Add reconciler repair backstop for df/duroxide drift by tjgreen42 · Pull Request #279 · microsoft/pg_durable

tjgreen42 · 2026-06-30T01:26:06Z

Summary

Repair/backstop half split out from #258.

Adds admin-only df.reconcile(grace_seconds) to delete orphaned duroxide root subtrees and fail stale df.instances rows with no runtime instance or queued start.
Starts one built-in reconciler durable loop as df_reconciler on pg_durable.reconciler_cron; empty cron disables it.
Adds E2E coverage for orphan subtree GC and healthy-instance safety.
Fixes status_details schema probing across DROP/CREATE extension epochs.
Hardens upgrade tests to isolate provider schemas and poll result visibility.
Removes the rate-limited GitHub API dependency from HTTP E2E coverage.

cargo fmt -p pg_durable -- --check
cargo clippy --no-default-features --features pg17,http-allow-test-domains -- -D warnings
./scripts/test-e2e-local.sh 26_reconcile_orphan_gc --clean --default-build-phases --pg-version 17 --verbose
./scripts/test-e2e-local.sh 06_http_and_ssrf --clean --default-build-phases --pg-version 17 --verbose
./scripts/test-upgrade.sh --pg-version 17
CI green on this PR

Add reconciler repair backstop

5d246fa

tjgreen42 mentioned this pull request Jun 30, 2026

Prevent df/duroxide drift with transactional enqueue #258

Draft

tjgreen42 added 2 commits June 30, 2026 02:07

Fix status_details schema probe across extension epochs

ff5ccb0

Remove GitHub API dependency from HTTP E2E

ddfb773