source ownership 2026-04-08 19:02:49 -03:00
Update README.md 2026-06-19 20:40:33 +00:00			`It aspires to be boring software: do the checks, repair the known deadlocks, and stomp loudly when it exhausts is remedy library.`
bootstrap: scaffold hecate startup/shutdown service 2026-04-03 01:43:16 -03:00
docs: shorten ananke README 2026-06-19 15:43:49 -03:00			`## How it works`
bootstrap: scaffold hecate startup/shutdown service 2026-04-03 01:43:16 -03:00
Update README.md 2026-06-19 20:40:33 +00:00			`Ananke walks the cluster through startup or shutdown gates:`
docs: refresh ananke README and clarify flux source ownership 2026-04-08 19:02:49 -03:00
docs: shorten ananke README 2026-06-19 15:43:49 -03:00			`- confirm the expected nodes and SSH access`
			`- check that Flux is looking at the right repo and branch`
			`- wait for required Flux kustomizations and namespaces`
			`- repair known startup traps, including Harbor/Gitea/Flux coupling`
			`- run ingress, service, endpoint, and soak checks before calling startup done`
docs: refresh ananke README and clarify flux source ownership 2026-04-08 19:02:49 -03:00
Update README.md 2026-06-19 20:40:33 +00:00			`Recovery cordons are given short 1hr leases. If Ananke cordons a node to repair something, it must either clear the cordon within the configured window or mark the node for manual action.`
bootstrap: scaffold hecate startup/shutdown service 2026-04-03 01:43:16 -03:00
Update README.md 2026-06-19 20:40:33 +00:00			`The following are notes for future Brad.`
bootstrap: scaffold hecate startup/shutdown service 2026-04-03 01:43:16 -03:00
Update README.md 2026-06-19 20:40:33 +00:00			`## Daily commands`
bootstrap: scaffold hecate startup/shutdown service 2026-04-03 01:43:16 -03:00
			```bash
docs: replace legacy hecate README with ananke runbook 2026-04-07 12:40:45 -03:00			`sudo /usr/local/bin/ananke status --config /etc/ananke/ananke.yaml`
			`sudo /usr/local/bin/ananke startup --config /etc/ananke/ananke.yaml --execute --force-flux-branch main`
			`sudo /usr/local/bin/ananke shutdown --config /etc/ananke/ananke.yaml --execute --reason graceful-maintenance --mode cluster-only`
bootstrap: scaffold hecate startup/shutdown service 2026-04-03 01:43:16 -03:00			```

Update README.md 2026-06-19 20:40:33 +00:00			`Host files:`
bootstrap: scaffold hecate startup/shutdown service 2026-04-03 01:43:16 -03:00
docs: shorten ananke README 2026-06-19 15:43:49 -03:00			- `/var/lib/ananke/startup-progress.json`
			- `/var/lib/ananke/last-startup-report.json`
			- `/var/lib/ananke/last-shutdown-report.json`
			- `/var/log/ananke/update.log`

			`## Development`
bootstrap: scaffold hecate startup/shutdown service 2026-04-03 01:43:16 -03:00
Update README.md 2026-06-19 20:40:33 +00:00			`Local testing check before installing:`
bootstrap: scaffold hecate startup/shutdown service 2026-04-03 01:43:16 -03:00
docs: replace legacy hecate README with ananke runbook 2026-04-07 12:40:45 -03:00			```bash
docs: shorten ananke README 2026-06-19 15:43:49 -03:00			`./scripts/quality_gate.sh`
docs: replace legacy hecate README with ananke runbook 2026-04-07 12:40:45 -03:00			```
bootstrap: scaffold hecate startup/shutdown service 2026-04-03 01:43:16 -03:00
Update README.md 2026-06-19 20:40:33 +00:00			Emergency installs can bypass the gate with `ANANKE_ENFORCE_QUALITY_GATE=0` - try to avoid this. You should be treating failures as an instructive opportunity to improve Ananke.