incus-ci

The AgentContractsDeterministicHttp variant is deleted from StagedLinuxRustLane along with its string key (agent_contracts_deterministic_http), its execute wrapper path, and the JobSpec entry in agent_contract_jobs(). The match arm that mapped this variant to StagedLinuxRustTarget::PreMergeAgentContracts is consolidated so the remaining four agent-contract lanes share a single arm.

The pre-merge job count assertion in the test suite drops from 5 to 4, and a new negative assertion confirms that the removed job ID no longer appears:

assert!(pre_merge.jobs.iter().all(|job| job.id != "agent-http-deterministic-tests"));

The test that previously validated workspace output paths via AgentContractsDeterministicHttp is rewritten to use AgentContractsMicrovmTests instead, ensuring the agent-contracts workspace output contract still has coverage.

The automatic_incus_default_exclusion function is deleted entirely. The should_default_remote_linux_vm_to_incus function's job parameter becomes _job since the function no longer inspects the job spec — it only checks whether the SSH host is a known local builder.

Two existing unit tests are renamed to reflect the new behavior:

• agent_contracts_target_does_not_default_to_incus_on_pika_build → agent_contracts_target_defaults_to_incus_on_pika_build (now asserts RemoteLinuxVmBackend::Incus)
• pikachat_openclaw_target_does_not_default_to_incus_on_pika_build → pikachat_openclaw_target_defaults_to_incus_on_pika_build (same)

A third test (agent_contracts_target_can_still_opt_into_incus_explicitly) is replaced with pikachat_openclaw_target_selector_still_opt_in_matches_away_from_pika_build, which validates that explicit lane selectors still work for non-pika-build hosts.

Six path entries are removed from the check-agent-contracts lane filter in ci/forge-lanes.toml:

• cli/** — no longer needed since agent HTTP CLI selectors are gone
• crates/pika-desktop/** — was a transitive dependency of pikahut selectors
• crates/pikahut/Cargo.toml, crates/pikahut/src/**, crates/pikahut/tests/** — the lane no longer owns any pikahut test selectors
• crates/pikachat-sidecar/** — was needed for the CLI shell-out tests

The guardrail test in crates/pikahut/tests/guardrails.rs is updated in lockstep to assert the absence of these paths rather than their presence, ensuring the filter stays trimmed.

The unified plugin_source_root() accessor is removed from OpenclawRuntime because checkout and packaged runtimes now need different materialization strategies.

Three new functions are introduced:

1. remove_path — extracted from reset_symlink, handles both files and directories including symlinks
2. copy_tree — recursively copies a directory tree, resolving symlinks to their canonical targets before copying (critical for Incus where the mount point would otherwise leak into the copy)
3. materialize_plugin_runtime_root — dispatches based on runtime variant: checkout mode symlinks as before, packaged mode does remove_path + copy_tree

The call site in run_openclaw_e2e switches from reset_symlink(&plugin_runtime_path, openclaw_runtime.plugin_source_root()) to materialize_plugin_runtime_root(&openclaw_runtime, &plugin_runtime_path). A new test (packaged_plugin_runtime_is_materialized_as_local_copy) verifies that the packaged path produces a real directory (not a symlink) with the expected file structure.

The scenario now computes openclaw_workspace_root as the parent directory of the config file path. A second node_modules symlink is created at the workspace root level (in addition to the existing state-dir level one), both pointing to the OpenClaw package root.

The packaged gateway's working directory is changed from openclaw_state_dir to openclaw_workspace_root, which is where the gateway expects to resolve its configuration and plugin paths from. Several new environment variables are passed to the gateway process: NODE_PATH, PIKACHAT_DAEMON_CMD, PIKACHAT_SIDECAR_CMD, PIKA_OPENCLAW_GATEWAY_PORT, and OPENCLAW_DISABLE_BONJOUR.

The inline gateway configuration JSON is replaced with two extracted functions:

• openclaw_gateway_channel_config — produces the per-channel config with daemonCmd and daemonBackend: "native" instead of sidecarCmd/sidecarArgs
• openclaw_gateway_config — produces the full gateway config including gateway.mode, gateway.bind, gateway.port, plugin loading, and channels, with the channel config shared between plugins.entries and channels

The old sidecar_args vector (which manually assembled ["daemon", "--relay", ...]) is removed entirely. The new contract delegates daemon lifecycle management to the gateway via daemonBackend: "native".

A test (staged_gateway_config_uses_managed_daemon_contract_shape) validates:

• The config shape includes daemonCmd and daemonBackend
• sidecarCmd and sidecarArgs are absent (null)
• Plugin and channel configs are symmetric

A new wait_for_openclaw_gateway_health async function polls http://127.0.0.1:{port}/health every 250ms with a 2-second per-request timeout and a 120-second overall deadline. On each iteration it checks whether the gateway process has exited early.

