fix(workspace): VM bootstrap script never installs harnessd

[dennisonbertram]

Problem

The cloud-init UserData script in `internal/workspace/bootstrap.go` only installs harnessd if the `HARNESS_DOWNLOAD_URL` environment variable is set:

```bash
if [ -n "${HARNESS_DOWNLOAD_URL}" ]; then
curl -fsSL "${HARNESS_DOWNLOAD_URL}" -o /usr/local/bin/harnessd
chmod +x /usr/local/bin/harnessd
fi
```

But nothing in the codebase ever sets that variable. The runner calls `harnessBootstrapScript()` and passes its return value as `UserData`, with no env injection. So:

• VM boots successfully on Hetzner.
• cloud-init runs apt-get + creates the workspace dir.
• The if-branch is skipped (URL is empty).
• The fallback expects harnessd at `/usr/local/bin/harnessd` but stock `ubuntu-24.04` has no such binary.
• Systemd starts the harnessd unit, which fails immediately with "executable not found".

Net effect: `workspace_type=vm` provisions a real VM, the agent does its work on the harness host (not on the VM — see #564), and the VM sits idle until `Destroy` removes it. Useless and billable.

Verified live this session: a Hetzner cax11 booted at 178.105.38.116, the run completed without ever talking to the VM, and the agent's file write landed at `/tmp/harness-vm-test/VM_PROOF.txt` (host) rather than on the VM.

Acceptance criteria

1. `workspace_type=vm` provisioning produces a VM where `curl http://:8080/healthz` returns `{"status":"ok"}` within 90 seconds of `workspace.provisioned` firing.
2. No external dependency on a manually-set env var to make this work — defaults are sane.
3. Cleanly handle ARM vs x86 (Hetzner cax* is ARM, cpx* is x86). The default server type after "fix(workspace): make Hetzner VM mode work" is `cax11` (ARM).

Proposed approaches

Pick whichever is simplest given current build infra:

Option A — Pull the harnessd Docker image (recommended).
Build a multi-arch `go-agent-harness:latest` image (already exists for amd64; need to add linux/arm64). Bootstrap installs Docker, pulls the image, and runs it as a systemd unit:
```bash
curl -fsSL https://get.docker.com | sh
docker pull go-agent-harness:latest
docker run -d --name harnessd --restart=on-failure -p 8080:8080 -v /workspace:/workspace go-agent-harness:latest
```
Reuses the same image as container mode. Works for any provider that supports Docker (Hetzner, AWS, GCP, etc.).

Option B — Download a binary from GitHub Releases.
Set `HARNESS_DOWNLOAD_URL` automatically in the bootstrap script to a pinned release URL. Requires CI to publish multi-arch binaries on each release.

Option C — Pre-baked Hetzner snapshot.
Build a snapshot once with harnessd pre-installed at `/usr/local/bin/harnessd`. Set `opts.ImageName` to that snapshot ID. Cheapest at runtime; least flexible (locks us to Hetzner).

Recommendation: Option A. Same image as container mode, no separate publish pipeline, works on any Docker-capable cloud.

Related

• feat(workspace): two-tier runtime — long-lived VM hosts running per-run containers #564 — two-tier VM/container architecture (this issue is a prerequisite for that to be testable end-to-end).
• The container mode Dockerfile at `build/Dockerfile.harnessd` is the source for the multi-arch build (`docker buildx build --platform linux/amd64,linux/arm64 -f build/Dockerfile.harnessd -t go-agent-harness:latest --push .`).

Validation

• Add an integration test gated on `HETZNER_API_KEY`: provision a vm-mode workspace, poll `:8080/healthz`, expect 200 within 90s, destroy.
• Manual: `curl http://:8080/v1/runs -d '{"prompt":"hi","max_steps":2}'` should return a run-id from the VM's harnessd, not the host's.

[dennisonbertram]

Codex Workpad

Environment stamp: 2026-04-29, workspace /Users/dennisonbertram/Develop/symphony-workspaces/go-agent-harness/GH-565, current local checkout 49749ab592b98935151ba1893be8f2aa33c0f2a2.