The error messages include diagnostic state: daemon socket presence, identity file presence, and the last health error string. This is called in the main run_openclaw_e2e flow immediately after spawning the gateway and before attempting keypackage publication.

On health probe failure, the scenario writes three directory listing artifacts before returning the error:

• openclaw-workspace-tree.txt
• openclaw-state-tree.txt
• sidecar-state-tree.txt

The resolve_sidecar_daemon_socket_path function uses a conservative 100-byte limit (below the typical 108-byte kernel limit to leave margin). When the preferred {state_dir}/daemon.sock path fits, it is used directly. Otherwise, the state directory is hashed with DefaultHasher and a deterministic /tmp/pikachat-daemon-{hash}.sock path is generated.

This path is used consistently throughout the scenario: in error messages for wait_for_sidecar_keypackage, in the health probe, and in the final scenario output metadata. A unit test (sidecar_daemon_socket_uses_exists_style_path_contract) verifies the short-path case returns the expected join.

Several diagnostic utilities are added:

1. write_tree_listing — recursively formats a directory tree with entry types (file, dir, symlink with target, socket, other) using FileTypeExt for Unix socket detection
2. write_directory_listing_artifact — writes a tree listing to an artifact file, handling the missing-directory case
3. OpenclawRuntimeEnvArtifact + write_openclaw_runtime_env_artifact — dumps the full runtime environment (state dirs, config paths, socket paths, daemon command, gateway port) to a text artifact

These are used in three places:

• After the gateway health probe fails
• After keypackage publication fails
• As a standard artifact during normal scenario setup (openclaw-runtime-env.txt)

The successful scenario output is enriched with four new metadata fields: daemon_socket_path, daemon_socket_present, identity_json_path, and identity_json_present.

A new test helper with_remote_linux_vm_backend_env is added that safely sets/unsets the PIKACI_REMOTE_LINUX_VM_BACKEND, PIKACI_REMOTE_LINUX_VM_INCUS_LANES, and SSH host environment variables around a closure, with proper save/restore semantics.

The build_run_plan test is wrapped in with_remote_linux_vm_backend_env(Some("microvm"), ...) to force the microvm backend, preventing the test from accidentally using the Incus default and producing a different plan structure than expected.

Eleven job description strings across pika_followup_jobs, pikachat_openclaw_e2e_jobs, pikachat_typescript_jobs, fixture_rust_jobs, and rmp_jobs are updated to replace "microVM" or "Linux microVM" with "Linux VM". This reflects that the jobs now run on Incus containers rather than Firecracker/vfkit micro-VMs.

The guardrail changes fall into two categories:

pikachat lane guardrails (new positive assertions):

• The staged OpenClaw wrapper must use a root-owned packaged e2e tree (openclaw_stage_dir)
• The packaged tree must have its bundled extensions directory cleared (rm -rf + mkdir -p)
• The plugin must be sourced from a standalone share tree, not from the mounted workspace-build path
• The OpenClaw launcher binary must be copied into the dedicated e2e tree
• The wrapper must NOT restage under /tmp (would fail plugin safety checks on Incus)
• The wrapper must NOT restage the full extension tree (would cause gateway stalls)

agent-contracts lane guardrails (flipped from positive to negative):

• Host-side integration_deterministic::agent_* selectors must be absent
• crates/pikahut/src/**, crates/pikahut/tests/**, crates/pikahut/Cargo.toml, and cli/** must be absent from the workflow filter
• All the transitive dependency checks (pika-desktop, pikachat-sidecar, etc.) and the CLI shell-out body inspection are removed

agent-ci.md: The check-agent-contracts lane description is rewritten to list only the surviving staged coverage (pika-agent-control-plane, pika-agent-microvm, pika-server agent_api::tests, NIP-98). The removed selectors are explicitly documented as intentionally excluded with a rationale. The PR-change patterns section removes entries for pika-desktop, pikahut/Cargo.toml, and pikahut/tests, and notes that touching cli/src/main.rs no longer triggers agent-contracts.

incus-migration-plan.md: A new note is added about the OpenClaw packaged gateway requirements (empty extensions directory, runtime-local plugin copy, standalone share tree sourcing). The proof status section is rewritten: both previous blockers are now resolved, and the summary states there are no remaining automatic Incus exclusions.

ci-selectors.md and integration-matrix.md: Updated to remove references to the deleted selectors and reflect the new lane surface.

just/checks.just: The local pre-merge-agent-contracts recipe is updated to include pika-agent-control-plane to match the staged lane.

nix/ci/linux-rust.nix: The staged OpenClaw gateway wrapper is updated to use the root-owned packaged tree, clear bundled extensions, and source the plugin from the standalone share path.