Issue intent: make workspace_type=vm bootstrap a real harnessd on the provisioned VM without requiring a manually injected HARNESS_DOWNLOAD_URL, while supporting the ARM default (cax11) and x86 hosts.

Acceptance checklist:

• VM bootstrap no longer references HARNESS_DOWNLOAD_URL.
• VM bootstrap installs Docker and starts harnessd through the shared image with /workspace mounted and 8080:8080 published.
• HARNESS_IMAGE remains an operator override and defaults to go-agent-harness:latest.
• build/Dockerfile.harnessd now honors BuildKit target platform args for multi-arch builds.
• Added gated Hetzner integration coverage that provisions VM mode and polls /healthz for {"status":"ok"} within 90s.
• Local regression gate passed.
• Branch/PR publication blocked by local git metadata write denial and missing PR-create connector tool.

Implementation notes:

• Updated internal/workspace/bootstrap.go to install Docker, write /etc/default/harnessd, and create a Docker-backed harnessd.service.
• Updated build/Dockerfile.harnessd for TARGETOS / TARGETARCH.
• Added/updated workspace bootstrap and integration tests.
• While getting the required regression gate green, added focused coverage for checkpoints, workflows, working-memory SQLite, network definition lookup, checkpoint/workflow HTTP helpers, and stabilized three existing tests that were not deterministic under the full gate.

Validation:

• TMPDIR=$PWD/.tmp/tmp GOCACHE=$PWD/.tmp/go-build go test ./internal/workspace -run 'TestHarnessBootstrapScript_(ContainsKeyElements|RunsHarnessImageWithoutDownloadEnv)|TestHarnessDockerfileSupportsBuildxTargetArchitectures' -count=1 passed.
• TMPDIR=$PWD/.tmp/tmp GOCACHE=$PWD/.tmp/go-build go test ./internal/checkpoints ./internal/harness ./internal/networks ./internal/server ./internal/workflows ./internal/workingmemory -run 'Test(ServiceStoreDenyExpireAndWaitCancel|SQLiteStoreUpdatePendingWorkflowAndNotFoundHelpers|CheckpointApprovalBrokerDenyPendingApproval|GetDefinition|EngineDefinitionSubscribeAndFailurePath|SQLiteStorePersistsWorkflowRunStateAndEvents|MemoryStoreGetEventsFiltersBySequence|ResumeRunWithoutCheckpointService|SQLiteStoreCRUDAndSnippet|HandleGetCheckpointDirect|MustJSONHandlesNilAndMarshalFailures)' -count=1 passed.
• TMPDIR=$PWD/.tmp/tmp GOCACHE=$PWD/.tmp/go-build ./scripts/test-regression.sh passed (coveragegate: PASS, total 84.7%, zero-functions 0).

Blockers/watchouts:

• Live Hetzner validation cannot run in this sandbox: DNS/network lookup for api.hetzner.cloud fails.
• Local branch/stage/commit is blocked: .git/index.lock and .git/refs/... writes fail with Operation not permitted; xattr cleanup also fails.
• gh cannot connect to api.github.com; GitHub connector did allow creating branch symphony/issue-565-vm-bootstrap-harnessd from base, but this session does not expose a PR-create tool and JS batching cannot call connector write tools.

[dennisonbertram]

Cleanup note: parked this issue out of the Symphony queue by removing symphony and symphony/status:todo. The previous Symphony run left no reviewable PR for this issue. Requeue deliberately by restoring those labels after the workspace/branch rules are stable.

[dennisonbertram]

Reviewed during Symphony leftover cleanup on 2026-04-29. Marking this as parked/redesign-needed for now: the leftover VM bootstrap branch should not be landed directly. I salvaged the safer readiness-probe behavior separately; the bootstrap installer still needs a narrow design for image/build source, architecture support, startup logs, retry behavior, and an integration-test strategy before Symphony picks it up again.